Kernel release: 2.6.30-rc8
http://www.linux.org/news/2009/06/03/0001.html
http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.30-rc8
コンピュータウイルス・不正アクセスの届出状況[5月分]について
http://www.ipa.go.jp/security/txt/2009/06outline.html
「FTPパスワードが盗まれて、Web改ざんされている」――専門家が警告
“一発”で不正侵入されるケースが増加、サイト管理者は十分注意を
http://itpro.nikkeibp.co.jp/article/NEWS/20090603/331222/?ST=security
「難読化を繰り返して検出を困難に」――工夫を凝らすWebウイルス
2万サイト以上に埋め込まれた新型ウイルス、米ウェブセンスが詳細を報告
http://itpro.nikkeibp.co.jp/article/NEWS/20090603/331221/?ST=security
JPCERT/CC WEEKLY REPORT 2009-06-03
http://www.jpcert.or.jp/wr/2009/wr092101.html
IBM DB2 LDAP Authentication Bug Lets Remote Users Access the Database
http://securitytracker.com/alerts/2009/Jun/1022319.html
SafeNet SoftRemote Stack Overflow in IKE Service Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Jun/1022316.html
+ クラウド時代のIT投資の全体最適化を支える統合システム運用管理「JP1 Version 9」を発売
http://www.hitachi.co.jp/New/cnews/month/2009/06/0602.html
+ Apache Tomcat 6.0.20 released
http://www.meisei-u.ac.jp/mirror/apache/dist/tomcat/tomcat-6/v6.0.20/README.html
+ OpenSSL 'ChangeCipherSpec' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35174
- Linux Kernel 'splice(2)' Double Lock Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35143
- PHP 'mbstring.func_overload' Webserver Denial Of Service Vulnerability
http://www.securityfocus.com/bid/33542
Solution 260228: SUN ALERT WEEKLY SUMMARY REPORT - Week of 24-May-2009 to 30-May-2009
http://sunsolve.sun.com/search/document.do?assetkey=1-66-260228-1
Installing Fusion to Mac OS X 10.5.7
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1011531&sliceId=1&docTypeID=DT_KB_1_1
DSA 1809-1: New Linux 2.6.26 packages fix several vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29425
Quicktime-SA-06/02/2009: Apple QuickTime Image Description Atom Sign Extension Memory Corruption
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29426
QuickTime-SA-06/02/2009: Apple QuickTime MS ADPCM Encoding Buffer Overflow
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29429
APPLE-SA-2009-06-01-1: QuickTime 7.6.2
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29422
APPLE-SA-2009-06-01-2: iTunes 8.2
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29423
QuickTime Buffer Overflows in Processing Multiple Media Formats Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Jun/1022314.html
iTunes Stack Overflow in Processing 'itms:' URLs Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Jun/1022313.html
QuickTime 7.6.2 のセキュリティコンテンツについて
http://support.apple.com/kb/HT3591?viewlocale=ja_JP
iTunes 8.2 のセキュリティコンテンツについて
http://support.apple.com/kb/HT3592?viewlocale=ja_JP
Debian update for cyrus-sasl2 and cyrus-sasl2-heimdal
http://secunia.com/advisories/35321/
ZeusCart "maincatid" SQL Injection Vulnerability
http://secunia.com/advisories/35319/
Ubuntu update for cron
http://secunia.com/advisories/35318/
ASP Football Pool "NFL.mdb" Database Disclosure
http://secunia.com/advisories/35317/
Omniformat ImageMagick Integer Overflow Vulnerability
http://secunia.com/advisories/35316/
AdaptBB "forumspath" File Inclusion Vulnerability
http://secunia.com/advisories/35315/
Apple iTunes "itms" URI Handling Buffer Overflow
http://secunia.com/advisories/35314/
R2 Newsletter Stats Database Disclosure Security Issue
http://secunia.com/advisories/35312/
OCS Inventory NG "systemid" SQL Injection Vulnerability
http://secunia.com/advisories/35311/
Online Grades "ADD" and "key" SQL Injection Vulnerabilities
http://secunia.com/advisories/35304/
Escon SupportPortal Pro "cat" and "tid" SQL Injection Vulnerabilities
http://secunia.com/advisories/35300/
Unclassified NewsBoard Multiple Vulnerabilities
http://secunia.com/advisories/35299/
Debian update for linux-2.6
http://secunia.com/advisories/35298/
strongSwan Two Denial of Service Vulnerabilities
http://secunia.com/advisories/35296/
OCS Inventory NG download.php SQL Injection Vulnerabilities
http://secunia.com/advisories/35288/
RadCLASSIFIEDS "seller" SQL Injection Vulnerability
http://secunia.com/advisories/35287/
Debian update for drupal6
http://secunia.com/advisories/35282/
SafeNet SoftRemote IKE VPN Service Buffer Overflow Vulnerability
http://secunia.com/advisories/35280/
Ston3D "system.openURL()" Command Injection Vulnerability
http://secunia.com/advisories/35256/
WoltLab Burning Board Uploaded Images Cross-Site Scripting
http://secunia.com/advisories/35236/
IBM DB2 Denial of Service and LDAP Authentication Security Issue
http://secunia.com/advisories/35235/
GStreamer Good Plug-ins PNG Processing Integer Overflow Vulnerability
http://secunia.com/advisories/35205/
LogMeIn Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/34934/
ACDSee Products Two Buffer Overflow Vulnerabilities
http://secunia.com/advisories/33700/
暗号モジュール認証製品リスト
http://www.ipa.go.jp/security/jcmvp/val.html
[SECURITY] [DSA 1810-1] New cups/cupsys packages fix denial of service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00036.html
CORE-2009-0420 - Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00037.html
TPTI-09-04: Apple Terminal xterm Resize Escape Sequence Memory Corruption Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00034.html
TPTI-09-03: Apple iTunes Multiple Protocol Handler Buffer Overflow Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00033.html
[SECURITY] [DSA 1810-1] New libapache-mod-jk packages fix information disclosure
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00035.html
ZDI-09-030: Apple Quicktime PICT Opcode 0x71 Heap Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00032.html
ZDI-09-029: Apple QuickTime Jpeg2000 Marker Size Heap Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00031.html
ZDI-09-028: Apple QuickTime CRGN Atom Parsing Heap Buffer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00030.html
ZDI-09-027: Apple Quicktime PICT Opcode 0x8201 Heap Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00029.html
ZDI-09-026: Apple QuickTime Packed-bit Decoding Heap Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00028.html
ZDI-09-025: Apple Quicktime Picture Viewer FLC Delta-Encoded Frame Decompression Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00027.html
MULTIPLE LOCAL FILE INCLUSION VULNERABILITIES -- Online Grades & Attendance <= v-3.2.6 -->
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00025.html
ACDSee Products TIFF and Font Parsing Buffer Overflow Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00022.html
[security bulletin] HPSBUX02429 SSRT090058 rev.2 - HP-UX Running Java, Remote Execution of Arbitrary Code and Other Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00026.html
Secunia Research: QuickTime Sorenson Video 3 Content Parsing Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00021.html
Secunia Research: Apple QuickTime MS ADPCM Encoding Buffer Overflow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00020.html
[SECURITY] [DSA 1809-1] New Linux 2.6.26 packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00024.html
[ MDVSA-2009:126 ] eggdrop
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00023.html
Podcast Generator Multiple Remote And Local File Include Vulnerabilities
http://www.securityfocus.com/bid/28038
Podcast Generator 'core/admin/delete.php' Arbitrary File Deletion Vulnerability
http://www.securityfocus.com/bid/34317
PHP-Nuke Downloads Module 'query' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/35180
Apache Tomcat mod_jk Content Length Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34412
CUPS 'cups/ipp.c' NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35169
Apple iTunes Multiple URI Handler Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35157
Apple Mac OS X Terminal Window Resize Command Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35182
aMember Multiple Cross Site Scripting And HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/35089
Linux Kernel 'exit_notify()' CAP_KILL Verification Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34405
Linux Kernel 'splice(2)' Double Lock Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35143
Linux Kernel 'NFS filename' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/34390
strongSwan IKE Request Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/35178
DotNetNuke User Account Security Bypass Vulnerability
http://www.securityfocus.com/bid/33109
ImageMagick DCM, DIB, XBM, XCF, and XWD Image Files Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/25763
Xen 'hypervisor_callback()' Guest Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/34957
Eggdrop 'ctcpbuf' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/34985
AlstraSoft Article Manager Pro 'article/register.php' Remote File Upload Vulnerability
http://www.securityfocus.com/bid/35177
Apple QuickTime Clipping Region (CRGN) Atom Types Heap Overflow Vulnerability
http://www.securityfocus.com/bid/35167
Drupal UTF-7 'book-export-html.tpl.php' HTML Injection Vulnerability
http://www.securityfocus.com/bid/34946
Apple QuickTime PICT Image Heap Overflow Vulnerability
http://www.securityfocus.com/bid/35164
Apple QuickTime FLC Compression File Heap Overflow Vulnerability
http://www.securityfocus.com/bid/35161
Apple QuickTime JP2 Image Handling Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35165
Apple QuickTime PSD Image Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35168
PHP 'imageRotate()' Uninitialized Memory Information Disclosure Vulnerability
http://www.securityfocus.com/bid/33002
PHP 'mbstring' Extension Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/32948
PHP ZipArchive::extractTo() '.zip' Files Directory Traversal Vulnerability
http://www.securityfocus.com/bid/32625
PHP Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/30649
PHP 'rfc822_write_address()' Function Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/29829
PHP FastCGI Module File Extension Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/31612
PHP 5.2.8 and Prior Versions Multiple Vulnerabilities
http://www.securityfocus.com/bid/33927
PHP 'mbstring.func_overload' Webserver Denial Of Service Vulnerability
http://www.securityfocus.com/bid/33542
Linux Kernel NFS 'MAY_EXEC' Security Bypass Vulnerability
http://www.securityfocus.com/bid/34934
Linux Kernel CIFS 'decode_unicode_ssetup()' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34612
Multiple ACDSee Products Font File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35176
NTP 'ntpd' Autokey Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35017
NTP 'ntpq' Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34481
OpenSSL 'ChangeCipherSpec' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35174
Multiple ACDSee Products TIFF File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35175
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34240
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/32608
OpenSC PKCS#11 Implementation Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/33922
OpenSC 'pkcs11-tool' Inseure Key Generation Vulnerability
http://www.securityfocus.com/bid/34884
Joomla! JUser Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/35160
GStreamer gst-plugins-good 'gstpngdec.c' PNG Output Buffer Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35172
UltraISO CCD and IMG File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34363
Apple QuickTime Image Description Atom Sign Extension Vulnerability
http://www.securityfocus.com/bid/35166
Apple QuickTime Sorenson 3 Video File Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35159
Apple QuickTime MS ADPCM Audio File Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35163
Adobe Acrobat Stack Exhaustion Denial of Service Vulnerability
http://www.securityfocus.com/bid/35148
IBM AIX Setlocale Function Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/19578
IBM DB2 Denial of Service And Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/35171
Xvid Video Codec DirectShow Initialization Logic Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35158
Xvid Video Codec Macroblock Number Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35156
IBM WebSphere MQ Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35170
Apple Mac OS X PICT Image Handling Integer Overflow Vulnerability
http://www.securityfocus.com/bid/34938
Apple QuickTime User Atom Data Size Uninitialized Memory Access Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35162
Ston3D S3DPlayer Web and Standalone 'system.openURL()' Remote Command Injection Vulnerability
http://www.securityfocus.com/bid/35105
Autonomy KeyView Module 'wp6sr.dll' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34086
Microsoft PowerPoint Sound Data (CVE-2009-1129) Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/34839
Vixie Cron PAM_Limits Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/18108
0 件のコメント:
コメントを投稿