Adobe Releases Security Updates for Multiple Products | CISA
CISA – Google Chrome updates for all platforms and Microsoft Patch Tuesday
Yesterday the US Cybersecurity and Infrastructure Security Agency (CISA) has issued and advisory for Google Chrome patches: Google Releases Security Updates for Chrome | CISA They also posted their Microsoft Patch Tuesday advisory: Microsoft Releases May 2022 Security Updates | CISA
CISA vulnerability reports
Just one new vulnerability on Cybersecurity and Infrastructure Security Agency’s Known Exploited Vulnerabilities Catalog, for the F5 environment. CISA Adds One Known Exploited Vulnerability to Catalog | CISA
Patch Tuesday – May 2022
Here is SANS’ excellent round-up of Microsoft’s Patch Tuesday: Microsoft May 2022 Patch Tuesday – SANS Internet Storm Centre There are the usual array of issues that Microsoft is fixing be they become an issue – one of the Windows patches fixes Windows LSA, this impacts the authentication of accounts …
Flaw discovered in third-party code libraries used by hundreds of vendors
Among the vendors using uClibc and the uClibc variant uClibc-ng are Linksys, Netgear, Axis and Gentoo an embedded Linux distribution. This page from Ars Technica has links to the impacted devices: Gear from Netgear, Linksys, and 200 others has unpatched DNS poisoning flaw | Ars Technica Vendors were informed of …
Continue reading “Flaw discovered in third-party code libraries used by hundreds of vendors”
