+ RHSA-2017:1574 Moderate: sudo security update
https://access.redhat.com/errata/RHSA-2017:1574
CVE-2017-1000368
+ CESA-2017:1561 Important CentOS 7 thunderbird Security Update
https://lwn.net/Alerts/726218/
+ CESA-2017:1561 Important CentOS 6 thunderbird Security Update
https://lwn.net/Alerts/726219/
+ UPDATE: JVNVU#98416507 Apache HTTP Web Server における複数の脆弱性に対するアップデート
http://jvn.jp/vu/JVNVU98416507/
+ UPDATE: JVNVU#94071181 ISC BIND に複数の脆弱性
http://jvn.jp/vu/JVNVU94071181/
+ UPDATE: JVNVU#95420726 Apache Tomcat にセキュリティ制限回避の脆弱性
http://jvn.jp/vu/JVNVU95420726/
+ OpenVPN Multiple Flaws Let Remote Users Obtain Potentially Sensitive Information, Deny Service, and Execute Arbitrary Code
http://www.securitytracker.com/id/1038768
CVE-2017-7508
CVE-2017-7520
CVE-2017-7521
CVE-2017-7522
+ Microsoft Windows '0x224000 IOCTL (WmiQueryAllData)' Kernel WMIDataDevice Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060163
CVE-2017-8489
+ Microsoft Windows 'nt!NtNotifyChangeDirectoryFile' Kernel Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060164
CVE-2017-0299
+ Microsoft Windows 'IOCTL_DISK_GET_DRIVE_GEOMETRY_EX' Kernel partmgr Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060169
+ Microsoft Windows 'IOCTL_DISK_GET_DRIVE_LAYOUT_EX' Kernel partmgr Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060168
CVE-2017-8469
+ Microsoft Windows 'IOCTL 0x390400, operation code 0x00020000' Kernel KsecDD Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060167
CVE-2017-8487
+ Microsoft Windows 'IOCTL_MOUNTMGR_QUERY_POINTS' Kernel Mountmgr Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060166
CVE-2017-8488
+ Microsoft Windows 'nt!NtQueryVolumeInformationFile (FileFsVolumeInformation)' Kernel Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060165
CVE-2017-8462
+ Microsoft Windows 'IOCTL_VOLUME_GET_VOLUME_DISK_EXTENTS' volmgr Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060162
CVE-2017-8491
+ Microsoft Windows 'nt!KiDispatchException' Kernel Stack Memory Disclosure in Exception Handling
https://cxsecurity.com/issue/WLB-2017060161
CVE-2017-8482
+ Microsoft Windows 'win32k!NtGdiEnumFonts' Kernel Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017060160
CVE-2017-8490
PgBackMan 1.2.0 released
https://www.postgresql.org/about/news/1759/
UPDATE: JVNVU#92606107 libmtk 向けの httpd プラグインを使用する複数の WiMAX ルータに認証回避の脆弱性
http://jvn.jp/vu/JVNVU92606107/
セキュリティ診断のイロハ
稼働中ソフトの推定から脆弱性スキャンまで、Nmapを使ったセキュリティ診断
http://itpro.nikkeibp.co.jp/atcl/column/17/061600244/061900004/?ST=security&itp_list_theme
AIと倫理
日本ではタブーな話題?AIの軍事利用
http://itpro.nikkeibp.co.jp/atcl/column/17/051800199/062100009/?ST=security&itp_list_theme
Web版メルカリで個人情報流出、システムの切り替え作業ミスで
http://itpro.nikkeibp.co.jp/atcl/news/17/062201744/?ST=security&itp_list_theme
キヤノン製複合機とプリンターにWannaCryの脆弱性の可能性
http://itpro.nikkeibp.co.jp/atcl/news/17/062201742/?ST=security&itp_list_theme
警察庁がWannaCry亜種のレポート公開、感染に気付かず拡大の恐れ
http://itpro.nikkeibp.co.jp/atcl/news/17/062201741/?ST=security&itp_list_theme
Stack Clash flaws blow local root holes in loads of top Linux programs
http://www.linuxsecurity.com/content/view/171889/169/
OpenVPN taken to task after audit ignores remote code execution flaws
http://www.linuxsecurity.com/content/view/171888/169/
0 件のコメント:
コメントを投稿