jetty@codehaus 7.2.0.v20101020 released
http://svn.codehaus.org/jetty/jetty/branches/jetty-8/VERSION.txt
プレス発表
欧州ENISAのクラウドコンピューティングのセキュリティに関するガイドラインの翻訳を公開
http://www.ipa.go.jp/about/press/20101025_2.html
JVNVU#402231 Adobe Shockwave Player に脆弱性
http://jvn.jp/cert/JVNVU402231/index.html
HP ProCurve 1800 Switches running SNMP Disclosure of Information Vulnerability
http://www.securiteam.com/securitynews/6I03I1500W.html
Alcatel-Lucent CTI CCA Server unauthenticated administrative access vulnerability
http://www.securiteam.com/windowsntfocus/6G03G1500Y.html
Alcatel-Lucent OmniVista 4760 Arbitrary Code Execution Vulnerability
http://www.securiteam.com/windowsntfocus/6H03H1500K.html
HP OpenView Network Node Manager Execution of Arbitrary Code Vulnerability
http://www.securiteam.com/securitynews/6J03J1500I.html
glpng PNG Processing Two Integer Overflow Vulnerabilities
http://www.securiteam.com/securitynews/6K03K1500G.html
HP Data Protector Media Operations 6.11 HTTP Server Remote Integer Overflow DoS
http://www.exploit-db.com/exploits/15307/
AnyDVD 6.7.1.0 Denial Of Service
http://www.exploit-db.com/exploits/15306/
RarmaRadio v2.52 (.m3u) Denial of service vulnerability
http://www.exploit-db.com/exploits/15305/
DBHcms 'editmenu' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/44378
+ Linux kernel 2.6.36 ChangeLog
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36
+ Linux kernel 2.6.36 ChangeLog
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.36
+ CVE-2010-1166 Denial of service vulnerability in Xorg and Xsun servers and Sun Ray
http://blogs.sun.com/security/entry/cve_2010_1166_denial_of
+ Internet Explorer "window.onerror" Information Disclosure Vulnerability
http://secunia.com/advisories/41944/
http://securitytracker.com/alerts/2010/Oct/1024630.html
http://www.vupen.com/english/advisories/2010/2758
+ Linux Kernel Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/44354
+ GNU glibc Dynamic Linker 'LD_AUDIT' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44347
- Microsoft Windows Task Scheduler Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2010/2761
[ANN] Apache Tomcat 7.0.4 beta released
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
[ANNOUNCE] Another PostgreSQL Diff Tool 2.3 released
http://apgdiff.startnet.biz/
[ANNOUNCE] Commons IO 2.0 released
http://commons.apache.org/io/upgradeto2_0.html
[ANNOUNCE] Apache Tuscany SCA Java 2.0-M5.1 released
http://tuscany.apache.org/sca-java-2x-releases.html
UPDATE: APSB10-21: Security updates available for Adobe Reader and Acrobat
http://www.adobe.com/support/security/bulletins/apsb10-21.html
CESA-2010:0788 (pidgin)
http://lwn.net/Alerts/411268/
DHCP 4.1.2rc1 released
https://www.isc.org/software/dhcp/412rc1
http://ftp.isc.org/isc/dhcp/dhcp-4.1.2rc1-RELNOTES
Linux Kernel release: 2.6.35.8-rc1
http://www.linux.org/news/2010/10/22/0003.html
Linux Kernel release: 2.6.32.25-rc1
http://www.linux.org/news/2010/10/22/0002.html
Linux Kernel release: 2.6.27.55-rc1
http://www.linux.org/news/2010/10/22/0001.html
"PostgreSQL 9.0 High Performance" book now available
http://www.postgresql.org/about/news.1249
Memcached-libmemcached-0.4401
http://search.cpan.org/~timb/Memcached-libmemcached-0.4401/
Ubuntu Security Notice : [USN-1008-1] libvirt file disclosure vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=34004
Ubuntu Security Notice : [USN-1008-2] virtinst file disclosure vulnerabilities
http://www.criticalwatch.com/support/security-advisories.aspx?AID=34005
Hewlett-Packard : HP Systems Insight Manager CSFR, XSS, Privilege-escalation
http://www.criticalwatch.com/support/security-advisories.aspx?AID=34007
Hewlett-Packard : HP AssetCenter and HP AssetManager Cross-site scripting
http://www.criticalwatch.com/support/security-advisories.aspx?AID=34009
Hewlett-Packard : HP Systems Insight Manager (SIM) Code Excution, DoS, Modification
http://www.criticalwatch.com/support/security-advisories.aspx?AID=34012
Google、Street View車両でパスワード情報なども取得したことを認める
http://itpro.nikkeibp.co.jp/article/NEWS/20101025/353333/?ST=security
JVN#50610528 Sleipnir および Grani における DLL 読み込みに関する脆弱性
http://jvn.jp/jp/JVN50610528/index.html
[ MDVSA-2010:209 ] libsmi
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00194.html
[SECURITY] [DSA 2122-1] New glibc packages fix local privilege escalation
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00195.html
[security bulletin] HPSBMA02593 SSRT100237 rev.1 - HP Virtual Connect Enterprise Manager (VCEM)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00193.html
[USN-1008-2] Virtinst update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00191.html
[USN-1008-1] libvirt vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00192.html
Cyber Security Awarenes Month - Day 24 - Using work computers at home
http://isc.sans.edu/diary.html?storyid=9805
Cyber Security Awarenes Month - Day 23 - The Importance of compliance
http://isc.sans.edu/diary.html?storyid=9802
Cyber Security Awareness Month - Day 22 - Security of removable media
http://isc.sans.edu/diary.html?storyid=9796
Intypedia project
http://isc.sans.edu/diary.html?storyid=9799
Squirrelcart PHP Shopping Cart "prod_rn" SQL Injection Vulnerability
http://secunia.com/advisories/41939/
SAP BusinessObjects Multiple Vulnerabilities
http://secunia.com/advisories/41894/
OpenFabrics Enterprise Distribution (OFED) "openibd" Insecure Temporary File Security Issue
http://secunia.com/advisories/41937/
Odin Secure FTP Export Server Response Buffer Overflow Vulnerability
http://secunia.com/advisories/41863/
Sleipnir Insecure Library and Executable Loading Vulnerabilities
http://secunia.com/advisories/41946/
YokkaSoft Products Insecure Executable Loading Vulnerability
http://secunia.com/advisories/41947/
Grani Insecure Library and Executable Loading Vulnerabilities
http://secunia.com/advisories/41949/
HP Virtual Connect Enterprise Manager Unspecified File Download Vulnerability
http://secunia.com/advisories/41926/
pecio cms "term" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/41934/
Ubuntu update for libvirt
http://secunia.com/advisories/41943/
iWiccle Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/41936/
Internet Explorer "window.onerror" Information Disclosure Vulnerability
http://secunia.com/advisories/41944/
Sawmill Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/41948/
Sawmill Multiple Vulnerabilities
http://secunia.com/advisories/41931/
Adobe Shockwave Player Director File "rcsL" Chunk Parsing Vulnerability
http://secunia.com/advisories/41932/
Ubuntu update for libvirt and virtinst
http://secunia.com/advisories/41942/
Red Hat update for pidgin
http://secunia.com/advisories/41899/
Vulnerability Note VU#402231: Adobe Shockwave Player Director file "rcsL" chunk parsing vulnerability
http://www.kb.cert.org/vuls/id/402231
HP Virtual Connect Enterprise Manager Discloses Files to Remote Users
http://securitytracker.com/alerts/2010/Oct/1024631.html
Microsoft Internet Explorer 'window.onerror' Callback Lets Remote Users Obtain Information From Other Domains
http://securitytracker.com/alerts/2010/Oct/1024630.html
Sawmill Enterprise Multiple Bugs Let Remote Users Read/Write Files, Execute Commands, Reset Passwords, and Conduct Cross-Site Scripting and Request Forgery Attacks
http://securitytracker.com/alerts/2010/Oct/1024629.html
NetBSD Larn Game Privilege Handling Error Lets Local Users Gain Elevated Privileges
http://securitytracker.com/alerts/2010/Oct/1024627.html
Microsoft Windows Task Scheduler Privilege Escalation Vulnerability
http://www.vupen.com/english/advisories/2010/2761
HP Operations Orchestration Cross Site Scripting Vulnerability
http://www.vupen.com/english/advisories/2010/2760
HP Virtual Connect Enterprise Manager Remote File Download Vulnerability
http://www.vupen.com/english/advisories/2010/2759
Microsoft Internet Explorer "window.onerror" Cross-Domain Disclosure
http://www.vupen.com/english/advisories/2010/2758
NetBSD Security Update Fixes "netsmb" Denial of Service Vulnerability
http://www.vupen.com/english/advisories/2010/2757
NetBSD Security Update Fixes Larn Privilege Escalation Vulnerabilities
http://www.vupen.com/english/advisories/2010/2756
Redhat Security Update Fixes Pidgin Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2010/2755
Mandriva Security Update Fixes Pidgin Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2010/2754
Pidgin Libpurple "purple_base64_decode()" Denial of Service Issues
http://www.vupen.com/english/advisories/2010/2753
GNU C library dynamic linker LD_AUDIT arbitrary DSO load Vulnerability
http://www.exploit-db.com/exploits/15304/
Mozilla Firefox and SeaMonkey Gopher Parser Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/44253
Mozilla Firefox SeaMonkey and Thunderbird 'LookupGetterOrSetter' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/44249
Mozilla Firefox SeaMonkey Thunderbird Modal Calls Cross Domain Information Disclosure Vulnerability
http://www.securityfocus.com/bid/44252
Mozilla Firefox SeaMonkey and Thunderbird 'document.write' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/44247
Mozilla Firefox and Thunderbird CVE-2010-3175 Multiple Memory-Corruption Vulnerabilities
http://www.securityfocus.com/bid/44245
Mozilla Firefox SeaMonkey and Thunderbird 'nsBarProp' Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/44248
Mozilla Firefox SeaMonkey and Thunderbird 'LD_LIBRARY_PATH' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44251
Multiple Browser Wild Card Certificate Spoofing Vulnerability
http://www.securityfocus.com/bid/42817
Mozilla Firefox SeaMonkey and Thunderbird CVE-2010-3174 Memory-Corruption Vulnerability
http://www.securityfocus.com/bid/44246
Mozilla Firefox SeaMonkey and Thunderbird CVE-2010-3176 Multiple Memory-Corruption Vulnerabilities
http://www.securityfocus.com/bid/44243
Mozilla Firefox SeaMonkey and Thunderbird DLL Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/44250
GNU glibc Dynamic Linker '$ORIGIN' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44154
RoarAudio 'LD_LIBRARY_PATH' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44339
OCS Inventory NG Agent 'Backend.pm' Perl Module Handling Code Execution Vulnerability
http://www.securityfocus.com/bid/35593
libsmi 'smiGetNode()' Long OID Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/44276
InterSystems Cache 'UtilConfigHome.csp' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/37177
Microsoft Internet Explorer Uninitialized Memory Word Document Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43706
Discuz! '2fly_gift.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/36044
RETIRED: 2FLY Gift Delivery System 'gameid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/44312
libvirt Multiple Local Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/41981
w-Agora 'search.php' Local File Include and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/44370
Linux Kernel Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/44354
VIT Software Spider Player '.m3u' File Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/44352
GNU glibc Dynamic Linker 'LD_AUDIT' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/44347
IBM WebSphere MQ Subject Distinguished Name (DN) X.509 Certificate Spoofing Vulnerability
http://www.securityfocus.com/bid/44342
Oracle Mojarra Encrypted View State Oracle Padding Security Vulnerability
http://www.securityfocus.com/bid/44337
OpenFabrics Enterprise Distribution 'openibd' Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/44332
HP Operations Orchestration CVE-2010-3985 Unspecified Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/44331
Sleipnir Binary Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/44328
YokkaSoft Multiple Products Executable Loading Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/44327
0 件のコメント:
コメントを投稿