[Announce] Release of Apache MyFaces Trinidad 1.2.12
http://myfaces.apache.org/trinidad/download.html
JVNDB-2008-002419 Python における複数のモジュールに関する整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002419.html
JVNDB-2009-001944 Squid における不正なリクエストに関するサービス運用妨害 (DoS) 脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001944.html
JVNDB-2009-001943 Squid におけるバウンドチェックの処理に関するサービス運用妨害 (DoS) 脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001943.html
JVNDB-2009-001942 Sun Solaris の Solaris Auditing サブシステムにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001942.html
JVNDB-2008-001663 LibTIFF の tif_lzw.c におけるバッファアンダーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001663.html
Kernel release: 2.6.31-rc8
http://www.linux.org/news/2009/08/28/0001.html
Solaris sockfs HTTP Request Processing Bug Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Aug/1022784.html
+ Solution 265888: Security Vulnerability in Solaris sockfs Related to HTTP Request Handling May Allow Remote Users to Panic Web Servers Resulting in a Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265888-1
http://secunia.com/advisories/36436/
http://www.vupen.com/english/advisories/2009/2447
http://www.securityfocus.com/bid/36169
+ RHSA-2009:1233-1: Important: kernel security update
http://rhn.redhat.com/errata/RHSA-2009-1233.html
+ Linux Kernel 'kernel/signal.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35929
- Support for WebSphere MQ V7.0.1 multi-instance queue managers on i5/OS and Solaris
http://www-01.ibm.com/support/docview.wss?rs=171&context=SSFKSJ&context=SSEP7X&dc=D600&uid=swg21398427&loc=en_US&cs=UTF-8&lang=en
Solution 200171: Sun ONE/iPlanet Web Server Enable HTTP TRACE Method by Default
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200171-1
NHIN code-a-thon may change government attitude toward open source
http://www.linux.org/news/2009/08/27/0005.html
Why do Linux and open source lovers give Apple a free ride?
http://www.linux.org/news/2009/08/27/0004.html
linux-for-education.org = a huge resource
http://www.linux.org/news/2009/08/27/0003.html
Windows Loses Money, Linux Nears the $1 Billion Mark
http://www.linux.org/news/2009/08/27/0002.html
Nokia ‘in new bid to take on iPhone by using Linux’
http://www.linux.org/news/2009/08/27/0001.html
Why Linux and open source matters for small businesses and schools
http://www.linux.org/news/2009/08/26/0002.html
SCO vs. Linux: Former chief US district judge appointed as trustee
http://www.linux.org/news/2009/08/26/0001.html
New trial means Unix ownership still up for debate
http://www.linux.org/news/2009/08/25/0002.html
SCO wins Unix copyright appeal. Trouble for Linux?
http://www.linux.org/news/2009/08/25/0001.html
Cisco Security Advisory: Cisco IOS XR Software Border Gateway Protocol Vulnerabilities
http://www.cisco.com/warp/public/707/cisco-sa-20090818-bgp.shtml
Document ID: 330329: Filesystem corruption is seen on volumes after performing a 'Disk Evacuate' or 'Hot Relocation' operation in Storage Foundation for Windows (SFW) 5.1.
http://support.veritas.com/docs/330329
Document ID: 330262: When replicating data using the VVR option in SFW 5.0 RP1a, a server crash (BSOD) or hang can occur when replication attempts to reinitialize following an outage. This is normally seen immediately following an import of the Diskgroup or after the cluster software (SFW-HA / MSCS) starts and brings the VVR resources online.
http://support.veritas.com/docs/330262
Document ID: 330044: How to manually remove Veritas Volume Shadow Copy provider installed by Storage Foundation for Windows 4.3 (SFW)
http://support.veritas.com/docs/330044
Document ID: 329924: Filesystem corruption is seen on volumes after performing a 'Disk Evacuate' or 'Hot Relocation' operation in Storage Foundation for Windows (SFW) 5.1.
http://support.veritas.com/docs/329924
[SECURITY] [DSA 1871-2] New wordpress packages fix regression
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00251.html
信頼できるWebサイトに専用マーク,ベリサインが2010年に新サービス
http://itpro.nikkeibp.co.jp/article/NEWS/20090827/336122/?ST=security
Debian : New wordpress packages fix regression
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30253
Debian : New xulrunner packages fix spoofing vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30254
Debian : New nss packages fix several vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30255
Independent Researcher : Multiple security issues in Open Auto Classifieds version <= 1.5.9 http://www.criticalwatch.com/support/security-advisories.aspx?AID=30257
RHBA-2009:1234-1: new package: v7
http://rhn.redhat.com/errata/RHBA-2009-1234.html
Drupal Go - url redirects Module Multiple Vulnerabilities
http://secunia.com/advisories/36503/
Symantec Altiris Deployment Solution Multiple Vulnerabilities
http://secunia.com/advisories/36502/
Fedora update for kernel
http://secunia.com/advisories/36501/
Cisco Unified Communications Manager Denial of Service Vulnerabilities
http://secunia.com/advisories/36499/
Cisco Unified Communications Manager Denial of Service Vulnerabilities
http://secunia.com/advisories/36498/
Drupal Ajax Table Module Cross-Site Scripting and Security Bypass
http://secunia.com/advisories/36497/
Red Hat update for gnutls
http://secunia.com/advisories/36496/
Cisco Unified Communications Manager SIP Header Denial of Service
http://secunia.com/advisories/36495/
Symantec Products Internet Email Scanning Denial of Service
http://secunia.com/advisories/36493/
Back In Time Backup Removal Insecure File Permissions
http://secunia.com/advisories/36492/
Affiliate Master "search" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36491/
Auction RSS Content Script "id" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/36490/
DigiOz Guestbook "search_term" Cross-Site Scripting
http://secunia.com/advisories/36489/
Pirates of The Caribbean "x" and "y" SQL Injection Vulnerabilities
http://secunia.com/advisories/36488/
LinkorCMS "searchstr" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36487/
IBM Tivoli Access Manager for Enterprise Single Sign-On Information Disclosure
http://secunia.com/advisories/36486/
JCE-Tech PHP Calendars "search" Cross-Site Scripting
http://secunia.com/advisories/36484/
PHP Video Script "key" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36483/
JCE-Tech SearchFeed Script "search" Cross-Site Scripting
http://secunia.com/advisories/36482/
Stand Alone Arcade "cat" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36481/
VideoGirls Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/36480/
RASH Quote Management System SQL Injection Vulnerabilities
http://secunia.com/advisories/36477/
phpSANE "file_save" File Inclusion Vulnerability
http://secunia.com/advisories/36476/
bingo!CMS Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/36458/
OpenAutoClassifieds Multiple Vulnerabilities
http://secunia.com/advisories/36455/
TFTPUtil GET Request Denial of Service Vulnerability
http://secunia.com/advisories/36447/
Linux Kernel ".getname" Information Disclosure
http://secunia.com/advisories/36438/
Sun Solaris "sockfs" Module HTTP Requests Denial of Service
http://secunia.com/advisories/36436/
Debian update for xulrunner
http://secunia.com/advisories/36435/
Debian update for nss
http://secunia.com/advisories/36434/
Wap-motor "image" File Disclosure Vulnerability
http://secunia.com/advisories/36416/
SmartyPaginate "next" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36364/
Symantec Client Security E-mail Processing Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Aug/1022783.html
Symantec Anti Virus E-mail Processing Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Aug/1022782.html
Norton Internet Security E-mail Processing Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Aug/1022781.html
Norton Anti-Virus E-mail Processing Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2009/Aug/1022780.html
Microsoft Office Web Components 2000 Buffer Overflow Vulnerability
http://www.securiteam.com/windowsntfocus/5SP0L20S0C.html
Cisco Unified Communications Manager Denial of Service Vulnerabilities
http://www.securiteam.com/unixfocus/5TP0M20S0A.html
Autonomy KeyView Excel File SST Parsing Integer Overflow Vulnerability
http://www.securiteam.com/unixfocus/5UP0N20S0Y.html
Open Auto Classifieds SQL Injection XSS and Filepath Disclosure
http://www.securiteam.com/unixfocus/5VP0O20S0A.html
Adobe Flex 3.3 SDK DOM-Based XSS
http://www.securiteam.com/securitynews/5WP0P20S0C.html
Symantec Altiris Deployment Solution Security Bypass Vulnerabilities
http://www.vupen.com/english/advisories/2009/2450
Symantec Products Email Message Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2449
Cisco Unified Communications Manager Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2009/2448
Sun Solaris "sockfs" HTTP Request Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2447
RASH Quote Management System (RQMS) SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2446
JCE-Tech Affiliate Master Script "search" Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2445
JCE-Tech Auction RSS Content Script "id" Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2444
DigiOz Guestbook "search_term" Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2443
Pirates of The Caribbean "y" and "x" Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2442
JCE-Tech PHP Calendars Script "search" Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2441
JCE-Tech PHP Video Script "key" Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2440
JCE-Tech SearchFeed Script "search" Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2439
Stand Alone Arcade "cat" Parameter Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2438
VideoGirls BiZ Multiple Parameter Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2009/2437
phpSANE "file_save" Parameter Remote File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2009/2436
Allomani 2007 "cat" Parameter Parameter SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2435
PAD Site Scripts SQL Injection and Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2009/2434
Open Auto Classifieds File Upload and SQL Injection Vulnerabilities
http://www.vupen.com/english/advisories/2009/2433
Discuz! Plugin Crazy Star "fmid" Parameter SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2432
TotalCalendar SQL Injection and Local File Inclusion Vulnerabilities
http://www.vupen.com/english/advisories/2009/2431
Moa Gallery Remote File Inclusion and File Disclosure Vulnerabilities
http://www.vupen.com/english/advisories/2009/2430
TFTPUtil Request Processing Remote Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/2429
Sun Java System Access Manager Debug Files Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35963
Sun Java System Access Manager CDCServlet Component Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35961
Apple GarageBand Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35926
Thunderstone TEXIS Path Disclosure Vulnerability
http://www.securityfocus.com/bid/4035
Thunderstone TEXIS 'texis.exe' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/7105
Bugzilla 'show_bug.cgi' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35916
Google SketchUp '.skp' File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35911
Mobilelib Gold Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/35910
Linux Kernel 'sock_sendpage()' NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/36038
IBM Tivoli Identity Manager Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/35566
Linux Kernel 'udp_sendmsg()' MSG_MORE Flag Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36108
Mozilla Firefox 'nsViewManager.cpp' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35413
Multiple Browsers Web Proxy Redirect Handling Man In The Middle Vulnerability
http://www.securityfocus.com/bid/35412
Mozilla Firefox and SeaMonkey Address Bar URI Spoofing Vulnerability
http://www.securityfocus.com/bid/35388
Mozilla Firefox/Thunderbird/SeaMonkey 'file://' URI Security Bypass Vulnerability
http://www.securityfocus.com/bid/35386
Mozilla Firefox and SeaMonkey JavaScript Chrome Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35373
Mozilla Firefox 'NPObject' Access Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35360
Mozilla Firefox Large GIF File Background Denial of Service Vulnerability
http://www.securityfocus.com/bid/35280
Apache 'mod_proxy_ajp' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34663
Linux Kernel 'clear_child_tid()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35930
Linux Kernel 'kernel/signal.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35929
Linux Kernel with SELinux 'mmap_min_addr' Low Memory NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/36051
Linux Kernel 'fs/proc/base.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36019
Sphider 'conf.php' Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/36170
PHP-Fusion Multiple Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/36171
PHP-Fusion 'downloads.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/36167
TurnkeyForms Web Hosting Directory Login SQL Injection Vulnerability
http://www.securityfocus.com/bid/36166
WordPress Plugin WP-Syntax Remote PHP Code Execution Vulnerability
http://www.securityfocus.com/bid/36040
Joomla! DigiFolio Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36172
VideoGirls Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/36168
Sun Solaris 'sockfs' Kernel Module Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36169
0 件のコメント:
コメントを投稿