マイクロソフト セキュリティ情報の事前通知 - 2010 年 10 月
http://www.microsoft.com/japan/technet/security/bulletin/ms10-oct.mspx
Oracle Java SE and Java for Business Critical Patch Update Pre-Release Announcement - October 2010
http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
Oracle Critical Patch Update Pre-Release Announcement - October 2010
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
CESA-2010:0742 (postgresql)
http://lwn.net/Alerts/409079/
Postfix 2.8 Snapshot 20101007
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20101007.HISTORY
Postfix 2.8-20101007-nonprod non-production release
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20101007-nonprod.HISTORY
MySQL 5.1.52 (Not yet released)
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-52.html
Cyber Security Awareness Month - Day 8 - Patch Management and System Updates
http://isc.sans.edu/diary.html?storyid=9688
Dupehunter Professional Insecure Library Loading Vulnerability
http://secunia.com/advisories/41733/
Poppler Memory Allocation Bug in PostScriptFunction() Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Oct/1024520.html
Xpdf Array Indexing Error in FoFiType1::parse() Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Oct/1024519.html
Xpdf Pointer Dereference in Gfx::getPos() Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Oct/1024518.html
+ RHSA-2010:0749-1: Important: poppler security update
http://rhn.redhat.com/errata/RHSA-2010-0749.html
+ RHSA-2010:0754-1: Important: cups security update
http://rhn.redhat.com/errata/RHSA-2010-0754.html
+ RHSA-2010:0755-1: Important: cups security update
http://rhn.redhat.com/errata/RHSA-2010-0755.html
+ Multiple Vendors libc/glob(3) resource exhaustion (+0day remote ftpd-anon)
http://securityreason.com/securityalert/7822
http://www.exploit-db.com/exploits/15215/
http://www.securityfocus.com/bid/43819
+? Linux Kernel FBIOGET_VBLANK shmctl 'ipc/shm.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43829
+ Linux Kernel 'ipc/compat.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43828
? Linux Kernel KVM 'handle_dr()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/37221
? Linux Kernel 'knfsd' 'current->mm' Modifier Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/42217
[ANNOUNCE] Slony-I 2.0.5 Released
http://www.slony.info/
Postfix 2.8 Snapshot 20101006
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20101006.HISTORY
Postfix 2.8-20101006-nonprod non-production release
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20101006-nonprod.HISTORY
RHSA-2010:0750-1: Important: xpdf security update
http://rhn.redhat.com/errata/RHSA-2010-0750.html
RHSA-2010:0751-1: Important: xpdf security update
http://rhn.redhat.com/errata/RHSA-2010-0751.html
RHSA-2010:0752-1: Important: gpdf security update
http://rhn.redhat.com/errata/RHSA-2010-0752.html
RHSA-2010:0753-1: Important: kdegraphics security update
http://rhn.redhat.com/errata/RHSA-2010-0753.html
Core Security Technologies : Adobe Acrobat Reader Acrord32.dll Use After Free Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33837
EMC Product Security Response Center : RSAR Authentication Client information disclosure
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33838
JVNDB-2010-002112 Drupal の OpenID モジュールにおける認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002112.html
JVNDB-2010-002111 Drupal の OpenID モジュールにおける認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002111.html
JVNDB-2010-002110 Drupal の OpenID モジュールにおける認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002110.html
JVNDB-2010-002109 Drupal におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002109.html
JVNDB-2010-002108 Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002108.html
JVNDB-2010-002107 Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002107.html
JVNDB-2010-001501 MIT Kerberos 5 の GSS-API ライブラリにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001501.html
JVNDB-2010-001669 Samba の chain_reply 関数におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001669.html
SORBS.NET - email RBL issues
http://isc.sans.edu/diary.html?storyid=9685
[USN-1002-2] PostgreSQL vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00043.html
IBWAS10 CfP - Deadline Extension
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00042.html
[USN-1003-1] OpenSSL vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00040.html
[USN-1002-1] PostgreSQL vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00041.html
Syhunt Advisory: Visual Synapse HTTP Server Directory Traversal Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00038.html
Adobe Reader 9.3.4 Multiple Memory Corruption - Security Advisory - SOS-10-003
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00037.html
HP Data Protector Manager v6.11 / NULL Pointer Dereference Remote Denial of Service Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00039.html
ZDI-10-191: Adobe Reader ICC Parsing Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00033.html
NetBSD glob(3) GLOB_LIMIT Resource Exhaustion Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2010/Oct/1024517.html
RSA Authentication Client Secret Key Object Handling Security Issue
http://secunia.com/advisories/41705/
RSA Authentication Client Secret Key Object Handling Security Issue
http://secunia.com/advisories/41702/
Drupal Views Bulk Operations Module Security Bypass
http://secunia.com/advisories/41696/
HP Data Protector Media Operations Denial of Service Vulnerability
http://secunia.com/advisories/41698/
SUSE Update for Multiple Packages
http://secunia.com/advisories/41707/
Red Hat update for freetype
http://secunia.com/advisories/41665/
Red Hat update for freetype
http://secunia.com/advisories/41664/
Debian update for freetype
http://secunia.com/advisories/41595/
NetBSD GLOB_LIMIT Resource Exhaustio
http://secunia.com/advisories/41694/
Ubuntu update for lvm2
http://secunia.com/advisories/41678/
Multiple Vendors libc/glob(3) Resource Exhaustion (+0day remote ftpd-anon)
http://www.exploit-db.com/exploits/15215/
Redhat Security Update Fixes Acroread Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2010/2589
Redhat Security Update Fixes PostgreSQL Privilege Escalation
http://www.vupen.com/english/advisories/2010/2588
SuSE Security Update Fixes Multiple Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2010/2587
Fedora Security Update Fixes Seamonkey Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/2586
Fedora Security Update Fixes Openswan Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/2585
Fedora Security Update Fixes Cgit Local Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/2584
Fedora Security Update Fixes ClamAV Bzip2 Integer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/2583
Fedora Security Update Fixes MySQL Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2010/2582
Gentoo Security Update Fixes Libpng Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/2581
Mandriva Security Update Fixes PostgreSQL Privilege Escalation
http://www.vupen.com/english/advisories/2010/2580
Ubuntu Security Update Fixes clvmd lvm2 Security Bypass Vulnerability
http://www.vupen.com/english/advisories/2010/2579
Ubuntu Security Update Fixes Kerberos Uninitialized Pointer Vulnerability
http://www.vupen.com/english/advisories/2010/2578
Fretsweb Multiple Local File Include Vulnerabilities
http://www.securityfocus.com/bid/43571
RETIRED: VMware Server Unspecified Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/43456
Softbiz Ads 'image.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/35453
Linux Kernel XDR Implementation Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/42249
Linux Kernel 'ecryptfs_uid_hash()' Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/42237
Linux Kernel 'snd_seq_oss_open()' Multiple Local Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/43062
Linux Kernel Controller Area Network Protocol Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/42585
Linux Kernel DRM Module IOCTL Information Disclosure Vulnerability
http://www.securityfocus.com/bid/42577
Linux Kernel GFS2 Directory Rename NULL Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/42124
Linux Kernel CIFS 'CIFSSMBWrite()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/42242
Linux Kernel 'release_one_tty()' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/39480
Linux Kernel 'do_pages_move()' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38144
Linux Kernel NFS Automount 'symlinks' Denial of Service Vulnerability
http://www.securityfocus.com/bid/39044
Linux Kernel XSF 'SWAPEXT' IOCTL Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/40920
Linux Kernel 'sctp_process_unk_param()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/39794
Linux Kernel 'tipc' Module Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/39120
Linux Kernel PI Futex Invalid Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/38165
Linux Kernel 'knfsd' 'current->mm' Modifier Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/40377
Linux Kernel 'video4linux' IOCTL and IP Multicast 'getsockopt' Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43239
Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/36824
Linux Kernel PA-RISC EEPROM Driver Memory Corruption Vulnerability
http://www.securityfocus.com/bid/36004
Linux Kernel Ptrace (CVE-2010-3301) Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43355
Linux Kernel 'kvm_arch_vcpu_ioctl_set_sregs()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35529
Linux Kernel 2.4 and 2.6 Multiple Local Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/36304
Linux Kernel KVM 'handle_dr()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/37221
Linux Kernel 'knfsd' 'current->mm' Modifier Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/42217
Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703
PostgreSQL PL/Perl and PL/Tcl Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43747
RETIRED: Adobe Acrobat and Reader 9.3.4 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/43621
WebKit for Apple iPhone/iPod Touch (CVE-2010-1781) Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43077
LightOpenCMS 'smarty.php' Local File Include Vulnerability
http://www.securityfocus.com/bid/35497
OpenSSL 'ssl3_get_key_exchange()' Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/42306
OpenSSL 'bn_wexpend()' Error Handling Unspecified Vulnerability
http://www.securityfocus.com/bid/38562
GNU libc glob(3) 'GLOB_LIMIT' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/43819
Linux Kernel FBIOGET_VBLANK 'drivers/media/video/ivtv/ivtvfb.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43815
Adobe Acrobat and Reader NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/43737
Microsoft IIS FTPd NLST Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36189
Oracle Java SE and Java For Business October 2010 Advanced Notification
http://www.securityfocus.com/bid/43856
Xpdf 'Gfx::getPos()' (CVE-2010-3702) Unitialized Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/43845
Xpdf 'FoFiType1::parse()' Array Indexing Error Vulnerability
http://www.securityfocus.com/bid/43841
Visual Synapse HTTP Server Directory Directory Traversal Vulnerability
http://www.securityfocus.com/bid/43830
Linux Kernel FBIOGET_VBLANK shmctl 'ipc/shm.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43829
Linux Kernel 'ipc/compat.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43828
http://www.microsoft.com/japan/technet/security/bulletin/ms10-oct.mspx
Oracle Java SE and Java for Business Critical Patch Update Pre-Release Announcement - October 2010
http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
Oracle Critical Patch Update Pre-Release Announcement - October 2010
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
CESA-2010:0742 (postgresql)
http://lwn.net/Alerts/409079/
Postfix 2.8 Snapshot 20101007
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20101007.HISTORY
Postfix 2.8-20101007-nonprod non-production release
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20101007-nonprod.HISTORY
MySQL 5.1.52 (Not yet released)
http://dev.mysql.com/doc/refman/5.1/en/news-5-1-52.html
Cyber Security Awareness Month - Day 8 - Patch Management and System Updates
http://isc.sans.edu/diary.html?storyid=9688
Dupehunter Professional Insecure Library Loading Vulnerability
http://secunia.com/advisories/41733/
Poppler Memory Allocation Bug in PostScriptFunction() Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Oct/1024520.html
Xpdf Array Indexing Error in FoFiType1::parse() Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Oct/1024519.html
Xpdf Pointer Dereference in Gfx::getPos() Lets Remote Users Execute Arbitrary Code
http://securitytracker.com/alerts/2010/Oct/1024518.html
+ RHSA-2010:0749-1: Important: poppler security update
http://rhn.redhat.com/errata/RHSA-2010-0749.html
+ RHSA-2010:0754-1: Important: cups security update
http://rhn.redhat.com/errata/RHSA-2010-0754.html
+ RHSA-2010:0755-1: Important: cups security update
http://rhn.redhat.com/errata/RHSA-2010-0755.html
+ Multiple Vendors libc/glob(3) resource exhaustion (+0day remote ftpd-anon)
http://securityreason.com/securityalert/7822
http://www.exploit-db.com/exploits/15215/
http://www.securityfocus.com/bid/43819
+? Linux Kernel FBIOGET_VBLANK shmctl 'ipc/shm.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43829
+ Linux Kernel 'ipc/compat.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43828
? Linux Kernel KVM 'handle_dr()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/37221
? Linux Kernel 'knfsd' 'current->mm' Modifier Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/42217
[ANNOUNCE] Slony-I 2.0.5 Released
http://www.slony.info/
Postfix 2.8 Snapshot 20101006
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20101006.HISTORY
Postfix 2.8-20101006-nonprod non-production release
http://mirror.postfix.jp/postfix-release/experimental/postfix-2.8-20101006-nonprod.HISTORY
RHSA-2010:0750-1: Important: xpdf security update
http://rhn.redhat.com/errata/RHSA-2010-0750.html
RHSA-2010:0751-1: Important: xpdf security update
http://rhn.redhat.com/errata/RHSA-2010-0751.html
RHSA-2010:0752-1: Important: gpdf security update
http://rhn.redhat.com/errata/RHSA-2010-0752.html
RHSA-2010:0753-1: Important: kdegraphics security update
http://rhn.redhat.com/errata/RHSA-2010-0753.html
Core Security Technologies : Adobe Acrobat Reader Acrord32.dll Use After Free Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33837
EMC Product Security Response Center : RSAR Authentication Client information disclosure
http://www.criticalwatch.com/support/security-advisories.aspx?AID=33838
JVNDB-2010-002112 Drupal の OpenID モジュールにおける認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002112.html
JVNDB-2010-002111 Drupal の OpenID モジュールにおける認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002111.html
JVNDB-2010-002110 Drupal の OpenID モジュールにおける認証を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002110.html
JVNDB-2010-002109 Drupal におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002109.html
JVNDB-2010-002108 Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002108.html
JVNDB-2010-002107 Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002107.html
JVNDB-2010-001501 MIT Kerberos 5 の GSS-API ライブラリにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001501.html
JVNDB-2010-001669 Samba の chain_reply 関数におけるバッファオーバーフローの脆弱性
http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001669.html
SORBS.NET - email RBL issues
http://isc.sans.edu/diary.html?storyid=9685
[USN-1002-2] PostgreSQL vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00043.html
IBWAS10 CfP - Deadline Extension
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00042.html
[USN-1003-1] OpenSSL vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00040.html
[USN-1002-1] PostgreSQL vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00041.html
Syhunt Advisory: Visual Synapse HTTP Server Directory Traversal Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00038.html
Adobe Reader 9.3.4 Multiple Memory Corruption - Security Advisory - SOS-10-003
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00037.html
HP Data Protector Manager v6.11 / NULL Pointer Dereference Remote Denial of Service Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00039.html
ZDI-10-191: Adobe Reader ICC Parsing Remote Code Execution Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2010-10/msg00033.html
NetBSD glob(3) GLOB_LIMIT Resource Exhaustion Flaw Lets Remote Users Deny Service
http://securitytracker.com/alerts/2010/Oct/1024517.html
RSA Authentication Client Secret Key Object Handling Security Issue
http://secunia.com/advisories/41705/
RSA Authentication Client Secret Key Object Handling Security Issue
http://secunia.com/advisories/41702/
Drupal Views Bulk Operations Module Security Bypass
http://secunia.com/advisories/41696/
HP Data Protector Media Operations Denial of Service Vulnerability
http://secunia.com/advisories/41698/
SUSE Update for Multiple Packages
http://secunia.com/advisories/41707/
Red Hat update for freetype
http://secunia.com/advisories/41665/
Red Hat update for freetype
http://secunia.com/advisories/41664/
Debian update for freetype
http://secunia.com/advisories/41595/
NetBSD GLOB_LIMIT Resource Exhaustio
http://secunia.com/advisories/41694/
Ubuntu update for lvm2
http://secunia.com/advisories/41678/
Multiple Vendors libc/glob(3) Resource Exhaustion (+0day remote ftpd-anon)
http://www.exploit-db.com/exploits/15215/
Redhat Security Update Fixes Acroread Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2010/2589
Redhat Security Update Fixes PostgreSQL Privilege Escalation
http://www.vupen.com/english/advisories/2010/2588
SuSE Security Update Fixes Multiple Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2010/2587
Fedora Security Update Fixes Seamonkey Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/2586
Fedora Security Update Fixes Openswan Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/2585
Fedora Security Update Fixes Cgit Local Buffer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/2584
Fedora Security Update Fixes ClamAV Bzip2 Integer Overflow Vulnerability
http://www.vupen.com/english/advisories/2010/2583
Fedora Security Update Fixes MySQL Denial of Service Vulnerabilities
http://www.vupen.com/english/advisories/2010/2582
Gentoo Security Update Fixes Libpng Multiple Vulnerabilities
http://www.vupen.com/english/advisories/2010/2581
Mandriva Security Update Fixes PostgreSQL Privilege Escalation
http://www.vupen.com/english/advisories/2010/2580
Ubuntu Security Update Fixes clvmd lvm2 Security Bypass Vulnerability
http://www.vupen.com/english/advisories/2010/2579
Ubuntu Security Update Fixes Kerberos Uninitialized Pointer Vulnerability
http://www.vupen.com/english/advisories/2010/2578
Fretsweb Multiple Local File Include Vulnerabilities
http://www.securityfocus.com/bid/43571
RETIRED: VMware Server Unspecified Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/43456
Softbiz Ads 'image.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/35453
Linux Kernel XDR Implementation Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/42249
Linux Kernel 'ecryptfs_uid_hash()' Local Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/42237
Linux Kernel 'snd_seq_oss_open()' Multiple Local Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/43062
Linux Kernel Controller Area Network Protocol Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/42585
Linux Kernel DRM Module IOCTL Information Disclosure Vulnerability
http://www.securityfocus.com/bid/42577
Linux Kernel GFS2 Directory Rename NULL Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/42124
Linux Kernel CIFS 'CIFSSMBWrite()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/42242
Linux Kernel 'release_one_tty()' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/39480
Linux Kernel 'do_pages_move()' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/38144
Linux Kernel NFS Automount 'symlinks' Denial of Service Vulnerability
http://www.securityfocus.com/bid/39044
Linux Kernel XSF 'SWAPEXT' IOCTL Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/40920
Linux Kernel 'sctp_process_unk_param()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/39794
Linux Kernel 'tipc' Module Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/39120
Linux Kernel PI Futex Invalid Pointer Dereference Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/38165
Linux Kernel 'knfsd' 'current->mm' Modifier Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/40377
Linux Kernel 'video4linux' IOCTL and IP Multicast 'getsockopt' Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43239
Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/36824
Linux Kernel PA-RISC EEPROM Driver Memory Corruption Vulnerability
http://www.securityfocus.com/bid/36004
Linux Kernel Ptrace (CVE-2010-3301) Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43355
Linux Kernel 'kvm_arch_vcpu_ioctl_set_sregs()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/35529
Linux Kernel 2.4 and 2.6 Multiple Local Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/36304
Linux Kernel KVM 'handle_dr()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/37221
Linux Kernel 'knfsd' 'current->mm' Modifier Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/42217
Xpdf Multiple Integer Overflow Vulnerabilities
http://www.securityfocus.com/bid/36703
PostgreSQL PL/Perl and PL/Tcl Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/43747
RETIRED: Adobe Acrobat and Reader 9.3.4 Multiple Remote Vulnerabilities
http://www.securityfocus.com/bid/43621
WebKit for Apple iPhone/iPod Touch (CVE-2010-1781) Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/43077
LightOpenCMS 'smarty.php' Local File Include Vulnerability
http://www.securityfocus.com/bid/35497
OpenSSL 'ssl3_get_key_exchange()' Use-After-Free Memory Corruption Vulnerability
http://www.securityfocus.com/bid/42306
OpenSSL 'bn_wexpend()' Error Handling Unspecified Vulnerability
http://www.securityfocus.com/bid/38562
GNU libc glob(3) 'GLOB_LIMIT' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/43819
Linux Kernel FBIOGET_VBLANK 'drivers/media/video/ivtv/ivtvfb.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43815
Adobe Acrobat and Reader NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/43737
Microsoft IIS FTPd NLST Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/36189
Oracle Java SE and Java For Business October 2010 Advanced Notification
http://www.securityfocus.com/bid/43856
Xpdf 'Gfx::getPos()' (CVE-2010-3702) Unitialized Pointer Dereference Vulnerability
http://www.securityfocus.com/bid/43845
Xpdf 'FoFiType1::parse()' Array Indexing Error Vulnerability
http://www.securityfocus.com/bid/43841
Visual Synapse HTTP Server Directory Directory Traversal Vulnerability
http://www.securityfocus.com/bid/43830
Linux Kernel FBIOGET_VBLANK shmctl 'ipc/shm.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43829
Linux Kernel 'ipc/compat.c' Information Disclosure Vulnerability
http://www.securityfocus.com/bid/43828
0 件のコメント:
コメントを投稿