| Feb 18, 2011 |
Oracle Releases Critical Patch Update for Java SE and Java for Business Oracle has released a Critical Patch Update for Java SE and Java for Business. This update addresses multiple vulnerabilities and contains 21 security fixes. US-CERT encourages users and administrators to review the Oracle Java SE and Java for Business Critical Patch Update Advisory for February 2011 and apply any necessary updates to help mitigate the risks. |
| Feb 11, 2011 |
VMware Releases Advisory for Windows 7 Users VMware has released an advisory to alert users of an issue affecting VMware on the Microsoft Windows 7 platform. This issue prevents VMware from connecting from the View Client on Windows 7 to the View Connection Server after installing the Microsoft patches 2482017 and 2467023 from Microsoft Security Bulletin MS11-003. VMware users on the Windows 7 platform should upgrade to VMware View Client build 353760 prior to applying Microsoft patches 2482017 and 2467023. VMware users who have previously applied these Microsoft patches should upgrade to VMware View Client build 353760 to mitigate the issue. Additional information can be found in the VMware Knowledge Base advisory. |
| Feb 10, 2011 |
Google Releases Chrome 9.0.597.95 Google has released Chrome 9.0.597.95 for all platforms to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. This update also includes a recently released version of Adobe Flash Player that repairs several vulnerabilities. US-CERT encourages users and administrators to review the Google Chrome Releases blog entry and apply any necessary updates to help mitigate the risks. |
| Feb 10, 2011 |
Oracle Releases Security Alert for Java Runtime Environment Oracle has released a security alert to address a vulnerability in the Java Runtime Environment component of the Oracle Java SE and Java for Business products. Exploitation of this vulnerability may allow an attacker to cause a denial-of-service condition. US-CERT encourages users and administrators to review the Oracle Security Alert for CVE-2010-4476 and apply any necessary updates to help mitigate the risks. |
| Feb 09, 2011 |
RealNetworks, Inc. Releases Security Updates for RealPlayer RealNetworks, Inc. has released security updates to address a vulnerability affecting Windows RealPlayer 14.0.1 and earlier versions and RealPlayer Enterprise 2.1.4 and earlier versions. Exploitation of this vulnerability may allow an attacker to execute arbitrary code in the context of the browser. US-CERT encourages users and administrators to review the RealNetworks, Inc. security notice released on February 8, 2011 and upgrade to the most current version of RealPlayer to help mitigate the risks. |
| Feb 09, 2011 |
Adobe Releases Security Update for Flash Player Adobe has released a security bulletin to address multiple vulnerabilities in Flash Player 10.1.102.64 and earlier versions for Windows, Macintosh, Linux, and Solaris. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users and administrators to review Adobe Security Bulletin APSB11-02 and apply any necessary updates to help mitigate the risks. |
| Feb 08, 2011 |
Adobe Releases Updates for Adobe Reader and Acrobat Adobe has released updates for Reader and Acrobat to address multiple vulnerabilities affecting the following software versions:
At this time, updates are available for the Windows platform. Adobe indicates that it plans to release updates for Macintosh and Unix the week of February 28, 2011. US-CERT encourages Windows users and administrators to review Adobe Security Bulletin APSB11-03 and apply any necessary updates to help mitigate the risks. Macintosh and Unix users and administrators should apply any necessary updates when they become available from the vendor. US-CERT will provide additional information as it becomes available. |
| Feb 08, 2011 |
Microsoft Releases February Security Bulletin Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, and Office as part of the Microsoft Security Bulletin Summary for February 2011. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, obtain sensitive information or operate with elevated privileges. US-CERT encourages users and administrators to review the bulletin and follow best-practice security policies to determine which updates should be applied. |
| Feb 08, 2011 |
WordPress Releases Version 3.0.5 WordPress has released WordPress 3.0.5 to address multiple vulnerabilities. Execution of these vulnerabilities may allow an attacker to conduct cross-site scripting attacks or obtain sensitive information. US-CERT encourages users and administrators to review the WordPress Codex document for version 3.0.5 and apply any necessary updates to help mitigate the risks. |
| Feb 07, 2011 |
Google Releases Chrome 9.0.597.84 Google has released Chrome 9.0.597.84 for all platforms to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition. US-CERT encourages users and administrators to review the Google Chrome Releases blog entry and apply any necessary updates to help mitigate the risks. |