Greetings and a Happy New Year!

This week somebody set up us the bomb of post-Christmas bulletins.

A couple of noteworthy nasties included an actively exploited root compromise of the telnet daemon in krb5 (Kerberos) as well as hash collision weaknesses in a number of web programming languages. The latter prompted Microsoft to release an out-of-band bulletin for the .NET Framework.

The release of WordPress 3.3.1 addressed a cross-site scripting vulnerability, and HP provided code signing firmware for the remote firmware update bug.

Finally, beware of emails prompting you to install 2012 Anti-virus or PDF software!

Have a good one,
Olivia