Threat Focus Diligence provides customized 24/7 vulnerability and patch alerts for more than 1,000 products, giving IT and network managers the security information they need to protect their assets.

University center for multidisciplinary research and education in areas of information security. Provides hotlist covering all aspects of security.

Mailing list dedicated to the discussion of patch management.

Non-profit enterprise whose mission is to help organizations reduce the risk of business and e-commerce disruptions resulting from inadequate technical security controls.

Offers fully Internet-based, automated, cross-platform, enterprise security patch management software so IT administrators can assess and resolve security vulnerabilities across operating systems and applications.

Offers patch management information and products.

Patch management tool that helps secure systems by remotely managing service packs and hotfixes. Conduct research, take inventory, deploy updates and validate installations to networked machines.

Australian Computer Emergency Response Team. Advisories and tools.

Independent source for security vulnerabilities, alerts, and threats.

CVE browser is a Java Web search engine for the Mitre CVE vulnerability dictionary.

Fee based security alert service by Symantec.

Security alerts, advisories, and alert summaries from ISS.

Network security news, alerts and updates

Database of daily updated security alerts.

Patch alert service.

Provides security advisories and information about patches.

Listing of security advisories and warnings.

Security Bulletins that are compiled from multiple leading sources and condensed to reduce your efforts in reviewing them regularly.

Online service that notifies webmasters of new security vulnerabilities.

Actionable, risk oriented intelligence service from TruSecure Corporation.

Computer security vulnerability disclosure mailing list

CIAC publishes security bulletins and virus and hoax information. They provide computer security assistance to US Department of Energy (DOE) sites.

Mailing list facilitates networking and information exchange related to patch management: announcements, testing, verification, operations processes, and vulnerabilities.

Offers advice, ratings and direct downloads to the most recent security patches, hotfixes, and service packs for server operating systems and applications.

Includes an overview of published Apache 1.3.x security advisories and patches.

Includes an overview of published security advisories and patches for Apache 2.0.X.

Full disclosure computer security vulnerabilities feed.

Information on the latest security advisories, viruses, press releases, and whitepapers.

Searchable database of vulnerabilities. Offers data for download in XML format as well as via website. Details of how to submit new vulnerabilities, database schema and FAQ.

Provides daily reports on new Internet, network and application vulnerabilities.

Vulnerability remediation software which prevents networked machines that have been off the network for some time from gaining access until the software has applied necessary patches. Also offer policy management and automatic logoff tools.