17日 金曜日、先負

+ ISC BIND 9.11.18 released
https://downloads.isc.org/isc/bind9/9.11.18/RELEASE-NOTES-bind-9.11.18.html

+ RHSA-2020:1488 Important: thunderbird security update
https://access.redhat.com/errata/RHSA-2020:1488
CVE-2020-6819
CVE-2020-6820
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825

+ RHSA-2020:1487 Important: chromium-browser security update
https://access.redhat.com/errata/RHSA-2020:1487
CVE-2020-6423
CVE-2020-6430
CVE-2020-6431
CVE-2020-6432
CVE-2020-6433
CVE-2020-6434
CVE-2020-6435
CVE-2020-6436
CVE-2020-6437
CVE-2020-6438
CVE-2020-6439
CVE-2020-6440
CVE-2020-6441
CVE-2020-6442
CVE-2020-6443
CVE-2020-6444
CVE-2020-6445
CVE-2020-6446
CVE-2020-6447
CVE-2020-6448
CVE-2020-6454
CVE-2020-6455
CVE-2020-6456

+ RHSA-2020:1429 Important: firefox security update
https://access.redhat.com/errata/RHSA-2020:1429
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825

+ RHSA-2020:1403 Important: qemu-kvm security and bug fix update
https://access.redhat.com/errata/RHSA-2020:1403
CVE-2020-8608

+ RHSA-2020:1489 Important: thunderbird security update
https://access.redhat.com/errata/RHSA-2020:1489
CVE-2020-6819
CVE-2020-6820
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825

+ RHSA-2020:1420 Important: firefox security update
https://access.redhat.com/errata/RHSA-2020:1420
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825

+ RHSA-2020:1497 Moderate: tigervnc security update
https://access.redhat.com/errata/RHSA-2020:1497
CVE-2019-15691
CVE-2019-15692
CVE-2019-15693
CVE-2019-15694
CVE-2019-15695

+ RHSA-2020:1495 Important: thunderbird security update
https://access.redhat.com/errata/RHSA-2020:1495
CVE-2020-6819
CVE-2020-6820
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825

+ About the security content of Xcode 11.4.1
https://support.apple.com/ja-jp/HT211141
CVE-2020-5260

+ UPDATE: Oracle Critical Patch Update Advisory - April 2020
https://www.oracle.com/security-alerts/cpuapr2020.html

+ PHP 7.4.5, 7.3.17 released
https://www.php.net/ChangeLog-7.php#7.4.5
https://www.php.net/ChangeLog-7.php#7.3.17

JVNVU#95499848 Siemens 製品に複数の脆弱性
http://jvn.jp/vu/JVNVU95499848/index.html

JVNVU#94295606 Eaton 製 HMiSoft VU3 に複数の脆弱性
http://jvn.jp/vu/JVNVU94295606/index.html

JVNVU#93838113 複数の Triangle MicroWorks 製品に脆弱性
http://jvn.jp/vu/JVNVU93838113/index.html

なぜ問題視されるのか、「サードパーティーCookie」の正体
https://xtech.nikkei.com/atcl/nxt/column/18/01255/033000004/?ST=nxt_thmit_security

世界で開発が進む濃厚接触の追跡アプリ、ロックダウン解除後の救世主になれるか
https://xtech.nikkei.com/atcl/nxt/column/18/01279/041600001/?ST=nxt_thmit_security