2014年6月17日火曜日

17日 火曜日、赤口










+ UPDATE: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl

+ Linux kernel 3.15.1, 3.14.8, 3.10.44, 3.4.94 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.15.1
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.8
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.44
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.94

+ SYM14-010 Security Advisories Relating to Symantec Products - Symantec Web Gateway Security Issues
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140616_00
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5017
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1650
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1651
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1652

+ Hanako Signature Validation Flaw in JUST Online Update Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1030432
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2003

+ Ichitaro Signature Validation Flaw in JUST Online Update Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1030431
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2003

+ SA59220 Linux Kernel Inode Capabilities Privilege Escalation Vulnerability
http://secunia.com/advisories/59220/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4014

+ SA58683 PHP "php_parserr()" Buffer Overflow Vulnerability
http://secunia.com/advisories/58683/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4049

+ Linux Kernel CVE-2014-4014 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/67988
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4014

巧妙化する標的型攻撃メール、事例で知るその手口ITpro
第2回 バックドアで多重感染狙う標的型攻撃メール
http://itpro.nikkeibp.co.jp/article/COLUMN/20140605/561868/?ST=security

50人体制でサイバー攻撃に対応、NECがセキュリティ新施設を公開
http://itpro.nikkeibp.co.jp/article/NEWS/20140616/564446/?ST=security

情報漏洩で最高1億円を補償、NANAROQがコンプライアンス教育教材
http://itpro.nikkeibp.co.jp/article/NEWS/20140616/564389/?ST=security

ラベル: ,

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)