The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
Adobe has released a security update to address a vulnerability in Adobe Reader Mobile 11.1.3 and earlier versions for Android. Exploitation of this vulnerability could allow a remote attacker to execute arbitrary code via a crafted PDF document.
US-CERT recommends that users and administrators review Adobe Security Bulletin APSB14-12 and apply the necessary update.
Google has released Chrome 34.0.1847.120 for all Chrome OS devices, except HP Chromebook Pavillion, to address multiple bug fixes, security updates, and feature enhancements.
Users and administrators are encouraged to review the Google Chrome release blog entry for additional details.
Oracle has released its Critical Patch Update for April 2014 to address 104 vulnerabilities across multiple products. This update contains the following security fixes:
- 2 for Oracle Database Server
- 20 for Oracle Fusion Middleware
- 3 for Oracle Hyperion
- 10 for Oracle Supply Chain Products Suite
- 8 for Oracle PeopleSoft Products
- 1 for Oracle Siebel CRM
- 1 for Oracle iLearning
- 37 for Oracle Java SE
- 3 for Oracle and Sun Systems Products Suite
- 5 for Oracle Virtualization
- 14 for Oracle MySQL
US-CERT encourages users and administrators to review the April 2014 Critical Patch Update and follow best practice security policies to determine which updates should be applied.