Patch Management
News
PHP 5.3.10 fixes critical remote code execution vulnerability
The PHP Group released PHP 5.3.10 on Thursday in order to address a critical security flaw that can be exploited to execute arbitrary code on servers...
Fundamental Oracle flaw revealed
A design decision made by Oracle architects long ago may have painted some of Oracle's largest customers into a corner. Patches have arrived, but...
Oracle to issue 78 patches, including 27 for MySQL
Oracle is set on Tuesday to release 78 security fixes for vulnerabilities in its database, middleware and applications, according to a preview...
LibreOffice backers want community to join 'bug hunt'
The organization behind LibreOffice is hoping community members will help it uncover problems with an upcoming release of the open-source office...
Microsoft to start automatic updates of IE without asking the user
Microsoft next year will change its automated update process for the Internet Explorer (IE) Web browser to push out the latest version of the browser...
Unpatched Apache reverse proxy flaw allows access to internal network
A yet-to-be-patched flaw discovered in the Apache HTTP server allows attackers to access protected resources on the internal network if some rewrite...
Google Chrome update addresses high-severity flaw
Google has released an update for Chrome 15 which addresses a high-risk vulnerability. The security issue is the result of an out-of-bounds memory...
Apple secures iTunes update checking to address man-in-the-middle vulnerability
Apple's iTunes 10.5.1 update addresses a weakness in the application's update mechanism that could be exploited to trick users into visiting...
Microsoft issues workaround for Duqu attack while it prepares a patch
Microsoft has published code to temporarily blunt attacks against a software vulnerability exploited by Duqu, an advanced piece of malicious software...
Opera denies refusing to patch critical vulnerability
Opera Software has released an update for its desktop browser in order to address a critical vulnerability in its handling of Scalable Vector...
XSS web attacks could live forever, researcher warns
Websites that accidentally distribute rogue code could find it harder to undo the damage if attackers exploit widespread browser support for HTML5...
Microsoft patches 15 bugs, nukes more SSL certificates
Microsoft today patched 15 vulnerabilities in Windows, Office and other software with five security updates.
Apple patches OS X for DigiNotar threat
Apple is rolling out an OS X patch to deal with the DigiNotar threat. DigiNotar will be removed from the list of trusted root certificates.
Secunia's patching tool integrated with Microsoft's WSUS
Secunia, a Danish security company that makes two tools that ensure applications have up-to-date patches, released a product on Wednesday that can...
SAP will issue patch for NetWeaver vulnerability
A reportedly serious security bug affecting the J2EE (Java 2 Platform Enterprise Edition) engine in SAP's NetWeaver middleware will be patched soon,...
Microsoft patching: Still painful after all these years
The spring of 2011 has seen some of the largest Microsoft Patch Tuesdays ever. In April, Microsoft tied its all-time record with 17 updates that...
Oracle to issue 78 bug fixes
Oracle is planning to issue 78 patches covering a number of its software products on Tuesday, including 13 fixes for its flagship database, according...
Better security needs 'more informed patching'
Security firm Secunia finds that the most popular three-dozen programs account for 80 percent of vulnerabilities. Better patching could help...
Oracle fixes 17 bugs in Java security update
Oracle has issued an update to Java SE that fixes a number of critical bugs in the widely used Internet software.
Adobe Flash update puts users in charge of privacy
Adobe has released an important update to its Flash Player software that fixes critical security flaws and gives users a better way of controlling...
Microsoft patching: Still painful after all these years
The Connected Enterprise
