+ RHSA-2014:1999 Moderate: mailx security update
https://rhn.redhat.com/errata/RHSA-2014-1999.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2771
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7844
+ RHSA-2014:1997 Important: kernel security and bug fix update
https://rhn.redhat.com/errata/RHSA-2014-1997.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6657
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3673
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3687
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3688
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5471
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5472
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6410
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9322
+ RHSA-2014:1999 Moderate: mailx security updat
https://access.redhat.com/errata/RHSA-2014:1999
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2771
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7844
+ PDFCreator 2.0.1 released
http://www.pdfforge.org/blog/pdfcreator-201
+ HPSBMU03217 rev.1 - HP Vertica Analytics Platform running Bash Shell, Remote Code Execution
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04512907&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6277
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6278
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7169
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7186
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7187
+ HPSBMU03221 rev.1 - HP Connect-IT running SSLv3, Remote Disclosure of Information
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04518605&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
+ HPSBOV03226 rev.1 - HP TCP/IP Services for OpenVMS, BIND 9 Resolver, Multiple Remote Vulnerabilities
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04530690&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2926
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0025
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4313
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4244
+ HPSBOV03225 rev.1 - HP OpenVMS running POP, Remote Denial of Service (DoS)
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04530570&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7880
+ Linux kernel 3.18.1, 3.17.7, 3.14.27, 3.10.63 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.1
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.7
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.27
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.63
+ Multiple vulnerabilities fixed in Firefox 24.7.0 ESR
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_fixed_in_firefox1
+ CVE-2014-3707 Information Disclosure vulnerability in Libcurl
https://blogs.oracle.com/sunsecurity/entry/cve_2014_3707_information_disclosure
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3707
+ Multiple vulnerabilities in Puppet
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_puppet1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3248
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3250
+ Multiple Buffer Errors vulnerabilities in Kerberos
https://blogs.oracle.com/sunsecurity/entry/multiple_buffer_errors_vulnerabilities_in4
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4341
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4342
+ CVE-2014-2285 Input Validation vulnerability in Net-SNMP
https://blogs.oracle.com/sunsecurity/entry/cve_2014_2285_input_validation
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2285
+ CVE-2012-2141 Denial Of Service(DoS) vulnerability in Net-SNMP
https://blogs.oracle.com/sunsecurity/entry/cve_2012_2141_denial_of
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2141
+ CVE-2014-3565 Resource Management Errors vulnerability in Net-SNMP
https://blogs.oracle.com/sunsecurity/entry/cve_2014_3565_resource_management
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3565
+ Multiple vulnerabilities in Jinja2
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_jinja2
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0012
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1402
+ MIT Kerberos Null Pointer Dereference Bugs Let Remote Authenticated Users Deny Service
http://www.securitytracker.com/id/1031376
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5353
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5354
+ Apache Buffer Overflow in mod_proxy_fcgi Lets Remote Users Deny Service
http://www.securitytracker.com/id/1031371
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3583
+ Linux Kernel 3.2 multiple x86_64 vulnerabilities
http://cxsecurity.com/issue/WLB-2014120100
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8133
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8134
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9322
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9090
+ Symantec Web Gateway CVE-2014-7285 Command Injection Vulnerability
http://www.securityfocus.com/bid/71620
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7285
UPDATE: JVNVU#92305751 Apple Safari における複数の脆弱性に対するアップデート
http://jvn.jp/vu/JVNVU92305751/
JVNVU#92844499 CA Release Automation (旧 CA LISA Release Automation) に複数の脆弱性
http://jvn.jp/vu/JVNVU92844499/
JVNVU#99439003 EMC Documentum シリーズの製品に複数の脆弱性
http://jvn.jp/vu/JVNVU99439003/
極めて高度なマルウエア「Regin」、過去の手口を活用
http://itpro.nikkeibp.co.jp/atcl/column/14/264220/121500023/?ST=security
「SSL証明書無償配布」がもたらすWebの変革、企業ネットの管理にも影響
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/121500129/?ST=security
「俺は君の20年後を見ている」、“謎”の脅迫ウイルスが日本人を狙う
http://itpro.nikkeibp.co.jp/atcl/news/14/121602280/?ST=security
エンカレッジ、中小企業向けに月額5000円の特権ID管理
http://itpro.nikkeibp.co.jp/atcl/news/14/121602277/?ST=security
アカマイ、DDoS対策のスクラビングセンターを日本に開設
http://itpro.nikkeibp.co.jp/atcl/news/14/121602271/?ST=security
REMOTE: ActualAnalyzer 'ant' Cookie Command Execution
http://www.exploit-db.com/exploits/35549
0 件のコメント:
コメントを投稿