2014年3月28日金曜日

28日 金曜日、大安

+ CESA-2014:0330 Moderate CentOS 6 samba Update
http://lwn.net/Alerts/592253/

+ phpMyAdmin 4.1.12 is released
http://sourceforge.net/p/phpmyadmin/news/2014/03/phpmyadmin-4112-is-released/

+ SYM14-005 Security Advisories Relating to Symantec Products - Symantec LiveUpdate Administrator Unauthenticated/Unauthorized Account Access Modification and SQL injections
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140327_00

+ MySQL 5.6.17, 5.5.37 released
http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-17.html
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-37.html

+ SonicWALL Email Security Input Validation Flaw in 'License Management’ and ‘Advanced' Pages Permits Cross-Site Scripting Attacks
http://www.securitytracker.com/id/1029965

+ Mozilla Firefox "BumpChunk" Object Processing Use-After-Free
http://cxsecurity.com/issue/WLB-2014030228

+ Google Chrome Blink "locationAttributeSetter" Use-After-Free
http://cxsecurity.com/issue/WLB-2014030227

+ Firefox For Android Information Leak
http://cxsecurity.com/issue/WLB-2014030226
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1516
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1484
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1515
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1506

+ SA57468 Linux Kernel ath9k "ath_tx_aggr_sleep()" Race Condition Vulnerability
http://secunia.com/advisories/57468/

+ SA57436 Linux Kernel PowerPC Fork/Clone Denial of Service Vulnerability
http://secunia.com/advisories/57436/

+ Linux Kernel 'arch_dup_task_struct()' Function Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/66477

+ Symantec LiveUpdate Administrator CVE-2014-1645 SQL Injection Vulnerability
http://www.securityfocus.com/bid/66400
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1645

+ Symantec LiveUpdate Administrator CVE-2014-1644 Unauthorized Access Vulnerability
http://www.securityfocus.com/bid/66399
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1644

スマートスキャンパターンが更新されていない事象について
http://app.trendmicro.co.jp/support/news.asp?id=2102

10カ国語で「ビットコイン払え」、新たな“脅迫ウイルス”出現
http://itpro.nikkeibp.co.jp/article/NEWS/20140327/546704/?ST=security

BlackBerryのChen暫定CEO、「リークに対して法的措置を講じる」
http://itpro.nikkeibp.co.jp/article/NEWS/20140327/546485/?ST=security

VU#140886 ManageEngine OpStor Build 8300 and earlier contain multiple vulnerabilities
http://www.kb.cert.org/vuls/id/140886

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)