MySQL 5.1.36 (Not yet released)
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-36.html
MySQL 5.0.83 (Not yet released)
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-83.html
McAfee,インターネット・ゲートウエイのセキュリティ・スイートなどを発表
http://itpro.nikkeibp.co.jp/article/NEWS/20090609/331555/?ST=security
JVNVU#836068: MD5 アルゴリズムへの攻撃を用いた X.509 証明書の偽造
http://jvn.jp/cert/JVNVU836068/index.html
JVN#87272440: Apache Tomcat におけるサービス運用妨害(DoS)の脆弱性
http://jvn.jp/jp/JVN87272440/index.html
+ JVN#63832775: Apache Tomcat における情報漏えいの脆弱性
http://jvn.jp/jp/JVN63832775/index.html
JVN#66905322: Apache Tomcat における情報漏えいの脆弱性
http://jvn.jp/jp/JVN66905322/index.html
JVN#30732239: Apache Tomcat において権限のないクライアントからのリクエストが実行されてしまう脆弱性
http://jvn.jp/jp/JVN30732239/index.html
SQLインジェクション攻撃検知数(2009年5月まで)
http://www.lac.co.jp/info/alert/alert20090609.html
Apple Safari Multiple Code Execution and Security Bypass Vulnerabilities
http://www.vupen.com/english/advisories/2009/1522
SAP GUI SAPIrRfc ActiveX Control Remote Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/1521
Apache Tomcat "RequestDispatcher" Information Disclosure Vulnerability
http://www.vupen.com/english/advisories/2009/1520
Sun OpenSolaris "idmap" CIFS Local Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/1519
HP Discovery & Dependency Mapping Inventory Unauthorized Access
http://www.vupen.com/english/advisories/2009/1514
XM Easy Personal FTP Server Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/1513
Apple Safari Bugs Let Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Jun/1022345.html
Apple Safari Bugs Permit Cross-Domain Scripting Attacks
http://securitytracker.com/alerts/2009/Jun/1022344.html
Apple Safari Lets Remote Users Execute Arbitrary JavaScript in the Local Context
http://securitytracker.com/alerts/2009/Jun/1022343.html
Apple Safari Lets Local Users Access Files During Downloading
http://securitytracker.com/alerts/2009/Jun/1022342.html
SAP GUI Buffer Overflow in 'SAPIrRfc' Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Jun/1022341.html
+ DBI-1.609 released
http://search.cpan.org/~timb/DBI-1.609/
http://cpansearch.perl.org/src/TIMB/DBI-1.609/Changes
+ Apache Tomcat 'RequestDispatcher' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35263
- OpenSSL 'zlib' Compression Memory Leak Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/31692
[ANNOUNCE] pgtheme for Drupal 6.x released
http://drupal.org/project/pgtheme
Some Linux Critiques By Way Of A Solaris Dissenter
http://www.linux.org/news/2009/06/08/0006.html
It's COOL-ER with Linux
http://www.linux.org/news/2009/06/08/0005.html
Tiny Core Linux 2.0 released
http://www.linux.org/news/2009/06/08/0004.html
Invisible Linux
http://www.linux.org/news/2009/06/08/0003.html
6 best orthodox file managers for Linux
http://www.linux.org/news/2009/06/08/0002.html
Thank Apple for the Linux 'desktop'
http://www.linux.org/news/2009/06/08/0001.html
Continuent Rolls Out Tungsten Easy
http://www.postgresql.org/about/news.1093
PaGoDump v1.0.2 released
http://www.postgresql.org/about/news.1092
PostgreSQL Maestro 9.5 released
http://www.postgresql.org/about/news.1090
MySQL 6.0.12 (Not yet released)
http://dev.mysql.com/doc/refman/6.0/en/news-6-0-12.html
DSA 1813-1 : New evolution-data-server packages fix several vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29478
DSECRG-09-015 : SAP GUI 6.4 Buffer Overflow vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29481
MDVSA-2009:132: libsndfile
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29477
MDVSA-2009:131: apr-util
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29475
MDVSA-2009:131-1: apr-util
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29476
HPSBMA02433 SSRT090084 rev.1: HP Discovery & Dependency Mapping Inventory (DDMI) Running on Windows, Remote Unauthorized Access
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29483
Kjtechforce-SA-06/05/2009: ('dest') Blind (SQLi) EXPLOIT --mailman Beta-1 -->
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29482
InterN0T-SA-06/05/2009: SiteCore.NET 6.0.0 - XSS Vulnerability-fixed
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29484
ISecAuditors Security Advisories-SA-06/05/2009: Joomla! 1.5.10 JA_Purity Multiple Persistent XSS
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29480
Drupal-SA-06/05/2009: Flag Module Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29479
[USN-783-1] eCryptfs vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00079.html
New paper by Amit Klein (Trusteer) - Temporary user tracking in major browsers and Cross-dom
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00078.html
Rasterbar libtorrent arbitrary file overwrite vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00077.html
[SECURITY] [DSA 1813-1] New evolution-data-server packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00073.html
[DSECRG-09-015] SAP GUI 6.4 Buffer Overflow vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00075.html
[ MDVSA-2009:132 ] libsndfile
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00072.html
[ MDVSA-2009:131-1 ] apr-util
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00076.html
[ MDVSA-2009:131 ] apr-util
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-06/msg00074.html
OpenSolaris Bug in idmap Lets Local Users Deny Service to the CIFS Server
http://securitytracker.com/alerts/2009/Jun/1022340.html
Debian update for evolution-data-server
http://secunia.com/advisories/35357/
Sitecore CMS "sc_error" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/35353/
PeaZIP Archived File Name Handling Command Injection
http://secunia.com/advisories/35352/
Serene Bach Insecure Session ID Handling Security Issue
http://secunia.com/advisories/35335/
Xfig Insecure Temporary Files
http://secunia.com/advisories/35320/
XM Easy Personal FTP Server Denial of Service Vulnerabilities
http://secunia.com/advisories/35271/
HP Discovery & Dependency Mapping Inventory Unauthorised Access
http://secunia.com/advisories/35270/
IBM FileNet Content Manager WSEAF Authentication Vulnerability
http://www.vupen.com/english/advisories/2009/1512
PeaZip Compressed Filename Parsing Command Injection Vulnerability
http://www.vupen.com/english/advisories/2009/1511
Libpng 1-bit Interlaced Images Uninitialized Memory Read Vulnerability
http://www.vupen.com/english/advisories/2009/1510
GStreamer Good Plug-ins PNG Handling Integer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2009/1506
Apache APR-util Multiple Remote Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/1501
Apple MACOS X xnu <= 1228.9.59 Local Kernel Root Exploit http://www.milw0rm.com/exploits/8896
httpdx <= 0.8 FTP Server Delete/Get/Create Directories/Files Exploit http://www.milw0rm.com/exploits/8897
Apple Safari Prior to 4.0 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/35260
Multiple Browser JavaScript Engine 'Math.Random()' Cross Domain Information Disclosure Vulnerability
http://www.securityfocus.com/bid/33276
CUPS 'cups/ipp.c' NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35169
FreeType Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34550
OpenSSL 'zlib' Compression Memory Leak Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/31692
Apache 'Options' and 'AllowOverride' Directives Security Bypass Vulnerability
http://www.securityfocus.com/bid/35115
Apple iPhone and iPod touch Prior to Version 2.2 Multiple Vulnerabilities
http://www.securityfocus.com/bid/32394
Apple iPod Touch/iPhone Prior to Version 2.1 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/31092
Apple Mac OS X CarbonCore Stack Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/30487
Mozilla Firefox/Thunderbird/SeaMonkey MFSA 2009 -07 -08 -09 and -11 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/33990
Libpng Library Uninitialized Pointer Arrays Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/33827
Apple iPhone and iPod Touch Prior to Version 2.0 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/30186
Xpdf JBIG2 Processing Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34568
Mozilla Firefox, SeaMonkey, Camino, and Thunderbird Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/18228
Apple Mac OS X CoreGraphics PDF Handling Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/34962
Apple Mac OS X CoreGraphics Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/30488
Drupal UTF-7 'book-export-html.tpl.php' HTML Injection Vulnerability
http://www.securityfocus.com/bid/34946
libxml2 'xmlBufferResize()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/32331
libxml2 Denial of Service Vulnerability
http://www.securityfocus.com/bid/31555
Drupal Taxonomy Vocabulary 'Help text' HTML Injection Vulnerability
http://www.securityfocus.com/bid/34893
Lussumo Vanilla 'updatecheck.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/35124
Multiple ACDSee Products TIFF File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35175
SDP Downloader 'ASX' File Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34712
libxml2 Recursive Entity Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/30783
libxml2 'xmlSAX2Characters()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/32326
libxml XML Entity Name Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/31126
Sun Java Media Framework Unspecified Denial of Service Vulnerability
http://www.securityfocus.com/bid/7612
Sun ONE/iPlanet Web Server HTTP TRACE Credential Theft Vulnerability
http://www.securityfocus.com/bid/9561
NTP 'ntpq' Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34481
OpenBSD PF Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/34482
FreeBSD 'ktimer' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34196
BS.Player '.bsl' File Hostname Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34190
Joomla! ComSchool Component 'classid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/35257
wxWidgets Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/35258
Apple Mac OS X Kernel Workqueue Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/34959
Evolution Data Server 'ntlm_challenge()' Memory Contents Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34109
GNOME glib Base64 Encoding and Decoding Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34100
GNOME Evolution S/MIME Email Signature Verification Vulnerability
http://www.securityfocus.com/bid/33720
Apple QuickTime PICT Image Heap Overflow Vulnerability
http://www.securityfocus.com/bid/35164
SAP AG SAPgui 'sapirrfc.dll' ActiveX Control Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35256
Serene Bach Session Hijacking Vulnerability
http://www.securityfocus.com/bid/35254
libsndfile VOC and AIFF Processing Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/34978
Apache APR-util 'xml/apr_xml.c' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35253
Apache APR-util 'apr_brigade_vprintf' Off By One Vulnerability
http://www.securityfocus.com/bid/35251
Sun Solaris DTrace Handler IOCTL Request Multiple Local Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/34753
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
HP Discovery and Dependency Mapping Inventory Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/35250
Sun OpenSolaris 'idmap(1M)' Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35252
Apache Tomcat 'RequestDispatcher' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35263
Rasterbar Software libtorrent Arbitrary File Overwrite Vulnerability
http://www.securityfocus.com/bid/35262
Automated Link Exchange Portal Insecure Cookie Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35261
Ideal MooFAQ Joomla! Component 'file_includer.php' Local File Include Vulnerability
http://www.securityfocus.com/bid/35259
0 件のコメント:
コメントを投稿