2024年1月10日水曜日

10日 火曜日、先負

+ Delayed SCIM provisioning syncs of users and groups from Identity Providers
https://jira-service-management.status.atlassian.com/incidents/zt1rvd6kwc5y
https://jira-service-management.status.atlassian.com/incidents/zt1rvd6kwc5y

+ RHSA-2024:0089 Important: kpatch-patch security update
https://access.redhat.com/errata/RHSA-2024:0089
CVE-2023-4622
CVE-2023-42753

+ Google Chrome 120.0.6099.216/217 released
https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_9.html

+ Mozilla Firefox 121.0.1 released
https://www.mozilla.org/en-US/firefox/121.0.1/releasenotes/

+ Mozilla Thunderbird 115.6.1 released
https://www.thunderbird.net/en-US/thunderbird/115.6.1/releasenotes/

+ Wireshark 4.2.2, 4.0.12, 3.6.20 released
https://www.wireshark.org/docs/relnotes/wireshark-4.2.2.html
https://www.wireshark.org/docs/relnotes/wireshark-4.0.12.html
https://www.wireshark.org/docs/relnotes/wireshark-3.6.20.html

+ 2024 年 1 月のセキュリティ更新プログラム (月例)
https://msrc.microsoft.com/blog/2024/01/202401-security-update/

+ Apache Tomcat 10.1.18, 9.0.85, 8.5.98 released
https://tomcat.apache.org/tomcat-10.1-doc/changelog.html#Tomcat_10.1.18_(schultz)
https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.85_(remm)
https://tomcat.apache.org/tomcat-8.5-doc/changelog.html#Tomcat_8.5.98_(schultz)

+ Security updates available for Substance 3D Stager | APSB24-06
https://helpx.adobe.com/security/products/substance3d_stager/apsb24-06.html
CVE-2024-20710
CVE-2024-20711
CVE-2024-20712
CVE-2024-20713
CVE-2024-20714
CVE-2024-20715

+ OpenSSL Security Advisory [9th January 2024]
https://www.openssl.org/news/secadv/20240109.txt
CVE-2023-6129

UPDATE: JVNVU#91654304 Cambium Networks製ePMP Force 300-25におけるコードインジェクションの脆弱性
https://jvn.jp/vu/JVNVU91654304/index.html

JVNVU#92102247 Panasonic製Control FPWIN Pro7における複数の脆弱性
https://jvn.jp/vu/JVNVU92102247/index.html

JVNVU#91401812 複数のTP-Link製品におけるOSコマンドインジェクションの脆弱性
https://jvn.jp/vu/JVNVU91401812/index.html

0 件のコメント:

コメントを投稿