2013年3月13日水曜日

13日 水曜日、先負


+ Microsoft Security Bulletin Summary for March 2013
http://technet.microsoft.com/en-us/security/bulletin/ms13-mar

+ MS13-021 - Critical Cumulative Security Update for Internet Explorer (2809289)
http://technet.microsoft.com/en-us/security/bulletin/ms13-021
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0087
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0088
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0090
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0091
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0092
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0093
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1288

+ MS13-022 - Critical Vulnerability in Silverlight Could Allow Remote Code Execution (2814124)
http://technet.microsoft.com/en-us/security/bulletin/ms13-022
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0074

+ MS13-023 - Critical Vulnerability in Microsoft Visio Viewer 2010 Could Allow Remote Code Execution (2801261)
http://technet.microsoft.com/en-us/security/bulletin/ms13-023
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0079

+ MS13-024 - Critical Vulnerabilities in SharePoint Could Allow Elevation of Privilege (2780176)
http://technet.microsoft.com/en-us/security/bulletin/ms13-024
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0080
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0083
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0084
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0085

+ MS13-025 - Important Vulnerability in Microsoft OneNote Could Allow Information Disclosure (2816264)
http://technet.microsoft.com/en-us/security/bulletin/ms13-025
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0086

+ MS13-026 - Important Vulnerability in Office Outlook for Mac Could Allow Information Disclosure (2813682)
http://technet.microsoft.com/en-us/security/bulletin/ms13-026
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE- 2013-0095

+ MS13-027 - Important Vulnerabilities in Kernel-Mode Drivers Could Allow Elevation Of Privilege (2807986)
http://technet.microsoft.com/en-us/security/bulletin/ms13-027
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1286
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1287

+ RHSA-2013:0630 Important: kernel security and bug fix update
http://rhn.redhat.com/errata/RHSA-2013-0630.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0228
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0268

+ APSB13-09 Security updates available for Adobe Flash Player
http://www.adobe.com/support/security/bulletins/apsb13-09.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0646
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0650
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1371
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1375

+ CentOS 6.4 released
http://wiki.centos.org/Manuals/ReleaseNotes/CentOS6.4

+ CESA-2013:0623 Important CentOS 6 tomcat6 Update
http://lwn.net/Alerts/542536/

+ CESA-2013:0628 Moderate CentOS 6 389-ds-base Update
http://lwn.net/Alerts/542537/

+ CESA-2013:0627 Important CentOS 6 thunderbird Update
http://lwn.net/Alerts/542538/

+ CESA-2013:0627 Important CentOS 5 thunderbird Update
http://lwn.net/Alerts/542539/

+ CESA-2013:0621 Important CentOS 5 kernel Update
http://lwn.net/Alerts/542540/

+ Squid 3.3.3, 3.2.9 released
http://www.squid-cache.org/Versions/v3/3.3/RELEASENOTES.html
http://www.squid-cache.org/Versions/v3/3.2/RELEASENOTES.html

+ HPSBUX02073 SSRT051012 rev.3 - HP-UX envd, Local Execution of Privileged Code
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c00547561-3%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken

+ UPDATE: マイクロソフト セキュリティ アドバイザリ (2755801) Internet Explorer 10 上の Adobe Flash Player の脆弱性用の更新プログラム
http://technet.microsoft.com/ja-jp/security/advisory/2755801

+ RHSA-2013:0640 Important: tomcat5 security update
http://rhn.redhat.com/errata/RHSA-2013-0640.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3546
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5885
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5886
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5887

+ Zimbra Collaboration Suite Open Source Edition 8.0.3, 7.2.3 GA Release
http://files.zimbra.com/website/docs/8.0/Zimbra_OS_Release_Notes_8.0.3.pdf
http://files.zimbra.com/website/docs/7.2/Zimbra_OS_Release_Notes_7.2.3.pdf

+ Perl 5.16.3 released
http://www.perl.org/get.html

+ Squid Bug in strHdrAcptLangGetItem() Lets Remote Users Deny Service
http://www.securitytracker.com/id/1028282
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1839

+ Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1028277
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0646
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0650
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1371
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1375

+ Linux kernel sa_restorer information leak
http://cxsecurity.com/issue/WLB-2013030094

プレス発表
「2013年版 10大脅威 身近に忍び寄る脅威」を公開
~増大するサイバー攻撃の脅威。自組織への影響を認識し、対策を講じることが重要~
http://www.ipa.go.jp/about/press/20130312_2.html

プレス発表
「2012年度 デジタル複合機のセキュリティに関する調査」報告書の公開
~IT化が進むデジタル複合機のセキュリティ上の脅威・脆弱(ぜいじゃく)性に対策を~
http://www.ipa.go.jp/about/press/20130312.html

チェックしておきたい脆弱性情報<2013.03.13>
http://itpro.nikkeibp.co.jp/article/COLUMN/20130310/462083/?ST=security

珍しくない「個人情報漏洩」「アカウント乗っ取り」被害、「遠隔操作」はまれ
http://itpro.nikkeibp.co.jp/article/COLUMN/20130311/462393/?ST=security

Windows 8/RT上のInternet ExplorerでFlash利用制限を解除
http://itpro.nikkeibp.co.jp/article/NEWS/20130312/462569/?ST=security

チェックしておきたい脆弱性情報<2013.03.12>
http://itpro.nikkeibp.co.jp/article/COLUMN/20130310/462082/?ST=security

JVNVU#98055254 HP LaserJet Pro シリーズにアクセス制限不備の脆弱性
http://jvn.jp/cert/JVNVU98055254/

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)