2014年1月10日金曜日

10日 金曜日、先負

+ CESA-2014:0015 Important CentOS 6 openssl Update
http://lwn.net/Alerts/579780/

+ CESA-2014:0016 Moderate CentOS 5 gnupg Update
http://lwn.net/Alerts/579779/

+ Linux kernel 3.12.7, 3.10.26 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.7
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.26

+ APSB14-01: Prenotification Security Advisory for Adobe Reader and Acrobat
http://helpx.adobe.com/security.html

+ Oracle Critical Patch Update Pre-Release Announcement - January 2014
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

+ Microsoft Security Bulletin Advance Notification for January 2014
http://technet.microsoft.com/en-us/security/bulletin/ms14-jan

+ SYM14-001 Security Advisories Relating to Symantec Products - Symantec Endpoint Protection Privilege Assumption, Policy Bypass, Local Elevation of Privilege
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140109_00
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5009
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5010
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5011

+ Linux Kernel 3.12.3 inet uninitialized memory to user in recv syscalls
http://cxsecurity.com/issue/WLB-2014010055
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7263

+ Symantec Endpoint Protection CVE-2013-5011 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/64130
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5011

+ Symantec Endpoint Protection CVE-2013-5009 Remote Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/64128
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5009

+ Linux Kernel 'drivers/isdn/mISDN/socket.c' Local Information Disclosure Vulnerability
http://www.securityfocus.com/bid/64743
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7266

仏データ保護当局、Googleに15万ユーロの制裁金を命令
http://itpro.nikkeibp.co.jp/article/NEWS/20140109/528903/?ST=security

JVNVU#95681821 QNAP QTS にディレクトリトラバーサルの脆弱性
http://jvn.jp/cert/JVNVU95681821/index.html

VU#612076 VASCO IDENTIKEY Authentication Server contains an authentication bypass vulnerability
http://www.kb.cert.org/vuls/id/612076

0 件のコメント:

コメントを投稿