+ UPDATE: Multiple Vulnerabilities in Apache Struts 2 Affecting Cisco Products: September 2017
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170907-struts2
+ UPDATE: Apache Struts 2 Remote Code Execution Vulnerability Affecting Multiple Cisco Products: September 2017
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170909-struts2-rce
+ UPDATE: Cisco Aironet 1830 Series and 1850 Series Access Points Mobility Express Default Credential Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ame
+ Linux kernel 4.13.1, 4.12.12, 4.9.49 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.1
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.12
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.49
+ NetBSD x86 Context Handling Errors Let Local Users Deny Service and Gain Elevated Privileges
http://www.securitytracker.com/id/1039312
+ NetBSD openat() System Call Vnode Reference Leak Lets Local Users Cause Denial of Service Conditions on the Target System
http://www.securitytracker.com/id/1039311
+ NetBSD Graphics Driver Buffer Overflow Lets Local Users Execute Arbitrary Code
http://www.securitytracker.com/id/1039310
VU#166743 Das U-Boot AES-CBC encryption implementation contains multiple vulnerabilities
https://www.kb.cert.org/vuls/id/166743
JVNDB-2017-000222 SEIL シリーズルータにおけるサービス運用妨害 (DoS) の脆弱性
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000222.html
JVNDB-2017-000221 FENCE-Explorer のインストーラにおける DLL 読み込みおよび実行ファイル呼び出しに関する脆弱性
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000221.html
JVNDB-2017-000220 CG-WLR300NM における複数の脆弱性
http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-000220.html
ソフトに脆弱性が生まれるワケ
脆弱性を生む、入力データのチェック漏れ
http://itpro.nikkeibp.co.jp/atcl/column/17/090100359/090100002/?ST=security&itp_list_theme
セキュリティ大実験室 2017
異なる製品を組み合わせたらウイルス検知率はアップするのか?
http://itpro.nikkeibp.co.jp/atcl/column/17/090600370/090600002/?ST=security&itp_list_theme
ソフトに脆弱性が生まれるワケ
脆弱性は攻撃者が「発明」するからなくならない
http://itpro.nikkeibp.co.jp/atcl/column/17/090100359/090100001/?ST=security&itp_list_theme
セキュリティ大実験室 2017
AIは新種のウイルスを検知できるか?
http://itpro.nikkeibp.co.jp/atcl/column/17/090600370/090600001/?ST=security&itp_list_theme
1000倍の「太陽フレア」発生、8日午後から衛星通信やGPSに障害発生の恐れ
http://itpro.nikkeibp.co.jp/atcl/news/17/090802204/?ST=security&itp_list_theme
Linux Security Week: September 11th, 2017
http://www.linuxsecurity.com/content/view/175800/187/
Windows 10’s Built-In Linux Shell Could Be Abused to Hide Malware, Researchers Say
http://www.linuxsecurity.com/content/view/175799/169/
Virginia scraps poke-to-vote machines hackers destroyed at DefCon
http://www.linuxsecurity.com/content/view/175798/169/
Researcher publicly discloses 10 zero-day flaws in D-Link 850L routers
http://www.linuxsecurity.com/content/view/175797/169/
Linux Advisory Watch: September 10th, 2017
http://www.linuxsecurity.com/content/view/175796/187/
Equifax blames giant breach on vendor software flaw
http://www.linuxsecurity.com/content/view/175795/169/
Apache Struts Statement on Equifax Security Breach
http://www.linuxsecurity.com/content/view/175794/169/
0 件のコメント:
コメントを投稿