.jpg)
CVE-2015-6277, CVE-2015-6587
[º¸¾È´º½º ÁÖ¼ÒÇü] ÇöÁö ½Ã°¢À¸·Î 2ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 2ÀÏ¿¡¼ 3ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÔ´Ï´Ù.
1. CVE-2015-3308
GnuTLS 3.3.14 ÀÌÀü ¹öÀüÀÇ lib/x509/x509_ext.c¿¡¼ ¹ß°ßµÈ ´õµé ÇÁ¸® Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ Á¶ÀÛµÈ CRL À¯Åë Æ÷ÀÎÆ®¸¦ ÅëÇØ ¼ºñ½º °ÅºÎ¸¦ ÇÒ ¼ö ÀÖ°Ô ÇØÁְųª ¸í½ÃµÇÁö ¾ÊÀº Ãæ°ÝÀ» ¹ß»ýÇÒ ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù.
2. CVE-2015-4330
Cisco TelePresence VCS Expressway X8.5.2 ¹öÀü¿¡¼ ¹ß°ßµÈ ·ÎÄà ÆÄÀÏ ½ºÅ©¸³Æ® Ãë¾àÁ¡À¸·Î ·ÎÄà »ç¿ëÀÚ°¡ ÀÎ½Ä ºÒ°¡ÇÑ ¸Å°³º¯¼ö¸¦ ÅëÇØ OS ¸í·É¾î ½ÇÇàÀÌ °¡´ÉÇÑ Æ¯±ÇÀ» °¡Áú ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù. ÀÌ´Â Bug ID CSCuv10556°ú µ¿ÀÏÇÕ´Ï´Ù.
3. CVE-2015-6274
¼ÒÇÁÆ®¿þ¾î 15.5(3)S¸¦ °¡Áö°í ÀÖ´Â Cisco ASR 1000 ±â±â¿¡¼ ¹ß°ßµÈ IPv4 ½ÇÇà Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ ÆÐŶ ´ÜÆíÈ ¹× ÀçÁýÇÕ Æ®¸®°Å¸µÀ» ÅëÇØ ¼ºñ½º °ÅºÎ¸¦ ÇÒ ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù. ÀÌ´Â Bug ID CSCuv71273°ú µ¿ÀÏÇÕ´Ï´Ù.
4. CVE-2015-6277
VMware vSphere 5.2(1)SV3(1.4) ¹öÀü, Nexus 3000 ±â±â 7.3(0)ZD(0.47) ¹öÀü, Nexus 4000 ±â±â 4.1(2)E1 ¹öÀü, Nexus 9000 ±â±â 7.3(0)ZD(0.61) ¹öÀü, MDS 9000 ±â±â 7.0(0)HSK(0.353) ¹öÀüÀÇ Nexus 1000V ±â±â ¹× MDS 9000 ±â±â 7.0(0)HSK(0.353) ¹öÀüÀÇ SAN-OS NX-OS ¹öÀüÀÇ Cisco NX-OS¿¡¼ ¹ß°ßµÈ ARP ½ÇÇà Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ Á¶ÀÛµÈ ÆÐŶÀ» ÅëÇØ ¼ºñ½º °ÅºÎ¸¦ ÇÒ ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù. ÀÌ´Â Bug ID CSCut25292¿Í µ¿ÀÏÇÕ´Ï´Ù.
5. CVE-2015-6587
OpenAFS 1.6.13 ÀÌÀü ¹öÀüÀÇ vlserver¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î ÀÎÁõµÈ »ç¿ëÀÚ°¡ ¿ø°Ý¿¡¼ VL_ListAttributesN2 RPC¿¡ ÀÖ´Â Á¶ÀÛµÈ ·¹±Ö·¯ Ç¥ÇöÀ» ÅëÇØ ¼ºñ½º °ÅºÎ¸¦ ÇÒ ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù.
Copyrighted 2015. UBM-Tech. 117153:0515BC
[±¹Á¦ºÎ ÁÖ¼ÒÇü ±âÀÚ(sochu@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(http://www.boannews.com/) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
ÁÖ¼ÒÇü±âÀÚ ±â»çº¸±â
[2024-11-22] .jpg)
.jpg)
.jpg)
.jpg)
.jpg)
