2017年6月14日水曜日

14日 水曜日、赤口

+ RHSA-2017:1439 Critical: flash-plugin security update
https://access.redhat.com/errata/RHSA-2017:1439
CVE-2017-3075
CVE-2017-3076
CVE-2017-3077
CVE-2017-3078
CVE-2017-3079
CVE-2017-3081
CVE-2017-3082
CVE-2017-3083
CVE-2017-3084

+ RHSA-2017:1430 Important: qemu-kvm security and bug fix update
https://access.redhat.com/errata/RHSA-2017:1430
CVE-2017-7718
CVE-2017-7980

+ Mozilla Firefox 54.0 released
https://www.mozilla.org/en-US/firefox/54.0/releasenotes/

+ MFSA2017-15 Security vulnerabilities fixed in Firefox 54
https://www.mozilla.org/en-US/security/advisories/mfsa2017-15/
CVE-2017-5472
CVE-2017-7749
CVE-2017-7750
CVE-2017-7751
CVE-2017-7752
CVE-2017-7754
CVE-2017-7755
CVE-2017-7756
CVE-2017-7757
CVE-2017-7778
CVE-2017-7758
CVE-2017-7759
CVE-2017-7760
CVE-2017-7761
CVE-2017-7762
CVE-2017-7763
CVE-2017-7764
CVE-2017-7765
CVE-2017-7766
CVE-2017-7767
CVE-2017-7768
CVE-2017-7770
CVE-2017-5471
CVE-2017-5470

+ APSB17-17 Security updates available for Flash Player
https://helpx.adobe.com/security/products/flash-player/apsb17-17.html
CVE-2017-3075
CVE-2017-3081
CVE-2017-3083
CVE-2017-3084
CVE-2017-3076
CVE-2017-3077
CVE-2017-3078
CVE-2017-3079
CVE-2017-3082

+ APSB17-18 Security updates available for Adobe Shockwave Player
https://helpx.adobe.com/security/products/shockwave/apsb17-18.html
CVE-2017-3086

+ APSB17-19 Security updates available for Adobe Captivate
https://helpx.adobe.com/security/products/captivate/apsb17-19.html
CVE-2017-3087

+ APSB17-20 Security update available for Adobe Digital Editions
https://helpx.adobe.com/security/products/Digital-Editions/apsb17-20.html
CVE-2017-3088
CVE-2017-3089
CVE-2017-3093
CVE-2017-3096
CVE-2017-3090
CVE-2017-3092
CVE-2017-3097
CVE-2017-3094
CVE-2017-3095

+ 2017 年 6 月のセキュリティ リリース
https://portal.msrc.microsoft.com/ja-jp/security-guidance/releasenotedetail/40969d56-1b2a-e711-80db-000d3a32fc99

+ SA77341 Microsoft Lync / Skype for Business Multiple Vulnerabilities
https://secuniaresearch.flexerasoftware.com/advisories/77341/
CVE-2017-0283
CVE-2017-8527

+ SA77310 Microsoft Edge Multiple Vulnerabilities
https://secuniaresearch.flexerasoftware.com/advisories/77310/
CVE-2017-8496
CVE-2017-8497
CVE-2017-8499
CVE-2017-8504
CVE-2017-8517
CVE-2017-8520
CVE-2017-8521
CVE-2017-8522
CVE-2017-8523
CVE-2017-8524
CVE-2017-8529
CVE-2017-8530
CVE-2017-8548
CVE-2017-8549
CVE-2017-8555

+ SA77329 Microsoft Multiple Products Multiple Vulnerabilities
https://secuniaresearch.flexerasoftware.com/advisories/77329/
CVE-2017-0260
CVE-2017-0282
CVE-2017-0283
CVE-2017-0284
CVE-2017-0285
CVE-2017-0286
CVE-2017-0287
CVE-2017-0288
CVE-2017-0289
CVE-2017-0292
CVE-2017-8506
CVE-2017-8507
CVE-2017-8508
CVE-2017-8509
CVE-2017-8510
CVE-2017-8511
CVE-2017-8512
CVE-2017-8513
CVE-2017-8514
CVE-2017-8527
CVE-2017-8528
CVE-2017-8531
CVE-2017-8532
CVE-2017-8533
CVE-2017-8534
CVE-2017-8550
CVE-2017-8551

+ SA77344 Microsoft Windows Server 2016 Multiple Vulnerabilities
https://secuniaresearch.flexerasoftware.com/advisories/77344/
CVE-2017-0173
CVE-2017-0193
CVE-2017-0215
CVE-2017-0216
CVE-2017-0218
CVE-2017-0219
CVE-2017-0282
CVE-2017-0283
CVE-2017-0284
CVE-2017-0285
CVE-2017-0287
CVE-2017-0288
CVE-2017-0289
CVE-2017-0291
CVE-2017-0292
CVE-2017-0294
CVE-2017-0295
CVE-2017-0296
CVE-2017-0297
CVE-2017-0298
CVE-2017-0299
CVE-2017-0300
CVE-2017-8460
CVE-2017-8462
CVE-2017-8464
CVE-2017-8465
CVE-2017-8466
CVE-2017-8468
CVE-2017-8470
CVE-2017-8471
CVE-2017-8473
CVE-2017-8474
CVE-2017-8475
CVE-2017-8476
CVE-2017-8477
CVE-2017-8478
CVE-2017-8479
CVE-2017-8480
CVE-2017-8481
CVE-2017-8482
CVE-2017-8483
CVE-2017-8484
CVE-2017-8485
CVE-2017-8489
CVE-2017-8490
CVE-2017-8491
CVE-2017-8492
CVE-2017-8493
CVE-2017-8494
CVE-2017-8515
CVE-2017-8527
CVE-2017-8531
CVE-2017-8532
CVE-2017-8533
CVE-2017-8543
CVE-2017-8544
CVE-2017-8553

+ SA77306 Microsoft Windows Adobe Flash Player Multiple Vulnerabilities
https://secuniaresearch.flexerasoftware.com/advisories/77306/
CVE-2017-3075
CVE-2017-3076
CVE-2017-3077
CVE-2017-3078
CVE-2017-3079
CVE-2017-3081
CVE-2017-3082
CVE-2017-3083
CVE-2017-3084

+ SA77307 Microsoft Internet Explorer Multiple Vulnerabilities
https://secuniaresearch.flexerasoftware.com/advisories/77307/
CVE-2017-8517
CVE-2017-8519
CVE-2017-8522
CVE-2017-8524
CVE-2017-8529
CVE-2017-8547

VU#768399 HPE SiteScope contains multiple vulnerabilities
https://www.kb.cert.org/vuls/id/768399

JVNDB-2017-000116 QuickTime for Windows のインストーラにおける任意の DLL 読み込みの脆弱性
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000116.html

JVNDB-2017-000128 WordPress 用プラグイン WordPress Download Manager におけるオープンリダイレクトの脆弱性
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000128.html

JVNDB-2017-000127 WordPress 用プラグイン WordPress Download Manager におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000127.html

JVNDB-2017-000133 ソースコードセキュリティ検査ツール iCodeChecker におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000133.html

JVNDB-2017-000132 WordPress 用プラグイン WP-Members におけるクロスサイトスクリプティングの脆弱性
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000132.html

UPDATE: JVN#24087303 環境省が提供する報告書作成支援ツールのインストーラにおける任意のDLL読み込みの脆弱性
http://jvn.jp/jp/JVN24087303/index.html

JVNTA#99970831 制御システムを狙う CrashOverride マルウェアの脅威
http://jvn.jp/ta/JVNTA99970831/index.html

Pirates dance around AACS 2 encryption to offer UHD Blu-Ray movies online
http://www.linuxsecurity.com/content/view/171766/169/

Raspberry Pi sours thanks to mining malware
http://www.linuxsecurity.com/content/view/171765/169/

0 件のコメント:

コメントを投稿