:: IT Security Neophyte Investigator's MEMO ::: 9日金曜日、先負

2025年5月9日金曜日

+ PHP 8.4.7, 8.3.21 released

https://www.php.net/ChangeLog-8.php#8.4.7

https://www.php.net/ChangeLog-8.php#8.3.21

+ PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation

https://www.postgresql.org/support/security/CVE-2025-4207/

+ PostgreSQL 17.5, 16.9, 15.13, 14.18, and 13.21 Released!

https://www.postgresql.org/about/news/postgresql-175-169-1513-1418-and-1321-released-3072/

https://www.postgresql.org/docs/17/release-17-5.html

https://www.postgresql.org/docs/16/release-16-9.html

https://www.postgresql.org/docs/15/release-15-13.html

https://www.postgresql.org/docs/14/release-14-18.html

https://www.postgresql.org/docs/13/release-13-21.html

+ JVNVU#93256936 Apache Tomcatにおける複数の脆弱性（CVE-2025-31650、CVE-2025-31651）

https://jvn.jp/vu/JVNVU93256936/index.html

CVE-2025-31650

CVE-2025-31651

:: IT Security Neophyte Investigator's MEMO ::