Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Update Palooza - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Update Palooza

If you are easily confused like me, you may appreciate this quick summary as to the different updates released the last couple of days:

Oracle Java:

  • Java 7 Update 15
  • Java 6 Update  41

Mozilla

Firefox 19

Apple

(in addition to Apple's Java update to the versions shown above)

iTunes 11.0.2.25

Adobe

  • Flash Player Windows 7 and earlier 11.6.602.168 (Windows 8 and OS X is still use 167)
  • Acrobat/Reader 11.0.02 (went live on Adobe's FTP server Wed. 20th morning)

Probably the most dangerous thing you can do when applying patches is to rush. You may not only end up with a broken system, but worse, the patch may not be applied correctly. Take the time to test that you are all up to date. Encourage your coworkers and relatives to visit browsercheck.qualys.com to test if all plugins are installed correctly.

(we may update this diary for a day or two)

------
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter

UPDATE

More updates arrived:

  • Thunderbird 17.03 arrived yesterday. It fixes 8 security vulnerabilities.
  • Apple released yesterday iOS 6.1.2, which can be downloaded fast as it is small (12.8 MB). So far, this update seems to be only related with a bug on echange calendars that increases network utilization causing battery drain. Better to have last version installed as apple does not always list in a detailed way all the fixes contained in an operating system update.

Manuel Humberto Santander Peláez
SANS Internet Storm Center - Handler
Twitter:@manuelsantander
Web:http://manuel.santander.name
e-mail: msantand at isc dot sans dot org

 

I will be teaching next: Intrusion Detection In-Depth - SANS Boston Summer 2019

Johannes

3576 Posts
ISC Handler
Thanks for an always excellent tool for keeping abreast of InfoSec news!! One VERY minor correction - the correct URL is https://browsercheck.qualys.com
Cheers!
Bradford

1 Posts
Thanks for sharing this site.
Added to bookmarks instantly!
Anonymous
FYI, Flash for Windows 8 is still on 11.6.602.167:

http://helpx.adobe.com/flash-player/kb/find-version-flash-player.html
Anonymous
You forgot to include Firefox and Thunderbird in your list! (and there's an Adobe Reader patch on the way IIRC?
Anonymous
URL for FTP Server download of Adobe Reader can be found here (versions 9, 10, and 11 appear to have updates available):

ftp://ftp.adobe.com/pub/adobe/reader/win/

The above line is for Windows based platforms, go up one level to see what's available for other supported platforms :)
dogbert2

21 Posts
Firefox 19 (with native PDF reader) breaks ability to update Adobe Reader??

'setup has determined that you already have a more functional product installed'

Will reboot and try again!
Anonymous
Care to add the new version of Chrome to the list??
Anonymous

Sign Up for Free or Log In to start participating in the conversation!