+ ADV180002 | 投機的実行のサイドチャネルの脆弱性を緩和するガイダンス
https://portal.msrc.microsoft.com/ja-JP/security-guidance/advisory/ADV180002
CVE-2017-5753
CVE-2017-5715
CVE-2017-5754
+ RHSA-2018:0095 Important: java-1.8.0-openjdk security update
https://access.redhat.com/errata/RHSA-2018:0095
CVE-2018-2579
CVE-2018-2582
CVE-2018-2588
CVE-2018-2599
CVE-2018-2602
CVE-2018-2603
CVE-2018-2618
CVE-2018-2629
CVE-2018-2633
CVE-2018-2634
CVE-2018-2637
CVE-2018-2641
CVE-2018-2663
CVE-2018-2677
CVE-2018-2678
+ CVE-2017-3145: Improper fetch cleanup sequencing in the resolver can cause named to crash
https://kb.isc.org/article/AA-01542
CVE-2017-3145
+ CVE-2017-3144: Failure to properly clean up closed OMAPI connections can exhaust available sockets
https://kb.isc.org/article/AA-01541
CVE-2017-3144
+ Cisco NX-OS Software Pong Packet Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-nx-os
CVE-2018-0102
+ Cisco Email Security and Content Security Management Appliance Privilege Escalation Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-esasma
CVE-2018-0095
+ Cisco Unified Customer Voice Portal Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-cvp
CVE-2018-0086
+ CPU Side-Channel Information Disclosure Vulnerabilities
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel
CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
+ Cisco Web Security Appliance Reflected Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-wsa1
CVE-2018-0093
+ Cisco WebEx Meetings Server Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-wms3
CVE-2018-0111
+ Cisco WebEx Meetings Server Remote Account Disabling Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-wms2
CVE-2018-0110
+ Cisco WebEx Meetings Server Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-wms1
CVE-2018-0109
+ Cisco WebEx Meetings Server Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-wms
CVE-2018-0108
+ Cisco WAP150 Wireless Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-wap
CVE-2018-0098
+ Cisco UCS Central Software IPv6 Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-ucs
CVE-2018-0094
+ Cisco Unified Communications Manager Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-ucm
CVE-2018-0105
+ Cisco StarOS CLI Command Injection Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-staros
CVE-2018-0115
+ Cisco Prime Service Catalog Cross-Site Request Forgery Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-psc
CVE-2018-0107
+ Cisco Prime Infrastructure Open Redirect Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-prime-infrastructure
CVE-2018-0097
+ Cisco NX-OS System Software Unauthorized User Account Deletion Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-nxos1
CVE-2018-0092
+ Cisco NX-OS System Software Management Interface Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-nxos
CVE-2018-0090
+ Cisco D9800 Network Transport Receiver OS Command Injection Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-ntr
CVE-2018-0099
+ Cisco Identity Services Engine DOM Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-ise
CVE-2018-0091
+ Cisco IOS Software for Industrial Ethernet 4010 Series Switches Test Command Arbitrary Code Execution and Denial of Service Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-iess
CVE-2018-0088
Cisco Elastic Services Controller Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-esc
CVE-2018-0106
+ Cisco Policy Suite Unauthenticated Information Disclosure Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-cps
CVE-2018-0089
+ Cisco Prime Infrastructure Privilege Escalation Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-cpi
CVE-2018-0096
+ Cisco AnyConnect Profile Editor XML External Entity Injection Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-acpe
CVE-2018-0100
+ Cisco Small Business 300 and 500 Series Managed Switches HTTP Response Splitting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-300-500-smb2
CVE-2017-12308
+ Cisco Small Business 300 and 500 Series Managed Switches Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-300-500-smb1
CVE-2017-12307
+ Linux kernel 4.14.14, 4.9.77, 4.4.112, 3.18.92 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.14
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.77
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.112
https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.92
+ hitachi-sec-2018-101 Multiple Vulnerabilities in Hitachi Command Suite
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/hitachi-sec-2018-101/index.html
CVE-2017-7668
CVE-2017-7679
+ hitachi-sec-2018-101 Hitachi Command Suite製品における複数の脆弱性
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/hitachi-sec-2018-101/index.html
CVE-2017-7668
CVE-2017-7679
+ JVNVU#94160143 ISC BIND 9 にサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/vu/JVNVU94160143/index.html
CVE-2017-3145
+ JVNVU#94629912 ISC DHCP にサービス運用妨害 (DoS) の脆弱性
http://jvn.jp/vu/JVNVU94629912/index.html
CVE-2017-3144
ロンドンに 3 番目の AWS アベイラビリティーゾーンを開設
https://aws.amazon.com/jp/blogs/news/now-open-third-aws-availability-zone-in-london/
都道府県CIOフォーラム報告 第15回年次総会
「まずは抵抗があまりないところから」、デジタル化やAIは行政をどう変える?
http://itpro.nikkeibp.co.jp/atcl/column/17/121500582/121500004/?ST=security&itp_list_theme
0 件のコメント:
コメントを投稿