:: IT Security Neophyte Investigator's MEMO ::: 16日水曜日、友引

2016年11月16日水曜日

16日水曜日、友引

+ RHSA-2016:2765 Moderate: 389-ds-base security, bug fix, and enhancement update
https://rhn.redhat.com/errata/RHSA-2016-2765.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4992
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5405
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5416

+ RHSA-2016:2766 Important: kernel security and bug fix update
https://rhn.redhat.com/errata/RHSA-2016-2766.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1583
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2143

+ Mozilla Firefox 50.0 released
https://www.mozilla.org/en-US/firefox/50.0/releasenotes/

+ MFSA-2016-89 Security vulnerabilities fixed in Firefox 50
https://www.mozilla.org/en-US/security/advisories/mfsa2016-89/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5296
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5292
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5293
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5294
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5297
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9064
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9065
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9066
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9067
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9072
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9075
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9077
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5291
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5295
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5298
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5299
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9061
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9062
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9070
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9073
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9074
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9076
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9063
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9071
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5289
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5290

+ MFSA-2016-90 Security vulnerabilities fixed in Firefox ESR 45.5
https://www.mozilla.org/en-US/security/advisories/mfsa2016-90/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5296
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5293
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5294
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5297
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9064
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9066
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5291
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9074
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5290

+ Cisco IOS XE Software Directory Traversal Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161115-iosxe
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6450

+ UPDATE: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: November 2016
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161114-openssl

+ Linux kernel 4.8.8, 4.4.32 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.8
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.32

+ SA73687 Linux Kernel "hash_accept()" Denial of Service Vulnerability
https://secunia.com/advisories/73687/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8646

+ Apache Tomcat 8.0.39, 7.0.73 released
http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.39_(violetagg)
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html#Tomcat_7.0.73_(violetagg)

+ Linux BPF Local Privilege Escalation Exploit
https://cxsecurity.com/issue/WLB-2016110131
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4557

+ Google Chrome blink Serializer::doSerialize Bad Cast
https://cxsecurity.com/issue/WLB-2016110126

+ Trend Micro Smart Protection Server Exec Remote Code Injection
https://cxsecurity.com/issue/WLB-2016110120
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6267

JVNDB-2016-000220 DERAEMON-CMS におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-000220.html

UPDATE: JVN#18228200 WFS-SR01 における複数の脆弱性
http://jvn.jp/jp/JVN18228200/

安心お手軽！PCのセキュリティを高める周辺機器
かざすだけ！PCに簡単にログオンできるICカードリーダー／ライター
http://itpro.nikkeibp.co.jp/atcl/column/16/110100250/111400006/?ST=security&itp_list_theme

OKI、300メートル先に飛来するドローンを検知できる指向性センサー
http://itpro.nikkeibp.co.jp/atcl/news/16/111503389/?ST=security&itp_list_theme

:: IT Security Neophyte Investigator's MEMO ::

2016年11月16日水曜日

16日水曜日、友引

0 件のコメント:

コメントを投稿

2016年11月16日水曜日

16日 水曜日、友引

0 件のコメント:

コメントを投稿

16日水曜日、友引