PHP patches critical CGI vulnerability

The PHP Group released PHP 5.4.3 and PHP 5.3.13 on Tuesday to address two remote code execution vulnerabilities, one of which is being actively exploited by hackers. “The releases complete a fix for a vulnerability in CGI-based setups (CVE-2012-2311),” the PHP developers said in the release notes. Additionally, PHP 5.4.3…

read more

Oracle to issue 88 security patches next week

Oracle is planning to release 88 patches on Tuesday, covering vulnerabilities affecting a wide array of its products, according to a pre-release announcement posted to its website on Thursday. Tuesday’s scheduled patch release is larger than Oracle’s last quarterly critical patch update in January, when it released 78 fixes. The…

read more

Java update for OS X patches Flashback malware exploit

Following the recent Flashback malware developments for OS X where unpatched vulnerabilities in the latest Java runtime for OS X were being exploited, Apple has issued an update that brings Java up-to-date and patches these vulnerabilities. The patch is available via Software Update for systems that have Java installed, but…

read more

Google patches nine bugs in Chrome 17

Google has patched nine vulnerabilities in Chrome in the sixth security update to Chrome 17, the edition that launched on February 8. The update was the first since the Chrome security team issued a pair of quick fixes during the “Pwnium” hacking event held earlier this month at the CanSecWest…

read more