+ RHSA-2014:1671 Moderate: rsyslog5 and rsyslog security update
https://rhn.redhat.com/errata/RHSA-2014-1671.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3634
+ RHSA-2014:1669 Low: qemu-kvm security and bug fix update
https://access.redhat.com/errata/RHSA-2014:1669
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3615
+ About the security content of Apple TV 7.0.1
https://support.apple.com/kb/HT6542
+ About the security content of iOS 8.1
https://support.apple.com/kb/HT6541
+ UPDATE: SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-poodle
+ HPSBGN03142 rev.1 - HP Business Service Automation Essentials running Bash Shell, Remote Code Execution
https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04479402-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6277
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6278
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7169
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7186
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7187
+ HPSBUX03150 SSRT101681 rev.1 - HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Service (DoS) and Other Vulnerabilities
https://h20565.www2.hp.com/portal/site/hpsc/template.PAGE/public/kb/docDisplay/?spf_p.tpst=kbDocDisplay&spf_p.prp_kbDocDisplay=wsrp-navigationalState%3DdocId%253Demr_na-c04483248-1%257CdocLocale%253Dja_JP%257CcalledBy%253D&javax.portlet.begCacheTok=com.vignette.cachetoken&javax.portlet.endCacheTok=com.vignette.cachetoken
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4248
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4286
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6438
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0075
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0099
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3981
+ Multiple vulnerabilities in OpenSSL
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_openssl6
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3513
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3567
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3568
+ Postfix 2.11.3, 2.10.5, 2.9.11, 2.8.19 released
http://mirror.postfix.jp/postfix-release/official/postfix-2.11.3.HISTORY
http://mirror.postfix.jp/postfix-release/official/postfix-2.10.5.HISTORY
http://mirror.postfix.jp/postfix-release/official/postfix-2.9.11.HISTORY
http://mirror.postfix.jp/postfix-release/official/postfix-2.8.19.HISTORY
+ Samba 4.1.13 Available for Download
http://samba.org/samba/history/samba-4.1.13.html
+ LOCAL: Windows OLE Package Manager SandWorm Exploit
http://www.exploit-db.com/exploits/35019
+ LOCAL: MS14-060 Microsoft Windows OLE Package Manager Code Execution
http://www.exploit-db.com/exploits/35020
+ LOCAL: Linux PolicyKit Race Condition Privilege Escalation
http://www.exploit-db.com/exploits/35021
+ SA61142 Linux Kernel "pivot_root()" Denial of Service Vulnerability
http://secunia.com/advisories/61142/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7970
+ SA61145 Linux Kernel "do_umount()" Denial of Service Vulnerability
http://secunia.com/advisories/61145/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7975
UPDATE: VNVU#98283300 SSLv3 プロトコルに暗号化データを解読される脆弱性(POODLE 攻撃)
http://jvn.jp/vu/JVNVU98283300/
ソフォス、UTMの全モデルを現行シリーズ「Sophos SG」に刷新
http://itpro.nikkeibp.co.jp/atcl/news/14/102001524/?ST=security
0 件のコメント:
コメントを投稿