+ GnuPG 1.4.10 released
http://lists.gnupg.org/pipermail/gnupg-announce/2009q3/000291.html
NetHawk Cuts its Database Costs by 50% with Sun’s Embedded MySQL database
http://www.mysql.com/news-and-events/generate-article.php?id=1626
ウイルスバスター2010 公開とサポート開始のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1297
JVNDB-2009-001966 Adobe Flash Player および Adobe AIR における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001966.html
JVNDB-2009-001965 Adobe Flash Player および Adobe AIR の AVM2 abcFile パーサにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001965.html
JVNDB-2009-001964 Adobe Flash Player および Adobe AIR における URL 構造解析に関するヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001964.html
JVNDB-2009-001963 Adobe Flash Player および Adobe AIR におけるクリックジャッキングに関するユーザにリンクを選択させる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001963.html
JVNDB-2009-001962 Adobe Flash Player および Adobe AIR におけるスタックベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001962.html
JVNDB-2009-001961 Adobe Flash Player および Adobe AIR における Null ポインタの処理に関する任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001961.html
JVNDB-2009-001960 Adobe Flash Player および Adobe AIR におけるヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001960.html
JVNDB-2009-001959 Adobe Flash Player における権限昇格に関する任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001959.html
JVNDB-2009-001165 JDK および JRE の unpack200 におけるバッファオーバフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001165.html
JVNDB-2009-001164 JDK および JRE の unpack200 における整数オーバフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001164.html
JVNDB-2009-001163 JDK および JRE における一時フォントファイルの処理に関するサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001163.html
JVNDB-2009-001160 JDK および JRE における Type1 フォントの処理に関する任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001160.html
JVNDB-2009-001159 JDK および JRE における GIF イメージの処理に関するバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001159.html
JVNDB-2009-001158 JDK および JRE における PNG イメージおよび GIF イメージの処理に関するバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001158.html
JVNDB-2009-001157 JDK および JRE における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001157.html
JVNDB-2009-001156 JDK および JRE におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001156.html
コンピュータウイルス・不正アクセスの届出状況[8月分]について
http://www.ipa.go.jp/security/txt/2009/09outline.html
[JS09003] ATOKの脆弱性を悪用した不正なプログラムの実行危険性について
http://www.justsystems.com/jp/info/js09003.html
Telstra Outage
http://isc.sans.org/diary.html?storyid=7054
+ MySQL 5.1.38 released
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-38.html
+ Solution 259028: Multiple Security Vulnerabilities in Adobe Reader for Solaris 10 May Allow Execution of Arbitrary Code or Cause Denial of Service (DoS)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-259028-1
+ Solution 266108: Multiple Security Vulnerabilities in the Flash Player for Solaris 10 (Adobe Security Bulletin APSB09-10)
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266108-1
+ RHSA-2009:1243-2: Important: Red Hat Enterprise Linux 5.4 kernel security and bug fix update
https://rhn.redhat.com/errata/RHSA-2009-1243.html
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30285
http://secunia.com/advisories/36562/
+ Red Hat GNOME Display Manager Security Bypass Vulnerability
http://www.securityfocus.com/bid/36219
+ GnuPG 1.4.10 released
マイクロソフト セキュリティ アドバイザリ (975191)
インターネット インフォメーション サービスの FTP サービスの脆弱性により、リモートでコードが実行される
http://www.microsoft.com/japan/technet/security/advisory/975191.mspx
http://www.microsoft.com/technet/security/advisory/975191.mspx
Continuent Announces New Tungsten Version
http://www.postgresql.org/about/news.1131
AnySQL Maestro 9.8 released
http://www.postgresql.org/about/news.1130
Benetl 3.0 out
http://www.postgresql.org/about/news.1127
Red Hat : Important: Red Hat Enterprise Linux 5.4 kernel security and bug fix update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30285
http://rhn.redhat.com/errata/RHSA-2009-1243.html
Red Hat : Low: lftp security and bug fix update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30286
http://rhn.redhat.com/errata/RHSA-2009-1278.html
Red Hat : Low: openssh security, bug fix, and enhancement update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30287
http://rhn.redhat.com/errata/RHSA-2009-1287.html
Red Hat : Low: ecryptfs-utils security, bug fix, and enhancement update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30288
http://rhn.redhat.com/errata/RHSA-2009-1307.html
Red Hat : Moderate: openssl security, bug fix, and enhancement update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30289
http://rhn.redhat.com/errata/RHSA-2009-1335.html
Red Hat : Low: gfs2-utils security and bug fix update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30290
http://rhn.redhat.com/errata/RHSA-2009-1337.html
Red Hat : Low: rgmanager security, bug fix, and enhancement update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30291
Red Hat : Low: cman security, bug fix, and enhancement update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30292
http://rhn.redhat.com/errata/RHSA-2009-1341.html
Red Hat : Low: gdm security and bug fix update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30293
http://rhn.redhat.com/errata/RHSA-2009-1364.html
Red Hat : Low: nfs-utils security and bug fix update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30294
http://rhn.redhat.com/errata/RHSA-2009-1321.html
Red Hat : Moderate: mysql security and bug fix update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30295
http://rhn.redhat.com/errata/RHSA-2009-1289.html
Ubuntu Security Notice : NSS regression
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30283
Blue Moon : Remote code execution in BKAV eOffice
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30296
Debian : New dnsmasq packages fix remote code execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30284
「ATOK」におけるセキュリティ上の弱点(脆弱性)の注意喚起
http://www.ipa.go.jp/security/vuln/documents/2009/200909_atok.html
日本語入力ソフト「ATOK」に脆弱性、スクリーンロックを回避される
特定の操作で任意のプログラムを実行可能、修正プログラムの適用を
http://itpro.nikkeibp.co.jp/article/NEWS/20090903/336434/?ST=security
「ノートン」をかたる偽ソフト出現、本物そっくりの画面でだます
実行すると偽のブルースクリーン、脅かしてお金を払わせる
http://itpro.nikkeibp.co.jp/article/NEWS/20090903/336433/?ST=security
[SS&ERM2009]台湾パビリオンでセキュリティ企業7社が展示,更新料がかからないUTMなど
http://itpro.nikkeibp.co.jp/article/NEWS/20090902/336400/?ST=security
[SS&ERM2009]“適正な管理”が企業パソコン持ち出しの絶対条件
http://itpro.nikkeibp.co.jp/article/NEWS/20090902/336419/?ST=security
[SS&ERM2009]クラウドの問題は自社データのコントロールが不能になること---日本IBM浦本氏
http://itpro.nikkeibp.co.jp/article/NEWS/20090902/336399/?ST=security
JVN#57040664 ATOK におけるスクリーンロックの制限回避が可能な脆弱性
http://jvn.jp/jp/JVN57040664/index.html
JVNVU#276653 Microsoft Internet Information Services FTP サーバにおけるバッファオーバーフローの脆弱性
http://jvn.jp/cert/JVNVU276653/index.html
JVNDB-2009-000057 ATOK におけるスクリーンロックの制限回避が可能な脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000057.html
JVNDB-2009-001958 Sun Solaris の Solaris Trusted Extensions におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001958.html
JVNDB-2009-001957 Mozilla NSS における X.509 証明書を偽装される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001957.html
JVNDB-2009-001956 複数の Mozilla 製品 における任意の SSL サーバになりすまされる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001956.html
JVNDB-2009-001955 Mozilla NSS の正規表現の解析における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001955.html
JVNDB-2009-001528 Apple Mac OS X の XNU におけるカーネルメモリの上書きおよび権限昇格の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001528.html
JVNDB-2009-001104 libpng が適切にエレメントポインタを初期化しない脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001104.html
JVNDB-2008-001603 PCRE の正規表現処理におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001603.html
JVNDB-2007-001186 bzip2 の bzlib.c におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001186.html
[SECURITY] [DSA 1878-1] New devscripts packages fix remote code execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00020.html
[SECURITY] [DSA 1877-1] New mysql-dfsg-5.0 packages fix arbitrary code execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00019.html
International Hacking & Security Conference "POC2009" and Call for Paper
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00018.html
Re[2]: [Full-disclosure] Microsoft Internet Information Server ftpd zeroday
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00011.html
[USN-810-2] NSS regression
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00012.html
[USN-827-1] Dnsmasq vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-09/msg00010.html
Happy Birthday, Internet!
http://isc.sans.org/diary.html?storyid=7048
Incident Response Pre Planning Return On Investment
http://isc.sans.org/diary.html?storyid=7051
Dnsmasq Heap Overflow and Null-pointer Dereference on TFTP Server
http://www.securiteam.com/unixfocus/5IP020KSAK.html
OpenOffice.org Word Document Table Parsing Integer Underflow
http://www.securiteam.com/securitynews/5HP010KSAE.html
トレンドマイクロ、ウイルスバスター2010を発売──さらに軽く、安全に
Windows、Mac OSの組み合わせ自由で3台までインストール可能に
http://www.computerworld.jp/topics/vs/160649.html
Debian update for dnsmasq
http://secunia.com/advisories/36567/
Red Hat update for mysql
http://secunia.com/advisories/36566/
Ubuntu update for dnsmasq
http://secunia.com/advisories/36563/
Red Hat update for kernel
http://secunia.com/advisories/36562/
JustSystems ATOK Screen Lock Security Bypass Vulnerability
http://secunia.com/advisories/36560/
Red Hat update for lftp
http://secunia.com/advisories/36559/
Red Hat update for openssh
http://secunia.com/advisories/36558/
Red Hat update for gfs2-utils
http://secunia.com/advisories/36555/
Alqatari Q R Script "id" SQL Injection Vulnerability
http://secunia.com/advisories/36554/
Red Hat update for gdm
http://secunia.com/advisories/36553/
Red Hat update for ecryptfs-utils
http://secunia.com/advisories/36552/
Beex "navaction" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/36550/
Property Watch Two Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/36548/
Reservation Manager "resman_stardate" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36547/
Red Hat update for nfs-utils
http://secunia.com/advisories/36538/
Red Hat update for openssl
http://secunia.com/advisories/36533/
phpBB Prime Quick Style "prime_quick_style" SQL Injection Vulnerability
http://secunia.com/advisories/36532/
Red Hat update for cman
http://secunia.com/advisories/36530/
akPlayer PLT Playlist Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/36521/
Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit
http://www.milw0rm.com/exploits/9575
Linux Kernel < 2.6.19 udp_sendmsg Local Root Exploit (x86/x64)
http://www.milw0rm.com/exploits/9574
JustSystems ATOK Screen Lock Local Security Bypass Vulnerability
http://www.vupen.com/english/advisories/2009/2526
Discuz! Plugin JiangHu "id" Parameter SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2525
Datalife Engine "dle_config_api" Parameter File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2009/2524
Game Server for Joomla "id" Parameter SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2523
Ve-EDIT Two Remote and Local File Inclusion Vulnerabilities
http://www.vupen.com/english/advisories/2009/2522
Kingcms "CONFIG[AdminPath]" Parameter File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2009/2521
Agora for Joomla "action" Parameter Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2009/2520
Art Portal for Joomla "portalid" Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2009/2519
JSFTemplating FileStreamer Remote File Disclosure Vulnerability
http://www.vupen.com/english/advisories/2009/2518
akPlayer Playlist Processing Remote Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/2517
Microsoft Visual Studio Active Template Library COM Object Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35828
Microsoft Visual Studio Active Template Library NULL String Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35830
Microsoft Visual Studio ATL 'VariantClear()' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35832
Microsoft Active Template Library Header Data Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/35558
Debian devscripts 'uscan' Input Validation Vulnerability
http://www.securityfocus.com/bid/36227
RETIRED: Secunia Personal Software Inspector Unspecified Memory Corruption Vulnerability
http://www.securityfocus.com/bid/36221
MySQL 'sql_parse.cc' Multiple Format String Vulnerabilities
http://www.securityfocus.com/bid/35609
HTMLDOC 'html' File Handling Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35727
PHP Live! 'deptid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36226
Discuz! JangHu Inn Plugin 'forummission.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/36222
JustSystems ATOK Screen Lock Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36220
Linux Kernel 'udp_sendmsg()' MSG_MORE Flag Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36108
68 Classifieds Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/36208
Joomla! Art Portal Component 'portalid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36206
fence 'fence_apc' and 'fence_apc_snmp' Insecure Temporary File Creation Vulnerabilities
http://www.securityfocus.com/bid/31904
cluster Multiple Insecure Temporary File Creation Vulnerabilities
http://www.securityfocus.com/bid/32179
Red Hat GNOME Display Manager Security Bypass Vulnerability
http://www.securityfocus.com/bid/36219
Linux Kernel 'kernel/signal.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35929
Linux Kernel 'clear_child_tid()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35930
OpenSSL 'dtls1_retrieve_buffered_fragment()' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35138
OpenSSL 'ChangeCipherSpec' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35174
OpenSSL 'dtls1_retrieve_buffered_fragment()' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35417
OpenSSL Multiple Vulnerabilities
http://www.securityfocus.com/bid/34256
OpenSSL DTLS Packets Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/35001
'nfs-utils' Package 'hosts_ctl()' Security Bypass Vulnerability
http://www.securityfocus.com/bid/31823
eCryptfs Password Information Disclosure Vulnerability
http://www.securityfocus.com/bid/31906
MySQL Empty Binary String Literal Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/31081
MySQL Command Line Client HTML Special Characters HTML Injection Vulnerability
http://www.securityfocus.com/bid/31486
MySQL MyISAM Table Privileges Secuity Bypass Vulnerability
http://www.securityfocus.com/bid/29106
OpenSSH CBC Mode Information Disclosure Vulnerability
http://www.securityfocus.com/bid/32319
LFTP MirrorJob::HandleFile Arbitrary Command Injection Vulnerability
http://www.securityfocus.com/bid/23736
Joomla! Game Server Component 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36213
SmartVMD ActiveX Control 'VideoMovementDetection.dll' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36217
MKPortal Multiple BBCode HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/36218
MKPortal Multiple Modules Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/36216
Nokia Multimedia Player Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36215
Agora 'action' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/36207
Microsoft IIS FTPd NLST Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36189
GreenSQL Firewall WHERE Clause Secuity Bypass Vulnerability
http://www.securityfocus.com/bid/36209
phpAuction 'lan' Parameter Remote File Include Vulnerability
http://www.securityfocus.com/bid/36211
phpAuction 'phpinfo.php' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36210
0 件のコメント:
コメントを投稿