2012年11月13日火曜日
13日 火曜日、友引
+ RHSA-2012:1455 Moderate: gegl security update
http://rhn.redhat.com/errata/RHSA-2012-1455.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4433
+ UPDATE: Cisco Ironport Appliances Sophos Anti-Virus Vulnerabilities
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20121108-sophos
+ Ruby CVE-2012-5371 Hash Collision Denial of Service Vulnerability
http://www.securityfocus.com/bid/56484
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5371
[更新]ウイルス検索エンジン VSAPI 9.700 公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1831
Advisory: Tavis Ormandy finds vulnerabilities in Sophos Anti-Virus products
http://www.sophos.com/en-us/support/knowledgebase/118424.aspx
DataArchitect version 4.3 now available
http://www.postgresql.org/about/news/1425/
Webサイト改ざんが増加する9月
http://itpro.nikkeibp.co.jp/article/COLUMN/20121105/434843/?ST=security
JVNVU#985625 複数の Symantec 製品に脆弱性
http://jvn.jp/cert/JVNVU985625/
JVNVU#795644 ArcGIS for Server に SQL インジェクションの脆弱性
http://jvn.jp/cert/JVNVU795644/
JVNVU#659615 Oberthur のスマートカードに問題
http://jvn.jp/cert/JVNVU659615/
BananaDance Wiki b2.2 - Multiple Web Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-11/msg00041.html
[SECURITY] [DSA 2573-1] radsecproxy security update
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-11/msg00040.html
Request for info: Robocall Phishing Against Local/Regional Banks
http://isc.sans.edu/diary.html?storyid=14497
VU#611988 Vanilla Forums version 2.1.a26 contains a parameter manipulation vulnerability
http://www.kb.cert.org/vuls/id/611988
Ruby Hash Table Collision Bug Lets Remote Users Deny Service
http://www.securitytracker.com/id/1027747
WordPress WP125 Plugin Two Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/50976/
WordPress Ultimate TinyMCE Plugin swfupload Cross-Site Scripting Vulnerability
http://secunia.com/advisories/51224/
esri ArcGIS "where" SQL Injection Vulnerability
http://secunia.com/advisories/51262/
SUSE update for cgit
http://secunia.com/advisories/51222/
Attachmate Reflection for Secure IT OpenSSL DER Format Data Processing Vulnerability
http://secunia.com/advisories/51276/
Attachmate Reflection Products Java Multiple Vulnerabilities
http://secunia.com/advisories/51256/
Ruby Web Form Object Hash Collision Denial of Service Vulnerability
http://secunia.com/advisories/51253/
Gajim SSL Certificate Verification Security Issue
http://secunia.com/advisories/51209/
WeeChat IRC Color Decoding Buffer Overflow Vulnerability
http://secunia.com/advisories/51231/
Roundup Multiple Cross-Site Scripting Vulnerabilities
http://secunia.com/advisories/51230/
Debian update for radsecproxy
http://secunia.com/advisories/51251/
netOffice Dwins Multiple SQL Injection Vulnerabilities
http://secunia.com/advisories/51198/
Smadav AntiVirus Crash PoC
http://cxsecurity.com/issue/WLB-2012110069
A-PDF All to MP3 Converter 2.3.0 buffer overflow
http://cxsecurity.com/issue/WLB-2012110070
Bay <= 1.1.9 Remote Error based SQL Injection
http://cxsecurity.com/issue/WLB-2012110071
Infin8 <= Remote File Upload Vulnerability
http://cxsecurity.com/issue/WLB-2012110068
Zoner Photo Studio 15 Buffer Overflow PoC
http://cxsecurity.com/issue/WLB-2012110067
Zoner Photo Studio 15 Buffer Overflow
http://cxsecurity.com/issue/WLB-2012110053
BananaDance Wiki b2.2 Multiple Web Vulnerabilities
http://cxsecurity.com/issue/WLB-2012110066
Midwest Marketing (display_products.php) Blind SQL Vulnerability
http://cxsecurity.com/issue/WLB-2012110065
GAzie <= 5.20 Cross Site Scripting Vulnerability
http://cxsecurity.com/issue/WLB-2012110064
Multiple Symantec Products CAB Files Handling Memory Corruption Vulnerability
http://www.securityfocus.com/bid/56399
FFmpeg Multiple Unspecified Vulnerabilities
http://www.securityfocus.com/bid/55355
VLC Media Player 'SHAddToRecentDocs()' Function Denial of Service Vulnerability
http://www.securityfocus.com/bid/56405
Zoner Photo Studio Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56461
libproxy CVE-2012-4504 Stack-Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55909
libproxy CVE-2012-4505 Heap-Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55910
Oracle Java SE CVE-2012-1721 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53959
Oracle Java SE CVE-2012-1724 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53958
IcedTea-Web CVE-2012-4540 Heap Based Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56434
Oracle Java SE CVE-2012-1719 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53950
Oracle Java SE CVE-2012-1725 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53954
Oracle Java SE CVE-2012-1722 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53953
Oracle Java SE CVE-2012-1720 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53956
Oracle Java SE CVE-2012-1713 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/53946
Oracle Java SE CVE-2012-1716 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53947
Oracle Java SE CVE-2012-1723 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/53960
Oracle Java SE CVE-2012-1726 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53948
Oracle Java SE CVE-2012-1711 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53949
Oracle Java SE CVE-2012-1717 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53952
Oracle Java SE CVE-2012-1718 Remote Java Runtime Environment Vulnerability
http://www.securityfocus.com/bid/53951
Oracle GlassFish Server Multiple Cross Site Scripting and HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/53136
PLIB 'ssgParser.cxx' Remote Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/55839
KDE Konqueror Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/55879
libsocialweb CVE-2012-4511 Non-SSL Connection Man in The Middle Vulnerability
http://www.securityfocus.com/bid/56167
Performance Co-Pilot Multiple Information Disclosure Vulnerabilities
http://www.securityfocus.com/bid/56411
OpenSSL Encoded ASN.1 Data Integer Truncation Memory Corruption Vulnerability
http://www.securityfocus.com/bid/53158
cgit 'syntax-highlighting.sh' Remote Command Injection Vulnerability
http://www.securityfocus.com/bid/56315
OpenStack Glance CVE-2012-4573 Arbitrary File Deletion Vulnerability
http://www.securityfocus.com/bid/56437
radsecproxy Client Certificate Verification Security Bypass Vulnerability
http://www.securityfocus.com/bid/56105
BE-GRAPH BeZIP CVE-2012-5171 Directory Traversal Vulnerability
http://www.securityfocus.com/bid/56488
Banana Dance SQL Injection and HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/56486
WordPress WP125 Plugin Multiple Cross-Site Scripting Vulnerabilities
http://www.securityfocus.com/bid/56485
Vanilla Forums CVE-2012-4954 Parameter Manipulation Security Bypass Vulnerability
http://www.securityfocus.com/bid/56483
WeeChat Color Decoding Heap Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/56482
Gajim '_ssl_verify_callback()' Function SSL Certificate Validation Spoofing Vulnerability
http://www.securityfocus.com/bid/56481
Smadav Denial of Service Vulnerability
http://www.securityfocus.com/bid/56487
Ruby CVE-2012-5371 Hash Collision Denial of Service Vulnerability
http://www.securityfocus.com/bid/56484
登録:
コメントの投稿 (Atom)
0 件のコメント:
コメントを投稿