2014年11月26日水曜日

26日 水曜日、友引

+ Google Chrome 39.0.2171.71 released
http://googlechromereleases.blogspot.jp/2014/11/stable-channel-update_25.html

+ APSB14-26 Security updates available for Adobe Flash Player
http://helpx.adobe.com/security/products/flash-player/apsb14-26.html

+ CESA-2014:1893 Important CentOS 5 libXfont Security Update
http://lwn.net/Alerts/623061/

+ CESA-2014:1885 Moderate CentOS 5 libxml2 Security Update
http://lwn.net/Alerts/622556/

+ HPSBGN03200 rev.1 - HP Project Portfolio Manager running SSLv3, Remote Disclosure of Information
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04507244&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566

+ HPSBGN03203 rev.1 - HP CMS: UCMDB Browser running OpenSSL, Remote Disclosure of Information
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04507636&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566

+ HPSBMU03213 rev.1 - HP BSM running SSLv3, Remote Disclosure of Information
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04510230&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566

+ HPSBMU03214 rev.1 - HP Systinet running SSLv3, Remote Disclosure of Information
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04510286&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566

+ HPSBMU03211 rev.1 - HP Automation Insight running SSLv3, Remote Disclosure of Information
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04510061&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566

+ UPDATE: HPSBST03131 rev.2 - HP StoreOnce Backup Systems running Bash Shell, Remote Code Execution
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04477872&docLocale=ja_JP

+ HPSBST03148 rev.1 - HP StoreOnce Gen 2 Backup Systems running Bash Shell, Remote Code Execution
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04479974&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7169
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7187
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7186

+ HPSBUX03166 SSRT101489 rev.1 - HP-UX running PAM libpam_updbe, Remote Authentication Bypass
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04511778&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7879

+ Adobe Flash Player Use-After-Free Memory Error Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1031259
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8439

+ LOCAL: Linux Kernel libfutex Local Root for RHEL/CentOS 7.0.1406
http://www.exploit-db.com/exploits/35370

+ PHP 5.5.12 Locale::parseLocale Memory Corruption
http://cxsecurity.com/issue/WLB-2014110168

+ SA62632 GNU C Library "wordexp()" Argument Parsing Security Bypass Vulnerability
http://secunia.com/advisories/62632/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7817

+ GNU Coreutils 'parse_datetime()' Function Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/71281

ファイア・アイ日本法人の新CTO名和氏、国際サイバースパイの実態を説明
http://itpro.nikkeibp.co.jp/atcl/news/14/112502020/?ST=security

「構造改革後にIoTなど挑戦を」ソニーモバイルが事業方針を説明
http://itpro.nikkeibp.co.jp/atcl/news/14/112502018/?ST=security

高度なスパイウエア「Regin」、政府が国際的スパイ活動に使用か
http://itpro.nikkeibp.co.jp/atcl/news/14/112502009/?ST=security

DoS/PoC: TRENDnet SecurView Wireless Network Camera TV-IP422WN (UltraCamX.ocx) Stack BoF
http://www.exploit-db.com/exploits/35363

0 件のコメント:

コメントを投稿