+ Collabtive 3.0 released
http://collabtive.o-dyn.de/
+ UPDATE: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160927-openssl
+ Linux kernel 4.8.2, 4.7.8, 4.4.25 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.2
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.7.8
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.25
+ SA73117 MySQL OpenSSL Multiple Vulnerabilities
https://secunia.com/advisories/73117/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2178
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2179
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2180
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2181
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2182
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6302
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6304
+ SA73030 Apache Struts Convention Plugin Security Bypass Vulnerability
https://secunia.com/advisories/73030/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6795
+ PHP 5.6.27 Released
http://php.net/archive/2016.php#id2016-10-14-1
+ Apache OpenOffice DLL Loading Error Lets Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1037016
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6804
+ Apache OpenOffice Unquoted Search Path on Windows Lets Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1037015
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6803
+ Microsoft SQL Server Unquoted Service Path Privilege Escalation
https://cxsecurity.com/issue/WLB-2016100140
+ PHP 'password_verify()' Function Out-of-Bounds Read Denial of Service Vulnerability
http://www.securityfocus.com/bid/93578
+ PHP 'unserialize()' Function Use After Free Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/93577
+ Linux Kernel CVE-2016-8666 Stack Overflow Denial of Service Vulnerability
http://www.securityfocus.com/bid/93562
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8666
+ Linux Kernel CVE-2016-7042 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/93544
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7042
ハニーポットでIoT機器への攻撃を観測、最大の感染理由はTelnetサービスの稼働
http://itpro.nikkeibp.co.jp/atcl/column/16/101200222/101200001/?ST=security&itp_list_theme
インタビュー&トーク
ランサムウエア被害の広がりでデータだけでなくシステムバックアップの意識も高まる
http://itpro.nikkeibp.co.jp/atcl/interview/14/262522/101600285/?ST=security&itp_list_theme
Infoblox、専任担当を置いて金融機関のDNSセキュリティ市場に注力
http://itpro.nikkeibp.co.jp/atcl/news/16/101402998/?ST=security&itp_list_theme
Cylance Japan、機械学習型マルウエア対策が日本にリサーチ部隊を組織
http://itpro.nikkeibp.co.jp/atcl/news/16/101402996/?ST=security&itp_list_theme
VerizonによるYahoo!買収計画が見直しか、大量データ流出の影響で
http://itpro.nikkeibp.co.jp/atcl/news/16/101402992/?ST=security&itp_list_theme
UPDATE: JVN#70739377 複数製品で使用されている International Components for Unicode (ICU) にサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/jp/JVN70739377/
UPDATE: JVN#85336306 複数製品で使用されている International Components for Unicode (ICU) に解放済みメモリ使用 (use-after-free) の脆弱性
http://jvn.jp/jp/JVN85336306/
0 件のコメント:
コメントを投稿