2016年6月23日木曜日

23日 木曜日、大安

+ CESA-2016:1267 Important CentOS 6 setroubleshoot Security Update
http://lwn.net/Alerts/692357/

+ CESA-2016:1267 Important CentOS 6 setroubleshoot-plugins Security Update
http://lwn.net/Alerts/692356/

+ SA71292 Apache Tomcat Commons Fileupload Denial of Service Vulnerability
https://secunia.com/advisories/71292/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3092

+ SA71273 GIMP Multiple Vulnerabilities
https://secunia.com/advisories/71273/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4994

+ UPDATE: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: May 2016
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160504-openssl

+ UPDATE: Cisco WebEx Meeting Center Improved Logging Capabilities
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160526-wmc

+ UPDATE: Cisco Prime Collaboration Deployment SQL Injection Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160621-pcd

+ Cisco Email Security Appliance .zip File Scanning Security Bypass Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160622-esa
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1438

+ Cisco Unified Contact Center Enterprise Web-Based Management Interface Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160622-ucce
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1439

+ JVNVU#92564194 Apple AirPort Base Station にメモリ破損の脆弱性
http://jvn.jp/vu/JVNVU92564194/index.html

+ Linux ecryptfs and /proc/$pid/environ Privilege Escalation
https://cxsecurity.com/issue/WLB-2016060173
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1583

JVNDB-2016-000109 CG-WLR300GNV シリーズにおいて認証試行回数が制限されていない脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000109.html

JVNDB-2016-000108 CG-WLBARAGM におけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000108.html

JVNDB-2016-000107 CG-WLBARGL におけるコマンドインジェクションの脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000107.html

JVNVU#97008560 mDNSResponder に複数の脆弱性
http://jvn.jp/vu/JVNVU97008560/index.html

記者の眼
JTBにはがっかりした、社長の謝罪会見で記者が感じた違和感
http://itpro.nikkeibp.co.jp/atcl/watcher/14/334361/062000597/?ST=security

CSIRTメモ
チェックしておきたい脆弱性情報<2016.6.23>
http://itpro.nikkeibp.co.jp/atcl/column/14/268561/062000117/?ST=security

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)