Date: 06 January 2012
Click here for printable version
Greetings and a Happy New Year!
This week somebody set up us the bomb of post-Christmas bulletins.
A couple of noteworthy nasties included an actively exploited root compromise of the telnet daemon in krb5 (Kerberos) as well as hash collision weaknesses in a number of web programming languages. The latter prompted Microsoft to release an out-of-band bulletin for the .NET Framework.
The release of WordPress 3.3.1 addressed a cross-site scripting vulnerability, and HP provided code signing firmware for the remote firmware update bug.
Finally, beware of emails prompting you to install 2012 Anti-virus or PDF software!
Have a good one,