 |
|
|
|
|
|
|
| RSS Feed: Xerox Security BulletinsFeed ContentXerox Security Bulletin XRX13-006 v1.1
Thu Jun 13 01:45:54 2013
NOTE: This bulletin has been updated to correct a software procedure error in the ColorQube 93XX devices. Contact Xerox Technical Support to obtain system software release 071.180.203.06400 and the instructions for installing this release; if your current system software release is 061.180.223.11601 or less, there are interim steps that have to be followed before you can upgrade your device to system software release 071.180.203.06400. A new version of this bulletin will be published once the new information becomes available.
Cumulative update for Common Criteria Certification
System Software Versions listed below for the WorkCentre 5845/5855/5865/5875/5890, WorkCentre 7220/7225, WorkCentre 7830/7835/7845/7855 and ColorQube 9301/9302/9303 models are cumulative updates that incorporate security vulnerability fixes up through 06 March 2013 as well as other non-security related defect fixes. These four releases are Common Criteria certified (see http://www.xerox.com/information-security/common-criteria-certified/enus.html).
These system software releases for the products listed are designed to be installed by the customer. Please follow the procedures in the bulletin document to install the solution. The system software versions are full system releases so the patch criticality rating is not applicable.
These software releases are compressed into zip files and can be accessed via the links in the bulletin document.
.
Xerox Security Bulletin XRX13-005 v1.0
Thu Apr 11 13:30:31 2013
Cumulative update for Common Criteria Certification
System Software Version 061.090.221.36202 for the WorkCentre 7755/7765/7775 models is a cumulative update that incorporates security vulnerability fixes up through 19 Oct 2012 as well as other non-security related defect fixes. This release is Common Criteria certified (see http://www.xerox.com/information-security/common-criteria-certified/enus.html).
This system software release for the products listed is designed to be installed by the customer. Please follow the procedures in the bulletin document to install the solution. This system software version is a full system release so the patch criticality rating is not applicable.
The software release is compressed into a 237.9 MB zip file and can be accessed via the link below or via the link contained in the bulletin announcement on www.xerox.com/security.
http://www.xerox.com/downloads/usa/en/c/cert_061_090_221_36202.zip
Xerox Security Bulletin XRX13-004 v1.0
Tue Apr 2 14:38:29 2013
FreeFlow Print Server v7
January 2013 Security Patch Cluster (includes Java 6 Update 39 Software)
Oracle delivers quarterly Critical Patch Updates (CPU) to address US-CERT-announced Security vulnerabilities and deliver reliability improvements to the Solaris Operating System. Oracle no longer provides these patches to the general public, but Xerox is authorized to deliver them to Customers with active FreeFlow Print Server (FFPS) Support contracts (FSMA). Customers who may have an Oracle Support Contract for their non-FFPS Solaris Servers should not install patches that have not been customized by Xerox. Otherwise the FFPS software could be damaged and result in downtime and a lengthy re-installation service call.
This bulletin announces the availability of the following:
1. January 2013 Security Patch Cluster
This supersedes the October 2012 Security Patch Cluster
2. Java 6 Update 39 Software
This supersedes Java 6 Update 37 Software
Consult the bulletin to see all the CVE vulnerabilities this bulletin fixes.
|
