「ボットネットは複数回売買できるデジタル資産に変化」,Finjanの調査
http://itpro.nikkeibp.co.jp/article/Research/20090618/332145/?ST=security
Webサイト改ざん攻撃「Nine-Ball」,4万サイト以上に影響
http://itpro.nikkeibp.co.jp/article/NEWS/20090618/332105/?ST=security
「iPhone OS」におけるセキュリティ上の弱点(脆弱性)の注意喚起
http://www.ipa.go.jp/security/vuln/documents/2009/200906_iphone.html
脆弱性対策情報データベース「JVN iPedia」を機能強化
http://www.ipa.go.jp/security/vuln/documents/2009/200906_jvn_ipedia.html
プレス発表: 暗号アルゴリズム確認書第一号の発行
~「暗号アルゴリズム確認制度」による、暗号機能の信頼性向上を目指して~
http://www.ipa.go.jp/about/press/20090618.html
JVN#87239696: iPhone OS におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN87239696/index.html
JVNDB-2009-000040: iPhone OS におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000040.html
JVNDB-2009-000039: Microsoft Works コンバーターにおけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000039.html
JVNDB-2009-000038: A51 D.O.O. 製 activeCollab におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000038.html
JVNDB-2009-000037: Apache Tomcat におけるサービス運用妨害(DoS)の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000037.html
JVNDB-2009-000036: Apache Tomcat における情報漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000036.html
JVNDB-2009-000035: Serene Bach におけるセッション ID が推測可能な脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000035.html
[SECURITY] [DSA 1817-1] New ctorrent packages fix arbitrary code execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00180.html
+ GnuPG 2.0.12 released
http://lists.gnupg.org/pipermail/gnupg-announce/2009q2/000288.html
[Announce] Dirmngr 1.0.3 released
http://www.gnupg.org/service.html
Time for Canada's government to open up
http://www.linux.org/news/2009/06/17/0005.html
Swiss Users Stand Up For Open Source
http://www.linux.org/news/2009/06/17/0004.html
Red Hat's Virtualization Plan Enters Next Phase
http://www.linux.org/news/2009/06/17/0003.html
Why Is the PC vs. Mac war still raging?
http://www.linux.org/news/2009/06/17/0002.html
Save a job with open source
http://www.linux.org/news/2009/06/17/0001.html
The latest snapshot for the stable Linux kernel tree is: 2.6.30-git11
http://www.kernel.org/pub/linux/kernel/v2.6/snapshots/patch-2.6.30-git11.log
Microsoft Security Advisory (969898)
http://www.microsoft.com/technet/security/advisory/969898.mspx
Microsoft Security Advisory (960715)
http://www.microsoft.com/technet/security/advisory/960715.mspx
Microsoft Security Advisory (956391)
http://www.microsoft.com/technet/security/advisory/956391.mspx
RHSA-2009:1109-01: Critical: acroread security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29614
SSA:2009-167-02: apr-util
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29606
SSA:2009-167-01: slackware-security mozilla-firefox
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29607
The View Connection Server might become unavailable at regular intervals, such as every 24 or 48 hours
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011993&sliceId=1&docTypeID=DT_KB_1_1
ヤフーをかたるフィッシングが相次ぐ、ヤフオクユーザーは特に注意を
ユーザーアカウントに期限なし、「会員情報の更新が必要」にだまされるな
http://itpro.nikkeibp.co.jp/article/NEWS/20090618/332103/?ST=security
「盗むつもりが盗まれる」――偽のパスワード解析プログラムに注意
http://itpro.nikkeibp.co.jp/article/NEWS/20090618/332101/?ST=security
JVNVU#568153: Adobe Reader および Acrobat の JPX データ処理における複数の脆弱性
http://jvn.jp/cert/JVNVU568153/index.html
JVNTA09-161A: Adobe Reader および Acrobat における脆弱性
http://jvn.jp/cert/JVNTA09-161A/index.html
Samba 3.3.5 Available for Download
http://news.samba.org/releases/3.3.5/
Samba 3.2.12 Maintenance Release Available
http://news.samba.org/releases/3.2.12/
Wireshark 1.2 Released
http://www.wireshark.org/news/20090615.html
http://www.wireshark.org/docs/relnotes/wireshark-1.2.0.html
[ MDVSA-2009:135 ] kernel
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00179.html
[ MDVSA-2009:134 ] firefox
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00178.html
CERT-FI statement on the Outpost24 TCP issues updated
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00177.html
BOM: アーカイブマネージャでBOMアーカイブサーバーへの接続を実行すると、アプリケーションエラーが発生することがあります
http://www.say-tech.co.jp/support/faq/bom-5/index.shtml
Fedora update for icu
http://secunia.com/advisories/35498/
Red Hat update for acroread
http://secunia.com/advisories/35496/
SUSE update for kernel
http://secunia.com/advisories/35494/
IBM WebSphere Application Server Multiple Vulnerabilities
http://secunia.com/advisories/35491/
SUSE update for MozillaFirefox
http://secunia.com/advisories/35490/
Red Hat update for kernel
http://secunia.com/advisories/35488/
Red Hat update for httpd
http://secunia.com/advisories/35487/
TorrentTrader Classic Multiple Vulnerabilities
http://secunia.com/advisories/35456/
Debian update for apache2
http://secunia.com/advisories/35453/
Recipe Script Script Insertion Vulnerability
http://secunia.com/advisories/35448/
Slackware update for apr-util
http://secunia.com/advisories/35444/
International Components for Unicode Conversion Error Security Bypass
http://secunia.com/advisories/35436/
Slackware update for mozilla-firefox
http://secunia.com/advisories/35415/
Red Hat update for apr-util
http://secunia.com/advisories/34724/
HP OpenView SNMP Emanate Master Agent Spoofing Issue
http://www.vupen.com/english/advisories/2009/1612
Sun Solaris Print Jobs Local Denial of Service Security Weakness
http://www.vupen.com/english/advisories/2009/1611
Sophos Products CAB Archive Handling Detection Evasion Vulnerability
http://www.vupen.com/english/advisories/2009/1610
CA Service Desk Tomcat Data Parsing Cross Site scripting Vulnerability
http://www.vupen.com/english/advisories/2009/1609
CA ARCserve Backup Message Engine Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/1608
F-Secure Messaging Security Gateway STMP Relay Vulnerability
http://www.vupen.com/english/advisories/2009/1607
GUPnP Empty Message Processing Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/1597
Irssi "event_wallops()" Empty Command Off-by-one Vulnerability
http://www.vupen.com/english/advisories/2009/1596
McAfee ePolicy Orchestrator 'naPolicyManager.dll' ActiveX Control Lets Remote Overwrite Files
http://securitytracker.com/alerts/2009/Jun/1022413.html
F-Secure Messaging Security Gateway SMTP Turbo Module Bug Lets Remote Users Bypass Security Filtering Restrictions
http://securitytracker.com/alerts/2009/Jun/1022412.html
Apple Mac OS X CoreGraphics PDF Handling Heap Overflow Vulnerability
http://www.securityfocus.com/bid/34965
Apple Mac OS X International Components for Unicode Invalid Byte Sequence Handling Vulnerability
http://www.securityfocus.com/bid/34974
Apple Safari Prior to 3.2 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/32291
Apple iPhone and iPod touch Prior to Version 3.0 Multiple Vulnerabilities
http://www.securityfocus.com/bid/35414
Apple Mac OS X CarbonCore Stack Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/30487
WebKit 'Canvas' HTML Element Image Capture Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35322
WebKit Frame Transition Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/35328
WebKit JavaScript DOM User After Free Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35325
WebKit 'Location' and 'History' Objects Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/35327
WebKit 'Canvas' SVG Image Capture Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35331
WebKit XSLT Redirects Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35283
Microsoft Active Directory Encoded LDAP String Memory Corruption Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35226
Linux Kernel 64 Bit ABI System Call Parameter Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/33275
Linux Kernel Frame Size Integer Overflow Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34654
Linux Kernel 'drivers/char/agp/generic.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34673
Linux Kernel 'e1000/e1000_main.c' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35185
Linux Kernel NFS 'MAY_EXEC' Security Bypass Vulnerability
http://www.securityfocus.com/bid/34934
Linux Kernel 'splice(2)' Double Lock Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35143
WebKit DOM Event Handler Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35271
Linux Kernel 'exit_notify()' CAP_KILL Verification Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34405
Microsoft Active Directory Memory Leak Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35225
Linux Kernel 'inet6_hashtables.c' NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/34602
WebKit JavaScript Prototypes Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/35330
Microsoft Windows Print Spooler Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35209
Microsoft IIS Unicode Requests to WebDAV Multiple Authentication Bypass Vulnerabilities
http://www.securityfocus.com/bid/34993
Microsoft IIS 5.0 WebDAV Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35232
Multiple Browser Web Proxy Redirect Handling Man In The Middle Vulnerability
http://www.securityfocus.com/bid/35412
Multiple Browsers Cached Certificate HTTP Site Spoofing Vulnerability
http://www.securityfocus.com/bid/35411
Mozilla Firefox 'nsViewManager.cpp' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35413
Mozilla Firefox/SeaMonkey 'file://' URI Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35391
Mozilla Firefox/Thunderbird/SeaMonkey 'file://' URI Security Bypass Vulnerability
http://www.securityfocus.com/bid/35386
Multiple Browser Malicious Proxy HTTPS Man In The Middle Vulnerability
http://www.securityfocus.com/bid/35380
Mozilla Firefox/Thunderbird/SeaMonkey XUL Scripts Content-Policy Check Security Bypass Vulnerability
http://www.securityfocus.com/bid/35377
Mozilla Firefox/Thunderbird/SeaMonkey Null Owner Document Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/35383
Mozilla Firefox and SeaMonkey Address Bar URI Spoofing Vulnerability
http://www.securityfocus.com/bid/35388
Mozilla Firefox/Thunderbird/SeaMonkey Double Frame Construction Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35371
Mozilla Firefox/Thunderbird/SeaMonkey Multiple JavaScript Engine Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/35372
Mozilla Firefox and SeaMonkey JavaScript Chrome Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35373
Mozilla Firefox 'NPObject' Access Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35360
Mozilla Firefox/Thunderbird/SeaMonkey Multiple Browser Engine Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/35370
Mozilla Firefox Large GIF File Background Denial of Service Vulnerability
http://www.securityfocus.com/bid/35280
WebKit 'XMLHttpRequest' HTTP Response Splitting Vulnerability
http://www.securityfocus.com/bid/35270
WebKit CSS 'Attr' Function Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35318
WebKit XML External Entity Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35321
WebKit 'about:blank' Security Bypass Vulnerability
http://www.securityfocus.com/bid/35332
WebKit 'document.implementation' Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/35319
Multiple Browser JavaScript Engine 'Math.Random()' Cross Domain Information Disclosure Vulnerability
http://www.securityfocus.com/bid/33276
WebKit JavaScript Exception Handling Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35311
WebKit HTML 5 Standard Method Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/35320
WebKit SVGList Objects Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/34924
Apple Mac OS X CoreGraphics PDF Handling Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/34962
IPsec-Tools Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/30657
libxml XML Entity Name Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31126
libxml2 Recursive Entity Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/30783
Libpng Library Uninitialized Pointer Arrays Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/33827
SugarCRM Email Attachment Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/35361
Xpdf JBIG2 Processing Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34568
WebKit JavaScript Garbage Collector Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35309
WebKit Subframe Click Jacking Vulnerability
http://www.securityfocus.com/bid/35317
ClamAV Prior to 0.95.2 Multiple Scanner Bypass Vulnerabilities
http://www.securityfocus.com/bid/35410
FreeType Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34550
libxml2 Denial of Service Vulnerability
http://www.securityfocus.com/bid/31555
libxml2 'xmlBufferResize()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/32331
libxml2 'xmlSAX2Characters()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/32326
Adobe Reader and Acrobat Huffman-encoded JBIG2 Text Heap Overflow Vulnerability
http://www.securityfocus.com/bid/35302
Adobe Reader & Acrobat JBIG Pattern Dictionary Allocation Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35300
Adobe Reader and Acrobat JBIG Segments 'Text Region' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35303
Adobe Reader and Acrobat JBIG 'Halftone Region' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35301
Adobe Reader and Acrobat JBIG 'Pattern Dictionary' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35299
Adobe Reader and Acrobat JBIG2 Filter Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35298
Adobe Reader and Acrobat 9.1.1 and Prior Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/35274
Adobe Reader and Acrobat U3D Model Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35282
Adobe Reader and Acrobat TrueType Font Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35296
Adobe Reader and Acrobat Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35289
Adobe Reader and Acrobat FlateDecode Filter Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35294
Adobe Reader and Acrobat JBIG Halftone Region Grid Area Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35291
Adobe Reader and Acrobat JBIG 'Halftone Region' Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35293
Adobe Reader and Acrobat Multiple Unspecified Remote Heap Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35295
Multiple Browser HTTP Resource in HTTPS Context Security Bypass Vulnerability
http://www.securityfocus.com/bid/35403
IBM DB2 Universal Database Server 8.2 Prior To Fixpak 17 Multiple Vulnerabilities
http://www.securityfocus.com/bid/31058
Linux Kernel nfsd 'CAP_MKNOD' Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/34205
Linux Kernel CIFS Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34453
Linux Kernel '/ipc/shm.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/34020
Linux Kernel CIFS 'decode_unicode_ssetup()' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34612
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/32608
IBM DB2 Universal Database Server 'INSTALL_JAR' Arbitrary File Overwrite Vulnerability
http://www.securityfocus.com/bid/35409
IBM DB2 DAS Server Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35408
DM FileManager 'Username' and 'Password' SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/35035
TCP/IP Protocol Stack Unspecified Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/31545
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34240
Sun Solaris 'lp' Client Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35400
Apache APR-util 'xml/apr_xml.c' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35253
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
Apache APR-util 'apr_brigade_vprintf' Off By One Vulnerability
http://www.securityfocus.com/bid/35251
IBM WebSphere Application Server XML Digital Signature Unspecified Security Vulnerability
http://www.securityfocus.com/bid/34506
IBM WebSphere Application Server Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/35405
Microsoft Office Works for Windows Document Converters Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35184
Microsoft DirectX DirectShow QuickTime Video Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35139
Microsoft Windows Print Spooler 'EnumeratePrintShares()' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35206
Joomla! JVideo! Component 'user_id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/35146
FreeType LWFN Files Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/18034
FreeType Printer Font Binary Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/29637
FreeType TrueType Font 'SHC' Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/29639
FreeType TT_Load_Simple_Glyph() TTF File Integer Overflow Vulnerability
http://www.securityfocus.com/bid/24074
IBM AIX 'rpc.ttdbserver' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35419
fuzzylime (cms) Multiple Local File Include and Arbitrary File Overwrite Vulnerabilities
http://www.securityfocus.com/bid/35418
0 件のコメント:
コメントを投稿