WordPress | Google | Microsoft | Drupal

Advisory ID: 
JMCIRT-SA-2019.173
Advisory Date: 
Thursday, December 19, 2019
Advisory Description: 

WordPress Releases Security and Maintenance Updates

Original release date: December 13, 2019

WordPress 5.3 and prior versions are affected by multiple vulnerabilities. An attacker could exploit some of these vulnerabilities to take control of an affected website.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the WordPress Security Release and apply the necessary updates.

Google Releases Security Updates for Chrome for Windows, Mac, and Linux

Original release date: December 18, 2019

Google has released security updates for Chrome version 79.0.3945.88 for Windows, Mac, and Linux. This version addresses a vulnerability that an attacker could exploit to take control of an affected system.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Chrome Release and apply the necessary updates.

Microsoft Releases Out-of-Band Security Updates

Original release date: December 18, 2019

Microsoft has released out-of-band security updates to address a vulnerability in SharePoint Server. An attacker could exploit this vulnerability to obtain sensitive information.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the Microsoft Security Advisory for CVE-2019-1491 and apply the necessary updates.

Drupal Releases Security Updates

Original release date: December 19, 2019

Drupal has released security updates to address vulnerabilities in Drupal 7.x, 8.7.x, and 8.8.x. An attacker could exploit some of these vulnerabilities to modify data on an affected website.
The Jamaica Cyber Incident Response Team (JaCIRT) advises users and administrators to peruse the following Drupal Security Advisories and apply the necessary updates:




References

US-CERT

Wordpress

Chrome Release

Drupal

Microsoft