[월:] 2016년 09월

No Image

USN-3092-1: Samba vulnerability

2016-09-29 KENNETH 0

USN-3092-1: Samba vulnerability Ubuntu Security Notice USN-3092-1 28th September, 2016 samba vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Samba could be tricked into connecting to impersonated servers. Software description samba – SMB/CIFS file, print, and login server for Unix Details Stefan Metzmacher discovered that Samba incorrectly handled certain flagsin SMB2/3 client connections. A remote attacker could use this issue todisable client signing and impersonate servers by performing a man in themiddle attack. Samba has been updated to 4.3.11 in Ubuntu 14.04 LTS and Ubuntu 16.04 LTS.In addition to the security fix, the updated packages contain bug fixes,new features, and possibly incompatible changes. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: samba 2:4.3.11+dfsg-0ubuntu0.16.04.1 Ubuntu 14.04 LTS: samba 2:4.3.11+dfsg-0ubuntu0.14.04.1 [ more… ]

No Image

USN-3093-1: ClamAV vulnerabilities

2016-09-29 KENNETH 0

USN-3093-1: ClamAV vulnerabilities Ubuntu Security Notice USN-3093-1 28th September, 2016 clamav vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary ClamAV could be made to crash or run programs if it processed a specially crafted file. Software description clamav – Anti-virus utility for Unix Details It was discovered that ClamAV incorrectly handled certain malformed files.A remote attacker could use this issue to cause ClamAV to crash, resultingin a denial of service, or possibly execute arbitrary code. In the default installation, attackers would be isolated by the ClamAVAppArmor profile. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.04 LTS: clamav 0.99.2+dfsg-0ubuntu0.16.04.1 Ubuntu 14.04 LTS: clamav 0.99.2+addedllvm-0ubuntu0.14.04.1 Ubuntu 12.04 LTS: clamav 0.99.2+addedllvm-0ubuntu0.12.04.1 To update your system, please follow these instructions: [ more… ]

No Image

Update to the Microsoft Edge Web Platform on Windows Insider Preview Bug Bounty Program terms

2016-09-29 KENNETH 0

Update to the Microsoft Edge Web Platform on Windows Insider Preview Bug Bounty Program terms On August 4, 2016 we launched a bounty program that targets Remote Code Execution (RCE) vulnerabilities in Microsoft Edge on the Windows Insider Preview Slow (WIP slow). Today, we will be making additions to this bounty program. Since security is a continuous effort and not a destination, we prioritize acquiring different types of vulnerabilities in different points of time. Currently, we are focusing on vulnerabilities that lead to violation of W3C standards that compromise privacy and integrity of important user data, and RCEs. This program now includes: Same Origin Policy bypass vulnerabilities (example: UXSS) Referer Spoofing vulnerabilities Remote Code Execution vulnerabilities in Microsoft Edge on Windows Insider Preview Vulnerabilities in open source sections of Chakra The bounty will run August 4, 2016 through May 15, [ more… ]

No Image

2017년 AWS 신규 프랑스 파리 리전 설립 계획 발표

2016-09-29 KENNETH 0

2017년 AWS 신규 프랑스 파리 리전 설립 계획 발표 클라우드 컴퓨팅이 산업의 새로운 기준(New Normal)이 됨에 따라, AWS 고객 기반도 꾸준히 확대되면서 다양해지고 있습니다. 이에 맞추어 AWS는 앞으로도 글로벌 인프라에 더 많은 투자를 진행하면서 리전(Region)을 확대하고 있습니다. 봉쥬르 프랑스 2017년에는 프랑스 파리에 AWS의 새로운 리전을 오픈하게 됩니다. 새 리전은 프랑스에 있는 AWS 파트너와 고객에게 클라우드를 통한 더 원활한 비지니스 및 데이터 저장 등의 기능을 제공하게 됩니다. 새로 공개될 리전은 유럽에서 4번째가 될 것입니다. 현재 유럽에는 2 개의 리전이 있습니다. – 유럽 (아일랜드), 유럽 (프랑크푸르트). 그리고, 앞으로 몇 개월 이내에 영국에 리전을 추가 할 예정입니다. 이에 따라 유럽에서 AWS를 이용하는 고객에게 총 10개의 가용 영역(AZ)를 제공하고, 유럽 내에서 데이터를 저장하거나 탄력성 높은 응용 프로그램을 설계 및 구축 할 수 있습니다. 현재 AWS 글로벌 인프라는 전세계 13개 리전에 35의 가용 영역으로 구성되어있습니다. 내년에는 영국, 캐나다, 중국, 미국 오하이오와 프랑스 파리를 포함 다섯 [ more… ]

Announcing Windows 10 Insider Preview Build 14936 for PC and Mobile

2016-09-29 KENNETH 0

Announcing Windows 10 Insider Preview Build 14936 for PC and Mobile Hello Windows Insiders! Today we are excited to be releasing Windows 10 Insider Preview Build 14936 for PC to Windows Insiders in the Fast ring. New Extensions in Microsoft Edge We’re working with partners on adding new extensions and want our Insiders to try them out first! We have another new release which we need your help testing and giving feedback on before we publish to the general public: Turn Off the Lights is a lightweight and useful add-in designed for a more comfortable video experience. We also need some more help testing our other preview extensions: Tampermonkey is a popular userscript manager that lets users customize the content of pages across the web. Microsoft Personal Shopping Assistant is your smart shopping cart across the web, which collects your [ more… ]