:: IT Security Neophyte Investigator's MEMO ::: 20日水曜日、仏滅

2016年4月20日水曜日

20日水曜日、仏滅

+ RHSA-2016:0561 Low: Red Hat Enterprise Linux 5 One-Year Retirement Notice
https://rhn.redhat.com/errata/RHSA-2016-0561.html

+ Cisco IOS and Cisco IOS XE ntp Subsystem Unauthorized Access Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160419-ios
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1384

+ Oracle Critical Patch Update Advisory - April 2016
http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3454
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0681
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0677
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0690
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0691
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3253
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0638
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7182
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3455
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7547
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3576
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0479
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0675
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0700
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3416
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0468
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0696
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0671
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0688
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7501
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3466
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3439
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3437
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3436
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3447
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0697
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3434
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3456
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3438
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3420
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3431
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3428
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0679
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3421
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0407
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3460
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0408
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0685
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3417
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3442
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0698
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3423
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0683
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0680
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3435
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3457
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1793
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0673
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0674
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2532
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0684
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0469
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3429
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0699
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0672
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3463
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3464
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3443
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0687
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0686
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3427
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3449
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0695
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3425
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3422
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3426
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0693
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7547
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3441
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4786
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1789
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7236
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1793
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3238
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0669
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3462
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3465
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4461
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0623
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0676
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4000
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3419
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0678
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0705
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0639
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3194
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3461
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0640
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2047
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0644
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0646
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0652
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0647
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0653
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0654
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0656
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0657
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0658
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0651
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0659
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0648
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0649
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0662
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0650
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0665
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0666
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0641
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0642
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0655
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0661
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0663
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0667
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0668
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0643
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0682
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0689
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0692
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0694
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3418

+ Oracle Solaris Third Party Bulletin - April 2016
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0705
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0799
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0798
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3415
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5602
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4752
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2523
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1283
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9766
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3885
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6720
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0702

+ Oracle Linux Bulletin - April 2016
http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5370
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5370
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5370
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-5325
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2315
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2324
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1521
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1522
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1523
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0636
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0636
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2118
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2118
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2118
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1526
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2112
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2114
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2112
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2112
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7810
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0774
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0774
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8327
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8560
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0546
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1978
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1979
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2047
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1908
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3115
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4879
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5600
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2110
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2111
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2113
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2110
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2111
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2110
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2111
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8631
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4802
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4815
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4826
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4830
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4836
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4858
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4861
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4870
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4913
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0505
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0596
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0597
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0616
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0598
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0600
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0606
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0608
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8629
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8630
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0609
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4819

+ SA70087 Symantec Messaging Gateway AD Password Disclosure Vulnerability
https://secunia.com/advisories/70087/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2203

+ SA70079 Xen x86 Shadow Pagetables Superpage Mapping Vulnerability
https://secunia.com/advisories/70079/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3960

+ Java Platform, Standard Edition 8 Update 91 (Java SE 8u91) and 8 Update 92 (Java SE 8u92) are Now Available
http://www.oracle.com/technetwork/java/javase/8u92-relnotes-2949471.html
http://www.oracle.com/technetwork/java/javase/8u91-relnotes-2949462.html

+ Beta 2 (pre-release 5) of OpenSSL 1.1.0 is now available: please download and test it
https://www.openssl.org/

Postgres-XL 9.5 R1 Released!
http://www.postgresql.org/about/news/1662/

JVNDB-2016-000050 スマートフォンアプリ「Photopt」における SSL サーバ証明書の検証不備の脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000050.html

図解で手口を学ぶ「脆弱性」セキュリティ
図解でわかるHeartBleed
http://itpro.nikkeibp.co.jp/atcl/column/16/041400084/041400003/?ST=security

サイバークライムアナリストが明かす標的型攻撃の実像
手法再現で理解する、標的型攻撃を受けた端末は一体何をされるのか（1）
http://itpro.nikkeibp.co.jp/atcl/column/16/041300083/041500002/?ST=security

アイキューブドシステムズ、MDMのオプションで電子証明書を販売
http://itpro.nikkeibp.co.jp/atcl/news/16/041901147/?ST=security

ウェブルートが脅威レポートを発表、「もはや自動検出では対応できない」
http://itpro.nikkeibp.co.jp/atcl/news/16/041901144/?ST=security

:: IT Security Neophyte Investigator's MEMO ::

2016年4月20日水曜日

20日水曜日、仏滅

0 件のコメント:

コメントを投稿

2016年4月20日水曜日

20日 水曜日、仏滅

0 件のコメント:

コメントを投稿

20日水曜日、仏滅