2017年9月19日火曜日

19日 火曜日、大安











+ CESA-2017:2728 Moderate CentOS 7 postgresql Security Update
https://lwn.net/Alerts/733810/

+ UPDATE: Apache Struts 2 Remote Code Execution Vulnerability Affecting Multiple Cisco Products: September 2017
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170909-struts2-rce

+ UPDATE: Multiple Vulnerabilities in Apache Struts 2 Affecting Cisco Products: September 2017
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170907-struts2

+ UPDATE: Cisco Email Security Appliance Malformed EML Attachment Bypass Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170906-esa

+ UPDATE: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: September 2016
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160927-openssl

+ Linux kernel 3.16.48, 3.2.93 released
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.16.48
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.93

+ Apache POI 3.17 released
http://poi.apache.org/changes.html#3.17

+ Linux Kernel Buffer Overflow in tpacket_rcv() Lets Local Users Cause Denial of Service Conditions
http://www.securitytracker.com/id/1039371
CVE-2017-14497

+ VMSA-2017-0015.1 VMware ESXi, vCenter Server, Fusion and Workstation updates resolve multiple security vulnerabilities
https://www.vmware.com/security/advisories/VMSA-2017-0015.html
CVE-2017-4924
CVE-2017-4925
CVE-2017-4926

+ Microsoft Windows Kernel win32k!NtGdiGetGlyphOutline Pool Memory Disclosure
https://cxsecurity.com/issue/WLB-2017090144

Release - ldap2pg v3.0
https://www.postgresql.org/about/news/1781/

セキュリティ診断のイロハ
我が社のWebサイトは大丈夫?DoS攻撃への耐性を調べる手法
http://itpro.nikkeibp.co.jp/atcl/column/17/061600244/091100008/?ST=security&itp_list_theme

セブン-イレブンが2万店のPOSレジ刷新、操作性とセキュリティを向上
http://itpro.nikkeibp.co.jp/atcl/news/17/091502257/?ST=security&itp_list_theme

Equifaxの最大1億4300万人分の情報漏洩、原因は半年前のStruts2脆弱性
http://itpro.nikkeibp.co.jp/atcl/news/17/091502248/?ST=security&itp_list_theme

PCやスマホの盗難対策ソフト最新版Absolute 7、削除されたアプリを自動修復
http://itpro.nikkeibp.co.jp/atcl/news/17/091502247/?ST=security&itp_list_theme

ラベル: ,

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)