2014年1月6日月曜日

6日 月曜日、大安

+ MantisTouch v1.3.0 released
http://www.mantisbt.org/blog/?p=269

+ CESA-2013:X018 Important Xen4CentOS kernel Security Update
http://lwn.net/Alerts/578217/

+ phpMyAdmin 4.1.3 is released
http://sourceforge.net/p/phpmyadmin/news/2013/12/phpmyadmin-413-is-released/

+ squid 3.4.2 released
http://www.squid-cache.org/Versions/v3/3.4/RELEASENOTES.html

+ HPSBMU02895 SSRT101253 rev.1 - HP Data Protector, Remote Increase of Privilege, Denial of Service (DoS), Execution of Arbitrary Code
https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c03822422-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken

+ Linux kernel 3.2.54 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.54

+ CVE-2007-6750 Resource Management Errors vulnerability in Apache
https://blogs.oracle.com/sunsecurity/entry/cve_2007_6750_resource_management
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6750

+ CVE-2013-4124 Denial of service vulnerability in Samba
https://blogs.oracle.com/sunsecurity/entry/cve_2013_4124_denial_of
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4124

+ Apache Ant 1.9.3 Released
http://ant.apache.org/bindownload.cgi

+ libpng 1.6.8 released
http://www.libpng.org/pub/png/src/libpng-1.6.8-README.txt

+ OpenSSL DTLS Retransmission Error May Let Remote Users Conduct Man-in-the-Middle Attacks
http://www.securitytracker.com/id/1029549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6450

+ OpenSSL Incorrect Version Number Used in ssl_get_algorithm2() Lets Remote Users Deny Service
http://www.securitytracker.com/id/1029548
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6449

+ VU#553166 BlogEngine.net information disclosure vulnerability
http://www.kb.cert.org/vuls/id/553166
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6953

+ VU#698278 RealPlayer version 16.0.3.51 contains a buffer overflow vulnerability
http://www.kb.cert.org/vuls/id/698278
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6877

+ OpenSSL 1.0.1e Incorrect Version Number ssl_get_algorithm2() Remote DoS
http://cxsecurity.com/issue/WLB-2014010022
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6449

+ OpenSSL 0.9.8y/1.x/1.0.1e man-in-the-middle attack 0day
http://cxsecurity.com/issue/WLB-2014010021
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6450

+ Linux Kernel memory leak in recvmsg handlermsg_name & msg_namelen
http://cxsecurity.com/issue/WLB-2013120194
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6463

+ Linux Kernel char: Int overflow in lp_do_ioctl()
http://cxsecurity.com/issue/WLB-2013120193

Sudden reboots of Security Gateways when using Anti-Bot
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk97972&src=securityAlerts

InterScan Messaging Security シリーズ製品におけるメール送受信に関する現象
http://app.trendmicro.co.jp/support/news.asp?id=2058

ウイルスバスタービジネスセキュリティサービス で発生していた現象について
http://app.trendmicro.co.jp/support/news.asp?id=2056

Androidの「MDM外し」を防ぐ機能、オプティムが自社MDMサービスで提供開始
http://itpro.nikkeibp.co.jp/article/NEWS/20131220/526373/?ST=security

セコム、USBメモリー起動とクラウドで安全にオンラインバンキングを利用
http://itpro.nikkeibp.co.jp/article/NEWS/20131227/527682/?ST=security

中国百度が日本語入力アプリ「Simeji」を更新、クラウド送信設定の不具合を修正
http://itpro.nikkeibp.co.jp/article/NEWS/20131227/527643/?ST=security

[セキュリティ]新手の攻撃が相次いだ1年、思わぬぜい弱性を悪用される怖さ
http://itpro.nikkeibp.co.jp/article/COLUMN/20131217/525319/?ST=security

0 件のコメント:

コメントを投稿