Security Updates | 2009-05-29

I track security updates for the following vendors: Apple, Cisco, FreeBSD, Microsoft, Red Hat, and Sun Microsystems. I chose these vendors based on my own needs for the networks and systems I manage. I’ve also found that updates from these vendors tend to catch the major updates necessary for common software applications. If you have other vendors you would like me to provide updates for, send me a message.

Microsoft Corporation

• Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (931832)
• Vulnerabilities in Microsoft Exchange Could Allow Remote Code Execution (959239)
• Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution

Red Hat, Inc.

• RHSA-2009:0329 Important: freetype security update
• RHSA-2009:1059 Important: pidgin security update
• RHSA-2009:1065 Moderate: rhpki-ra security update
• RHSA-2009:1066 Important: squirrelmail security update
• RHSA-2009:1067 Moderate: Red Hat Application Stack v2.3 security and enhancement update
• RHSA-2009:1075 Moderate: httpd security update

Sun Microsystems, Inc.

• A Security Vulnerability in the Solaris Secure Digital Slot Driver (sdhost(7D)) May Allow Corruption of Kernel Memory and Memory Card Contents
• Security Vulnerability in Solaris libpng(3) May Allow Denial of Service (DoS) or Privilege Escalation