[Dovecot-news] v1.2.beta4 released
http://www.dovecot.org/list/dovecot-news/2009-March/000106.html
PHP 5.3.0RC1 Release Announcement
http://www.php.net/archive/2009.php#id2009-03-24-1
+ OpenSSL Security Advisory [25-Mar-2009]
http://www.openssl.org/news/secadv_20090325.txt
+ OpenSSL 0.9.8k is now available, including important bug fixes
http://www.openssl.org/source/
+ Cisco Security Advisory: Cisco IOS cTCP Denial of Service Vulnerability
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90459.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20090325-ctcp.shtml
+ Cisco Security Advisory: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904c0.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20090325-sip.shtml
+ Cisco Security Advisory: Cisco IOS Software Secure Copy Privilege Escalation Vulnerability
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904c8.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20090325-scp.shtml
+ Cisco Security Advisory: Cisco IOS Software Mobile IP and Mobile IPv6 Vulnerabilities
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a9042f.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20090325-mobileip.shtml
Cisco Security Advisory: Cisco IOS Software WebVPN and SSLVPN Vulnerabilities
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90424.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20090325-webvpn.shtml
+ Cisco Security Advisory: Cisco IOS Software Multiple Features IP Sockets Vulnerability
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904c6.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20090325-ip.shtml
+ Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted TCP Sequence Vulnerability
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a904cb.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20090325-tcp.shtml
+ Cisco Security Advisory: Cisco IOS Software Multiple Features Crafted UDP Packet Vulnerability
http://www.cisco.com/en/US/products/products_security_advisory09186a0080a90426.shtml
http://www.cisco.com/warp/public/707/cisco-sa-20090325-udp.shtml
A Solaris Kernel Security Vulnerability on Systems Using the Sun UltraSPARC T2 and T2+ Processors May Allow Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-250066-1
+ Security Vulnerabilities in the Java Runtime Environment (JRE) LDAP Implementation may Allow a Denial of Service (DoS) and Malicious Code to be Executed
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254569-1
+ A Security Vulnerability in the Java Runtime Environment (JRE) Virtual Machine With Code Generation May Allow Escalation of Privileges
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254610-1
+ A Security Vulnerability in the Java Runtime Environment (JRE) HTTP Server Implementation May Allow a Denial of Service (DoS) Condition on a JAX-WS Service Endpoint
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254609-1
+ Buffer Overflow Vulnerabilities in the Java Runtime Environment (JRE) with Processing Image Files and Fonts may Allow Privileges to be Escalated
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254571-1
+ Security Vulnerabilities in the Java Runtime Environment (JRE) With Storing and Processing Font Files May Allow Denial of Service (DOS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254608-1
+ Integer and Buffer Overflow Vulnerabilities in the Java Runtime Environment (JRE) "unpack200" JAR Unpacking Utility May Lead to Escalation of Privileges
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254570-1
+ Multiple Security Vulnerabilities in Java Plug-in May Allow Privileges to be Escalated
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254611-1
Adobe-SA-03/25/2009: Secunia Research: Adobe Reader JBIG2 Symbol Dictionary Buffer Overflow
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28759
RHSA-2009:0376-01: Critical: acroread security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28754
RHSA-2009:0361-01: Moderate: NetworkManager security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28753
+ RHSA-2009:0362-01: Moderate: NetworkManager security update
http://rhn.redhat.com/errata/RHSA-2009-0362.html
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28752
IVIZ-09-001: Adobe Acrobat Reader Memory Corruption Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28758
DSA 1745-2: New lcms packages fix regression
http://www.criticalwatch.com/support/security-advisories.aspx?AID=28751
Secunia Research: Adobe Reader JBIG2 Symbol Dictionary Buffer Overflow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-03/msg00227.html
[SECURITY] [DSA 1745-2] New lcms packages fix regression
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-03/msg00228.html
[SECURITY] [DSA 1755-1] New systemtap packages fix local privilege escalation
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-03/msg00238.html
JVNDB-2009-001092 CUPS の WriteProlog 関数における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001092.html
JVNDB-2009-001093 Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001093.html
JVNDB-2009-001094 透過型プロキシサーバが HTTP の Host ヘッダに依存して接続を行う問題
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001094.html
JVNDB-2009-001095 Microsoft Office Excel における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001095.html
Microsoft GDI+ EMF 'GpFont.SetData()' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34250
Microsoft GDI+ EMF Image Processing Memory Corruption Vulnerability
http://www.securityfocus.com/bid/31019
Jinzora 'name' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/34224
PHPCMS2008 'ask/search_ajax.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/34225
eXeScope File Handling Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34219
pam-krb5 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/33740
pam-krb5 'KRB5CCNAME' Environment Variable Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/33741
BlogEngine.NET 'search.aspx' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/34227
SurfMyTv Script 'view.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/34230
Acritum Femitter Server 'RETR' Command Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/28973
Cisco IOS Secure Copy Remote Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34247
Cisco IOS Multiple Features UDP Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/34245
Blogator-script 'init_pass2.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/28636
ClanSphere Multiple Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/31293
6rbScript 'section.php' Local File Include Vulnerability
http://www.securityfocus.com/bid/31299
IETF RFC 3279 X.509 Certificate MD5 Signature Collision Vulnerability
http://www.securityfocus.com/bid/33065
Muttprint Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/32743
Cisco IOS Cisco Tunneling Control Protocol Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/34246
Cisco IOS Multiple Features IP Sockets Denial Of Service Vulnerability
http://www.securityfocus.com/bid/34242
Zinf Multiple Playlist Files Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/33482
Cisco IOS Multiple Features TCP Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/34238
Cisco IOS Session Initiation Protocol Denial of Service Vulnerability
http://www.securityfocus.com/bid/34243
phpMyAdmin 'setup.php' PHP Code Injection Vulnerability
http://www.securityfocus.com/bid/34236
Cisco IOS Mobile IP/Mobile IPv6 Multiple Denial of Service Vulnerablities
http://www.securityfocus.com/bid/34241
Cisco IOS WebVPN/SSLVPN Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/34239
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34240
Sysax Multi Server FTP 'DELE' Directory Traversal Vulnerability
http://www.securityfocus.com/bid/34209
Syzygy CMS SQL Injection and Local File Include Vulnerabilities
http://www.securityfocus.com/bid/34210
Mozilla Firefox XSL Parsing 'root' XML Tag Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/34235
Little CMS Memory Leak and Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/34185
Sun Java Web Start and Java Plug-in JAR File Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/32892
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/32608
Sun Java Web Start and Java Plug-in Multiple Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/32620
GNOME glib Base64 Encoding and Decoding Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34100
Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2009 -07 -08 -09 and -11 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/33990
Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2009 -01 to -06 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/33598
Adobe Flash Player Unspecified Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/33890
Adobe Flash Player Unspecified Information Disclosure Vulnerability
http://www.securityfocus.com/bid/33889
NetworkManager Permission Enforcement Multiple Local Vulnrabilities
http://www.securityfocus.com/bid/33966
Adobe Flash Player Invalid Object Reference Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/33880
Adobe Acrobat and Reader JBIG2 Image Processing Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/34229
PostgreSQL Conversion Encoding Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/34090
Squid Proxy Cache Update Reply Processing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/26687
Squid Web Proxy Cache HTTP Version Number Parsing Denial of Service Vulnerability
http://www.securityfocus.com/bid/33604
Squid Web Proxy Cache 'arrayShrink()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/28693
phpMyAdmin BLOB Streaming Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/34253
Drupal Token Authentication Module Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/34252
phpMyAdmin 'export page' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/34251
Drupal Wikitools Module Multiple Unspecified Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/34249
Lua Unspecified Bytecode Verifier Security Vulnerability
http://www.securityfocus.com/bid/34237
Comparison Engine Power 'product.comparision.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/34232
52858 : Jinzora index.php name Parameter Traversal Local File Inclusion
http://osvdb.org/show/osvdb/52858
PostgreSQL 8.4devel Release 8.4
http://developer.postgresql.org/pgdocs/postgres/release-8-4.html
JVNDB-2009-001100 Adobe Flash Player における任意の URL に誘導可能な脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001100.html
JVNDB-2009-001099 Adobe Flash Player における権限昇格の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001099.html
JVNDB-2009-001098 Adobe Flash Player における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001098.html
JVNDB-2009-001097 Adobe Flash Player における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001097.html
JVNDB-2009-001096 Adobe Flash Player の 設定マネージャにおける任意の URL に誘導可能な脆弱
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001096.html
JVNDB-2008-002277 Linux Kernel における sendmsg 関数の呼び出しに関するサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002277.html
JVNDB-2008-002274 Linux Kernel の __scm_destroy 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002274.html
0 件のコメント:
コメントを投稿