28日 水曜日、赤口

+ RHSA-2025:8201 Important: gstreamer1-plugins-bad-free security update

https://access.redhat.com/errata/RHSA-2025:8201

CVE-2025-3887

+ RHSA-2025:8132 Important: libsoup security update

https://access.redhat.com/errata/RHSA-2025:8132

CVE-2025-2784

CVE-2025-4948

CVE-2025-32049

CVE-2025-32914

+ RHSA-2025:8197 Moderate: unbound security update

https://access.redhat.com/errata/RHSA-2025:8197

CVE-2024-8508

+ RHSA-2025:8183 Important: gstreamer1-plugins-bad-free security update

https://access.redhat.com/errata/RHSA-2025:8183

CVE-2025-3887

+ RHSA-2025:8142 Moderate: kernel security update

https://access.redhat.com/errata/RHSA-2025:8142

CVE-2025-21964

+ RHSA-2025:8136 Important: python-tornado security update

https://access.redhat.com/errata/RHSA-2025:8136

CVE-2025-47287

+ RHSA-2025:8126 Important: libsoup security update

https://access.redhat.com/errata/RHSA-2025:8126

CVE-2025-2784

CVE-2025-4948

CVE-2025-32049

CVE-2025-32914

+ Google Chrome 137.0.7151.55/56 released

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

+ Mozilla Firefox 139.0 released

https://www.mozilla.org/en-US/firefox/139.0/releasenotes/

+ Mozilla Foundation Security Advisory 2025-42 Security Vulnerabilities fixed in Firefox 139

https://www.mozilla.org/en-US/security/advisories/mfsa2025-42/

MFSA-TMP-2025-0001

CVE-2025-5263

CVE-2025-5264

CVE-2025-5265

CVE-2025-5266

CVE-2025-5270

CVE-2025-5271

CVE-2025-5267

CVE-2025-5268

CVE-2025-5272

+ Mozilla Foundation Security Advisory 2025-45 Security Vulnerabilities fixed in Thunderbird 139

https://www.mozilla.org/en-US/security/advisories/mfsa2025-45/

CVE-2025-5262

CVE-2025-5263

CVE-2025-5264

CVE-2025-5265

CVE-2025-5266

CVE-2025-5270

CVE-2025-5271

CVE-2025-5267

CVE-2025-5268

CVE-2025-5272

+ Mozilla Thunderbird 139.0, 128.11.0 released

https://www.thunderbird.net/en-US/thunderbird/139.0/releasenotes/

https://www.thunderbird.net/en-US/thunderbird/128.11.0esr/releasenotes/

+ JVNVU#91298012 OpenSSL x509アプリケーションにおける、拒否設定の代わりに信頼設定を付加してしまう問題（OpenSSL Security Advisory [22nd May 2025]）

https://jvn.jp/vu/JVNVU91298012/index.html