「Apache Log4jã€ã«ã¾ãŸRCE脆弱性 ~修æ£ç‰ˆã®v2.17.1ãªã©ãŒå…¬é–‹ï¼æ·±åˆ»åº¦ã¯ã€ŒModerateã€
標的型攻撃ã§æ‚ªç”¨ã•ã‚ŒãŸInternet Explorerã®æœªä¿®æ£ã®è„†å¼±æ€§CVE-2020-0674ã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ãŸ - piyolog
2020å¹´1月17æ—¥ã€Microsoftã¯Internet Explorerã«æ·±åˆ»ãªè„†å¼±æ€§ãŒå˜åœ¨ã—発表時点ã§ã¾ã ä¿®æ£ä¸ã§ã‚ã‚‹ã“ã¨ã‚’明らã‹ã«ã—ã¾ã—ãŸã€‚ã“ã“ã§ã¯é–¢é€£ã™ã‚‹æƒ…å ±ã‚’ã¾ã¨ã‚ã¾ã™ã€‚ 1.概è¦ç·¨ â‘ ã„ã¾ä½•ãŒèµ·ãã¦ã„ã‚‹ã®ï¼Ÿï¼ˆ1月17日時点) サãƒãƒ¼ãƒˆã•ã‚Œã¦ã„ã‚‹å…¨ã¦ã®Internet Explorerã«æ·±åˆ»ãªè„†å¼±æ€§ã€‚脆弱性ã¯CVE-2020-0674ãŒæŽ¡ç•ªã€‚1月11日時点ã®CVSSスコア(ç¾çŠ¶å€¤ï¼‰ã¯7.1。 17日時点ã§ä¿®æ£ä¸ã§ã‚り更新プãƒã‚°ãƒ©ãƒ ãŒå…¬é–‹ã•ã‚Œã¦ã„ãªã„。é™å®šçš„ãªãŒã‚‰ã“ã®è„†å¼±æ€§ã‚’悪用ã™ã‚‹æ”»æ’ƒãŒç¢ºèªã•ã‚Œã¦ã„る。 2020å¹´1月14æ—¥ã«ã‚µãƒãƒ¼ãƒˆæœŸé™ã‚’è¿ŽãˆãŸã°ã‹ã‚Šã®Windows 7も影響をå—ã‘る。更新プãƒã‚°ãƒ©ãƒ ã®æä¾›ã¯æ˜Žè¨˜ãŒãªã„ãŒã€MicrosoftãŒç™ºè¡¨ã—ãŸå¯¾è±¡ã®ãƒªã‚¹ãƒˆã«å«ã¾ã‚Œã¦ã„る。 â‘¡ ã“ã®è„†å¼±æ€§ã®å½±éŸ¿ã‚’å—ã‘ã‚‹ã¨ã©ã†ãªã‚‹ã®ï¼Ÿ リモートã‹ã‚‰ä»»æ„ã®ã‚³ãƒ¼ãƒ‰å®Ÿè¡ŒãŒå¯èƒ½ãªè„†å¼±æ€§ãŒå˜åœ¨ã—ã€æ‚ª
Intel製CPUã«è¦‹ã¤ã‹ã£ãŸæ–°ãŸãªè„†å¼±æ€§ã€ŒSPOILERã€ã¯ã¾ãŸã‚‚シリコンレベルã§ã®å†è¨è¨ˆã«ã‚ˆã‚‹ä¿®æ£ãŒå¿…è¦
by Uwe Hermann 2018å¹´ã«è¤‡æ•°è¦‹ã¤ã‹ã£ãŸè„†å¼±æ€§ã«ç¶šã„ã¦ã€Intel製CPUã«æ–°ãŸãªè„†å¼±æ€§ãŒè¦‹ã¤ã‹ã‚Šã¾ã—ãŸã€‚「SPOILERã€ã¨å付ã‘られãŸã“ã®è„†å¼±æ€§ã¯ã€2018å¹´ã«è¦‹ã¤ã‹ã£ãŸè„†å¼±æ€§ãƒ»ã€ŒMeltdownã€ã‚„「Spectreã€ã¨åŒæ§˜ã«ã€ŒæŠ•æ©Ÿçš„実行ã€ã¨å‘¼ã°ã‚Œã‚‹å‡¦ç†ã‚’悪用ã™ã‚‹ã‚‚ã®ã§ã€ã‚·ãƒªã‚³ãƒ³ãƒ¬ãƒ™ãƒ«ã§ã®å¤§å¹…ãªå†è¨è¨ˆãªã—ã«ã¯ä¿®æ£ã¯ã§ããªã„ã‚‚ã®ã ãã†ã§ã™ã€‚ SPOILER: Speculative Load Hazards Boost Rowhammer and Cache Attacks (PDFファイル)https://arxiv.org/pdf/1903.00446.pdf SPOILER alert, literally: Intel CPUs afflicted with simple data-spewing spec-exec vulnerability • The Reg
CPUã®è„†å¼±æ€§ Meltdownã¨Spectreã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ãŸ - piyolog
2018å¹´1月3æ—¥ã«CPUã«é–¢é€£ã™ã‚‹3ã¤ã®è„†å¼±æ€§æƒ…å ±ãŒå…¬é–‹ã•ã‚Œã¾ã—ãŸã€‚å ±å‘Šè€…ã«ã‚ˆã‚‹ã¨ã“れらã®è„†å¼±æ€§ã¯Meltdownã€Spectreã¨å‘¼ç§°ã•ã‚Œã¦ã„ã¾ã™ã€‚ã“ã“ã§ã¯é–¢é€£æƒ…å ±ã‚’ã¾ã¨ã‚ã¾ã™ã€‚ 脆弱性ã®æ¦‚è¦ å ±å‘Šè€…ãŒè„†å¼±æ€§æƒ…å ±ã‚’æ¬¡ã®å°‚用サイトã§å…¬é–‹ã—ãŸã€‚ Meltdown and Spectre (ã¾ãŸã¯ã“ã¡ã‚‰) 3ã¤ã®è„†å¼±æ€§ã®æ¦‚è¦ã‚’ã¾ã¨ã‚ã‚‹ã¨æ¬¡ã®é€šã‚Šã€‚ 脆弱性ã®å称 Meltdown Spectre CVE CVE-2017-5754(Rogue data cache load) CVE-2017-5753(Bounds check bypass) CVE-2017-5715(Branch target injection) 影響をå—ã‘ã‚‹CPU Intel Intelã€AMDã€ARM CVSSv3 基本値 4.7(JPCERT/CC) 5.6(NIST) â†ã«åŒã˜ PoC å ±å‘Šè€…éžå…¬é–‹ è«–æ–‡ä¸ã«x
プãƒã‚»ãƒƒã‚µã®è„†å¼±æ€§ã€ŒMeltdownã€ã¨ã€ŒSpectreã€ã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ãŸ | DevelopersIO
森永ã§ã™ã€‚ 新年早々大変ãªè„†å¼±æ€§ãŒå‡ºã¦ãã¦ã‚»ã‚ュリティクラスタãŒã–ã‚ã¤ã„ã¦ã¾ã™ã€‚ 内容ã«ã‚ˆã£ã¦2ã¤ã®è„†å¼±æ€§ã«åˆ†ã‹ã‚Œã¦ã„ã¦ã€ã€ŒMeltdownã€ã¨ã€ŒSpectreã€ã¨åå‰ãŒã¤ã‘られã¦ã„ã¾ã™ã€‚ ç¾åœ¨ä½¿ç”¨ã•ã‚Œã¦ã„ã‚‹ã»ã¼å…¨ã¦ã®CPUã«ãŠã„ã¦å¯¾è±¡ã¨ãªã‚Šã†ã‚‹ã¨ã„ã†ç›¸å½“影響範囲ãŒåºƒã„脆弱性ã§ã™ã€‚ ã¾ã 詳細ãŒå…¬é–‹ã•ã‚Œã¦ã„ãªã„部分もã‚ã‚Šã¾ã™ãŒã€ãƒ‘ッãƒã§å¯¾å‡¦ã§ãる脆弱性ã§ã™ã®ã§è½ã¡ç€ã„ã¦å¯¾å¿œã—ã€ç¶šå ±ã‚’å¾…ã¡ã¾ã—ょã†ã€‚ ç¾åœ¨åˆ†ã‹ã£ã¦ã„る範囲ã®æƒ…å ±ã‚’ã¾ã¨ã‚ã¾ã™ã€‚ Meltdown and Spectre æ¦‚è¦ ä»Šå›žã®è„†å¼±æ€§ã¯å¤§ãã3ã¤ã«åˆ†ã‘られã¾ã™ã€‚ Variant 1: bounds check bypass (CVE-2017-5753) Variant 2: branch target injection (CVE-2017-5715) Variant 3: rogue data cache load (CV
Intelã€ãƒ—ãƒã‚»ãƒƒã‚µè„†å¼±æ€§ã¯AMDã‚„Armã«ã‚‚ã‚ã‚Šã€å¯¾ç–ã§å”力ä¸ã¨èª¬æ˜Ž
ç±³Intelã¯1月3日(ç¾åœ°æ™‚間)ã€è¤‡æ•°ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ç ”ç©¶è€…ãŒé–‹ç¤ºã—ãŸãƒ—ãƒã‚»ãƒƒã‚µã®2ã¤ã®è„†å¼±æ€§ã«ã¤ã„ã¦ã€ã“ã®å•é¡Œã¯Intelã®ãƒ—ãƒã‚»ãƒƒã‚µå›ºæœ‰ã®ã‚‚ã®ã§ã¯ãªãã€ç±³AMDや英Armã€OSæä¾›ä¼æ¥ãªã©ã¨å¯¾ç–ã®ãŸã‚ã«å”力ã—ã¦ã„ã‚‹ã¨èª¬æ˜Žã—ãŸã€‚ ã“ã®è„†å¼±æ€§ã¯ã€ã‚ªãƒ¼ã‚¹ãƒˆãƒªã‚¢ã®ã‚°ãƒ©ãƒ¼ãƒ„工科大å¦ã‚„ç±³Googleã®ç ”究者ãŒç™ºè¦‹ã—ã€ã€ŒMeltdownã€ã¨ã€ŒSpectreã€ã¨å付ã‘ãŸã€‚ã¾ã 対ç–ã¯ãªã„ãŒã€Intelã¯ã€Œç¾åœ¨ã®ãƒ¡ãƒ‡ã‚£ã‚¢ã«ã‚ˆã‚‹ä¸æ£ç¢ºãªå ±é“ã«å¯¾å‡¦ã™ã‚‹ãŸã‚ã€ã€è„†å¼±æ€§ã®å˜åœ¨ã‚’èªã‚る声明を出ã—ãŸã¨ã—ã¦ã„る。具体的ãªå¯¾ç–ã«ã¤ã„ã¦ã¯ã€Œå¯¾ç–ã®ãŸã‚ã®ã‚½ãƒ•ãƒˆã‚¦ã‚§ã‚¢ãŠã‚ˆã³ãƒ•ã‚¡ãƒ¼ãƒ ウェアã®ã‚¢ãƒƒãƒ—デートãŒå¯èƒ½ã«ãªã‚‹æ¥é€±ç™ºè¡¨ã™ã‚‹ã€ã¨ã„ã†ã€‚ Intelã«ã‚ˆã‚‹ã¨ã€ã“ã®è„†å¼±æ€§ã‚’悪用ã•ã‚Œã‚‹ã¨ãƒ‡ãƒ¼ã‚¿ã‚’ç›—ã¾ã‚Œã‚‹å¯èƒ½æ€§ã¯ã‚ã‚‹ãŒã€ãƒ‡ãƒ¼ã‚¿ã‚’改ã–ã‚“ã•ã‚ŒãŸã‚Šå‰Šé™¤ã•ã‚ŒãŸã‚Šã™ã‚‹ã“ã¨ã¯ãªã„ã¨ã„ã†ã€‚ ユーザーãŒã“ã®è„†å¼±æ€§ã«å¯¾å‡¦ã™ã‚‹ãŸã‚ã«ã¯ã€å„社ã®ãƒ—ãƒã‚»ãƒƒã‚µã‚’æ
プãƒã‚»ãƒƒã‚µè„†å¼±æ€§ã€ŒMeltdownã€ã¨ã€ŒSpectreã€ã®ã¾ã¨ã‚サイト開è¨
ç±³IntelãŒç™ºè¡¨ã—ãŸãƒ—ãƒã‚»ãƒƒã‚µã®é‡å¤§ãªè„†å¼±æ€§ã«ã¤ã„ã¦ã®ã¾ã¨ã‚サイトãŒé–‹è¨ã•ã‚ŒãŸã€‚複数ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ç ”ç©¶è€…ãŒç™ºè¦‹ã—ãŸ2ã¤ã®è„†å¼±æ€§ã€ŒMeltdownã€ã¨ã€ŒSpectreã€ã«ã¤ã„ã¦ã€åŸºæœ¬çš„ãªèª¬æ˜ŽãŒã‚ã‚Šã€æŠ€è¡“çš„ãªæƒ…å ±ãŠã‚ˆã³å½±éŸ¿ã‚’å—ã‘るサービスや製å“ã‚’æä¾›ã™ã‚‹ä¼æ¥ã®å…¬å¼ã‚µã‚¤ãƒˆã¸ã®ãƒªãƒ³ã‚¯ãªã©ãŒæŽ²è¼‰ã•ã‚Œã¦ã„る。 ã“ã®ã‚µã‚¤ãƒˆã¯2ã¤ã®è„†å¼±æ€§ã‚’発見ã—ãŸçµ„ç¹”ã®1ã¤ã§ã‚るオーストリアã®ã‚°ãƒ©ãƒ¼ãƒ„工科大å¦ãŒé–‹è¨ã—ãŸã€‚Meltdown(崩壊)ã¨ã„ã†å称ã¯ã€ã“ã®è„†å¼±æ€§ãŒæ£å¸¸ã§ã‚ã‚Œã°ãƒãƒ¼ãƒ‰ã‚¦ã‚§ã‚¢ã«ã‚ˆã£ã¦å®ˆã‚‰ã‚Œã‚‹ã¯ãšã®ã‚»ã‚ュリティ境界を崩壊ã•ã›ã‚‹ã“ã¨ã‹ã‚‰ä»˜ã‘られãŸã¨ã„ã†ã€‚Spectre(幽霊)ã¯ã€speculative execution(投機的実行:コンピュータã«å¿…è¦ã¨ã—ãªã„ã‹ã‚‚ã—ã‚Œãªã„仕事をã•ã›ã‚‹ã“ã¨ï¼‰ã‹ã‚‰æ¥ã¦ã„ã‚‹ãŒã€ä¿®æ£ãŒé›£ã—ãã€é•·ãæ‚©ã¾ã•ã‚Œã‚‹å¯èƒ½æ€§ãŒã‚ã‚‹ã“ã¨ã‚‚示ã—ã¦ã„ã‚‹ã¨ã„ã†ã€‚ 2ã¤ã®è„†å¼±æ€§ã¯å€‹äººç”¨ã®PCã ã‘ã§ãªã
Meltdown and Spectre
Meltdown and Spectre Vulnerabilities in modern computers leak passwords and sensitive data. Meltdown and Spectre exploit critical vulnerabilities in modern processors. These hardware vulnerabilities allow programs to steal data which is currently processed on the computer. While programs are typically not permitted to read data from other programs, a malicious program can exploit Meltdown and Spec
Reading privileged memory with a side-channel
We have discovered that CPU data cache timing can be abused to efficiently leak information out of mis-speculated execution, leading to (at worst) arbitrary virtual memory read vulnerabilities across local security boundaries in various contexts. Variants of this issue are known to affect many modern processors, including certain processors by Intel, AMD and ARM. For a few Intel and AMD CPU models
Intelã®ãƒ—ãƒã‚»ãƒƒã‚µãƒãƒƒãƒ—ã«æ ¹æœ¬çš„ãªè¨è¨ˆä¸Šã®æ¬ 陥ãŒç™ºè¦šã€å„OSã«ã‚¢ãƒƒãƒ—デートã®å¿…è¦æ€§
by Sh4rp_i ã“ã“10å¹´é–“ã«è£½é€ ã•ã‚ŒãŸIntelã®ãƒ—ãƒã‚»ãƒƒã‚µã«ã€è¨è¨ˆä¸Šã®æ¬ 陥ãŒè¦‹ã¤ã‹ã‚Šã¾ã—ãŸã€‚最悪ã®å ´åˆã€ãƒ‘スワードやãƒã‚°ã‚¤ãƒ³ã‚ーã€ã‚ャッシュファイルãªã©ãŒæ ¼ç´ã•ã‚ŒãŸã‚«ãƒ¼ãƒãƒ«ãƒ¡ãƒ¢ãƒªãƒ¼ã®å†…容をèªã¿å–られるæã‚ŒãŒã‚ã‚‹ã¨ã®ã“ã¨ãªã®ã§ã™ãŒã€Intel x86ãƒãƒ¼ãƒ‰ã‚¦ã‚§ã‚¢ã«å˜åœ¨ã™ã‚‹æ¬ 陥ã®ãŸã‚ã€ãƒžã‚¤ã‚¯ãƒã‚³ãƒ¼ãƒ‰ã‚¢ãƒƒãƒ—デートã§ã¯å¯¾å¿œä¸å¯èƒ½ã§ã€å„OSãŒã‚½ãƒ•ãƒˆã‚¦ã‚§ã‚¢ãƒ¬ãƒ™ãƒ«ã§ä¿®æ£ã‚’ã‹ã‘ã‚‹ã‹ã€ãƒã‚°ã®ãªã„æ–°ãŸãªãƒ—ãƒã‚»ãƒƒã‚µã‚’å°Žå…¥ã™ã‚‹å¿…è¦ãŒã‚ã‚‹ã¨ã®ã“ã¨ã€‚ 'Kernel memory leaking' Intel processor design flaw forces Linux, Windows redesign • The Register https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/ ã“ã®ãƒã‚°ã¯ã€ãƒ‡ãƒ¼ã‚¿ãƒ™ãƒ¼ã‚¹ã‚¢ãƒ—リケーショ
Kernel-memory-leaking Intel processor design flaw forces Linux, Windows redesign
Kernel-memory-leaking Intel processor design flaw forces Linux, Windows redesign Final update A fundamental design flaw in Intel's processor chips has forced a significant redesign of the Linux and Windows kernels to defang the chip-level security bug. Programmers are scrambling to overhaul the open-source Linux kernel's virtual memory system. Meanwhile, Microsoft is expected to publicly introduce
「GHOSTã€ã¯å±é™ºã˜ã‚ƒãªã‹ã£ãŸï¼ï¼Ÿ 求ã‚ã‚‰ã‚Œã‚‹è„†å¼±æ€§æƒ…å ±ã®è¦‹æ¥µã‚æ–¹
æƒ…å ±å‡¦ç†æŽ¨é€²æ©Ÿæ§‹ï¼ˆIPA)ã¨JPCERTコーディãƒãƒ¼ã‚·ãƒ§ãƒ³ã‚»ãƒ³ã‚¿ãƒ¼ï¼ˆJPCERT/CC)ãŒå…±åŒã§é‹å–¶ã™ã‚‹è„†å¼±æ€§æƒ…å ±ã‚’é›†ã‚ãŸWebサイト「JVNâ–¼ã€ã§2015å¹´1月28æ—¥ã€UNIXç³»OSã®Linuxã«å«ã¾ã‚Œã‚‹GNU Cライブラリ▼(glibc)ã«è„†å¼±æ€§ã€ŒGHOSTâ–¼ã€ãŒã‚ã‚‹ã¨å…¬è¡¨ã•ã‚Œã‚‹ã¨ã€å›½å†…ã®å ±é“æ©Ÿé–¢ã¯ä¸€æ–‰ã«ã“ã®è„†å¼±æ€§ã«é–¢ã™ã‚‹ãƒ‹ãƒ¥ãƒ¼ã‚¹ã‚’é…ä¿¡ã—ã¾ã—ãŸã€‚JVNãŒå‚考ã«ã—ãŸã®ã¯ã€ã‚»ã‚ュリティ脆弱性検知サービスをæä¾›ã™ã‚‹ç±³ã‚¯ã‚©ãƒªã‚¹ãŒ2015å¹´1月27日(ç¾åœ°æ™‚間)ã«å…¬é–‹ã—ãŸãƒ¬ãƒãƒ¼ãƒˆã§ã™ã€‚
DROWN Attack
Operators of vulnerable servers need to take action. There is nothing practical that browsers or end-users can do on their own to protect against this attack. Is my site vulnerable? Modern servers and clients use the TLS encryption protocol. However, due to misconfigurations, many servers also still support SSLv2, a 1990s-era predecessor to TLS. This support did not matter in practice, since no up
OpenSSLã®è„†å¼±æ€§CVE-2016-800(DROWN)ã‚„CVE-2016-0702(CacheBleed)ã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ã¿ãŸ - piyolog
2016å¹´3月1æ—¥(ç¾åœ°æ™‚é–“)ã€OpenSSL プãƒã‚¸ã‚§ã‚¯ãƒˆã¯è„†å¼±æ€§ã®æ„›ç§°ã€ŒDROWNã€ã‚„「CacheBleedã€ã‚’å«ã‚€8件ã®è„†å¼±æ€§æƒ…å ±ã‚’å…¬é–‹ã—ã€ã“れら影響をå—ã‘ã‚‹ã‚‚ã®ã®ä¿®æ£ã‚’è¡Œã£ãŸæœ€æ–°ç‰ˆã‚’リリースã—ã¾ã—ãŸã€‚ã“ã“ã§ã¯é–¢é€£æƒ…å ±ã‚’ã¾ã¨ã‚ã¾ã™ã€‚ è„†å¼±æ€§æƒ…å ±æ¦‚è¦ æ³¨æ„å–šèµ· OpenSSL ã®è¤‡æ•°ã®è„†å¼±æ€§ã«é–¢ã™ã‚‹æ³¨æ„å–šèµ· - JPCERT/CC SSLv2 DROWN Attack - US-CERT OpenSSL Projectã®å…¬é–‹æƒ…å ± Forthcoming OpenSSL releases OpenSSL Security Advisory ï¼»1st March 2016ï¼½ OpenSSL version 1.0.1s published OpenSSL version 1.0.2g published An OpenSSL User’s Guide to DROWN 2016å¹´3月1日公
(dnsmasq ã¸ã®è¿½è¨˜ã‚ã‚Š) CVE-2015-7547 glibcã®getaddrinfo ã« stack buffer overflow ã®è„†å¼±æ€§
å—ã‘ã‚‹ ã“ã®æƒ…å ±ã¯ä¸‹è¨˜ã‹ã‚‰ CVE-2015-7547: Critical Vulnerability in glibc getaddrinfo https://isc.sans.edu/forums/diary/CVE20157547+Critical+Vulnerability+in+glibc+getaddrinfo/20737/ getaddrinfo() を使ã£ã¦ã‚‹å ´åˆã«ã€å½±éŸ¿ã‚’å—ã‘ã‚‹å¯èƒ½æ€§ãŒã‚ã‚Šã¾ã™ã€‚ ã™ã§ã« PoC ã¯å…¬é–‹ã•ã‚Œã¦ã„ã¦ã„ã¾ã™ã€‚ https://github.com/fjserna/CVE-2015-7547 ã“ã“ã«å…¬é–‹ã•ã‚Œã¦ã„ã‚‹ CVE-2015-7547-proc.py ã¨ã‹ã‚’ root 権é™ä»˜ãã§å®Ÿè¡Œã™ã‚‹ã¨ã€ã“ã®æ‰‹ã® buffer overflow を引ãèµ·ã“ã™ãƒ‘ケットを返ã—ã¦ãã‚‹ DNSã‚ャッシュサーãƒã‚‚ã©ãã«ãªã£ã¦ãã‚Œã¾ã™ã€‚ ã“れをãƒãƒ¼ã‚«ãƒ«ã§å‹•ã‹ã—ãŸçŠ¶æ…‹
リリースã€éšœå®³æƒ…å ±ãªã©ã®ã‚µãƒ¼ãƒ“スã®ãŠçŸ¥ã‚‰ã›
最新ã®äººæ°—エントリーã®é…ä¿¡
j次ã®ãƒ–ックマーク
kå‰ã®ãƒ–ックマーク
lã‚ã¨ã§èªã‚€
eコメント一覧を開ã
oページを開ã
cve-details
「Thunderbirdã€ã‚„「LibreOfficeã€ãªã©ã«å½±éŸ¿ã‹ ~MozillaãŒã€ŒNSSã€ã®è‡´å‘½çš„ãªè„†å¼±æ€§ã‚’公表ï¼ã€ŒFirefoxã€ã«ã¯å½±éŸ¿ãªã—
“投機的実行â€æ©Ÿèƒ½ã‚’å‚™ãˆã‚‹CPUã«è„†å¼±æ€§ã€Windowså‘ã‘ã®ã‚»ã‚ュリティパッãƒãŒç·Šæ€¥å…¬é–‹ï¼ã‚¦ã‚¤ãƒ«ã‚¹å¯¾ç–ソフトã¨äº’æ›æ€§ã«ã¯æ³¨æ„
TechCrunch | Startup and Technology News
Today's CPU vulnerability: what you need to know
{{#tags}}- {{label}}
{{/tags}}