2018年5月21日月曜日

21日 月曜日、仏滅

+ PostgreSQL ODBC Driver 10.03.0000 released
https://www.postgresql.org/ftp/odbc/versions/msi/

+ Mozilla Thunderbird 52.8.0 released
https://www.thunderbird.net/en-US/thunderbird/52.8.0/releasenotes/

+ Mozilla Foundation Security Advisory 2018-13 Security vulnerabilities fixed in Thunderbird 52.8
https://www.mozilla.org/en-US/security/advisories/mfsa2018-13/
CVE-2018-5183
CVE-2018-5184
CVE-2018-5154
CVE-2018-5155
CVE-2018-5159
CVE-2018-5161
CVE-2018-5162
CVE-2018-5170
CVE-2018-5168
CVE-2018-5174
CVE-2018-5178
CVE-2018-5185
CVE-2018-5150

+ CVE-2018-5737: BIND 9.12's serve-stale implementation can cause an assertion failure in rbtdb.c or other undesirable behavior, even if serve-stale is not enabled.
https://kb.isc.org/article/AA-01606
CVE-2018-5737

+ CVE-2018-5736: Multiple transfers of a zone in quick succession can cause an assertion failure in rbtdb.c
https://kb.isc.org/article/AA-01602
CVE-2018-5736

+ UPDATE: Bleichenbacher Attack on TLS Affecting Cisco Products: December 2017
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171212-bleichenbacher

+ UPDATE: Cisco Unified Communications Manager and Cisco Unified Presence Cross-Site Scripting Vulnerability
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180516-cucm-cup-xss

+ Linux kernel 4.16.10, 4.14.42, 4.9.101 released
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.10
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.42
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.101

+ ISC BIND 9.12.1-P2 released
https://ftp.isc.org/isc/bind9/?C=M;O=D

+ Postfix 3.3.1, 3.2.6, 3.1.9, 3.0.13 released
http://mirror.postfix.jp/postfix-release/official/postfix-3.3.1.HISTORY
http://mirror.postfix.jp/postfix-release/official/postfix-3.2.6.HISTORY
http://mirror.postfix.jp/postfix-release/official/postfix-3.1.9.HISTORY
http://mirror.postfix.jp/postfix-release/official/postfix-3.0.13.HISTORY

Amazon SageMaker で fast.ai ノートブックを実行する
https://aws.amazon.com/jp/blogs/news/running-fast-ai-notebooks-with-amazon-sagemaker/

AWS IoT 1-Click ? Lambda 関数のトリガーにシンプルなデバイスを使用する
https://aws.amazon.com/jp/blogs/news/aws-iot-1-click-use-simple-devices-to-trigger-lambda-functions/

UPDATE: JVNVU#92438713 複数の TLS 実装において Bleichenbacher 攻撃対策が不十分である問題
https://jvn.jp/vu/JVNVU92438713/

5月25日施行のGDPR、「知らない」「理解していない」が7割弱
http://tech.nikkeibp.co.jp/atcl/nxt/news/18/01284/?ST=nxt_thmit_security

0 件のコメント:

コメントを投稿