Thursday, February 21, 2013

Updates to know about (Wed, Feb 20th)

from SANS Internet Storm Center, InfoCON: green
via SysAdmin
Update Palooza, (Wed, Feb 20th):


Adobe Acrobat Reader 11.0.02 was published today as a fix for CVE-2013-0640 and CVE-2013-0641. More information at

Wireshark 1.9.0 was published today. Its an experimental release for testing new features for the upcoming 1.10 version.


More updates arrived:

Thunderbird 17.03 arrived yesterday. It fixes 8 security vulnerabilities.

Apple released yesterday iOS 6.1.2, which can be downloaded fast as it is small (12.8 MB). So far, this update seems to be only related with a bug on echange calendars that increases network utilization causing battery drain. Better to have last version installed as apple does not always list in a detailed way all the fixes contained in an operating system update.

Manuel Humberto Santander Pelez

SANS Internet Storm Center - Handler



e-mail: msantand at isc dot sans dot org


If you are easily confused like me, you may appreciate this quick summary as to the different updates released the last couple of days:

Oracle Java:

Java 7 Update 15

Java 6 Update 41


Firefox 19


(in addition to Apples Java update to the versions shown above)



Flash Player Windows 7 and earlier 11.6.602.168 (Windows 8 and OS X is still use 167)

Acrobat/Reader 11.0.02 (went live on Adobes FTP server Wed. 20th morning)

Probably the most dangerous thing you can do when applying patches is to rush. You may not only end up with a broken system, but worse, the patch may not be applied correctly. Take the time to test that you are all up to date. Encourage your coworkers and relatives to visit to test if all plugins are installed correctly.

(we may update this diary for a day or two)


Johannes B. Ullrich, Ph.D.

SANS Technology Institute


(c) SANS Internet Storm Center. Creative Commons Attribution-Noncommercial 3.0 United States License.

No comments:

Post a Comment