2009年8月12日のセキュリティリリース予定 (定例)
Thursday, August 06, 2009
小野寺です。 7 月 29 日に定例外でセキュリティ情報 (MS09-034 および MS09-035)を公開しましたが、本日は、8
Month Archives: August 2009
August 2009 Advance Notification
Thursday, August 06, 2009
Advance Notification for the August 2009 Security Bulletin Release In this month’s Advance Notification we are making customers aware that next Tuesday August 11th we plan to release 9 security bulletins at approximately 10:00 a.m. PDT (UTC -8). Those bulletins consist of: · 8 bulletins affecting Windows four of which are rated critical and four are rated as important.
MS09-029のスプーラーの件と MS09-034 & MS09-035の更新
Tuesday, August 04, 2009
小野寺です。 先日、定例外でリリースした MS09-034 と MS09-035、それと MS09-029 を更新しました。また、MS09-
Preventing the exploitation of user mode heap corruption vulnerabilities
Tuesday, August 04, 2009
Over the past few months we have discussed a few different defense in depth mitigations (like GS [pt 1, pt2], SEHOP, and DEP [pt 1, pt 2]) which are designed to make it harder for attackers to successfully exploit memory safety vulnerabilities in software. In addition to the mitigations that we’ve discussed so far, a significant amount of effort has gone into hardening the Windows heap manager in order to complicate the exploitation of heap-based memory corruption vulnerabilities.