The second Tuesday of the month has come and gone and with that we have a several patches with which to follow-up. Keep in mind “Super Tuesday” though initiated by Microsoft has also become a popular day for other companies to release their scheduled patches as well. So regardless of your OS of choice please check with your update service for any new items.
Microsoft released four (4) patches this month.
Three (3) of the patches are listed as critical and should be applied immediately.
MS10-042 – Critical (high) – Vulnerability in Help and SupportCenter Could Allow Remote Code Execution (2229593)
MS10-043 – Critical (high) – Vulnerability in Canonical Display Driver Could Allow Remote Code Execution (2032276)
MS10-044 – Critical (high) – Vulnerabilities in Microsoft Office Access ActiveX Controls Could Allow Remote Code Execution (982335)
MS10-045 – Important (medium) – Vulnerability in Microsoft Office Outlook Could Allow Remote Code Execution (978212)
Microsoft also released the usual updates and signatures for the
- Anti-Malware definitions for FCS and SE
- Malicious Software Removal Tool
- Outlook / Mail email junk filters
For more information on MS patches see,
Macintosh and Apple Software users
OS X 10.6.4iOS 4 – ISO Recommended Critical
Security Update 2010-004 (for OSX 10.5.8) – ISO Recommended Critical
iOS 4 (for iphone and ipod touch) – ISO Recommended Critical
iTunes 9.2 – ISO Recommended Critical
Safari 5.0 – ISO Recommended Critical
Java for Mac update 2 (for OSX 10.6) – ISO Recommended Critical
Java for Mac update 7 (for OSX 10.5) – ISO Recommended Critical
The popular distributions all released updates for their respective package repositories
Redhat, Fedora, Ubuntu, Debian, Gentoo, Slackware, Suse, etc.
As always, run your distro / package manager of choice on a regular basis.
More and more of the exploits are targeting web browsers. Regardless of what operating system you are running the web browser is the biggest open door into your system.
All the major browsers released updated and patched versions this month. Take a moment to verify that your browser is up to date.
Current browser versions:
IE – IE8 (8.0.6001.18702)
Firefox – 3.6.6 **new version
Safari – 5 (7533.16) **new version
Opera -10.60 (build 3445) **new version
Google Chrome – 5.0.375.99 **new version
Oracle released 59 critical patches.
APSB10-14 Security updates available for Adobe Flash Player
APSB10-15 Security updates available for Adobe Reader and Adobe Acrobat
Adobe Reader 9.3.3 ISO Recommended Critical
Adobe Acrobat 9.3.3 ISO Recommended Critical
Adobe Flash Player 10.1.53.64 ISO Recommended Critical
- – -
Happy patching and we’ll see you next month.
**All UT Arlington Windows based assets should be registered with the UTA domain and should receive critical MS patches automatically via SCCM. If your device is not registered or not receiving patches please contact the OIT HelpDesk at 2-2208.