Oracle to release a Java update on Tuesday, June 18.

All indications are a big java update will be released on Tuesday, June 18. Please see additional details at the following URL  http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html Oracle Java SE Critical Patch Update Pre-Release Announcement – June 2013 Description This Critical Patch Update Pre-Release Announcement provides advance information about the Oracle Java SE Critical Patch Update for June 2013, …

Advance notice of June Microsoft patches – to be released on June 11.

Microsoft has just provided advance notice of the Operating System and application patches that are scheduled to be released on Tuesday, June 11. The details are available at http://technet.microsoft.com/en-us/security/bulletin/ms13-jun . There are a total of five patches to be released. Only one of which is identified as CRITICAL (and the critical designation is only assigned …

Advance notice of May Microsoft patches – to be released on Tuesday, May 14

Microsoft has just provided advance notice of the Operating System and application patches that are scheduled to be released on Tuesday, May 14. The details are available at http://technet.microsoft.com/en-us/security/bulletin/ms13-may   There are a total of ten patches. Two of which are identified as CRITICAL for workstation operating systems and both of which apply to all current …

Advance notice of patches to be released by Microsoft for April – to be released on April 9

Microsoft has just announced the patches that are scheduled to be released on Tuesday, April 9.  The information is available at http://technet.microsoft.com/en-us/security/bulletin/ms13-apr . A total of 9 patches are scheduled to be released. Two of the patches are classified as CRITICAL and the remaining 7 are classified as IMPORTANT for workstation OSs and MODERATE for …

Advance notice of March Microsoft patches – scheduled to be released on March 12.

Microsoft has just provided advance notice of the patches that are scheduled to be released on Tuesday, March 12. The information is available at – http://technet.microsoft.com/en-us/security/bulletin/ms13-mar  There are a total of 7 patches, four of which are designated as CRITICAL. The remaining 3 patches are designated as IMPORTANT. At least one patch with a CRITICAL …

Zero day vulnerability for Adobe Acrobat and Reader currently being exploited – Feb 14

On February 12, several sources identified a zero-day vulnerability for all versions Adobe Acrobat and Reader that was being actively exploited.  As of February 14, Adobe had yet to provide details on when a patch was expected to be released. Mitigation practices provided by the vendor consisted of turning on the Protected View feature for …

Advance notice of February 2013 Microsoft patches – to be released on Feb 12.

Microsoft has just provided advance notice of the patches to be released on Tuesday, February 12. Details are available at http://technet.microsoft.com/en-us/security/bulletin/ms13-feb  Its safe to say, it will be a significant patch month, most definitely for workstations but some also apply to servers. From what I am reading there are a total of 12 bulletins that …

Java version 1.7.13 released on February 1 – out of band patch to address zero day exploit

I was just made aware that Oracle released Java version 7.13 today. No resources I was aware of provided any advance notification.  As version 7.11 has vulnerabilities that are currently being exploited via rootkits that are commercially available the new version should be deployed as rapidly as possible. It can be downloaded from http://java.com/en/download/index.jsp I …

Advance notice of Microsoft Patches to be released on January 8, 2013 – and other updates for Jan

On Thursday, January 3, Microsoft provided advance notice of the patches that are scheduled to be released on Tuesday, January 8, 2013. The details as they are currently known are available at http://technet.microsoft.com/en-us/security/bulletin/ms13-jan   There are a total of seven bulletins scheduled to be released that include two patches designated as CRITICAL and five designated as …

Fixit update issued by Microsoft for zero day Internet Explorer vulnerability – out of band patch released on Jan14

Microsoft has released a fix it update for the zero day vulnerability that affects Internet Explorer versions 6-8.  All versions of Windows XP are potentially affected by the vulnerability as they cannot use any version of Internet Explorer later than version 8.  As malicious code has been identified in the wild, it is suggested that …