Solution 268188: Security Vulnerability in the VBoxNetAdpCtl Configuration Tool for Sun VirtualBox May Lead to Escalation of Privileges
http://sunsolve.sun.com/search/document.do?assetkey=1-66-268188-1
Solution 269168: SUN ALERT WEEKLY SUMMARY REPORT - Week of 27-Sep-2009 to 03-Oct-2009
http://sunsolve.sun.com/search/document.do?assetkey=1-66-269168-1
NTP 4.2.5p229 development
http://archive.ntp.org/ntp4/ChangeLog-dev
JVNDB-2009-002079 Linux kernel の execve 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002079.html
JVNDB-2009-002078 Linux kernel の do_sigaltstack 関数における情報漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002078.html
JVNDB-2009-002077 Linux kernel の ext4_fill_super 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002077.html
JVNDB-2009-002076 Linux kernel の ext4_isize 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002076.html
JVNDB-2009-002075 Linux kernel の make_indexed_dir 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002075.html
JVNDB-2009-002074 Linux kernel の ext4_group_add 関数におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002074.html
JVNDB-2009-001990 Sun Java SE における任意のファイルを改ざんされる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001990.html
JVNDB-2009-001988 Sun JRE で使用している Apache Xerces2 Java におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001988.html
JVNDB-2009-001987 Sun JRE の unpack200 ユーティリティにおける整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001987.html
JVNDB-2009-001986 Sun JRE の Sun Java Web Start における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001986.html
JVNDB-2009-001985 Sun JRE のプロキシ機構実装におけるアクセス制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001985.html
JVNDB-2009-001984 Sun JRE のプロキシ機構実装における Web セッションを乗っ取られる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001984.html
JVNDB-2009-001983 Sun JRE の SOCKS プロキシ実装における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001983.html
JVNDB-2009-001982 Sun JRE のオーディオシステムにおける重要な情報が取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001982.html
JVNDB-2009-001955 Mozilla NSS の正規表現の解析における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001955.html
JVNDB-2009-001737 Apache Tomcat における Web アプリケーションに関連するファイルを読まれる脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001737.html
JVNDB-2009-001736 Apache Tomcat における有効なユーザ名を列挙される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001736.html
JVNDB-2009-001115 Apache Tomcat のサンプル用 calendar アプリケーションにおけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001115.html
JVNDB-2009-000037 Apache Tomcat におけるサービス運用妨害(DoS)の脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000037.html
JVNDB-2009-000036 Apache Tomcat における情報漏えいの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000036.html
JVNDB-2008-000009 Apache Tomcat において不正な Cookie を送信される脆弱性
http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000009.html
+ Solution 267808: Buffer Underflow Vulnerability in the Solaris Tag Image File Format Library libtiff(3) may Lead to a Denial of Service (DoS) Condition
http://sunsolve.sun.com/search/document.do?assetkey=1-66-267808-1
+ Linux Kernel release: 2.6.31.3
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.31.3
http://www.linux.org/news/2009/10/07/0001.html
+ RHSA-2009:1484-1: Moderate: postgresql security update
+ RHSA-2009:1485-1: Moderate: postgresql security update
http://rhn.redhat.com/errata/RHSA-2009-1484.html
http://rhn.redhat.com/errata/RHSA-2009-1485.html
MySQL Workbench 5.2.4 Alpha Released
http://wb.mysql.com/
DHCP 3.1.3 released
http://oldwww.isc.org/sw/dhcp/dhcp_rel2.php?noframes=1
Core Security Technologies : Jetty Persistent XSS in Sample Cookies Application
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30553
Independent Researcher : Dopewars 1.5.12 Server Denial of Service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30556
Mandriva : dbus
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30549
Mandriva : qemu
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30550
rUnViRuS : Sec-Area AdvisoryPBBoard <=2.0.2 - XSS in Topic http://www.criticalwatch.com/support/security-advisories.aspx?AID=30555
Ubuntu Security Notice : Wget vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30551
Ubuntu Security Notice : BackupPC vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30552
「Hotmailだけではなかった」――GmailやYahoo!メールのパスワードも流出
インターネット接続サービスのアカウントも、「ユーザーはパスワードの変更を」
http://itpro.nikkeibp.co.jp/article/NEWS/20091008/338561/?ST=security
ソニックウォール,マクニカネットワークスと提携し大企業向けUTM製品市場に本格参入
http://itpro.nikkeibp.co.jp/article/NEWS/20091007/338541/?ST=security
JVNVU#676492 Wireshark の erf ファイル処理に脆弱性
http://jvn.jp/cert/JVNVU676492/index.html
[DSECRG-09-017] SAP GUI vsflexGrid ActiveX - Buffer Overflow vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00046.html
[DSECRG-09-048] HP LaserJet printers - Multiple Stored XSS vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00049.html
iDefense Security Advisory 10.07.09: IBM AIX rpc.cmsd Stack Buffer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00048.html
[SECURITY] [DSA 1903-1] New graphicsmagick packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00047.html
[security bulletin] HPSBPI02463 SSRT090061 rev.1 - HP LaserJet Printers, HP Color LaserJet Print
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00044.html
[ MDVSA-2009:258 ] openssl
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00045.html
BulletProof FTP Client Buffer Overflow (SEH)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00043.html
Remote File Inclusion In AIOCP
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00042.html
{PRL} XLPD 3.0 Remote DoS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00041.html
[ MDVSA-2009:257 ] qemu
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00038.html
[ MDVSA-2009:256 ] dbus
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-10/msg00039.html
RHBA-2009:1486-1: device-mapper-multipath bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1486.html
PUBLIC ADVISORY: 10.07.09: IBM AIX rpc.cmsd Stack Buffer Overflow Vulnerability
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=825
Spam rate increase is seen
http://isc.sans.org/diary.html?storyid=7282
Cyber Security Awareness Month - Day 7 - Port 6667/8/9/7000 - IRC: is it evil?
http://isc.sans.org/diary.html?storyid=7285
Palm Pre WebOS Unspecified Vulnerabilities
http://secunia.com/advisories/36977/
Ubuntu update for wget
http://secunia.com/advisories/36974/
Ubuntu update for backuppc
http://secunia.com/advisories/36973/
Symantec SecurityExpressions Cross-Site Scripting and Script Insertion
http://secunia.com/advisories/36972/
Puppet Supplementary Groups Weakness
http://secunia.com/advisories/36967/
Dopewars REQUESTJET Message Denial of Service Vulnerability
http://secunia.com/advisories/36961/
Alleycode HTML Editor Optimizer Multiple Buffer Overflows
http://secunia.com/advisories/36940/
Omni-NFS Enterprise Buffer Overflow Vulnerabilities
http://secunia.com/advisories/36939/
Palm Pre WebOS Multiple Vulnerabilities
http://secunia.com/advisories/36936/
Sun VirtualBox "VBoxNetAdpCtl" Privilege Escalation
http://secunia.com/advisories/36929/
Exponent CMS Contact Module "email" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/36703/
Sun VirtualBox VBoxNetAdpCtl Configuration Tool Lets Local Users Gain Root Privileges
http://securitytracker.com/alerts/2009/Oct/1022990.html
Symantec SecurityExpressions Audit and Compliance Server Input Validation Hole Permits Cross-Site Scripting Attacks
http://securitytracker.com/alerts/2009/Oct/1022989.html
ImageMagick DCM XWD Formats Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/23347
ImageMagick TIFF File Integer Overflow Vulnerability
http://www.securityfocus.com/bid/35111
ImageMagick Malformed XCF File Heap Overflow Vulnerability
http://www.securityfocus.com/bid/28821
GraphicsMagick Multiple Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/30055
ImageMagick DCM, DIB, XBM, XCF, and XWD Image Files Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/25763
GraphicsMagick Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/29583
PostgreSQL Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36314
PostgreSQL Conversion Encoding Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/34090
Multiple HP JetDirect Printers Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/36613
IBM AIX 'rpc.cmsd' Calendar Daemon Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36615
BulletProof FTP Client Malformed '.bps' File Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36612
Xlpd Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36610
ImageMagick ReadDIBImage Integer Overflow Vulnerability
http://www.securityfocus.com/bid/25765
ImageMagick ReadBlob Multiple Remote Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/25764
AIOCP 'cp_html2xhtmlbasic.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/36609
Symantec SecurityExpressions Audit and Compliance Server Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/36570
VLC Media Player CUE File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36403
Omni-NFS Multiple Stack Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36608
Dopewars Server 'REQUESTJET' Message Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36606
AfterLogic WebMail Pro Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/36605
Joomla! Soundset Component 'cat_id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/36597
Palm WebOS Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/36607
0 件のコメント:
コメントを投稿