+ PostgreSQL ODBC Driver 09.06.0310 released
https://www.postgresql.org/ftp/odbc/versions/msi/
+ RHSA-2017:1230 Important: ghostscript security update
https://rhn.redhat.com/errata/RHSA-2017-1230.html
CVE-2017-8291
+ UPDATE: Cisco Integrated Management Controller User Session Hijacking Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-cimc2
+ UPDATE: Cisco Integrated Management Controller Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-cimc1
+ Intel Active Management Technology Privilege Escalation Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityResponse/cisco-sr-20170512-intelamt
CVE-2017-5689
+ Linux kernel 4.11.1, 4.10.16, 4.9.28, 4.4.68 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.1
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.10.16
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.28
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.68
+ Sysstat 11.4.4, 11.2.10 released
http://sebastien.godard.pagesperso-orange.fr/
+ PostgreSQL Bugs Let Remote Users Access and Modify Data in Transit and Let Remote Authenticated Users Obtain Password and Other Potentially Sensitive Information
http://www.securitytracker.com/id/1038476
CVE-2017-7484
CVE-2017-7485
CVE-2017-7486
+ OpenVPN Packet Processing Flaws Let Remote Users Cause the Target Service to Crash
http://www.securitytracker.com/id/1038473
CVE-2017-7478
CVE-2017-7479
+ Linux Kernel 3.x usb-midi Local Privilege Escalation
https://cxsecurity.com/issue/WLB-2017050093
CVE-2016-2384
+ Linux Kernel 3.11 < 4.8 0 SO_SNDBUFFORCE SO_RCVBUFFORCE Local Privilege Escalation
https://cxsecurity.com/issue/WLB-2017050084
CVE-2016-9793
+ Linux Kernel 4.8.0 (Ubuntu) Packet Socket Local Privilege Escalation
https://cxsecurity.com/issue/WLB-2017050083
CVE-2017-7308
+ OpenVPN 2.4.0 - Unauthenticated Denial of Service
https://cxsecurity.com/issue/WLB-2017050082
CVE-2017-7478
+ MS17-010 SMBv1 SrvOs2FeaToNt OOB Remote Code Execution
https://cxsecurity.com/issue/WLB-2017050075
VPNの素朴な疑問
VPNサービスはコスト重視で選ぶと失敗する?
http://itpro.nikkeibp.co.jp/atcl/column/17/050100176/050100001/?ST=security&itp_list_theme
15日の始業時に不審なメールを開かないで、IPAが世界的なランサムウエア攻撃に警告
http://itpro.nikkeibp.co.jp/atcl/news/17/051401395/?ST=security&itp_list_theme
ソニックウォール、代理店向けにセキュリティ人材育成プログラム
http://itpro.nikkeibp.co.jp/atcl/news/17/051201391/?ST=security&itp_list_theme
UPDATE: JVN#88713190 PrimeDrive デスクトップアプリケーションのインストーラにおける任意の DLL 読み込みに関する脆弱性
http://jvn.jp/jp/JVN88713190/
JVN#16248227 PrimeDrive デスクトップアプリケーションのインストーラにおける実行ファイル読み込みに関する脆弱性
http://jvn.jp/jp/JVN16248227/
Wana Decrypt0r Ransomware Outbreak Temporarily Stopped By "Accidental Hero"
http://www.linuxsecurity.com/content/view/171464/169/
Linux Advisory Watch: May 12th, 2017
http://www.linuxsecurity.com/content/view/171458/187/
DDOS attacks in Q1 2017
http://www.linuxsecurity.com/content/view/171457/169/
Vendors approve of NIST password draft
http://www.linuxsecurity.com/content/view/171456/169/
Keylogger Found in Audio Driver of HP Laptops
http://www.linuxsecurity.com/content/view/171455/169/
0 件のコメント:
コメントを投稿