+ RHSA-2015:0700 Moderate: unzip security update
https://rhn.redhat.com/errata/RHSA-2015-0700.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8139
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8140
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8141
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9636
+ About the security content of Safari 8.0.4, Safari 7.1.4, and Safari 6.2.4
https://support.apple.com/ja-jp/HT204560
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1069
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1070
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1071
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1072
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1073
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1074
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1075
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1076
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1077
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1078
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1079
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1080
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1081
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1082
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1083
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1084
+ Linux kernel 3.19.2, 3.14.36, 3.10.72 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.19.2
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.36
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.72
+ OpenSSH 6.8 released
http://www.openssh.com/txt/release-6.8
+ Apple Safari Multiple WebKit Bugs Let Remote Users Execute Arbitrary Code and Spoof URLs
http://www.securitytracker.com/id/1031936
+ Linux kernel execution in the early microcode loader
http://cxsecurity.com/issue/WLB-2015030122
+ Adobe Flash Player PCRE Regex Logic Error
http://cxsecurity.com/issue/WLB-2015030119
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0318
+ Moodle 2.5.9 / 2.6.8 / 2.7.5 / 2.8.3 Cross Site Scripting
http://cxsecurity.com/issue/WLB-2015030118
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2269
+ PHP Multiple Vulnerabilities
http://secunia.com/advisories/63517/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2331
+ Apple Safari WebKit Multiple Vulnerabilities
http://secunia.com/advisories/63432/
UPDATE: JVNVU#99125992 SSL/TLS の実装が輸出グレードの RSA 鍵を受け入れる問題 (FREAK 攻撃)
http://jvn.jp/vu/JVNVU99125992/
UPDATE: JVN#19294237 Apache Struts において ClassLoader が操作可能な脆弱性
http://jvn.jp/jp/JVN19294237/
UPDATE: JVNVU#962587 Quagga にサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/vu/JVNVU962587/
UPDATE: JVNVU#555316 複数の STARTTLS 実装に脆弱性
http://jvn.jp/vu/JVNVU555316/
JVNVU#99249829 HP ArcSight アプライアンス製品に複数の脆弱性
http://jvn.jp/vu/JVNVU99249829/
REMOTE: Exim GHOST (glibc gethostbyname) Buffer Overflow
http://www.exploit-db.com/exploits/36421/
DoS/PoC: Fortinet Single Sign On Stack Overflow
http://www.exploit-db.com/exploits/36422/
0 件のコメント:
コメントを投稿