InterScan VirusWall スタンダードエディション 7.0 Windows版 Patch 1 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1412
ウイルスバスター コーポレートエディション 10.0 Critical Patch 、およびスタンドアロンスマートスキャンサーバ 1.1 Service Pack 1 Critical Patch 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1410
+ ActivePerl 5.12.1.1201 released
http://docs.activestate.com/activeperl/5.12/release.html
http://docs.activestate.com/activeperl/5.12/changes.html
http://www.activestate.com/activeperl/downloads/
+ PostgreSQL 8.4.4, 8.3.11, 8.2.17, 8.1.21, 8.0.25, 7.4.29 released
http://www.postgresql.org/about/news.1203
http://www.postgresql.org/docs/current/static/release-8-4-4.html
http://www.postgresql.org/docs/current/static/release-8-3-11.html
http://www.postgresql.org/docs/current/static/release-8-2-17.html
http://www.postgresql.org/docs/current/static/release-8-1-21.html
http://www.postgresql.org/docs/current/static/release-8-0-25.html
http://www.postgresql.org/docs/current/static/release-7-4-29.html
+ Enforce restrictions in plperl using an opmask applied to the whole interpreter, instead of using Safe.pm
http://www.postgresql.org/about/news.1203
http://www.postgresql.org/docs/current/static/release-8-4-4.html
http://www.postgresql.org/support/security
+ Prevent PL/Tcl from executing untrustworthy code from pltcl_modules
http://www.postgresql.org/about/news.1203
http://www.postgresql.org/docs/current/static/release-8-4-4.html
http://www.postgresql.org/support/security
+ Linux Kernel 'sctp_process_unk_param()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/39794
- PostgreSQL Security Update
http://www.postgresql.org/about/news.1203
HPSBGN02511 SSRT100022 rev.3 - Certain HP Small Form Factor, Microtower and Workstations PC's with Broadcom Integrated NIC Firmware, Remote Execution of Arbitrary Code
http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02048471
HPSBMA02534 SSRT090180 rev.1 - HP System Management Homepage (SMH) for Linux and Windows, Remote Unauthorized Information Disclosure, Unauthorized Data Modification, Denial of Service (DoS)
http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02171256
HPSBMA02535 SSRT100029 rev.1 - HP Performance Manager, Remote Unauthorized Access, Cross Site Scripting (XSS), Denial of Service (DoS)
http://www13.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02181353
Cross Site Scripting Vulnerability in Sun ONE and Sun Java System Applications
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000016.1-1
RHBA-2010:0410-1: vsftpd bug fix update
http://rhn.redhat.com/errata/RHBA-2010-0410.html
RHBA-2010:0415-1: device-mapper-multipath bug fix update
http://rhn.redhat.com/errata/RHBA-2010-0415.html
RHBA-2010:0402-1: device-mapper-multipath bug fix update
http://rhn.redhat.com/errata/RHBA-2010-0402.html
[SECURITY] [DSA 2047-1] New aria2 packages fix directory traversal
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00135.html
[ MDVSA-2010:096 ] tetex
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00134.html
CVE-2010-1454: SpringSource tc Server unauthenticated remote access to JMX interface
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00133.html
[oCERT-2010-001] multiple http client unexpected download filename vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00132.html
Joomla component SimpleDownload Local File Inclusion
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00138.html
XSS, SQL injection vulnerability in I-Vision CMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00131.html
phpvidz Administrative Password Disclosure
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00129.html
Vulnerability in 3D user cloud for Joomla
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00130.html
Call for Papers: EC2ND 2010
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00137.html
DEF CON 18 CFP closing in two weeks
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-05/msg00136.html
「商用ソフトのコピーだと思ったらウイルス」、悪質サイト相次ぐ
「ただより高いものはない」、違法コピーには手を出すな
http://itpro.nikkeibp.co.jp/article/NEWS/20100518/348107/?ST=security
JVN#82749282 CapsSuite Small Edition PatchMeister におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN82749282/index.html
JVN#90872372 WebSAM DeploymentManager におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN90872372/index.html
Independent Researcher : iPhone data protection flaw
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32601
Slackware Linux : fetchmail
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32599
MustLive : Vulnerability in 3D user cloud for Joomla
http://www.criticalwatch.com/support/security-advisories.aspx?AID=32600
Abyss Web Server Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/39854/
I-Vision CMS "search.php" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/39764/
Joomla 3D Users Cloud Module "tagcloud" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/39829/
LinPHA "rotate.php" Command Injection Vulnerability
http://secunia.com/advisories/39831/
CMSQlite SQL Injection and Local File Inclusion Vulnerabilities
http://secunia.com/advisories/39840/
Iceberg CMS "p_id" SQL Injection Vulnerability
http://secunia.com/advisories/39833/
Platnik SQL Injection Vulnerabilities
http://secunia.com/advisories/39791/
Joomla JE Job Component Two Vulnerabilities
http://secunia.com/advisories/39837/
WebSAM DeploymentManager Denial of Service Vulnerability
http://secunia.com/advisories/39802/
CapsSuite Small Edition PatchMeister Denial of Service Vulnerability
http://secunia.com/advisories/39800/
Joomla JE Ajax Event Calendar Component "view" File Inclusion Vulnerability
http://secunia.com/advisories/39836/
Joomla JE Quotation Form Component "view" File Inclusion Vulnerability
http://secunia.com/advisories/39832/
Fedora update for qt
http://secunia.com/advisories/39857/
Fujitsu Interstage Application Server Servlet Component Vulnerability
http://secunia.com/advisories/39803/
Invision Power Board Script Insertion Vulnerability
http://secunia.com/advisories/39844/
Fedora update for quake3
http://secunia.com/advisories/39858/
Mathematica for Linux Insecure Temporary Files
http://secunia.com/advisories/39805/
LinPHA Input Validation Flaw in 'rotate.php' Lets Remote Users Inject Arbitrary Commands
http://securitytracker.com/alerts/2010/May/1023985.html
Cybertek CMS "page" Parameter Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/1162
iceberg CMS "p_id" Parameter Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2010/1161
I-Vision CMS SQL Injection and Cross Site Scripting Vulnerabilities
http://www.vupen.com/english/advisories/2010/1160
MS Comment for Joomla "controller" Local File Inclusion Vulnerability
http://www.vupen.com/english/advisories/2010/1159
EgO "fckeditor" Extension Handling Arbitrary File Upload Vulnerability
http://www.vupen.com/english/advisories/2010/1158
CompactCMS "tiny_mce" Extension Handling File Upload Vulnerability
http://www.vupen.com/english/advisories/2010/1157
Camp Component for Joomla "cid" Remote SQL Injection Vulnerability
http://www.vupen.com/english/advisories/2010/1156
Slackware Security Update Fixes Fetchmail Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/1155
Fetchmail Debug Mode POP3 UIDL Lists Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/1154
Fedora Security Update Fixes Quake3 Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2010/1153
Fedora Security Update Fixes Qt Memory Corruption Vulnerabilities
http://www.vupen.com/english/advisories/2010/1152
Mini-stream Software Mini-stream Ripper '.smi' File Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39828
aria2 Metalink File Handling Directory Traversal Vulnerability
http://www.securityfocus.com/bid/40142
SimpleDownload Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/40192
Linux Kernel 'sctp_process_unk_param()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/39794
Oracle MySQL 'COM_FIELD_LIST' Command Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/40106
Quake 3 Multiple Vulnerabilities
http://www.securityfocus.com/bid/18685
Quake 3 Engine Server Information Disclosure Vulnerability
http://www.securityfocus.com/bid/17924
Quake 3 Engine remapShader Command Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/17857
Quake 3 Engine CL_ParseDownload Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/18271
Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703
OrgChart Component for Joomla! 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/39606
TeX Live DVI Font Data Parsing Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/39981
TeX Live 'dospecial.c' '.dvi' File Parsing Integer Overflow Vulnerability
http://www.securityfocus.com/bid/39500
dvipng '.dvi' File Parsing Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39969
TeX Live '.dvi' File Parsing Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39966
CUPS and Xpdf JBIG2 Symbol Dictionary Processing Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/34791
Xpdf JBIG2 Processing Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/34568
BibTeX '.bib' File Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/34332
Qt NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
http://www.securityfocus.com/bid/36203
WebKit Numeric Character References Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/35607
WebKit Cross-Origin Stylesheet Request Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38692
WebKit HTML Image Element Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38691
Cisco Small Business Video Surveillance Cameras & 4-Port Router Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/39612
WebKit Right-to-Left Displayed Text Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38689
WebKit CSS 'run-in' Display Use-After-Free Error Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38690
WebKit XML Document Parsing Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38688
WebKit Object Element Fallback Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38687
WebKit Nested HTML Tags Use-After-Free Error Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38685
WebKit HTML Elements Callback Use-After-Free Error Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/38686
WebKit 'file:///' Directory Listing Page Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38372
WebKit CSS 'format()' Arguments Memory Corruption Vulnerability
http://www.securityfocus.com/bid/38684
Fetchmail Debug Mode With Multichar Locale Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/39556
Joomla! 'com_jequoteform' Component 'view' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/40187
File Thingie Remote Security Bypass Vulnerability
http://www.securityfocus.com/bid/40186
MS Comment Joomla! Component 'controller' Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/40185
Apple Safari 'window.parent.close()' Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/39990
VMware View URL Processing Cross-site Scripting Vulnerability
http://www.securityfocus.com/bid/39949
TinyBrowser Multiple Vulnerabilities
http://www.securityfocus.com/bid/35855
HP OpenView Network Node Manager 'getnnmdata.exe' Code Execution Vulnerability
http://www.securityfocus.com/bid/40072
S.O.M.PL '.m3u' File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/40210
PonVFTP Insecure Cookie Authentication Bypass Vulnerability
http://www.securityfocus.com/bid/40207
Alibaba Clone Platinum Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/40206
SpringSource tc Server JMX Interface Authentication Security Bypass Vulnerability
http://www.securityfocus.com/bid/40205
Shellzip ZIP Archive Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/40204
e107 'usersettings.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/40202
Platnik Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/40201
'com_event' Joomla! Component SQL Injection and Local File Include Vulnerabilities
http://www.securityfocus.com/bid/40200
SimpleDownload Joomla! Component 'fileid' Parameter Information Disclosure Vulnerability
http://www.securityfocus.com/bid/40198
WebSAM DeploymentManager Denial of Service Vulnerability
http://www.securityfocus.com/bid/40196
NEC CapsSuite Small Edition PatchMeister Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/40190
Fujitsu Interstage Application Server Servlet Component Security Vulnerability
http://www.securityfocus.com/bid/40189
Joomla! 'com_camp' Component 'cid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/40184
LinPHA Remote Command Execution Vulnerability
http://www.securityfocus.com/bid/40191
CMSQlite SQL Injection and Local File Include Vulnerabilities
http://www.securityfocus.com/bid/40195
0 件のコメント:
コメントを投稿