+ dnsmasqにおける「DNSpooq」脆弱性の公開について
https://jprs.jp/tech/security/2021-01-25-dnspooq.html
CVE-2020-25681
CVE-2020-25682
CVE-2020-25683
CVE-2020-25684
CVE-2020-25685
CVE-2020-25686
CVE-2020-25687
+ RHSA-2021:0221 Important: sudo security update
https://access.redhat.com/errata/RHSA-2021:0221
CVE-2021-3156
+ RHSA-2021:0218 Important: sudo security update
https://access.redhat.com/errata/RHSA-2021:0218
CVE-2021-3156
+ About the security content of Xcode 12.4
https://support.apple.com/ja-jp/HT212153
CVE-2021-1800
+ About the security content of iCloud for Windows 12.0
https://support.apple.com/ja-jp/HT212145
CVE-2020-29611
CVE-2020-29618
CVE-2020-29617
CVE-2020-29619
+ About the security content of iOS 14.4 and iPadOS 14.4
https://support.apple.com/ja-jp/HT212146
CVE-2021-1782
CVE-2021-1871
CVE-2021-1870
+ About the security content of tvOS 14.4
https://support.apple.com/ja-jp/HT212149
CVE-2021-1782
+ About the security content of watchOS 7.3
https://support.apple.com/ja-jp/HT212148
CVE-2021-1782
+ Mozilla Firefox 85.0 released
https://www.mozilla.org/en-US/firefox/85.0/releasenotes/
+ Mozilla Foundation Security Advisory 2021-03 Security Vulnerabilities fixed in Firefox 85
https://www.mozilla.org/en-US/security/advisories/mfsa2021-03/
CVE-2021-23953
CVE-2021-23954
CVE-2021-23955
CVE-2021-23956
CVE-2021-23957
CVE-2021-23958
CVE-2021-23959
CVE-2021-23960
CVE-2021-23961
CVE-2021-23962
CVE-2021-23963
CVE-2021-23964
CVE-2021-23965
+ WinSCP 5.17.10 released
https://ja.osdn.net/projects/sfnet_winscp/downloads/WinSCP/5.17.10/WinSCP-5.17.10-ReadMe.txt/
+ Zabbix 5.2.4, 5.0.8 4.0.28 released
https://www.zabbix.com/rn/rn5.2.4
https://www.zabbix.com/rn/rn5.0.8
https://www.zabbix.com/rn/rn4.0.28
+ CESA-2021:0162 Important CentOS 7 xstream Security Update
https://lwn.net/Articles/844033/
+ CESA-2021:0153 Moderate CentOS 7 dnsmasq Security Update
https://lwn.net/Articles/844031/
+ CESA-2020:5350 Important CentOS 7 net-snmp Security Update
https://lwn.net/Articles/844032/
+ Mozilla Thunderbird 78.7.0 released
https://www.thunderbird.net/en-US/thunderbird/78.7.0/releasenotes/
+ Mozilla Foundation Security Advisory 2021-05 Security Vulnerabilities fixed in Thunderbird 78.7
https://www.mozilla.org/en-US/security/advisories/mfsa2021-05/
CVE-2021-23953
CVE-2021-23954
CVE-2020-15685
CVE-2020-26976
CVE-2021-23960
CVE-2021-23964
+ UPDATE: Oracle Critical Patch Update Advisory - January 2021
https://www.oracle.com/security-alerts/cpujan2021.html
+ Samba 4.13.4 Available for Download
https://www.samba.org/samba/history/samba-4.13.4.html
+ Sudo 1.9.5p2 released
https://www.sudo.ws/stable.html#1.9.5p2
+ sudoの脆弱性情報(Important: CVE-2021-3156)
https://security.sios.com/vulnerability/sudo-security-vulnerability-20210127.html
CVE-2021-3156
+ OpenLDAPの脆弱性情報(CVE-2020-36221, CVE-2020-36222, CVE-2020-36223, CVE-2020-36224, CVE-2020-36225, CVE-2020-36226, CVE-2020-36227, CVE-2020-36228, CVE-2020-36229, CVE-2020-36230)
https://security.sios.com/vulnerability/openldap-security-vulnerability-20210127.html
CVE-2020-36221
CVE-2020-36222
CVE-2020-36223
CVE-2020-36224
CVE-2020-36225
CVE-2020-36226
CVE-2020-36227
CVE-2020-36228
CVE-2020-36229
CVE-2020-36230
+ MySQLの脆弱性(Oracle Critical Patch Update Advisory - Jan 2021)
https://security.sios.com/vulnerability/mysql-security-vulnerability-20210125.html
+ Oracle Javaの脆弱性(Oracle Critical Patch Update Advisory - Jan 2021)
https://security.sios.com/vulnerability/java-security-vulnerability-20210125.html
大規模なサイバー攻撃演習をオンラインで開催
https://xtech.nikkei.com/atcl/nxt/mag/nnw/18/041800012/012000131/?ST=nxt_thmit_security
グーグルがゼロトラスト製品「BeyondCorp Enterprise」発表、Chromeでユーザー保護
https://xtech.nikkei.com/atcl/nxt/news/18/09522/?ST=nxt_thmit_security
多要素認証でも防げないクラウド攻撃出現、「最高謝罪責任者」を用意するベンダーも
https://xtech.nikkei.com/atcl/nxt/column/18/00676/011900070/?ST=nxt_thmit_security
埼玉県がコロナ陽性者191人の情報漏洩、ファイル管理と作業ミスが原因
https://xtech.nikkei.com/atcl/nxt/news/18/09518/?ST=nxt_thmit_security
「サプライチェーン攻撃」が全米揺るがす
正規の更新プログラムにマルウエア 米国土安全保障省が緊急指令
https://xtech.nikkei.com/atcl/nxt/mag/nnw/18/041800012/012000130/?ST=nxt_thmit_security
コロナ感染者の個人情報を「うっかり流出」、地方自治体で相次ぐ事故の理由
https://xtech.nikkei.com/atcl/nxt/column/18/00138/012200715/?ST=nxt_thmit_security
神奈川県コロナ協力金のLINE申請で他人の入力情報が表示される障害、その原因は
https://xtech.nikkei.com/atcl/nxt/column/18/00598/010400098/?ST=nxt_thmit_security
境界線防御の破綻で大被害続出、トレンドマイクロが示すサイバー防御の「その先」とは
https://xtech.nikkei.com/atcl/nxt/column/18/00001/05100/?ST=nxt_thmit_security
JVN#96783542 複数のロジテック製品における複数の脆弱性
http://jvn.jp/jp/JVN96783542/index.html
JVN#98115035 Android アプリ「ELECOM File Manager」におけるディレクトリトラバーサルの脆弱性
http://jvn.jp/jp/JVN98115035/index.html
JVN#47580234 複数のエレコム製品における複数の脆弱性
http://jvn.jp/jp/JVN47580234/index.html
0 件のコメント:
コメントを投稿