The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.
Apple has released iOS 4.3.4 for the iPhone (GSM model), iPod touch, and iPad, and iOS 4.2.9 for the iPhone (CDMA model) to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or operate with escalated privileges.
Oracle has released its Critical Patch Update for July 2011 to address 78 vulnerabilities across multiple products. This update contains the following security fixes:
- 13 for Oracle Database Server
- 3 for Oracle Secure Backup
- 7 for Oracle Fusion Middleware
- 18 for Oracle Enterprise Manager
- 1 for Oracle E-Business Suite
- 1 for Oracle Supply Chain Products Suite
- 12 for Oracle PeopleSoft and JDEdwards Suite
- 23 for Oracle Sun Products Suite
US-CERT encourages users and administrators to review the July 2011 Critical Patch Update and apply any necessary updates to help mitigate the risks.
RIM has released a security advisory to address a vulnerability in the BlackBerry Administration API included in the BlackBerry Enterprise Server. The vulnerability may allow an attacker with user permissions granted to the BlackBerry Administration API to disclose sensitive information or cause a denial-of-service condition.
US-CERT encourages users and administrators to review the BlackBerry security advisory KB27258 and apply any necessary updates to help mitigate the risks.