2016年5月19日木曜日

19日 木曜日、仏滅

+ CESA-2016:1086 Moderate CentOS 7 libndp Security Update
http://lwn.net/Alerts/687828/

+ UPDATE: Cisco Unified Computing System Central Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160517-ucs

+ Cisco Web Security Appliance HTTP POST Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160518-wsa1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1380

+ Cisco Web Security Appliance Cached Range Request Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160518-wsa2
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1381

+ Cisco Web Security Appliance Connection Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160518-wsa4
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1383

+ Cisco Web Security Appliance HTTP Length Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160518-wsa3
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1382

+ UPDATE: Cisco ASA Software IKEv1 and IKEv2 Buffer Overflow Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160210-asa-ike

+ SA70594 Linux kernel KVM MTRR Vulnerability
https://secunia.com/advisories/70594/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3713

+ cURL mbedTLS/PolarSSL Function Usage Error Lets Remote Users Bypass Certificate Validation
http://www.securitytracker.com/id/1035907
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3739

+ 7-Zip Code Execution
https://cxsecurity.com/issue/WLB-2016050086

+ Microsoft Visual C++ DLL Hijacking
https://cxsecurity.com/issue/WLB-2016050084

Call for Papers - PostgreSQL Conference Europe 2016
http://www.postgresql.org/about/news/1670/

APACHE JMETER 3.0 RELEASED
http://mail-archives.us.apache.org/mod_mbox/www-announce/201605.mbox/%3c573B7909.7040901@apache.org%3e

JVNDB-2016-000065 スマートフォンアプリ「百五銀行」における SSL サーバ証明書の検証不備の脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000065.html

JVNVU#90579091 Chef Manage に Cookie のデシリアライズ処理に関する脆弱性
http://jvn.jp/vu/JVNVU90579091/index.html

チェックしておきたい脆弱性情報<2016.05.19>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/051700112/?ST=security

News & Trend
東京都足立区がハイパーコンバージド採用、サーバー集約で運用負荷削減
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/051800531/?ST=security

「チャットワーク」がクラウドのセキュリティ認証ISO27018取得、国内2例目
http://itpro.nikkeibp.co.jp/atcl/news/16/051801416/?ST=security

0 件のコメント:

コメントを投稿