+ マイクロソフト セキュリティ アドバイザリ 3046015 Schannel の脆弱性により、セキュリティ機能のバイパスが起こる
https://technet.microsoft.com/ja-jp/library/security/3046015
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1637
+ Mozilla Firefox 36.0.1 released
https://www.mozilla.org/en-US/firefox/36.0.1/releasenotes/
+ Linux kerne 3.19.1, 3.18.9, 3.14.35, 3.10.71, 3.2.68 released
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.19.1
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.9
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.35
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.71
https://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.68
+ Tcl/Tk 8.5.18 released
http://www.tcl.tk/software/tcltk/8.5.html
+ VU#243585 SSL/TLS implementations accept export-grade RSA keys (FREAK attack)
http://www.kb.cert.org/vuls/id/243585
+ Linux Kernel Buffer Overflow in eCryptfs Lets Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1031860
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9683
+ Wireshark ATN-CPDLC/WCP/LLDP/TNEF/SCSI OSD Dissector Bugs Let Remote Users Deny Service
http://www.securitytracker.com/id/1031858
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2187
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2188
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2189
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2190
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2191
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2192
+ Linux Kernel XFS Attribute Processing Flaw Lets Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1031853
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0274
+ Glibc nss_files File Pointer Reset Lets Remote Users Deny Service
http://www.securitytracker.com/id/1031838
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8121
+ SA63171 OpenSSL Two Vulnerabilities
http://secunia.com/advisories/63171/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0209
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0288
+ SA63272 Microsoft Windows Server 2003 Export RSA Downgrade Security Bypass Vulnerability
http://secunia.com/advisories/63272/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1637
+ Linux Kernel KVM CVE-2015-0239 Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/72842
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0239
JVNDB-2015-000038 WordPress 用プラグイン All In One WP Security & Firewall におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000038.html
JVNDB-2015-000037 WordPress 用プラグイン All In One WP Security & Firewall における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000037.html
UPDATE: JVN#64455813 Squid における入力値検証の不備に関する脆弱性
http://jvn.jp/jp/JVN64455813/
暗号化通信を解読される「FREAK」脆弱性、Windowsも影響を受ける
http://itpro.nikkeibp.co.jp/atcl/news/15/030600830/?ST=security
[MWC2015]なんでもネットにつながる時代の守り方、トレンドマイクロが参考展示
http://itpro.nikkeibp.co.jp/atcl/news/15/030600824/?ST=security
0 件のコメント:
コメントを投稿