2021年4月21日水曜日

21日 水曜日、赤口

+ RHSA-2021:1298 Moderate: java-1.8.0-openjdk security update
https://access.redhat.com/errata/RHSA-2021:1298
CVE-2021-2163

+ RHSA-2021:1307 Moderate: java-11-openjdk security update
https://access.redhat.com/errata/RHSA-2021:1307
CVE-2021-2163

+ RHSA-2021:1301 Moderate: java-1.8.0-openjdk security update
https://access.redhat.com/errata/RHSA-2021:1301
CVE-2021-2163

+ Google Chrome 90.0.4430.85 released
https://chromereleases.googleblog.com/2021/04/stable-channel-update-for-desktop_20.html

+ nginx 1.20.0 released
http://nginx.org/en/CHANGES-1.20

+ VU#567764 MySQL for Windows is vulnerable to privilege escalation due to OPENSSLDIR location
https://www.kb.cert.org/vuls/id/567764
CVE-2021-2307

+ Oracle Critical Patch Update Advisory - April 2021
https://www.oracle.com/security-alerts/cpuapr2021.html

+ Samba 4.14.3 Available for Download
https://www.samba.org/samba/history/samba-4.14.3.html

+ MySQL 8.0.24, 5.7.34 released
https://dev.mysql.com/doc/relnotes/mysql/8.0/en/news-8-0-24.html
https://dev.mysql.com/doc/relnotes/mysql/5.7/en/news-5-7-34.html

+ MySQLの脆弱性(Oracle Critical Patch Update Advisory - Apr 2021)
https://security.sios.com/vulnerability/mysql-security-vulnerability-20210421.html
CVE-2020-17530
CVE-2020-8277
CVE-2020-17527
CVE-2021-23841
CVE-2020-1971
CVE-2021-3449
CVE-2020-28196
CVE-2021-3450
CVE-2021-2144
CVE-2021-2172
CVE-2021-2298
CVE-2021-2178
CVE-2021-2202
CVE-2021-2307
CVE-2021-2304
CVE-2019-7317
CVE-2021-2180
CVE-2021-2194
CVE-2021-2154
CVE-2021-2166
CVE-2021-2196
CVE-2021-2300
CVE-2021-2305
CVE-2021-2179
CVE-2021-2226
CVE-2021-2160
CVE-2021-2164
CVE-2021-2169
CVE-2021-2170
CVE-2021-2193
CVE-2021-2203
CVE-2021-2212
CVE-2021-2213
CVE-2021-2278
CVE-2021-2299
CVE-2021-2230
CVE-2021-2146
CVE-2021-2201
CVE-2021-2208
CVE-2021-2215
CVE-2021-2217
CVE-2021-2293
CVE-2021-2174
CVE-2021-2171
CVE-2021-2162
CVE-2021-2301
CVE-2021-2308
CVE-2021-2232

+ Oracle Javaの脆弱性(Oracle Critical Patch Update Advisory - Apr 2021)
https://security.sios.com/vulnerability/java-security-vulnerability-20210421.html
CVE-2021-23841
CVE-2021-3450
CVE-2021-2161
CVE-2021-2163

VU#213092 Pulse Connect Secure vulnerable to authentication bypass that could allow for remote code execution
https://www.kb.cert.org/vuls/id/213092

「gmai.com」へのメール誤送信が相次ぐ、正体不明ドッペルゲンガーの恐怖
https://xtech.nikkei.com/atcl/nxt/column/18/00676/041700076/?ST=nxt_thmit_security

iPhoneの「Appleでサインイン」、ネットサービスを安全かつ手軽に使う
https://xtech.nikkei.com/atcl/nxt/column/18/00088/00090/?ST=nxt_thmit_security

0 件のコメント:

コメントを投稿