Advisories and Patches (Subscribe)
Links
Apache HTTP Server Vulnerability Lists
http://httpd.apache.org/security_report.html
Lists of security problems fixed in released versions of the Apache HTTP Server.
AusCERT
Australian Computer Emergency Response Team. Advisories and tools.
Bugtraq
http://www.securityfocus.com/archive/1
Independent source for security vulnerabilities, alerts, and threats.
CASESContact - tips and tricks
http://casescontact.org/rss_tips.php
CASEScontact is an information security site providing tips and tricks for home users and SMEs (Small and Medium-Sized Enterprises) for FREE (How to protect against threats, vulnerabilities, privacy, encryption, viruses, worms, Trojans, spyware etc.). [RSS]
CERIAS
Center for Education and Research in Information Assurance and Security. University center for multidisciplinary research and education in areas of information security.
CERT Coordination Center
Studies Internet security vulnerabilities, provides incident response services to sites that have been the victims of attack, publishes a variety of security alerts, researches security and survivability in wide-area-networked computing, and develops information to improve site security.
Computer Incident Advisory Capability
http://www.ciac.org/ciac/index.html
CIAC publishes security bulletins and virus and hoax information. They provide computer security assistance to US Department of Energy (DOE) sites.
eVuln
Original source of responsible open source vulnerability research.
FrSIRT
http://www.frsirt.com/english/
Provides security advisories and real-time information about vulnerabilities, exploits, and threats. Sponsor of the Common Vulnerability Scoring System (CVSS).
ISS X-Force
http://xforce.iss.net/xforce/alerts
Security alerts, advisories, and alert summaries from ISS.
Linux Security Group
Security Advisories, Anti Hackers, programming books and related links.
Makesecure.com
Network security news, alerts and updates
New Zealand Computer Emergency Readiness Team
Security Alerts and Advisories
Open Source Vulnerability Database
Searchable database of vulnerabilities. Offers data for download in XML format as well as via website. Details of how to submit new vulnerabilities, database schema and FAQ.
Oracle Security Center
http://www.oracle.com/technology/deploy/security/index.html
Tips, tools, and technologies to keep Oracle products safe, secure, and patched.
Patch Management Forum
http://groups.yahoo.com/group/patchmgmt/
Mailing list facilitates networking and information exchange related to patch management: announcements, testing, verification, operations processes, and vulnerabilities.
PatchAdvisor
Fee based patch alert service.
PatchEasy
Software vendor for patch management.
Patchlink Corporation
Software vendor for cross platform patch management.
PatchManagement.org
http://www.patchmanagement.org/
Mailing list dedicated to the discussion of patch management.
SANS Internet Storm Center
Cooperative cyber threat monitor and alert system. Features daily handler diaries that summarize and analyze new threats and events.
Secunia
Provides security advisories and information about patches, and provides software for vulnerability management.
Secure Elements
http://www.secure-elements.com
Software vendor for IS technical control auditing, vulnerability management, and compliance. Provides advisories via XML and RSS, and fully supports OVAL and XCDDF XML standards for compliance and vulnerability functions.
Secure Elements C5 Alert Feed
http://rm.secure-elements.com/rss/seclabs.xml
Vulnerability and patch alerts [RSS]
SecurityFocus: Bugtraq
http://www.securityfocus.com/rss/vulnerabilities.xml
Full disclosure computer security vulnerabilities feed. [RSS]