Patch Tuesday April 2015

Another month, another patch Tuesday!

Microsoft released a large amount of updates, some which require special attention. One of these deal with an issue in http.sys, meaning that a lot of Internet facing services may end up being exploited unless patched, as the vulnerability is a remote code execution vulnerability. Many other issues are also covered, with some additional ones also being remote code execution vulnerabilities. Due to this, we cannot stress highly enough the need to apply these patches without waiting too long.

Oracle has also released updates for their large software catalogue, which, for example fixes vulnerabilities in their java and database software. You’re highly advised to check the link below to see if any of the software you’re using is vulnerable.

Adobe also released patches, fixing critical issues that are currently being exploited in the wild. Fixes went out for Flash, ColdFusion and Flex. Make sure you keep your computers and servers up-to-date with these patches.

More information
Adobe Flash
Adobe ColdFusion
Adobe Flex