Several security vulnerabilities have been found in libpgjava, the official PostgreSQL JDBC Driver. CVE-2020-13692

Update to version 4.16.4 to address security fixes for CVE-2022-32742, CVE-2022-32744, CVE-2022-32745, CVE-2022-32746

insufficient TLB flush for x86 PV guests in shadow mode [XSA-408, CVE-2022-33745]

Multiple security issues were discovered in Thunderbird, which could result in spoofing. For the oldstable distribution (buster), these problems have been fixed

Update to 91.12.0 ; https://www.mozilla.org/en- US/security/advisories/mfsa2022-31/

Security fix for CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070

Several security issues were fixed in the Linux kernel.

Several security issues were fixed in the Linux kernel.

Firefox could be made to crash or run programs as your login if it opened a malicious website.

The Red Hat build of OpenJDK 8 (java-1.8.0-openjdk) is now available for Windows. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,

In the July 2022 survey we received responses from 1,139,467,659 sites across 271,728,559 unique domains and 12,341,172 web-facing computers. This reflects a loss of 7.5 million sites and 1.3 million domains, but a gain of 116,386 computers.

Cloudflare continues its trend of strong growth across the sites and domains metrics this month, increasing by 5.8 million (8.6%) and 259,000 (1.24%), around double that of last month. This gives Cloudflare a total market share of 6.4% share of sites and 8.6% domains, increases of 0.5pp and 0.1pp compared to June.

Whilst still being the most popular vendor across the sites, domains and web-facing computers metric, nginx takes a loss of 4.99 million sites (1.43%), 775,000 domains (1.02%) and 3,400 computers (0.1%) this month. Apache also saw losses, dropping by 1.28 million sites (0.49%) and 379,000 domains (0.61%), however experienced the largest gain in web-facing computers of almost 22,000 (0.6%).

Apache continues to hold on to the top spot in the market share of the top million busiest sites with 22.33%, with nginx in close second at 21.55%. Both however have seen decreases in market share of 0.22pp and 0.1pp respectively, with Cloudflare increasing by 0.08pp to 20.26%. If this trend continues, we should expect to see Cloudflare overtake its rivals within the next year.

OpenResty saw its most significant change over the last 4 months with a decrease of 2.9 million sites (3.21%) and 354,000 domains (0.87%). Conversely, it experienced a significant gain of 17,700 web-facing computers (12.0%).

Lightspeed saw strong growth this month with an increase of 745,000 sites (1.4%), 88,000 domains (1.1%) and 4,500 computers (3.3%).

Vendor News

• nginx 1.23.1 was released on 19 Jul 2022 containing bug fixes, and most notably a memory usage optimization for setups using SSL proxying.
• njs 0.7.8, the scripting language used to extend nginx was also released on 19 Jul 2022, adding various language features and bug fixes.
• Google introduces a preview release of batch on 13 July 2022, a managed service for scheduling batch jobs at scale on the Google Cloud Platform. Batch can manage a job queue, provision and autoscale resources, run jobs, execute subtasks, and deal with common errors automatically.
• Oracle announce the general availability of their Oracle Database Service on Microsoft Azure.
• Cloudflare announces Location-Aware DDoS Protection for Cloudflare Enterprise customers that are subscribed to the Advanced DDoS service. The technology records the typical locations of traffic to a website and uses this as a metric to detect DDoS attacks coming from more unusual and wider spread locations.
• Microsoft warns that attackers are increasingly leveraging Internet Information Services (IIS) extensions as covert backdoors into servers this month, encouraging organisations to follow security practises to help defend their servers.

Several security issues were fixed in Intel Microcode.

Security fix for CVE-2022-34903

Red Hat Advanced Cluster Management for Kubernetes 2.5.1 General Availability release images, which fix security issues and bugs. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score,

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability