2015年12月14日月曜日

14日 月曜日、友引

+ About the security content of Security Update 2015-006 Yosemite
https://support.apple.com/ja-jp/HT205653

+ About the security content of iTunes 12.3.2
https://support.apple.com/ja-jp/HT205636
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7048
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7095
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7096
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7097
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7099
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7100
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7101
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7103
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7104
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7050

+ Cisco Integrated Management Controller Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151211-imc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6399

+ UPDATE: Multiple Vulnerabilities in OpenSSL (December 2015) Affecting Cisco Products
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151204-openssl

+ Cisco Unified Communications Domain Manager Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151211-ucdm
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6422

+ Cisco FireSIGHT Management Center GET Request Information Disclosure Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151211-fmc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6419

+ Apache Tomcat 7.0.67 Released
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html

+ Dovecot 2.2.21 released
http://www.dovecot.org/list/dovecot-news/2015-December/000306.html

+ JVNVU#97526033 複数の Apple 製品の脆弱性に対するアップデート
http://jvn.jp/vu/JVNVU97526033/index.html

+ Microsoft IE 11 MSHTML!CObjectElement Use-After-Free
https://cxsecurity.com/issue/WLB-2015120122
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-6152

+ Google Chrome DLL Hijack
https://cxsecurity.com/issue/WLB-2015120120

JVNDB-2015-000197 Zend Framework における SQL インジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-000197.html

FinTechの旗手たち
「FinTech革命で銀行は死なず」、三菱UFJフィナンシャル・グループの柏木氏に聞く
http://itpro.nikkeibp.co.jp/atcl/column/15/121000283/121000002/?ST=security

JVNVU#90501820 ZyXEL NBG-418N に複数の脆弱性
http://jvn.jp/vu/JVNVU90501820/

JVNVU#99863047 Amped Wireless R10000 に複数の脆弱性
http://jvn.jp/vu/JVNVU99863047/

JVNVU#93831077 Buffalo WZR-600DHP2 に不十分なランダム値を使用している問題
http://jvn.jp/vu/JVNVU93831077/

JVNVU#95026985 Netgear WNR1000v3 に不十分なランダム値を使用している問題
http://jvn.jp/vu/JVNVU95026985/

JVNVU#91495836 ReadyNet WRT300N-DD に複数の脆弱性
http://jvn.jp/vu/JVNVU91495836/

0 件のコメント:

コメントを投稿