The Internet Systems Consortium (ISC) has released security updates for BIND. These updates address vulnerabilities that could potentially allow an attacker to cause a denial of service condition.

The following update is available:-

• BIND 9 version 9.9.9-P3
• BIND 9 version 9.10.4-P3
• BIND 9 version 9.11.0rc3
• BIND 9 version 9.9.9-S5

Users and administrators are encouraged to review the ISC Knowledge Base and apply the necessary updates; for more information visit AA-01419

OpenSSL has released security updates to address vulnerabilities in previous versions. Exploitation of some of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition.

Available updates include:

• OpenSSL 1.1.0a for 1.1.0 users
• OpenSSL 1.0.2i for 1.0.2 users
• OpenSSL 1.0.1u for 1.0.1 users

Users and administrators are encouraged to review the OpenSSL Security Advisory and apply the necessary updates. Click here for more details.

VMware has released a security update to address vulnerabilities in vSphere Hypervisor (ESXi), Workstation Pro, Workstation Player, Fusion and Tools. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the VMware Security Advisory and apply the necessary updates. For information read more…

Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review the Mozilla Security Advisories for Firefox and Firefox ESR and apply the necessary updates.

For more information: Firefox and Firefox ESR

Cisco has released security updates to address vulnerabilities in their several products. Exploitation of some of these vulnerabilities could allow a remote attacker to take control of an affected system.
Users and administrators are encouraged to review the following Cisco Security Advisories and apply necessary updates:
• Cisco Web Security Appliance HTTP Load Denial of Service Vulnerability cisco-sa-20160914-wsa
• Cisco WebEx Meetings Server Denial of Service Vulnerability cisco-sa-20160914-wms
• Cisco WebEx Meetings Server Remote Command Execution Vulnerability cisco-sa-20160914-wem
• Cisco Unified Computing System Command Line Interface Privilege Escalation Vulnerability cisco-sa-20160914-ucs
• Cisco Fog Director for IOx Arbitrary File Write Vulnerability cisco-sa-20160914-ioxfd
• Cisco IOS XR for NCS6000 Series Devices OSPF Packet Processing Denial of Service Vulnerability cisco-sa-20160914-iosxr
• Cisco IOS and IOS XE Software Data in Motion Denial of Service Vulnerability cisco-sa-20160914-ios-xe
• Cisco IOS and IOS XE Software IOx Local Manager Cross-Site Scripting Vulnerability cisco-sa-20160914-ios
• Cisco Carrier Routing System IPv6 Denial of Service Vulnerability cisco-sa-20160914-crs
For more information please click here.