Weekly Patch and Update Summary for Week of September 16, 2016
By Kimberly Matsumoto on September 16, 2016
For all patches and updates listed below please use the appropriate updating methods for your system. It is advised that you patch and update your system as soon as possible.
Adobe
Adobe has released updates to address vulnerabilities in multiple products. Some of these vulnerabilities may allow a remote attacker to gain control of a system.
List of Updates:
Microsoft
Microsoft has released their September 2016 Security Bulletin which included many security updates. These updates address vulnerabilities in Microsoft software. Some of these vulnerabilities may allow a remote attacker to gain control of a system. For more information, please see the Microsoft September 2016 Security Bulletin Summary.
List of Updates:
- MS16-105 Cumulative Security Update for Microsoft Edge (3183043)
- MS16-106 Security Update for Microsoft Graphics Component (3185848)
- MS16-107 Security Update for Microsoft Office (3185852)
- MS16-108 Security Update for Microsoft Exchange Server (3185883)
- MS16-109 Security Update for Silverlight (3182373)
- MS16-110 Security Update for Microsoft Windows (3178467)
- MS16-111 Security Update for Windows Kernel (3186973)
- MS16-112 Security Update for Windows Lock Screen (3178469)
- MS16-113 Security Update for Windows Secure Kernel Mode (3185876)
- MS16-114 Security Update for Windows SMBv1 Server (3185879)
- MS16-115 Security Update for Microsoft Windows PDF Library (3188733)
- MS16-116 Security Update in OLE Automation for VBScript Scripting Engine (3188724)
- MS16-117 Security Update for Adobe Flash Player (3188128)
Apple
Apple has released security updates for vulnerabilities found in watchOS, Xcode and iOS. Some of these vulnerabilities may allow a remote attacker to gain control of a system.
List of Updates:
- watchOS 3 – All Apple Watch models
- Xcode 8 – OS X El Capitan v10.11.5 and later
- iOS 10.0.1 – iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation and later
- iOS 10 – iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation and later
Google has released Chrome version 53.0.2785.113. This addresses vulnerabilities found in Windows, Mac and Linux. Some of these vulnerabilities may allow a remote attacker to take control of a system. For more information please see: Google Chrome Releases
Cisco
Cisco has released updates for multiple products to address security vulnerabilities that may allow a remote attacker to gain control of a system. It is advised that users update any systems that apply.
List of Updates:
- Cisco-sa-20160914-wsa Cisco Web Security Appliance HTTP Load Denial of Service Vulnerability
- Cisco-sa-20160914-wms Cisco WebEx Meetings Server Denial of Service Vulnerability
- Cisco-sa-20160914-wem Cisco WebEx Meetings Server Remote Command Execution Vulnerability
- Cisco-sa-20160914-ucs Cisco Unified Computing System Command Line Interface Privilege Escalation Vulnerability
- Cisco-sa-20160914-ioxfd Cisco Fog Director for IOx Arbitrary File Write Vulnerability
- Cisco-sa-20160914-iosxr Cisco IOS XR for NCS6000 Series Devices OSPF Packet Processing Denial of Service Vulnerability
- Cisco-sa-20160914-ios-xe Cisco IOS and IOS XE Software Data in Motion Denial of Service Vulnerability
- Cisco-sa-20160914-ios Cisco IOS and IOS XE Software IOx Local Manager Cross-Site Scripting Vulnerability
- Cisco-sa-20160914-crs Cisco Carrier Routing System IPv6 Denial of Service Vulnerability
VMWare
VMWare has released an update for security vulnerabilities found in vSphere Hypervisor (ESXi), Workstation Pro, Workstation Player, Fusion, and Tools. Some of these vulnerabilities may allow a remote attacker to gain control of a system. For more information please see: VMWare Security Advisory VMSA-2016-0014
Ubuntu
Canonical has released many security updates for their operating system Ubuntu. For more information please see Ubuntu Security Notices.
List of Updates:
- USN-3080-1: Python Imaging Library vulnerabilities
- USN-3058-1: Oxide vulnerabilities
- USN-3079-1: WebKitGTK+ vulnerabilities
- USN-3078-1: MySQL vulnerability
- USN-3077-1: OpenJDK 6 vulnerabilities
-
Weekly Patch and Update Summary for Week of February 17, 2017
Weekly Patch and Update Summary for Week of February 17, 2017
2/21/2017 -
Weekly Patch and Update Summary for Week of November 18, 2016
Weekly Patch and Update Summary for Week of November 18, 2016
11/17/2016 -
Weekly Patch and Update Summary for Week of November 11, 2016
Weekly Patch and Update Summary for Week of November 11, 2016
11/10/2016