Securezoo Cybersecurity Threat Center blog posts of new security updates and patches.
Google has released Chrome 108.0.5359.124 for Mac and Linux and 108.0.5359.124/.125 for Windows with a fixes for four High severity vulnerabilities. New security updates for ChromeOS, Chrome for Android, and Chrome for iOS were also published.
The Cybersecurity and Infrastructure Security Agency (CISA) has added six vulnerabilities to its Known Exploited Vulnerabilities Catalog, to include iOS, Microsoft, Fortinet, Citrix and Veeam vulnerabilities.
Samba has released software updates to fix four vulnerabilities in multiple Samba software products. Two of the issues are related to Kerberos Elevation of Privilege vulnerabilities and another a NetLogon flaw that Microsoft patched in November.
Drupal has patched two Moderately Critical vulnerabilities that affect multiple versions of Drupal Core.
Apple has released security updates for Apple iOS 16.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, Safari 16.2, and other products.
The Microsoft December 2022 Security Updates includes patches and advisories for 53 vulnerabilities, including seven Critical severity issues and one exploited in the wild.
Google has released its Android Security Bulletin for December 2022 with details of security vulnerabilities (four rated Critical severity) affecting Android devices.
Google has released Chrome 108.0.5359.94 for Mac and Linux and 108.0.5359.94/.95 for Windows with a fix for a High severity zero-day vulnerability (CVE-2022-4262) exploited in the wild.
The Mozilla Foundation has patched eight High risk vulnerabilities in Firefox 107, as well as a number of other bug fixes.
A security researcher has released proof-of-concept (PoC) exploit code for Microsoft Exchange ProxyNotShell vulnerabilities (CVE-2022-41040 and CVE-2022-41082).
