+ RHSA-2017:3111 Moderate: liblouis security update
https://access.redhat.com/errata/RHSA-2017:3111
CVE-2014-8184
CVE-2017-13738
CVE-2017-13740
CVE-2017-13741
CVE-2017-13742
CVE-2017-13743
CVE-2017-13744
+ Selenium Standalone Server 3.7.0 released
http://docs.seleniumhq.org/download/
+ Selenium Client & WebDriver 3.7.0 released
http://docs.seleniumhq.org/download/
+ UPDATE: Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171016-wpa
+ UPDATE: Cisco FXOS and NX-OS System Software Authentication, Authorization, and Accounting Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-aaavty
+ Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171103-bgp
CVE-2017-12319
+ UPDATE: Cisco Aironet 1560, 2800, and 3800 Series Access Point Platforms 802.11 Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-aironet1
+ UPDATE: Cisco Aironet 1560, 2800, and 3800 Series Access Point Platforms Extensible Authentication Protocol Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-aironet2
+ UPDATE: Cisco Wireless LAN Controller Simple Network Management Protocol Memory Leak Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-wlc1
+ UPDATE: Cisco Wireless LAN Controller 802.11v Basic Service Set Transition Management Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-wlc2
+ Linux kernel 4.13.11, 4.9.60, 4.4.96, 3.18.79, 3.10.108 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.13.11
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.60
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.96
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.79
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.10.108
+ OpenSSL OpenSSL 1.1.0g, 1.0.2m released
https://www.openssl.org/
+ OpenSSL Security Advisory [02 Nov 2017]
https://www.openssl.org/news/secadv/20171102.txt
CVE-2017-3732
CVE-2015-3193
+ Win32 OpenSSL v1.1.0g, 1.0.2m released
http://slproweb.com/products/Win32OpenSSL.html
+ Samba 4.7.1 Available for Download
https://www.samba.org/samba/history/samba-4.7.1.html
+ Sysstat 11.6.1, 11.4.7, 11.2.13 released
http://sebastien.godard.pagesperso-orange.fr/
+ UPDATE: JVNVU#90609033 Wi-Fi Protected Access II (WPA2) ハンドシェイクにおいて Nonce およびセッション鍵が再利用される問題
http://jvn.jp/vu/JVNVU90609033/index.html
+ JVNVU#99000953 複数の Apple 製品における脆弱性に対するアップデート
http://jvn.jp/vu/JVNVU99000953/index.html
+ Linux kernel CVE-2017-15951 Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/101621
CVE-2017-15951
VU#739007 IEEE P1735 implementations may have weak cryptographic protections
https://www.kb.cert.org/vuls/id/739007
VU#446847 Savitech USB audio drivers install a new root CA certificate
https://www.kb.cert.org/vuls/id/446847
Announcing the Release of OmniDB 2.3
https://www.postgresql.org/about/news/1799/
Aiven first to offer managed PG 10 on all major clouds
https://www.postgresql.org/about/news/1798/
脅威増すサイバー攻撃の正体
10年前から存在するランサムウエア、なぜ“ブレイク”したのか?
http://itpro.nikkeibp.co.jp/atcl/column/17/102700456/110100002/?ST=security&itp_list_theme
感染してもタブを閉じれば無害、アシストがブラウザー分離ソフト
http://itpro.nikkeibp.co.jp/atcl/news/17/110202592/?ST=security&itp_list_theme
JVN#97243511 フレッツ簡単セットアップツールのインストーラにおける DLL 読み込みに関する脆弱性
http://jvn.jp/jp/JVN97243511/index.html
JVN#79546124 OpenAM (オープンソース版) における認証回避の脆弱性
http://jvn.jp/jp/JVN79546124/index.html
0 件のコメント:
コメントを投稿