2015年8月26日水曜日

26日 水曜日、先勝

+ RHSA-2015:1682 Important: thunderbird security update
https://rhn.redhat.com/errata/RHSA-2015-1682.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4473
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4487
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4488
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4489
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4491

+ CESA-2015:1668 Moderate CentOS 6 httpd Security Update
http://lwn.net/Alerts/655498/

+ CESA-2015:1664 Moderate CentOS 5 nss Security Update
http://lwn.net/Alerts/655499/

+ VMware Workstation 12 Player released
http://pubs.vmware.com/Release_Notes/en/workstation/12player/player-12-release-notes.html?__utma=207178772.972799472.1434500858.1440460169.1440546845.45&__utmb=207178772.1.10.1440546845&__utmc=207178772&__utmx=-&__utmz=207178772.1434500858.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none)&__utmv=-&__utmk=104068227

+ UPDATE: OpenSSL Alternative Chains Certificate Forgery Vulnerability (July 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150710-openssl

+ Apache Tomcat 8.0.26 Released
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.26_(markt)

+ FreeBSD-SA-15:22.openssh OpenSSH multiple vulnerabilities
https://www.freebsd.org/security/advisories/FreeBSD-SA-15:22.openssh.asc

+ FreeBSD-SA-15:21.amd64 Local privilege escalation in IRET handler
https://www.freebsd.org/security/advisories/FreeBSD-SA-15:21.amd64.asc

+ OpenSSH Logic Error Lets Remote Authenticated Users Bypass PermitRootLogin Security Restrictions on the Target System
http://www.securitytracker.com/id/1033361

+ Dell SonicWall NetExtender 7.5.215 Privilege Escalation
http://cxsecurity.com/issue/WLB-2015080142
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4173

+ Google Chrome 44.0.2403.157 XSS Filter Bypass
http://cxsecurity.com/issue/WLB-2015080141

強力・安全・忘れない、無敵のパスワード
[管理編]忘れず、危険の少ない管理方法を考える
http://itpro.nikkeibp.co.jp/atcl/column/15/081900194/081900003/?ST=security

マイナンバー前夜、自治体を襲うサイバー攻撃
[1]長野県上田市を襲った標的型攻撃メール、住基ネット強制遮断の憂き目に
http://itpro.nikkeibp.co.jp/atcl/column/15/082000199/082000001/?ST=security

ラッコの眼 ~サイバーセキュリティ最前線~
「標的型攻撃 対策指南書」を読み解く[1] 対策強化は日本を弱くする?
http://itpro.nikkeibp.co.jp/atcl/column/15/071200172/082000003/?ST=security

VU#950576 DSL routers contain hard-coded "XXXXairocon" credentials
http://www.kb.cert.org/vuls/id/950576

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)