Flash

Posted on by shavlikdatateam General, Patch and Bulletin Information, Shavlik Product Announcement, Uncategorized

New Patch Data Available (2.0.1.406)

All Protect customers, Patch 2 has been released for Protect v9.0 and v9.1. The updates include a fix for an upcoming syntax change to CVE-ID. Without this patch you will not be able to update content after the CVE syntax change occurs. For more details on how to download and apply the update for your version of Shavlik Protect please refer to this article: https://community.shavlik.com/docs/DOC-23639.

XML 2.0.1.406 Last Modified 1/13/2015

Security

– Added MS15-001(Q3023266): Vulnerability in Windows Application Compatibility Cache Could Allow Elevation of Privilege (3023266)

– Added MS15-002(Q3020393): Vulnerability in Windows Telnet Service Could Allow Remote Code Execution (3020393)

– Added MS15-003(Q3021674): Vulnerability in Windows User Profile Service Could Allow Elevation of Privilege (3021674)

– Added MS15-004(Q3023299): Vulnerability in Windows Components Could Allow Elevation of Privilege (3025421)

– Added MS15-005(Q3022777): Vulnerability in Network Location Awareness Service Could Allow Security Feature Bypass (3022777)

– Added MS15-006(Q3004365): Vulnerability in Windows Error Reporting Could Allow Security Feature Bypass (3004365)

– Added MS15-007(Q3014029): Vulnerability in Network Policy Server RADIUS Implementation Could Cause Denial of Service (3014029)

– Added MS15-008(Q3019215): Vulnerability in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (3019215)

– Added APSB15-01(QAF1600257): Security updates available for Adobe Flash Player

– Added CHROME-120(QGC390217199): Chrome 39.0.2171.99

– Added FF15-001(QFF35005486): Firefox 35.0

– Added MSAF-035(Q3024663): Microsoft security advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: January 13, 2015

– Added SW12-16156(QSW1216156): Adobe Shockwave 12.1.6.156

– Added TB15-3140(QTB153140): Thunderbird 31.4.0

Revision

– Updated MS14-080(Q3029449): Added KB3029449 for Windows 8 and Windows Server 2012

Posted on by shavlikdatateam General, Patch and Bulletin Information, Shavlik Product Announcement, Uncategorized

New Patch Data Available (2.0.0.9910)

All Protect customers, Patch 2 has been released for Protect v9.0 and v9.1. The updates include a fix for an upcoming syntax change to CVE-ID. Without this patch you will not be able to update content after the CVE syntax change occurs. For more details on how to download and apply the update for your version of Shavlik Protect please refer to this article: https://community.shavlik.com/docs/DOC-23639.

XML 2.0.0.9910 Last Modified 12/9/2014

Security

– Added MS14-075(Q3009712): Vulnerabilities in Microsoft Exchange Server Could Allow Elevation of Privilege (3009712)

– Added MS14-080(Q3008923): Cumulative Security Update for Internet Explorer (3008923)

– Added MS14-081(Q3017301): Vulnerabilities in Microsoft Word and Microsoft Office Web Apps Could Allow Remote Code Execution (3017301)

– Added MS14-082(Q3017349): Vulnerability in Microsoft Office Could Allow Remote Code Execution (3017349)

– Added MS14-083(Q3017347): Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution (3017347)

– Added MS14-084(Q3016711): Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3016711)

– Added MS14-085(Q3013126): Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126)

– Added APSB14-27(QAF1600235): Security updates available for Adobe Flash Player

– Added APSB14-28(QAR11010): Security updates available for Adobe Reader and Acrobat

– Added CHROME-119(QGC390217195): Chrome 39.0.2171.95

– Added MSAF-034(Q3008925): Microsoft security advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: December 9, 2014

– Added SW12-15155(QSW1215155): Adobe Shockwave 12.1.5.155

Revision

– Updated MS14-066(Q2992611): Bulletin revised to announce the reoffering of the 2992611 update to systems running Windows Vista and Windows Server 2008.

Posted on by shavlikdatateam General, Patch and Bulletin Information, Shavlik Product Announcement

New Patch Data Available (2.0.0.9690)

All Shavlik Protect 9.0 and 9.1 customers: There is a pending CVE-ID Syntax change coming, Protect updates are available to avoid issues.  Read more details here: https://community.shavlik.com/docs/DOC-23639

XML 2.0.0.9690 Last Modified 11/26/2014

Security

– Added CHROME-118(QGC390217171): Chrome 39.0.2171.71

Revision

– Modified MS13-075(Q2687413): Updated detection logic

– Updated APSB14-026(QAF1500239): Added ActiveX for Flash 13 and 15

Posted on by shavlikdatateam General, Patch and Bulletin Information, Shavlik Product Announcement

New Patch Data Available (2.0.0.9672)

All Shavlik Protect 9.0 and 9.1 customers: There is a pending CVE-ID Syntax change coming, Protect updates are available to avoid issues.  Read more details here: https://community.shavlik.com/docs/DOC-23639

XML 2.0.0.9672 Last Modified 11/25/2014

Security

– Added APSB14-26(QAF1500239): Security updates available for Adobe Flash Player

– Added MSAF-033(Q3018943): Microsoft Security Advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: November 25, 2014

– Added PIDGIN-012(QPID21011): Pidgin 2.10.11

Revision

– Modified MS14-022(Q2596810): Updated detection logic

– Modified MS14-066(Q2992611): Updated detection logic

– Modified MS14-072(Q2978114): Updated deployment logic

Posted on by shavlikdatateam General, Patch and Bulletin Information, Shavlik Product Announcement, Uncategorized

New Patch Data Available (2.0.0.9458)

All Shavlik Protect 9.0 and 9.1 customers: There is a pending CVE-ID Syntax change coming, Protect updates are available to avoid issues. Read more details here: https://community.shavlik.com/docs/DOC-23639

XML 2.0.0.9458 Last Modified 11/11/2014

Security

– Added MS14-064: Vulnerabilities in Windows OLE Could Allow Remote Code Execution (3011443)

– Added MS14-065: Cumulative Security Update for Internet Explorer (3003057)

– Added MS14-066: Vulnerability in Schannel Could Allow Remote Code Execution (2992611)

– Added MS14-067: Vulnerability in XML Core Services Could Allow Remote Code Execution (2993958)

– Added MS14-069: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3009710)

– Added MS14-070: Vulnerability in TCP/IP Could Allow Elevation of Privilege (2989935)

– Added MS14-071: Vulnerability in Windows Audio Service Could Allow Elevation of Privilege (3005607)

– Added MS14-072: Vulnerability in .NET Framework Could Allow Elevation of Privilege (3005210)

– Added MS14-073: Vulnerability in Microsoft SharePoint Foundation Could Allow Elevation of Privilege (3000431)

– Added MS14-074: Vulnerability in Remote Desktop Protocol Could Allow Security Feature Bypass (3003743)

– Added MS14-076: Vulnerability in Internet Information Services (IIS) Could Allow Security Feature Bypass (2982998)

– Added MS14-077: Vulnerability in Active Directory Federation Services Could Allow Information Disclosure (3003381)

– Added MS14-078: Vulnerability in IME (Japanese) Could Allow Elevation of Privilege (2992719)

– Added MS14-079: Vulnerability in Kernel-Mode Driver Could Allow Denial of Service (3002885)

– Added APSB14-24(QAF1500223): Security updates available for Adobe Flash Player

– Added CHROME-116(QGC3802125122): Chrome 38.0.2125.122

– Added FF14-016(QFF33105423): Firefox 33.1

– Added MSAF-032(Q3004150): Microsoft Security Advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: November 11, 2014

– Added SW12-14154(QSW1214154): Adobe Shockwave 12.1.4.154

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.8978)

XML 2.0.0.8978 Last Modified 10/14/2014

Product

– Added support for ASP.NET MVC2

– Added support for ASP.NET MVC3

– Added support for ASP.NET MVC4

– Added support for Citrix Virtual Desktop Agent 5.0

– Added support for Citrix Virtual Desktop Agent 5.6

Security

– Added MS14-056: Cumulative Security Update for Internet Explorer (2987107)

– Added MS14-057: Vulnerabilities in .NET Framework Could Allow Remote Code Execution (3000414)

– Added MS14-058: Vulnerabilities in Kernel-Mode Driver Could Allow Remote Code Execution (3000061)

– Added MS14-059: Vulnerability in ASP.NET MVC Could Allow Security Feature Bypass (2990942)

– Added MS14-060: Vulnerability in Windows OLE Could Allow Remote Code Execution (3000869)

– Added MS14-061: Vulnerability in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (3000434)

– Added MS14-062: Vulnerability in Message Queuing Service Could Allow Elevation of Privilege (2993254)

– Added MS14-063: Vulnerability in FAT32 Disk Partition Driver Could Allow Elevation of Privilege (2998579)

– Added APSB14-22(QAF1500189): Security updates available for Adobe Flash Player

– Added CHROME-114(QGC3802125104): Chrome 38.0.2125.104

– Added FF14-012(Q33005397): Firefox 33.0

– Added MSAF-031(Q3001237): Microsoft Security Advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: October 14, 2014

– Added JAVA7-72(QJAVA7U72): Java 7 Update 72

– Added TB14-3120(QTB143120): Thunderbird 31.2.0

Non-Security

– Added XD500MISAWX-001(QCTX130296): Hotfix XD500MISAWX86001 (Version 5.0.1) – For Citrix XenDesktop 5.0 Machine Identity Service Agent

– Added XD510DSTUDIOWX-002(QCTX134003): Hotfix XD510DStudioWX86002/XD510DStudioWX64002 (Version 5.1.2) For Citrix Desktop Studio 5.1

– Added XD560HF-010(QCTX141157): Hotfixes Update 10 – For Citrix XenDesktop 5.6 Controller

– Added XD560VDAWX-400(QCTX138550): Hotfix Rollup XD560VDAWX86400 (Version 5.6.400) – For Citrix XenDesktop Virtual Desktop Agent Core Services

Revision

– Modified FFE14-2481(QFFE2481): Updated download URL

– Modified FFE14-3111(QFFE3111): Updated language ID logic

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.8674)

Shavlik is pleased to announce the availability of the Shavlik Protect 9.1 Patch 1.  This patch provides resolutions to 18 customer reported issues identified in Protect 9.1.  The Patch is available for download from http://www.shavlik.com/downloads/protect.  For details on the issues resolved you can view the release notes and version history on the downloads page.

XML Version 2.0.0.8674 Last Modified 9/25/2014

Security

– Added AFP15-167(QAF1500167): Adobe Flash Player 15.0.0.167

– Added CHROME-112(QGC3702062124): Chrome 37.0.2062.124

– Added FFE14-3111(QFFE3111): Firefox ESR 31.1.1

– Added SM14-2291(QSM142291): SeaMonkey 2.29.1

– Added TB14-3112(QTB3112): Thunderbird 31.1.2

Non-Security

– Added MSWU-1040(Q2998527): A September, 2014 time zone update for Russia is available

– Added MSWU-1041(Q2990967): Some versions of the OneDrive desktop app for Windows do not update automatically

Software Distribution

– Added MSWM-004(Q2819745): Windows Management Framework 4.0

Revision

– Modified MS14-044(Q2977315/Q2977316): Updated Detection Logic

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.8656)

Shavlik is pleased to announce the availability of the Shavlik Protect 9.1 Patch 1.  This patch provides resolutions to 18 customer reported issues identified in Protect 9.1.  The Patch is available for download from http://www.shavlik.com/downloads/protect.  For details on the issues resolved you can view the release notes and version history on the downloads page.

XML Version 2.0.0.8656 Last Modified 9/23/2014

Product

– Added support for AutoCAD 2015 SP2

Security

– Added FF14-010(QFF32025373): Firefox 32.0.2

– Added MSAF-030(Q2999249): Description of the update for Adobe Flash Player in Internet Explorer: September 23, 2014

Revision

– Modified MS14-055(Q2982385): Bulletin rereleased to announce the reoffering of the 2982385 security update file (server.msp) for Microsoft Lync Server 2010.

– Modified MSWU-987(Q2975061): Updated Replaced by logic.

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.8542)

Shavlik is pleased to announce the availability of the Shavlik Protect 9.1 Patch 1.  This patch provides resolutions to 18 customer reported issues identified in Protect 9.1.  The Patch is available for download from http://www.shavlik.com/downloads/protect.  For details on the issues resolved you can view the release notes and version history on the downloads page.

XML Version 2.0.0.8542 Last Modified 9/9/2014

Security

– Added MS14-052: Cumulative Security Update for Internet Explorer (2977629)

– Added MS14-053: Vulnerability in .NET Framework Could Allow Denial of Service (2990931)

– Added MS14-054:Vulnerability in Windows Task Scheduler Could Allow Elevation of Privilege (2988948)

– Added MS14-055: Vulnerabilities in Microsoft Lync Server Could Allow Denial of Service (2990928)

– Added APSB14-21(QAF1500152): Security updates available for Adobe Flash Player

– Added CHROME-111(QGC3702062120): Chrome 37.0.2062.120

– Added MSAF-029(Q2987114): Microsoft Security Advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: September 9, 2014

Security Tool

– Added MS14-A09(Q2982378): Microsoft Security Advisory: Update to improve credentials protection and management for Windows 7 and Windows Server 2008 R2: September 9, 2014

Revision

– Updated MS13-A12(Q2894852): This advisory was re-released by Microsoft.

Posted on by shavlikdatateam General, Patch and Bulletin Information, Shavlik Product Announcement

New Patch Data Available (2.0.0.8270)

XML Version 2.0.0.8270 Last Modified 8/12/2014

Security

– Added MS14-043: Vulnerability in Windows Media Center Could Allow Remote Code Execution (2978742)

– Added MS14-044: Vulnerabilities in SQL Server Could Allow Elevation of Privilege (2984340)

– Added MS14-045: Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation of Privilege (2984615)

– Added MS14-046: Vulnerability in .NET Framework Could Allow Security Feature Bypass (2984625)

– Added MS14-047: Vulnerability in LRPC Could Allow Security Feature Bypass (2978668)

– Added MS14-048: Vulnerability in OneNote Could Allow Remote Code Execution (2977201)

– Added MS14-049: Vulnerability in Windows Installer Service Could Allow Elevation of Privilege (2962490)

– Added MS14-050: Vulnerability in Microsoft SharePoint Server Could Allow Elevation of Privilege (2977202)

– Added MS14-051: Cumulative Security Update for Internet Explorer (2976627)

– Added APSB14-18: Security updates available for Adobe Flash Player

– Added APSB14-19: Security updates available for Adobe Reader and Acrobat

– Added CHROME-107: Chrome 36.0.1985.143

– Added MSAF-028: Microsoft Security Advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: August 12, 2014

– Added OPERA-55: Opera 23.0.1522.75

– Added PICASA-018: Google Picasa 3.9.138.150

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.7922)

End-of-Life Notice:
VMware vCenter Protect 8.0, 8.0.1, and 8.0.2 reached end of service on 5/15/2014. To upgrade go to http://www.shavlik.com/downloads/protect to download Shavlik Protect 9.1 or 9.0. Check the release notes for changes to the Console Pre-Requisites as they have changed.

XML Version 2.0.0.7922 Last Modified 7/7/2014

Security

– Added MS14-037: Cumulative Security Update for Internet Explorer (2975687)

– Added MS14-038: Vulnerability in Windows Journal Could Allow Remote Code Execution (2975689)

– Added MS14-039: Vulnerability in On-Screen Keyboard Could Allow Elevation of Privilege (2975685)

– Added MS14-040: Vulnerability in Ancillary Function Driver (AFD) Could Allow Elevation of Privilege (2975684)

– Added MS14-041: Vulnerability in DirectShow Could Allow Elevation of Privilege (2975681)

– Added MS14-042: Vulnerability in Microsoft Service Bus Could Allow Denial of Service (2972621)

– Added MSAF-027(Q2974008): Microsoft Security Advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: July 8, 2014

– Added APSB14-17(QAF1400145): Security updates available for Adobe Flash Player

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.7624)

End-of-Life Notice:
VMware vCenter Protect 8.0, 8.0.1, and 8.0.2 reached end of service on 5/15/2014. To upgrade go to http://www.shavlik.com/downloads/protect to download Shavlik Protect 9.1 or 9.0. Check the release notes for changes to the Console Pre-Requisites as they have changed.

XML Version 2.0.0.7624 Last Modified 6/10/2014

Security

– Added MS14-030: Vulnerability in Remote Desktop Could Allow Tampering (2969259)

– Added MS14-031: Vulnerability in TCP Protocol Could Allow Denial of Service (2962478)

– Added MS14-032: Vulnerability in Microsoft Lync Server Could Allow Information Disclosure (2969258)

– Added MS14-033: Vulnerability in Microsoft XML Core Services Could Allow Information Disclosure (2966061)

– Added MS14-034: Vulnerability in Microsoft Word Could Allow Remote Code Execution (2969261)

– Added MS14-035: Cumulative Security Update for Internet Explorer (2969262)

– Added MS14-036: Vulnerabilities in Microsoft Graphics Component Could Allow Remote Code Execution (2967487)

– Added APSB14-16(QAF1300223): Security updates available for Adobe Flash Player

– Added CHROME-105(QGC3501916153): Chrome 35.0.1916.153

– Added FF14-006(QFF30005269): Firefox 30.0

– Added FFE14-2460(QFFE2460): Firefox ESR 24.6.0

– Added MSAF-026(Q2755801): Microsoft Security Advisory 2755801: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer

– Added PICASA-017(QPICASA137141): Google Picasa 3.9.137.141

– Added TB14-2460(QTB2460): Thunderbird 24.6.0

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.7398)

Shavlik is pleased to announce the General Availability release of Shavlik Protect 9.1. This release includes a localized version of Protect, improved resolution for IPv6 and FQDN, improved deployment workflow with more machine and patch level statuses, and reports views for 3rd party reporting integration and custom reporting. Go to: http://www.shavlik.com/downloads/protect to get Protect 9.1 today. You can also sign up for our Protect 9.1 launch webinars next week at http://www.shavlik.com/products/protect/#/demos-webinars/.

End-of-Life Notice:

VMware vCenter Protect 8.0, 8.0.1, and 8.0.2 will reach end of service on 5/15/2014. The May Patch Tuesday content update will be the final update for the VMware branded editions of Protect. All customers running on these versions should upgrade to Shavlik Protect 9.1 at the first possible convenience to prevent a service outage.

XML Version 2.0.0.7398 Last Modified 5/13/2014

Security

– Added MS14-022: Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2952166)

– Added MS14-023: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2961037)

– Added MS14-024: Vulnerability in a Microsoft Common Control Could Allow Security Feature Bypass (2961033)

– Added MS14-025: Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege (2962486)

– Added MS14-026: Vulnerability in .NET Framework Could Allow Elevation of Privilege (2958732)

– Added MS14-027: Vulnerability in Windows Shell Handler Could Allow Elevation of Privilege (2962488)

– Added MS14-028: Vulnerability in iSCSI Could Allow Denial of Service (2962485)

– Added MS14-029: Security Update for Internet Explorer (2962482)

– Added APSB14-14(QAF1300214): Security updates available for Adobe Flash Player

– Added APSB14-15(QAR1107): Security updates available for Adobe Reader and Acrobat

– Added CHROME-103(QGC3401847137): Google Chrome 34.0.1847.137

– Added MSAF-025(Q2957151): Microsoft Security Advisory 2755801: Update for Vulnerabilities in Adobe Flash Player in Internet Explorer

– Added OPERA-50(QOP210143267): Opera 21.0.1432.67

– Added SKYPE-47(QSKY6160105): Skype 6.16.0.105

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.7244)

End-of-Life Notice:

VMware vCenter Protect 8.0, 8.0.1, and 8.0.2 will reach end of service on 5/15/2014. The May Patch Tuesday content update will be the final update for the VMware branded editions of Protect. All customers running on these versions should upgrade to Shavlik Protect 9.1 at the first possible convenience to prevent a service outage. Go to: www.shavlik.com/downloads/protect

XML Version 2.0.0.7244 Last Modified 4/28/2014

Security

– Added APSB14-13(QAF1300206): Security updates available for Adobe Flash Player 13.0.0.206

– Added MSAF-024(Q2961887): Microsoft Security Advisory: Update for vulnerabilities in Adobe Flash Player in Internet Explorer: April 28, 2014

– Added MSSP-001(Q2880552): Description of Microsoft SharePoint Server 2013 Service Pack 1 (SP1) Re-release

Non-Security

– Added MSWU-934(Q2957026): Update for Windows 8.1 Upgrade notification in Windows 8 and Windows RT

– Added MSWU-935(Q2879953): Description of the Office 2010 update KB2879953: October 8, 2013

– Added PDFC-002(QPDFC173): PDFCreator 1.7.3

Posted on by shavlikdatateam General, Patch and Bulletin Information, Uncategorized

New Patch Data Available (2.0.0.7014)

End-of-Life Notice: VMware vCenter Protect 8.0, 8.0.1, and 8.0.2 will reach end of service on 5/15/2014. The May Patch Tuesday content update will be the final update for the VMware branded editions of Protect. All customers running on these versions should upgrade to Shavlik Protect 9.0 at the first possible convenience to prevent a service outage. Go to: http://www.shavlik.com/downloads

XML Version 2.0.0.7014 Last Modified 4/8/2014

Security

– Added MS14-017: Vulnerabilities in Microsoft Word and Office Web Apps Could Allow Remote Code Execution (2949660)

– Added MS14-018: Cumulative Security Update for Internet Explorer (2950467)* **

– Added MS14-019: Vulnerability in Windows File Handling Component Could Allow Remote Code Execution (2922229)

– Added MS14-020: Vulnerability in Microsoft Publisher Could Allow Remote Code Execution (2950145)

– Added APSB14-09(QAF1300182): Security updates available for Adobe Flash Player

– Added CHROME-101(QGC3401847116): Google Chrome 34.0.1847.116

– Added MSAF-023(Q2942844): Microsoft Security Advisory (2755801) Update for Vulnerabilities in Adobe Flash Player in Internet Explorer

* KB2919355, a cumulative update for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2, is offered in MS14-018
** KB2929437, a cumulative update Internet Explorer 11 on Windows 7 and Windows Server 2008 R2, is offered in MS14-018