InterScan WebManager 7.0 Service Pack 1(Build0733)公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1741
InterScan VirusWall スタンダードエディション 7.0 Windows版 Patch3 ビルド1354 ならびに 6.02 Linux版 Patch4 ビルド7815 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1743
QOTD from securityburnout.org
http://isc.sans.edu/diary.html?storyid=12673
PostgreSQL Multiple Vulnerabilities
http://secunia.com/advisories/48107/
CentOS alert CESA-2012:0332 (samba)
http://lwn.net/Alerts/483719/
+ Linux kernel 3.2.8 released
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.8
+ PostgreSQL 9.1.3, 9.0.7, 8.4.11, 8.3.18 released
http://www.postgresql.org/docs/9.1/static/release-9-1-3.html
http://www.postgresql.org/docs/9.0/static/release-9-0-7.html
http://www.postgresql.org/docs/8.4/static/release-8-4-11.html
http://www.postgresql.org/docs/8.3/static/release-8-3-18.html
+ CVE-2012-0866: Permissions on a function called by a trigger are not checked.
http://www.postgresql.org/about/news/1377/
+ CVE-2012-0867: SSL certificate name checks are truncated to 32 characters, allowing connection spoofing
http://www.postgresql.org/about/news/1377/
+ CVE-2012-0868: Line breaks in object names can be exploited to execute code when loading a pg_dump file.
http://www.postgresql.org/about/news/1377/
+ Sudo 1.8.4p2 released
http://www.sudo.ws/sudo/stable.html#1.8.4p2
+ Linux Kernel CVE-2012-0810 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/52182
+ Linux Kernel 'iproute' Package Multiple Insecure Temporary File Creation Vulnerabilities
http://www.securityfocus.com/bid/52185
+ OpenSSL ASN.1 S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/52181
[ANNOUNCE] pgAdmin III v1.14.2 released
http://www.pgadmin.org/development/changelog.php
[ANNOUNCE] Security Update released
http://www.postgresql.org/download/
MySQL Connector/Net 6.5.3 has been released
http://dev.mysql.com/downloads/connector/net/#downloads
[SECURITY] [DSA 2419-1] puppet security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00170.html
Recon 2012 - Call For Papers - June 14-16, 2012 - Montreal, Quebec
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00168.html
[SECURITY] [DSA 2418-1] postgresql-8.4 security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00167.html
Wolf CMS v0.7.5 - Multiple Web Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00164.html
OSQA CMS v3b - Multiple Persistent Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00163.html
Socusoft Photo 2 Video v8.05 - Buffer Overflow Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00162.html
[ MDVSA-2012:023 ] libvpx
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00161.html
Case YVS Image Gallery
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00160.html
FrameJammer DOM based XSS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00159.html
DeepSec "Sector v6" - Call for Papers
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00158.html
pidgin OTR information leakage
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00157.html
[SECURITY] [DSA 2414-2] fex regression
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00156.html
NGS00237 Patch Notification: Samba Andx request Remote Code Execution
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00155.html
Syhunt: Google V8 - Server-Side JS Injection in vulnerable web apps
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00153.html
Kongreg8 1.7.3 Mutiple XSS
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00154.html
TWSL2012-003: Cross-Site Scripting Vulnerability in Movable Type Publishing Platform
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00152.html
スマホユーザーを狙う新たな罠、「友達リクエスト」でウイルス感染
「リンクをクリックする際にはPC同様に注意深く」、英ソフォスが報告
http://itpro.nikkeibp.co.jp/article/NEWS/20120228/383362/?ST=security
JVN#20083397 Movable Type におけるセッションハイジャックが可能な脆弱性
http://jvn.jp/jp/JVN20083397/index.html
PostgreSQL Bugs Let Remote Authenticated Users Gain Elevated Privileges, Inject SQL Commands, and Spoof Certificates
http://www.securitytracker.com/id/1026744
Dropbear SSH Server Use-After-Free Lets Remote Authenticated Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026743
Mozilla Firefox Firefox 4.0.1 Array.reduceRight() Exploit
http://www.exploit-db.com/exploits/18531
Cookpad for Android / Cookpad Noseru for Android Security Bypass Security Issue
http://secunia.com/advisories/48065/
MyJobList "eid" SQL Injection Vulnerability
http://secunia.com/advisories/48169/
idev-BusinessDirectory "SEARCH" Cross-Site Scripting Vulnerability
http://secunia.com/advisories/48173/
Contao Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/48180/
WordPress Video Embed & Thumbnail Generator Plugin Code Execution Vulnerabilities
http://secunia.com/advisories/48087/
Ubuntu update for samba
http://secunia.com/advisories/48186/
Dropbear SSH Server Use-After-Free Vulnerability
http://secunia.com/advisories/48147/
phpFox "val[description]" Script Insertion Vulnerability
http://secunia.com/advisories/48171/
IBM AIX ICMP Packet Handling Denial of Service Vulnerability
http://secunia.com/advisories/48149/
SUSE update for MozillaFirefox
http://secunia.com/advisories/48160/
SUSE update for mozilla-xulrunner192
http://secunia.com/advisories/48179/
Oracle GlassFish Server Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51194
Oracle Virtual Desktop Infrastructure (VDI) CVE-2011-3571 Remote Vulnerability
http://www.securityfocus.com/bid/51467
Oracle Java SE CVE-2012-0503 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52018
Oracle Java SE CVE-2012-0506 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52014
Oracle Java SE CVE-2012-0501 Remote Stack Overflow Vulnerability
http://www.securityfocus.com/bid/52013
Oracle Java SE CVE-2012-0505 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52017
Oracle Java SE CVE-2012-0502 Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/52011
Oracle Java SE CVE-2012-0497 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52009
Oracle Java SE CVE-2011-3563 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52012
Linux Kernel CVE-2012-0810 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/52182
Impulsio CMS 'id' Parameter SQL Injection Vulnerability
http://www.securityfocus.com/bid/52063
Dolibarr Multiple Directory Traversal Vulnerabilities
http://www.securityfocus.com/bid/52113
SAP NetWeaver Multiple Input Validation Vulnerabilities
http://www.securityfocus.com/bid/52101
Puppet Multiple Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/52158
Adobe Flash Player CVE-2012-0752 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52032
Adobe Flash Player CVE-2012-0754 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52034
Adobe Flash Player CVE-2012-0753 Remote Memory Corruption Vulnerability
http://www.securityfocus.com/bid/52033
Adobe Flash Player CVE-2012-0756 Remote Security Bypass Vulnerability
http://www.securityfocus.com/bid/52036
Adobe Flash Player CVE-2012-0755 Remote Security Bypass Vulnerability
http://www.securityfocus.com/bid/52035
Adobe Flash Player CVE-2012-0767 Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/52040
VP8 Codec SDK libvpx Unspecified Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/51775
Asterisk SRTP Video Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51581
SystemTap DWARF Expression Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/52121
FreeBSD 'telnetd' Daemon Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/51182
PowerDNS Authoritative Server Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/51355
Linux Kernel 'SG_IO IOCTL' SCSI Request Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/51176
Linux Kernel 'journal_get_superblock()' Function Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/50663
Linux Kernel 'net/ipv4/igmp.c' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/51343
MaraDNS Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51225
Linux Kernel CVE-2011-4110 NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/50755
Linux Kernel DRM 'drivers/gpu/drm/crm_crtc.c' IOCTL Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/51371
Linux Kernel XFS Filesystem 'fs/xfs/xfs_acl.c' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/51380
Linux Kernel '/mm/oom_kill.c' Integer Overflow Vulnerability
http://www.securityfocus.com/bid/50459
Linux Kernel NFS Client 'decode_getacl()' Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/50655
Linux Kernel 'perf_count_sw_cpu_clock' Event Denial of Service Vulnerability
http://www.securityfocus.com/bid/49152
Linux Kernel 'xfs_readlink()' Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/50370
CVS CVE-2012-0804 'proxy_connect()' Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/51943
Mozilla Firefox/Thunderbird/SeaMonkey 'Array.reduceRight()' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/48372
HP OpenView Storage Data Protector Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/46234
Cookpad and Cookpad Noseru for Android 'WebView' Class Information Disclosure Vulnerability
http://www.securityfocus.com/bid/52189
Wolf CMS SQL Injection and Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/52187
Socusoft Photo to Video Converter 'pdmlog.dll' Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/52186
Linux Kernel 'iproute' Package Multiple Insecure Temporary File Creation Vulnerabilities
http://www.securityfocus.com/bid/52185
OSQA's CMS Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/52184
Bontq 'user/' URI Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/52183
OpenSSL ASN.1 S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/52181
WordPress Video Embed & Thumbnail Generator Plugin Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/52180
python-httplib2 Information Disclosure Vulnerability
http://www.securityfocus.com/bid/52179
Open Handset Alliance Android Browser Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/52177
Bitweaver 'rankings.php' Local File Include Vulnerability
http://www.securityfocus.com/bid/52176
Dotclear 'swfupload.swf' Remote Arbitrary File Upload Vulnerability
http://www.securityfocus.com/bid/52173
cPassMan 'user_language' Cookie Parameter Local File Include Vulnerability
http://www.securityfocus.com/bid/52165
0 件のコメント:
コメントを投稿