+ RHSA-2015:0797 Moderate: xorg-x11-server security update
https://rhn.redhat.com/errata/RHSA-2015-0797.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255
+ CESA-2015:0797 Moderate CentOS 7 xorg-x11-server Security Update
http://lwn.net/Alerts/639941/
+ UPDATE: Multiple Vulnerabilities in OpenSSL (March 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150320-openssl
+ UPDATE: GNU glibc gethostbyname Function Buffer Overflow Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150128-ghost
+ HPSBMU03312 rev.1 - HP Version Control Agent and HP Version Control Repository Manager for Linux, Remote Execution of Code
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04634765&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0235
+ HPSBMU03313 rev.1 - HP Systems Insight Manager for Linux, Remote Execution of Code
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04634759&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0235
+ HPSBMU03314 rev.1 - HP System Management Homepage for Linux, Remote Execution of Code
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04634707&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0235
+ SYM15-004 Security Advisories Relating to Symantec Products - Symantec Workspace Streaming Agent Unquoted Service Path Local Elevation of Privilege
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20150410_00
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1484
+ Apache Tomcat 7.0.61 Released
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
+ Apple Xcode Clang Stack Cookie Error May Let Users Bypass Stack Guard Protection Mechanisms
http://www.securitytracker.com/id/1032081
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3027
+ Apache Tomcat File Upload Feature Lets Remote Users Deny Service
http://www.securitytracker.com/id/1032079
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0230
+ LOCAL: Elipse SCADA 2.29 b141 - DLL Hijacking
http://www.exploit-db.com/exploits/36700/
+ SA64028 McAfee Advanced Threat Defense (ATD) Security Bypass Vulnerabilities
http://secunia.com/advisories/64028/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3028
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3029
+ Adobe Flash Player casi32 Integer Overflow
http://cxsecurity.com/issue/WLB-2015040058
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0569
JVNDB-2015-000052 S2Struts の Validator に入力値検査回避の脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000052.html
UPDATE: JVN#86448949 TERASOLUNA Server Framework for Java(WEB) の Validator に入力値検査回避の脆弱性
http://jvn.jp/jp/JVN86448949/
JVN#91383083 S2Struts の Validator に入力値検査回避の脆弱性
http://jvn.jp/jp/JVN91383083/
JVNVU#95993136 NTP daemon (ntpd) に複数の脆弱性
http://jvn.jp/vu/JVNVU95993136/
チェックしておきたい脆弱性情報<2015.04.13>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/040300052/?ST=security
富士通の認証ソフトSMARTACCESSが仮想環境に対応
http://itpro.nikkeibp.co.jp/atcl/news/15/040901251/?ST=security
アイホンの住宅用インターホンがiPhoneに対応、アプリで来客応対
http://itpro.nikkeibp.co.jp/atcl/news/15/041001282/?ST=security
警視庁、日本を狙う不正送金ウイルスの無力化作戦を開始
http://itpro.nikkeibp.co.jp/atcl/news/15/041001270/?ST=security
圧縮ソフト「Lhaplus」に危険な脆弱性、悪質ファイルを読み込むと被害に
http://itpro.nikkeibp.co.jp/atcl/news/15/041001259/?ST=security
0 件のコメント:
コメントを投稿