JVNDB-2009-002241 Microsoft Office の GDI+ における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002241.html
JVNDB-2009-002240 Microsoft Office の GDI+ における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002240.html
JVNDB-2009-002239 GDI+ の アプリケーション処理における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002239.html
JVNDB-2009-002238 GDI+ の TIFF 画像ファイル処理における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002238.html
JVNDB-2009-002237 GDI+ の PNG 画像ファイル処理における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002237.html
JVNDB-2009-002236 GDI+ の TIFF 画像ファイル処理におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002236.html
JVNDB-2009-002235 GDI+ の PNG 画像ファイル処理におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002235.html
JVNDB-2009-002234 GDI+ の WMF 画像ファイル処理における整数オーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002234.html
JPCERT/CC WEEKLY REPORT 2009-11-18
http://www.jpcert.or.jp/wr/2009/wr094401.html
Avast! Antivirus 'aswRdr.sys' Driver Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37031
GD Graphics Library JIS-Encoded Font Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/22289
GD Graphics Library '_gdGetColors' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36712
Sun Java SE November 2009 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36881
+ nkf 2.1.0 リリース
http://sourceforge.jp/forum/forum.php?forum_id=21073
http://sourceforge.jp/projects/nkf/releases/44486/changelog
+ Linux Kernel 'hfc_usb.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37036
- HPSBUX02409 SSRT080171 rev.2 - HP-UX Running VERITAS File System (VRTSvxfs) or VERITAS Oracle Disk Manager (VRTSodm), Local Escalation of Privilege
http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01674733-2
- Linux Kernel Race Condition in Pipe Functions May Let Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2009/Nov/1023189.html
SUN ALERT WEEKLY SUMMARY REPORT - Week of 08-Nov-2009 to 14-Nov-2009
http://sunsolve.sun.com/search/document.do?assetkey=1-66-272809-1
HPSBMI02473 SSRT080138 rev.1 - Cisco Catalyst Blade Switch 3020/3120, Remote Denial of Service (DoS)
http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01923093-1
HPSBMA02477 SSRT090177 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Denial of Service (DoS)
http://www11.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c01926980-1
RazorSQL 5 SQL Editor and Database Query Tool Released
http://www.postgresql.org/about/news.1161
DbWrench Database Design & Synchronization v1.6.2
http://www.postgresql.org/about/news.1160
vsftpd-2.2.2 released
ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-2.2.2/Changelog
VMware ESX and ESXi 3.5 U3 I/O failure on SAN LUN(s) and LUN queue is blocked indefinitely
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1008130&sliceId=1&docTypeID=DT_KB_1_1
VMotion CPU Compatibility Requirements for Intel Processors
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1991&sliceId=1&docTypeID=DT_KB_1_1
Installing VMware Products on Unsupported Linux Distributions
http://kb.vmware.com/selfservice/microsites/microsite.do?cmd=displayKC&docType=kc&externalId=1623&sliceId=1&docTypeID=DT_KB_1_1
Debian : New gnutls23/gnutls26 packages fix SSL certificate verification weakness
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30916
Debian : New apache2 packages fix several issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30915
DSecRG : Alteon OS BBI (Nortell) - Multiple Vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30919
Independent Researcher : Home FTP Server 'SITE INDEX' Command Remote Denial of Service Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=30920
新たな「Webウイルス」が国内で猛威、1000サイト以上が改ざん被害
「ガンブラー」に酷似した攻撃、神社サイトや空港サイトも被害に
http://itpro.nikkeibp.co.jp/article/NEWS/20091117/340650/?ST=security
[SECURITY] [DSA 1936-1] New libgd2 packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00125.html
Kaspersky Anti-Virus 2010 <= 9.0.0.463 pointer dereference vulnerability http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00124.html
[security bulletin] HPSBMA02456 SSRT090188 rev.1 - HP Discovery & Dependency Mapping Invento
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00122.html
[security bulletin] HPSBMA02474 SSRT090107 rev.1 - HP Power Manager, Remote Execution of Arbitra
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00121.html
Secunia Research: Gimp PSD Image Parsing Integer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00120.html
Metasploit Framework 3.3 Released
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00119.html
Home FTP Server MKD Command Directory Traversal Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00123.html
[SECURITY] [DSA 1935-1] New gnutls23/gnutls26 packages fix SSL certificate verification weakness
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00118.html
Hellcode Research: Novell eDirectory HTTPSTK Login Stack Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00117.html
[security bulletin] HPSBUX02451 SSRT090137 rev.2 - HP-UX Running BIND, Remote Denial of Serv
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00116.html
[ MDVSA-2009:158-2 ] pango
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2009-11/msg00115.html
OpenVPN Fixed OpenSSL Session Renegotiation Issue
http://isc.sans.org/diary.html?storyid=7603
OpenVPN 2.1_rc21 released
http://openvpn.net/index.php/open-source/downloads.html
http://openvpn.net/changelog-beta.html
Metasploit Framework 3.3 Released
http://isc.sans.org/diary.html?storyid=7606
Red Hat update for java-1.6.0-openjdk
http://secunia.com/advisories/37392/
HP Discovery & Dependency Mapping Inventory Arbitrary Code Execution
http://secunia.com/advisories/37388/
Slackware update for openssl
http://secunia.com/advisories/37383/
Debian update for apache2
http://secunia.com/advisories/37382/
Home FTP Server "SITE INDEX" Denial of Service
http://secunia.com/advisories/37381/
Wikipedia Toolbar Cross-Context Scripting Vulnerability
http://secunia.com/advisories/37377/
avast! Home/Professional aswRdr.sys Memory Corruption Vulnerability
http://secunia.com/advisories/37368/
Red Hat update for samba3x
http://secunia.com/advisories/37366/
Linux Kernel KVM MCE "KVM_X86_SETUP_MCE" Buffer Overflow
http://secunia.com/advisories/37357/
Gimp PSD Image Parsing Integer Overflow Vulnerability
http://secunia.com/advisories/37348/
Linux Kernel Race Condition in Pipe Functions May Let Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2009/Nov/1023189.html
Novell eDirectory Buffer Overflow in HTTPSTK Login Page Lets Remote Authenticated Users Execute Arbitrary Code
http://securitytracker.com/alerts/2009/Nov/1023188.html
GIMP PSD Image Processing Integer Overflow Vulnerability
http://www.vupen.com/english/advisories/2009/3270
Home FTP Server "SITE INDEX Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2009/3269
Wikipedia Toolbar for Firefox Remote Code Execution Vulnerability
http://www.vupen.com/english/advisories/2009/3268
Linux Kernel "kvm_vcpu_ioctl_x86_setup_mce()" Memory Corruption Issue
http://www.vupen.com/english/advisories/2009/3267
avast! "aswRdr.sys" Driver Local Memory Corurption Vulnerability
http://www.vupen.com/english/advisories/2009/3266
HP Discovery and Dependency Mapping Inventory Code Execution
http://www.vupen.com/english/advisories/2009/3265
RHBA-2009:1586-1: kernel-utils bug fix update
http://rhn.redhat.com/errata/RHBA-2009-1586.html
Sun Java Runtime Environment and Java Development Kit Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/32608
Sun Java Web Start and Java Plug-in JAR File Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/32892
Sun Java Runtime Environment Audio System Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/35939
DataWizard FtpXQ Server Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/20721
PHP Handicapper Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/15294
GD Graphics Library JIS-Encoded Font Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/22289
GD Graphics Library '_gdGetColors' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36712
Multiple JiRo's Products 'files/login.asp' Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37045
Linux Kernel 'pipe.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/36901
Linux Kernel with SELinux 'mmap_min_addr' Low Memory NULL Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/36051
Kaspersky Anti-Virus 'kl1.sys' Driver Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37044
GnuTLS NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/35952
ISC BIND 9 Remote Dynamic Update Message Denial of Service Vulnerability
http://www.securityfocus.com/bid/35848
Sun Java SE November 2009 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/36881
Joomla! eZine Component 'd4m_ajax_pagenav.php' Remote File Include Vulnerability
http://www.securityfocus.com/bid/37043
Home FTP Server 'MKD' Command Directory Traversal Vulnerability
http://www.securityfocus.com/bid/37041
GIMP PSD Image Parsing Integer Overflow Vulnerability
http://www.securityfocus.com/bid/37040
HP Discovery and Dependency Mapping Inventory Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37037
Linux Kernel 'nfs4_proc_lock()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36936
Novell eDirectory '/dhost/httpstk;submit' Multiple Stack Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/37042
CUPS 'kerberos' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/36958
Novell eDirectory Multiple Vulnerabilities
http://www.securityfocus.com/bid/35666
Samba Oplock Break Notification Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/36573
Apple Safari CSS Denial of Service Vulnerability
http://www.securityfocus.com/bid/37039
Wikipedia Toolbar Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37038
RETIRED: Adobe Flash Player Same-Origin Policy Bypass Vulnerability
http://www.securityfocus.com/bid/37013
HP OpenView Network Node Manager 'ovdbrun.exe' Denial of Service Vulnerability
http://www.securityfocus.com/bid/37046
Linux Kernel 'drivers/char/agp/generic.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/34673
Linux Kernel 'clear_child_tid()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35930
Linux Kernel 'net/ax25/af_ax25.c' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/36635
Linux Kernel CIFS 'decode_unicode_ssetup()' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34612
Linux Kernel 64-bit Kernel Register Memory Leak Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36576
Samba Format String And Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/35472
Samba Misconfigured '/etc/passwd' File Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363
Apache mod_proxy_ftp Module NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/36260
Samba setuid 'mount.cifs' Verbose Option Information Disclosure Vulnerability
http://www.securityfocus.com/bid/36572
Apache mod_proxy_ftp Remote Command Injection Vulnerability
http://www.securityfocus.com/bid/36254
Pango 'pango_glyph_string_set_size()' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/34870
Linux Kernel 'hfc_usb.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37036
0 件のコメント:
コメントを投稿