2014年11月6日木曜日

6日 木曜日、仏滅

+ RHSA-2014:1803 Important: mod_auth_mellon security update
https://rhn.redhat.com/errata/RHSA-2014-1803.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8567

+ CESA-2014:1803 Important CentOS 6 mod_auth_mellon Security Update
http://lwn.net/Alerts/619200/

+ UPDATE: GNU Bash Environment Variable Command Injection Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash

+ Multiple Vulnerabilities in Cisco Small Business RV Series Routers
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141105-rv
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2177
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2178
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2179

+ Linux kernel 3.12.32, 3.2.64 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.32
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.64

+ SYM14-015 Security Advisories Relating to Symantec Products - Symantec Endpoint Protection Manager Multiple Issues
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20141105_00
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3437
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3438
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3439

+ curl and libcurl 7.39.0 released
http://curl.haxx.se/changes.html#7_39_0
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3707

+ FreeBSD-SA-14:24.sshd Denial of service attack against sshd(8)
https://www.freebsd.org/security/advisories/FreeBSD-SA-14:24.sshd.asc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8475

+ FreeBSD-SA-14:25.setlogin Kernel stack disclosure in setlogin(2) / getlogin(2)
https://www.freebsd.org/security/advisories/FreeBSD-SA-14:25.setlogin.asc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8476

+ FreeBSD-SA-14:26.ftp Remote command execution in ftp(1)
https://www.freebsd.org/security/advisories/FreeBSD-SA-14:26.ftp.asc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8517

+ FreeBSD setlogin() Lets Local Users Obtain Portions of Kernel Memory
http://www.securitytracker.com/id/1031169
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8476

+ FreeBSD OpenSSH Child Process Deadlock Lets Remote Users Deny Service
http://www.securitytracker.com/id/1031168
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8475

+ SA61118 FreeBSD "sys_getlogin()" Information Disclosure Weakness
http://secunia.com/advisories/61118/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8476

+ SA61440 FreeBSD sshd Denial of Service Vulnerability
http://secunia.com/advisories/61440/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8475

+ SA61491 FreeBSD ftp "fetch_url()" Command Injection Vulnerability
http://secunia.com/advisories/61491/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8517

+ SA62038 Linux Kernel KVM invept Invocation Handling Denial of Service Vulnerability
http://secunia.com/advisories/62038/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3645

+ Apache 'mod_wsgi' Module Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/68111

PostgreSQL PHP Generator 14.10 released
http://www.postgresql.org/about/news/1554/

登録情報の不正書き換えによるドメイン名ハイジャックに関する注意喚起
http://www.jpcert.or.jp/at/2014/at140044.html

世界のセキュリティ・ラボから
強力なパスワードの作成は本当に意味があるか
http://itpro.nikkeibp.co.jp/atcl/column/14/264220/110300019/?ST=security

迷惑メールの1割は米国から、日本発も3%を占める
http://itpro.nikkeibp.co.jp/atcl/news/14/110501768/?ST=security

アズム、社内データを暗号化する鍵管理サーバー製品群を販売
http://itpro.nikkeibp.co.jp/atcl/news/14/110501767/?ST=security

登録情報不正書き換えによる「ドメイン名乗っ取り」、JPRSが緊急警告
http://itpro.nikkeibp.co.jp/atcl/news/14/110501764/?ST=security

「HeartbleedもShellShockもPOODLEもWAFでまとめて止められる」F5がデモ
http://itpro.nikkeibp.co.jp/atcl/news/14/110401749/?ST=security

富士通エフサス、ウォッチガード製品の取扱い開始
http://itpro.nikkeibp.co.jp/atcl/news/14/110401748/?ST=security

0 件のコメント:

コメントを投稿