+ RHSA-2017:1271 Important: samba4 security update
https://access.redhat.com/errata/RHSA-2017:1271
CVE-2017-7494
+ RHSA-2017:1270 Important: samba security update
https://access.redhat.com/errata/RHSA-2017:1270
CVE-2017-7494
+ CESA-2017:1267 Important CentOS 6 rpcbind Security Update
https://lwn.net/Alerts/723663/
+ CESA-2017:1268 Important CentOS 6 libtirpc Security Update
https://lwn.net/Alerts/723662/
+ UPDATE: Cisco TelePresence IX5000 Series Directory Traversal Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170517-telepresence-ix5000
+ Cisco Firepower System Software URL Filtering Bypass Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170524-fmc
CVE-2017-6674
+ UPDATE: Cisco CallManager Express Unauthorized Access Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-cme1
+ Samba 4.6.4, 4.5.10 and 4.4.14 Security Releases Available for Download
https://www.samba.org/samba/latest_news.html#4.6.4
https://www.samba.org/samba/history/samba-4.6.4.html
https://www.samba.org/samba/history/samba-4.5.10.html
https://www.samba.org/samba/history/samba-4.4.14.html
+ Samba smbd Named Pipe Validation Flaw Lets Remote Authenticated Users Execute Arbitrary Code on the Target System
http://www.securitytracker.com/id/1038552
CVE-2017-7494
+ Trend Micro ServerProtect for Linux Multiple Bugs Let Remote Users Execute Arbitrary Code and Conduct Cross-Site Scripting and Cross-Site Request Forgery Attacks and Let Local Users Gain Elevated Privileges
http://www.securitytracker.com/id/1038548
CVE-2017-9032
CVE-2017-9033
CVE-2017-9034
CVE-2017-9035
CVE-2017-9036
CVE-2017-9037
+ OpenVPN Access Server Input Validation Flaw Lets Remote Users Conduct Session Fixation Attacks to Hijack a Target User's Session
http://www.securitytracker.com/id/1038547
CVE-2017-5868
+ Systemwalker Centric Manager Open監視: SQLインジェクションの脆弱性(CVE-2016-10134) (2017年5月22日)
http://www.fujitsu.com/jp/products/software/resources/condition/security/products-fujitsu/solution/systemwalker-centric-mgr201701.html
CVE-2016-10134
+ Samba CVE-2017-7494 Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/98636
CVE-2017-7494
JVNDB-2017-000099 SSL Visibility Appliance における RST パケットの生成に関する問題
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000099.html
今日も誰かが狙われる
WannaCryの活動を緊急停止、「キルスイッチ」とは何だったのか
http://itpro.nikkeibp.co.jp/atcl/column/17/050800181/052300002/?ST=security&itp_list_theme
4 Reasons the Vulnerability Disclosure Process Stalls
http://www.linuxsecurity.com/content/view/171562/169/
0 件のコメント:
コメントを投稿