Alerts

[AplusWebMaster]

FYI...

WordPress 3.7.1 - Maintenance Release
- https://wordpress.org/news/2013/10/wordpress-3-7-1/
Oct 29, 2013 - "WordPress 3.7.1 is now available. This maintenance release addresses 11 bugs in WordPress 3.7 ..."

Changelog
- http://core.trac.wordpress.org/log/b...5914&rev=25986

- http://core.trac.wordpress.org/query?milestone=3.7.1

[AplusWebMaster]

FYI...

OS X Mavericks upgr. destroys data, reports WD
Issues extend to external hard drives, as well as eSATA- or Thunderbolt-based peripherals from other vendors
- http://www.infoworld.com/t/storage/o...digital-230100
Nov 04, 2013

[AplusWebMaster]

FYI...

Thunderbird 24.2 released

- https://www.mozilla.org/en-US/thunde.../releasenotes/
Dec 10, 2013

Security Advisories
- https://www.mozilla.org/security/kno...hunderbird24.2
Fixed in Thunderbird 24.2
MFSA 2013-117 Mis-issued ANSSI/DCSSI certificate
MFSA 2013-116 JPEG information leak
MFSA 2013-115 GetElementIC typed array stubs can be generated outside observed typesets
MFSA 2013-114 Use-after-free in synthetic mouse movement
MFSA 2013-113 Trust settings for built-in roots ignored during EV certificate validation
MFSA 2013-111 Segmentation violation when replacing ordered list elements
MFSA 2013-109 Use-after-free during Table Editing
MFSA 2013-108 Use-after-free in event listeners
MFSA 2013-104 Miscellaneous memory safety hazards (rv:26.0 / rv:24.2)

Automated Updates: https://support.mozillamessaging.com...ng-thunderbird
Manual check: Go to >Help >About Thunderbird

Download: https://www.mozilla.org/thunderbird/all.html
___

- https://secunia.com/advisories/56002/
Release Date: 2013-12-10
Criticality: Highly Critical
Where: From remote
Impact: Unknown, Security Bypass, Cross Site Scripting, Exposure of sensitive information, System access
CVE Reference(s): CVE-2013-5609, CVE-2013-5610, CVE-2013-5612, CVE-2013-5613, CVE-2013-5614, CVE-2013-5615, CVE-2013-5616, CVE-2013-5618, CVE-2013-5619, CVE-2013-6629, CVE-2013-6630, CVE-2013-6671, CVE-2013-6672, CVE-2013-6673
Solution: Update to a fixed version.

[AplusWebMaster]

FYI...

WordPress v3.8 released
- http://wordpress.org/download/
Dec 12, 2013 - "The latest stable release of WordPress (Version 3 .8 ) is available..."

- https://wordpress.org/news/2013/12/parker/

- http://core.trac.wordpress.org/log/branches/3.8

- http://core.trac.wordpress.org/query?milestone=3.8

[AplusWebMaster]

FYI...

Safari 7.0.1 released
- https://secunia.com/advisories/56122/
Release Date: 2013-12-17
Criticality: Highly Critical
Where: From remote
Impact: Security Bypass, System access
CVE Reference(s): CVE-2013-2909, CVE-2013-5195, CVE-2013-5196, CVE-2013-5197, CVE-2013-5198,
CVE-2013-5199, CVE-2013-5225, CVE-2013-5227, CVE-2013-5228
Solution: Update to version 6.1.1. or 7.0.1.
Original Advisory: APPLE-SA-2013-12-16-1:
http://support.apple.com/kb/HT6082
___

OSX 10.9.1 released
- https://secunia.com/advisories/56144/
Release Date: 2013-12-17
Criticality: Highly Critical
Where: From remote
Impact: Security Bypass, System access
CVE Reference(s): CVE-2013-2909, CVE-2013-5195, CVE-2013-5196, CVE-2013-5197, CVE-2013-5198,
CVE-2013-5199, CVE-2013-5225, CVE-2013-5227, CVE-2013-5228
For more information: https://secunia.com/SA56122/
... security issue and vulnerabilities are reported in version 10.9.
Solution: Update to version 10.9.1.
Original Advisory: APPLE-SA-2013-12-16-2:
http://support.apple.com/kb/HT6084

[AplusWebMaster]

FYI...

IrfanView 4.37 released
- https://secunia.com/advisories/54959/
Release Date: 2013-12-17
Criticality: Highly Critical
Where: From remote
Impact: System access
CVE Reference: https://cve.mitre.org/cgi-bin/cvenam...=CVE-2013-5351
... vulnerability is confirmed in version 4.36. Prior versions may also be affected.
Solution: Update to version 4.37.
Original Advisory: IrfanView:
- http://www.irfanview.com/main_history.htm
Version 4.37 ( - CURRENT VERSION - ) (Release date: 2013-12-16)

- https://secunia.com/advisories/54444/
Release Date: 2013-12-17
Criticality: Highly Critical
Where: From remote
Impact: System access
CVE Reference(s): CVE-2013-3944, CVE-2013-3945, CVE-2013-3946
... vulnerabilities are confirmed in version 4.36. Prior versions may also be affected.
Solution: Updated to version 4.37.
Original Advisory: IrfanView:
- http://www.irfanview.com/plugins.htm
The current PlugIns version is: 4.37
___

- http://www.irfanview.com/main_download_engl.htm

Alternative download sites:
- http://www.majorgeeks.com/files/details/irfanview.html

- http://www.majorgeeks.com/files/deta...w_plugins.html

[AplusWebMaster]

FYI...

Winamp ends - 12.20.2013 ...
- http://www.winamp.com/media-player/en
"Winamp.com and associated web services will no longer be available past December 20, 2013. Additionally, Winamp Media players will no longer be available for download. Please download the latest version before that date. See release notes for latest improvements to this last release. Thanks for supporting the Winamp community for over 15 years."

[AplusWebMaster]

FYI...

Google Picasa 3.9.0 Build 137.69 released
- https://secunia.com/advisories/55555/
Release Date: 2013-12-20
Criticality: Highly Critical
Where: From remote
Impact: System access
CVE Reference(s): CVE-2013-5349, CVE-2013-5357, CVE-2013-5358, CVE-2013-5359
... vulnerabilities are confirmed in version 3.9.0 Build 136.20 running on Windows and reported in versions -prior- to 3.9.0 Build 137.69 running on Mac. Prior versions may also be affected.
Solution: Update to version 3.9.0 Build 137.69 or later.
Original Advisory: Google Picasa:
- https://support.google.com/picasa/answer/53209
Secunia Research:
- http://secunia.com/secunia_research/2013-14/

- http://www.securitytracker.com/id/1029527
CVE Reference: CVE-2013-5349, CVE-2013-5357, CVE-2013-5358, CVE-2013-5359
Dec 20 2013
Impact: Execution of arbitrary code via network, User access via network
Fix Available: Yes Vendor Confirmed: Yes
Version(s): 3.9.0 Build 136.20 for Windows; possibly other versions
Solution: The vendor has issued a fix (3.6 Build 137.69 for Windows, 3.9.137.119 for Mac).
The vendor's advisory is available at:
- https://support.google.com/picasa/answer/53209

[AplusWebMaster]

FYI...

iTunes 11.1.4 released
- https://support.apple.com/kb/HT6001
Jan 22, 2014
CVE-2011-3102, CVE-2012-0841, CVE-2012-2807, CVE-2012-2825, CVE-2012-5134, CVE-2012-2870, CVE-2012-2871, CVE-2013-1024, CVE-2013-1037, CVE-2013-1038, CVE-2013-1039, CVE-2013-1040, CVE-2013-1041, CVE-2013-1042, CVE-2013-1043, CVE-2013-1044, CVE-2013-1045, CVE-2013-1046, CVE-2013-1047, CVE-2013-2842, CVE-2013-5125, CVE-2013-5126, CVE-2013-5127, CVE-2013-5128, CVE-2014-1242

Use Apple Software Update to get it.

- http://www.securitytracker.com/id/1029671
- https://web.nvd.nist.gov/view/vuln/d...=CVE-2014-1242 - 5.8
Jan 23 2014
Impact: Disclosure of system information, Modification of system information
Fix Available: Yes Vendor Confirmed: Yes
Version(s): prior to 11.1.4
Description: A vulnerability was reported in Apple iTunes. A remote user can conduct man-in-the-middle attacks.
Solution: The vendor has issued a fix (11.1.4)...

[AplusWebMaster]

FYI...

Missing msvcr80.dll not found after the install of iTunes latest update
Had to uninstall iTunes and reinstall ...

Microsoft Visual C++ 2005 SP1 Redistributable Package (x64)
- http://www.microsoft.com/en-us/downl....aspx?id=18471

- https://discussions.apple.com/message/24633790#24633790

- https://discussions.apple.com/thread...art=0&tstart=0

... patchmanagement.org // get patchmanagement 32979
Date: Mon, 27 Jan 2014 16:32:59 -0800
From: Susan Bradley ...
___

- http://www.infoworld.com/t/microsoft...windows-235228
Jan 29, 2014