+ Apache OpenOffice 4.1.3 is released!
https://cwiki.apache.org/confluence/display/OOOUSERS/AOO+4.1.3+Release+Notes
+ CESA-2016:2047 Important CentOS 7 kernel Security Update
http://lwn.net/Alerts/703299/
+ CESA-2016:2046 Important CentOS 7 tomcat Security Update
http://lwn.net/Alerts/703300/
+ CESA-2016:2045 Important CentOS 6 tomcat6 Security Update
http://lwn.net/Alerts/703301/
+ Memory Corruption Vulnerability (Impress Presentations)
http://www.openoffice.org/security/cves/CVE-2016-1513.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1513
+ Windows Installer Can Enable Privileged Trojan Execution
http://www.openoffice.org/security/cves/CVE-2016-6803.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6803
+ Windows Installer Execution of Arbitrary Code with Elevated Privileges
http://www.openoffice.org/security/cves/CVE-2016-6804.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6804
+ Cisco Wide Area Application Services Central Manager Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-waas
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6437
+ Cisco Unified Communications Manager iFrame Data Clickjacking Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-ucm
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6440
+ Cisco Prime Infrastructure and Evolved Programmable Network Manager Database Interface SQL Injection Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-prime
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6443
+ Cisco Meeting Server Client Authentication Bypass Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-msc
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6445
+ Cisco Finesse Cross-Site Request Forgery Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-fin
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6442
+ Cisco cBR-8 Converged Broadband Router vty Integrity Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-cbr-8
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6438
+ UPDATE: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160927-openssl
+ Linux kernel 4.1.34, 3.18.43 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.34
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.43
+ MySQL 5.7.16, 5.6.34, 5.5.53 released
http://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-16.html
http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-34.html
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-53.html
+ Linux kernel 4.7.7/4.8.1 broadcom Wifi Driver brcmf_cfg80211_start_ap Buffer Overflow
https://cxsecurity.com/issue/WLB-2016100108
+ OpenSSL 1.1.0b double-free and invalid free vulnerabilities in X509 parsing
https://cxsecurity.com/issue/WLB-2016100106
+ Apache Tomcat JK ISAPI Connector 1.2.41 Buffer Overflow
https://cxsecurity.com/issue/WLB-2016100102
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6808
+ Linux Kernel CVE-2016-7039 Stack Overflow Denial of Service Vulnerability
http://www.securityfocus.com/bid/93476
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7039
ALSI、クラウド型セキュリティゲートウエイを発表、4つの対策を多層的に構成
http://itpro.nikkeibp.co.jp/atcl/news/16/101202974/?ST=security&itp_list_theme
シマンテック、個人向けウイルス対策ソフトの新版で非シグネチャー機能を強化
http://itpro.nikkeibp.co.jp/atcl/news/16/101202956/?ST=security&itp_list_theme
JVNVU#95749024 MatrixSSL に複数の脆弱性
http://jvn.jp/vu/JVNVU95749024/
0 件のコメント:
コメントを投稿