+ Mozilla Firefox 25.0.1 released
http://www.mozilla.org/en-US/firefox/25.0.1/releasenotes/
+ UPDATE: Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131106-sip
+ VMSA-2013-0013 VMware Workstation host privilege escalation vulnerability
http://www.vmware.com/security/advisories/VMSA-2013-0013.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5972
+ Apache HTTP Server 2.2.26 Released
http://www.apache.org/dist/httpd/Announcement2.2.html
+ libcurl cert name check ignore
http://curl.haxx.se/docs/adv_20131115.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4545
+ PHP 5.4.22 Released
http://php.net/archive/2013.php#id2013-11-14-3
+ OpenLDAP 2.4.38 released
http://www.openldap.org/software/release/changes.html
+ Google Chrome Memory Corruption Flaw Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1029351
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6632
+ VMware Workstation and Player Shared Library Flaw Lets Lets Local Users Gain Root Privileges
http://www.securitytracker.com/id/1029350
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5972
+ SA55658 Linux Kernel "udp6_ufo_fragment()" Denial of Service Vulnerability
http://secunia.com/advisories/55658/
+ Linux kernel net ipvs stack buffer overflow
http://cxsecurity.com/issue/WLB-2013110112
+ Android 4.3 Superuser Root Privilege Escalation
http://cxsecurity.com/issue/WLB-2013110107
+ Android 4.2.x Superuser Unsanitized Environment
http://cxsecurity.com/issue/WLB-2013110106
+ Android 4.2.x Superuser Shell Character Escape
http://cxsecurity.com/issue/WLB-2013110105
+ Linux Kernel IP Virtual Server Stack Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/63744
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4588
JVNDB-2011-003557 ASP.NET におけるオープンリダイレクトの脆弱性
http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-003557.html
世界のセキュリティ・ラボから
企業のほとんどはサイバー攻撃対策が不十分
http://itpro.nikkeibp.co.jp/article/COLUMN/20131114/518184/?ST=security
第8回OWASP Nightを開催、5つのセッションでWebセキュリティの課題を指摘
http://itpro.nikkeibp.co.jp/article/NEWS/20131115/518450/?ST=security
Microsoft、サイバー犯罪対策に取り組む「Cybercrime Center」を開設
http://itpro.nikkeibp.co.jp/article/NEWS/20131115/518302/?ST=security
情報漏洩の危機にさらされるデジタル複合機
http://itpro.nikkeibp.co.jp/article/COLUMN/20131114/518123/?ST=security
Googleが透明性レポートを更新、米政府のデータ開示要請は3年半で3倍に
http://itpro.nikkeibp.co.jp/article/NEWS/20131115/518262/?ST=security
「IEの新しい脆弱性を突く攻撃は、標的型なのに継続的に攻撃しない」、ファイア・アイが説明
http://itpro.nikkeibp.co.jp/article/NEWS/20131115/518206/?ST=security
JVNVU#95124340 EMC Documentum にクロスサイトスクリプティングの脆弱性
http://jvn.jp/cert/JVNVU95124340/index.html
0 件のコメント:
コメントを投稿