Security Updates | 2009-04-15

I track security updates for the following vendors: Apple, Cisco, FreeBSD, Microsoft, Red Hat, and Sun Microsystems. I chose these vendors based on my own needs for the networks and systems I manage. I’ve also found that updates from these vendors tend to catch the major updates necessary for common software applications. If you have other vendors you would like me to provide updates for, send me a message.

Microsoft Corporation

• Vulnerabilities in WordPad and Office Text Converters Could Allow Remote Code Execution (960477)
• Vulnerabilities in Windows HTTP Services Could Allow Remote Code Execution (960803)
• Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (961373)
• Cumulative Security Update for Internet Explorer (963027)
• Vulnerabilities in Microsoft Office Excel Could Cause Remote Code Execution (968557)
• Vulnerabilities in Windows Could Allow Elevation of Privilege (959454)
• Vulnerabilities in Microsoft ISA Server and Forefront Threat Management Gateway (Medium Business Edition) Could Cause Denial of Service (961759)
• Blended Threat Vulnerability in SearchPath Could Allow Elevation of Privilege (959426)

Red Hat, Inc.

• RHSA-2009:0350 Moderate: php security update
• RHSA-2009:0420 Moderate: ghostscript security update

Sun Microsystems, Inc.

• Multiple Security Vulnerabilities in Adobe Reader for Solaris 10 May Allow Execution of Arbitrary Code or Cause a Denial of Service (DoS) (Adobe Security Bulletin APSB09-04)