JVNDB-2008-002417 Adobe RoboHelp によって作成されたファイルにおけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002417.html
JVNDB-2008-002416 Adobe Photoshop におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002416.html
JVNDB-2009-001863 Sun Solaris の Kernel における IP および IPv6 マルチキャスト実装におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001863.html
JVNDB-2009-001862 Samba の acl_group_override 関数におけるアクセスコントロールリストを改ざんされる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001862.html
JVNDB-2009-001861 Samba の smbclient における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001861.html
JVNDB-2009-001860 Adobe Shockwave Player における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001860.html
JVNDB-2009-001509 Wireshark の PROFINET/DCP (PN-DCP) dissector におけるフォーマットストリングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001509.html
JVNDB-2009-000036 Apache Tomcat における情報漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000036.html
JVNDB-2007-000819 Apache HTTP Server の mod_imap および mod_imagemap におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000819.html
JVNDB-2007-000683 tcpdump の BGP 解析における整数オーバーフローの脆弱性が存在します。
http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000683.html
JVNDB-2005-000363 tcpdump の BGP パケット処理におけるサービス運用妨害 (Dos) の脆弱性
http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000363.html
JVNDB-2005-000283 tcpdump の rsvp_print() 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000283.html
JVNDB-2005-000282 tcpdump における不正なパケットによるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000282.html
JVNDB-2005-000281 tcpdump の isis_print() 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000281.html
Apache 2.2.13 がリリースされました
http://www.apache.jp/
Trendプロテクトのアイコンが安全なサイトにアクセスしたにもかかわらず誤って黄色く表示される
http://www.trendmicro.co.jp/support/news.asp?id=1288
Debian update for fetchmail
http://secunia.com/advisories/36236/
Sun Java System Access Manager Policy Agent XML Processing Vulnerabilities
http://secunia.com/advisories/36235/
Ubuntu update for apr
http://secunia.com/advisories/36234/
Ubuntu update for apache2
http://secunia.com/advisories/36233/
Ubuntu update for apr-util
http://secunia.com/advisories/36231/
Debian update for mantis
http://secunia.com/advisories/36225/
Debian update for subversion
http://secunia.com/advisories/36224/
Debian update for apr and apr-util
http://secunia.com/advisories/36223/
Debian update for memcached
http://secunia.com/advisories/36133/
Alkacon OpenCms Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/36104/
+ Apache HTTP Server 2.2.13 Released
http://httpd.apache.org/docs/2.2/new_features_2_2.html
http://www.apache.org/dist/httpd/CHANGES_2.2.13
+ Dovecot 1.2.3 released
http://www.dovecot.org/list/dovecot-news/2009-August/000131.html
+ Solution 264828: A Security Vulnerability in Solaris BIND named(1M) Due to Insufficient Input Validation of Dynamic Update Requests Can Lead to Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-264828-1
+ Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35949
[ANNOUNCEMENT] Apache Commons Math 2.0 Released
http://commons.apache.org/math/
[ANNOUNCE] Apache ODE 1.3.3
http://ode.apache.org/
LinuxCon 2009 less than six weeks away
http://www.linux.org/news/2009/08/07/0001.html
Is Your Linux Distro Here For The Long Haul?
http://www.linux.org/news/2009/08/06/0001.html
Perl 5.10.1 RC1 released
http://use.perl.org/articles/09/08/07/0910246.shtml
MySQL 5.1.38 (Not yet released)
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-38.html
Postfix 2.6.4 stable release candidate 2
http://mirror.postfix.jp/postfix-release/official/postfix-2.6.4-RC2.HISTORY
Postfix 2.7 Snapshot 20090807
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.7-20090807.HISTORY
Postfix 2.7-20090807-nonprod non-production release
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.7-20090807-nonprod.HISTORY
Perl 5.10.1 RC1 released
http://use.perl.org/article.pl?sid=09/08/07/0910246
Solution 265329: Security Vulnerabilities in Sun Java System Access Manager Policy Agent 2.2 (Web Agents) May Cause Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265329-1
Solution 257329: A Security Vulnerability in Certain System Board Firmware Revisions of Sun Fire V215 Servers with XVR-100 Graphic Cards may Allow an Unprivileged User to Panic the System
http://sunsolve.sun.com/search/document.do?assetkey=1-66-257329-1
Gentoo Linux : libTIFF: User-assisted execution of arbitrary code
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30030
Gentoo Linux : Adobe products: Multiple vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30031
Slackware Linux : apr
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30017
Slackware Linux : subversion
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30018
Slackware Linux : apr-util
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30019
SuSE : Sun Java
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30020
Creative Commons : fetchmail security announcement
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30032
RHBA-2009:1202-1: glibc bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1202.html
JCMVP運用ガイダンス
http://www.ipa.go.jp/security/jcmvp/kitei.html#JIG
ZDI-09-052: CA Unicenter Software Delivery dtscore.dll Stack Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00060.html
ZDI-09-051: EMC Replication Manager Client Control Service Remove Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00059.html
ASUS Eee PC and other series: BIOS SMM privilege escalation vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00058.html
iDefense Security Advisory 08.07.09: Adobe Flash Player Invalid Loader Object Reference Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00057.html
[ MDVSA-2009:196 ] samba
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00056.html
[security bulletin] HPSBTU02453 SSRT091037 rev.1 - HP Tru64 UNIX BIND Server, Denial of Service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00054.html
[security bulletin] HPSBOV02452 SSRT090161 rev.1 - HP TCP/IP Services for OpenVMS BIND Server Re
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00052.html
[security bulletin] HPSBUX02451 SSRT090137 rev.1 - HP-UX Running BIND, Remote Denial of Serv
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00050.html
[SECURITY] [DSA 1853-1] New memcached packages fix arbitrary code execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00051.html
[SECURITY] [DSA 1852-1] New fetchmail packages fix SSL certificate verification weakness
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00053.html
Subversion heap overflow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00055.html
[ GLSA 200908-04 ] Adobe products: Multiple vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00049.html
[ GLSA 200908-03 ] libTIFF: User-assisted execution of arbitrary code
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00048.html
CFP: International workshop on Secure Software Engineering
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00047.html
CA20090806-01: Security Notice for Data Transport Services
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00046.html
CA20090806-02: Security Notice for Unicenter Asset Portfolio Management, Unicenter Desktop and S
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00045.html
PUBLIC ADVISORY: 08.07.09: Adobe Flash Player Invalid Loader Object Reference Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=818
Sun OpenSSO Enterprise/Sun Access Manager XML Vulnerabilities
http://isc.sans.org/diary.html?storyid=6925
XML Libraries Data Parsing Vulnerabilities
http://isc.sans.org/diary.html?storyid=6928
Zope ZODB Two Vulnerabilities
http://secunia.com/advisories/36205/
Zope Object Database Two Vulnerabilities
http://secunia.com/advisories/36204/
Slackware update for apr-util
http://secunia.com/advisories/36203/
Slackware update for apr
http://secunia.com/advisories/36202/
Xerces-C++ XML DTD Structures Parsing Denial of Service
http://secunia.com/advisories/36201/
Linux Kernel "clock_nanosleep()" NULL Pointer Dereference
http://secunia.com/advisories/36200/
Red Hat update for java-1.5.0-sun
http://secunia.com/advisories/36199/
SlideShowPro Director "a" File Disclosure Vulnerability
http://secunia.com/advisories/36197/
LM Starmail SQL Injection and File Inclusion
http://secunia.com/advisories/36196/
Gentoo update for tiff
http://secunia.com/advisories/36194/
Gentoo update for adobe-flash and acroread
http://secunia.com/advisories/36193/
HP NonStop Server Telco CLIMs PR-SCTP Vulnerability
http://secunia.com/advisories/36191/
PHP Forum Hoster Portal Script Insertion and Topic Deletion
http://secunia.com/advisories/36190/
Application for Incident Response Teams Cross-Site Scripting and Cross-Site Request Forgery
http://secunia.com/advisories/36189/
HP Tru64 UNIX BIND Dynamic Update Denial of Service
http://secunia.com/advisories/36188/
HP NonStop Server Telco CLIMs Flaw Lets Remote Users Deny Service or Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Aug/1022698.html
Subversion Heap Overflow in libsvn_delta Library Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Aug/1022697.html
CA Software Delivery Buffer Overflow in Data Transport Services Library Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Aug/1022688.html
Java Runtime Environment (JRE) XML Parsing Bug Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Aug/1022680.html
OpenCms Input Validation Flaws Permit Cross-Site Scripting Attacks
http://securitytracker.com/alerts/2009/Aug/1022682.html
Fetchmail NULL Character Flaw in Common Name Field Lets Remote Users Spoof Certficiates
http://securitytracker.com/alerts/2009/Aug/1022679.html
Linux Kernel "clock_nanosleep()" Local Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2197
Apache Xerces C++ XML DTD Structures Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2196
CA Products Data Transport Services Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/2195
CA Products Tomcat Data Parsing Cross Site scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2194
HP NonStop Server Telco CLIM Remote Memory Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/2193
HP TCP/IP Services for OpenVMS BIND Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2192
HP Tru64 UNIX BIND Dynamic Update Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2191
HP-UX BIND Dynamic Update Message Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2190
Subversion APR Binary Deltas Parsing Integer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2009/2180
Apache Portable Runtime "apr_pools.c " Integer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2009/2179
Apache APR-util "apr_rmm.c" Multiple Integer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2009/2178
Mozilla Firefox and Seamonkey Regular Expression Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35891
Mozilla NSS NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/35888
Mozilla Firefox Error Page Address Bar URI Spoofing Vulnerability
http://www.securityfocus.com/bid/35803
Computer Associates Multiple Products Data Transport Services Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35984
Adobe Flash Player and AIR Loader Object Heap Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35904
Bugzilla 'show_bug.cgi' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35916
IBM Tivoli Identity Manager Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/35566
Sun VirtualBox Host Operating System Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35915
Arab Portal 'forum.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/35914
Samba Format String And Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/35472
Joomla! JFusion ('com_jfusion') Component 'Itemid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/35912
Google SketchUp '.skp' File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35911
Apache 'Options' and 'AllowOverride' Directives Security Bypass Vulnerability
http://www.securityfocus.com/bid/35115
Apache 'mod_proxy' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35565
Fetchmail NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/35951
Apache 'mod_deflate' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35623
Apache APR-util 'xml/apr_xml.c' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35253
Sun Java Runtime Environment Proxy Mechanism Implementation Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/35943
Sun Java Runtime Environment JPEG Image Handling Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35942
Sun Java Runtime Environment Audio System Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35939
JNLPAppletLauncher Arbitrary File Creation Vulnerability
http://www.securityfocus.com/bid/35946
Sun Java Runtime Environment Unpack200 JAR Unpacking Utility Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35944
Apache 'mod_proxy_ajp' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34663
Apache APR-util 'apr_brigade_vprintf' Off By One Vulnerability
http://www.securityfocus.com/bid/35251
Subversion Binary Delta Processing Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35983
SkaDate Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/35813
LibTIFF Multiple Remote Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35652
LibTIFF 'LZWDecodeCompat()' Remote Buffer Underflow Vulnerability
http://www.securityfocus.com/bid/35451
Adobe Flash Player Active Template Library Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35846
Adobe Flash Player and AIR 'intf_count' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35907
Adobe Flash Player and AIR URI Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35902
Adobe Flash Player and AIR Unspecified Click Jacking Vulnerability
http://www.securityfocus.com/bid/35905
Adobe Flash Player and AIR Sandbox Bypass Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35908
Adobe Flash Player and AIR NULL Pointer Exception Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35906
Adobe Flash Player and AIR (CVE-2009-1866) Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35901
Adobe Flash Player and AIR Unspecified Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35900
Adobe Acrobat, Reader, and Flash Player Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35759
Apache Tomcat 'HttpServletResponse.sendError()' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/30496
Apache APR and APR-util Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/35949
Linux Kernel 'kvm_arch_vcpu_ioctl_set_sregs()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35529
ISC BIND 9 Remote Dynamic Update Message Denial of Service Vulnerability
http://www.securityfocus.com/bid/35848
WordPress Prior to Version 2.8.3 'wp-admin' Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/35935
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
Sun Java Runtime Environment XML Parsing Denial of Service Vulnerability
http://www.securityfocus.com/bid/35958
IETF and W3C XML Digital Signature Specification HMAC Truncation Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35671
Sun Java SE Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/35922
EMC Replication Manager Client Control Service Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35998
PhotoPost PHP 'cat' Parameter Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/35996
Multiple ASUS Products System Management Mode Multiple Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/35995
Arab Portal Login SQL Injection Vulnerability
http://www.securityfocus.com/bid/35994
Memcached Multiple Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35989
Python Expat Wrapper Library Unspecified XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35988
Zope Object Database ZEO Network Protocol Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/35987
Xerces-C++ Nested DTD Structure XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35986
0 件のコメント:
コメントを投稿