2015年4月9日木曜日

9日 木曜日、仏滅

+ CESA-2015:0783 Important CentOS 5 kernel Security Update
http://lwn.net/Alerts/639556/

+ Cisco ASA FirePOWER Services and Cisco ASA CX Services Crafted Packets Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150408-cxfp
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0678

+ Multiple Vulnerabilities in Cisco ASA Software
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150408-asa
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0675
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0676
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0677

+ Multiple Vulnerabilities in ntpd (April 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150408-ntpd
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1799

+ HPSBHF03310 rev.1 - HP Thin Clients running Windows Embedded Standard 7 (WES7) or Windows Embedded Standard 2009 (WES09) with HP Easy Deploy, Remote Elevation of Privilege, Execution of Code
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04629160&docLocale=ja_JP
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2112
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2113

+ UPDATE: HPSBHF03151 rev.2 - HP Integrated Lights-Out 2 and 4 (iLO 2, iLO 4), Chassis Management (iLO CM), Remote Denial of Service, Remote Execution of Code, Elevation of Privilege
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04486432&docLocale=ja_JP

+ UPDATE: HPSBHF03275 rev.2 - HP Integrated Lights-Out 2, 3, and 4 (iLO 2, iLO 3, iLO 4), Remote Disclosure of Information
https://h20565.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04582218&docLocale=ja_JP

+ ActivePerl 5.20.2.2001, 5.18.4.1804 released
http://www.activestate.com/activeperl/downloads

+ MySQL 5.7.7 released
http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-7.html

+ SA63689 FreeBSD IPv6 Neighbour Discovery Denial of Service Vulnerability
http://secunia.com/advisories/63689/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2923

+ SA63784 NTP Two Security Bypass Vulnerabilities
http://secunia.com/advisories/63784/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1799

+ FreeBSD IPv6 Router Advertisement Processing Flaw Lets Remote Users Deny Service
http://www.securitytracker.com/id/1032043
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2923

+ FreeBSD 'bsdinstall' Lets Local Users Obtain the GEOM ELI Keyfile
http://www.securitytracker.com/id/1032042
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1415

趙 章恩「Korea on the Web」
イスラム国関連書き込みモニタリング強化、韓国ではテロ防止法と人権保護が対立
http://itpro.nikkeibp.co.jp/atcl/column/14/549762/033000032/?ST=security

[続報]アルデプロとGDOも株主情報漏洩の可能性があると発表、影響は1万人超に
http://itpro.nikkeibp.co.jp/atcl/news/15/040801234/?ST=security

株主の個人情報漏洩の可能性が4社1万4333人まで拡大、サンリオ株主向けサイトの委託先が発表
「原因は調査中、情報漏洩と断定できない」
http://itpro.nikkeibp.co.jp/atcl/news/15/040801230/?ST=security

日本オラクル、Javaアップデートの影響を調べるサービス
http://itpro.nikkeibp.co.jp/atcl/news/15/040801228/?ST=security

サンリオ、株主6249人の個人情報が漏洩か
http://itpro.nikkeibp.co.jp/atcl/news/15/040801224/?ST=security

JVNVU#95993136 NTP daemon (ntpd) に複数の脆弱性
http://jvn.jp/vu/JVNVU95993136/

REMOTE: Solarwinds Firewall Security Manager 6.6.5 Client Session Handling
http://www.exploit-db.com/exploits/36679/

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)