Cyber Security Bulletins
Alerts
- AL16-015: Vulnerability in Objective Systems ASN1C C/C++ Compiler
July 25, 2016 - AL16-014: Sierra Wireless AirLink Raven XE Industrial 3G Gateway - Multiple Vulnerabilities Reported (UPDATE)
June 29, 2016 - AL16-013: OpenSSL Vulnerability
June 22, 2016 - AL16-012: Active Exploitation of Vulnerability in Adobe Flash Player
June 15, 2016 - AL16-011: ESC 8832 SCADA System Vulnerabilities
May 31, 2016 - AL16-010 : Active Exploitation of Vulnerability in Ubiquiti airOS Devices
May 26, 2016 - AL16-009: Active Exploitation of Vulnerability in SAP Business Applications
May 11, 2016 - AL16-008: Active Exploitation of Vulnerability in Adobe Flash Player
May 11, 2016 - AL16-007: Vulnerability in ImageMagick
May 5, 2016 - AL16-006: Active Exploitation of Vulnerability in Adobe Flash Player
April 8, 2016 - AL16-005: Recent Ransomware Variant - Locky
April 1, 2016 - AL16-004: Scammers Impersonate Internet Service Providers (ISP) in Fraudulent Technical Support Campaign
March 29, 2016 - AL16-003: Cisco Default Credentials Vulnerability and Remote Code Execution Vulnerability
January 20, 2016 - AL16-002: Linux Kernel Vulnerability
January 19, 2016 - AL16-001: Active Exploitation of a Vulnerability in Microsoft Silverlight
January 15, 2016
Advisories
- AV16-123: Android Security Bulletin – August 2016
August 2, 2016 - AV16-122: Siemens Security Updates – July 2016
July 28, 2016 - AV16-121: SAP Security Notes - July 2016
July 22, 2016 - AV16-120: Google Releases Security Update for Chrome
July 22, 2016 - AV16-119: Cisco Security Advisory
July 21, 2016 - AV16-118: Oracle Critical Patch Update Advisory – July 2016
July 20, 2016 - AV16-117: Multiple Apple Security Updates
July 19, 2016 - AV16-116: CGI Web Server Vulnerability
July 19, 2016 - AV16-115: Cisco Releases Security Updates
July 15, 2016 - AV16-114: Philips Xper-IM Connect Software Updates
July 15, 2016 - AV16-113: Drupal Security Updates – July 2016
July 13, 2016 - AV16-112: Microsoft Critical Security Bulletins Summary - July 2016
July 13, 2016 - AV16-111: Security Updates for Multiple Adobe Products
July 13, 2016 - AV16-110: Meinberg NTP Time Server Security Updates
July 11, 2016 - AV16-109: Android Security Bulletin – July 2016
July 8, 2016 - AV16-108: Apache Releases update for HTTPD
July 5, 2016 - AV16-107: Multiple Cisco Security Advisories
June 30, 2016 - AV16-106: Symantec Releases Security Update
June 29, 2016 - AV16-105: Fonality Security Update
June 22, 2016 - AV16-104: libarchive Security Update
June 21, 2016 - AV16-103: WordPress Security Release
June 21, 2016 - AV16-102: Google Releases Security Update for Chrome
June 20, 2016 - AV16-101: Security Updates for Adobe Flash and AIR
June 16, 2016 - AV16-100: Cisco Releases Security Update
June 16, 2016 - AV16-099: SAP Security Notes - June 2016
June 16, 2016 - AV16-098: Adobe Security Bulletins and Advisories
June 15, 2016 - AV16-097: Microsoft Critical Security Bulletins Summary for June 2016
June 15, 2016 - AV16-096: Android Security Bulletin – June 2016
June 14, 2016 - AV16-095: Siemens SIMATIC S7-300 Firmware Security Update
June 13, 2016 - AV16-094: VMware Security Advisory
June 13, 2016 - AV16-093: Trihedral VTScada Software Security Update
June 9, 2016 - AV16-092: Mozilla Releases Security Updates
June 8, 2016 - AV16-091: Network Time Protocol Daemon (ntpd) Security Notice
June 3, 2016 - AV16-090: GE MultiLink Series Switch Security Updates
June 3, 2016 - AV16-089: Cisco Prime Network Analysis Module Security Advisories
June 2, 2016 - AV16-088: Google Releases Security Update for Chrome
June 2, 2016 - AV16-087: PHP Security Updates
May 30, 2016 - AV16-086: Sixnet BT Series Firmware and Software Security Update
May 30, 2016 - AV16-085: Google Releases Security Update for Chrome
May 26, 2016 - AV16-084: Cisco Multiple Security Advisories
May 19, 2016 - AV16-083: Magento Security Update
May 18, 2016 - AV16-082: Symantec Releases Security Update
May 17, 2016 - AV16-081: Multiple Apple Security Updates
May 17, 2016 - AV16-080: HP Security Bulletin
May 13, 2016 - AV16-079: Security Updates for Adobe Flash Player
May 13, 2016 - AV16-078: 7-Zip Security Update
May 12, 2016 - AV16-077: Google Releases Security Update for Chrome
May 12, 2016 - AV16-076: Microsoft Critical Security Bulletins Summary for May 2016
May 10, 2016 - AV16-075: Security Updates for Adobe Acrobat and Reader
May 10, 2016 - AV16-074: WordPress Security update Release
May 9, 2016 - AV16-073: ImageMagick Security Update
May 6, 2016 - AV16-072: Apple Security Update for Xcode
May 4, 2016 - AV16-071: OpenSSL Advisory – Multiple Vulnerabilities
May 3, 2016 - AV16-070: Android Security Bulletin – May 2016
May 3, 2016 - AV16-069: Google Releases Security Update for Chrome
April 29, 2016 - AV16-068: HP Security Bulletin
April 28, 2016 - AV16-067: Mozilla Releases Security Updates
April 26, 2016 - AV16-066: Cisco Multiple Security Advisories
April 21, 2016 - AV16-065: Oracle Critical Patch Update Advisory – April 2016
April 20, 2016 - AV16-064: VMware Security Advisory
April 15, 2016 - AV16-063: Google Releases Security Update for Chrome
April 14, 2016 - AV16-062: Cisco Security Advisory
April 14, 2016 - AV16-061: Microsoft Critical Security Bulletins Summary for April 2016
April 12, 2016 - AV16-060: Samba (smbd) Vulnerability
April 12, 2016 - AV16-059: Security Updates for Adobe Flash Player
April 8, 2016 - AV16-058: BlackBerry powered by Android Security Bulletin – April 2016
April 8, 2016 - AV16-057: Cisco Multiple Security Advisories
April 7, 2016 - AV16-056: Android Security Bulletin –April 2016
April 6, 2016 - AV16-055: Google Releases Security Update for Chrome
March 25, 2016 - AV16-054: Oracle Security Alert for CVE-2016-0636
March 24, 2016 - AV16-053: Cisco Multiple Security Advisories
March 24, 2016 - AV16-052: Multiple Apple Security Updates
March 22, 2016 - AV16-051: Symantec Releases Security Update
March 18, 2016 - AV16-050: VMware Security Advisories
March 17, 2016 - AV16-049: Security Updates for Adobe Flash Player
March 11, 2016 - AV16-048: Citrix Security Updates
March 11, 2016 - AV16-047: Security fixes released for BIND
March 10, 2016 - AV16-046: Cisco Multiple Security Advisories
March 9, 2016 - AV16-045: Mozilla Releases Security Updates
March 9, 2016 - AV16-044: Google Releases Security Update for Chrome
March 9, 2016 - AV16-043: Microsoft Critical Security Bulletins Summary for March 2016
March 8, 2016 - AV16-042: Adobe Security Bulletin Summary for March 2016
March 8, 2016 - AV16-041: Android Security Bulletin – March 2016
March 7, 2016 - AV16-040: Vulnerabilities in Palo Alto PAN-OS
March 3, 2016 - AV16-039: SSL/TLS Vulnerability “DROWN”
March 1, 2016 - AV16-038: Google Releases Security Update for Chrome
March 1, 2016 - AV16-037: Cisco Multiple Security Advisories
March 1, 2016 - AV16-036: OpenSSL Advisory – Multiple Vulnerabilities
March 1, 2016 - AV16-035: Drupal Security Updates
February 25, 2016 - AV16-034: Microsoft Releases Update for EMET
February 23, 2016 - AV16-033: AMX Multiple Products Credential Management Vulnerabilities
February 22, 2016 - AV16-032: Google Releases Security Update for Chrome
February 19, 2016 - AV16-031: glibc Library - Stack-Based Buffer Overflow Vulnerability
February 18, 2016 - AV16-030: VMware vCenter and ESXi – UPDATE
February 15, 2016 - AV16-028: UPDATE: Cisco ASA Software Vulnerability
February 15, 2016 - AV16-029: Multiple Vulnerabilities in Mozilla Firefox
February 12, 2016 - AV16-028: Cisco ASA Software Vulnerability
February 11, 2016 - AV16-027: SAP Security Notes - February 2016
February 10, 2016 - AV16-026: Google Releases Security Update for Chrome
February 10, 2016 - AV16-024: Microsoft Critical Security Bulletins Summary for February 2016
February 9, 2016 - AV16-025: Vulnerabilities in ASP.NET Templates
February 9, 2016 - AV16-023: Security Update for Adobe Flash Player
February 9, 2016 - AV16-022: Security Update for Oracle Java SE
February 9, 2016 - AV16-021: Graphite (Libgraphite) Vulnerabilities
February 8, 2016 - AV16-020: Android Security Bulletin – February 2016
February 3, 2016 - AV16-019: WordPress Security Release
February 2, 2016 - AV16-018: Rockwell Automation MicroLogix 1100 PLC Overflow Vulnerability
January 28, 2016 - AV16-017: OpenSSL Advisory – Multiple Vulnerabilities
January 28, 2016 - AV16-016: Cisco Management Authentication Bypass Vulnerability
January 28, 2016 - AV16-015: Multiple Vulnerabilities in Mozilla Firefox
January 27, 2016 - AV16-014: Magento Security Update and Patch
January 22, 2016 - AV16-013: Google Releases Security Update for Chrome
January 21, 2016 - AV16-010: Apple Security Updates for OS X, Safari, iOS
January 20, 2016 - AV16-012: Security fixes released for BIND
January 20, 2016 - AV16-011: Oracle Critical Patch Update Advisory – January 2016
January 20, 2016 - AV16-009: Advantech WebAccess - Multiple Vulnerabilities
January 18, 2016 - AV16-008: Security Update for OpenSSH
January 14, 2016 - AV16-007: Multiple Cisco Security Advisories
January 13, 2016 - AV16-006: Security Updates for Adobe Acrobat and Reader
January 12, 2016 - AV16-005: Microsoft Critical Security Bulletins Summary for January 2016
January 12, 2016 - AV16-004: PHP Security Updates
January 11, 2016 - AV16-003: WordPress Security Release
January 8, 2016 - AV16-002: Android Security Bulletin – January 2016
January 8, 2016 - AV16-001: IBM Security Bulletin
January 4, 2016
Information Notes
- IN16-002: End of Red Hat Enterprise Linux 5 Support - March 2017
April 27, 2016 - IN16-001: Microsoft SQL Server 2005 - End of Life - April 12, 2016
March 17, 2016
Technical Reports
Note to Readers
In support of Public Safety's mission to build a safe and resilient Canada, CCIRC's mandate is to help ensure the security and resilience of the vital non-federal government cyber systems that underpin Canada's national security, public safety and economic prosperity. As Canada's computer security incident response team, CCIRC is Canada's national coordination centre for the prevention and mitigation of, preparedness for, response to, and recovery from cyber incidents on non-federal government systems. It does this by providing authoritative advice and support, and coordinating information sharing and incident response.
Please note, CCIRC PGP key has recently been updated.
http://www.publicsafety.gc.ca/cnt/ntnl-scrt/cbr-scrt/_fl/CCIRCPublicPGPKey.txt
For general information, please contact Public Safety Canada's Public Affairs division at:
Telephone: 613-944-4875 or 1-800-830-3118
Fax: 613-998-9589
E-mail: ps.communications-communications.sp@canada.ca
- Date modified: