JVNDB-2009-001841 Linux kernel の agp サブシステムにおける情報漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001841.html
JVNDB-2009-001840 Linux kernel の nfs_permission 関数におけるパーミッション制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001840.html
JVNDB-2009-001839 Linux kernel の nfsd におけるデバイスノードを作成される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001839.html
JVNDB-2009-001838 Linux kernel の CIFS サブシステムにおける Unicode 文字列の処理に関するバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001838.html
JVNDB-2009-001837 Linux kernel の CIFS における長大な nativeFileSystem フィールドの処理に関するバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001837.html
JVNDB-2009-001283 Ghostscript の ICC Format ライブラリにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001283.html
JVNDB-2009-001279 複数の Mozilla 製品における XBL バインディングおよびスタイルシートに関連したクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001279.html
JVNDB-2009-001276 複数の Mozilla 製品における内部 URI の Content-Disposition ヘッダが無視される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001276.html
JVNDB-2009-001275 複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001275.html
JVNDB-2009-001273 複数の Mozilla 製品の JavaScript エンジンにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001273.html
JVNDB-2009-001271 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001271.html
JVNDB-2009-001255 Ghostscript の big2_decode_symbol_dict 関数におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001255.html
JVNDB-2009-001254 Ghostscript の BaseFont writer モジュールにおけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001254.html
JVNDB-2009-001253 Ghostscript の CCITTFax デコードフィルタにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001253.html
JVNDB-2009-001137 ICC Format ライブラリにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001137.html
JVNDB-2009-001136 ICC Format ライブラリにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001136.html
Changes in MySQL 6.0.12 (Not yet released)
http://dev.mysql.com/doc/refman/6.0/en/news-6-0-12.html
Postfix 2.6.4 stable release candidate 1 released
http://mirror.postfix.jp/postfix-release/index.html
http://mirror.postfix.jp/postfix-release/official/postfix-2.6.4-RC1.RELEASE_NOTES
Postfix 2.7 Snapshot 20090803 released
http://mirror.postfix.jp/postfix-release/index.html
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.7-20090803.RELEASE_NOTES
Changes in MySQL 5.0.85 (Not yet released)
http://dev.mysql.com/doc/refman/5.0/en/news-5-0-85.html
Solution 256728: Multiple Security Vulnerabilities in the Solaris Kerberos 'Mech' Libraries May Lead To Execution of Arbitrary Code, Unauthorized Access to Data or a Denial of Service (DoS) Condition
http://sunsolve.sun.com/search/document.do?assetkey=1-66-256728-1
Twitter,危険なURLを含む投稿のフィルタリングを開始
http://itpro.nikkeibp.co.jp/article/NEWS/20090804/335079/?ST=security
[security bulletin] HPSBUX02181 SSRT061289 rev.4 - HP-UX Running IPFilter, Remote Denial of Service (DoS)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00014.html
Blink Blog System Authentication Bypass
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00015.html
[security bulletin] HPSBMA02445 SSRT090058 rev.1 - HP Serviceguard Manager, Remote Execution of Arbitrary Code, Denial of Service (DoS)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00012.html
Discloser 0.0.4-rc2 SQL Injection Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00017.html
AST-2009-004: Remote Crash Vulnerability in RTP stack
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00011.html
[ MDVSA-2009:191 ] OpenEXR
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00010.html
[ MDVSA-2009:190 ] OpenEXR
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00009.html
[SECURITY] [DSA 1849-1] New xml-security-c packages fix signature forgery
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00008.html
[SECURITY] [DSA 1848-1] New znc packages fix remote code execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00007.html
Advisory: Adobe Flash Player and AIR AVM2 intf_count Integer Overflow Remote Code Execution (CVE-2009-1869)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00006.html
[ GLSA 200908-02 ] BIND: Denial of Service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00005.html
Cross-Site Scripting vulnerabiliy in Firefox and Opera
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00016.html
[ MDVSA-2009:189 ] apache-mod_auth_mysql
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00004.html
[ GLSA 200908-01 ] OpenSC: Multiple vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00003.html
[ MDVSA-2009:188 ] php4-eaccelerator
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00013.html
[ MDVSA-2009:187 ] nagios
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00002.html
[ MDVSA-2009:186 ] firebird
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00001.html
[ MDVSA-2009:185 ] firefox
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-08/msg00000.html
- HPSBUX02181 SSRT061289 rev.4 - HP-UX Running IPFilter, Remote Denial of Service (DoS)
http://www13.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c00837319-4
- Sun Java SE Advance Notification Multiple Vulnerabilities
http://www.securityfocus.com/bid/35922
[ANNOUNCE] Apache Jackrabbit 1.5.7 released
http://jackrabbit.apache.org/downloads.html
Mandriva Linux 2010 Alpha 2 released
http://www.linux.org/news/2009/08/03/0004.html
Ubuntu gets desktop support for small businesses
http://www.linux.org/news/2009/08/03/0003.html
SUSE's Amazing Software Vending Machine
http://www.linux.org/news/2009/08/03/0002.html
A first look at KDE 4.3
http://www.linux.org/news/2009/08/03/0001.html
Why can't I just play DVDs in Linux?
http://www.linux.org/news/2009/08/02/0001.html
Cisco IOS Software Border Gateway Protocol 4-Byte Autonomous System Number Vulnerabilities
http://www.cisco.com/warp/public/707/cisco-sa-20090729-bgp.shtml
Asterisk : Remote Crash Vulnerability in RTP stack
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29985
Debian : New znc packages fix remote code execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29975
Debian : New xml-security-c packages fix signature forgery
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29976
Independent Researcher : Flash Player and AIR AVM2 intf_count Integer Overflow Remote Code Execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29984
Mandriva : OpenEXR
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29971
Mandriva : OpenEXR
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29972
Slackware Linux : httpd
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29973
Gentoo Linux : OpenSC: Multiple vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29982
Gentoo Linux : BIND: Denial of Service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29983
Mandriva : firebird
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29967
Mandriva : nagios
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29968
Mandriva : php4-eaccelerator
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29969
Mandriva : apache-mod_auth_mysql
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29970
Apple : iPhone OS 3.0.1
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29974
Independent Researcher : XOOPS Multiple Cross-Site Scripting Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29986
Mandriva : firefox
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29954
Mandriva : apache-mod_security
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29966
Mandriva : apache-mod_security
http://www.criticalwatch.com/support/security-advisories.aspx?AID=29980
Adobe Flash Player、Adobe Reader、Acrobat、Adobe AIR の脆弱性について
http://www.ipa.go.jp/security/ciadr/vul/20090803-adobe.html
RHBA-2009:1191-1: openais bug-fix update
http://rhn.redhat.com/errata/RHBA-2009-1191.html
RHBA-2009:1192-1: cman bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1192.html
トレンドマイクロ、中小企業向け統合セキュリティソフト最新版
http://itpro.nikkeibp.co.jp/article/NEWS/20090804/335054/?ST=security
Switch hardening on your network
http://isc.sans.org/diary.html?storyid=6910
Mozilla Thunderbird / SeaMonkey Network Security Services Vulnerabilities
http://secunia.com/advisories/36125/
Fedora update for OpenEXR
http://secunia.com/advisories/36123/
Fedora update for xml-security-c
http://secunia.com/advisories/36122/
Fedora update for drupal-date
http://secunia.com/advisories/36121/
HP Serviceguard Manager Java JDK/JRE Multiple Vulnerabilities
http://secunia.com/advisories/36120/
IBM Tivoli Manager Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36119/
Uploaderr "upload.php" Arbitrary File Upload Vulnerability
http://secunia.com/advisories/36118/
GnuDIP "username" SQL Injection Vulnerability
http://secunia.com/advisories/36115/
PPScript "cid" SQL Injection Vulnerability
http://secunia.com/advisories/36100/
Debian update for znc
http://secunia.com/advisories/36091/
Debian update for xml-security-c
http://secunia.com/advisories/36089/
Mozilla Firefox Network Security Services Multiple Vulnerabilities
http://secunia.com/advisories/36088/
SquirrelMail Multiple Plugins Package Compromise
http://secunia.com/advisories/36087/
Gentoo update for bind
http://secunia.com/advisories/36078/
ArticleFriend Script "SearchWd" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36077/
Gentoo update for opensc
http://secunia.com/advisories/36074/
justVisual CMS File Inclusion Vulnerabilities
http://secunia.com/advisories/36072/
Bugzilla Product Names Disclosure Security Issue
http://secunia.com/advisories/36071/
Apple iPhone SMS Message Decoding Vulnerability
http://secunia.com/advisories/36070/
FreeBSD BIND named(8) Dynamic Update Message Denial of Service Vulnerability
http://www.securiteam.com/unixfocus/5AP010US0Q.html
Cisco Using Microsoft Active Template Libraries Vulnerability
http://www.securiteam.com/unixfocus/5CP030US0S.html
Firebird SQL op_connect_request main listener shutdown vulnerability
http://www.securiteam.com/securitynews/5DP040US0A.html
HP ProLiant DL/ML 100 Series G5 G6 Servers Remote Denial of Service
http://www.securiteam.com/unixfocus/5BP020US0O.html
Bugzilla "show_bug.cgi" Product Names Disclosure Weakness
http://www.vupen.com/english/advisories/2009/2110
SquirrelMail Plugins Compromise Passwords Disclosure Issue
http://www.vupen.com/english/advisories/2009/2109
HP Serviceguard Manager Java Multiple Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2009/2108
Mozilla Products NSS Code Execution and Security Bypass Issues
http://www.vupen.com/english/advisories/2009/2107
IBM Tivoli Identity Manager Self Service Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2106
Apple iPhone SMS Processing Memory Corruption Vulnerability
http://www.vupen.com/english/advisories/2009/2105
Amaya 11.2 W3C Editor/Browser (defer) Remote BOF Exploit (SEH)
http://www.milw0rm.com/exploits/9330
Blaze HDTV Player 6.0 (.PLF File) Local Buffer Overflow Exploit (SEH)
http://www.milw0rm.com/exploits/9346
MediaCoder 0.6.2.4275 (.lst File) Stack Buffer Overflow Exploit
http://www.milw0rm.com/exploits/9343
BlazeDVD 5.1 Professional (.PLF File) Local Buffer Overflow Exploit (SEH)
http://www.milw0rm.com/exploits/9329
Discloser 'more' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/35923
Adobe Flash Player and AIR Unspecified Click Jacking Vulnerability
http://www.securityfocus.com/bid/35905
Adobe Flash Player and AIR NULL Pointer Exception Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35906
Adobe Flash Player and AIR Unspecified Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35904
Adobe Flash Player and AIR 'intf_count' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35907
Adobe Flash Player and AIR Sandbox Bypass Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35908
Adobe Flash Player and AIR Unspecified Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35900
Adobe Flash Player Active Template Library Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35846
Adobe Acrobat, Reader, and Flash Player Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35759
Adobe Flash Player and AIR (CVE-2009-1866) Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35901
Adobe Flash Player and AIR URI Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35902
Irssi 'WALLOPS' Message Off By One Heap Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35399
Django URL Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35859
Sun Java System Access Manager Policy Agent Denial of Service Vulnerability
http://www.securityfocus.com/bid/35788
BlazeVideo BlazeDVD Professional '.PLF' File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35918
Mozilla Firefox 3.5 'TraceMonkey' Component Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35660
Zen Cart 'record_company.php' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35467
Wireshark PN-DCP Data Format String Vulnerability
http://www.securityfocus.com/bid/34291
phpMyAdmin 'setup.php' PHP Code Injection Vulnerability
http://www.securityfocus.com/bid/34236
ISC BIND 9 Remote Dynamic Update Message Denial of Service Vulnerability
http://www.securityfocus.com/bid/35848
W3C Amaya HTML 'script' Tag Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34295
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/32608
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34240
Asterisk RTP Text Frames Processing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/35837
IBM Tivoli Identity Manager Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/35566
Apache 'Options' and 'AllowOverride' Directives Security Bypass Vulnerability
http://www.securityfocus.com/bid/35115
Apache 'mod_proxy' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35565
Apache 'mod_deflate' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35623
Apache APR-util 'xml/apr_xml.c' Denial of Service Vulnerability
http://www.securityfocus.com/bid/35253
Apache 'mod_proxy_ajp' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34663
Apache APR-util 'apr_brigade_vprintf' Off By One Vulnerability
http://www.securityfocus.com/bid/35251
Apache APR-util 'apr_strmatch_precompile()' Integer Underflow Vulnerability
http://www.securityfocus.com/bid/35221
IETF and W3C XML Digital Signature Specification HMAC Truncation Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/35671
ZNC File Upload Directory Traversal Vulnerability
http://www.securityfocus.com/bid/35757
OpenEXR Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/35838
OpenSC 'pkcs11-tool' Inseure Key Generation Vulnerability
http://www.securityfocus.com/bid/34884
OpenSC PKCS#11 Implementation Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/33922
mod_auth_mysql Package Multibyte Character Encoding SQL Injection Vulnerability
http://www.securityfocus.com/bid/33392
Nagios 'statuswml.cgi' Remote Arbitrary Shell Command Injection Vulnerability
http://www.securityfocus.com/bid/35464
Firebird 'op_connect_request' Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/35842
Mozilla Firefox SOCKS5 Proxy Response Denial of Service Vulnerability
http://www.securityfocus.com/bid/35925
PHP Fuzzer Framework Default Location Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/35924
Sun Java SE Advance Notification Multiple Vulnerabilities
http://www.securityfocus.com/bid/35922
Arab Portal 'module' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/35921
ProjectButler 'pda_projects.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/35919
0 件のコメント:
コメントを投稿