ASUS has issued a new security alert for many of its routers, including firmware patch downloads that are designed to fix a number of security issues that have been discovered in those devices.
Patch RSS
Linux maintainers have pushed patches to Linux 6.1 and Linux 6.2 to address system stuttering on some AMD Ryzen hardware. These patches are just workarounds while AMD works on an actual solution.
Following in the footsteps of Chrome, Edge has received an update to fix a rather severe 0-day exploit too. This is because the issue affects all browsers based on Chromium, including Edge.
_medium.jpg)
Google has rolled out security updates for Chrome across various channels to fix a handful of issues, including one 0-day exploit. Details of the problem are private for now but it has high severity.
Microsoft has patched a major issue in Azure Service Fabric affecting Linux clusters on the cloud. The service is the backbone of many Microsoft projects including Cortana/Bing and Skype for Business.
_medium.jpg)
Microsoft's latest Patch Tuesday updates - released yesterday - fix a lot of recently publicized security issues like Follina, however, DogWalk remains unpatched as Microsoft continues to downplay it.
_medium.jpg)
Microsoft Rewards members all over the world are complaining about being banned for no apparent reason while trying to redeem their points. That said, a partial fix has now been deployed.
Some IT admins may be in for a scare this weekend as Atlassian has warned of a critical RCE flaw affecting all Confluence Server and Data Center versions. Internet access should be restricted ASAP.
Several people are reporting problems related to column of pixels randomly appearing on their Samsung Galaxy S22 Ultra handsets. Samsung is investigating the issue and will release an update soon.
Google's Project Zero team has shared some interesting stats regarding its findings for the past couple of years today. Interestingly, it found the most security issues in Microsoft products.
Microsoft has released the latest Patch Tuesday update for Windows 11. It addresses an issue with the Lightweight Directory Access Protocol (LDAP) modify operation. It doesn't include known issues.
Microsoft has released its Patch Tuesday update for Windows 8.1 and Windows 7. It includes a fix for Active Directory attributes that were not being written correctly during LDAP modify operations.
Microsoft has released its first Patch Tuesday update for Windows 11 in 2022. It fixes an error to do with Japanese IMEs but also comes with an issue related to colour rending in image editors.
While this week was relatively slow due to the holiday season, we do have some notable items to recap including Active Directory woes, a couple of acquisitions, and what almost became Cortana's name.
Microsoft has issued an advisory about an Active Directory privilege escalation attack. The vulnerabilities have already been patched but unpatched domain controllers are more at risk now than ever.
Windows users are required to manually check webpages to find out what an update fixes on their PC before they install it. Microsoft should integrate this information directly in Windows Update.
Microsoft has revealed more details about a macOS vulnerability that it discovered and reported to Apple. A patch is now out for OS-level flaw "Shrootless" on macOS Monterey, Catalina, and Big Sur.
This week, Microsoft released the usual Patch Tuesday updates, which this month included Windows 11 as well. A fix for AMD Ryzen performance issues on Windows 11 rolled out, and much more.
Today, Dying Light developer Techland announced on Twitter that it is working on a current-generation patch for the original Dying Light. The game is regarded as a modern cult classic nowadays.
Microsoft has shed more light on how it has reduced the size of Windows 11 updates by 40% by utilizing a new approach to patching which uses mapping tables to observe the delta in code updates.
Microsoft has recently revealed that a KB update in August's Patch Tuesday effectively breaks printing for some organizations by repeatedly requiring admin credentials when printing.
Microsoft has patched a security flaw in the Azure Container Instances services that allowed data to leak across customers using the same clusters. Potentially affected customers have been notified.
Razer has confirmed that it is working on patching an easily exploitable security issue which allows a local attacker to gain admin privileges to your system using just a Razer mouse or a dongle.
Microsoft highlighted a collection of BadAlloc vulnerabilities earlier this year. Federal U.S. cybersecurity agency CISA has now issued an advisory as the problem affects tons of BlackBerry products.
Microsoft has released another patch for the critical PrintNightmare vulnerability. It makes major changes to the Point and Print functionality on Windows, and immediate installation is recommended.
Microsoft has issued an advisory about a cyberattack from a Chinese group targeting SolarWinds' products. A hotfix has been released but organizations are still advised to review guidance.
This past week has seen PrintNightmare patches come out (and be contested), the arrival of new Insider builds, additional Game Pass games, and more. Be sure to catch up via our handy overview.
Despite claims to the contrary, Microsoft says that its PrintNightmare patch works as intended. It states that security researchers who are calling it ineffective are using insecure configurations.
Security researchers are reporting that Microsoft's fix for the PrintNightmare vulnerability that rolled out to most Windows versions is ineffective, and can let attackers completely bypass it.
Microsoft has begun rolling out a mandatory update for the most recent Windows 10 versions - 2004, 20H2, and 21H1 - to patch the recently acknowledged PrintNightmare critical vulnerability.
An exploit called "PrintNightmare" is being investigated by Microsoft. It potentially affects all versions of Windows. U.S. CISA has marked it as "critical" as it can lead to remote code execution.
Intel has released a patch that claims to fix a problem related to Speed Select Technology (SST), which is causing a performance loss of more than 10%. SST is a power management solution on Xeons.
Microsoft has released a new set of security updates for numerous Exchange Server versions following the discovery of certain security flaws. Exchange Online once again contains protections already.
The delayed 1.2 update for Cyberpunk 2077 is almost here. Its patch notes reveal a huge number of bug fixes, optimizations, and gameplay tweaks. Ray tracing is headed to AMD graphics cards as well.
Microsoft has announced that based on the telemetry data it has been observing from 400,000 on-premises Exchange Server IPs, 92% have applied patches to mitigate the ongoing security vulnerabilities.
Microsoft has enabled Defender Antivirus to automatically mitigate a recent vulnerability in on-premises Exchange server instances. This acts only as a temporary workaround to break the attack chain.
Microsoft has revealed that on-premises Exchange servers are under attack from a state-sponsored group operating from China and utilizing 0-day exploits. Exchange Online is safe from the threat.
Due to the recent cyberattack on CD Projekt and the extensive scope of the major update, the upcoming 1.2 Patch to Cyberpunk 2077 has been delayed out of its original February release window.
CDPR has advised caution for users who utilize custom mods and saves to enhance their gaming experience in Cyberpunk 2077 on PC after the discovery of a security exploit in external DLL files.
Apple has pulled iCloud 12 from the Microsoft Store. While the company hasn't officially cited a reason yet, many users had complained about bugs including two-factor authentication not working.
