DGS (General)takahiro.yamamoto - 19:26 Tuesday 12 May 2026 (36878)
Print this reportLive patching for a new vulnerabilityA new vulnerability different from klog#36851 was addressed via live patching on gateway and web servers. This is a temporary workaround without stopping any systems and services, not a vendor patch. A formal fix will be implemented after the vendor patch will be released.
Comments to this report:
takahiro.yamamoto - 23:07 Saturday 16 May 2026 (36907)
Print this reportA same mitigation measure was applied to all intra workstations and servers running as Debian system.
The vendor has released a patch for the vulnerability that prompted this mitigation measure, and it is scheduled to be applied on the next maintenance day. On the other hand, additional vulnerabilities have been discovered, suggesting that this mitigation measure remains effective, so we plan to keep it in place even after the vendor patch is applied.
takahiro.yamamoto - 3:36 Tuesday 19 May 2026 (36912)
Print this reportVendor's patch was released for the 2nd vulnerability on Red Hat like OS and for the 2nd and the new 4th ones on Debian system. All vendor patches were applied to DGS servers and workstations. The 3rd vulnerability on Red Hat like OS and Debian system are still mitigated by a temporal mitigation measure. A new mitigation measure for the 4th vulnerability on Red Hat like OS was also applied.
takahiro.yamamoto - 19:44 Monday 08 June 2026 (37043)
Print this reportVendor's patch was released and applied. After then, the temporal mitigation measure was removed.
As the result, a remediation for these two issues was completed.