Apple Releases Security Updates

Apple has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends  users and administrators to review the Apple security pages for the following products and apply the necessary updates: macOS Catalina 10.15.5, Security Update 2020-003 Mojave, Security Update 2020-003 High Sierra Windows Migration Assistant 2.2.0.0 Safari 13.1.1 iCloud for Windows 11.2 iCloud for Windows 7.19

Google Releases Security Updates for Chrome

Google has released Chrome version 83.0.4103.61 for Windows, Mac, and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends users and administrators to  review the Chrome Release Note and apply the necessary updates.

VMware Releases Security Update for Cloud Director

VMware has released security updates to address a vulnerability in VMware Cloud Director (formerly known as vCloud Director). A remote attacker could exploit this vulnerability to take control of an affected system. Therefore, Bhutan Computer Incident Response Team recommends users and administrators to  review the VMware Security Advisory and apply the necessary updates or workaround.

Adobe Releases Security Updates

Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit these vulnerabilities to obtain sensitive information. Therefore, Bhutan Computer Incident Response Team recommends users and administrators to review the following Adobe Security Bulletins and apply the necessary updates. Premiere Pro APSB20-27 Audition APSB20-28 Premiere Rush APSB20-29

ISC Releases Security Advisory for BIND

The Internet Systems Consortium (ISC) has released security advisories that addresses vulnerabilities affecting multiple versions of ISC Berkeley Internet Name Domain (BIND). A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition. Therefore, Bhutan Computer Incident Response Team recommends users and administrators to review  the ISC advisories for CVE-2020-8616 and CVE-2020-8617 for more information and to apply the necessary updates.