+ UPDATE: マイクロソフト セキュリティ アドバイザリ (2755801) Internet Explorer 上の Adobe Flash Player の脆弱性に対応する更新プログラム
https://technet.microsoft.com/ja-jp/library/security/2755801
+ CESA-2015:0087 Important CentOS 6 kernel Security Update
http://lwn.net/Alerts/631078/
+ CESA-2015:0100 Moderate CentOS 6 libyaml Security Update
http://lwn.net/Alerts/631079/
+ UPDATE: GNU glibc gethostbyname Function Buffer Overflow Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150128-ghost
+ SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-poodle
+ Check Point Response to CVE-2015-0235 (glibc - GHOST)
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk104443&src=securityAlerts
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0235
+ VMSA-2015-0002 VMware vSphere Data Protection product update addresses a certificate validation vulnerability.
http://www.vmware.com/security/advisories/VMSA-2015-0002.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4632
+ SYM15-002 Security Advisories Relating to Symantec Products - Symantec Encryption Management Server Database Backup Command Line Injection and Email Header Injection
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150129_00
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7287
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7288
+ The glibc (Ghost) vulnerability: affected versions, recommended steps and workarounds
https://www.sophos.com/ja-jp/support/knowledgebase/121879.aspx
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0235
+ LOCAL: OS X < 10.10.x - Gatekeeper bypass Vulnerability
http://www.exploit-db.com/exploits/35934
+ LOCAL: Microsoft Windows Server 2003 SP2 - Privilege Escalation
http://www.exploit-db.com/exploits/35936
+ DoS/PoC: FreeBSD Kernel Multiple Vulnerabilities
http://www.exploit-db.com/exploits/35938
+ SA62707 Linux Kernel splice Denial of Service Vulnerability
http://secunia.com/advisories/62707/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7822
+ Mantis BugTracker 1.2.19 Open Redirect
http://cxsecurity.com/issue/WLB-2015010150
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1042
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6316
+ Linux Kernel 'fs/fhandle.c' Local Race Condition Vulnerability
http://www.securityfocus.com/bid/72357
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1420
+ Linux Kernel CVE-2015-1421 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/72356
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1421
JVNDB-2015-000007 複数の VMware 製品における任意のファイルが上書きされる脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000007.html
「個人情報を削除してあげます」、国民生活センターをかたる電話に注意
http://itpro.nikkeibp.co.jp/atcl/news/15/012900348/?ST=security
REMOTE: VSAT Sailor 900 - Remote Exploit
http://www.exploit-db.com/exploits/35932
LOCAL: UniPDF 1.1 - Crash PoC (SEH overwritten)
http://www.exploit-db.com/exploits/35935
0 件のコメント:
コメントを投稿