2014年8月6日水曜日

6日 水曜日、大安

+ RHSA-2014:1004 Important: yum-updatesd security update
https://rhn.redhat.com/errata/RHSA-2014-1004.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0022

+ RHSA-2014:1009 Important: samba4 security update
https://rhn.redhat.com/errata/RHSA-2014-1009.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3560

+ RHSA-2014:1008 Important: samba security and bug fix update
https://access.redhat.com/errata/RHSA-2014:1008
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3560

+ nginx 1.7.4, 1.6.1 released
http://nginx.org/

+ STARTTLS command injection
http://mailman.nginx.org/pipermail/nginx-announce/2014/000144.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3556

+ CESA-2014:1004 Important CentOS 5 yum-updatesd Update
http://lwn.net/Alerts/607635/

+ UPDATE: HPSBMU03037 rev.2 - HP Multimedia Service Environment (MSE), (HP Network Interactive Voice Response (NIVR)), Remote Disclosure of Information
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04275280-2%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0160

+ HPSBMU03085 rev.1 - HP Application Lifecycle Management / Quality Center, Elevation of Privilege
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04394553-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2631

+ HPSBNS03082 rev.1 - HP NonStop Safeguard Security Software, Remote Program Access
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04391893-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2629

+ LOCAL: Symantec Endpoint Protection 11.x, 12.x - Kernel Pool Overflow
http://www.exploit-db.com/exploits/34272

+ SA59508 Hitachi JP1/Performance Management Multiple Vulnerabilities
http://secunia.com/advisories/59508/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0114

+ SA59684 McAfee Network Security Manager Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/59684/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2390

【「ソーシャル新人類」の不夜城?10代は何を考えているのか】
デジタルで瞬時に拡散、LINEいじめはなぜ10代を追い詰めるのか
http://itpro.nikkeibp.co.jp/atcl/column/14/537662/073100003/?ST=security

法人狙う「電子証明書横取りウイルス」の正体、感染させる手口も進化
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/080400029/?ST=security

「SNSを使ったストーカー行為も規制対象に」、警察庁の検討会が提言
http://itpro.nikkeibp.co.jp/atcl/news/14/080500366/?ST=security

シマンテックなど5社、中小企業を狙う不正送金マルウエアの対策で協業
http://itpro.nikkeibp.co.jp/atcl/news/14/080500361/?ST=security

JBAT、IBMメインフレームのダム端末に利用できるシンクライアント
http://itpro.nikkeibp.co.jp/atcl/news/14/080500353/?ST=security

JVNVU#98222914 Symantec Endpoint Protection にバッファオーバーフローの脆弱性
http://jvn.jp/vu/JVNVU98222914/

0 件のコメント:

コメントを投稿