Adobe Reader 及び Acrobat の脆弱性に関する注意喚起
http://www.jpcert.or.jp/at/2010/at100026.txt
Adobe Reader および Acrobat の脆弱性(APSB10-21)について
http://www.ipa.go.jp/security/ciadr/vul/20101006-adobe.html
IBM TSM FastBack Server _DAS_ReadBlockReply Remote Denial of Service Vulnerability
http://securityreason.com/securityalert/7816
IBM TSM FastBack Server FXCLI_OraBR_Exec_Command Remote Code Execution Vulnerabilities
http://securityreason.com/securityalert/7815
Kerberos Uninitialized Pointer Error in merge_authdata() Lets Remote Authenticated Users Deny Service
http://securitytracker.com/alerts/2010/Oct/1024512.html
Adobe Reader and Acrobat Multiple Flaws Let Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Oct/1024511.html
Adobe Acrobat and Reader Multiple Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2010/2573
+ PostgreSQL Security Update
http://www.postgresql.org/about/news.1244
http://wiki.postgresql.org/wiki/20101005securityrelease
+ PostgreSQL 9.0.1, 8.4.5, 8.3.12, 8.2.18, 8.1.22, 8.0.26 and 7.4.30 released
http://www.postgresql.org/docs/9.0/static/release-9-0-1.html
http://www.postgresql.org/docs/8.4/static/release-8-4-5.html
http://www.postgresql.org/docs/8.3/static/release-8-3-12.html
http://www.postgresql.org/docs/8.2/static/release-8-2-18.html
http://www.postgresql.org/docs/8.1/static/release.html#RELEASE-8-1-22
http://www.postgresql.org/docs/8.0/interactive/release.html#RELEASE-8-0-26
http://www.postgresql.org/docs/7.4/interactive/release.html#RELEASE-7-4-30
APSB10-21: Security updates available for Adobe Reader and Acrobat
http://www.adobe.com/support/security/bulletins/apsb10-21.html
CESA-2010:0737 (freetype)
http://lwn.net/Alerts/408615/
CESA-2010:0736 (freetype)
http://lwn.net/Alerts/408619/
CESA-2010:0737 (freetype)
http://lwn.net/Alerts/408597/
BIND 9.5.3rc1 released
https://www.isc.org/software/bind/953rc1
http://ftp.isc.org/isc/bind9/9.5.3rc1/9.5.3rc1
Debian : [DSA-2116-1] New freetype packages integer overflow
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33812
Debian : [DSA-2117-1] New apr-util packages fix denial of service
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33813
Independent Researcher : NetWin Surgemail XSS vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33819
Mandriva : [MDVSA-2010:195] libesmtp
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33810
Mandriva : [MDVSA-2010:196] dovecot
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33811
Red Hat : Important: freetype security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33814
Red Hat : Important: freetype security update
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33815
[security bulletin] HPSBTU02496 SSRT090245 rev.1 - HP Tru64 UNIX Running NTP, Denial of Service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00024.html
MITKRB5-SA-2010-006 [CVE-2010-1322] KDC uninitialized pointer crash in authoriza
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00026.html
Vulnerabilities in CMS WebManager-Pro
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00025.html
XSS vulnerability in Elxis CMS polls module
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00023.html
XSS vulnerability in Elxis CMS (contacts)
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00022.html
XSS vulnerability in Elxis CMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00020.html
XSS vulnerability in Docebo Announcements
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00019.html
SQL injection vulnerability in Elxis CMS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00017.html
[IMF 2011] Call for Papers
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00016.html
OWASP ZAP
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00014.html
[SECURITY] [DSA-2117-1] New apr-util packages fix denial of service
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00015.html
[ MDVSA-2010:196 ] dovecot
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00021.html
[SECURITY] [DSA-2116-1] New freetype packages integer overflow
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00018.html
[ MDVSA-2010:195 ] libesmtp
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00013.html
JVNDB-2010-001537 Adobe Flash ActionScript AVM2 newfunction 命令に脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001537.html
JVNDB-2010-002097 Microsoft Internet Information Services におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002097.html
JVNDB-2010-002096 Microsoft Internet Information Services の ASP 実装におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002096.html
JVNDB-2010-002095 Microsoft Outlook におけるヒープベースのバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002095.html
JVNDB-2010-002094 Microsoft Windows の USP10.DLL 内の Uniscribe 実装における任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002094.html
JVNDB-2010-002093 Microsoft Windows の MPEG-4 コーデックにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002093.html
JVNDB-2010-002092 Microsoft Windows の Print Spooler サービスにおける任意のコードを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002092.html
JVNDB-2010-002091 IBM AIX の sa_snap におけるファイルを削除される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002091.html
JVNDB-2010-002090 IBM AIX および VIOS の sa_snap におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002090.html
JVNDB-2010-002089 Adobe Flash に脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002089.html
JVNDB-2010-002088 Adobe Reader および Acrobat にバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002088.html
国内でも確認、Adobe Readerの脆弱性を狙う「ゼロデイ攻撃」
トレンドマイクロが報告、アップデートの適用を忘れずに
http://itpro.nikkeibp.co.jp/article/NEWS/20101006/352616/?ST=security
「複数の対策で防御」――メールで感染を広げるウイルスに注意
「Here you haveウイルス」が猛威を振るう、IPAが改めて注意喚起
http://itpro.nikkeibp.co.jp/article/NEWS/20101006/352615/?ST=security
Joomla! JomSocial Component Arbitrary File Upload Vulnerability
http://secunia.com/advisories/41680/
SmarterMail Cross-Site Scripting and Script Insertion Vulnerabilities
http://secunia.com/advisories/41677/
AD-EDIT2 "q" Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/41718/
Fedora update for mysql
http://secunia.com/advisories/41640/
FFmpeg/libavcodec arbitrary offset dereference
http://securityreason.com/securityalert/7814
XFS Deleted Inode Local Information Disclosure Vulnerability
http://securityreason.com/securityalert/7813
Microsoft Excel SxView Record Parsing Heap Memory Corruption
http://securityreason.com/securityalert/7812
Microsoft Unicode Scripts Processor Remote Code Execution
http://securityreason.com/securityalert/7811
Linux Kernel < 2.6.36-rc6 pktcdvd Kernel Memory Disclosure
http://securityreason.com/securityalert/7810
SmarterMail LDAP Query Input Validation Flaw Permits Cross-Site Scripting Attacks
http://securitytracker.com/alerts/2010/Oct/1024509.html
Dovecot Access Control Lists (ACL) Handling Two Vulnerabilities
http://www.vupen.com/english/advisories/2010/2572
Novell Client for Windows NWSETUP ActiveX Denial of Service Issue
http://www.vupen.com/english/advisories/2010/2571
activeCollab Insecure Permissions Data Manipulation Vulnerabilities
http://www.vupen.com/english/advisories/2010/2570
Subversion "mod_dav_svn" Module Unauthorized Access Vulnerability
http://www.vupen.com/english/advisories/2010/2569
MySQL Security Update Fixes Multiple Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2010/2568
Adobe Flash Player CVE-2010-2884 Unspecified Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43205
Adobe Reader 'CoolType.dll' TTF Font Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43057
Kudrsoft AudioPLUS Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/43564
almnzm 'customer' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/43745
otsAV '.ofl' File Remote Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/43451
E-topbiz Shopcart DX 'product_detail.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/30337
RPM Package Update and Removal File Attribute Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/40512
FreeType Versions Prior to 2.4.0 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/41663
Todd Miller Sudo Runas Group Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43019
Samba SID Parsing Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/43212
Oracle MySQL Prior to 5.1.49 'DDL' Statements Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42643
Oracle MySQL 'HANDLER' interface Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42633
Oracle MySQL Prior to 5.1.50 Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43677
Oracle MySQL 'EXPLAIN' Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42599
Oracle MySQL Prior to 5.1.49 'JOIN' Statement Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42646
Oracle MySQL Prior to 5.1.49 Malformed 'BINLOG' Arguments Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42638
Oracle MySQL 'LOAD DATA INFILE' Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42625
Oracle MySQL 'TEMPORARY InnoDB' Tables Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42598
Oracle MySQL Prior to 5.1.49 'WITH ROLLUP' Denial Of Service Vulnerability
http://www.securityfocus.com/bid/42596
Apache APR-util 'apr_brigade_split_line' Denial of Service Vulnerability
http://www.securityfocus.com/bid/43673
FreeType Rendering Engine Position Value Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/43700
MIT Kerberos KDC 'kdc_authdata.c' NULL Pointer Denial Of Service Vulnerability
http://www.securityfocus.com/bid/43756
SquirrelMail Virtual Keyboard Plugin 'vkeyboard.php' Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/43749
Adobe Acrobat and Reader CVE-2010-3627 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43746
Adobe Acrobat and Reader CVE-2010-3657 Denial of Service Vulnerability
http://www.securityfocus.com/bid/43744
Elxis SQL Injection and Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/43743
Adobe Acrobat and Reader CVE-2010-3656 Denial of Service Vulnerability
http://www.securityfocus.com/bid/43741
Adobe Acrobat and Reader for Linux CVE-2010-2887 Multiple Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/43740
Adobe Acrobat and Reader CVE-2010-2888 Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/43739
Adobe Acrobat and Reader CVE-2010-3658 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/43738
Adobe Acrobat and Reader CVE-2010-3630 Denial of Service Vulnerability
http://www.securityfocus.com/bid/43737
Adobe Acrobat and Reader for Mac CVE-2010-3624 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43736
Adobe Acrobat and Reader CVE-2010-3632 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/43735
Adobe Acrobat and Reader CVE-2010-3628 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/43734
Adobe Acrobat and Reader CVE-2010-3631 Array Indexing Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43733
Adobe Acrobat and Reader CVE-2010-3629 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43732
Adobe Acrobat and Reader CVE-2010-3623 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/43731
Adobe Acrobat and Reader CVE-2010-3625 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43730
Adobe Acrobat and Reader CVE-2010-3622 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/43729
Adobe Acrobat and Reader CVE-2010-3626 Font Parsing Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43727
Adobe Acrobat and Reader CVE-2010-3621 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/43726
Adobe Acrobat and Reader CVE-2010-3620 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43725
Adobe Acrobat and Reader CVE-2010-3619 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/43724
Adobe Acrobat and Reader CVE-2010-2889 Font Parsing Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43723
Adobe Acrobat and Reader CVE-2010-2890 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/43722
CAG's Simple CMS Multiple Cross Site Scripting and SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/43719
0 件のコメント:
コメントを投稿