+ Selenium Server (formerly the Selenium RC Server) 2.34.0 released
http://docs.seleniumhq.org/download/
+ Seleniumu: The Internet Explorer Driver Server 2.34.0 released
http://docs.seleniumhq.org/download/
+ Selenium Client & WebDriver Language Bindings 2.34.0 released
http://docs.seleniumhq.org/download/
+ Mozilla Firefox 23 released
http://www.mozilla.org/en-US/firefox/23.0/releasenotes/
+ Mozilla Thunderbird 17.0.8 released
http://www.mozilla.org/en-US/thunderbird/17.0.8/releasenotes/
+ MFSA 2013-75 Local Java applets may read contents of local file system
http://www.mozilla.org/security/announce/2013/mfsa2013-75.html
+ MFSA 2013-74 Firefox full and stub installer DLL hijacking
http://www.mozilla.org/security/announce/2013/mfsa2013-74.html
+ MFSA 2013-73 Same-origin bypass with web workers and XMLHttpRequest
http://www.mozilla.org/security/announce/2013/mfsa2013-73.html
+ MFSA 2013-72 Wrong principal used for validating URI for some Javascript components
http://www.mozilla.org/security/announce/2013/mfsa2013-72.html
+ MFSA 2013-71 Further Privilege escalation through Mozilla Updater
http://www.mozilla.org/security/announce/2013/mfsa2013-71.html
+ MFSA 2013-70 Bypass of XrayWrappers using XBL Scopes
http://www.mozilla.org/security/announce/2013/mfsa2013-70.html
+ MFSA 2013-69 CRMF requests allow for code execution and XSS attacks
http://www.mozilla.org/security/announce/2013/mfsa2013-69.html
+ MFSA 2013-68 Document URI misrepresentation and masquerading
http://www.mozilla.org/security/announce/2013/mfsa2013-68.html
+ MFSA 2013-67 Crash during WAV audio file decoding
http://www.mozilla.org/security/announce/2013/mfsa2013-67.html
+ MFSA 2013-66 Buffer overflow in Mozilla Maintenance Service and Mozilla Updater
http://www.mozilla.org/security/announce/2013/mfsa2013-66.html
+ MFSA 2013-65 Buffer underflow when generating CRMF requests
http://www.mozilla.org/security/announce/2013/mfsa2013-65.html
+ MFSA 2013-64 Use after free mutating DOM during SetBody
http://www.mozilla.org/security/announce/2013/mfsa2013-64.html
+ MFSA 2013-63 Miscellaneous memory safety hazards (rv:23.0 / rv:17.0.8)
http://www.mozilla.org/security/announce/2013/mfsa2013-63.html
+ CESA-2013:1135 Moderate CentOS 5 nss Update
http://lwn.net/Alerts/562258/
+ Mozilla Thunderbird Multiple Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks and Let Local Users Obtain Files
http://www.securitytracker.com/id/1028887
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1702
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1706
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1707
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1712
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717
+ Mozilla Firefox Multiple Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting Attacks and Let Local Users Obtain Files
http://www.securitytracker.com/id/1028885
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1701
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1702
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1704
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1705
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1706
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1707
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1708
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1709
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1710
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1711
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1712
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1713
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1714
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1715
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1717
+ PuTTY 0.62 Heap Overflow
http://cxsecurity.com/issue/WLB-2013080054
+ Linux Kernel MSR Driver Privilege Escalation
http://cxsecurity.com/issue/WLB-2013080050
+ Linux Kernel CVE-2013-4205 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/61636
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4205
ウイルスバスター ビジネスセキュリティ 7.0 Service Pack1 Patch2公開のお知らせ
http://www.trendmicro.co.jp/support/news.asp?id=1995
世界のセキュリティ・ラボから
標的型攻撃の検出支援システム
http://itpro.nikkeibp.co.jp/article/COLUMN/20130730/495465/?ST=security
ネットワーク・ホットトピックス
カーネルに権限昇格バグが見つかる、Android 4.0~4.2系では要注意
http://itpro.nikkeibp.co.jp/article/COLUMN/20130723/493624/?ST=security
スマホ少女の憂鬱、スマホ少年の暴走~今、10代が危ない
第10回 「ネット依存の中高生が約52万人」の波紋、スマホで増幅される依存の連鎖
http://itpro.nikkeibp.co.jp/article/COLUMN/20130805/496708/?ST=security
【デジタル世界の知られざる真相、米国10代のネット事情】
第3回:「開かれた世界」へとティーンを誘うソーシャル
http://itpro.nikkeibp.co.jp/article/COLUMN/20130730/495367/?ST=security
JVNVU#94916481 HTTPS レスポンスから暗号化されたデータの一部を推測可能な脆弱性 (BREACH)
http://jvn.jp/cert/JVNVU94916481/
0 件のコメント:
コメントを投稿