今日のセキュリティホール情報
□セキュリティホール情報
HP-UX の newgrp にローカルから権限を昇格される問題
CUPS の hpgltops, lppasswd コマンドにセキュリティホール
■Secunia - Security and Virus Information
2004-12-17
rtf2latex2e "ReadFontTbl()" Buffer Overflow Vulnerability (重要度3/5)
pgn2web "process_moves()" Buffer Overflow Vulnerability (重要度3/5)
NASM "error()" Function Buffer Overflow Vulnerability (重要度2/5)
jcabc2ps "switch_voice()" Buffer Overflow Vulnerability (重要度3/5)
html2hdml "remove_quote()" Buffer Overflow Vulnerability (重要度3/5)
csv2xml "get_field_headers()" Buffer Overflow Vulnerability (重要度3/5)
Convex 3D "readObjectChunk()" Buffer Overflow Vulnerability (重要度3/5)
chbg "simplify_path()" Buffer Overflow Vulnerability (重要度3/5)
changepassword Privilege Escalation Vulnerability (重要度2/5)
libbsb "bsb_open_header()" Buffer Overflow Vulnerability (重要度3/5)
asp2php Two Buffer Overflow Vulnerabilities (重要度3/5)
abctab2ps Two Buffer Overflow Vulnerabilities (重要度3/5)
abcpp "handle_directive()" Buffer Overflow Vulnerability (重要度3/5)
abcm2ps "put_words()" Buffer Overflow Vulnerability (重要度3/5)
abc2mtex "process_abc()" Buffer Overflow Vulnerability (重要度3/5)
Cosminexus Web Contents Generator Buffer Overflow Vulnerability (重要度3/5)
tnftp File Name Verification Vulnerability (重要度3/5)
Moodle Multiple Unspecified Security Issues (重要度3/5)
qwik-smtpd "HELO" Command Buffer Overflow Vulnerability
Ikonboard "st" and "keywords" SQL Injection Vulnerability (重要度3/5)
abc2midi Two Buffer Overflow Vulnerabilities (重要度3/5)
mpg123 "find_next_file()" Buffer Overflow Vulnerability (重要度3/5)
CUPS hpgltops and lppasswd Vulnerabilities (重要度3/5)
MPlayer Multiple Vulnerabilities(重要度3/5)
68 Designs Froogle Installation Security Issue (重要度2/5)
xine-lib "open_aiff_file()" Buffer Overflow Vulnerability (重要度4/5)
NetBSD "compat" Privilege Escalation Vulnerabilities (重要度2/5)
AtBas 2fax "expandtabs()" Buffer Overflow Vulnerability (重要度3/5)
Linux Kernel "ip_options_get()" and "vc_resize()" Vulnerabilities (重要度1/5)
Windows XP Firewall Dial-Up Security Issue (重要度2/5)
Symantec Brightmail Denial of Service Vulnerabilities (重要度3/5)
Roxio Toast Format String Vulnerability (重要度2/5)
Ricoh Aficio 450/455 ICMP Denial of Service Vulnerability (重要度1/5)
Gadu-Gadu Multiple Vulnerabilities (重要度4/5)
2004-12-16
IEにクロスサイトスクリプティング攻撃を許す脆弱性
Microsoft Windows XP Service Pack 2 の Microsoft Windows ファイアウォールの設定にリモートユーザーからアクセスされる脆弱性
Outlook Express 6 Service Pack 1 用の累積的な更新プログラム (KB887797)リリース
NetBSD にサービス拒否と権限昇格の脆弱性
MySQL 4.1.8 リリース
Samba にバッファオーバーフローの脆弱性
Linux Kernel に整数オーバーフローの脆弱性
Mac OS X 10.3.7 アップデートリリース
■CIAC
P-073: Updated "libxml" Packages for Versions Prior to 2.6.14
P-072: Updated ZIP Packages
P-071: Updated "gd" Packages
P-070: Updated Samba Packages
P-069: Sun - Multiple Mozilla Vulnerabilities
P-067: PHP Multiple Vulnerabilities
P-066: Veritas Backup Exec Buffer Overflow Vulnerability
P-065: Cisco Default Administrative Password in Cisco Guard and Traffic Anomaly Detector
■SGI Security Advisory
