29日 金曜日、赤口

+ Android-x86 4.4.4_r2 (Kitkat-MR2.2) released
http://www.android-x86.org/

+ UPDATE: MS14-045 - 重要 カーネルモード ドライバーの脆弱性により、特権が昇格される (2984615)
https://technet.microsoft.com/ja-jp/library/security/ms14-045

+ Google Chrome 37.0.2062.102 released
http://googlechromereleases.blogspot.jp/2014/08/stable-channel-update_28.html

+ PDFCreator 1.9.5 released
http://www.pdfforge.org/blog/pdfcreator-195-released

+ squid 3.4.7, 3.3.13 released
http://www.squid-cache.org/Versions/v3/3.4/RELEASENOTES.html
http://www.squid-cache.org/Versions/v3/3.3/RELEASENOTES.html

+ PHP 5.6.0 released
http://php.net/archive/2014.php#id2014-08-28-1

+ REMOTE: Firefox WebIDL Privileged Javascript Injection
http://www.exploit-db.com/exploits/34448

+ DoS/PoC: Internet Explorer MS14-029 Memory Corruption PoC
http://www.exploit-db.com/exploits/34458

+ glibc Off-by-One NUL Byte gconv_translit_find Exploit
http://cxsecurity.com/issue/WLB-2014080131

+ Firefox WebIDL Privileged Javascript Injection
http://cxsecurity.com/issue/WLB-2014080130
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1510
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1511

+ SA60830 Linux Kernel "kvm_iommu_map_pages()" Mapping Failure Handling Denial of Service Vulnerability
http://secunia.com/advisories/60830/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3601

+ SA60179 Squid HTTP Range Request Handling Denial of Service Vulnerability
http://secunia.com/advisories/60179/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3609

+ PHP Pear '/tmp/' Directory Insecure Temporary File Creation Vulnerability
http://www.securityfocus.com/bid/69388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5459

世界のセキュリティ・ラボから
アプリの偽装を可能にするAndroidの脆弱性「Fake ID」
http://itpro.nikkeibp.co.jp/atcl/column/14/264220/082500008/?ST=security

チェックしておきたい脆弱性情報＜2014.08.29＞
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/082500015/?ST=security

マイクロソフト、「PCが起動しなくなるパッチ」の修正版を公開
http://itpro.nikkeibp.co.jp/atcl/news/14/082800605/?ST=security