boot13A new version of Google’s Chrome web browser was announced today. Version 24.0.1312.52 fixes a number of security vulnerabilities, and improves speed and stability. It also includes the security fixes for Flash recently announced by Adobe. The version of Flash embedded in this new version of Chrome is 11.5.31.137.
Category Archives: Patches and updates
Firefox 18 released
Firefox 18 fixes several security vulnerabilities, as well as a truly massive number of bugs.
The release notes for Firefox 18.0 cover the highlights. Notable changes include faster Javascript and better image quality, as well as performance improvements in relation to tabs and startup.
Adobe announces patches for Reader and Flash
As expected, Adobe has released new versions of its Acrobat/Reader software to coincide with Microsoft’s Patch Tuesday for January 2013. Adobe also announced new versions of Flash today.
An Adobe Reader bulletin identifies new versions for the 9, 10 and 11 series of Reader software as 9.5.3, 10.1.5, and 11.0.1 respectively. Anyone who uses Adobe Acrobat/Reader software is strongly encouraged to install the appropriate new version. As usual, the new versions address security and crashing issues.
A Flash bulletin identifies the new version of Flash as 11.5.502.146. This version is for all web browsers except Chrome and Internet Explorer 10, which now use embedded Flash code. The most recent version of Flash in Google Chrome at this time is 11.5.31.137. The most recent version in Internet Explorer 10 is 11.3.378.5. As usual, the new versions address security and crashing issues.
Patch Tuesday for January 2013
Patch Tuesday comes early this month, since January started on a Tuesday. There are seven bulletins, addressing twelve issues in Windows, admin software and developer tools.
January 2013 bulletins
- MS13 – 001 (Windows – Critical)
- MS13 – 002 (Windows – Critical)
- MS13 – 003
- MS13 – 004 (.NET Framework)
- MS13 – 005 (Windows)
- MS13 – 006 (Windows)
- MS13 – 007 (Windows)
Advance warning of updates for Adobe Acrobat and Reader
Adobe is planning to release security updates for its PDF reader and authoring software on January 8, 2013. Security advisory APSB13-02 has all the details.
Advance notification for January 2013 Patch Tuesday
2013’s first Patch Tuesday arrives at 10am on January 8. This month will see seven bulletins, addressing a total of twelve vulnerabilities in Windows, Office, Microsoft developer tools and server software. Two of the bulletins are rated Critical. You can find all the details in the advance notification bulletin.
Flash Player fix for Internet Explorer 10
The Flash vulnerability reported on December 11 has finally been fixed in Internet Explorer 10.
Microsoft chose not to use the regular Flash plugin in Internet Explorer 10, deciding instead to integrate the player into the IE10 code. As a result, any time the Flash player is updated, Microsoft must make corresponding changes to IE10. Hence the delay in producing the patch for IE10. Google now does the same thing with their Chrome browser, but they tend to make the required changes much more quickly.
Fix for Internet Explorer 6/7/8 now available
Microsoft has issued a special “Fix It” patch for the recently-discovered vulnerabilities in older versions of Internet Explorer.
The original security advisory has been updated to include a link to the fix.
Anyone still using Internet Explorer 6, 7 or 8 should install the fix or stop using IE immediately.
Update 2013-Jan-05: According to the Internet Storm Center, the temporary workaround provided by this Fix-It from Microsoft has already been rendered ineffective by means of a bypass.
Internet Explorer 6, 7 and 8 vulnerable to new exploit
A new exploit, targeted at users of older versions of Internet Explorer, recently surfaced. IE 9 and 10 are not vulnerable to this exploit.
Microsoft is working on a patch, but until it’s available, anyone using Internet Explorer 6, 7 or 8 should exercise extreme caution when browsing the web, or – better yet – switch to a different browser such as Firefox, Opera or Chrome.
Unfortunately for anyone still using Windows XP, including a large number of corporate users, recent versions of IE (9 and 10) don’t run on that version of Windows. XP users are strongly encouraged to stop using Internet Explorer.
Details:
Opera version 12.12 released
A new version of Opera was made available today. Version 12.12 fixes a few security issues and other minor bugs.