Weekly Patch and Update Summary for Week of October 7, 2016
By Kimberly Matsumoto on October 7, 2016
For all patches and updates listed below please use the appropriate updating methods for your system. It is advised that you patch and update your system as soon as possible.
Cisco
Cisco has released updates to address vulnerabilities found in multiple products. Some of these vulnerabilities may allow a remote attacker to gain control of a system.
List of Updates:
- Cisco-sa-20161005-nxaaa – Cisco NX-OS Software-Based Products Authentication, Authorization, and Accounting Bypass Vulnerability
- Cisco-sa-20161005-otv – Cisco Nexus 7000 and 7700 Series Switches Overlay Transport Virtualization Buffer Overflow Vulnerability
- Cisco-sa-20161005-bgp – Cisco NX-OS Border Gateway Protocol Denial of Service Vulnerability
- Cisco-sa-20161005-dhcp1 – Cisco NX-OS Software Crafted DHCPv4 Packet Denial of Service Vulnerability
- Cisco-sa-20161005-dhcp2 – Cisco NX-OS Software Malformed DHCPv4 Packet Denial of Service Vulnerability
VMWare
VMWare has released updates to address a vulnerability in Horizon View. This vulnerability may allow a remote attacker to gain access to sensitive information. For more information please see: VMWare Security Advisory VMSA-2016-0015
Ubuntu
Canonical has released many security updates for their operating system Ubuntu. For more information please see Ubuntu Security Notices.
List of Updates:
- USN-3091-1: Oxide vulnerabilities
- USN-3096-1: NTP vulnerabilities
- USN-3095-1: PHP vulnerabilities
- USN-3090-2: Pillow regresssion
- USN-3094-1: Systemd vulnerability