Monthly security update addresses two dozen vulnerabilities, including one being exploited as part of the "Sandworm" cyberattack.
A security initiative from Google hopes to identify and put a stop to previously unknown, unpatched bugs that threaten the Web at large.
An Internet Explorer 8 vulnerability goes unfixed by Microsoft for more than half a year, reports the Zero Day Initiative.
Adobe and Microsoft patch a critical zero-day security flaw in Adobe's Flash Player that is actively being used to target Windows users, but the bug is different from an unpatched hole in Internet Explorer.
The flaw, which is being leveraged in "limited, targeted attacks," allows remote code execution, Microsoft warns.
Vulnerability allowed a "drive-by attack" of malware installation when computers visited a malicious Web site.
Computers infected with malware after visiting a "strategically important Web site," security firm FireEye warns.
Google wants technology firms to cut down on the amount of time it takes to fix zero day vulnerabilities, but some are crying foul.
The company says two vulnerabilities are being actively exploited and recommends that Windows and Mac OS X users of the browser plug-in update their systems immediately.
Next week's patches will shore up holes in Windows and Office, but a permanent fix for the latest bug in Internet Explorer is still in the works.