+ MS08-040: Microsoft SQL Server の脆弱性により、特権が昇格される (941203)http://www.microsoft.com/japan/technet/security/bulletin/ms08-040.mspx
+ MS09-004: SQL Server の脆弱性により、リモートでコードが実行される (959420)http://www.microsoft.com/japan/technet/security/bulletin/ms09-004.mspx
+ FreeBSD-EN-09:01.kenv: Kernel panic when dumping environment
http://security.freebsd.org/advisories/FreeBSD-EN-09:01.kenv.asc
+ FreeBSD-SA-09:06.ktimer: Local privilege escalation
http://security.freebsd.org/advisories/FreeBSD-SA-09:06.ktimer.asc
+ RHSA-2009:0341 Moderate: curl security update
http://rhn.redhat.com/errata/RHSA-2009-0341.html
Issue With Brocade Firmware May Cause a Switch Panic
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254408-1
Sun Java System Identity Manager Security Vulnerabilities
http://sunsolve.sun.com/search/document.do?assetkey=1-66-253267-1
Virtual Printing Does Not Send Fonts to the Host System with a Print Job
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009317&sliceId=1&docTypeID=DT_KB_1_1
Virtual machines do not have network connectivity after migration
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009299&sliceId=1&docTypeID=DT_KB_1_1
Error when adding a PCI device after deleting another PCI device
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009257&sliceId=1&docTypeID=DT_KB_1_1
Unstable issues on bnx2x driver
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009250&sliceId=1&docTypeID=DT_KB_1_1
Deployment fails when Fence IDs are exhausted
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1009247&sliceId=1&docTypeID=DT_KB_1_1
USN-742-1: JasPer vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28708
USN-741-1: Thunderbird vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28707
rPSA-2009-0050-1: ghostscript
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28717
+ RHSA-2009:0382-01: Moderate: libvirt security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28714
+ RHSA-2009:0345-01: Moderate: ghostscript security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28713
+ RHSA-2009:0341-01: Moderate: curl security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28712
RHSA-2009:0339-01: Moderate: lcms security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28711
INTERNET SECURITY AUDITORS ALERT 2009-001: ISecAuditors Security Advisories ModSecurity http://www.criticalwatch.com/support/security-advisories.aspx?AID=28704
EMORY-2009-01: Command Execution in Hannon Hill Cascade Server
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28716
GLSA 200903-33: FFmpeg: Multiple vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28715
Inquira-SA-03/20/2009: Inquira: Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28720
Pixie CMS-SA-03/20/2009: Pixie CMS Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28719
LittleCMS-SA-03/20/2009: LittleCMS vulnerabilities (OpenJDK, Firefox, GIMP, etc. impacted)
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28718
DSA 1746-1: New ghostscript packages fix arbitrary code execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28710
DSA 1745-1: New lcms packages fix arbitrary code execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28709
Global Election Management System Audit Log Fails to Record Vote Deletions
http://securitytracker.com/alerts/2009/Mar/1021862.html
IBM Rational AppScan Discloses Exported Reports to Remote Users
http://securitytracker.com/alerts/2009/Mar/1021863.html
Ghostscript Overflows in International Color Consortium Format Library Lets Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Mar/1021868.html
LittleCMS Integer Overflows and Input Validation Flaws Let Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Mar/1021869.html
LittleCMS Memory Leak Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Mar/1021870.html
Mozilla Firefox Unspecified Bug Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Mar/1021878.html
Apple Safari Unspecified Bugs Let Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Mar/1021879.html
Microsoft Internet Explorer Unspecified Bug Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Mar/1021880.html
Vulnerability Note VU#276563: Autonomy KeyView SDK buffer overflow vulnerability
http://www.kb.cert.org/vuls/id/276563
+ Security Patch for Users of BIND version 9.5.x or 9.4.x AND DLV
https://www.isc.org/node/437
+ RHSA-2009:0345-11: Moderate: ghostscript security update
http://rhn.redhat.com/errata/RHSA-2009-0345.html
+ RHSA-2009:0341-5: Moderate: curl security update
http://rhn.redhat.com/errata/RHSA-2009-0341.html
+ RHBA-2009:0388-6: httpd bug fix update
http://rhn.redhat.com/errata/RHBA-2009-0388.html
+ RHBA-2009:0387-2: udev bug fix update
http://rhn.redhat.com/errata/RHBA-2009-0387.html
Avaya Products Solaris NFSv4 Server Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/0765
Avaya Products Solaris Doors Kernel Code Execution and DoS Issues
http://www.vupen.com/english/advisories/2009/0766
PostgreSQL Encoding Conversion Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/0767
IBM Rational AppScan Reports Unauthorized Read Access Vulnerability
http://www.vupen.com/english/advisories/2009/0768
JustSystems Ichitaro Products Remote Code Execution Vulnerability
http://www.vupen.com/english/advisories/2009/0769
Adobe Reader and Acrobat JavaScript Method Code Execution Issue
http://www.vupen.com/english/advisories/2009/0770
Little cms Multiple Code Execution and Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/0775
Argyll Color Management System "icclib" Integer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2009/0776
Ghostscript "icclib" Library Multiple Integer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2009/0777
Linux-PAM Configuration File Non-ASCII User Name Handling Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34010
BS.Player '.bsl' File Hostname Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34190
Racer Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/25297
+ Linux Kernel 'sock.c' SO_BSDCOMPAT Option Information Disclosure Vulnerability
http://www.securityfocus.com/bid/33846
+ Linux Kernel 'dell_rbu' Local Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/33428
+ Linux Kernel 'keyctl_join_session_keyring()' Denial of Service Vulnerability
http://www.securityfocus.com/bid/33339
Linux Kernel 64 Bit ABI System Call Parameter Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/33275
+ Linux Kernel 'readlink' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/33412
+ Linux Kernel 'FWD-TSN' Chunk Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/33113
IBM Director CIM Server Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34065
IBM Director CIM Server Consumer Name Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/34061
Amarok 'audible.cpp' Audible File Multiple Integer Overflow and Memory Allocation Vulnerabilities
http://www.securityfocus.com/bid/33210
Multiple SlySoft Products Driver IOCTL Request Multiple Local Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34103
Media Commands Multiple Media File Multiple Heap Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/33958
FFmpeg File Parsing Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/33308
FFmpeg 'libavformat/4xm.c' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/33502
FFmpeg libavformat 'psxstr.c' STR Data Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/30154
Kwalbum 'UploadItems' Parameter Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/31568
GNOME glib Base64 Encoding and Decoding Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34100
HP OpenView Network Node Manager 'ovspmd' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/28689
Sun Java System Identity Manager Multiple Vulnerabilities
http://www.securityfocus.com/bid/34191
Ghostscript Multiple Input Validation and Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34184
Pixie CMS SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/34189
Little CMS Memory Leak and Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/34185
SW-HTTPD Incomplete HTTP Request Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/34188
Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2009 -07 -08 -09 and -11 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/33990
Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2009 -01 to -06 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/33598
POP Peeper 'From' Mail Header Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34192
'nfs-utils' Package 'hosts_ctl()' Security Bypass Vulnerability
http://www.securityfocus.com/bid/31823
Chasys Media Player Playlist File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34165
Bloginator Insecure Cookie Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/34187
Cascade Server XLST Processing Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/34186
cURL/libcURL HTTP 'Location:' Redirect Security Bypass Vulnerability
http://www.securityfocus.com/bid/33962
libvirt Local Security Bypass Vulnerability
http://www.securityfocus.com/bid/32905
libvirt 'libvirt_proxy.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/33724
JasPer 1.900.1 Multiple Vulnerabilities
http://www.securityfocus.com/bid/31470
Autonomy KeyView Module 'wp6sr.dll' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34086
ModSecurity Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/34096
phpMyAdmin 'table' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/32720
phpMyAdmin DB_Create.PHP Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/26512
phpMyAdmin 'server_databases.php' Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/31188
phpMyAdmin 'pmd_pdf.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/31928
phpMyAdmin Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/21137
Bugzilla HTML Injection and Cross Site Request Forgery Vulnerabilities
http://www.securityfocus.com/bid/33580
Bugzilla '--attach_path' Directory Traversal Vulnerability
http://www.securityfocus.com/bid/30661
Bugzilla Quip Manipulation Security Bypass Vulnerability
http://www.securityfocus.com/bid/32178
Bugzilla Pseudo-Random Number Generator Shared Seed Vulnerability
http://www.securityfocus.com/bid/33581
SilverNews Multiple Input Validation Vulnerabilites
http://www.securityfocus.com/bid/33669
FacilCMS Multiple SQL Injection And Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/34177
Mozilla Firefox Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34181
Apple Safari Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34183
Apple Safari Unspecified Remote Code Execution Variant Vulnerability
http://www.securityfocus.com/bid/34179
Internet Explorer Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34182
YABSoft Advanced Image Hosting Script 'gallery_list.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/34176
Content Construction Kit (CCK) Drupal Module User and Node References HTML Injection Vulnerability
http://www.securityfocus.com/bid/34172
OpenSC PKCS#11 Implementation Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/33922
OpenSC CardOS M4 Smart Cards Insecure Permissions Vulnerability
http://www.securityfocus.com/bid/30473
ejabberd MUC Logs Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/34133
Evolution Data Server 'ntlm_challenge()' Memory Contents Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34109
GNOME Evolution S/MIME Email Signature Verification Vulnerability
http://www.securityfocus.com/bid/33720
Sun Solaris Doors Kernel Functionality Multiple Vulnerabilities
http://www.securityfocus.com/bid/34081
Sun Solaris NFS Version 4 Server Kernel Module Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/34031
Microsoft Windows Kernel GDI EMF/WMF Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34012
0 件のコメント:
コメントを投稿