2013年11月8日金曜日

8日 金曜日、先負










+ マイクロソフト セキュリティ情報の事前通知 - 2013 年 11 月
http://technet.microsoft.com/ja-jp/security/bulletin/ms13-nov

+ CESA-2013:X012 Xen4CentOS Medium kernel Security Update
http://lwn.net/Alerts/573204/

+ BIND 9.6-ESV-R10-P1 released
https://www.isc.org/downloads/software-support-policy/bind-software-status/

+ CVE-2013-6230: A Winsock API Bug Can Cause a Side-Effect Affecting BIND ACLs
https://kb.isc.org/article/AA-01062
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6230

+ Cisco IOS Software Session Initiation Protocol Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131106-sip
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5553

+ Cisco TelePresence VX Clinical Assistant Administrative Password Reset Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131106-tvxca
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5558

+ Cisco WAAS Mobile Remote Code Execution Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131106-waasm
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5554

+ E-mails might not be scanned by the Threat Emulation blade in some specific scenarios depending on the e-mail client behavior
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96269&src=securityAlerts

+ ISC BIND Windows Netmask Processing Error May Let Remote Users Bypass Access Controls
http://www.securitytracker.com/id/1029311
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6230

+ Apple MacOSX 10.9 Hard Link Memory Corruption
http://cxsecurity.com/issue/WLB-2013110059

+ SA55607 ISC BIND "localnets" Access Control List Bypass Security Issue
http://secunia.com/advisories/55607/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6230

複合機からの情報漏洩でメーカーが注意喚起、「メーカーの対応に問題も」と専門家
http://itpro.nikkeibp.co.jp/article/NEWS/20131107/516617/?ST=security

VU#274923 Dual_EC_DRBG output using untrusted curve constants may be predictable
http://www.kb.cert.org/vuls/id/274923

VU#596990 IBM Tivoli Federated Identity Manager and IBM Tivoli Federated Identity Manager Business Gateway contain a URL redirection vulnerability
http://www.kb.cert.org/vuls/id/596990

ラベル: ,

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)