Blogs

PHP 5.3.5 / 5.2.17: Floating-Point bug fixed (32bit versions only)

http://www.h-online.com/security/news/item/PHP-5-3-5-5-2-17-Floating-Poi...

There is a vulnerability in previous versions of PHP which affects 32bit
machines. If exploited, it could result in a DoS attack by crashing Apache.

It is recommended that updates be applied when available. A test script
to see if you are vulnerable can be found here.

VMSA-2010-0018: VMware hosted products and ESX patches resolve multiple security issues

http://www.vmware.com/security/advisories/VMSA-2010-0018.html

"1. Summary

VMware hosted products and ESX patches resolve multiple security
issues.

2. Relevant releases

VMware Workstation 7.1.1 and earlier,
VMware Workstation 6.5.4 and earlier,
VMware Player 3.1.1 and earlier,
VMware Player 2.5.4 and earlier,

VMware Fusion 3.1.1 and earlier,

VMSA-2010-0018: VMware hosted products and ESX patches resolve multiple security issues

http://www.vmware.com/security/advisories/VMSA-2010-0018.html

"1. Summary

VMware hosted products and ESX patches resolve multiple security
issues.

2. Relevant releases

VMware Workstation 7.1.1 and earlier,
VMware Workstation 6.5.4 and earlier,
VMware Player 3.1.1 and earlier,
VMware Player 2.5.4 and earlier,

VMware Fusion 3.1.1 and earlier,

APPLE-SA-2010-11-22-1 iOS 4.2 for iPhone, iPod Touch, iPad

http://support.apple.com/kb/HT4456

Apple has released over 80 patches in its latest update of iOS, the
operating system for its iPhone, iPod Touch, iPad devices.
Vulnerabilities mitigated in this release include: arbitrary code
execution, unexpected application termination and unexpected system
shutdown.

It is recommended that users of these devices update to the latest
version of iOS to avoid exploitation.

Thanks,
Brian

APPLE-SA-2010-11-22-1 iOS 4.2 for iPhone, iPod Touch, iPad

http://support.apple.com/kb/HT4456

Apple has released over 80 patches in its latest update of iOS, the
operating system for its iPhone, iPod Touch, iPad devices.
Vulnerabilities mitigated in this release include: arbitrary code
execution, unexpected application termination and unexpected system
shutdown.

It is recommended that users of these devices update to the latest
version of iOS to avoid exploitation.

Thanks,
Brian

APPLE-SA-2010-11-18-1 Safari 5.0.3 and Safari 4.1.3

http://support.apple.com/kb/HT4455
http://support.apple.com/kb/HT4455

Safari 5.0.3 and Safari 4.1.3 is now available and fix various security
vulnerabilities including: unexpected application termination, arbitrary
code execution, surreptitious user tracking, disclosure of image data,
location bar address spoofing, location bar arbitrary history insertion,
undesired DNS prefetching.

Pages