Highlights and Updates

Drupal Releases Security Updates

Wednesday, 20th May 2020

Drupal has released security updates to address vulnerabilities affecting Drupal 7, 8.7, and 8.8. A remote attacker could exploit one of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review Drupal Advisories SA-CORE-2020-002 and SA-CORE-2020-003 for more information and to apply the necessary updates.

Microsoft Releases May 2020 Security Updates

Wednesday, 13th May 2020

Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review Microsoft’s May 2020 Security Update Summary and Deployment Information and apply the necessary updates.

Adobe Releases Security Updates

Tuesday, 12th May 2020

Adobe has released security updates to address vulnerabilities affecting Adobe DNG Software Development Kit, Acrobat, and Reader. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review Adobe Security Bulletin APSB20-24 and APSB20-26 and apply the necessary updates.

VMware Publishes Workarounds for Vulnerabilities in vRealize Operations Manager

Tuesday, 12th May 2020

VMware has published workarounds to address unpatched vulnerabilities in vRealize Operations Manager(vROps). A remote attacker could exploit these vulnerabilities to take control of an affected system.

We encourage users and administrators to review the VMware Security Advisory and apply the necessary mitigations.

OpenSSL Releases Security Update

Thursday, 23rd April 2020

OpenSSL version 1.1.1g has been released to address a vulnerability affecting versions 1.1.1d–1.1.1f. An attacker could exploit this vulnerability to cause a denial-of-service condition.

We encourage users and administrators to review the OpenSSL Security Advisory and apply the necessary update. 

Microsoft Releases Security Updates for Multiple Products

Wednesday, 22nd April 2020

Microsoft has released security updates to address multiple vulnerabilities in products that use the Autodesk FBX library. These include Office 2016, Office 2019, Office 365ProPlus, and Paint 3D. A remote attacker can exploit these vulnerabilities to take control of an affected system.

We encourage users and administrators to review Microsoft Advisory ADV200004 and apply the necessary updates.

Google Releases Security Updates for Chrome

Wednesday, 22nd April 2020

Google has released Chrome version 81.0.4044.122 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system.

We encourage users and administrators to review the Chrome Release and apply the necessary updates.

VMware Releases Security Updates for VMware Directory Service

Saturday, 11th April 2020

VMware has released security updates to address a vulnerability in VMware Directory Service (vmdir). An attacker could exploit this vulnerability to take control of an affected system.

We encourage users and administrators to review VMware Security Advisory VMSA-2020-0006 and apply the necessary updates.

Juniper Networks Releases Security Updates

Friday, 10th April 2020

Juniper Networks has released security updates to address multiple vulnerabilities in various Juniper products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review the Juniper Security Advisories webpage and apply the necessary updates or workarounds.

Mozilla Releases Security Updates for Firefox, Firefox ESR

Friday, 10th April 2020

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system.

We encourage users and administrators to review Mozilla Security Advisories for Firefox 75, Firefox ESR 68.7, and Thunderbird 68.7.0 and apply the necessary updates.