+ UPDATE: APSB16-33 Security Updates Available for Adobe Acrobat and Reader
https://helpx.adobe.com/security/products/acrobat/apsb16-33.html
+ UPDATE: Cisco WebEx Meetings Player Arbitrary Code Execution Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-meetings-player
+ VU#243144 Linux kernel memory subsystem copy on write mechanism contains a race condition vulnerability
https://www.kb.cert.org/vuls/id/243144
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5195
+ Linux kernel 4.8.4, 4.7.10, 4.4.27, 3.16.38, 3.12.66, 3.10.104, 3.2.83 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.4
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.7.10
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.27
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.38
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.12.66
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.104
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.83
+ SA73071 Linux Kernel GRO Recursion Denial of Service Vulnerability
https://secunia.com/advisories/73071/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8666
+ Apache Struts 2.5.5 released
http://struts.apache.org/announce.html#a20161021
+ libpng 1.6.26 released
http://www.libpng.org/pub/png/src/libpng-1.6.26-README.txt
+ JVNVU#95603997 ISC BIND 9 にサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/vu/JVNVU95603997/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2848
+ Linux Kernel Copy-on-Write Memory Management Race Condition Lets Local Users Obtain Elevated Privileges
http://www.securitytracker.com/id/1037078
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5195
Mozilla Firefox Use-After Free Memory Error in nsTArray_base::SwapArrayElements Lets Remote Users Execute Arbitrary Code and Web Cache Bug Lets Remote Users View Potentially Sensitive Information
http://www.securitytracker.com/id/1037077
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5287
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5288
+ BIND DNS Packet Options Processing Flaw Lets Remote Users Cause the Target Service to Crash
http://www.securitytracker.com/id/1037073
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2848
+ TrendMicro InterScan Web Security Virtual Appliance Shellshock
https://cxsecurity.com/issue/WLB-2016100215
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6271
+ Apple macOS 10.12/iOS 10 SecureTransport SSL handshake OCSP MiTM and DoS
https://cxsecurity.com/issue/WLB-2016100213
辻伸弘の裏読みセキュリティ事件簿
恐怖をあおる新種ランサムウエア チャートを使って慌てず対応
http://itpro.nikkeibp.co.jp/atcl/column/16/012900025/090200016/?ST=security&itp_list_theme
DNSサービスの「Dyn」に大規模DDoS攻撃、Twitterなどが影響受けダウン
http://itpro.nikkeibp.co.jp/atcl/news/16/102203079/?ST=security&itp_list_theme
ITpro EXPO 2016速報
サイバー攻撃の避難訓練、中心にはCSIRT――日経コンピュータ副編集長が語る
http://itpro.nikkeibp.co.jp/atcl/news/16/101803031/102100129/?ST=security&itp_list_theme
JVNVU#93774715 Synology 製の複数の NAS サーバに機器共通の認証情報が設定されている問題
http://jvn.jp/vu/JVNVU93774715/
JVNVU#99656851 Green Packet DX-350 に機器共通の認証情報が設定されている問題
http://jvn.jp/vu/JVNVU99656851/
JVNVU#91832696 Intellian Satellite TV および Satellite Communications に機器共通の認証情報が設定されている問題
http://jvn.jp/vu/JVNVU91832696/
JVNVU#97115817 NUUO Titan NVR NT-4040 に機器共通の認証情報が設定されている問題
http://jvn.jp/vu/JVNVU97115817/
0 件のコメント:
コメントを投稿