+ RHSA-2015:1218 Moderate: php security update
https://rhn.redhat.com/errata/RHSA-2015-1218.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9425
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9705
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9709
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0232
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0273
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2301
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2783
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2787
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3307
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3329
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3411
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3412
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4021
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4022
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4024
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4026
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4147
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4148
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4598
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4599
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4600
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4601
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4602
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4603
+ UPDATE: Multiple Vulnerabilities in OpenSSL (March 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150320-openssl
+ UPDATE: SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141015-poodle
+ UPDATE: Multiple Vulnerabilities in Cisco ASA Software
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141008-asa
+ UPDATE: Multiple Vulnerabilities in OpenSSL (June 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150612-openssl
+ HPSBUX03363 rev.1 - HP-UX Apache Web Server running OpenSSL, Remote Disclosure of Information
https://h20566.www2.hp.com/hpsc/doc/public/display?calledBy=&docId=emr_na-c04725401&docLocale=ja_JP
+ Oracle Critical Patch Update Pre-Release Announcement - July 2015
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
+ VMSA-2015-0005 VMware Workstation, Player and Horizon View Client for Windows updates address a host privilege escalation vulnerability
http://www.vmware.com/security/advisories/VMSA-2015-0005.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3650
+ FreeBSD-SA-15:12.openssl OpenSSL alternate chains certificate forgery vulnerability
https://www.freebsd.org/security/advisories/FreeBSD-SA-15:12.openssl.asc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1793
+ OpenSSL Security Advisory [9 Jul 2015]
http://www.openssl.org/news/secadv_20150709.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1793
+ OpenSSL 1.0.2d, 1.0.1p released
http://www.openssl.org/news/openssl-1.0.2-notes.html
http://www.openssl.org/news/openssl-1.0.1-notes.html
+ JVNVU#90834367 Adobe Flash Player に解放済みメモリ使用 (use-after-free) の脆弱性
http://jvn.jp/vu/JVNVU90834367/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5119
+ JVNVU#92689788 Windows の Adobe Type Manager モジュールに特権昇格の脆弱性
http://jvn.jp/vu/JVNVU92689788/
+ OpenSSL Alternative Certificate Chain Validation Flaw Lets Remote Users Forge Certificates
http://www.securitytracker.com/id/1032817
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1793
+ OpenSSL 1.0.2c Alternative chains certificate forgery
http://cxsecurity.com/issue/WLB-2015070040
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1793
JVNDB-2014-002239 Cacti におけるクロスサイトリクエストフォージェリの脆弱性
http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-002239.html
JVNDB-2009-003901 Cacti におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-003901.html
JVNDB-2015-000094 Cacti におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000094.html
チェックしておきたい脆弱性情報<2015.07.10>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/070700065/?ST=security
防衛省関連ホテルへの標的型攻撃は、年金機構への攻撃と同一犯の可能性
http://itpro.nikkeibp.co.jp/atcl/news/15/070902290/?ST=security
NY証券取引所で一時取引停止、原因は「サイバー攻撃ではなく技術的問題」
http://itpro.nikkeibp.co.jp/atcl/news/15/070902284/?ST=security
0 件のコメント:
コメントを投稿