US-CERT: Vulnerability Summary for the Week of January 28, 2019

Looks like they’re back at it, I don’t think I got any notifications during the shutdown at all. All 4 of the High Severity issues look to have been patched, so check to see if you’re using any of the libraries or applications listed. phpMyAdmin is particularly popular.

libgd — libgd

libvnc_project — libvncserver

phpmyadmin — phpmyadmin

zoneminder — zoneminder

As for Medium severity, there’s quite a selection. As usual, Adobe takes the cake for sheer numbers. Make sure to run your updates, check your patches, and make sure everything is updated correctly and completely.

Mentioned:

Bulletin (SB19-035) Vulnerability Summary for the Week of January 28, 2019