+ Linux Kernel 2.6.27.25 released
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.25
【入札公告】「2009年度 情報セキュリティの脅威に対する意識調査」に係る一般競争入札
http://www.ipa.go.jp/security/kobo/21fy/ishiki/index.html
ネットユーザーの9割以上がID・パスワードを違うサイトで使い回し――野村総研調査
http://itpro.nikkeibp.co.jp/article/Research/20090612/331672/?ST=security
JVNVU#627331: Microsoft Office PowerPoint に任意のコードが実行される脆弱性
http://jvn.jp/cert/JVNVU627331/index.html
JVNVU#787932: Microsoft IIS 6.0 WebDAV における認証回避の脆弱性
http://jvn.jp/cert/JVNVU787932/index.html
BOM: 監視オプション for Oracle Ver.5.0で設定した閾値の値と、コンソールの表示内容が違う
http://www.say-tech.co.jp/support/oracle/-for-oracle-ver50/index.shtml
Mozilla Firefox Bugs in JavaScript Engine and Browser Engine May Let Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Jun/1022376.html
Ruby BigDecimal Conversion Bug May Let Remote Users Deny Service
http://securitytracker.com/alerts/2009/Jun/1022371.html
OpenSolaris smbfs Bug Lets Local Users Access Files
http://securitytracker.com/alerts/2009/Jun/1022370.html
Mozilla Products Code Execution and Security Bypass Vulnerabilities
http://www.vupen.com/english/advisories/2009/1572
Compress::Raw::Zlib for Perl "inflate()" Off-by-one Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/1571
F5 FirePass Data Handling Unspecified Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/1570
Sun OpenSolaris "smbfs" Local Information Disclosure Vulnerability
http://www.vupen.com/english/advisories/2009/1569
Sun Security Update Fixes CUPS Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2009/1568
Sun Security Update Fixes GnuTLS Chain Validation Vulnerability
http://www.vupen.com/english/advisories/2009/1567
Sun Solaris "rpc.nisd" NIS+ Remote Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/1566
eBay Enhanced Picture Uploader ActiveX Code Execution Vulnerability
http://www.vupen.com/english/advisories/2009/1565
Google Chrome Memory Corruption and Information Disclosure Issues
http://www.vupen.com/english/advisories/2009/1564
Ruby BigDecimal Object Convertion Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/1563
MoinMoin Hierarchical ACL Processing Security Bypass Vulnerability
http://www.vupen.com/english/advisories/2009/1562
DX Studio Player Firefox Plugin Remote Command Execution Vulnerability
http://www.vupen.com/english/advisories/2009/1561
Avaya CMS Solaris Libpng Multiple Memory Corruption Vulnerabilities
http://www.vupen.com/english/advisories/2009/1560
Avaya CMS Solaris Kerberos Credential Management Vulnerability
http://www.vupen.com/english/advisories/2009/1559
FreeBSD Direct Pipe Write Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35279
FreeBSD IPv6 'SIOCSIFINFO_IN6' Permission Check Local Security Bypass Vulnerability
http://www.securityfocus.com/bid/35285
xine-lib STTS QuickTime Atom Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34384
+ MySQL 5.0.83 released
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-83.html
+ Solution 260528: Security Vulnerability in the GnuTLS (libgnutls(3)) Library Certificate Chain Validation
http://sunsolve.sun.com/search/document.do?assetkey=1-66-260528-1
[ANNOUNCEMENT] Apache Commons Pool 1.5 Released
http://commons.apache.org/pool/download_pool.cgi
First Linux USB 3.0 drivers emerge
http://www.linux.org/news/2009/06/10/0004.html
New Linux tool helps manage guest virtual machines
http://www.linux.org/news/2009/06/10/0003.html
The latest snapshot for the stable Linux kernel tree is: 2.6.30-git2
http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.30-git2.log
Device Driver Installation Package 4.1 (DDI-4.1) for Veritas Storage Foundation (tm) 5.0 for Windows and Storage Foundation for Windows 5.0 Rollup Patch 1a (RP1a) and Rollup Patch 2 (RP2)
http://seer.entsupport.symantec.com/docs/326335.htm
Device Driver Installation Package 2.1 (DDI-2.1) for Veritas Storage Foundation (tm) 5.1 for Windows (SFW)
http://seer.entsupport.symantec.com/docs/326334.htm
Solution 257548: A Security Vulnerability in OpenSolaris smbfs(7FS) may Expose Data to Unauthorized Users
http://sunsolve.sun.com/search/document.do?assetkey=1-66-257548-1
Windows Guest Reboots If You Use FN-F8 For Keyboard Backlighting
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011823&sliceId=1&docTypeID=DT_KB_1_1
Manual Changes Might Be Needed to Use Networking in Copied Virtual Machine
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011775&sliceId=1&docTypeID=DT_KB_1_1
QueryPerformanceCounter behaves improperly when /usepmtimer is used with some Windows HALs
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011714&sliceId=1&docTypeID=DT_KB_1_1
Determining if Intel Virtualization Technology or AMD Virtualization is enabled in the BIOS without rebooting
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011712&sliceId=1&docTypeID=DT_KB_1_1
VMotion fails with a CPU error in the Resource Map
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011711&sliceId=1&docTypeID=DT_KB_1_1
Control+Alt key combinations in the vCenter Service Console
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011705&sliceId=1&docTypeID=DT_KB_1_1
Drupal-SA-06/11/2009: Nodequeue Module XSS Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29550
RHBA-2009:1092-1: xen bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1092.html
RHSA-2009:1095-1: Critical: firefox security update
http://rhn.redhat.com/errata/RHSA-2009-1095.html
RHSA-2009:1096-1: Critical: seamonkey security update
http://rhn.redhat.com/errata/RHSA-2009-1096.html
ネットユーザーの9割以上がID・パスワードを違うサイトで使い回し――野村総研調査
http://itpro.nikkeibp.co.jp/article/Research/20090612/331672/?ST=security
iDefense Security Advisory 06.11.09: Adobe Reader and Acrobat FlateDecode Integer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00131.html
iDefense Security Advisory 06.11.09: Microsoft Windows 2000 Print Spooler Remote Stack Buffer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00132.html
iDefense Security Advisory 06.11.09: Microsoft Excel SST Record Integer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00130.html
iDefense Security Advisory 06.11.09: Microsoft Active Directory Hexdecimal DN AttributeValue Invalid Free Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00126.html
ModSecurity (Core Rules) HTTP Parameter Pollution Filter Bypass Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00128.html
iDefense Security Advisory 06.11.09: Multiple Vendor WebKit Error Handling Use After Free Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00127.html
FortiGuard Advisory: Adobe Reader/Acrobat TrueType Font Processing Memory Corruption Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00129.html
F5 FirePass Cross-Site Scripting vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00123.html
MULTIPLE SQL INJECTION VULNERABILITIES --Splog <= v-1.2 Beta-->
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00125.html
[USN-786-1] apr-util vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00122.html
PUBLIC ADVISORY: 06.11.09 : Microsoft Active Directory Hexdecimal DN AttributeValue Invalid Free Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=804
PUBLIC ADVISORY: 06.09.09 : Microsoft Excel SST Record Integer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=805
PUBLIC ADVISORY: 06.09.09 : Microsoft Windows 2000 Print Spooler Remote Stack Buffer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=806
PUBLIC ADVISORY: 06.09.09 : Adobe Reader and Acrobat FlateDecode Integer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=807
PUBLIC ADVISORY: 06.08.09 : Multiple Vendor WebKit Error Handling Use After Free Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=803
ClamAV 0.95.2 released
http://www.clamav.net/
amAV 0.95.2 released
http://www.clamav.net/
Firefox 3.0.11 is available
http://www.mozilla.com/en-US/firefox/3.0.11/releasenotes/
F5 FirePass 6 Cross-Site Scripting Vulnerability
http://secunia.com/advisories/35426/
Drupal Views Module Multiple Vulnerabilities
http://secunia.com/advisories/35425/
Drupal NodeQueue Module Multiple Vulnerabilities
http://secunia.com/advisories/35424/
Sun Solaris GnuTLS X.509 Certificate Chain Validation Vulnerability
http://secunia.com/advisories/35423/
Perl Compress::Raw::Zlib Module Off-by-One Vulnerability
http://secunia.com/advisories/35422/
Drupal Booktree Module Script Insertion Vulnerability
http://secunia.com/advisories/35421/
F5 FirePass Cross-Site Scripting Vulnerability
http://secunia.com/advisories/35418/
Desi Short URL Script Authentication Bypass
http://secunia.com/advisories/35409/
NfSen Command Injection Vulnerability
http://secunia.com/advisories/35405/
Ubuntu update for apr-util
http://secunia.com/advisories/35401/
Drupal Taxonomy Manager Module Script Insertion Vulnerability
http://secunia.com/advisories/35391/
Joomla! MooFAQ Component "file" Local File Disclosure
http://secunia.com/advisories/35370/
MRCGIGUY The Ticket System Security Bypass
http://secunia.com/advisories/35350/
Drupal Services Module Key-based Access Security Bypass
http://secunia.com/advisories/33371/
ModSecurity <= 2.5.9 (Core Rules <= 2.5-1.6.1) Filter Bypass Vuln http://www.milw0rm.com/exploits/8930
Wireshark Prior to 1.0.7 Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/34457
Wireshark PN-DCP Data Format String Vulnerability
http://www.securityfocus.com/bid/34291
Pidgin Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35067
Net-SNMP 'snmpUDPDomain.c' Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/33755
Apple Safari Prior to 4.0 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/35260
Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2009-24 through -32 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/35326
WebKit XML External Entity Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35321
WebKit HTML 5 Standard Method Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/35320
Microsoft Word Record Parsing Length Field Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35188
WebKit JavaScript DOM User After Free Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35325
Apache APR-util 'apr_brigade_vprintf' Off By One Vulnerability
http://www.securityfocus.com/bid/35251
Apache APR-util 'xml/apr_xml.c' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35253
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
Apple Mac OS X PICT Image Handling Integer Overflow Vulnerability
http://www.securityfocus.com/bid/34938
Apple Mac OS X CoreGraphics Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/30488
Adobe Reader and Acrobat JBIG Segments 'Text Region' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35303
Microsoft Windows Print Spooler 'EnumeratePrintShares()' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35206
WebKit 'Canvas' HTML Element Image Capture Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35322
WebKit 'document.implementation' Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/35319
Adobe Reader and Acrobat FlateDecode Filter Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35294
WebKit DOM Event Handler Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35271
WebKit Subframe Click Jacking Vulnerability
http://www.securityfocus.com/bid/35317
Microsoft Excel Malformed Shared String Table Record Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35245
Microsoft Active Directory Encoded LDAP String Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35226
Adobe Reader and Acrobat TrueType Font Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35296
WebKit CSS 'Attr' Function Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35318
WebKit JavaScript 'onload()' Event Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/35315
WebKit 'Attr' DOM Objects Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35310
WebKit XSLT Redirects Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35283
WebKit JavaScript Exception Handling Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35311
WebKit 'Document()' Function Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35284
WebKit JavaScript Garbage Collector Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35309
Opera Web Browser 9.26 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/28585
Apple Safari CoreGraphics TrueType Font Handling Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35308
Microsoft Internet Explorer Page Transition Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34438
Adobe Reader and Acrobat Huffman-encoded JBIG2 Text Heap Overflow Vulnerability
http://www.securityfocus.com/bid/35302
Adobe Reader and Acrobat 9.1.1 and Prior Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/35274
SHA-0/SHA-1 Reduced Operation Digest Collision Weakness
http://www.securityfocus.com/bid/12577
Adobe Reader and Acrobat JBIG 'Pattern Dictionary' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35299
Adobe Reader and Acrobat U3D Model Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35282
Adobe Reader & Acrobat JBIG Pattern Dictionary Allocation Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35300
Adobe Reader and Acrobat JBIG 'Halftone Region' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35301
Adobe Reader and Acrobat JBIG2 Filter Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35298
Adobe Reader and Acrobat Multiple Unspecified Remote Heap Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35295
Adobe Reader and Acrobat Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35289
Adobe Reader and Acrobat JBIG 'Halftone Region' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35293
Adobe Reader and Acrobat JBIG Halftone Region Grid Area Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35291
Microsoft Active Directory Memory Leak Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35225
Microsoft IIS 5.0 WebDAV Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35232
Microsoft IIS Unicode Requests to WebDAV Multiple Authentication Bypass Vulnerabilities
http://www.securityfocus.com/bid/34993
Microsoft Windows Print Spooler Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35209
Microsoft Windows Print Spooler Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35208
Sun OpenSolaris 'smbfs(7FS)' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35306
GnuTLS X.509 Certificate Chain Security Bypass Vulnerability
http://www.securityfocus.com/bid/32232
CUPS 'HP-GL/2' Filter Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/31688
CUPS Multiple Heap Based Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/31690
Yogurt Cross-Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/35324
ModSecurity SQL Injection Rule Security Bypass Vulnerability
http://www.securityfocus.com/bid/35323
phpWebThings 'module' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/35313
F5 Networks FirePass SSL VPN Unspecified Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/35312
'Compress::Raw::Zlib' Perl Module Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35307
0 件のコメント:
コメントを投稿