On June 13, the Pennsylvania House of Representatives voted on legislation to massively expand the spying power of both the government and civilians. The ACLU of Pennsylvania is disappointed that the state House passed HB 2400, but the struggle against this bill goes on. We are hopeful that the…
Apple has released a Java update to address multiple vulnerabilities for the following products:Mac OS X v10.6.8Mac OS X Server v10.6.8OS X Lion v10.7.4OS X Lion Server v10.7.4These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT…
Microsoft has released Security Advisory 2719615 to address a vulnerability in Microsoft XML Core Services 3.0, 4.0, 5.0, and 6.0. This vulnerability may allow an attacker to execute arbitrary code if a user accesses specially crafted web pages using Internet Explorer. According to the advisory,…
Oracle released its Critical Patch Update for June 2012 containing 14 security fixes for the following products:JDK and JRE 7 Updates 4 and earlierJDK and JRE 6 Update 32 and earlierJDK and JRE 5.0 Update 35 and earlierSDK and JRE 1.4.2_37 and earlierJavaFX 2.1 and earlierUS-CERT encourages users…
Apple has released iTunes 10.6.3 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages users and administrators to review Apple Support Article HT5318 and apply any necessary updates to…
Adobe has released a Security Bulletin for Adobe Flash Player to address vulnerabilities affecting the following software versions:Adobe Flash Player 11.2.202.235 and earlier versions for Windows, Macintosh, and LinuxAdobe Flash Player 11.1.115.8 and earlier versions for Android 4.xAdobe Flash…
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Internet Explorer, .NET Framework, Lync, and Dynamics AX as part of the Microsoft Security Bulletin Summary for June 2012. These vulnerabilities may allow an attacker to execute arbitrary code or operate with elevated…
The Mozilla Foundation has released updates for the following products to address multiple vulnerabilities:Firefox 13.0Firefox ESR 10.0.5Thunderbird 13.0Thunderbird ESR 10.0.5SeaMonkey 2.10These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition,…
Adobe has released security bulletins to address multiple vulnerabilities for the following products:Adobe Illustrator CS5 (15.0.x) for Windows and MacintoshAdobe Illustrator CS5.5 (15.1) for Windows and MacintoshAdobe Photoshop CS5 (12.0) for Windows and MacintoshAdobe Photoshop CS5.1 (12.1) for…
Microsoft has released a security advisory to address the revocation of a number of unauthorized digital certificates. Maintaining these certificates within your certificate store may allow an attacker to spoof content, perform a phishing attack, or perform a man-in-the-middle attack.The following…
Google has released Google Chrome 19.0.1084.52 for Linux, Mac, Windows, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages users and administrators to review the Google…
Apple has released QuickTime 7.7.2 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages users and administrators to review Apple Support Article HT5261 and apply any necessary updates to…
Google has released Google Chrome 19 for Linux, Mac, Windows, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service condition.US-CERT encourages users and administrators to review the Google Chrome…
Unsolicited commercial email may be a privacy and/or security violation under the Federal Trade Commission of the United States of America. SPAM should be forwarded to uce@ftc.gov.