+ Samba 4.4.5, 4.3.11 and 4.2.14 Security Releases Available for Download
https://www.samba.org/samba/history/samba-4.4.5.html
https://www.samba.org/samba/history/samba-4.3.11.html
https://www.samba.org/samba/history/samba-4.2.14.html
+ Client side SMB2/3 required signing can be downgraded
https://www.samba.org/samba/security/CVE-2016-2119.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2119
+ SA71453 Fujitsu Multiple Interstage Products Apache Commons Denial of Service Vulnerability
https://secunia.com/advisories/71453/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3092
+ SA71483 Google Nexus Multiple Vulnerabilities
https://secunia.com/advisories/71483/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2108
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2505
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2506
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2507
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2508
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3741
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3742
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3743
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3744
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3753
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3754
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3755
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3756
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3818
+ SA71388 Samba SMB2/3 Client Connection Signing Security Bypass Vulnerability
https://secunia.com/advisories/71388/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2119
+ UPDATE: JVN#65044642 Apache Struts 1 における入力値検証機能に関する脆弱性
http://jvn.jp/jp/JVN65044642/index.html
+ PowerDNS AXFR/IXFR Response Processing Bug Lets Remote DNS Servers Cause the Target DNS Service to Crash
http://www.securitytracker.com/id/1036242
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6172
+ BIND AXFR/IXFR Response Processing Flaw Lets Remote DNS Servers to Cause the Target DNS Service to Crash
http://www.securitytracker.com/id/1036241
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6170
+ PuTTY DLL Loading Error Lets Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1036236
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6167
+ GNU Wget Arbitrary File Upload / Potential Remote Code Execution
https://cxsecurity.com/issue/WLB-2016070042
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4971
UPDATE: JVN#89379547 Apache Commons FileUpload におけるサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN89379547/
UPDATE: JVN#55545372 EC-CUBE 用プラグイン「管理画面表示制御プラグイン」における SQL インジェクションの脆弱性
http://jvn.jp/jp/JVN55545372/
Suicaが鍵になるスマートロック「Akerun Pro」を発表
http://itpro.nikkeibp.co.jp/atcl/news/16/070702030/?ST=security
キヤノンITソリューションズ、メール無害化サービス評価版の無償提供を開始
http://itpro.nikkeibp.co.jp/atcl/news/16/070602006/?ST=security
0 件のコメント:
コメントを投稿