Nginx released a security fix to address the ‘nginx DNS Resolver Off-by-One Heap Write’ vulnerability. The severity rating is HIGH. Systems Admins should immediately implement the fix in order to avoid the risk of Denial of Service.

Cisco has released advisories addressing vulnerabilities in a range of products. All Network administrators are advised to study the advisory and apply the appropriate measures.

Drupal users should upgrade to the latest versions to mitigate against potential XSS vulnerabilities. Web administrators should review the detailed advisory.

Cisco has released its ASA, FMC and FTD Software Security Bundled Publication. This addresses 12 Cisco Security Advisories that describe 12 vulnerabilities in Cisco ASA and FTD Software.

VMware released a patch to fix the stored Cross-Site Scripting (XSS) vulnerability in VMware ESXi. Users should review this advisory here.

Drupal has released security updates to fix third-party library vulnerabilities. Web administrators are advised to upgrade versions of drupal to the latest versions. Also note that versions of Drupal 8 prior to 8.7.x have reached end of life and do not receive security coverage.