+ MantisBT 1.2.18 Released
http://www.mantisbt.org/blog/?p=301
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9272
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9270
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8987
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9271
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9281
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8986
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9269
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7146
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9280
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8554
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9279
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8988
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8553
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6387
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6316
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8598
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9117
+ CESA-2014:1959 Moderate CentOS 5 kernel Security Update
http://lwn.net/Alerts/624790/
+ phpMyAdmin 4.3.0 is released
http://sourceforge.net/p/phpmyadmin/news/2014/12/phpmyadmin-430-is-released/
+ phpMyAdmin 4.3.1 is released
http://sourceforge.net/p/phpmyadmin/news/2014/12/phpmyadmin-431-is-released/
+ UPDATE: Cisco IronPort Appliances Telnet Remote Code Execution Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120126-ironport
+ UPDATE: GNU Bash Environment Variable Command Injection Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140926-bash
+ HPSBGN03222 rev.1 - HP Enterprise Maps running SSLv3, Remote Disclosure of Information
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04518999&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
+ HPSBGN03205 rev.1 - HP Insight Remote Support Clients running SSLv3, Remote Disclosure of Information
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04510081&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
+ HPSBGN03208 rev.1 - HP Cloud Service Automation running SSLv3, Remote Disclosure of Information
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04516572&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
+ HPSBUX03218 SSRT101770 rev.1 - HP-UX running Java7, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04517477&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4288
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6456
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6457
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6458
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6466
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6476
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6492
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6493
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6502
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6503
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6504
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6506
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6511
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6512
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6513
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6515
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6517
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6519
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6527
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6531
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6558
+ Linux kernel 3.17.6, 3.14.26, 3.12.34, 3.10.62 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.6
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.26
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.26
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.62
+ Apache Struts 2.3.20 released
http://struts.apache.org/announce.html#a20141207
+ Samba 4.0.23 Available for Download
http://samba.org/samba/history/samba-4.0.23.html
+ Glibc Out-of-bounds Memory Read Bugs in Converting IBM Encoded Data Let Remote or Local Users Deny Service
http://www.securitytracker.com/id/1031308
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6656
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6040
+ SA60610 Microsoft Internet Explorer "display:run-in" Use-After-Free Arbitrary Code Execution Vulnerability
http://secunia.com/advisories/60610/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8967
+ Google App Engine Java security sandbox bypasses
http://cxsecurity.com/issue/WLB-2014120040
+ Windows Kerberos - Elevation of Privilege (MS14-068)
http://cxsecurity.com/issue/WLB-2014120038
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6324
世界のセキュリティ・ラボから
人質ファイルを1つ解放するランサムウエア「CoinVault」
http://itpro.nikkeibp.co.jp/atcl/column/14/264220/120400022/?ST=security
ソニー米子会社へのサイバー攻撃、北朝鮮は関与否定するも「正義の行為」
http://itpro.nikkeibp.co.jp/atcl/news/14/120802151/?ST=security
チェックしておきたい脆弱性情報<2014.12.8>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/120300032/?ST=security
RSA幹部がサイバー犯罪のサービス化を指摘、DDoS攻撃は1時間8ドル
http://itpro.nikkeibp.co.jp/atcl/news/14/120502147/?ST=security
CEC、複合機の利用ログを収集管理する小型アプライアンス
http://itpro.nikkeibp.co.jp/atcl/news/14/120502144/?ST=security
DIT、特権IDアクセス管理ソフトでSSH鍵の管理を容易に
http://itpro.nikkeibp.co.jp/atcl/news/14/120502143/?ST=security
NSAの盗聴活動、世界中のキャリアの情報を収集か
http://itpro.nikkeibp.co.jp/atcl/news/14/120502137/?ST=security
JVNVU#98916051 Zenoss Core に複数の脆弱性
http://jvn.jp/vu/JVNVU98916051/
JVN#49154900 Spring Framework におけるディレクトリトラバーサルの脆弱性
http://jvn.jp/jp/JVN49154900/
VU#449452 Zenoss Core contains multiple vulnerabilities
http://www.kb.cert.org/vuls/id/449452
0 件のコメント:
コメントを投稿