+ OpenLDAP 2.4.19 Released
http://www.openldap.org/software/release/changes.html
JVNDB-2009-002069 Sun Java System Web Server における任意の JSP ファイルを読まれる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002069.html
JVNDB-2009-002068 Sun Solaris の sockfs モジュールにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002068.html
JVNDB-2009-002067 Sun Solaris のプリントサービスにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002067.html
JVNDB-2009-002066 GnuTLS の libgnutls における任意の SSL サーバを偽装される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002066.html
JVNDB-2009-002065 Autonomy KeyView XLS viewer の xlssr.dll におけるバッファーオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002065.html
JVNDB-2009-001504 Ubuntu の dbus リクエストハンドラにおけるネットワーク接続情報が漏えいする脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001504.html
JVNDB-2009-001503 Ubuntu の network-manager-applet におけるネットワーク接続を変更または解除される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001503.html
JVNDB-2008-002419 Python における複数のモジュールに関する整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002419.html
JVNDB-2008-002299 Python の expandtabs メソッドにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002299.html
JVNDB-2008-002298 Python の imageop モジュールにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002298.html
JVNDB-2008-002297 Python の PyOS_vsnprintf 関数における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002297.html
JVNDB-2008-002296 32 ビットプラットフォーム上の Python におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002296.html
JVNDB-2008-002294 Python における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002294.html
JVNDB-2008-002293 Python の PyString_FromStringAndSize 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002293.html
JVNDB-2008-002292 Python の zlib 拡張モジュールにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002292.html
JVNDB-2007-001021 Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001021.html
JVNDB-2007-001020 Python の PyLocale_strxfrm() 関数における一つずれエラーの脆弱性
http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001020.html
IBM Informix Client SDK Integer Overflow in Processing '.nfx' Files Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Oct/1022985.html
OpenBSD Kernel XMM Exception Handling Error Lets Local Users Deny Service
http://securitytracker.com/alerts/2009/Oct/1022984.html
+ Apache HTTP Server 2.2.14 Released
http://httpd.apache.org/download.cgi
http://www.apache.org/dist/httpd/CHANGES_2.2.14
+ Dovecot 1.2.6 released
http://www.dovecot.org/list/dovecot-news/2009-October/000138.html
+ Linux kernel 2.6.27.36, 2.6.30.9, 2.6.31.2 released
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.36
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.30.9
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.31.2
+ Perl 5.11.0 released
http://use.perl.org/articles/09/10/05/1416207.shtml
+ Apache mod_proxy_ftp Module NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36260
+ Apache mod_proxy_ftp Remote Command Injection Vulnerability
+ Linux Kernel KVM 'kvm_emulate_hypercall()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36512
+ Apache HTTP Server Solaris Event Port Pollset Support Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36596
Kernel release: 2.6.31.2
http://www.linux.org/news/2009/10/05/0003.html
Kernel release: 2.6.30.9
http://www.linux.org/news/2009/10/05/0002.html
Kernel release: 2.6.27.36
http://www.linux.org/news/2009/10/05/0001.html
YAPC::Brasil 2009
http://use.perl.org/article.pl?sid=09/10/05/1414231&from=rss
定期サーバメンテナンスのお知らせ(2009年10月16日)
http://www.trendmicro.co.jp/support/news.asp?id=1310
Debian : New mediawiki1.7 packages fix several vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30532
Slackware Linux : php
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30536
Slackware Linux : samba
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30537
Independent Researcher : Geeklog <= v1.6.0sr2 - Remote File Upload http://www.criticalwatch.com/support/security-advisories.aspx?AID=30528
Debian : New PostgreSQL packages fix various problems
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30533
Debian : New strongswan packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30534
Debian : New openswan packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30535
FreeBSD : pipe
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30530
FreeBSD : devfs
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30531
[SECURITY] [DSA 1902-1] New elinks packages fix arbitrary code execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00026.html
[SECURITY] [DSA 1901-1] New mediawiki1.7 packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00022.html
[security bulletin] HPSBUX02421 SSRT090047 rev.2 - HP-UX Running Kerberos, Remote Denial of
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00019.html
[oCERT-2009-014] Android denial-of-service issues
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00023.html
Palm Pre WebOS <=1.1 Remote File Access Vulnerability http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00021.html
CORE-2009-0812-Hyperic HQ Multiple XSS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00020.html
CVE-2009-2898: Hyperic HQ - Stored XSS in alerts list
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00025.html
CVE-2009-2897: Hyperic HQ - Reflected XSS in stack trace
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00024.html
RHBA-2009:1476-1: lvm2 bug-fix update
http://rhn.redhat.com/errata/RHBA-2009-1476.html
Cyber Security Awareness Month - Day 5 port 31337
http://isc.sans.org/diary.html?storyid=7273
Time to change your hotmail password
http://isc.sans.org/diary.html?storyid=7276
OpenBSD XMM Exceptions Denial of Service Vulnerability
http://secunia.com/advisories/36956/
FreeBSD Privilege Escalation Vulnerabilities
http://secunia.com/advisories/36955/
Fedora update for samba
http://secunia.com/advisories/36953/
Fedora update for kernel
http://secunia.com/advisories/36952/
Debian update for mediawiki1.7
http://secunia.com/advisories/36951/
Debian update for openswan
http://secunia.com/advisories/36950/
IBM Informix Products Setnet32 Utility ".nfx" Processing Buffer Overflow
http://secunia.com/advisories/36949/
FreeBSD Devfs / VFS NULL Pointer Dereference Privilege Escalation
http://secunia.com/advisories/36945/
XM Easy Personal FTP Server Directory Listing Denial of Service
http://secunia.com/advisories/36941/
Slackware update for samba
http://secunia.com/advisories/36937/
Kolab Server Cyrus IMAP Sieve Processing Buffer Overflow
http://secunia.com/advisories/36932/
Novell eDirectory Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36930/
Debian update for strongswan
http://secunia.com/advisories/36922/
Red Hat update for xen
http://secunia.com/advisories/36908/
Debian update for postgresql
http://secunia.com/advisories/36837/
Vulnerability Note VU#676492: Wireshark unsigned integer wrap vulnerability
http://www.kb.cert.org/vuls/id/676492
Samba 3.4.2 / 3.3.8 / 3.2.15 / 3.0.37 登場
http://news.samba.org/releases/3.4.2/
http://news.samba.org/releases/3.3.8/
http://news.samba.org/releases/3.2.15/
http://news.samba.org/releases/3.0.37/
IBM Informix Client and Connect ".nfx" File Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/2834
Kolab Server Cyrus IMAP SIEVE Handling Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/2833
Novell eDirectory "dconserv.dlm" Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2009/2832
Intel System Management Mode Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35861
Wireshark ERF File Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36591
GNOME GLib Symbolic Link Arbitrary File Access Vulnerability
http://www.securityfocus.com/bid/36313
Apache mod_proxy_ftp Module NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36260
Apache mod_proxy_ftp Remote Command Injection Vulnerability
http://www.securityfocus.com/bid/36254
Apple Safari NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36477
PhPepperShop Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/32690
Linux Kernel 'sock_sendpage()' NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/36038
Linux Kernel 'FWD-TSN' Chunk Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/33113
Microsoft Windows SMB2 '_Smb2ValidateProviderCallback()' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/36299
Linux Kernel eCryptfs 'parse_tag_11()' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35851
Linux Kernel 'PER_CLEAR_ON_SETID' Incomplete Personality List Access Validation Weakness
http://www.securityfocus.com/bid/35647
Linux Kernel KVM 'kvm_emulate_hypercall()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36512
Linux Kernel 'net/atm/proc.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/32676
Linux Kernel AppleTalk Driver IP Over DDP Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36379
Linux Kernel 'kernel/signal.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/35929
Linux Kernel 'net/llc/af_llc.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36126
Linux Kernel 'tun_chr_pool()' NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/35724
MediaWiki 'config/index.php' Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/33681
Cyrus IMAP Server SIEVE Script Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36296
MediaWiki Cross Site Scripting And Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/32844
PHP 5.2.10 and Prior Versions Multiple Vulnerabilities
http://www.securityfocus.com/bid/36449
Samba setuid 'mount.cifs' Verbose Option Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36572
Samba Oplock Break Notification Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36573
Samba Misconfigured '/etc/passwd' File Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363
Samba Arbitrary Memory Contents Information Disclosure Vulnerability
http://www.securityfocus.com/bid/32494
Samba Registry Share Name Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/33118
Avast! Antivirus 'aswMon2.sys' Driver Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36507
ELinks 'entity_cache' HTML File Off By One Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36574
eCryptfs 'parse_tag_3_packet()' Packet Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/35850
XM Easy Personal FTP Server 'NLST' Command Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/31739
OpenBSD XMM Exceptions Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36589
IBM Informix Products Setnet32 Utility '.nfx' File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36588
Apache HTTP Server Solaris Event Port Pollset Support Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36596
Palm WebOS Email Arbitrary Script Injection Vulnerability
http://www.securityfocus.com/bid/36592
Open Handset Alliance Malformed Application Remote Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36590
0 件のコメント:
コメントを投稿