+ Linux kernel 2.6.27.53, 2.6.32.21, 2.6.34.6, 2.6.35.4 released
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.53
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32.21
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.34.6
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.35.4
BIND 9.7.2rc1 is now available.
https://www.isc.org/software/bind/972rc1
http://ftp.isc.org/isc/bind9/9.7.2rc1/9.7.2rc1
Kernel release: 2.6.35.4
http://www.linux.org/news/2010/08/26/0004.html
Kernel release: 2.6.34.6
http://www.linux.org/news/2010/08/26/0003.html
Kernel release: 2.6.32.21
http://www.linux.org/news/2010/08/26/0002.html
Kernel release: 2.6.27.53
http://www.linux.org/news/2010/08/26/0001.html
プレス発表
ウェブサイト攻撃の検出ツール「iLogScanner」の性能向上版を公開
~ウェブサイト管理者は、ログを分析する習慣を~
http://www.ipa.go.jp/about/press/20100827.html
JVNTA10-238A Microsoft Windows における DLL 読み込みに関する脆弱性
http://jvn.jp/cert/JVNTA10-238A/index.html
DAEMON Tools Insecure Library Loading Vulnerability
http://secunia.com/advisories/41146/
NetBSD Buffer Length Check Error in CODA File System Lets Local Users Read Kernel Memory
http://securitytracker.com/alerts/2010/Aug/1024369.html
Adobe Shockwave Player Memory Corruption Vulnerability
http://securityreason.com/securityalert/7692
Firefox <= 3.6.8 DLL Hijacking Exploit [dwmapi.dll]
http://securityreason.com/securityalert/7691
TeamViewer <= 5.0.8703 DLL Hijacking Exploit (dwmapi.dll)
http://securityreason.com/securityalert/7690
+ RHSA-2010:0657-1: Low: gdm security and bug fix update
http://rhn.redhat.com/errata/RHSA-2010-0657.html
+ Microsoft Windows Progman Group Converter Insecure Library Loading
http://secunia.com/advisories/41136/
+ Microsoft Windows Indeo Filter Insecure Library Loading Vulnerability
http://secunia.com/advisories/41114/
- Microsoft Windows Backup Insecure Library Loading Vulnerability
http://secunia.com/advisories/41122/
[ANNOUNCE] PostgreSQL PHP Generator 10.8 released
http://www.sqlmaestro.com/products/postgresql/phpgenerator/
RazorSQL 5.2 Database Query Tool Released
http://www.postgresql.org/about/news.1227
CAMシステムソフトウェア利用時にポップアップが表示される現象につきまして
http://www.trendmicro.co.jp/support/news.asp?id=1464
Check Point Software Technologies : [CVE-2010-2881] Adobe Shockwave Player Memory Corruption Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33557
Check Point Software Technologies : [CVE-2010-2869] Adobe Shockwave Player Memory Corruption Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33558
Check Point Software Technologies : [CVE-2010-2880] Adobe Shockwave Player Memory Corruption Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33559
Check Point Software Technologies : [CVE-2010-2868] Adobe Shockwave Player Memory Corruption Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33560
Check Point Software Technologies : [CVE-2010-2864] Adobe Shockwave Player Memory Corruption Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33561
Check Point Software Technologies : [CVE-2010-2882] Adobe Shockwave Player Memory Corruption Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33563
Dark2S Security Team : Deepin TFTP Server Directory Traversal Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33562
Independent Researcher : GFI WebMonitor Admin UI Remote Script Code Injection
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33556
Secunia : KDE Okular PDB Parsing RLE Decompression Buffer Overflow
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33564
Ubuntu Security Notice : [USN-976-1] Tomcat DoS, Information Disclosure
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33550
Ubuntu Security Notice : [USN-977-1] MoinMoin vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33551
ZDI : ZDI-10-165: Trend Micro Internet Security Pro 2010 ActiveX extSetOwner Remote Code Execution Vulnera
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33540
Debian : [DSA 2096-1] New zope-ldapuserfolder packages fix authentication bypass
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33552
マカフィー、セキュリティ対策ソフトの新版を発表
http://itpro.nikkeibp.co.jp/article/NEWS/20100826/351508/?ST=security
携帯電話やスマートフォンで使える本人認証サービス、VISAが日本向けに導入
http://itpro.nikkeibp.co.jp/article/NEWS/20100826/351459/?ST=security
JVNDB-2010-001882 Wind River Systems VxWorks の認証 API (loginLib) における問題
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001882.html
JVNDB-2010-001881 Wind River Systems VxWorks においてデバッグサービスがデフォルトで有効になっている問題
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001881.html
JVNDB-2010-001880 LFTP の get1 コマンドにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001880.html
JVNDB-2010-001879 JP1/NETM 製品 におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001879.html
JVNDB-2010-001878 JP1/Integrated Manager および JP1/Integrated Management 製品におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001878.html
JVNDB-2010-001877 JP1/PAM におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001877.html
JVNDB-2010-001876 JP1/AJS の組み込みDB利用製品におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001876.html
JVNDB-2010-001875 JP1/ServerConductor/Control Manager におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001875.html
JVNDB-2010-001874 Cosminexus 製品におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001874.html
US-CERT Technical Cyber Security Alert TA10-238A -- Microsoft Windows Insecurely Loa
http://www.derkeiler.com/Mailing-Lists/Cert/2010-08/msg00003.html
BugTracker.net 3.4.3 SQL Injection
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00338.html
ZDI-10-167: RealNetworks RealPlayer FLV Parsing Multiple Integer Overflow Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00336.html
ZDI-10-166: RealNetworks RealPlayer Malformed IVR Object Index Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00337.html
[HITB-Announce] HITB2010 SIGNINT Sessions
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00333.html
SQL injection vulnerability in CompuCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00332.html
SQL injection vulnerability in CompuCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00331.html
File Content Disclosure in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00330.html
SQL injection vulnerability in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00329.html
SQL injection vulnerability in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00328.html
SQL injection vulnerability in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00326.html
XSRF (CSRF) in Webmatic
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00327.html
XSS vulnerability in Auto CMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00313.html
XSS vulnerability in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00316.html
XSS vulnerability in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00325.html
SQL injection vulnerability in CompuCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00318.html
XSS vulnerability in CompuCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00312.html
XSS vulnerability in CompuCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00324.html
XSS vulnerability in CompuCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00323.html
SQL injection vulnerability in CompuCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00322.html
Local File Inclusion in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00320.html
SQL injection vulnerability in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00319.html
SQL injection vulnerability in TCMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00317.html
XSS vulnerability in Webmatic
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00315.html
XSS vulnerability in Webmatic
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00314.html
Apple CoreGraphics (Preview) Memory Corruption Vulnerability - CVE-2010-1801
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00311.html
Details of cisco-sa-20081022-asa security advisory?
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00308.html
Skype <= 4.2.0.169 DLL Hijacking Exploit (wab32.dll)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00307.html
Multiple vulnerabilities in eSitesBuilder
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00321.html
BlastChat Chat Client Component version 3.3 <= Cross Script Scripting (XSS) Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00334.html
Joomla! Component com_bc Cross Script Scripting (XSS) Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-08/msg00335.html
IBM AIX Buffer Overflow in ftpd Lets Remote Authenticated Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Aug/1024368.html
HP Software Distributor Lets Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2010/Aug/1024367.html
OpenOffice.org Impress Buffer Overflows Let Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Aug/1024352.html
Autodesk Design Review Insecure Library Loading Vulnerability
http://secunia.com/advisories/41013/
Mozilla SeaMonkey Insecure Library Loading Vulnerability
http://secunia.com/advisories/41168/
Target CMS Multiple Vulnerabilities
http://secunia.com/advisories/41116/
Webmatic Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/41127/
Auto CMS PHP Code Execution Security Issue
http://secunia.com/advisories/41147/
PKZIP Insecure Library Loading Vulnerability
http://secunia.com/advisories/41103/
Roxio Media Creator Insecure Library Loading Vulnerability
http://secunia.com/advisories/41137/
Cisco Packet Tracer Insecure Library Loading Vulnerability
http://secunia.com/advisories/41125/
IZArc Insecure Library Loading Vulnerability
http://secunia.com/advisories/41131/
Mihalism Multi Host "album_title" PHP Code Injection
http://secunia.com/advisories/41084/
Mihalism Multi Host "return" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/41162/
Mozilla Thunderbird Insecure Library Loading Vulnerability
http://secunia.com/advisories/41151/
RealPlayer Insecure Library Loading Vulnerability
http://secunia.com/advisories/41092/
Adobe Device Central Insecure Library Loading Vulnerability
http://secunia.com/advisories/41118/
Microsoft Windows Backup Insecure Library Loading Vulnerability
http://secunia.com/advisories/41122/
HP-UX Software Distributor Privilege Escalation Vulnerability
http://secunia.com/advisories/41163/
SSSD LDAP Unauthenticated Bind Security Bypass Security Issue
http://secunia.com/advisories/41159/
Trend Micro Internet Security Pro 2010 ActiveX Control Vulnerability
http://secunia.com/advisories/41140/
Adobe InDesign Insecure Library Loading Vulnerability
http://secunia.com/advisories/41126/
Cisco Unified Communications Manager Two Denial of Service Vulnerabilities
http://secunia.com/advisories/41100/
Cisco Unified Presence Two Denial of Service Vulnerabilities
http://secunia.com/advisories/41070/
Microsoft Windows Progman Group Converter Insecure Library Loading
http://secunia.com/advisories/41136/
Adobe Illustrator Insecure Library Loading Vulnerability
http://secunia.com/advisories/41134/
Winamp Insecure Library Loading Vulnerability
http://secunia.com/advisories/41093/
NetBSD CODA Filesystem Kernel Memory Information Disclosure Vulnerability
http://secunia.com/advisories/41166/
Microsoft Windows Indeo Filter Insecure Library Loading Vulnerability
http://secunia.com/advisories/41114/
Ubuntu update for tomcat6
http://secunia.com/advisories/41117/
Fedora update for mapserver
http://secunia.com/advisories/41165/
Cacti 0.8.7g XSS
http://securityreason.com/securityalert/7689
Foxit Reader <= 4.0 pdf Jailbreak
http://securityreason.com/securityalert/7688
Cacti Multiple Parameter Cross Site Scripting Vulnerabilities
http://securityreason.com/securityalert/7687
Mozilla Thunderbird File Handling Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2201
Microsoft Windows Progman Group Converter Insecure Library Loading
http://www.vupen.com/english/advisories/2010/2200
RealPlayer File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2199
Adobe Illustrator File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2198
Apple Safari File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2197
Adobe Device Central Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2196
Winamp File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2195
InterVideo WinDVD File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2194
Roxio PhotoSuite File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2193
Microsoft Visio File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2192
BS.Player File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2191
Media Player Classic File Handling Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2190
SnagIt File Processing Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2189
Microsoft Office Groove Insecure Library Loading Vulnerability
http://www.vupen.com/english/advisories/2010/2188
Cisco Unified Communications Manager SIP Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2010/2187
Cisco Unified Presence SIP Messages Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2010/2186
Trend Micro Internet Security Pro "UfPBCtrl.dll" Code Execution
http://www.vupen.com/english/advisories/2010/2185
Ubuntu Security Update Fixes Moin Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2010/2184
Ubuntu Security Update Fixes Tomcat Transfer Encoding Vulnerabilities
http://www.vupen.com/english/advisories/2010/2183
Redhat Security Update Fixes ImageMagick Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/2182
Redhat Security Update Fixes qspice-client and spice-xpi Vulnerability
http://www.vupen.com/english/advisories/2010/2181
Fedora Security Update Fixes bogofilter Heap Corruption Vulnerability
http://www.vupen.com/english/advisories/2010/2180
Fedora Security Update Fixes kdegraphics Memory Corruption
http://www.vupen.com/english/advisories/2010/2179
KDE Okular PDB Processing Memory Corruption Vulnerability
http://www.vupen.com/english/advisories/2010/2178
Fedora Security Update Fixes MapServer Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/2177
0 件のコメント:
コメントを投稿