+ NetVault Backup 8.5 released
http://www.bakbone.co.jp/products/nvbu85.html
Linux Kernel release: 2.6.32.7
http://www.linux.org/news/2010/01/28/0002.html
Linux Kernel release: 2.6.27.45
http://www.linux.org/news/2010/01/28/0001.html
HS09-019: Buffer Overflow Vulnerability in Cosminexus, Processing Kit for XML, and Hitachi Developer's Kit for Java
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS09-019/index.html
HS10-001: uCosminexus Portal Frameworkにおけるクロスサイトスクリプティングの脆弱性
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-001/index.html
JVNVU#188937 GNU gzip における複数の脆弱性
http://jvn.jp/cert/JVNVU188937/index.html
JVNVU#571860 Linux カーネルの IPv6 jumbogram 処理に脆弱性
http://jvn.jp/cert/JVNVU571860/index.html
JVN#87272440 Apache Tomcat におけるサービス運用妨害(DoS)の脆弱性
http://jvn.jp/jp/JVN87272440/index.html
JVN#63832775 Apache Tomcat における情報漏えいの脆弱性
http://jvn.jp/jp/JVN63832775/index.html
JVNDB-2009-002466 GIMP の ReadImage 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002466.html
JVNDB-2009-002465 Xpdf、gpdf および kpdf の FoFiType1::parse 関数における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002465.html
JVNDB-2009-002464 Mozilla Firefox/SeaMonkey の GeckoActiveXObject 関数における重要な情報を取得される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002464.html
JVNDB-2009-002463 Mozilla Firefox/SeaMonkey における任意の JavaScript を実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002463.html
JVNDB-2009-002462 Mozilla Firefox/SeaMonkey におけるコンテンツを偽装される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002462.html
JVNDB-2009-002461 Mozilla Firefox/SeaMonkey における http URL または file URL の SSL インジケータを偽装される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002461.html
JVNDB-2009-002460 Mozilla Firefox/SeaMonkey における認証されたリクエストを任意のアプリケーションに送信される脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002460.html
Analyzing isc.sans.org weblogs, part 2, RFI attacks
http://isc.sans.org/diary.html?storyid=8113
Maildrop Lets Local Users Gain Elevated Group Privileges
http://securitytracker.com/alerts/2010/Jan/1023515.html
Joomla! 'com_ccnewsletter' Component Local File Include Vulnerability
http://www.securityfocus.com/bid/37987
Sun Java System Application Server HTTP TRACE Information Disclosure Vulnerability
http://www.securityfocus.com/bid/37995
+ Linux kernel 2.6.27.45, 2.6.32.7 released
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.45
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.7
+ Apache mod_proxy "ap_proxy_send_fb()" Integer Truncation Vulnerability
http://secunia.com/advisories/38319/3/
http://www.vupen.com/english/advisories/2010/0240
http://www.securityfocus.com/bid/37966
+ Apache 1.3.42 released
http://httpd.apache.org/dev/dist/CHANGES_1.3.42
+ Samba 'mount.cifs' Utility Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37992
MySQL Workbench 5.2.15 Beta 5 Available
http://dev.mysql.com/downloads/workbench/
Apache HTTP Server 2.3.5-alpha Released
http://httpd.apache.org/download.cgi
[Announce] Apache UIMA 2.3.0 released
http://incubator.apache.org/uima
Document ID: 340963: Importing the Microsoft System Center Operations Manager (SCOM) management pack Symantec.SFW.mp version 5.1.1.0 into SCOM 2007 Service Pack (SP) 1 fails.
http://seer.entsupport.symantec.com/docs/340963.htm
RHBA-2010:0070-1: systemtap bug fix update
http://rhn.redhat.com/errata/RHBA-2010-0070.html
Debian : New maildrop packages fix privilege escalation
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31615
Ubuntu Security Notice : lintian vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31618
Cisco : Multiple Vulnerabilities in Cisco Unified MeetingPlace
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31624
Debian : New ircd-hybrid/ircd-ratbox packages fix arbitrary code execution
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31616
Debian : New lintian packages fix multiple vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31617
Hewlett-Packard : HP OpenView Storage Data Protector, Local Unauthorized Access
http://www.criticalwatch.com/support/security-advisories.aspx?AID=31620
「iPad」に便乗した偽ソフト出現、検索サイト経由で誘導
「Apple Tablet」で検索すると配布サイトへ、偽のウイルス警告で脅す
http://itpro.nikkeibp.co.jp/article/NEWS/20100128/343902/?ST=security
Rising AntiVirus 2008/2009/2010 Local Privilege Escalation Exploit
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00268.html
[USN-891-1] lintian vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00267.html
[security bulletin] HPSBMA02502 SSRT090171 rev.1 - HP OpenView Storage Data Protector, Local Unauthorized Access
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00266.html
Firefox Observation Plugin Attack
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-01/msg00265.html
Symantec generating a False Positive on Flash Player installer
http://isc.sans.org/diary.html?storyid=8104
Drupal Author Contact Module Script Insertion Vulnerability
http://secunia.com/advisories/38380/
Ubuntu update for lintian
http://secunia.com/advisories/38379/
Debian update for lintian
http://secunia.com/advisories/38375/
Debian update for maildrop
http://secunia.com/advisories/38374/
HP-UX update for CIFS Server
http://secunia.com/advisories/38373/
Fedora update for wordpress-mu
http://secunia.com/advisories/38372/
Fedora update for zabbix
http://secunia.com/advisories/38370/
VirtueMart "order_status_id" SQL Injection Vulnerability
http://secunia.com/advisories/38369/
maildrop Privilege Escalation Security Issue
http://secunia.com/advisories/38367/
MySQL yaSSL Certificate Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/38364/
Hybrid2 IRC Services Private Message Processing Denial of Service
http://secunia.com/advisories/38352/
Drupal Feedback Module Script Insertion Vulnerability
http://secunia.com/advisories/38351/
Apache mod_proxy "ap_proxy_send_fb()" Integer Truncation Vulnerability
http://secunia.com/advisories/38319/
Serversman HTTP Request Processing Denial of Service Vulnerability
http://secunia.com/advisories/38315/
F2L 3000 SQL Injection Vulnerability
http://secunia.com/advisories/38310/
Discuz! "tid" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/38279/
Cisco Unified MeetingPlace Multiple Vulnerabilities
http://secunia.com/advisories/38259/
NetSupport Manager Gateway Request Processing Denial of Service Vulnerability
http://secunia.com/advisories/38258/
Wireshark LWRES Dissector Buffer Overflow Vulnerabilities
http://secunia.com/advisories/38257/
Enano CMS SQL Injection Vulnerability
http://secunia.com/advisories/38253/
yaSSL Certificate Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/37493/
Apache mod_proxy "ap_proxy_send_fb()" Integer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0240
Wireshark LWRES Dissector Multiple Buffer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2010/0239
HP-UX Security Update Fixes CIFS Server Unauthorized Access Issue
http://www.vupen.com/english/advisories/2010/0238
Cisco Unified MeetingPlace and MeetingTime Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/0237
MySQL yaSSL Certificate Handling Remote Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0236
IBM WebSphere DataPower SOA Appliances Denial of Service Issue
http://www.vupen.com/english/advisories/2010/0235
LedgerSMB SQL Injection and Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2010/0234
yaSSL Certificate Handling Remote Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/0233
HP OpenView Storage Data Protector Unauthorized Access Issue
http://www.vupen.com/english/advisories/2010/0232
Rising AntiVirus 2008/2009/2010 Local Privilege Escalation Exploit
http://www.exploit-db.com/exploits/11281
PowerDNS Recursor Remote Cache Poisoning Vulnerability
http://www.securityfocus.com/bid/37653
ZABBIX 'NET_TCP_LISTEN()' Security Bypass Vulnerability
http://www.securityfocus.com/bid/37306
Rising Antivirus Multiple IOCTL Request Handling Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/37951
ZABBIX 'process_trap()' NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/37308
ZABBIX Denial Of Service and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37309
Samba Misconfigured '/etc/passwd' File Security Bypass Vulnerability
http://www.securityfocus.com/bid/36363
Discuz! 'tid' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37982
VirtueMart Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/37963
Apache 1.3 mod_proxy HTTP Chunked Encoding Integer Overflow Vulnerability
http://www.securityfocus.com/bid/37966
Wireshark Dissector LWRES Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/37985
Wireshark 0.9.0 through 1.2.4 Multiple Vulnerabilities
http://www.securityfocus.com/bid/37407
WordPress 'wp-admin/admin.php' Module Configuration Security Bypass Vulnerability
http://www.securityfocus.com/bid/35584
Debian Lintian Multiple Local Vulnerabilities
http://www.securityfocus.com/bid/37975
Multiple Vendor HTML Form Protocol Vulnerability
http://www.securityfocus.com/bid/3181
yaSSL Multiple Remote Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/27140
Samba 'mount.cifs' Utility Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37992
jVideoDirect Component for Joomla! 'v' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37990
NovaBoard 'forums' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/37988
Joomla! 'com_ccnewsletter' Component Directory Traversal Vulnerability
http://www.securityfocus.com/bid/37987
CommonSpot Server 'utilities/longproc.cfm' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/37986
GNU Mailman Unspecified Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/37984
Symantec Altiris Notification Server Static Encryption Key Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/37953
0 件のコメント:
コメントを投稿