概要

* は既存ルールの新バージョンを示します。

DPI(Deep Packet Inspection) ルール:

Directory Server LDAP
1008555 - Microsoft Windows Active Directory Denial Of Service Vulnerability (CVE-2008-1445)


Elasticsearch Java API Protocol
1008685 - Elastic Elasticsearch ThrowableObjectInputStream Insecure Deserialization (CVE-2015-5377)


HP Intelligent Management Center (IMC)
1008969 - HPE Intelligent Management Center Multiple Expression Language Injection Vulnerability


Trend Micro Control Manager
1008721 - Trend Micro Control Manager cmdHandlerStatusMonitor SQL Injection Vulnerability (CVE-2017-11385)


Webアプリケーション 共通
1009041 - ImageMagick 'ReadDCMImage' Denial Of Service Vulnerability (CVE-2018-6405) - 1
1009038 - ImageMagick 'ReadMATImage' Denial Of Service Vulnerability (CVE-2017-13658) - 1
1008974 - ImageMagick 'ReadMATImage' Denial Of Service Vulnerability (CVE-2017-18029) - 1
1008990 - ImageMagick 'ReadMATImage' Information Disclosure Vulnerability (CVE-2017-13143) - 1
1008992 - ImageMagick 'ReadOneJNGImage' Denial Of Service Vulnerability (CVE-2017-11750) - 1
1008996 - ImageMagick 'ReadPSDImage' Denial Of Service Vulnerability (CVE-2017-13061) - 1
1008994 - ImageMagick ReadOnePNGImage Memory Leak Vulnerability (CVE-2017-13141) - 1
1008980 - ImageMagick Use-After-Free Vulnerability (CVE-2017-17499) - 1


Webクライアント 共通
1009097* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB18-09) - 7
1008987 - ImageMagick 'ReadDCMImage' Denial Of Service Vulnerability (CVE-2018-6405)
1008988 - ImageMagick 'ReadMATImage' Denial Of Service Vulnerability (CVE-2017-13658)
1008973 - ImageMagick 'ReadMATImage' Denial Of Service Vulnerability (CVE-2017-18029)
1008989 - ImageMagick 'ReadMATImage' Information Disclosure Vulnerability (CVE-2017-13143)
1008991 - ImageMagick 'ReadOneJNGImage' Denial Of Service Vulnerability (CVE-2017-11750)
1008995 - ImageMagick 'ReadPSDImage' Denial Of Service Vulnerability (CVE-2017-13061)
1008993 - ImageMagick ReadOnePNGImage Memory Leak Vulnerability (CVE-2017-13141)
1008979 - ImageMagick Use-After-Free Vulnerability (CVE-2017-17499)
1009029 - PHP 'http_fopen_wrapper' Stack Buffer Overflow Vulnerability (CVE-2018-7584)
1008828* - Speculative Execution Information Disclosure Vulnerabilities (Spectre)


Web Proxy Squid
1008101* - Squid HTTP Proxy ESI Response Processing Denial Of Service Vulnerability


変更監視(Integrity Monitoring)ルール:

今回のセキュリティアップデートには、新規の変更監視ルールおよび更新は含まれておりません。


セキュリティログ監視(Log Inspection)ルール:

今回のセキュリティアップデートには、新規のセキュリティログ監視ルールおよび更新は含まれておりません。