Xerox Security Bulletin XRX21-004
Xerox® FreeFlow® Print Server v2 / Windows® 10
Install Method: USB Media
Supports:
• Xerox® iGen®5 Press
• Xerox® BaltoroTM HF Production Inkjet Press
• Xerox
®
Brenva
TM
HD Production Inkjet Press
Deliverable: January 2021 Security Patch Update
Includes: OpenJDK 1.8.0-102021
Bulletin Date: February 8, 2021
1.0 Background
Microsoft® responds to US CERT advisory council notifications of Security vulnerabilities referred to as Common
Vulnerabilities and Exposures (CVE’s) and develops patches that remediate the Security vulnerabilities that are applicable
to Windows® 10 and components (e.g., Windows® Explorer®, .Net Framework®, etc.). The FreeFlow® Print Server
organization has a dedicated development team, which actively review the US CERT advisory council CVE notifications,
and delivers Security patch updates from Microsoft® to remediate the threat of these Security risks for the FreeFlow® Print
Server v2 / Windows® v10 (supporting the Integrated and Standalone platforms)
The FreeFlow® Print Server organization delivers Security Patch Updates on the FreeFlow® Print Server v2 / Windows® v10
platform by the FreeFlow® Print Server organization on a quarterly (i.e., 4 times a year) basis. The FreeFlow® Print Server
engineering team receives new patch updates in January, April, July and October, and will test them for supported Printer
products (such as iGen®5 printers) prior to delivery for customer install.
Xerox tests FreeFlow® Print Server operations with the patch updates to ensure there are no software issues prior to
installing them at a customer location. Alternatively, a customer can use Windows® Update to install patch updates directly
from Microsoft®. If the customer manages their own patch install, the Xerox support team can suggest options to minimize
the risk of FreeFlow® Print Server operation problems that could result from patch updates.
This bulletin announces the availability of the following:
1. January 2021 Security Patch Update
• This supersedes the October 2020 Security Patch Update
2. Open JDK 1.8.0-012021Software
• This supersedes JDK 1.8.0-102020 Software
3. Firefox v85.0 Software
• This supersedes Firefox v81.0.2
See the US-CERT Common Vulnerability Exposures (CVE) list for OpenJDK 1.8.0-102021 software below: