+ Linux kernel 2.6.32.34, 2.6.37.5, 2.6.38.1 released
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.32/ChangeLog-2.6.32.34
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.37.5
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.38.1
+ 2524375: Fraudulent Digital Certificates Could Allow Spoofing
http://www.microsoft.com/technet/security/advisory/2524375.mspx
http://isc.sans.edu/diary.html?storyid=10600
http://www.securitytracker.com/id/1025248
+ PHP 'Zip' Extension 'zip_fread()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/46975
+ PHP 'OpenSSL' Extension Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/46977
+ PHP Stream Component Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/46970
+ PHP Calendar Extension 'SdnToJulian()' Remote Integer Overflow Vulnerability
http://www.securityfocus.com/bid/46967
+ Linux Kernel 'sound/oss/opl3.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/47009
+ Linux Kernel 'sound/oss/midi_synth.c' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/47007
+ Perl 'Perl_reg_numbered_buff_fetch()' Function Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/47006
+ Linux Kernel Signal Code Spoofing Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/47003
- PHP 'Zip' Extension 'stream_get_contents()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/46969
- PHP 'Intl' Extension 'NumberFormatter::setSymbol()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/46968
CESA-2011:0370 (wireshark)
http://lwn.net/Alerts/435050/
TestLink 1.9.2 RELEASED (2011-03-19)
http://www.teamst.org/index.php/news-mainmenu-2/1-latest/106-testlink-192-released-2011-03-19
Debian : [DSA-2198-1] tex-common: insufficient input sanitiza
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35382
eidelweiss : CMS Balitbang 3.3 Arbitary File Upload Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35385
Hewlett-Packard : HP Discovery & Dependency Mapping Inventory (DDMI) Running on Windows, Insecure SNMP Configuration
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35383
Paul Szabo : XSS in Oracle default fcgi-bin/echo
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35396
Red Hat : [RHSA-2011:0372-01] flash-plugin: Critical Advisory
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35377
Red Hat : [RHSA-2011:0373-01] firefox: Important Advisory
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35378
Red Hat : [RHSA-2011:0374-01] thunderbird: Important Advisory
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35379
Red Hat : [RHSA-2011:0375-01] seamonkey: Important Advisory
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35380
Red Hat : [RHSA-2011:0376-01] dbus: Moderate Advisory
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35381
SuSE : [SUSE-SA:2011:014] IBM Java
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35376
ZDI : Joomla! 1.6.0 Information Disclosure/Full Path Disclosure Vulnerability
http://www.criticalwatch.com/support/security-advisories.aspx?AID=35394
Firefox 4 Security Features
http://isc.sans.edu/diary.html?storyid=10594
Firefox 3 Updates and SSL Blacklist extension
http://isc.sans.edu/diary.html?storyid=10597
Microsoft Advisory about fraudulent SSL Certificates
http://isc.sans.edu/diary.html?storyid=10600
Comodo RA Compromise
http://isc.sans.edu/diary.html?storyid=10603
Achievo Multiple Vulnerabilities
http://secunia.com/advisories/42254/
7-Technologies Interactive Graphical SCADA System Multiple Vulnerabilities
http://secunia.com/advisories/43849/
Pligg CMS Multiple Unspecified Vulnerabilities
http://secunia.com/advisories/43815/
Debian update for tex-common
http://secunia.com/advisories/43816/
SUSE update for clamav
http://secunia.com/advisories/43852/
Red Hat update for flash-plugin
http://secunia.com/advisories/43856/
Immunity Debugger HTTP Response Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/43857/
Red Hat update for dbus
http://secunia.com/advisories/43839/
BroadWin / Advantech WebAccess Remote Code Execution Vulnerabilities
http://www.vupen.com/english/advisories/2011/0743
DATAC RealWin Packets Processing Remote Buffer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2011/0742
7T Interactive Graphical SCADA System Overflows and File Manipulation
http://www.vupen.com/english/advisories/2011/0741
ICONICS GENESIS Memory Corruption and Integer Overflow Vulnerabilities
http://www.vupen.com/english/advisories/2011/0740
Siemens FactoryLink Code Execution and File Download Vulnerabilities
http://www.vupen.com/english/advisories/2011/0739
Fedora Security Update Fixes PEAR Installer File Overwrite Vulnerability
http://www.vupen.com/english/advisories/2011/0738
Redhat Security Update Fixes DBus Nested Variants Stack Overflow
http://www.vupen.com/english/advisories/2011/0737
Redhat Security Update Fixes Seamonkey Fraudulent SSL Certificates
http://www.vupen.com/english/advisories/2011/0736
Redhat Security Update Fixes Thunderbird Fraudulent SSL Certificates Issue
http://www.vupen.com/english/advisories/2011/0735
Redhat Security Update Fixes Firefox Fraudulent SSL Certificates Issue
http://www.vupen.com/english/advisories/2011/0734
Mozilla Products Fraudulent SSL Certificates Information Disclosure
http://www.vupen.com/english/advisories/2011/0733
Redhat Security Update Fixes Flash Remote Code Execution Vulnerability
http://www.vupen.com/english/advisories/2011/0732
Debian Security Update Fixes TeX-Common Command Injection Vulnerability
http://www.vupen.com/english/advisories/2011/0731
Progea Movicon 11 TCPUploadServer Remote Exploit
http://www.exploit-db.com/exploits/17034
HP NNM CGI webappmon.exe execvp Buffer Overflow
http://www.exploit-db.com/exploits/17030
HP NNM CGI webappmon.exe OvJavaLocale Buffer Overflow
http://www.exploit-db.com/exploits/17029
HP OpenView NNM nnmRptConfig nameParams Buffer Overflow
http://www.exploit-db.com/exploits/17028
Adobe Flash Player AVM Bytecode Verification
http://www.exploit-db.com/exploits/17027
Distributed Ruby send syscall vulnerability
http://www.exploit-db.com/exploits/17031
VLC Media Player Buffer Overflow in Processing AMV and NSV Files Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1025250
Microsoft Windows Includes Some Invalid Comodo Certificates
http://www.securitytracker.com/id/1025248
RETIRED: libTIFF TIFF Image 'StripByteCounts' Field Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/46931
Progea Movicon 'TCPUploadServer.exe' Security Bypass Vulnerability
http://www.securityfocus.com/bid/46907
7T Interactive Graphical SCADA System Malformed Packet Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/46310
PHP 'Zip' Extension 'zip_fread()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/46975
PHP 'OpenSSL' Extension Multiple Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/46977
PHP 'shmop_read()' Remote Integer Overflow Vulnerability
http://www.securityfocus.com/bid/46786
PHP Stream Component Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/46970
PHP 'Zip' Extension 'stream_get_contents()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/46969
PHP 'phar/phar_object.c' Format String Vulnerability
http://www.securityfocus.com/bid/46854
PHP 'Intl' Extension 'NumberFormatter::setSymbol()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/46968
libzip '_zip_name_locate()' NULL Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/46354
PHP Exif Extension 'exif_read_data()' Function Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/46365
PHP Calendar Extension 'SdnToJulian()' Remote Integer Overflow Vulnerability
http://www.securityfocus.com/bid/46967
PEAR Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/46605
HP OpenView Network Node Manager 'OvJavaLocale' Cookie Value Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/42154
HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/45762
HP OpenView Network Node Manager 'execvp_nc()' Code Execution Vulnerability
http://www.securityfocus.com/bid/41829
Adobe Flash Player CVE-2011-0609 'SWF' File Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/46860
D-Bus Nested Variants Denial of Service Vulnerability
http://www.securityfocus.com/bid/45377
VLC Media Player '.AMV' and '.NSV' Files Multiple Remote Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/47012
Constructr CMS Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/47011
Achievo Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/47010
Linux Kernel 'sound/oss/opl3.c' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/47009
Advantech/BroadWin SCADA WebAccess Multiple Remote Security Vulnerabilities
http://www.securityfocus.com/bid/47008
Linux Kernel 'sound/oss/midi_synth.c' Memory Corruption Vulnerability
http://www.securityfocus.com/bid/47007
Perl 'Perl_reg_numbered_buff_fetch()' Function Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/47006
Hewlett-Packard Virtual SAN Appliance 'hydra.exe' Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/47005
HP Data Protector 'DBServer.exe' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/47004
Linux Kernel Signal Code Spoofing Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/47003
PHP-Nuke 'HTTP_REFERER' Header Cross Site Request Forgery Vulnerability
http://www.securityfocus.com/bid/47002
PHP-Nuke 'Feedback' Multiple Cross Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/47001
PHP-Nuke 'chng_uid' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/47000
Pligg CMS Multiple Unspecified Security Vulnerabilities
http://www.securityfocus.com/bid/46998
Apple Mac OS X Libinfo Denial of Service Vulnerability
http://www.securityfocus.com/bid/46990
Web Wiz Forums Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/46131
0 件のコメント:
コメントを投稿