Microsoft’s March Patch Tuesday updates include 64 fixes, 17 of which are rated critical.
Adobe has hurried out a patch for a critical arbitrary code execution vulnerability in its ColdFusion product.
Adobe has issued yet another patch for a critical vulnerability in its Acrobat Reader – a week after the original fix.
GitHub is offering unlimited rewards for critical vulnerabilities – and has added “safe harbor” terms to its bug bounty program.
A remote attacker could exploit the vulnerability simply by sending an email.
The vulnerability could lead to arbitrary code execution.
Users must update their vulnerable libraries manually.
Drupal’s advisory also included three patches for “moderately critical” bugs.
The update includes nine security patches overall.
Adobe’s August Patch Tuesday release impacts Flash Player, and Acrobat DC and Reader.