+ UPDATE: CVE-2017-8628 | Microsoft Bluetooth ドライバーのなりすましの脆弱性
https://portal.msrc.microsoft.com/ja-JP/security-guidance/advisory/CVE-2017-8628
+ RHSA-2017:2832 Important: nss security update
https://access.redhat.com/errata/RHSA-2017:2832
CVE-2017-7805
+ RHSA-2017:2831 Critical: firefox security update
https://access.redhat.com/errata/RHSA-2017:2831
CVE-2017-7793
CVE-2017-7810
CVE-2017-7814
CVE-2017-7818
CVE-2017-7819
CVE-2017-7823
CVE-2017-7824
+ RHSA-2017:2795 Important: kernel security update
https://access.redhat.com/errata/RHSA-2017:2795
CVE-2017-1000253
+ RHSA-2017:2832 Important: nss security update
https://access.redhat.com/errata/RHSA-2017:2832
CVE-2017-7805
+ Mozilla Firefox 56.0 released
https://www.mozilla.org/en-US/firefox/56.0/releasenotes/
+ Mozilla Foundation Security Advisory 2017-21 Security vulnerabilities fixed in Firefox 56
https://www.mozilla.org/en-US/security/advisories/mfsa2017-21/
CVE-2017-7793
CVE-2017-7817
CVE-2017-7818
CVE-2017-7819
CVE-2017-7824
CVE-2017-7805
CVE-2017-7812
CVE-2017-7814
CVE-2017-7813
CVE-2017-7825
CVE-2017-7815
CVE-2017-7816
CVE-2017-7821
CVE-2017-7823
CVE-2017-7822
CVE-2017-7820
CVE-2017-7811
CVE-2017-7810
+ CESA-2017:2795 Important CentOS 6 kernel Security Update
https://lwn.net/Alerts/735008/
+ VMware Workstation 14.0.0 Player released
https://docs.vmware.com/en/VMware-Workstation-Player/14.0.0/rn/player-14-release-notes.html
+ CVE-2017-8759 のエクスプロイトの検出と無効化
https://blogs.technet.microsoft.com/jpsecurity/2017/09/28/exploit_for_cve-2017-8759_detected_and_neutralized/
+ UPDATE: Apache Struts 2 Remote Code Execution Vulnerability Affecting Multiple Cisco Products: September 2017
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170909-struts2-rce
+ UPDATE: Multiple Vulnerabilities in Apache Struts 2 Affecting Cisco Products: September 2017
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170907-struts2
+ UPDATE: Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-profinet
+ PHP 7.0.24 Released
http://www.php.net/ChangeLog-7.php#7.0.24
+ UPDATE: JVNTA#91240916 Windows アプリケーションによる DLL 読み込みやコマンド実行に関する問題
http://jvn.jp/ta/JVNTA91240916/index.html
+ Mac OS X Local Javascript Quarantine Bypass *youtube
https://cxsecurity.com/issue/WLB-2017090230
+ Trend Micro OfficeScan v11.0 and XG (12.0)* NT Domain Disclosure / PHP Information Disclosure
https://cxsecurity.com/issue/WLB-2017090229
CVE-2017-14085
+ Trend Micro OfficeScan v11.0 and XG (12.0)* Host Header Injection
https://cxsecurity.com/issue/WLB-2017090227
+ iPhone 7 and Samsung Galaxy S7 Wi-Fi Chip Hack
https://cxsecurity.com/issue/WLB-2017090225
CVE-2017-11120
Support for PostgreSQL 9.6.5 in dbForge Data Compare for PostgreSQL
https://www.postgresql.org/about/news/1784/
セキュリティ大実験室 2017
会社のパソコンから不適切なWebサイトにアクセス、社名はバレる?
http://itpro.nikkeibp.co.jp/atcl/column/17/090600370/091100010/?ST=security&itp_list_theme
記者の眼
北朝鮮やランサムウエア、サイバー攻撃リスクとどう向き合う
http://itpro.nikkeibp.co.jp/atcl/watcher/14/334361/092600924/?ST=security&itp_list_theme
ニュース解説
ゼロデイ脆弱性の特効薬を標準搭載、Windows 10秋アップデート
http://itpro.nikkeibp.co.jp/atcl/column/14/346926/092801140/?ST=security&itp_list_theme
悪意のあるプログラムが実行される「DLL読み込みの脆弱性」が急増、IPAが対策呼びかけ
http://itpro.nikkeibp.co.jp/atcl/news/17/092802357/?ST=security&itp_list_theme
Patch alert! Easy-to-exploit flaw in Linux kernel rated 'high risk'
http://www.linuxsecurity.com/content/view/175965/169/
0 件のコメント:
コメントを投稿