:: IT Security Neophyte Investigator's MEMO ::: 18日木曜日、友引

2014年9月18日木曜日

18日木曜日、友引

+ Red Hat Enterprise Linux 5.11 released
https://rhn.redhat.com/errata/RHEA-2014-1230.html

+ RHSA-2014:1255 Moderate: krb5 security update
https://rhn.redhat.com/errata/RHSA-2014-1255.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4345

+ About the security content of Xcode 6.0.1
http://support.apple.com/kb/HT6444
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0032

+ About the security content of Apple TV 7
http://support.apple.com/kb/HT6442
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4364
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4357
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4383
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4377
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4378
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4369
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4373
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4379
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4404
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4405
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4380
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4407
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4418
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4371
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4419
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4420
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4421
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2391
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4375
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4408
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4422
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4381
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4372
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6663
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1385
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4410
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4411
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4412
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4413
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4414
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4415

+ About the security content of iOS 8
http://support.apple.com/kb/HT6441
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4364
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4423
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4368
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4357
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4352
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4386
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4383
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4354
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4377
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4378
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6835
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4374
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4361
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4353
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4369
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4373
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4379
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4404
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4405
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4380
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4407
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4418
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4371
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4419
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4420
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4421
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2391
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4375
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4408
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4422
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4381
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1360
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4366
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1348
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4367
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5227
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4363
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4362
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4356
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4372
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4409
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6663
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1384
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1385
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4410
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4411
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4412
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4413
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4414
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4415

+ HPSBOV03099 rev.1 - HP OpenVMS running OpenSSL, Remote Denial of Service (DoS) or Disclosure of Information
https://h20566.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04426586-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3505
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3506
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3507
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3508
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3510

+ Linux kernel 3.16.3, 3.14.19, 3.10.55 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.3
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.19
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.55

+ Google Android Browser Access Control Flaw Lets Remote Users Bypass Same Origin Policy
http://www.securitytracker.com/id/1030861
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6041

+ SA61273 nginx SSL Session Cache Security Bypass Security Issue
http://secunia.com/advisories/61273/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3616

+ SA60523 Node.js OpenSSL and V8 Vulnerabilities
http://secunia.com/advisories/60523/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6668

+ SA61290 Wireshark Multiple Denial of Service Vulnerabilities
http://secunia.com/advisories/61290/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6421
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6422
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6423
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6424
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6425
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6426
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6427
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6428

+ Apple iOS Prior to iOS 8 and TV Prior to TV 7 Multiple Vulnerabilities
http://www.securityfocus.com/bid/69882

+ WebKit Multiple Unspecified Memory Corruption Vulnerabilities
http://www.securityfocus.com/bid/69881

+ Linux Kernel 'SMB2_tcon' NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/69867

JVNDB-2014-000106 365 Links シリーズにおけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-000106.html

JVNVU#95634161 CENTUM および Exaopc において任意のファイルにアクセス可能な脆弱性
http://jvn.jp/vu/JVNVU95634161/

:: IT Security Neophyte Investigator's MEMO ::

2014年9月18日木曜日

18日木曜日、友引

0 件のコメント:

コメントを投稿

2014年9月18日木曜日

18日 木曜日、友引

0 件のコメント:

コメントを投稿

18日木曜日、友引