+ Dovecot 2.0.18 released
http://www.dovecot.org/list/dovecot-news/2012-February/000210.html
+ Linux kernel 2.6.27.61 released
http://www.kernel.org/pub/linux/kernel/v2.6/longterm/v2.6.27/ChangeLog-2.6.27.61
+ OpenLDAP 2.4.29 released
http://www.openldap.org/software/release/announce.html
http://www.openldap.org/software/release/changes.html
+ CVE-2011-1091 Denial of Service Vulnerability in Pidgin
http://blogs.oracle.com/sunsecurity/entry/cve_2011_1091_denial_of
http://secunia.com/advisories/47895/
+? PHP 'php5-common.php5.cron.d' Race Condition Vulnerability
http://www.securityfocus.com/bid/46928
- PHP 'zend_strndup()' Multiple NULL Pointer Dereference Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/51417
- PHP CVE-2012-0831 'magic_quotes_gpc' Directive Security Bypass Weakness
http://www.securityfocus.com/bid/51954
[ANNOUNCEMENT] HttpComponents HttpClient 4.2-beta1 release
http://www.apache.org/dist/httpcomponents/httpclient/RELEASE_NOTES.txt
[ANNOUNCE] Release of Apache DeltaSpike 0.1 (incubating)
http://s.apache.org/DeltaSpike_01incubating
Mozilla Foundation Security Advisory 2012-10: Title: use after free in nsXBLDocumentInfo::ReadPrototypeBindings
http://www.mozilla.org/security/announce/2012/mfsa2012-10.html
CentOS alert CESA-2012:0107 (kernel)
http://lwn.net/Alerts/480628/
Roadmap to phpMyAdmin 4.0
http://sourceforge.net/news/?group_id=23067&id=306103
Firefox 10.0.1 released
http://www.mozilla.org/en-US/firefox/10.0.1/releasenotes/
Thunderbird 10.0.1 released
https://www.mozilla.org/en-US/thunderbird/10.0.1/releasenotes/
Dovecot 2.1-rc6 released
http://www.dovecot.org/list/dovecot-news/2012-February/000209.html
記憶できるIDとパスワード、過半数のユーザーは「2~3組」
「平均は3.15組、ID登録サイトは19.4」――野村総研が調査
http://itpro.nikkeibp.co.jp/article/NEWS/20120213/381101/?ST=security
JVNDB-2012-001355 複数の DNS ネームサーバの実装に問題
http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001355.html
[ MDVSA-2012:016 ] glpi
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00058.html
CubeCart 3.0.20 (3.0.x) and lower | Open URL Redirection Vulnerability
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00057.html
Kloxo LxCenter Server CP v6.1.10 - Multiple Web Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00056.html
Dolibarr CMS v3.2.0 Alpha - SQL Injection Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00055.html
OnxShop CMS v1.5.0 - Multiple Web Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00054.html
Dolibarr CMS v3.2.0 Alpha - File Include Vulnerabilities
http://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2012-02/msg00053.html
KPN (Dutch Telecommunications company) Hack
http://isc.sans.edu/diary.html?storyid=12574
IBM solidDB Redundant WHERE Condition Lets Remote Authenticated Users Deny Service
http://www.securitytracker.com/id/1026662
Gazie Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/47947/
Drupal Finder Module Multiple Vulnerabilities
http://secunia.com/advisories/47943/
Red Hat update for kernel
http://secunia.com/advisories/47967/
RabidHamster R2 Extreme File Disclosure and Buffer Overflow Vulnerabilities
http://secunia.com/advisories/47966/
MyBB Multiple Vulnerabilities
http://secunia.com/advisories/47882/
Ubuntu update for php5
http://secunia.com/advisories/47878/
Drupal Finder Module Multiple Script Insertion Vulnerabilities
http://secunia.com/advisories/47941/
Drupal Finder Module Finder Import Code Execution Vulnerability
http://secunia.com/advisories/47915/
Reflection Products SSL Information Disclosure Vulnerability
http://secunia.com/advisories/47965/
AjaXplorer "doc_file" Text File Disclosure Weakness
http://secunia.com/advisories/47916/
GLPI "sub_type" File Inclusion Vulnerability
http://secunia.com/advisories/47918/
Dolibarr ERP/CRM "rowid" SQL Injection Vulnerability
http://secunia.com/advisories/47969/
XRay CMS "username" SQL Injection Vulnerability
http://secunia.com/advisories/47942/
RabidHamster R4 File Disclosure and Buffer Overflow Vulnerabilities
http://secunia.com/advisories/47901/
IBM solidDB Redundant WHERE Clause Denial of Service Vulnerability
http://secunia.com/advisories/47927/
Pluck Cross-Site Request Forgery Vulnerability
http://secunia.com/advisories/47934/
ImageMagick Two Vulnerabilities
http://secunia.com/advisories/47926/
Ubuntu update for openssl
http://secunia.com/advisories/47925/
SUSE update for curl
http://secunia.com/advisories/47957/
SUSE update for apache2
http://secunia.com/advisories/47978/
SUSE update for opera
http://secunia.com/advisories/47982/
SUSE update for lighttpd
http://secunia.com/advisories/47986/
SUSE update for curl
http://secunia.com/advisories/47988/
SUSE update for dovecot20
http://secunia.com/advisories/47990/
Oracle Solaris Pidgin YMSG Denial of Service Weakness
http://secunia.com/advisories/47895/
SUSE update for gnutls
http://secunia.com/advisories/47987/
SUSE update for ruby
http://secunia.com/advisories/47989/
SUSE update for squid3
http://secunia.com/advisories/47991/
SUSE update for powerdns
http://secunia.com/advisories/47995/
SUSE update for MozillaFirefox
http://secunia.com/advisories/47963/
SUSE update for sysconfig
http://secunia.com/advisories/47983/
OfficeSIP Server SIP Request Handling Denial of Service
http://secunia.com/advisories/47964/
SUSE update for kernel
http://secunia.com/advisories/47956/
SUSE update for MozillaFirefox
http://secunia.com/advisories/47958/
SUSE update for kernel
http://secunia.com/advisories/47979/
SUSE update for MozillaFirefox
http://secunia.com/advisories/47980/
SUSE update for kvm
http://secunia.com/advisories/47992/
SUSE update for mozilla-xulrunner192
http://secunia.com/advisories/47994/
Apache MyFaces "javax.faces.resource" File Disclosure Vulnerability
http://secunia.com/advisories/47973/
surf Cookie Disclosure Security Issue
http://secunia.com/advisories/47924/
Red Hat update for jbosscache
http://secunia.com/advisories/47975/
NetBeans Plugins SSL Certificate Validation Security Issue
http://secunia.com/advisories/47893/
REMOTE: Citrix Provisioning Services 5.6 SP1 Streamprocess Opcode 0x40020000 Buffer Overflow
http://www.exploit-db.com/exploits/18478/
REMOTE: Adobe Flash Player MP4 SequenceParameterSetNALUnit Buffer Overflow
http://www.exploit-db.com/exploits/18479/
DoS/PoC: jetVideo 8.0.2 Denial of Service
http://www.exploit-db.com/exploits/18481/
OpenSSL Multiple Vulnerabilities
http://www.securityfocus.com/bid/51281
ZNC 'bouncedcc' Module Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/51328
Linux Kernel 'journal_unmap_buffer()' Local Denial of Service Vulnerability
http://www.securityfocus.com/bid/51945
PowerDNS Authoritative Server Remote Denial of Service Vulnerability
http://www.securityfocus.com/bid/51355
Bugzilla 'jsonrpc.cgi' Cross Site Request Forgery Vulnerability
http://www.securityfocus.com/bid/51783
Bugzilla UTF-8 CVE-2012-0448 User Impersonation Vulnerability
http://www.securityfocus.com/bid/51784
Apache HTTP Server 'mod_proxy' Reverse Proxy Security Bypass Vulnerability
http://www.securityfocus.com/bid/50802
Apache HTTP Server 'httpOnly' Cookie Information Disclosure Vulnerability
http://www.securityfocus.com/bid/51706
Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability
http://www.securityfocus.com/bid/49957
Apache HTTP Server 'ap_pregsub()' Function Local Privilege Escalation Vulnerability
http://www.securityfocus.com/bid/50494
Apache HTTP Server Scoreboard Local Security Bypass Vulnerability
http://www.securityfocus.com/bid/51407
ProFTPD Prior To 1.3.3g Use-After-Free Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/50631
PHP 'php_register_variable_ex()' Function Arbitrary Code Execution Vulnerability
http://www.securityfocus.com/bid/51830
GLPI 'sub_type' Parameter Remote File Include Vulnerability
http://www.securityfocus.com/bid/51958
Citrix Provisioning Services Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/49803
AWS Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51711
Sybase M-Business Anywhere Multiple Unspecified Remote Privilege Escalation Vulnerabilities
http://www.securityfocus.com/bid/50145
Real Networks RealPlayer 'VIDOBJ_START_CODE' Remote Code Execution Vulnerability
http://www.securityfocus.com/bid/51885
Libpurple Yahoo Protocol 'YMSG' NULL Pointer Dereference Denial of Service Vulnerability
http://www.securityfocus.com/bid/46837
PHP Web Form Hash Collision Denial Of Service Vulnerability
http://www.securityfocus.com/bid/51193
PHP CVE-2012-0057 Security Bypass Vulnerability
http://www.securityfocus.com/bid/51806
PHP 'zend_strndup()' Multiple NULL Pointer Dereference Denial Of Service Vulnerabilities
http://www.securityfocus.com/bid/51417
PHP 'php5-common.php5.cron.d' Race Condition Vulnerability
http://www.securityfocus.com/bid/46928
Mozilla Firefox/SeaMonkey/Thunderbird XPConnect Security Check Cross Domain Scripting Vulnerability
http://www.securityfocus.com/bid/51752
Oracle MySQL CVE-2011-2262 Remote MySQL Server Vulnerability
http://www.securityfocus.com/bid/51493
Oracle MySQL CVE-2012-0113 Remote MySQL Server Vulnerability
http://www.securityfocus.com/bid/51488
RabbitWiki 'title' Parameter Cross Site Scripting Vulnerability
http://www.securityfocus.com/bid/51971
Yoono Extension 'create' Field HTML Injection Vulnerability
http://www.securityfocus.com/bid/51970
Astaro Security Gateway Whitelist Domain Pattern Security Bypass Weakness
http://www.securityfocus.com/bid/51969
Zen Cart 'path_to_admin/product.php' Cross Site Request Forgery Vulnerability
http://www.securityfocus.com/bid/51968
RabidHamster R4 File Disclosure and Multiple Buffer Overflow Vulnerabilities
http://www.securityfocus.com/bid/51967
CubeCart Multiple URI Redirection Vulnerabilities
http://www.securityfocus.com/bid/51966
LxCenter Kloxo Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/51964
OnxShop Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/51963
MyBB Versions Prior to 1.6.6 Multiple Security Vulnerabilities
http://www.securityfocus.com/bid/51962
jetVideo '.mp3' File Buffer Overflow Vulnerability
http://www.securityfocus.com/bid/51961
AjaXplorer 'doc_file' Parameter Local File Disclosure Vulnerability
http://www.securityfocus.com/bid/51960
ImageMagick Buffer Overflow and Denial of Service Vulnerabilities
http://www.securityfocus.com/bid/51957
Dolibarr 'adherents/fiche.php' SQL Injection Vulnerability
http://www.securityfocus.com/bid/51956
NetBeans Plugins SSL Certificate Validation Spoofing Vulnerability
http://www.securityfocus.com/bid/51955
PHP CVE-2012-0831 'magic_quotes_gpc' Directive Security Bypass Weakness
http://www.securityfocus.com/bid/51954
0 件のコメント:
コメントを投稿