On vacation for the next 10 days or so…. I will not start updating till then – presumably the 9th
Windows PetitPotam Vulnerability found in MS-EFSRPC protocol
LINK Essentially, the abuse of the old NTLM protocol is happening. Something that needs to be investigated for immediate retirement on your network.
Jira requests everyone to update Jira Data Center
LINK Jira released an update to their Data Center products.
Drupal releases Critical Update
LINK A Third party library Archive_Tar, has released a security update. Time to update.
Microsoft releases a workaround for the “SeriousSAM” vulnerability
LINK A serious elevation of privilege flaw found could allow a local attacker run their own code with sys privs. Read the article closely for the way this is resolved and to confirm if you are in fact vulnerable.
Dell releases critical update for OpenManage Enterprise
LINK If you use OpenManage, time to look if you need this critical update.
Apple releases numerous devices updates
LINK If you have an Apple device, time to update it.
LPE found in most Linux filesystem distros has been there since 2014
LINK A problem that has existed since 2014 has been found. Time to look if your distro (most likely it is) is affected.
CODESYS Industrial Automation Software and PLC affected by RCE
LINK If you have CODESYS, examine this closely to see if you are affected.
Adobe releases 21 new updates
LINK As part of the monthly schedule, examine the Adobe updates