+ CESA-2015:0016 Moderate CentOS 6 glibc Security Update
http://lwn.net/Alerts/628795/
+ UPDATE: Multiple Vulnerabilities in ntpd Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141222-ntpd
+ Linux kernel 3.18.2, 3.17.8, 3.14.28, 3.10.64 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.2
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.17.8
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.28
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.64
+ Multiple vulnerabilities in NTP
https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_ntp
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9295
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9296
+ DBD::Pg 3.5.0 released
http://www.postgresql.org/about/news/1561/
+ OpenSSL Security Advisory [08 Jan 2015]
http://www.openssl.org/news/secadv_20150108.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3571
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0206
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3569
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3572
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0204
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0205
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8275
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3570
+ OpenSSL 1.0.1k, 1.0.0p, 0.9.8zd released
http://www.openssl.org/news/openssl-1.0.1-notes.html
http://www.openssl.org/news/openssl-1.0.0-notes.html
http://www.openssl.org/news/openssl-0.9.8-notes.html
+ SA61925 cURL / libcURL Header Injection Weakness and Certificate Verification Security Issue
http://secunia.com/advisories/61925/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8150
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8151
+ SA62020 Wireshark Multiple Denial of Service Vulnerabilities
http://secunia.com/advisories/62020/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0559
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0560
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0561
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0562
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0563
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0564
+ Microsoft Dynamics CRM 2013 SP1 Cross Site Scripting
http://cxsecurity.com/issue/WLB-2015010038
+ Microweber CMS 0.95 SQL Injection
http://cxsecurity.com/issue/WLB-2015010036
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9464
+ PHP '/ext/opcache/zend_shared_alloc.c' Use After Free Denial of Service Vulnerability
http://www.securityfocus.com/bid/71929
【社長に説明できるセキュリティ】
クライアントのセキュリティ対策、今こそ戦略的に再考の時
http://itpro.nikkeibp.co.jp/atcl/column/14/511845/010500005/?ST=security
クライアントアプリの脆弱性を不正なサーバー応答で検知するソフト
http://itpro.nikkeibp.co.jp/atcl/news/15/010800093/?ST=security
ハミングヘッズ、サイバー攻撃対策に割安な3年ライセンス
http://itpro.nikkeibp.co.jp/atcl/news/15/010800091/?ST=security
FBI長官、サイバー攻撃に北関与との判断に自信、理由を説明
http://itpro.nikkeibp.co.jp/atcl/news/15/010800080/?ST=security
REMOTE: Pandora v3.1 Auth Bypass and Arbitrary File Upload Vulnerability
http://www.exploit-db.com/exploits/35731
LOCAL: Ntpdc 4.2.6p3 - Local Buffer Overflow
http://www.exploit-db.com/exploits/35732
0 件のコメント:
コメントを投稿