US-CERT: Vulnerability Summary for the Week of January 28, 2019
Looks like they’re back at it, I don’t think I got any notifications during the shutdown at all. All 4 of the High Severity issues look to have been patched, so check to see if you’re using any of the libraries or applications listed. phpMyAdmin is particularly popular.
libgd — libgd
libvnc_project — libvncserver
phpmyadmin — phpmyadmin
zoneminder — zoneminder
As for Medium severity, there’s quite a selection. As usual, Adobe takes the cake for sheer numbers. Make sure to run your updates, check your patches, and make sure everything is updated correctly and completely.
Mentioned:
Bulletin (SB19-035) Vulnerability Summary for the Week of January 28, 2019