2016년 10월 – 페이지 4 – 지락문화예술공작단

USN-3114-2: nginx regression

2016-10-28 KENNETH 0

USN-3114-2: nginx regression Ubuntu Security Notice USN-3114-2 27th October, 2016 nginx regression A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary USN-3114-1 introduced a regression in nginx packaging. Software description nginx – small, powerful, scalable web/proxy server Details USN-3114-1 fixed a vulnerability in nginx. A packaging issue preventednginx from being reinstalled or upgraded to a subsequent release. Thisupdate fixes the problem. We apologize for the inconvenience. Original advisory details: Dawid Golunski discovered that the nginx package incorrectly handled log file permissions. A remote attacker could possibly use this issue to obtain root privileges. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: nginx-extras 1.10.1-0ubuntu1.2 nginx-full 1.10.1-0ubuntu1.2 nginx-common 1.10.1-0ubuntu1.2 nginx-light 1.10.1-0ubuntu1.2 nginx-core 1.10.1-0ubuntu1.2 Ubuntu 16.04 LTS: nginx-extras 1.10.0-0ubuntu0.16.04.4 nginx-full 1.10.0-0ubuntu0.16.04.4 nginx-common [ more… ]

MS16-128 – Critical: Security Update for Adobe Flash Player (3201860) – Version: 1.0

2016-10-28 KENNETH 0

MS16-128 – Critical: Security Update for Adobe Flash Player (3201860) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (October 27, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10. Source: MS16-128 – Critical: Security Update for Adobe Flash Player (3201860) – Version: 1.0

MySQL 8.0: Retiring support for libmysqld

2016-10-28 KENNETH 0

MySQL 8.0: Retiring support for libmysqld Starting with MySQL 8.0, we will drop libmysqld (aka “embedded server”). This change will affect only a handful of users, but for context let me start with an introduction. Introduction libmysqld (also referred to as “the embedded server”) is a way of using MySQL without the client server protocol.… Source: MySQL 8.0: Retiring support for libmysqld

RHEA-2016:2121-1: Red Hat Enterprise MRG Realtime 2.5 enhancement update

2016-10-28 KENNETH 0

RHEA-2016:2121-1: Red Hat Enterprise MRG Realtime 2.5 enhancement update Red Hat Enterprise Linux: Updated Red Hat Enterprise MRG Realtime packages that add one enhancement are now available for Red Hat Enterprise MRG 2.5. Source: RHEA-2016:2121-1: Red Hat Enterprise MRG Realtime 2.5 enhancement update

RHSA-2016:2120-1: Important: kernel security update

2016-10-27 KENNETH 0

RHSA-2016:2120-1: Important: kernel security update Red Hat Enterprise Linux: An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support and Red Hat Enterprise Linux 6.5 Telco Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2016-5195 Source: RHSA-2016:2120-1: Important: kernel security update