2014年5月23日金曜日

23日 金曜日、仏滅

+ RHSA-2014:0536 Moderate: mysql55-mysql security update
https://rhn.redhat.com/errata/RHSA-2014-0536.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2419
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2430
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2431
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2432
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2436
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2438
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2440

+ CESA-2014:0522 Moderate: mariadb55-mariadb SCL Security Update
http://lwn.net/Alerts/599951/

+ CESA-2014:0355 Important: ruby193-libyaml SCL Security Update
http://lwn.net/Alerts/599952/

+ CESA-2014:0510 Moderate: ruby193-rubygem-actionpack SCL Security Update
http://lwn.net/Alerts/599953/

+ UPDATE: OpenSSL Heartbeat Extension Vulnerability in Multiple Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140409-heartbleed

+ UPDATE: Multiple Vulnerabilities in Cisco NX-OS-Based Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140521-nxos

+ Multiple vulnerabilities in Wireshark
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_wireshark10
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2281
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2282
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2283

+ CVE-2012-4037 XSS vulnerability in Transmission
https://blogs.oracle.com/sunsecurity/entry/cve_2012_4037_xss_vulnerability
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4037

+ Multiple vulnerabilities in Apache Tomcat
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_apache_tomcat4
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3544
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1571
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4286
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4322
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4590
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0033

+ Multiple Input Validation vulnerabilities in Apache HTTP Server
https://blogs.oracle.com/sunsecurity/entry/multiple_input_validation_vulnerabilities_in1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6438
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0098

+ CVE-2013-0200 Link Following vulnerability in HPLIP
https://blogs.oracle.com/sunsecurity/entry/cve_2013_0200_link_following
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0200

+ CVE-2014-2270 Buffer Errors vulnerability in PHP
https://blogs.oracle.com/sunsecurity/entry/cve_2014_2270_buffer_errors
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2270

+ CVE-2014-1943 Resource Management Errors vulnerability in PHP
https://blogs.oracle.com/sunsecurity/entry/cve_2014_1943_resource_management
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1943

+ Multiple Buffer Errors vulnerabilities in PHP
https://blogs.oracle.com/sunsecurity/entry/multiple_buffer_errors_vulnerabilities_in1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6420
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6712

+ CVE-2013-4248 Input Validation vulnerability in PHP
https://blogs.oracle.com/sunsecurity/entry/cve_2013_4248_input_validation
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4248

+ CVE-2014-0591 Buffer Errors vulnerability in Bind
https://blogs.oracle.com/sunsecurity/entry/cve_2014_0591_buffer_errors1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0591

+ CVE-2013-4496 Credentials Management vulnerability in Samba
https://blogs.oracle.com/sunsecurity/entry/cve_2013_4496_credentials_management
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4496

+ CVE-2013-4238 Input Validation vulnerability in Python
https://blogs.oracle.com/sunsecurity/entry/cve_2013_4238_input_validation
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4238

+ CVE-2014-1912 Buffer Errors vulnerability in Python
https://blogs.oracle.com/sunsecurity/entry/cve_2014_1912_buffer_errors
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1912

+ Tomcat 8.0.8 (beta) Released
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html

+ GCC 4.8.3 released
https://gcc.gnu.org/gcc-4.8/changes.html

+ Google Chrome Multiple Flaws Let Remote Users Execute Arbitrary Code, Conduct Cross-Site Scripting Attacks, And Spoof the User Interface
http://www.securitytracker.com/id/1030270
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1743
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1744
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1745
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1746
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1747
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1748
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1749
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3152

+ Apple Safari Multiple Flaws Let Remote Users Execute Arbitrary Code and Bypass Same Origin Policy Restrictions
http://www.securitytracker.com/id/1030269
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2875
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1323
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1324
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1326
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1327
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1329
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1330
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1331
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1333
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1334
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1335
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1336
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1337
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1338
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1339
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1341
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1342
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1343
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1344
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1731
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1346

+ SA58821 Fujitsu Multiple Products Apache Struts Security Bypass Vulnerability
http://secunia.com/advisories/58821/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0094

+ SA58822 McAfee ePolicy Orchestrator Java Multiple Vulnerabilities
http://secunia.com/advisories/58822/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6629
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6954
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0429
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0453
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0457
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0460

+ SA58890 Apple Safari Multiple Vulnerabilities
http://secunia.com/advisories/58890/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2875
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2927
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1323
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1324
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1326
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1327
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1329
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1330
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1331
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1333
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1334
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1335
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1336
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1337
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1338
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1339
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1341
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1342
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1343
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1344
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1346
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1731

InterScan for Microsoft Exchange 11.0 リパック版 公開のお知らせ
http://app.trendmicro.co.jp/support/news.asp?id=2124

InterScan For Lotus Domino Windows 5.5 Patch 1 (Build 3186) 公開のお知らせ
http://app.trendmicro.co.jp/support/news.asp?id=2130

ウイルスバスター コーポレートエディション 10.5 Patch 6 build 2440 公開のお知らせ
http://app.trendmicro.co.jp/support/news.asp?id=2127

Windowsをスリープモードに移行するボタン型USBデバイス
http://itpro.nikkeibp.co.jp/article/NEWS/20140522/558672/?ST=security

マカフィー、DLPソフトにゲートウエイ型を追加
http://itpro.nikkeibp.co.jp/article/NEWS/20140522/558643/?ST=security

eBayにサイバー攻撃、パスワードなど顧客情報流出
http://itpro.nikkeibp.co.jp/article/NEWS/20140522/558462/?ST=security

JVNVU#97953185 Internet Explorer 8 CMarkup における解放済みメモリ使用の脆弱性
http://jvn.jp/vu/JVNVU97953185/

VU#112412 Bizagi BPM Suite contains multiple vulnerabilities
http://www.kb.cert.org/vuls/id/112412

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)