Cisco IOS, Cisco IOS XE

ソフト名：Cisco IOS 12.x/15.0/15.1, Cisco IOS XE 3.1.xSG

回避策：アップデートにて対応, 3.2.0SG以降へのアップデートにて対応

脆弱性：DoS攻撃, NAT変換エラー, デバイスのリロード, メモリリーク, メモリの浪費, 不正パケット

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-nat.shtml

http://secunia.com/advisories/46179/

http://secunia.com/advisories/46225/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0946

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3276

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3277

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3278

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3279

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3280

CVE：CVE-2011-0946, CVE-2011-3276, CVE-2011-3277, CVE-2011-3278, CVE-2011-3279, CVE-2011-3280

危険性：Medium Risk

Cisco IOS

ソフト名：Cisco IOS 15.0/15.1

回避策：アップデートにて対応

脆弱性：DoS攻撃, メモリリーク, メモリの浪費, ハング, クラッシュ

ソース：

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-zbfw.shtml

http://secunia.com/advisories/46198/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3273

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3281

CVE：CVE-2011-3273, CVE-2011-3281

危険性：Medium Risk

Cisco Unified Communications Manager, Cisco IOS, Cisco IOS XE

ソフト名：Cisco Unified Communications Manager 6.x/7.x/8.x, Cisco IOS 12.x/15.0/15.1, Cisco IOS XE 2.5.x/2.6.x/3.1.x/3.2.x

回避策：7.1(5b)su4/8.5(1)su2/8.6(1)へのアップデートにて対応, 3.1.3Sへのアップデート, アップデートにて対応

脆弱性：DoS攻撃, メモリリーク, 不正音声メッセージ

ソース：

http://www.cisco.com/en/US/products/sw/voicesw/ps556/index.html

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-cucm.shtml

http://www.cisco.com/warp/public/707/cisco-sa-20110928-sip.shtml

http://secunia.com/advisories/46197/

http://secunia.com/advisories/46226/

http://secunia.com/advisories/46230/

http://secunia.com/advisories/46234/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0939

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2072

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3275

CVE：CVE-2011-0939, CVE-2011-2072, CVE-2011-3275

危険性：Medium Risk

Cisco IOS, Cisco IOS XE

ソフト名：Cisco IOS 12.x/15.0/15.1, Cisco IOS XE 3.1.x/3.2.x

回避策：アップデートにて対応

脆弱性：DoS攻撃, メモリリーク, メモリの浪費

ソース：

http://cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml

http://www.cisco.com/en/US/products/ps10591/index.html

http://www.cisco.com/en/US/products/ps10592/index.html

http://www.cisco.com/en/US/products/ps9587/tsd_products_support_series_home.html

http://www.cisco.com/warp/public/707/cisco-sa-20110928-dlsw.shtml

http://secunia.com/advisories/46189/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0945

CVE：CVE-2011-0945

危険性：Medium Risk

Canonical Ltd. Ubuntu Linux

ソフト名：Canonical Ltd. Ubuntu Linux 10.04 (Kernel.org Linux Kernel 2.6.x)

回避策：USN-1216-1にて対応

脆弱性：セキュリティ制限の回避, 機密情報の奪取, 権限の昇格, DoS攻撃, システムアクセス, カーネルスタックメモリの曝露, プロセス設定の操作, 不正パケット, メモリの浪費, メモリ破壊, メモリリーク, クラッシュ, イベントオーバーフローエラー, 不正アプリケーション

ソース：

http://www.ubuntu.com/

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-September/001426.html

http://secunia.com/advisories/39080/

http://secunia.com/advisories/42061/

http://secunia.com/advisories/43496/

http://secunia.com/advisories/43846/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45420/

http://secunia.com/advisories/45533/

http://secunia.com/advisories/46147/

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_23.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_19.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4076

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4077

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4251

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4805

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1493

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1577

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2213

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2700

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2723

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2918

CVE：CVE-2010-4076, CVE-2010-4077, CVE-2010-4251, CVE-2010-4805, CVE-2011-1020, CVE-2011-1493, CVE-2011-1577, CVE-2011-2213, CVE-2011-2484, CVE-2011-2492, CVE-2011-2700, CVE-2011-2723, CVE-2011-2918

危険性：Medium Risk

Debian GNU/Linux

ソフト名：Debian GNU/Linux 5.0 (Kernel.org Linux Kernel 2.6.x)

回避策：DSA-2310-1にて対応

脆弱性：セキュリティ制限の回避, 機密情報の奪取, 権限の昇格, DoS攻撃, システムアクセス, ファイル操作, 整数オーバーフローエラー, クラッシュ, NULLポインタの逆参照, カーネルメモリ破壊, メモリ情報の曝露, プロセス設定の操作, 展開処理エラー, メモリリーク, カーネルスタックメモリの曝露, 不正CIFSメッセージ

ソース：

http://www.debian.org/

http://lists.debian.org/debian-security-announce/2011/msg00187.html

http://secunia.com/advisories/40205/

http://secunia.com/advisories/43009/

http://secunia.com/advisories/43496/

http://secunia.com/advisories/44094/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45695/

http://secunia.com/advisories/46133/

http://dvw-j.blogspot.com/2011/01/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_3728.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_26.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4067

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0712

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2209

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2211

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2213

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2496

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2497

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2525

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2928

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3188

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3191

CVE：CVE-2009-4067, CVE-2011-0712, CVE-2011-1020, CVE-2011-2209, CVE-2011-2211, CVE-2011-2213, CVE-2011-2484, CVE-2011-2491, CVE-2011-2492, CVE-2011-2495, CVE-2011-2496, CVE-2011-2497, CVE-2011-2525, CVE-2011-2928, CVE-2011-3188, CVE-2011-3191

危険性：Medium Risk

Debian GNU/Linux

ソフト名：Debian GNU/Linux 6.0 (Kernel.org Linux Kernel 2.6.x)

回避策：DSA-2303-1, DSA-2303-2にて対応

脆弱性：機密情報の奪取, 権限の昇格, DoS攻撃, システムアクセス, 展開処理エラー, メモリリーク, カーネルスタックメモリの曝露, カーネルのクラッシュ, イベントオーバーフローエラー, 不正アプリケーション, 不正CIFSメッセージ, NULLポインタの逆参照

ソース：

http://www.debian.org/

http://lists.debian.org/debian-security-announce/2011/msg00179.html

http://lists.debian.org/debian-security-announce/2011/msg00180.html

http://secunia.com/advisories/40205/

http://secunia.com/advisories/44094/

http://secunia.com/advisories/44466/

http://secunia.com/advisories/44754/

http://secunia.com/advisories/45420/

http://secunia.com/advisories/45489/

http://secunia.com/advisories/45533/

http://secunia.com/advisories/45695/

http://secunia.com/advisories/45933/

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_3728.html

http://dvw-j.blogspot.com/2011/05/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/06/kernelorg-linux-kernel_07.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_16.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_19.html

http://dvw-j.blogspot.com/2011/08/kernelorg-linux-kernel_26.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1020

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1576

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1768

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2484

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2491

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2492

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2496

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2497

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2517

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2525

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2700

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2723

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2905

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2909

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2918

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2928

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3188

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3191

CVE：CVE-2011-1020, CVE-2011-1576, CVE-2011-1768, CVE-2011-2484, CVE-2011-2491, CVE-2011-2492, CVE-2011-2495, CVE-2011-2496, CVE-2011-2497, CVE-2011-2517, CVE-2011-2525, CVE-2011-2700, CVE-2011-2723, CVE-2011-2905, CVE-2011-2909, CVE-2011-2918, CVE-2011-2928, CVE-2011-3188, CVE-2011-3191

危険性：Medium Risk

Novell openSUSE, Novell SUSE Linux Enterprise Server

ソフト名：Novell openSUSE 11.3/11.4, Novell SUSE Linux Enterprise Server 9/(SLES) 10/(SLES) 11 (libpng 1.2.x)

回避策：openSUSE-SU-2011:0915-1, SUSE-SU-2011:0916-1, SUSE-SU-2011:0919-1にて対応

脆弱性：DoS攻撃, システムアクセス, 区域外メモリの使用, アプリケーションのクラッシュ, メモリリーク, 不正PNGファイル

ソース：

http://www.opensuse.org/en/

http://www.suse.com/products/server/

http://www.novell.com/promo/home/sle11.html

https://hermes.opensuse.org/messages/11259948

https://hermes.opensuse.org/messages/11255439

https://hermes.opensuse.org/messages/11279547

http://secunia.com/advisories/32418/

http://secunia.com/advisories/45046/

http://secunia.com/advisories/45635/

http://secunia.com/advisories/45646/

http://dvw-j.blogspot.com/2011/06/libpng.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6218

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-5063

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2501

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2690

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2691

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2692

CVE：CVE-2008-6218, CVE-2009-5063, CVE-2011-2501, CVE-2011-2690, CVE-2011-2691, CVE-2011-2692

危険性：Medium Risk

Canonical Ltd. Ubuntu Linux

ソフト名：Canonical Ltd. Ubuntu Linux 10.10 (Kernel.org Linux Kernel 2.6.x)

回避策：USN-1183-1にて対応

脆弱性：機密情報の奪取, DoS攻撃, メモリリーク, カーネルスタックメモリの曝露, カーネルのクラッシュ, デリファレンスエラー, NULLポインタ参照エラー, バッファオーバーフロー, アロケーションエラー

ソース：

http://www.ubuntu.com/

https://lists.ubuntu.com/archives/ubuntu-security-announce/2011-August/001389.html

http://secunia.com/advisories/42061/

http://secunia.com/advisories/43594/

http://secunia.com/advisories/44220/

http://secunia.com/advisories/44248/

http://secunia.com/advisories/45480/

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_08.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_26.html

http://dvw-j.blogspot.com/2011/04/kernelorg-linux-kernel_856.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4076

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4077

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1090

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1163

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1577

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1598

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1746

CVE：CVE-2010-4076, CVE-2010-4077, CVE-2011-1090, CVE-2011-1163, CVE-2011-1577, CVE-2011-1598, CVE-2011-1746

危険性：Low Risk

OpenVZ

ソフト名：OpenVZ (Red Hat Enterprise Linux 5 (Server)/Desktop 5)

回避策：kernel branch RHEL5 version 028stab091.1アップデートにて対応

脆弱性：機密情報の奪取, 権限の昇格, DoS攻撃, カーネルメモリの曝露, ホストシステムのロックアップ, メモリリーク

ソース：http://wiki.openvz.org/Main_Page

http://wiki.openvz.org/Download/kernel/rhel5/028stab091.1

http://secunia.com/advisories/44792/

http://secunia.com/advisories/44889/

http://dvw-j.blogspot.com/2011/06/red-hat-enterprise-linux_1376.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0726

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1078

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1079

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1080

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1093

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1163

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1166

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1170

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1171

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1172

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1494

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1577

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1763

CVE：CVE-2011-0726, CVE-2011-1078, CVE-2011-1079, CVE-2011-1080, CVE-2011-1093, CVE-2011-1163, CVE-2011-1166, CVE-2011-1170, CVE-2011-1171, CVE-2011-1172, CVE-2011-1494, CVE-2011-1495, CVE-2011-1577, CVE-2011-1763

危険性：Medium Risk

Red Hat Enterprise Linux

ソフト名：Red Hat Enterprise Linux 5 (Server)/Desktop 5 (Kernel.org Linux Kernel 2.6.x, XenSource. Inc. Xen 3.x/4.x)

回避策：RHSA-2011:0833-01にて対応

脆弱性：機密情報の奪取, 権限の昇格, DoS攻撃, カーネルメモリの曝露, ホストシステムのロックアップ, メモリリーク

ソース：http://www.redhat.com/rhel/server/

http://www.redhat.com/rhel/desktop/

https://rhn.redhat.com/errata/RHSA-2011-0833.html

http://secunia.com/advisories/43537/

http://secunia.com/advisories/43803/

http://secunia.com/advisories/43806/

http://secunia.com/advisories/44792/

http://dvw-j.blogspot.com/2011/03/xensource-inc-xen.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_02.html

http://dvw-j.blogspot.com/2011/03/kernelorg-linux-kernel_22.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0726

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1078

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1079

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1080

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1093

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1163

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1166

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1170

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1171

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1172

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1494

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1495

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1577

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1763

CVE：CVE-2011-0726, CVE-2011-1078, CVE-2011-1079, CVE-2011-1080, CVE-2011-1093, CVE-2011-1163, CVE-2011-1166, CVE-2011-1170, CVE-2011-1171, CVE-2011-1172, CVE-2011-1494, CVE-2011-1495, CVE-2011-1577, CVE-2011-1763

危険性：Medium Risk

Kernel.org Linux Kernel

ソフト名：Kernel.org Linux Kernel 2.6.x

回避策：未対応

脆弱性：機密情報の奪取, メモリリーク, カーネルスタックメモリの曝露

ソース：http://www.kernel.org/

https://lkml.org/lkml/2011/5/8/153

http://secunia.com/advisories/44466/

危険性：Low Risk

Cisco Unified Communications Manager

ソフト名：Cisco Unified Communications Manager 6.x/7.x/8.x

回避策：あり

脆弱性：データ操作, DoS攻撃, システムアクセス, SQLインジェクション, メモリリーク, 未特定のエラー, ディレクトリトラバーサル, ファイルアップロード

ソース：http://www.cisco.com/en/US/products/sw/voicesw/ps556/index.html

http://www.cisco.com/en/US/products/sw/voicesw/ps556/

http://www.cisco.com/warp/public/707/cisco-sa-20110427-cucm.shtml

http://www.zerodayinitiative.com/advisories/ZDI-11-143/

http://archives.neohapsis.com/archives/fulldisclosure/2011-05/0051.html

http://secunia.com/advisories/44331/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1604

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1605

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1606

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1607

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1609

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1610

CVE：CVE-2011-1604, CVE-2011-1605, CVE-2011-1606, CVE-2011-1607, CVE-2011-1609, CVE-2011-1610

危険性：Medium Risk

Novell openSUSE

ソフト名：Novell openSUSE 11.4 (Adiscon rsyslog 5.6.4未満)

回避策：openSUSE-SU-2011:0326-1にて対応

脆弱性：DoS攻撃, メモリリーク, メモリの浪費

ソース：http://www.opensuse.org/en/

https://hermes.opensuse.org/messages/7977734

http://secunia.com/advisories/44053/

http://secunia.com/advisories/44158/

http://dvw-j.blogspot.com/2011/04/adiscon-rsyslog.html

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1488

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1489

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1490

CVE：CVE-2011-1488, CVE-2011-1489, CVE-2011-1490

危険性：Low Risk

Kernel.org Linux Kernel

ソフト名：Kernel.org Linux Kernel 2.6.39-rc2未満

回避策：あり

脆弱性：DoS攻撃, 二重解放エラー, カーネルのクラッシュ, メモリリーク

ソース：http://www.kernel.org/

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=d0de4dc584ec6aa3b26fffea320a8457827768fc

http://secunia.com/advisories/42365/

http://secunia.com/advisories/44091/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1479

CVE：CVE-2011-1479

危険性：Low Risk

Adiscon rsyslog

ソフト名：Adiscon rsyslog 5.6.4未満

回避策：アップデートにて対応

脆弱性：DoS攻撃, メモリリーク, メモリの浪費

ソース：http://www.rsyslog.com/

http://www.rsyslog.com/changelog-for-5-6-4-v5-stable/

http://bugzilla.adiscon.com/show_bug.cgi?id=218

http://bugzilla.adiscon.com/show_bug.cgi?id=225

http://bugzilla.adiscon.com/show_bug.cgi?id=226

http://secunia.com/advisories/44053/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1488

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1489

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1490

CVE：CVE-2011-1488, CVE-2011-1489, CVE-2011-1490

危険性：Low Risk

Kernel.org Linux Kernel

ソフト名：Kernel.org Linux Kernel 2.6.x
回避策：あり
脆弱性：機密情報の奪取, メモリリーク
ソース：http://www.kernel.org/
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=42eab94fff18cb1091d3501cd284d6bd6cc9c143
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=78b79876761b86653df89c48a7010b5cbd41a84a
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=6a8ab060779779de8aea92ce3337ca348f973f54
http://secunia.com/advisories/43806/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1170
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1171
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1172
CVE：CVE-2011-1170, CVE-2011-1171, CVE-2011-1172
危険性：Low Risk

Red Hat 389 Directory Server

ソフト名：Red Hat 389 Directory Server (formerly known as Fedora Directory Server) 1.2.7.5未満
回避策：アップデートにて対応
脆弱性：DoS攻撃, メモリの浪費, メモリリーク
ソース：http://directory.fedoraproject.org/
https://bugzilla.redhat.com/show_bug.cgi?id=663597
http://directory.fedoraproject.org/wiki/Release_Notes#Bugs_Fixed_4
http://secunia.com/advisories/43432/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4746
CVE：CVE-2010-4746
危険性：Medium Risk

Novell openSUSE

ソフト名：Novell openSUSE 11.2/11.3
回避策：openSUSE-SU-2011:0136-1にて対応
脆弱性：DoS攻撃, アプリケーションのクラッシュ, メモリの浪費, メモリリーク
ソース：http://www.opensuse.org/en/
https://hermes.opensuse.org/messages/7459434
http://secunia.com/advisories/42780/
http://secunia.com/advisories/43534/
http://dvw-j.blogspot.com/2011/01/apache-subversion.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4539
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4644
CVE：CVE-2010-4539, CVE-2010-4644
危険性：Medium Risk

Red Hat Enterprise Linux

ソフト名：Red Hat Enterprise Linux 5 (Server)/Server 6/Desktop Workstation 5/Desktop 6/Workstation 6/HPC Node 6
回避策：RHSA-2011:0257-1, RHSA-2011:0258-1にて対応
脆弱性：セキュリティ制限の回避, DoS攻撃, アプリケーションのクラッシュ, メモリの浪費, メモリリーク
ソース：http://www.redhat.com/rhel/
http://www.redhat.com/rhel/server/
http://www.redhat.com/rhel/desktop/
https://rhn.redhat.com/errata/RHSA-2011-0257.html
https://rhn.redhat.com/errata/RHSA-2011-0258.html
http://secunia.com/advisories/41652/
http://secunia.com/advisories/42780/
http://secunia.com/advisories/43115/
http://secunia.com/advisories/43346/
http://dvw-j.blogspot.com/2011/01/apache-subversion.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3315
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4539
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4644
CVE：CVE-2010-3315, CVE-2010-4539, CVE-2010-4644
危険性：Medium Risk