Weekly Patch and Update Summary for Week of September 16, 2016

By Kimberly Matsumoto on September 16, 2016

For all patches and updates listed below please use the appropriate updating methods for your system. It is advised that you patch and update your system as soon as possible.

Adobe

Adobe has released updates to address vulnerabilities in multiple products. Some of these vulnerabilities may allow a remote attacker to gain control of a system.

List of Updates:

Microsoft

Microsoft has released their September 2016 Security Bulletin which included many security updates. These updates address vulnerabilities in Microsoft software. Some of these vulnerabilities may allow a remote attacker to gain control of a system. For more information, please see the Microsoft September 2016 Security Bulletin Summary.

List of Updates:

MS16-105 Cumulative Security Update for Microsoft Edge (3183043)
MS16-106 Security Update for Microsoft Graphics Component (3185848)
MS16-107 Security Update for Microsoft Office (3185852)
MS16-108 Security Update for Microsoft Exchange Server (3185883)
MS16-109 Security Update for Silverlight (3182373)
MS16-110 Security Update for Microsoft Windows (3178467)
MS16-111 Security Update for Windows Kernel (3186973)
MS16-112 Security Update for Windows Lock Screen (3178469)
MS16-113 Security Update for Windows Secure Kernel Mode (3185876)
MS16-114 Security Update for Windows SMBv1 Server (3185879)
MS16-115 Security Update for Microsoft Windows PDF Library (3188733)
MS16-116 Security Update in OLE Automation for VBScript Scripting Engine (3188724)
MS16-117 Security Update for Adobe Flash Player (3188128)

Apple

Apple has released security updates for vulnerabilities found in watchOS, Xcode and iOS. Some of these vulnerabilities may allow a remote attacker to gain control of a system.

List of Updates:

watchOS 3 – All Apple Watch models
Xcode 8 – OS X El Capitan v10.11.5 and later
iOS 10.0.1 – iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation and later
iOS 10 – iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation and later

Google

Google has released Chrome version 53.0.2785.113. This addresses vulnerabilities found in Windows, Mac and Linux. Some of these vulnerabilities may allow a remote attacker to take control of a system. For more information please see: Google Chrome Releases

Cisco

Cisco has released updates for multiple products to address security vulnerabilities that may allow a remote attacker to gain control of a system. It is advised that users update any systems that apply.

List of Updates:

Cisco-sa-20160914-wsa Cisco Web Security Appliance HTTP Load Denial of Service Vulnerability
Cisco-sa-20160914-wms Cisco WebEx Meetings Server Denial of Service Vulnerability
Cisco-sa-20160914-wem Cisco WebEx Meetings Server Remote Command Execution Vulnerability
Cisco-sa-20160914-ucs Cisco Unified Computing System Command Line Interface Privilege Escalation Vulnerability
Cisco-sa-20160914-ioxfd Cisco Fog Director for IOx Arbitrary File Write Vulnerability
Cisco-sa-20160914-iosxr Cisco IOS XR for NCS6000 Series Devices OSPF Packet Processing Denial of Service Vulnerability
Cisco-sa-20160914-ios-xe Cisco IOS and IOS XE Software Data in Motion Denial of Service Vulnerability
Cisco-sa-20160914-ios Cisco IOS and IOS XE Software IOx Local Manager Cross-Site Scripting Vulnerability
Cisco-sa-20160914-crs Cisco Carrier Routing System IPv6 Denial of Service Vulnerability

VMWare

VMWare has released an update for security vulnerabilities found in vSphere Hypervisor (ESXi), Workstation Pro, Workstation Player, Fusion, and Tools. Some of these vulnerabilities may allow a remote attacker to gain control of a system. For more information please see: VMWare Security Advisory VMSA-2016-0014

Ubuntu

Canonical has released many security updates for their operating system Ubuntu. For more information please see Ubuntu Security Notices.

List of Updates: