The much-covered Heartbleed vulnerability in OpenSSL, has been detected, exploited, patched, and fixed on every major website by now, so it’s the perfect time to change your passwords. Heartbleed is a security bug that created a vulnerability in OpenSSL’s Transport Layer Security (TLS) protocol implementation, specifically that of its heartbeat extension. The defect permitted up to 64 kilobytes […]
In response to two zero-day vulnerabilities, Adobe has released out-of-band emergency updates for their Flash Player. Since last fall, Flash has formally been on a regular update schedule like many large software projects, but InfoWorld reports that this emergency fix constitutes the first patch since the schedule was established. Adobe identifies the update as “critical” […]
Oracle has released a Java patch to address the major vulnerability reported a few days ago. Everyone is strongly recommended to install the update. Sophos’ Naked Security blog offers this article that includes information about the vulnerability and the patch. Oracle’s page for the the patch, Java 7 Update 11, includes technical details of the […]
