Monthly Patches are out for Fortinet. New Alerts for OpenSSL, Dell, Google LTS ChromeOS, and Linux.
Splunk Quarterly Patches were pushed to today.
OpenSSL
OpenSSL released version 3.0.7, which patches two related vulnerabilities rated as High. Although originally rated Critical, it was determined the complexity to exploit the RCE vulnerability warranted a downgrade. Expect a ripple of product updates where OpenSSL is used.
More info. And here.
Juniper has published an out-of-cycle bulletin for OpenSSL. More info.
Node.js will publish security updates for OpenSSL. More info.
Note that with this type of widely reported software update that affects so many products, after this alert we will not report individual products that update for this vulnerability.
Dell EMC Cyber Recovery remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system. Dell rates this Critical.
More info.
Dell XC remediation is available for multiple security vulnerabilities that could be exploited by malicious users to compromise the affected system. Dell rates this High.
More info.
Fortinet Monthly Patches are out, with 16 bulletins, 6 rated High, 7 rated Medium, and 3 rated Low.
More info.
Google has updated the LTS channel of ChromeOS for several security fixes, all rated High.
More info.
SUSE has updated the kernel and OpenSSL. More info.
OpenSUSE has updated the kernel and OpenSSL. More info.
Red Hat has updated the kernel and OpenSSL. More info.
Oracle Linux has updated the kernel and OpenSSL. More info.
Ubuntu has updated OpenSSL. More info.
Gentoo Linux has updated OpenSSL. More info.
Comments