4日 水曜日、友引

+ Jira Loading slow / Inaccessible with 5XX errors

https://jira-service-management.status.atlassian.com/incidents/v35388c5g6bw

+ RHSA-2024:10752 Important: firefox security update

https://access.redhat.com/errata/RHSA-2024:10752

CVE-2024-11692

CVE-2024-11694

CVE-2024-11695

CVE-2024-11696

CVE-2024-11697

CVE-2024-11699

+ RHSA-2024:10591 Important: thunderbird security update

https://access.redhat.com/errata/RHSA-2024:10591

CVE-2024-11159

CVE-2024-11692

CVE-2024-11694

CVE-2024-11695

CVE-2024-11696

CVE-2024-11697

CVE-2024-11699

+ RHSA-2024:10761 Important: rhc-worker-playbook security update

https://access.redhat.com/errata/RHSA-2024:10761

CVE-2022-40898

CVE-2023-1428

CVE-2023-32731

CVE-2023-33953

+ RHSA-2024:10759 Important: rhc security update

https://access.redhat.com/errata/RHSA-2024:10759

CVE-2022-3064

+ RHSA-2024:10702 Important: firefox security update

https://access.redhat.com/errata/RHSA-2024:10702

CVE-2024-11692

CVE-2024-11694

CVE-2024-11695

CVE-2024-11696

CVE-2024-11697

CVE-2024-11699

+ RHSA-2024:10592 Important: thunderbird security update

https://access.redhat.com/errata/RHSA-2024:10592

CVE-2024-11159

CVE-2024-11692

CVE-2024-11694

CVE-2024-11695

CVE-2024-11696

CVE-2024-11697

CVE-2024-11699

+ RHSA-2024:10590 Important: python-tornado security update

https://access.redhat.com/errata/RHSA-2024:10590

CVE-2024-52804

+ Google Chrome 131.0.6778.108/.109, 130.0.6723.152 released

https://chromereleases.googleblog.com/2024/12/stable-channel-update-for-desktop.html

https://chromereleases.googleblog.com/2024/12/extended-stable-updates-for-desktop.html

+ Mozilla Thunderbird 128.5.1 released

https://www.thunderbird.net/en-US/thunderbird/128.5.1esr/releasenotes/

+ FreeBSD 14.2-RELEASE Announcement

https://www.freebsd.org/releases/14.2R/announce/

UPDATE: JVN#03447226 スマートフォンアプリ「すかいらーくアプリ」における2つのアクセス制限不備の脆弱性

https://jvn.jp/jp/JVN03447226/index.html

勝村幸博の「今日も誰かが狙われる」

「Gmail届かない問題」でDMARCへの対応進む、しかし肝心のポリシーが甘い

https://xtech.nikkei.com/atcl/nxt/column/18/00676/112800183/?ST=nxt_thmit_security

神奈川の音楽ホール管理団体でサーバー障害、ランサム攻撃の恐れ

https://xtech.nikkei.com/atcl/nxt/news/24/01892/?ST=nxt_thmit_security

有料生成AIツール導入企業の担当者ら約8割が「課題を感じた」、民間調査

https://xtech.nikkei.com/atcl/nxt/news/24/01888/?ST=nxt_thmit_security