2012年3月2日金曜日

2日 金曜日、大安


+ Apache Ant 1.8.3 released
http://ant.apache.org/

+ SYM12-003: Security Advisories Relating to Symantec Products - Symantec pcAnywhere awhost32 Denial of Service
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120301_00
http://www.securityfocus.com/bid/52094

+ GCC 4.6.3 released
http://gcc.gnu.org/gcc-4.6/
http://gcc.gnu.org/ml/gcc/2012-03/msg00006.html

+ PHP 5.4.0 released
http://php.net/releases/5_4_0.php
http://php.net/ChangeLog-5.php

[ANNOUNCE] Apache Ant 1.8.3 Released
http://ant.apache.org/index.html

Development release of BIND 10: bind10-devel-20120301
ftp://ftp.isc.org/isc/bind10/devel-20120301/bind10-devel-20120301.tar.gz

[ANNOUNCE] PGDay AUSTIN 2012
http://www.postgresql.org/about/event/1379/

UPDATE: Cisco NX-OS Malformed IP Packet Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120215-nxos

データベースサーバのメンテナンスのお知らせ(2012年3月2日)
http://www.trendmicro.co.jp/support/news.asp?id=1740

RHSA-2012:0349 Low: Red Hat Enterprise Linux 4 - Transition to Extended Life Phase Notice
http://rhn.redhat.com/errata/RHSA-2012-0349.html

「Androidウイルス」が急増、過半数は金銭目的
エフセキュアがモバイルセキュリティの現状を報告
http://itpro.nikkeibp.co.jp/article/NEWS/20120301/384122/?ST=security

米国社員の8割が個人所有端末を仕事に使用、セキュリティ意識は低い
http://itpro.nikkeibp.co.jp/article/NEWS/20120301/384012/?ST=security

JVN#31517714 Kingsoft Internet Security 2011 におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN31517714/index.html

JVNDB-2011-003565 PHP におけるサービス運用妨害 (CPU 資源の消費) の脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-003565.html

JVNDB-2012-001594 Chromebook プラットフォームで稼働する Google Chrome における詳細不明な脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001594.html

JVNDB-2012-001593 Kadu の History Window の実装におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001593.html

JVNDB-2012-001003 Apache Tomcat におけるサービス運用妨害 (CPU 資源の消費) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001003.html

JVNDB-2012-001592 OpenSSL の mime_hdr_cmp 関数におけるサービス運用妨害 (NULL ポインタデリファレンスおよびアプリケーションクラッシュ) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001592.html

JVNDB-2012-000019 Kingsoft Internet Security 2011 におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-000019.html

[ MDVSA-2012:028 ] libxslt
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-03/msg00000.html

Novell GroupWise Client Address Book Buffer Overflow Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1026753

Monitoring Remote Desktop Services logs ... or not?
http://isc.sans.edu/diary/Monitoring+Remote+Desktop+Services+logs+or+not+/12694

DoS/PoC: Novell Groupwise Address Book Remote Code Execution
http://www.exploit-db.com/exploits/18546

IBM AIX ICMP Packet Handling Remote Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2012-0123.php

IBM Personal Communications WorkStation File Buffer Overflow Vulnerability
http://www.vupen.com/english/ADV-2012-0122.php

PostgreSQL Multiple Code Execution and Security Bypass Vulnerabilities
http://www.vupen.com/english/ADV-2012-0121.php

Novell GroupWise Windows Client Address Book Remote Code Execution
http://www.vupen.com/english/ADV-2012-0120.php

Novell ZENworks Configuration Management Remote Code Execution
http://www.vupen.com/english/ADV-2012-0119.php

ABB Robot Communications Runtime Remote Buffer Overflow Vulnerability
http://www.vupen.com/english/ADV-2012-0118.php

Cisco Cius Data Processing Remote Denial of Service Vulnerability
http://www.vupen.com/english/ADV-2012-0117.php

Cisco Unified Communications Manager SCCP Multiple Vulnerabilities
http://www.vupen.com/english/ADV-2012-0116.php

Cisco Unity Connection Privilege Escalation and Denial of Service
http://www.vupen.com/english/ADV-2012-0115.php

Cisco Wireless LAN Controllers Unauthorized Access and Denial of Service
http://www.vupen.com/english/ADV-2012-0114.php

Cisco TelePresence Video Communication Server SIP Denial of Service
http://www.vupen.com/english/ADV-2012-0113.php

Cisco Small Business SRP 500 Series Multiple Remote Vulnerabilities
http://www.vupen.com/english/ADV-2012-0112.php

Debian update for moodle
http://secunia.com/advisories/48172/

Ubuntu update for openjdk-6b18
http://secunia.com/advisories/48197/

Kingsoft Antivirus 2011 Unspecified Denial of Service Vulnerability
http://secunia.com/advisories/48219/

Novell GroupWise Client Address Book Processing Buffer Overflow Vulnerability
http://secunia.com/advisories/48199/

Cisco TelePresence Video Communication Server SIP Packet Handling Denial of Service Vulnerabilities
http://secunia.com/advisories/48234/

TeamPass File Disclosure and File Upload Vulnerabilities
http://secunia.com/advisories/48159/

Drupal Cool Aid Module Custom Help Messages Script Insertion Vulnerability
http://secunia.com/advisories/48196/

Dotclear Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/48209/

IBM WebSphere Application Server for z/OS Unspecified JAX-WS Vulnerability
http://secunia.com/advisories/48214/

Cisco Unity Connection Denial of Service Vulnerability
http://secunia.com/advisories/48215/

Cisco Unity Connection Security Bypass and Denial of Service Vulnerabilities
http://secunia.com/advisories/48004/

IBM ILOG JViews Gantt Applet Viewer Cross-Site Scripting Vulnerability
http://secunia.com/advisories/48193/

Cisco Unified Communications Manager Denial of Service and SQL Injection Vulnerabilities
http://secunia.com/advisories/48218/

Cisco Unified Communications Manager Denial of Service and SQL Injection Vulnerabilities
http://secunia.com/advisories/48231/

Drupal Hierarchical Select Module Script Insertion Vulnerability
http://secunia.com/advisories/48235/

Drupal Taxonomy Views Integrator Module Script Insertion Vulnerability
http://secunia.com/advisories/48163/

Drupal Submenu Tree Module Script Insertion Vulnerability
http://secunia.com/advisories/48202/

Red Hat update for jbossweb
http://secunia.com/advisories/48213/

Gentoo update for stunnel
http://secunia.com/advisories/48222/

Gentoo update for libxml2
http://secunia.com/advisories/48223/

Cisco Wireless LAN Controllers Security Bypass and Denial of Service Vulnerabilities
http://secunia.com/advisories/48232/

Cisco Cius Denial of Service Vulnerability
http://secunia.com/advisories/48176/

Fork CMS Two Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/48183/

Ricoh DC Software DL-10 FTP Server Buffer Overflow Vulnerability
http://secunia.com/advisories/47912/

Adobe Shockwave Player CVE-2011-2113 Multiple Remote Code Execution Vulnerabilities
http://www.securityfocus.com/bid/48306

Mozilla Firefox/Thunderbird/SeaMonkey Ogg Vorbis Files Memory Corruption Vulnerability
http://www.securityfocus.com/bid/51753

Linux Kernel 'kdump' and 'mkdumprd' OpenSSH Integration Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/50416

Linux Kernel kexec-tools 'kdump/mkdumprd' Utility Information Disclosure Vulnerability
http://www.securityfocus.com/bid/50420

Linux Kernel CVE-2011-3589 kexec-tools 'mkdumprd' Utility Information Disclosure Vulnerability
http://www.securityfocus.com/bid/50415

Google Chrome Prior to 17.0.963.46 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/51911

Symantec pcAnywhere Authentication Request Handling Denial of Service Vulnerability
http://www.securityfocus.com/bid/52094

Apache Tomcat Parameter Handling Denial of Service Vulnerability
http://www.securityfocus.com/bid/51447

Apache APR Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51917

Google Chrome Prior to 16.0.912.75 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/51300

Kadu SMS and User Status Message Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/52199

OpenSSL ASN.1 S/MIME Header Processing Null Pointer Dereference Denial Of Service Vulnerability
http://www.securityfocus.com/bid/52181

Oracle Java SE CVE-2012-0505 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52017

Oracle Java SE CVE-2012-0503 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52018

Oracle Java SE CVE-2012-0502 Remote Information Disclosure Vulnerability
http://www.securityfocus.com/bid/52011

Oracle Java SE CVE-2012-0506 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52014

Oracle Java SE CVE-2012-0497 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/52009

Oracle GlassFish Server Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51194

Moodle Multiple Security Bypass Vulnerabilities
http://www.securityfocus.com/bid/51450

Moodle Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/51840

Moodle Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/50283

Moodle Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/50923

U+Box For Android Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/52258

CamScanner for Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52257

QianXun YingShi for Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52256

LDAP Account Manager Pro Cross Site Scripting and HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/52255

Multiple GO Launcher Applications Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/52254

Ubuntu 'ubuntuone-couch' Package SSL Certificate Validation Information Disclosure Vulnerability
http://www.securityfocus.com/bid/52253

IBM Tivoli Provisioning Manager Express ActiveX Control Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/52252

IBM WebSphere Application Server for z/OS JAX-RPC Unspecified Remote Security Vulnerability
http://www.securityfocus.com/bid/52250

IBM ILOG JViews Gantt Applet Viewer Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/52249

Tivoli Provisioning Manager Express for Software Distribution Multiple SQL Injection Vulnerabilities
http://www.securityfocus.com/bid/52248

Dolphin Browser HD For Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52247

Miso for Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52246

mOffice - Outlook sync for Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52245

Di Long Weibo For Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52244

XiXunTianTian For Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52243

GO SMS Pro For Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52242

RealTalk for Android Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52241

YouMail Visual Voicemail Plus Unspecified Security Vulnerability
http://www.securityfocus.com/bid/52240

Kingsoft Internet Security CVE-2012-0321 Unspecified Local Denial Of Service Vulnerability
http://www.securityfocus.com/bid/52239

phxEventManager 'search.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/52238

Ricoh Company DC Software DL-10 'USER' Command Remote Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/52235

BrewBlogger Multiple Arbitrary File Upload Vulnerabilities
http://www.securityfocus.com/bid/52234

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)