2017年9月20日水曜日

20日 水曜日、友引

+ Collabtive 3.1 released
http://collabtive.o-dyn.de/

+ MantisBT 2.6.0, 2.5.2, 1.3.12 released
http://www.mantisbt.org/blog/?p=533

+ RHSA-2017:2771 Important: emacs security update
https://access.redhat.com/errata/RHSA-2017:2771
CVE-2017-14482

+ ChakraCore 用のセキュリティ更新プログラムを定例外で公開
https://portal.msrc.microsoft.com/ja-jp/security-guidance

+ Linux kernel 4.1.44 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.44

+ Apple iOS Multiple Bugs Let Remote Users Spoof the Address Bar, Cause Denial of Service Conditions, and Conduct Cross-Site Scripting Attacks
http://www.securitytracker.com/id/1039385
CVE-2017-7072
CVE-2017-7085
CVE-2017-7088
CVE-2017-7089
CVE-2017-7097
CVE-2017-7106
CVE-2017-7118
CVE-2017-7133

+ Apple Safari Input Validation Bugs Let Remote Users Spoof the Address Bar and Conduct Cross-Site Scripting Attacks
http://www.securitytracker.com/id/1039384
CVE-2017-7085
CVE-2017-7089
CVE-2017-7106

+ Apache HTTPd 2.4.27 OPTIONS Memory Leak
https://cxsecurity.com/issue/WLB-2017090149
CVE-2017-9798

+ Microsoft Windows Kernel win32k.sys TTF Font Buffer Overflow
https://cxsecurity.com/issue/WLB-2017090148

+ Microsoft Windows Kernel win32k!NtQueryCompositionSurfaceBinding Stack Memory Disclosure
https://cxsecurity.com/issue/WLB-2017090147

+ Microsoft Windows Kernel win32k!NtGdiDoBanding Stack Memory Disclosure
https://cxsecurity.com/issue/WLB-2017090146

+ Microsoft Windows Kernel win32k!NtGdiGetFontResourceInfoInternalW Stack Memory Disclosure
https://cxsecurity.com/issue/WLB-2017090145

キュリティ診断のイロハ
DoS攻撃対策の松竹梅、完全防御はムリでも守りは必要
http://itpro.nikkeibp.co.jp/atcl/column/17/061600244/091100009/?ST=security&itp_list_theme

UPDATE: JVNVU#95513538 様々な Bluetooth 実装に複数の脆弱性
http://jvn.jp/vu/JVNVU95513538/index.html

The laws that are ruining the Internet
http://www.linuxsecurity.com/content/view/175843/169/

Pirate Bay digs itself a new hole: Mining alt-coin in slurper browsers
http://www.linuxsecurity.com/content/view/175841/169/

5 Ways to Secure Wi-Fi Networks
http://www.linuxsecurity.com/content/view/175840/169/

ラベル:

0 件のコメント:

コメントを投稿

登録: コメントの投稿 (Atom)