By: Jason Miller, Manager of Research and Development at VMware
Patching came to a quiet end in 2012 and 2013 is starting off with a bang. Here is a quick recap of the happenings in patch management this week:
On Wednesday, a new version of CDBurnerXP was released with version 184.108.40.20617. This new version is a non-security update. On Friday, Google released a non-security update for their Picasa program with version 220.127.116.11.
Microsoft announced their January 2013 Patch Tuesday Advance Notification. You can read my write up here on the upcoming Patch Tuesday. In addition to the seven Microsoft security bulletins being released next Tuesday, there are quite a few non-Microsoft patches being released on Patch Tuesday.
Adobe announced they will be releasing updates for their Adobe Reader and Adobe Acrobat programs (versions 9/10/11). These updates are rated as critical and are part of their quarterly update for Adobe Acrobat and Reader.
In addition, Mozilla is lining up to release updates as well for their products. You can expect updates for their Mozilla Firefox, Firefox ESR, Thunderbird, Thunderbird ESR and SeaMonkey products.
On Microsoft’s preannouncement page for upcoming non-security updates, they have listed Adobe Flash Player for Internet Explorer 10. With this in mind, expect updates from Adobe for Adobe Flash Player and Google Chrome on Patch Tuesday. With every Adobe Flash Player release, Microsoft and Google update their browsers to supply the latest version of the Flash Player program.
On the Microsoft Security Advisory front, Microsoft released a new security advisory on Thursday. Microsoft Security Advisory 2798897 addresses issues with fraudulent digital certificates. This security advisory places the offending certificates in the untrusted certificate store on systems. In June 2012, Microsoft released a tool that will run on systems and quickly moves revoked certificates to the untrusted certificate stores. This tool aids administrators that want an easy and quick way to update certificate issues Microsoft finds. This tool can be downloaded here. For those that do not want to use the tool, Microsoft has provided patches for this certificate issue that can be applied to systems.
Until Patch Tuesday, Happy Patching!
– Jason Miller
Interested in a free 30 day trial of VMware Go Pro for patch management, IT management, virtualization and more? Click here.