:: IT Security Neophyte Investigator's MEMO ::: 8日金曜日、先負

2013年3月8日金曜日

8日金曜日、先負

+ RHSA-2013:0609 Important: qemu-kvm security update
http://rhn.redhat.com/errata/RHSA-2013-0609.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6075

+ RHSA-2013:0612 Moderate: ruby security update
http://rhn.redhat.com/errata/RHSA-2013-0612.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4481
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1821

+ MFSA 2013-29 Use-after-free in HTML Editor
http://www.mozilla.org/security/announce/2013/mfsa2013-29.html

+ Mozilla Firefox 19.0.2 released
http://www.mozilla.org/en-US/firefox/all/

+ Mozilla Thunderbird 17.0.4 released
http://www.mozilla.org/en-US/thunderbird/

+ CESA-2013:0594 Low CentOS 5 kernel Update
http://lwn.net/Alerts/541838/

+ CESA-2013:0599 Important CentOS 5 xen Update
http://lwn.net/Alerts/541839/

+ CESA-2013:0604 Important CentOS 5 java-1.6.0-openjdk Update
http://lwn.net/Alerts/541840/

+ CESA-2013:0603 Important CentOS 5 java-1.7.0-openjdk Update
http://lwn.net/Alerts/541841/

+ Wireshark 1.8.6 released
http://www.wireshark.org/docs/relnotes/wireshark-1.8.6.html

+ HPSBGN02854 SSRT100881 rev.1 - HP Intelligent Management Center (iMC)
iMC TACACS+ Authentication Manager (TAM)
and iMC User Access Manager (UAM)
Cross Site Scripting (XSS)
Remote Code Execution
Remote Disclosure of Information
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c03689276-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5200
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5201
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5202
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5203
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5204
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5205
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5206
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5207
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5208
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5209
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5210
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5211
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5212
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5213

+ RHSA-2013:0611 Moderate: ruby security update
http://rhn.redhat.com/errata/RHSA-2013-0611.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1821

+ Wireshark Multiple Bugs Let Remote Users Deny Service
http://www.securitytracker.com/id/1028254
http://secunia.com/advisories/52471/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2475
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2476
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2477
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2479
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2480
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2481
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2482
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2483
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2484
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2485
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2486
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2487
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2488

+ Linux kernel KEYS race with concurrent install_user_keyrings()
http://cxsecurity.com/issue/WLB-2013030064

+ SA52441 Linux Kernel "install_user_keyrings()" Race Condition Vulnerability
http://secunia.com/advisories/52441/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1792

+ Linux Kernel CVE-2013-1827 Multiple Local Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/58383
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1827

+ Linux Kernel CVE-2013-1826 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/58381
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1826

+ Microsoft March 2013 Advance Notification Multiple Vulnerabilities
http://www.securityfocus.com/bid/58380

プレス発表
複数のCisco製スイッチの脆弱性対策について
http://www.ipa.go.jp/about/press/20130307.html

スマホからのWebサイト利用をそのまま記録・再生するシステム、東陽テクニカが販売開始
http://itpro.nikkeibp.co.jp/article/NEWS/20130307/461670/?ST=security

Cloud Days 2013
［CD 2013］大阪・梅田で2大トレンドの専門展が開幕、「ビッグデータEXPO」は大阪初開催
http://itpro.nikkeibp.co.jp/article/COLUMN/20130306/461341/?ST=security

世界のセキュリティ・ラボから
BYODよりCYOD、安全性と利便性を両立
http://itpro.nikkeibp.co.jp/article/COLUMN/20130303/460323/?ST=security

「学認シンポジウム」開催、日本のユーザー数は70万
http://itpro.nikkeibp.co.jp/article/NEWS/20130307/461443/?ST=security

JVN#05132866 複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN05132866/

JVN#16817324 複数のジャストシステム製品において任意のコードが実行される脆弱性
http://jvn.jp/jp/JVN16817324/

JVNTA13-064A Oracle Java に複数の脆弱性
http://jvn.jp/cert/JVNTA13-064A/

:: IT Security Neophyte Investigator's MEMO ::

2013年3月8日金曜日

8日金曜日、先負

0 件のコメント:

コメントを投稿

2013年3月8日金曜日

8日 金曜日、先負

0 件のコメント:

コメントを投稿

8日金曜日、先負