16日 水曜日、赤口

+ RHSA-2020:5503 Moderate: mariadb-connector-c security, bug fix, and enhancement update

https://access.redhat.com/errata/RHSA-2020:5503

CVE-2020-2574

CVE-2020-2752

CVE-2020-2922

CVE-2020-13249

+ RHSA-2020:5500 Important: mariadb:10.3 security, bug fix, and enhancement update

https://access.redhat.com/errata/RHSA-2020:5500

CVE-2019-2938

CVE-2019-2974

CVE-2020-2574

CVE-2020-2752

CVE-2020-2760

CVE-2020-2780

CVE-2020-2812

CVE-2020-2814

CVE-2020-13249

CVE-2020-14765

CVE-2020-14776

CVE-2020-14789

CVE-2020-14812

CVE-2020-15180

+ RHSA-2020:5499 Moderate: nodejs:12 security and bug fix update

https://access.redhat.com/errata/RHSA-2020:5499

CVE-2020-7774

CVE-2020-8277

CVE-2020-15366

+ RHSA-2020:5495 Moderate: nginx:1.16 security update

https://access.redhat.com/errata/RHSA-2020:5495

CVE-2019-20372

+ RHSA-2020:5483 Moderate: gnutls security and bug fix update

https://access.redhat.com/errata/RHSA-2020:5483

CVE-2020-24659

+ RHSA-2020:5480 Important: net-snmp security and bug fix update

https://access.redhat.com/errata/RHSA-2020:5480

CVE-2020-15862

+ RHSA-2020:5479 Important: linux-firmware security and enhancement update

https://access.redhat.com/errata/RHSA-2020:5479

CVE-2020-12321

+ RHSA-2020:5473 Moderate: kernel security and bug fix update

https://access.redhat.com/errata/RHSA-2020:5473

CVE-2020-16166

+ Mozilla Foundation Security Advisory 2020-54 Security Vulnerabilities fixed in Firefox 84

https://www.mozilla.org/en-US/security/advisories/mfsa2020-54/

CVE-2020-16042

CVE-2020-26971

CVE-2020-26972

CVE-2020-26973

CVE-2020-26974

CVE-2020-26975

CVE-2020-26976

CVE-2020-26977

CVE-2020-26978

CVE-2020-26979

CVE-2020-35111

CVE-2020-35112

CVE-2020-35113

CVE-2020-35114

+ Mozilla Foundation Security Advisory 2020-56 Security Vulnerabilities fixed in Thunderbird 78.6

https://www.mozilla.org/en-US/security/advisories/mfsa2020-56/

CVE-2020-16042

CVE-2020-26971

CVE-2020-26973

CVE-2020-26974

CVE-2020-26978

CVE-2020-35111

CVE-2020-35112

CVE-2020-35113

+ Mozilla Thunderbird 78.6.0 released

https://www.thunderbird.net/en-US/thunderbird/78.6.0/releasenotes/

+ Samba 4.13.3 Available for Download

https://www.samba.org/samba/history/samba-4.13.3.html

+ VMSA-2020-0028 VMware Carbon Black Cloud macOS Sensor installer updates address file overwrite issue (CVE-2020-4008)

https://www.vmware.com/security/advisories/VMSA-2020-0028.html

CVE-2020-4008

+ JVNVU#95288122 複数の Apple 製品における脆弱性に対するアップデート

http://jvn.jp/vu/JVNVU95288122/index.html

チャットでの悪口が筒抜けに、ビデオ会議の映像でキー入力を推測する手法に仰天

https://xtech.nikkei.com/atcl/nxt/column/18/00676/121100067/?ST=nxt_thmit_security

DXに伴いセキュリティー戦略見直した日本企業はわずか2割、NRIセキュア調査

https://xtech.nikkei.com/atcl/nxt/news/18/09329/?ST=nxt_thmit_security

JVN#94169589 GROWI における複数の脆弱性

http://jvn.jp/jp/JVN94169589/index.html