Offers advice, ratings and direct downloads to the most recent security patches, hotfixes, and service packs for server operating systems and applications.

Includes an overview of published Apache 1.3.x security advisories and patches.

Includes an overview of published security advisories and patches for Apache 2.0.X.

Australian Computer Emergency Response Team. Advisories and tools.

Independent source for security vulnerabilities, alerts, and threats.

Non-profit enterprise whose mission is to help organizations reduce the risk of business and e-commerce disruptions resulting from inadequate technical security controls.

University center for multidisciplinary research and education in areas of information security. Provides hotlist covering all aspects of security.

Studies Internet security vulnerabilities, provides incident response services to sites that have been the victims of attack, publishes a variety of security alerts, researches security and survivability in wide-area-networked computing, and develops information to improve site security.

Vulnerability remediation software which prevents networked machines that have been off the network for some time from gaining access until the software has applied necessary patches. Also offer policy management and automatic logoff tools.

CIAC publishes security bulletins and virus and hoax information. They provide computer security assistance to US Department of Energy (DOE) sites.

CVE browser is a Java Web search engine for the Mitre CVE vulnerability dictionary.

Fee based security alert service by Symantec.

Provides daily reports on new Internet, network and application vulnerabilities.

Security alerts, advisories, and alert summaries from ISS.

Network security news, alerts and updates

Searchable database of vulnerabilities. Offers data for download in XML format as well as via website. Details of how to submit new vulnerabilities, database schema and FAQ.

Database of daily updated security alerts.

Mailing list facilitates networking and information exchange related to patch management: announcements, testing, verification, operations processes, and vulnerabilities.

Patch alert service.

Offers patch management information and products.

Patch management tool that helps secure systems by remotely managing service packs and hotfixes. Conduct research, take inventory, deploy updates and validate installations to networked machines.

Offers fully Internet-based, automated, cross-platform, enterprise security patch management software so IT administrators can assess and resolve security vulnerabilities across operating systems and applications.

Mailing list dedicated to the discussion of patch management.

Provides security advisories and information about patches.

Listing of security advisories and warnings.

Information on the latest security advisories, viruses, press releases, and whitepapers.

Full disclosure computer security vulnerabilities feed.

Security Bulletins that are compiled from multiple leading sources and condensed to reduce your efforts in reviewing them regularly.

Online service that notifies webmasters of new security vulnerabilities.

Threat Focus Diligence provides customized 24/7 vulnerability and patch alerts for more than 1,000 products, giving IT and network managers the security information they need to protect their assets.

Actionable, risk oriented intelligence service from TruSecure Corporation.

Provides a mechanism that allows citizens, businesses, and other institutions to communicate directly with the United States government regarding cyber security information.

Computer security vulnerability disclosure mailing list