10日 金曜日、友引

+ RHSA-2023:1185 Important: Red Hat JBoss Enterprise Application Platform 7.4 security update

https://access.redhat.com/errata/RHSA-2023:1185

CVE-2023-1108

+ RHSA-2023:1184 Important: Red Hat JBoss Enterprise Application Platform 7.4 security update

https://access.redhat.com/errata/RHSA-2023:1184

CVE-2023-1108

+ RHSA-2023:1181 Moderate: Release of OpenShift Serverless 1.27.1

https://access.redhat.com/errata/RHSA-2023:1181

CVE-2021-46848

CVE-2022-4415

CVE-2022-35737

CVE-2022-40303

CVE-2022-40304

CVE-2022-41717

CVE-2022-47629

CVE-2022-48303

+ RHSA-2023:1179 Moderate: Release of OpenShift Serverless Client kn 1.27.1

https://access.redhat.com/errata/RHSA-2023:1179

CVE-2022-41717

+ RHSA-2023:1177 Important: Red Hat Integration Camel Extension For Quarkus 2.7-1 security update

https://access.redhat.com/errata/RHSA-2023:1177

CVE-2022-41946

CVE-2022-41966

+ RHSA-2023:1174 Moderate: OpenShift API for Data Protection (OADP) 1.1.2 security and bug fix update

https://access.redhat.com/errata/RHSA-2023:1174

CVE-2021-46848

CVE-2022-1122

CVE-2022-1304

CVE-2022-2056

CVE-2022-2057

CVE-2022-2058

CVE-2022-2519

CVE-2022-2520

CVE-2022-2521

CVE-2022-2867

CVE-2022-2868

CVE-2022-2869

CVE-2022-2879

CVE-2022-2880

CVE-2022-2953

CVE-2022-4415

CVE-2022-4883

CVE-2022-22624

CVE-2022-22628

CVE-2022-22629

CVE-2022-22662

CVE-2022-25308

CVE-2022-25309

CVE-2022-25310

CVE-2022-26700

CVE-2022-26709

CVE-2022-26710

CVE-2022-26716

CVE-2022-26717

CVE-2022-26719

CVE-2022-27404

CVE-2022-27405

CVE-2022-27406

CVE-2022-30293

CVE-2022-35737

CVE-2022-40303

CVE-2022-40304

CVE-2022-41715

CVE-2022-41717

CVE-2022-42010

CVE-2022-42011

CVE-2022-42012

CVE-2022-42898

CVE-2022-43680

CVE-2022-44617

CVE-2022-46285

CVE-2022-47629

CVE-2022-48303

+ RHSA-2023:1170 Important: Red Hat OpenShift Data Foundation 4.12.1 security bug fix update

https://access.redhat.com/errata/RHSA-2023:1170

CVE-2020-10735

CVE-2021-4238

CVE-2021-28861

CVE-2022-3650

CVE-2022-4415

CVE-2022-40897

CVE-2022-45061

CVE-2022-47629

+ About the security content of GarageBand for macOS 10.4.8

https://support.apple.com/ja-jp/HT213650

CVE-2023-27960

CVE-2023-27938

+ CESA-2023:1093 Important CentOS 7 pesign Security Update

https://lwn.net/Articles/925702/

+ CESA-2023:1091 Important CentOS 7 kernel Security Update

https://lwn.net/Articles/925701/

+ CESA-2023:1090 Important CentOS 7 samba Security Update

https://lwn.net/Articles/925703/

+ CESA-2023:1095 Moderate CentOS 7 zlib Security Update

https://lwn.net/Articles/925704/

UPDATE: JVN#57224029 IT 資産管理ツール「SS1」および「らくらくPCクラウド」における複数の脆弱性

http://jvn.jp/jp/JVN57224029/index.html

日経コンピュータ 勝村幸博の「今日も誰かが狙われる」

身代金を払う企業がまさかの減少　収入減で焦る攻撃者の新戦略

https://xtech.nikkei.com/atcl/nxt/mag/nc/18/052100113/030300102/?ST=nxt_thmit_security

ニュース解説

伊藤忠商事が異例のセキュリティー専業子会社、自前で「分析官」育てるワケ

https://xtech.nikkei.com/atcl/nxt/column/18/00001/07799/?ST=nxt_thmit_security