2016年8月12日金曜日

12日 金曜日、仏滅

+ RHSA-2016:1609 Moderate: php security update
https://rhn.redhat.com/errata/RHSA-2016-1609.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5385

+ RHSA-2016:1606 Moderate: qemu-kvm security update
https://rhn.redhat.com/errata/RHSA-2016-1606.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5126
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5403

+ RHSA-2016:1613 Moderate: php security and bug fix update
https://rhn.redhat.com/errata/RHSA-2016-1613.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5385

+ RHSA-2016:1602 Important: mariadb security update
https://rhn.redhat.com/errata/RHSA-2016-1602.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0640
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0641
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0643
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0644
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0646
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0647
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0648
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0649
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0650
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0666
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3452
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3477
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3521
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3615
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5440
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5444

+ CESA-2016:1585 Moderate CentOS 6 qemu-kvm Security Update
http://lwn.net/Alerts/696907/

+ UPDATE: Cisco IOS XR Software for Cisco ASR 9001 Aggregation Services Routers Fragmented Packet Denial of Service Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160810-iosxr

+ Cisco IP Phone 8800 Series Cross-Site Scripting Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160810-ip-phone-8800
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1476

+ Cisco Connected Streaming Analytics Unauthorized Access Vulnerability
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160810-csa
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1477

+ VU#332115 D-Link routers contain buffer overflow vulnerability
https://www.kb.cert.org/vuls/id/332115

+ Linux kernel 4.6.6, 4.4.17, 3.14.75 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.6.6
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.17
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.14.75

+ Microsoft Office Word 2007-2016 Out-of-Bounds Read Remote Code Execution
https://cxsecurity.com/issue/WLB-2016080104
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3313

+ LINE Instant Messenger Pre-June 2016 SSRF / Authorization Bypass
https://cxsecurity.com/issue/WLB-2016080099

+ Microsoft Windows 7 Group Policy Privilege Escalation
https://cxsecurity.com/issue/WLB-2016080098
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3223

SSLはもう古い TLSがおもしろい
TLS通信はどういう手順で行われるの?
http://itpro.nikkeibp.co.jp/atcl/column/16/072100153/072100004/?ST=security

JTBや札幌通運、情報漏洩事案が相次ぐ旅行業界を観光庁がテコ入れへ
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/081000608/?ST=security

佐賀県立学校不正アクセス事件、個人情報1万4355人分、成績808人分の流出が確定
http://itpro.nikkeibp.co.jp/atcl/news/16/081002397/?ST=security

0 件のコメント:

コメントを投稿