2014年8月14日木曜日

14日 木曜日、先勝

+ Collabtive 2.0 released
http://www.collabtive.o-dyn.de/blog/?p=653
http://www.collabtive.o-dyn.de/blog/?p=653#more-653

+ RHSA-2014:1053 Moderate: openssl security update
https://rhn.redhat.com/errata/RHSA-2014-1053.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0221
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3505
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3506
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3508
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3510

+ RHSA-2014:1052 Moderate: openssl security update
https://rhn.redhat.com/errata/RHSA-2014-1052.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3505
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3506
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3507
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3508
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3509
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3510
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3511

+ Safari 7.0.6, 6.1.6 released
http://support.apple.com/kb/HT6367
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1385
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1386
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1390

+ CESA-2014:1038 Low CentOS 6 tomcat6 Update
http://lwn.net/Alerts/608467/

+ HPSBHF03088 rev.1 - HP Integrity SD2 CB900s i2 and i4 Servers running OpenSSL, Remote Unauthorized Access or Disclosure of Information
https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04397114-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0224

+ Apache Log4j 2.0.1 released
http://logging.apache.org/log4j/2.0/manual/index.html

+ DeleGate 9.9.11 released
http://www.delegate.org/mail-lists/delegate-en/5102

+ Google Chrome 36.0.1985.142 Use-after-free vulnerability
http://cxsecurity.com/issue/WLB-2014080061
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3165

+ Google Chrome 36.0.1985.142 PKP sensitive information leak
http://cxsecurity.com/issue/WLB-2014080062
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3166

+ Linux Kernel CVE-2014-5207 Local Security Bypass Vulnerability
http://www.securityfocus.com/bid/69216
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5207

NewLease Expands Portfolio in APAC With Zimbra Collaboration Software
http://community.zimbra.com/zblogs/b/press_releases/archive/2014/08/13/newlease-expands-portfolio-in-apac-with-zimbra-collaboration-software

NeoNova adds Zimbra to cloud offering for rural America
http://community.zimbra.com/zblogs/b/press_releases/archive/2014/08/13/neonova-adds-zimbra-to-cloud-offering-for-rural-america

UPDATE: JVNVU#93614707 OpenSSL クライアントにナルポインタ参照の脆弱性
http://jvn.jp/vu/JVNVU93614707/index.html

LOCAL: VirtualBox Guest Additions VBoxGuest.sys Privilege Escalation
http://www.exploit-db.com/exploits/34333

LOCAL: BlazeDVD Pro 7.0 - (.plf) Stack Based Buffer Overflow (Direct RET)
http://www.exploit-db.com/exploits/34331

0 件のコメント:

コメントを投稿