+ RHSA-2015:2594 Moderate: libpng security update
https://rhn.redhat.com/errata/RHSA-2015-2594.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7981
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8126
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472
+ RHSA-2015:2595 Moderate: libpng12 security update
https://rhn.redhat.com/errata/RHSA-2015-2595.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7981
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8126
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472
+ RHSA-2015:2596 Moderate: libpng security update
https://rhn.redhat.com/errata/RHSA-2015-2596.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8126
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8472
+ nginx 1.9.9 released
http://nginx.org/
+ UPDATE: APSB15-32 Security updates available for Adobe Flash Player
https://helpx.adobe.com/security/products/flash-player/apsb15-32.html
+ CESA-2015:2594 Moderate CentOS 6 libpng Security Update
http://lwn.net/Alerts/667298/
+ VMware Workstation Player 12.1.0released
http://pubs.vmware.com/Release_Notes/en/workstation/12player/player-121-release-notes.html
+ UPDATE: Cisco UCS Central Software Server-Side Request Forgery Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151201-ucs1
+ UPDATE: Cisco Unified Computing System Central Software Cross-Site Scripting Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151201-ucs
+ Cisco Unity Connection Cross-Site Request Forgery Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-uc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6408
+ Cisco Prime Collaboration Assurance Default Account Credential Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-pca
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6389
+ Vulnerability in Java Deserialization Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-java-deserialization
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852
+ UPDATE: Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl
+ Cisco TelePresence Video Communication Server Expressway Web Framework Code Unauthorized Access Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-tvc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6413
+ Cisco FirePOWER Management Center Software Version Information Disclosure Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-fmc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6411
+ Multiple Cisco IP Phones Firmware Image Upload Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-ipp
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6403
+ Cisco Unified Communications Manager Mobile and Remote Access Services Identity Attack Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-ucm
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6410
+ Linux kernel 4.3.1, 4.2.7, 4.1.14, 3.14.58, 3.10.94 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.3.1
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.2.7
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.14
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.58
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.94
+ Adobe Flash Player の脆弱性 (APSB15-32) に関する注意喚起
http://www.jpcert.or.jp/at/2015/at150042.html
+ 2015年12月 Microsoft セキュリティ情報 (緊急 8件含) に関する注意喚起
http://www.jpcert.or.jp/at/2015/at150041.html
+ Multiple Apple Products libc File System Buffer Overflow Patch
https://cxsecurity.com/issue/WLB-2015120089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7039
+ Wireshark PCAPNG File CVE-2015-7830 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/78723
JVNDB-2015-000195 WL-330NUL におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000195.html
JVNDB-2015-000194 WL-330NUL におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000194.html
JVNDB-2015-000193 WL-330NUL において任意のコマンドを実行される脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000193.html
JVNDB-2015-000192 WL-330NUL における情報管理不備の脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000192.html
記者の眼
ネットワーク機器だって守ってあげたい
http://itpro.nikkeibp.co.jp/atcl/watcher/14/334361/120700439/?ST=security
統計&調査
[データは語る]2015年度の法人向けネットワークセキュリティサービス/製品の国内市場は4232億円―富士キメラ総研
http://itpro.nikkeibp.co.jp/atcl/news/14/110601779/120900430/?ST=security
日本年金機構、年金情報流出事案を受けた「業務改善計画」を公表
http://itpro.nikkeibp.co.jp/atcl/news/15/120904028/?ST=security
復元できなかったら返品できるファイル復元ソフト、ソースネクストが発売
http://itpro.nikkeibp.co.jp/atcl/news/15/120904022/?ST=security
金融機関が知っておくべきマイナンバーの注意点とは、政府担当者が講演
http://itpro.nikkeibp.co.jp/atcl/news/15/120904018/?ST=security
JVNVU#99135508 Uptime Infrastructure Monitor (旧称 up.time) の Windows 向けエージェントに複数の脆弱性
http://jvn.jp/vu/JVNVU99135508/index.html
JVNVU#91109359 TaxiHail に複数の脆弱性
http://jvn.jp/vu/JVNVU91109359/index.html
0 件のコメント:
コメントを投稿