SECURITY

No Image

USN-3031-1: Pidgin vulnerabilities

2016-07-13 KENNETH 0

USN-3031-1: Pidgin vulnerabilities Ubuntu Security Notice USN-3031-1 12th July, 2016 pidgin vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Pidgin could be made to crash or run programs if it received specially crafted network traffic. Software description pidgin – graphical multi-protocol instant messaging client for X Details Yves Younan discovered that Pidgin contained multiple issues in the MXitprotocol support. A remote attacker could use this issue to cause Pidgin tocrash, resulting in a denial of service, or possibly execute arbitrarycode. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 15.10: libpurple0 1:2.10.11-0ubuntu4.2 Ubuntu 14.04 LTS: libpurple0 1:2.10.9-0ubuntu3.3 Ubuntu 12.04 LTS: libpurple0 1:2.10.3-0ubuntu1.7 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need to [ more… ]

No Image

July 2016 security update release

2016-07-13 KENNETH 0

July 2016 security update release Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security TechNet Library. MSRC team Source: July 2016 security update release

No Image

MS16-091 – Important: Security Update for .NET Framework (3170048) – Version: 1.0

2016-07-13 KENNETH 0

MS16-091 – Important: Security Update for .NET Framework (3170048) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (July 12, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft .NET Framework. The vulnerability could cause information disclosure if an attacker uploads a specially crafted XML file to web-based application. Source: MS16-091 – Important: Security Update for .NET Framework (3170048) – Version: 1.0

No Image

MS15-094 – Important: Security Update for Secure Boot (3175677) – Version: 1.0

2016-07-13 KENNETH 0

MS15-094 – Important: Security Update for Secure Boot (3175677) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (July 12, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow Secure Boot security features to be bypassed if an attacker installs an affected policy on a target device. An attacker must have either administrative privileges or physical access to install a policy and bypass Secure Boot. Source: MS15-094 – Important: Security Update for Secure Boot (3175677) – Version: 1.0

No Image

MS16-085 – Critical: Cumulative Security Update for Microsoft Edge (3169999) – Version: 1.0

2016-07-13 KENNETH 0

MS16-085 – Critical: Cumulative Security Update for Microsoft Edge (3169999) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (July 12, 2016): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Edge. The most severe of the vulnerabilities could allow remote code execution if a user views a specially crafted webpage using Microsoft Edge. An attacker who successfully exploited the vulnerabilities could gain the same user rights as the current user. Customers whose accounts are configured to have fewer user rights on the system could be less impacted than users with administrative user rights. Source: MS16-085 – Critical: Cumulative Security Update for Microsoft Edge (3169999) – Version: 1.0