A patchy kind of day
Black Tuesday, Reboot Wednesday, , "lets all distribute patches and vulnerability information Thursday". We might need to come up with a shorter name.
We often get links sent to us when vendors release new patches etc. We don;t publish all of them and typically we let you know about the more important ones. However this month there just seems to be a swag of patches from a range of vendors.
Microsoft had their usual bunch of patches, Adobe had two which have already been mentioned. So here are some of the others:
Cisco
- Unified Communications Manager Overflow Vulnerabilities
- MacAfee
- https://knowledge.mcafee.com
/article/761/613364_f.SAL _Public.html - https://knowledge.mcafee.com
/article/762/613365_f.SAL _Public.html - https://knowledge.mcafee.com
/article/763/613366_f.SAL _Public.html - https://knowledge.mcafee.com
/article/764/613367_f.SAL _Public.html
iDefense released information on full disclosure and bugtrack (read more here)
Others mentioned today (so far) CLAM AV, Open office, more on Java, more on tipping point evasion, quicktime (thanks Chris). We'll also add Symantec and itunes, Juniper and no doubt more.
In short it is a patchy kind of day, I'd be checking my list of core software and checking to see if I'm on the relevant notification list. I'll also be checking if there are any non MSFT or Adobe patches I need to apply.
Mark
Adobe patches
Like admins have not enough to do on Reboot Wednesday, Adobe joined in the release of patches today:
| APSB07-12 | Flash player: multiple vulnerabilities |
CVE-2007-3456 CVE-2007-3457 CVE-2007-2022 |
|
| APSB07-13 | Photoshop CS2 and CS3: multiple file format vulnerabilities |
CVE-2007-2244 CVE-2007-2365 |
Public exploits available see past diary |
Enjoy the patching!
Thanks to Andre for the pointer to our own past diary.
A reader mentioned that you if you are running multiple browsers you'll probably have t make sure both plugins are updated (Thanks Chris) - MH.
--
Swa Frantzen -- NET2S
Comments