May 2015 Security Updates Summary

Earlier this week, Microsoft made available its anticipated security updates on Update Tuesday resolving 48 CVEs. The individual products affected are detailed in the Security Bulletin Summary. Any Known Issues are also summarized there. Another very useful source detailing known issues is the IT Pro Patch Tuesday blog.

For an explanation of what CVEs are, please see the first short aside within this blog post.

Adobe also issued updates to resolve security issues in Flash Player and Adobe Reader. Further details are available in this Adobe PSIRT blog post. 52 CVEs in total were resolved.

Both Mozilla Firefox (to version 38.0, 15 CVEs) and Firefox ESR (Extended Support Release) (to version 31.7, 7 CVEs) were also updated. Google Chrome was updated to version 42.0.2311.152. This update simply includes the above mentioned Flash Player update.

As always you can monitor the availability of security updates for the majority of your software from the following websites (among others) or use Secunia PSI:

Security Updates Calendar: (please see the heading “Information on Security Updates” within the Protecting Your PC page):

Edit: 21st June 2015:
I have learned that the Calendar of Updates website is now permanently offline. Some members of that website along with new members/volunteers are working to set up a new version as soon as possible. I will monitor their progress and will provide the link to the new website when it’s available. In the meantime, please use Secunia PSI, refer to the US-CERT link below or refer to the heading “Information on Security Updates” within the Protecting Your PC page.

US Computer Emergency Readiness Team (CERT) (please see the “Information on Security Updates” heading of the Protecting Your PC page):

If you use any of the above software, please install the appropriate updates as soon as possible.

I would like to mention that Adobe’s Flash Player update and Microsoft’s updates for Internet Explorer, Microsoft Font Drivers and Windows Journal should be prioritized for installation before all other updates due to their severity, especially in the case of Adobe Flash since the time for exploitation of patched flaws has shortened recently.

As a routine precaution I would recommend backing up the data on any device for which you are installing updates in order to prevent data loss in the rare event that any update causes unexpected issues.

Thank you.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.