+ zlib 1.2.5 released
http://www.zlib.net/
http://www.zlib.net/ChangeLog.txt
Linux Kernel release: 2.6.34-rc5
http://www.linux.org/news/2010/04/19/0001.html
Microsoft、PC集中管理オンラインサービス「Windows Intune」を発表
http://itpro.nikkeibp.co.jp/article/NEWS/20100420/347282/?ST=security
JVN#87730223 複数のサイボウズ製品におけるアクセス制限に関する脆弱性
http://jvn.jp/jp/JVN87730223/index.html
JVNDB-2010-000016 複数のサイボウズ製品におけるアクセス制限に関する脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000016.html
Helix Server Buffer Overflows in AgentX++ Component Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Apr/1023897.html
Helix Server Heap Overflow in Processing NTLM Authentication Data Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Apr/1023895.html
HP Operations Manager Unspecified Flaw Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Apr/1023894.html
+ MySQL "UNINSTALL PLUGIN" Privilege Check Security Issue
http://secunia.com/advisories/39454/
http://www.vupen.com/english/advisories/2010/0923
http://www.securityfocus.com/bid/39543
+ HPSBUX02518 SSRT100051 rev.1 - HP-UX, Local Denial of Service (DoS)
http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02091749
- Linux Kernel "release_one_tty()" Denial of Service
http://secunia.com/advisories/39490/
- HPSBUX02517 SSRT100058 rev.2 - HP-UX Running OpenSSL, Remote Unauthorized Information Disclosure, Unauthorized Data Modification, Denial of Service (DoS)
http://www13.itrc.hp.com/service/cki/docDisplay.do?docLocale=en&docId=emr_na-c02079216
HPSBMA02491 SSRT100060 rev.1 - HP Operations Manager for Windows, Remote Execution of Arbitrary Code
http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02078800
Corelan Security Team : TweakFS Zip Stack BOF
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32373
Secunia : Secunia Research: e107 Content Management Plugin Script Insertion Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32371
Secunia : Secunia Research: e107 Avatar/Photograph Image File Upload Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32372
Debian : New pidgin packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32367
Mandriva : Security Announce apache-mod_auth_shadow
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32361
Mandriva : Security Announce clamav
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32362
MustLive : New vulnerabilities in CMS SiteLogic
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32370
Debian : New phpmyadmin packages fix several vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32363
Debian : New apache2 packages fix several issues
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32364
Debian : New jasper packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32365
Debian : New kdm packages fix privilege escalation
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32366
Mandriva : Security Announce nss_db
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32356
Mandriva : Security Announce sudo
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32357
Mandriva : Security Announce openssl
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32358
Mandriva : Security Announce irssi
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32359
Mandriva : Security Announce brltty
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32360
一太郎シリーズの脆弱性を悪用した標的型攻撃について
http://www.ipa.go.jp/security/topics/alert20100419.html
キヤノンITS、電子メールの誤送信対策サービスをASPで販売開始
http://itpro.nikkeibp.co.jp/article/NEWS/20100420/347229/?ST=security
CompleteFTP v3.3.0 - Remote Memory Consumption DoS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00166.html
Secunia Research: e107 Avatar/Photograph Image File Upload Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00156.html
Secunia Research: e107 Content Management Plugin Script Insertion Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00160.html
[ MDVSA-2010:081 ] apache-mod_auth_shadow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00158.html
[Suspected Spam]New vulnerabilities in CMS SiteLogic
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00159.html
[SECURITY] [DSA 2037-1] New kdm packages fix privilege escalation
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00157.html
[SECURITY] [DSA 2036-1] New jasper packages fix denial of service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00153.html
[SECURITY] [DSA-2035-1] New apache2 packages fix several issues
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00163.html
[ MDVSA-2010:080 ] brltty
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00152.html
[ MDVSA-2010:076 ] openssl
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00154.html
[ MDVSA-2010:078 ] sudo
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00165.html
[SECURITY] [DSA 2034-1] New phpmyadmin packages fix several vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00162.html
WinMount MOU File Handling Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00155.html
iDefense Security Advisory 04.15.10: Multiple Vendor AgentX++ Stack Buffer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-04/msg00167.html
JVNDB-2010-001290 Microsoft Internet Explorer の Tabular Data Control ActiveX コントロールにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001290.html
JVNDB-2010-001289 Microsoft Internet Explorer における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001289.html
JVNDB-2010-001288 Microsoft Internet Explorer における同一生成元ポリシーを回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001288.html
JVNDB-2010-001287 Microsoft Internet Explorer の mstime.dll における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001287.html
JVNDB-2010-001286 Microsoft Internet Explorer における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001286.html
JVNDB-2010-001285 Microsoft Internet Explorer における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001285.html
JVNDB-2010-001284 Microsoft Internet Explorer における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001284.html
JVNDB-2010-001283 Microsoft Internet Explorer における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001283.html
REDAXO "REX[INCLUDE_PATH]" File Inclusion Vulnerabilities
http://secunia.com/advisories/39492/
Linux Kernel "release_one_tty()" Denial of Service
http://secunia.com/advisories/39490/
TweakFS Zip Utility Buffer Overflow Vulnerability
http://secunia.com/advisories/39519/
IBM Java Multiple Vulnerabilities
http://secunia.com/advisories/39477/
60cycleCMS Cross-Site Request Forgery
http://secunia.com/advisories/39480/
Joomla iNetLanka Drawroot Component "controller" File Inclusion Vulnerability
http://secunia.com/advisories/39524/
Joomla iNetLanka Google Component "controller" File Inclusion Vulnerability
http://secunia.com/advisories/39525/
Joomla iF surfALERT Component "controller" File Inclusion Vulnerability
http://secunia.com/advisories/39526/
Joomla Matamko Component "controller" File Inclusion Vulnerability
http://secunia.com/advisories/39523/
Joomla Archery Scores Component "controller" File Inclusion Vulnerability
http://secunia.com/advisories/39521/
Joomla Gadget Factory Component "controller" File Inclusion Vulnerability
http://secunia.com/advisories/39522/
Mocha W32 LPD Request Processing Buffer Overflow
http://secunia.com/advisories/39394/
MySQL "UNINSTALL PLUGIN" Privilege Check Security Issue
http://secunia.com/advisories/39454/
dl_stats SQL Injection and Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/39496/
Zyke CMS "login" SQL Injection Vulnerability
http://secunia.com/advisories/39488/
openMairie openScrutin File Inclusion Vulnerabilities
http://secunia.com/advisories/39493/
Joomla JoltCard Component "cardID" SQL Injection Vulnerability
http://secunia.com/advisories/39520/
HTTP File Server Security Bypass and Denial of Service
http://secunia.com/advisories/39499/
eclime Database Backup Authentication Bypass Vulnerability
http://secunia.com/advisories/39495/
Fedora update for openssl
http://secunia.com/advisories/39461/
Fedora update for kdebase
http://secunia.com/advisories/39483/
AgentX++ "AgentX::receive_agentx()" Two Vulnerabilities
http://secunia.com/advisories/39489/
Debian update for jasper
http://secunia.com/advisories/39505/
Debian update for pidgin
http://secunia.com/advisories/39509/
Debian update for kdm
http://secunia.com/advisories/39506/
e107 Two Vulnerabilities
http://secunia.com/advisories/39013/
Debian update for apache2
http://secunia.com/advisories/39501/
IBM BladeCenter Advanced Management Module (AMM) TCP Processing Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2010/Apr/1023893.html
ZiMB Comment for Joomla "controller" Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0932
ZiMB Manager for Joomla "controller" Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0931
Gadget Factory for Joomla "controller" Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0930
Matamko for Joomla "controller" Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0929
iNetLanka Multiple Root for Joomla "controller" File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0928
iNetLanka Multiple Map for Joomla "controller" File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0927
iNetLanka Drawroot for Joomla "controller" File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0926
iNetLanka Google for Joomla "controller" Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0925
iF surfALERT for Joomla "controller" Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/0924
MySQL "UNINSTALL PLUGIN" Privilege Checking Weakness
http://www.vupen.com/english/advisories/2010/0923
IBM Java SDK Code Execution and Security Bypass Vulnerabilities
http://www.vupen.com/english/advisories/2010/0922
IBM BladeCenter Advanced Management Module DoS Vulnerability
http://www.vupen.com/english/advisories/2010/0921
3Com H3C S12500 and S9500E Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/0920
e107 Remote File Upload and Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2010/0919
AgentX++ "AgentX::receive_agentx()" Buffer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2010/0918
IBM Lotus Notes SURunAs Utility Password Disclosure Vulnerability
http://www.vupen.com/english/advisories/2010/0917
Fedora Security Update Fixes OpenSSL Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/0916
Fedora Security Update Fixes KDE Display Manager Vulnerability
http://www.vupen.com/english/advisories/2010/0915
Debian Security Update Fixes Pidgin Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2010/0914
Debian Security Update Fixes KDE Display Manager Vulnerability
http://www.vupen.com/english/advisories/2010/0913
Debian Security Update Fixes JasPer Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/0912
Debian Security Update Fixes Apache2 "mod_proxy_ajp" Vulnerabilities
http://www.vupen.com/english/advisories/2010/0911
Debian Security Update Fixes phpMyAdmin Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/0910
Mandriva Security Update Fixes ClamAV Two Vulnerabilities
http://www.vupen.com/english/advisories/2010/0909
Mandriva Security Update Fixes Apache mod_auth_shadow Issue
http://www.vupen.com/english/advisories/2010/0908
Mandriva Security Update Fixes brltty Untrusted Search Path Vulnerability
http://www.vupen.com/english/advisories/2010/0907
Mandriva Security Update Fixes Irssi Security Bypass and DoS Issues
http://www.vupen.com/english/advisories/2010/0906
Mandriva Security Update Fixes OpenSSL Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/0905
Mandriva Security Update Fixes Sudo Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2010/0904
Mandriva Security Update Fixes nss_db Information Disclosure Issue
http://www.vupen.com/english/advisories/2010/0903
Mandriva Security Update Fixes MMC-Wizard Insecure File Permission
http://www.vupen.com/english/advisories/2010/0902
TweakFS 1.0 (FSX Edition) Stack buffer overflow
http://www.exploit-db.com/exploits/12293
Expat Unspecified XML Parsing Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/37203
RealNetworks Helix and Helix Mobile Server NTLM Authentication Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39490
FFmpeg Version 0.5 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/36465
Microsoft Windows SMB Client Transaction Response Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39339
Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
http://www.securityfocus.com/bid/36935
Oracle Java SE and Java for Business 'readMabCurveData()' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39069
Oracle Java SE and Java for Business CVE-2010-0837 Remote Vulnerability
http://www.securityfocus.com/bid/39072
Oracle Java SE and Java for Business CVE-2010-0095 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/39086
Oracle Java SE and Java for Business CVE-2010-0094 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/39075
Oracle Java SE and Java for Business CVE-2010-0088 Remote Java Runtime Environme Vulnerability
http://www.securityfocus.com/bid/39081
Oracle Java SE and Java for Business CVE-2010-0085 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/39094
Oracle Java SE and Java for Business CVE-2010-0091 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/39096
Linux Kernel 64bit Personality Handling Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/38027
Oracle Java SE and Java for Business CVE-2010-0092 Remote Vulnerability
http://www.securityfocus.com/bid/39090
Oracle Java SE and Java for Business CVE-2010-0084 Remote Vulnerability
http://www.securityfocus.com/bid/39093
Linux Kernel 'ebtables' Security Bypass Vulnerability
http://www.securityfocus.com/bid/37762
Linux Kernel 'print_fatal_signal()' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/37724
Linux Kernel 'sctp_rcv_ootb()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/38857
Linux Kernel Virtual Dynamically-linked Shared Object Access Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/38858
Todd Miller Sudo 'sudoedit' Path Resolution Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/39468
Nodesforum Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/39359
e107 'content_manager.php' HTML Injection Vulnerability
http://www.securityfocus.com/bid/39539
MySQL UNINSTALL PLUGIN Security Bypass Vulnerability
http://www.securityfocus.com/bid/39543
Ziggurat Farsi CMS 'id' Parameter Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/39311
KDE KDM Insecure File Permission Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/39467
OpenSSL 'dtls1_retrieve_buffered_fragment()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/38533
OpenSSL 'ssl3_get_record()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/39013
OpenSSL 'bn_wexpend()' Error Handling Unspecified Vulnerability
http://www.securityfocus.com/bid/38562
Pidgin Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/38294
JasPer JPC_QCX_GetCompParm Function JP2 File Handling Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/24052
Apache Subrequest Handling Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38580
Apache mod_proxy_ajp Module Incoming Request Body Denial Of Service Vulnerability
http://www.securityfocus.com/bid/38491
phpMyAdmin 'unserialize()' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/37861
phpMyAdmin Insecure Temporary File and Directory Creation Vulnerabilities
http://www.securityfocus.com/bid/37826
ClamAV Security Bypass And Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/39262
Irssi Denial of Service and SSL Hostname Verification Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/39377
GNU libnss_db Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/39132
OpenSSL 'zlib' Compression Memory Leak Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/31692
OpenSSL DTLS Packets Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/35001
OpenSSL 'dtls1_retrieve_buffered_fragment()' DTLS Packet Denial of Service Vulnerability
http://www.securityfocus.com/bid/35138
TweakFS Zip Utility ZIP File Remote Stack Overflow Vulnerability
http://www.securityfocus.com/bid/39565
Devana 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/39563
google-joomla 3D map Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39560
WinMount ZIP File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39557
Fetchmail Debug Mode With Multichar Locale Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/39556
HTTP File Server Security Bypass and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/39544
iF surfALERT Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39566
inetlanka drawroot Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39562
Multiple Root Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39552
Multiple Map Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39551
Matamko Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39550
REDAXO 'REX[INCLUDE_PATH]' Multiple Remote File Include Vulnerabilities
http://www.securityfocus.com/bid/39549
ZiMB Comment Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39548
Gadget Factory Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39547
ZiMB Manager Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39546
Archery Scores Component for Joomla! 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39545
Joomla! 'com_joltcard' Component 'cardID' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/39541
0 件のコメント:
コメントを投稿