Greetings,

First this week, I would like to welcome a new Information Security Analyst to join the AusCERT coordination centre team: Olivia Swann. Olivia has previously worked as a Windows System Administrator and IT Project Manager and is a welcome addition to the team.

This week has also shown to be a rather nice week on the vulnerability front, with only a few choice morsels that I will call attention to. The first of those is the Ruby on Rails patch (ASB-2011.0104). It corrects a single cross site scripting vulnerability, but because it is a web application framework it will sit under the applications you may be concentrating on when patching.

The second is a new release for Joomla! (I always feel really excited when talking about Joomla! - my use of exclamation marks seems to go through the roof). They have released versions 1.5.25 and 1.7.3 (ASB-2011.0105).

Our third stop brings me to RealPlayer (ASB-2011.0106). While I have stopped using this program quite a while ago, I have been informed that there are still some businesses that use it for some special features it has. So if you are using it then there are now 19 more reasons to get the latest version.

Last but not least Novell Netware has patched a remote code execution vulnerability in their NFS server (ASB-2011.0107). So if you have any Netware NFS servers, let me wait while you patch them.

Finally for those who were worried about my health last Friday, rest assured that my soccer outing did not result in any major problems. Fingers crossed tonight is ok too!

I hope you all have a good weekend,
Richard