+ dovecot 1.1.19, 1.2.5 released
http://www.dovecot.org/
http://www.dovecot.org/list/dovecot-news/2009-September/000136.html
http://www.dovecot.org/list/dovecot-news/2009-September/000137.html
InterScan VirusWall スタンダードエディション 6.02 Windows版 Critical Patch (ビルド7284) 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1304
ウイルスバスター コーポレートエディション 10.0 公開とサポートサービス開始のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1298
LinuxオプションVer.5.0のLinuxサービスポート監視は、rootユーザで実行してください。
http://www.say-tech.co.jp/support/linux/linuxver50linuxroot/index.shtml
JVNDB-2009-002001 Apple Mac OS の launchd におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002001.html
JVNDB-2009-002000 Apple Mac OS の ImageIO および Safari における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002000.html
JVNDB-2009-001999 OpenEXR における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001999.html
JVNDB-2009-001998 OpenEXR の解凍機能における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001998.html
JVNDB-2009-001997 OpenEXR の圧縮機能におけるヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001997.html
+ Linux kernel 2.4.37.6 release
http://www.kernel.org/pub/linux/kernel/v2.4/ChangeLog-2.4.37.6
http://www.linux.org/news/2009/09/13/0001.html
+ Solution 266348: Security Vulnerability in the w(1) Utility may Lead to Execution of Arbitrary Code
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266348-1
- Solution 265888: Security Vulnerability in Solaris sockfs Related to HTTP Request Handling May Allow Remote Users to Panic Web Servers Resulting in a Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-265888-1
[ANNOUNCEMENT] HttpComponents HttpCore 4.1-alpha1 Released
http://www.apache.org/dist/httpcomponents/httpcore/RELEASE_NOTES.txt
Kernel release: 2.4.37.6
http://www.linux.org/news/2009/09/13/0001.html
Fix Pack 6.0.0.6 for WebSphere MQ Extended Security Edition V6.0 is available
http://www-01.ibm.com/support/docview.wss?rs=171&context=SSFKSJ&context=SSEP7X&dc=D600&uid=swg21308194&loc=en_US&cs=UTF-8&lang=en
Solution 266429: A Security Vulnerability in the Sun Java System Web Server Related to Handling of Dynamic Content May Lead to Unauthorized Information Disclosure
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266429-1
RHBA-2009:1437-1: net-snmp bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1437.html
Debian : New devscripts packages fix regressions
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30364
Independent Researcher : Multiple Smartphones MMS Notification Sender Obfuscation
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30369
Independent Researcher : Multiple Smartphones SMS Sender Obfuscation via WAP Push SI
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30370
Mandriva : cyrus-imapd
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30359
Apple : Mac OS X v10.6.1
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30362
Apple : Security Update 2009-005
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30363
[ MDVSA-2009:232 ] libsamplerate
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00094.html
[ MDVSA-2009:197-2 ] nss
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00095.html
[ MDVSA-2009:228 ] libneon
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00092.html
ShmooCon 2010 CFP
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00091.html
[ MDVSA-2009:231 ] htmldoc
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00090.html
iphone email client does not validate ssl certificates
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00089.html
Re[2]: Regular Expression Denial of Service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00093.html
[ MDVSA-2009:230 ] pidgin
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00087.html
Siemens Gigaset SE361 Wlan - Remote Reboot
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00085.html
[ MDVSA-2009:229 ] cyrus-imapd
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00084.html
[SECURITY] [DSA 1878-2] New devscripts packages fix regressions
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00083.html
[USN-829-1] Qt vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00082.html
Webservice-DIC yoyaku_v41 Arbitrary Command Injection Vulnerability
http://secunia.com/advisories/36714/
Ubuntu update for firefox and xulrunner
http://secunia.com/advisories/36710/
Ubuntu update for qt
http://secunia.com/advisories/36702/
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
http://secunia.com/advisories/36701/
SZNews "id" Information Disclosure Vulnerability
http://secunia.com/advisories/36699/
An image gallery Multiple Vulnerabilities
http://secunia.com/advisories/36680/
Match Agency BiZ "important" and "pid" Cross-Site Scripting
http://secunia.com/advisories/36672/
Tourismscripts Bus Script "sitetext_id" SQL Injection Vulnerabilities
http://secunia.com/advisories/36664/
Buy Dating Site "s_r" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36662/
Accommodation Hotel Booking Portal Script SQL Injection Vulnerabilities
http://secunia.com/advisories/36661/
Nicecoder iDesk download.php SQL Injection Vulnerability
http://secunia.com/advisories/36659/
MYRE Holiday Rental Manager SQL Injection and Cross-Site Scripting
http://secunia.com/advisories/36655/
Nullam Blog Multiple Vulnerabilities
http://secunia.com/advisories/36648/
Information Leakage in Cloud Computing
http://isc.sans.org/diary.html?storyid=7123
Windows autoplay behavior updated (improved)
http://isc.sans.org/diary.html?storyid=7126
OSSEC version 2.2 available
http://isc.sans.org/diary.html?storyid=7117
Apple Updates
http://isc.sans.org/diary.html?storyid=7120
Novell eDirectory Dhost Http Server Denial of Service Vulnerability
http://www.securiteam.com/unixfocus/5OP0B0ASAC.html
Apple QuickTime FlashPix Sector Size Overflow Vulnerability
http://www.securiteam.com/securitynews/5QP0D0ASAS.html
Apple QuickTime H.264 Nal Unit Length Heap Overflow Vulnerability
http://www.securiteam.com/securitynews/5RP0E0ASAY.html
Mozilla Firefox TreeColumns Dangling Pointer Vulnerability
http://www.securiteam.com/securitynews/5PP0C0ASAO.html
TCP/IP Protocol Stack Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/31545
FreeRADIUS Zero-length Tunnel-Password Attributes Denial of Service Vulnerability
http://www.securityfocus.com/bid/36263
Mozilla Firefox MFSA 2009-47, -48, -49, -50, -51 Multiple Vulnerabilities
http://www.securityfocus.com/bid/36343
aria2 'DHTRoutingTableDeserializer::deserialize()' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36332
GNU 'w(1)' Utility Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36369
FTPShell Client 'CWD' Command Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36327
IBM AIX '_LIB_INIT_DBG' and '_LIB_INIT_DBG_FILE' File Creation Vulnerability
http://www.securityfocus.com/bid/35934
Cyrus IMAP Server SIEVE Script Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36296
Neon NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36079
Mozilla Bugzilla 'Bug.create()' WebService Function SQL Injection Vulnerability
http://www.securityfocus.com/bid/36373
Mozilla Bugzilla URL Password Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36372
Mozilla Bugzilla 'Bug.search()' WebService Function SQL Injection Vulnerability
http://www.securityfocus.com/bid/36371
Microsoft Windows TCP/IP Orphaned Connection Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36269
Microsoft Windows TCP/IP TimeStamps Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36265
Microsoft Windows Media Format MP3 Metadata Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36228
Microsoft Windows Media Format ASF Header Invalid Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/36225
Drupal REST API Module Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/36331
Drupal 'Quota by Role' Module Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/36330
Drupal Subdomain Manager Module Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/36329
Drupal Node Browser Module Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/36325
Drupal BUEditor Live Preview Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/36320
Drupal Node2Node Module Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/36323
HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35727
Debian devscripts 'uscan' Input Validation Vulnerability
http://www.securityfocus.com/bid/36227
Qt NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36203
Pidgin 'protocols/jabber/auth.c' JABBER Server XMPP Specifications Man In The Middle Vulnerability
http://www.securityfocus.com/bid/36368
Linux Kernel 'sock_sendpage()' NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/36038
Pidgin 'msn_slplink_process_msg()' NULL Pointer Dereference Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36071
Pidgin Libpurple Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/36277
MySQL MyISAM Table Privileges Secuity Bypass Vulnerability
http://www.securityfocus.com/bid/29106
PHP 5.2.8 and Prior Versions Multiple Vulnerabilities
http://www.securityfocus.com/bid/33927
OpenSSL Multiple Vulnerabilities
http://www.securityfocus.com/bid/34256
PHP 'imageRotate()' Uninitialized Memory Information Disclosure Vulnerability
http://www.securityfocus.com/bid/33002
Multiple Symantec Products Email Handling Denial Of Service Vulnerability
http://www.securityfocus.com/bid/34670
Microsoft Windows SMB2 '_Smb2ValidateProviderCallback()' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36299
Microsoft JScript Scripting Engine Keyword Arguments Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36224
Microsoft DHTML Editing Component ActiveX Control Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36280
Apple iPhone and iPod touch Email SSL Certificate Validation Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36370
ClamAV Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/34357
ClamAV RAR File Scan Evasion Vulnerability
http://www.securityfocus.com/bid/34344
ClamAV Prior to 0.95.1 Multiple Remote Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/34446
Joomla! 'com_mediaalert' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36356
Joomla! 'com_pressrelease' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36351
Joomla! Lucy Games Component 'gameid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36334
Joomla! TPDugg Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36321
Joomla! 'com_speech' Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36352
Joomla! Joomloc Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36322
Adobe Flash Player and AIR Sandbox Bypass Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35908
Adobe Flash Player and AIR Loader Object Heap Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35904
Adobe Flash Player and AIR NULL Pointer Exception Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35906
Adobe Flash Player and AIR (CVE-2009-1866) Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35901
Adobe Flash Player and AIR URI Parsing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35902
Adobe Flash Player and AIR Unspecified Clickjacking Vulnerability
http://www.securityfocus.com/bid/35905
Adobe Flash Player and AIR Unspecified Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35900
Adobe Flash Player and AIR 'intf_count' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35907
Pidgin Yahoo Instant Messenger Protocol Link Denial of Service Vulnerability
http://www.securityfocus.com/bid/36367
Siemens Gigaset SE361 WLAN Data Flood Denial of Service Vulnerability
http://www.securityfocus.com/bid/36366
Sun Solaris 'sockfs' Kernel Module Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36169
Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities
http://www.securityfocus.com/bid/36328
Apple Mac OS X ImageIO Multiple Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/36359
Apple Mac OS X SMB Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363
Apple Mac OS X Launch Services Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36361
Apple Mac OS X Launch Services Security Bypass Vulnerability
http://www.securityfocus.com/bid/36360
Apple Mac OS X CoreGraphics Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36358
Apple Mac OS X Alias Manager Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36354
Apple Mac OS X ColorSync Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36357
Apple Mac OS X Wiki Server Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/36364
Apple Mac OS X CarbonCore Memory Corruption Vulnerability
http://www.securityfocus.com/bid/36355
RETIRED: Apple Mac OS X 2009-005 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36349
Ventrilo Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/36365
Webservice-DIC yoyaku_41 Remote Arbitrary Command Injection Vulnerability
http://www.securityfocus.com/bid/36362
0 件のコメント:
コメントを投稿