2016年6月24日金曜日
24日 金曜日、赤口
+ RHSA-2016:1292 Important: libxml2 security update
https://rhn.redhat.com/errata/RHSA-2016-1292.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1762
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1833
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1834
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1835
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1836
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1837
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1838
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1839
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1840
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3627
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3705
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4447
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4448
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4449
+ RHSA-2016:1293 Important: setroubleshoot and setroubleshoot-plugins security update
https://rhn.redhat.com/errata/RHSA-2016-1293.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4444
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4446
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4989
+ RHSA-2016:1296 Moderate: ocaml security update
https://rhn.redhat.com/errata/RHSA-2016-1296.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8869
+ RHSA-2016:1277 Important: kernel security and bug fix update
https://rhn.redhat.com/errata/RHSA-2016-1277.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8767
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4565
+ phpMyAdmin 4.0.10.16, 4.4.15.7, 4.6.3 are released
https://www.phpmyadmin.net/news/2016/6/23/phpmyadmin-401016-44157-and-463-are-released/
+ PMASA-2016-17 BBCode injection vulnerability
https://www.phpmyadmin.net/security/PMASA-2016-17/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5701
+ PMASA-2016-18 Cookie attribute injection attack
https://www.phpmyadmin.net/security/PMASA-2016-18/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5702
+ PMASA-2016-19 SQL injection attack
https://www.phpmyadmin.net/security/PMASA-2016-19/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5703
+ PMASA-2016-20 XSS on table structure page
https://www.phpmyadmin.net/security/PMASA-2016-20/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5704
+ PMASA-2016-21 Multiple XSS vulnerabilities
https://www.phpmyadmin.net/security/PMASA-2016-21/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5705
+ PMASA-2016-22 DOS attack
https://www.phpmyadmin.net/security/PMASA-2016-22/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5706
+ PMASA-2016-23 Multiple full path disclosure vulnerabilities
https://www.phpmyadmin.net/security/PMASA-2016-23/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5730
+ PMASA-2016-24 XSS through FPD
https://www.phpmyadmin.net/security/PMASA-2016-24/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5731
+ PMASA-2016-25 XSS in partition range functionality
https://www.phpmyadmin.net/security/PMASA-2016-25/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5732
+ PMASA-2016-26 Multiple XSS vulnerabilities
https://www.phpmyadmin.net/security/PMASA-2016-26/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5733
+ PMASA-2016-27 Unsafe handling of preg_replace parameters
https://www.phpmyadmin.net/security/PMASA-2016-27/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5734
+ PMASA-2016-28 Referrer leak in transformations
https://www.phpmyadmin.net/security/PMASA-2016-28/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5739
+ UPDATE: Cisco IOS and Cisco IOS XE ntp Subsystem Unauthorized Access Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160419-ios
+ Linux kernel 4.1.27, 3.18.36 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.27
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.36
+ PHP 7.0.8, 5.6.23, 5.5.37 released
http://www.php.net/ChangeLog-7.php#7.0.8
http://www.php.net/ChangeLog-5.php#5.6.23
http://www.php.net/ChangeLog-5.php#5.5.37
+ UPDATE: JVN#45093481 Apache Struts における複数の脆弱性
http://jvn.jp/jp/JVN45093481/index.html
+ UPDATE: JVN#07710476 Apache Struts において任意のコードを実行可能な脆弱性
http://jvn.jp/jp/JVN07710476/index.html
VU#302544 Alertus Desktop Notification for OS X sets insecure permissions for configuration and other files
https://www.kb.cert.org/vuls/id/302544
記者の眼
JTBの情報漏洩事故報告は遅すぎだ! ではいつだったら良かったのか?
http://itpro.nikkeibp.co.jp/atcl/watcher/14/334361/062100600/?ST=security
登録:
コメントの投稿 (Atom)
0 件のコメント:
コメントを投稿