Submitted by securityadmin on
http://googlechromereleases.blogspot.com/2011/06/chrome-stable-release.html
Google released a new version of Chrome addressing 14 unique CVEs. The
new version also introduces several new security and privacy features
including new Safe Browsing protections and the ability to manage and
delete Flash cookies from inside Chrome.
Submitted by securityadmin on
Oracle released a CPU advisory addressing 17 security
vulnerabilities in Java SE. Nine of the vulnerabilities were rated at
10.0 on the CVSS scale (10.0 being the most severe scoring). Only one of
the remaining vulnerabilities was rated below 5.0.
Java users are recommended to upgrade to Java 6 Update 26 (v1.6.0.26)
as soon as possible.
Submitted by securityadmin on
http://www.h-online.com/security/news/item/Critical-hole-in-the-Exim-
Mail-server-closed-1239543.html
Submitted by securityadmin on
http://www.h-online.com/security/news/item/Another-DoS-fix-for-Apache-
HTTP-server-1247712.html
Submitted by securityadmin on
http://www.vmware.com/security/advisories/VMSA-2011-0009.html
a. VMware vmkernel third party e1000 Driver Packet Filter Bypass
There is an issue in the e1000 Linux driver for Intel PRO/1000 adapters
that allows a remote attacker to bypass packet filters.
b. ESX third party update for Service Console kernel
IPv4 Remote Denial of Service An remote attacker can achieve a denial of
service via an issue in the kernel IPv4 code.
Submitted by securityadmin on
http://www.h-online.com/security/news/item/Critical-hole-in-the-Exim-
Mail-server-closed-1239543.html
Submitted by securityadmin on
http://www.h-online.com/security/news/item/Another-DoS-fix-for-Apache-
HTTP-server-1247712.html
Submitted by securityadmin on
http://www.vmware.com/security/advisories/VMSA-2011-0009.html
a. VMware vmkernel third party e1000 Driver Packet Filter Bypass
There is an issue in the e1000 Linux driver for Intel PRO/1000 adapters
that allows a remote attacker to bypass packet filters.
b. ESX third party update for Service Console kernel
IPv4 Remote Denial of Service An remote attacker can achieve a denial of
service via an issue in the kernel IPv4 code.
Submitted by securityadmin on
http://googlechromereleases.blogspot.com/2011/05/stable-channel-update_2...
Two Critical, one High and one Low security bugs were fixed in the
latest stable release of the Chrome Web Browser.
"The Stable channel has been updated to 11.0.696.71 for the Macintosh,
Windows, Linux and Chrome Frame platforms"
Submitted by securityadmin on
https://codex.wordpress.org/Version_3.1.3
The following security issues were fixed in this version.