Apple Releases Security Update for tvOS

Original release date: January 25, 2016 Apple has released a security update for tvOS to address multiple vulnerabilities. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Apple security update for tvOS 9.1.1 Apple TV (4th generation) and Read more about Apple Releases Security Update for tvOS[…]

ISC Releases Security Updates for BIND

Original release date: January 19, 2016 The Internet Systems Consortium (ISC) has released security updates to address vulnerabilities in BIND. Exploitation of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition. Available updates include: BIND 9 version 9.9.8-P3 BIND 9 version 9.10.3-P3 BIND 9 version 9.9.8-S4 Users and administrators are encouraged to Read more about ISC Releases Security Updates for BIND[…]

Information Security

Linux Kernel Vulnerability

Original release date: January 19, 2016 US-CERT is aware of a Linux kernel vulnerability affecting Linux PCs and servers and Android-based devices. Exploitation of this vulnerability may allow an attacker to take control of an affected system. US-CERT recommends that users and administrators review the Redhat Security Blog and the Debian Security Bug Tracker for Read more about Linux Kernel Vulnerability[…]

Apple Releases Security Updates for iOS, OS X El Capitan, and Safari

Original release date: January 19, 2016 Apple has released security updates for iOS, OS X El Capitan, and Safari to address multiple vulnerabilities. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Available updates include: iOS 9.2.1 for iPhone 4s and later, iPod touch (5th generation) Read more about Apple Releases Security Updates for iOS, OS X El Capitan, and Safari[…]

Oracle Releases Security Bulletin

Original release date: January 19, 2016 Oracle has released its Critical Patch Update for January 2016 to address 248 vulnerabilities across multiple products. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review the Oracle January 2016 Critical Patch Update Read more about Oracle Releases Security Bulletin[…]

IRS Releases Ninth Security Tip

Original release date: January 19, 2016 The Internal Revenue Service (IRS) has released the ninth in a series of tips intended to help the public protect personal and financial data online and at home. This tip describes new procedures taken by the IRS, state governments, and the tax industry to provide a safer, more secure Read more about IRS Releases Ninth Security Tip[…]

OpenSSH Client Vulnerability

Original release date: January 14, 2016 OpenSSH version 7.1p2 has been released to address vulnerabilities in versions 5.4 through 7.1p1. Exploitation of one of these vulnerabilities may allow a remote attacker to obtain sensitive information from an affected system. Users and administrators are encouraged to review the OpenSSH Release Notes and Vulnerability Note VU#456088 and Read more about OpenSSH Client Vulnerability[…]

Information Security

Cisco Releases Security Updates

Original release date: January 13, 2016 Cisco has released security updates to address vulnerabilities in Wireless LAN Controller software, Identity Services Engine software, and Aironet 1800 Series Access Points. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected device. US-CERT encourages users and administrators to review the Read more about Cisco Releases Security Updates[…]

Information Security

ISC Releases Security Updates

Original release date: January 12, 2016 Internet Systems Consortium (ISC) has released security updates to address a vulnerability in the ISC Dynamic Host Configuration Protocol (DHCP) software. Exploitation of this vulnerability may allow a remote attacker to cause a denial-of-service condition. Available updates include: DHCP version 4.1-ESV-R12-P1 DHCP version 4.3.3-P1 Users and administrators are encouraged Read more about ISC Releases Security Updates[…]

Microsoft Releases January 2016 Security Bulletin

Original release date: January 12, 2016 Microsoft has released nine updates to address vulnerabilities in Microsoft software. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review Microsoft Security Bulletins MS16-001 through MS16-010 and apply the necessary updates. This product Read more about Microsoft Releases January 2016 Security Bulletin[…]