+ make 4.2.1 released
http://ftp.gnu.org/pub/gnu/make/?C=M;O=D
+ UPDATE: Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: June 2016
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160603-ntpd
+ UPDATE: Cisco Products IPv6 Neighbor Discovery Crafted Packet Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160525-ipv6
+ UPDATE: Oracle Solaris Third Party Bulletin - April 2016
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
+ SA71057 GNU wget HTTP Server Redirect Security Bypass Vulnerability
https://secunia.com/advisories/71057/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4971
+ GNU wget 1.18 released
http://lists.gnu.org/archive/html/info-gnu/2016-06/msg00004.html
+ VMSA-2016-0008 VMware vRealize Log Insight addresses important and moderate security issues.
http://www.vmware.com/security/advisories/VMSA-2016-0008.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2081
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2082
+ VMSA-2016-0007 VMware NSX and vCNS product updates address a critical information disclosure vulnerability
http://www.vmware.com/security/advisories/VMSA-2016-0007.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2079
+ libpng 1.6.23 released
http://www.libpng.org/pub/png/src/libpng-1.6.23-README.txt
+ UPDATE: JVN#03188560 Apache Struts 1 におけるメモリ上にあるコンポーネントを操作可能な脆弱性
http://jvn.jp/jp/JVN03188560/index.html
+ MacOSX 10.11.4 UAF Racing getProperty on IOHDIXController
https://cxsecurity.com/issue/WLB-2016060074
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1807
+ MacOSX 10.11.4 Stack Buffer Overflow in GeForce GPU Driver
https://cxsecurity.com/issue/WLB-2016060073
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1861
+ MacOSX 10.11.4 Use-After-Free Due to Bad Locking in IOAcceleratorFamily2
https://cxsecurity.com/issue/WLB-2016060072
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1819
+ MacOSX 10.11.4 Exploitable NULL Pointer Dereference in IOAudioEngine
https://cxsecurity.com/issue/WLB-2016060071
+ MacOSX 10.11.4 OOB Read of Object Pointer Due to Insufficient Checks
https://cxsecurity.com/issue/WLB-2016060070
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1823
+ MacOSX 10.11.4 Exploitable NULL Pointer Dereference in AppleMuxControl.kext
https://cxsecurity.com/issue/WLB-2016060069
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1794
+ MacOSX 10.11.4 Exploitable NULL Pointer Dereference in AppleGraphicsDeviceContro
https://cxsecurity.com/issue/WLB-2016060068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1793
+ MacOSX 10.11.4 Exploitable NULL Dereference in IOAccelSharedUserClient2
https://cxsecurity.com/issue/WLB-2016060067
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1813
+ MacOSX 10.11.4 Exploitable NULL Dereference in CoreCaptureResponder
https://cxsecurity.com/issue/WLB-2016060066
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1803
+ MacOSX 10.11.4 Exploitable NULL Pointer Dereference in nvCommandQueue
https://cxsecurity.com/issue/WLB-2016060065
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1846
+ Apache Struts REST Plugin With Dynamic Method Invocation Remote Code Execution
https://cxsecurity.com/issue/WLB-2016060061
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3087
+ OpenSSL undefined pointer arithmetic
https://cxsecurity.com/issue/WLB-2016060056
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2177
+ JPEG Standard DoS CPU Resource Exhaustion
https://cxsecurity.com/issue/WLB-2016060055
VU#778696 Netgear D6000 and D3600 contain hard-coded cryptographic keys and are vulnerable to authentication bypass
https://www.kb.cert.org/vuls/id/778696
乗っ取り防止にはパスワード管理
結局パスワード管理アプリに行き着くのはなぜか
http://itpro.nikkeibp.co.jp/atcl/column/16/060800125/060900001/?ST=security
0 件のコメント:
コメントを投稿