2014年12月18日木曜日

18日 木曜日、赤口

+ RHSA-2014:2008 Important: kernel security update
https://rhn.redhat.com/errata/RHSA-2014-2008.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9322

+ CESA-2014:1997 Important CentOS 6 kernel Security Update
http://lwn.net/Alerts/626629/

+ CESA-2014:1999 Moderate CentOS 6 mailx Security Update
http://lwn.net/Alerts/626630/

+ CESA-2014:1999 Moderate CentOS 7 mailx Security Update
http://lwn.net/Alerts/626631/

+ UPDATE: Apache Struts 2 Command Execution Vulnerability in Multiple Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140709-struts2

+ FreeBSD-SA-14:30.unbound unbound remote denial of service vulnerability
https://www.freebsd.org/security/advisories/FreeBSD-SA-14:30.unbound.asc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8602

+ HP OpenVMS POP Unspecified Flaw Lets Remote Users Deny Service
http://www.securitytracker.com/id/1031387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7880

+ Symantec Web Gateway Lets Remote Authenticated Users Execute Arbitrary Commands
http://www.securitytracker.com/id/1031386
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7285

+ Linux Kernel espfix64 Stack Segment Fault Lets Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1031377
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9090
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9322

+ SA61236 PHP "var_push_dtor()" NULL Pointer Dereference Vulnerability
http://secunia.com/advisories/61236/

+ SA61131 Apache Subversion mod_dav_svn Two Denial of Service Vulnerabilities
http://secunia.com/advisories/61131/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3580
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8108

+ Linux Kernel 'Grinch' polkit/wheel group issue
http://cxsecurity.com/issue/WLB-2014120115

+ Linux Kernel CVE-2014-9322 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/71685
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9322

+ Linux Kernel 'fs/isofs/rock.c' Infinite Loop Denial of Service Vulnerability
http://www.securityfocus.com/bid/71717

NECフィールディング、中小企業のインターネット脅威対策サービス
http://itpro.nikkeibp.co.jp/atcl/news/14/121702303/?ST=security

ラックが2014年のサイバー事件・事故を総括、「三つの重大な課題が露呈」
http://itpro.nikkeibp.co.jp/atcl/news/14/121702300/?ST=security

ソニー映画「The Interview」上映予定の劇場にハッカー集団が脅迫
http://itpro.nikkeibp.co.jp/atcl/news/14/121702287/?ST=security

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)