+ CESA-2015:2019 Low CentOS 6 sssd Security Update
http://lwn.net/Alerts/664023/
+ UPDATE: Cisco AnyConnect Secure Mobility Client Arbitrary File Move Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151008-asmc
+ UPDATE: Multiple Vulnerabilities in ntpd Affecting Cisco Products - October 2015
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-ntp
+ UPDATE: Multiple Vulnerabilities in OpenSSL (June 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150612-openssl
+ UPDATE: Multiple Vulnerabilities in OpenSSL (January 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150310-ssl
+ Cisco IOS Software Virtual PPP Interfaces Security Bypass Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151112-ios1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6365
+ Cisco Videoscape Distribution Suite Service Manager Information Disclosure Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151112-vds
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6364
+ Cisco Aironet 1800 Series Access Point SSHv2 Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151113-aironet
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6367
+ UPDATE: Cisco ASA Software DHCPv6 Relay Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-dhcp1
+ UPDATE: Cisco ASA Software VPN ISAKMP Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-ike
+ UPDATE: Cisco ASA Software DNS Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-dns2
+ UPDATE: Cisco ASA Software DHCPv6 Relay Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150115-asa-dhcp
+ UPDATE: Cisco ASA Software DNS Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-dns1
+ Cisco IOS Software Tunnel Interfaces Security Bypass Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151112-ios2
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6366
+ Cisco FireSight Management Center Web Framework Cross-Site Scripting Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151111-fmc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6363
+ UPDATE: Oracle Security Alert for CVE-2015-4852
http://www.oracle.com/technetwork/topics/security/alert-cve-2015-4852-2763333.html
+ CTX202482 Citrix NetScaler Service Delivery Appliance Multiple Security Updates
http://support.citrix.com/article/CTX202482
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7996
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7997
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7998
+ CTX202583 Citrix XenServer Security Update for CVE-2015-5307 and CVE-2015-8104
http://support.citrix.com/article/CTX202583
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5307
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8104
+ libpng 1.6.19 released
http://www.libpng.org/pub/png/src/libpng-1.6.19-README.txt
+ VU#576313 Apache Commons Collections Java library insecurely deserializes data
http://www.kb.cert.org/vuls/id/576313
+ Google Chrome for Android JavaScript Processing Flaw Lets Remote Users Execute Arbitrary Code
http://www.securitytracker.com/id/1034155
+ OpenBSD net-snmp Information Disclosure
https://cxsecurity.com/issue/WLB-2015110106
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8100
+ Microsoft C++11 'regex_match' function stack exhaustion
https://cxsecurity.com/issue/WLB-2015110105
PostgreSQL 9.5 Beta 2 Released
http://www.postgresql.org/about/news/1625/
Devart Released New SSIS Components for PostgreSQL
http://www.postgresql.org/about/news/1624/
JVNDB-2015-000180 pWebManager における OS コマンドインジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000180.html
JVNDB-2015-000177 OS X におけるスリープモードからの復帰時の認証に関する問題
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000177.html
実践、セキュリティ事故対応
[第1回]何よりまずはCSIRTを立ち上げる セキュリティ人材不足にも先手を
http://itpro.nikkeibp.co.jp/atcl/column/15/110900259/110900001/?ST=security
【マイナンバーのセキュリティを急げ!】
ディスカッション1 地方創生でCIOに何ができるか
http://itpro.nikkeibp.co.jp/atcl/column/15/102800253/102800001/?ST=security
チェックしておきたい脆弱性情報<2015.11.16>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/110700086/?ST=security
国家組織による執拗なサイバー攻撃にも対応、ファイア・アイがツールの新版
http://itpro.nikkeibp.co.jp/atcl/news/15/111303727/?ST=security
チェックしておきたい脆弱性情報<2015.11.13>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/110700085/?ST=security
0 件のコメント:
コメントを投稿