[월:] 2016년 06월

No Image

USN-2994-1: libxml2 vulnerabilities

2016-06-07 KENNETH 0

USN-2994-1: libxml2 vulnerabilities Ubuntu Security Notice USN-2994-1 6th June, 2016 libxml2 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 15.10 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in libxml2. Software description libxml2 – GNOME XML library Details It was discovered that libxml2 incorrectly handled certain malformeddocuments. If a user or automated system were tricked into opening aspecially crafted document, an attacker could possibly cause libxml2 tocrash, resulting in a denial of service. (CVE-2015-8806, CVE-2016-2073,CVE-2016-3627, CVE-2016-3705, CVE-2016-4447) It was discovered that libxml2 incorrectly handled certain malformeddocuments. If a user or automated system were tricked into opening aspecially crafted document, an attacker could cause libxml2 to crash,resulting in a denial of service, or possibly execute arbitrary code.(CVE-2016-1762, CVE-2016-1834) Mateusz Jurczyk discovered that libxml2 incorrectly handled certainmalformed documents. If a [ more… ]

[도서] 스케치업 2016&V-Ray

2016-06-07 KENNETH 0

[도서] 스케치업 2016&V-Ray 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]스케치업 2016&V-Ray 남현우 저 | 정보문화사 | 2016년 06월 판매가 16,200원 (10%할인) | YES포인트 900원(5%지급) 스케치업의 매력! 그 이상의 가치! 책 집필과 학생을 지도하고 있는 필자가 다양한 실무 경험을 바탕으로 가장 강조하는 것은 바로 기능의 활용이다. 스케치업 기능을 먼저 익힌 후에는 반드시 기능을 이용한 활 Source: [도서] 스케치업 2016&V-Ray

No Image

USN-2992-1: Oxide vulnerabilities

2016-06-07 KENNETH 0

USN-2992-1: Oxide vulnerabilities Ubuntu Security Notice USN-2992-1 6th June, 2016 oxide-qt vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 15.10 Ubuntu 14.04 LTS Summary Several security issues were fixed in Oxide. Software description oxide-qt – Web browser engine for Qt (QML plugin) Details An unspecified security issue was discovered in Blink. If a user weretricked in to opening a specially crafted website, an attacker couldpotentially exploit this to bypass same-origin restrictions.(CVE-2016-1673) An issue was discovered with Document reattachment in Blink in somecircumstances. If a user were tricked in to opening a specially craftedwebsite, an attacker could potentially exploit this to bypass same-originrestrictions. (CVE-2016-1675) A type confusion bug was discovered in V8. If a user were tricked in toopening a specially crafted website, an attacker could potentially exploitthis to obtain sensitive information. (CVE-2016-1677) [ more… ]

No Image

RHSA-2016:1205-1: Important: spice security update

2016-06-07 KENNETH 0

RHSA-2016:1205-1: Important: spice security update Red Hat Enterprise Linux: An update for spice is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-0749, CVE-2016-2150 Source: RHSA-2016:1205-1: Important: spice security update

No Image

RHSA-2016:1204-1: Important: spice-server security update

2016-06-07 KENNETH 0

RHSA-2016:1204-1: Important: spice-server security update Red Hat Enterprise Linux: An update for spice-server is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-0749, CVE-2016-2150 Source: RHSA-2016:1204-1: Important: spice-server security update