well, fyi, we have Secunia as well... but for products for which Adobe offers
catalogs themselves (flashplayer, reader, Acrobat) I use SCUP and just grab
their catalogs direct from Adobe.
On Friday, January 8, 2016 3:06 PM, "Miller, Todd" <[email protected]>
wrote:
<!--#yiv2028862466 _filtered #yiv2028862466 {font-family:Calibri;panose-1:2
15 5 2 2 2 4 3 2 4;}#yiv2028862466 #yiv2028862466 p.yiv2028862466MsoNormal,
#yiv2028862466 li.yiv2028862466MsoNormal, #yiv2028862466
div.yiv2028862466MsoNormal
{margin:0in;margin-bottom:.0001pt;font-size:11.0pt;font-family:"Calibri",
"sans-serif";}#yiv2028862466 a:link, #yiv2028862466
span.yiv2028862466MsoHyperlink
{color:blue;text-decoration:underline;}#yiv2028862466 a:visited, #yiv2028862466
span.yiv2028862466MsoHyperlinkFollowed
{color:purple;text-decoration:underline;}#yiv2028862466
p.yiv2028862466MsoPlainText, #yiv2028862466 li.yiv2028862466MsoPlainText,
#yiv2028862466 div.yiv2028862466MsoPlainText
{margin:0in;margin-bottom:.0001pt;font-size:11.0pt;font-family:"Calibri",
"sans-serif";}#yiv2028862466 span.yiv2028862466EmailStyle17
{font-family:"Calibri", "sans-serif";color:windowtext;}#yiv2028862466
span.yiv2028862466PlainTextChar {font-family:"Calibri",
"sans-serif";}#yiv2028862466 .yiv2028862466MsoChpDefault
{font-family:"Calibri", "sans-serif";} _filtered #yiv2028862466 {margin:1.0in
1.0in 1.0in 1.0in;}#yiv2028862466 div.yiv2028862466WordSection1 {}-->I am
having an argument with my 3rd party match management vendor – Secunia/Flexera,
and I am curious how other vendors handle this situation. Recently, Adobe
released a security update for Flash-- 20.0.0.267 that had a bug in it and then
a couple of days later released 20.0.0.270 to correct the bug. I need to
patch Flash because there are security vulnerabilities in version 20.0.0.235.
The only option Secunia has for us is to deploy version 20.0.0.267 which
corrects known security vulnerabilities, but has a known criticalfunctional
bug. Secunia refuses to offer 20.0.0.270 because they consider it a “bug fix”
and not a “security update” Secunia is in the business of patching security
vulnerabilities not supplying patches that fix functional bugs. I am curious
to know how the other patch vendor solutions are handling this issue. Does
your third party patch solution offer all patches for Flash or only ones that
plug security holes?
Notice: This UI Health Care e-mail (including attachments) is covered by the
Electronic Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and
may be legally privileged. If you are not the intended recipient, you are
hereby notified that any retention, dissemination, distribution, or copying of
this communication is strictly prohibited. Please reply to the sender that you
have received the message in error, then delete it. Thank you.
