rce

(get it in RSS or Atom)

Get ready! Oracle to fix 40 holes in Java on Tuesday, 18 June 2013

by Paul Ducklin on June 15, 2013 | 11 Comments

There's a Java update coming next Tuesday, 18 June 2013, and you might as well get ready for it now if you haven't already.

Oracle has fixed 40 holes, all but three of them remotely exploitable.

Apple's OS X and Safari get biggish security fixes

by Paul Ducklin on June 5, 2013 | 10 Comments

Apple has published updates for all supported versions of OS X and for Safari version 6.

A largish number of remote code execution vulnerabilities have been patched, so these aren't just cosmetic fixes.

Mozilla pushes out new Firefox and Thunderbird: 8 security advisories, 3 critical fixes

by Paul Ducklin on May 14, 2013 | 3 Comments

Not to be outdone by Microsoft and Adobe's Patch Tuesday releases, Mozilla pushed out its latest browser and email client updates today.

There are no bated-breath patches for in-the-wild exploits, but 3 of the 8 security fixes are deemed "critical".

Oracle and Apple ship critical Java updates - get yours today!

by Paul Ducklin on April 17, 2013 | 12 Comments

The security-beleaguered Java ecosystem usually gets updates just once every four months, in February, June and October.

But this year, Oracle has adapted that schedule a number of times, and this is one of them...

Microsoft to issue 9 security updates on Tuesday, critical for all IE versions, reboot required

by Paul Ducklin on April 7, 2013 | 12 Comments

Microsoft has issued its usual advance notification for the coming week's Patch Tuesday.

If you use Windows you're probably affected, and you'll probably need to reboot all your PCs and most of your servers...

Mega's bug bounty program - one week down, "a few billion billion years" to go

by Paul Ducklin on February 11, 2013 | 6 Comments

Mega, the cloud storage service brought to you by Kim Dotcom, has released the first feedback on its bug bounty program.

It's only a week in, so the major prizes haven't been scooped yet...and Mega's saying they'll be safe for "a few billion billion years" yet.

Firefox 17 arrives - 2365 bugs zapped, OS X Leopard left behind

by Paul Ducklin on November 21, 2012 | 6 Comments

Firefox 17.0 is out.

The new version fixes an officially-listed 2365 bugs and covers six critical advisories. It also drops support for OS X Leopard and earlier.

Microsoft Patch Tuesday - there's even a patch for your Mac!

by Paul Ducklin on November 14, 2012 | 1 Comment

Patch Tuesday has come around again.

The fixes cover Internet Explorer, Excel (on Windows and Mac), the kernel itself, and more.

Here's advice on the what, the why and the where...

Apple bumps iOS to 6.0.1, fixes an interesting set of bugs

by Paul Ducklin on November 1, 2012 | 10 Comments

Four good reasons to upgrade to Apple iOS 6.0.1.

Apple gets aggressive - latest OS X Java security update rips out browser support

by Paul Ducklin on October 18, 2012 | 14 Comments

Oracle patches Java, then Apple issues its own updates. You can never be quite sure how long that's going to take.

This month, it all happened pretty quickly - and Apple took the opportunity to kick Java out of your browser at the same time...

Apple Mountain Lion 10.8.2 - lots of bug fixes, no known vices

by Paul Ducklin on September 24, 2012 | 17 Comments

The latest security updates for Snow Leopard, Lion and Mountain Lion came out last week.

They were overshadowed by the iPhone 5 and iOS 6, but to OS X users, are just as important. More so, in fact!

Adobe updates Flash again in a Patch Tuesday of its own

by Paul Ducklin on August 23, 2012 | 12 Comments

Seems as though something urgent from a security point of view came up in the past few days.

Adobe Flash Player has been patched again, just one week after the official Patch Tuesday update...

Patch Tuesday - what to know and what to do for Microsoft and Adobe users

by Paul Ducklin on August 15, 2012 | 10 Comments

Both Adobe and Microsoft published Patch Tuesday updates this week.

There are plenty of issues to be concerned about - so we've written up our recommendations to help you prioritise your own patching...

IE remote code execution vulnerability being actively exploited in the wild

by Paul Ducklin on June 19, 2012 | 13 Comments

A critical Internet Explorer vulnerability, announced and patched by Microsoft in June's Patch Tuesday, is being exploited in the wild.

Find out how hackers bypass modern protections like DEP and ASLR - and if you haven't patched yet, do it now!

Important Apple security updates for Snow Leopard and Lion - get 'em today!

by Paul Ducklin on May 10, 2012 | 12 Comments

Hot on the heels of the iOS 5.1.1 release, Apple has pumped out a raft of security updates for Snow Leopard (OS X 10.6) and Lion (OS X 10.7) users.

Many vulnerabilities have been fixed, and Safari gets a really cool new safety feature. Find out more.

Apple offers iOS 5.1.1 update, fixes some serious vulnerabilities

by Paul Ducklin on May 8, 2012 | 14 Comments

Apple's latest update to iOS just came out.

Version 5.1.1 is more than just a cosmetic fix: it patches at least three security flaws, all of which should be considered serious.

rce

Tags

Categories

Archives by month

Download some free tools

Take a look at our products

Investigate the threats