Category Archives: Time to Patch

Short posts on the latest security updates for widely-used software.

Adobe Warns of Critical Flaw in Flash, Acrobat & Reader

June 5, 2010

Adobe Systems Inc. warned late Friday that malicious hackers are exploiting a previously unknown security hole present in current versions of its Adobe Reader, Acrobat and Flash Player software.

“There are reports that this vulnerability is being actively exploited in the wild against both Adobe Flash Player and Adobe Reader and Acrobat,” the company said in a brief blog post published Friday evening. “This vulnerability could cause a crash and potentially allow an attacker to take control of the affected system.”

Mozilla Plugin Check Now Does Windows (Sort of)

May 26, 2010

16 Comments

Mozilla’s Plugin Check Web site, which inspects Firefox browsers for outdated and insecure plugins, now checks other browsers — including Apple’s Safari, Google’s Chrome, Opera, and (to a far lesser extent) even Internet Explorer.

Microsoft, Adobe Push Critical Security Updates

May 12, 2010

22 Comments

Microsoft Corp. and Adobe Systems each released security updates on Tuesday. Microsoft issued two “critical” patches that address one security flaw apiece, while Adobe’s patches fix a whole mess of serious vulnerabilities in its software. One of the critical updates… Read More »

Opera Plugs ‘Extremely Severe’ Security Hole

May 5, 2010

8 Comments

The makers of the Opera Web browser are urging users to apply an update that fixes what the company described as an “extremely severe” security flaw in Windows and Mac versions of the software. The vulnerability is fixed in the… Read More »

Mozilla Disables Insecure Java Plugin in Firefox

April 20, 2010

19 Comments

Mozilla is disabling the Java Development Toolkit plugin for Firefox users, in a bid to block attacks against a newly-discovered Java security hole that attackers have been exploiting of late to install malicious code.

Java Patch Targets Latest Attacks

April 15, 2010

14 Comments

Oracle Corp. has shipped a new version of its Java software that nixes a feature in Java that hackers have been using to foist malicious software. Java 6 Update 20 was released sometime in the last 24 hours, and includes some security fixes, although Oracle’s documentation on that front is somewhat opaque. Most significantly, the update removes a feature that hackers have started using to install malware.

Adobe, Microsoft Push Security Upgrades

April 13, 2010

20 Comments

Software giants Adobe and Microsoft today each released software updates to fix critical security flaws in their products. In addition, Adobe is rolling out a new auto-updater tool that should make it easier for hundreds of millions of Adobe Reader users to more safely run one of the most frequently attacked applications on the Internet today.

Security Updates for Foxit, QuickTime/iTunes

April 6, 2010

16 Comments

Foxit Software has issued an update to make it easier for users to spot PDF files that may contain malicious content. Also, Apple has pushed out new versions of QuickTime and iTunes that correct nearly two dozen security problems in… Read More »

Java Patch Plugs 27 Security Holes

April 1, 2010

30 Comments

A new version of Java is available that fixes at least 27 security vulnerabilities in the ubiquitous software. To see which version of Java you have installed, visit this link and click the “Do I Have Java?” link under the big red “Free Java Download” button. The newest version that includes these 27 fixes is Java 6 Update 19.

Monster Mac OS X Update

March 30, 2010

16 Comments

Apple released a software update on Monday that includes fixes for a massive number of security vulnerabilities in Mac OS X and associated software. The update corrects more than 90 security flaws and weaknesses in a variety of Apple and… Read More »