[월:] 2016년 12월

No Image

USN-3155-1: Firefox vulnerabilities

2016-12-14 KENNETH 0

USN-3155-1: Firefox vulnerabilities Ubuntu Security Notice USN-3155-1 13th December, 2016 firefox vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Firefox could be made to crash or run programs as your login if it opened a malicious website. Software description firefox – Mozilla Open Source web browser Details Multiple security vulnerabilities were discovered in Firefox. If a userwere tricked in to opening a specially crafted website, an attacker couldpotentially exploit these to conduct cross-site scripting (XSS) attacks,obtain sensitive information, cause a denial of service via applicationcrash, or execute arbitrary code. (CVE-2016-9080, CVE-2016-9893,CVE-2016-9894, CVE-2016-9895, CVE-2016-9896, CVE-2016-9897, CVE-2016-9898,CVE-2016-9899, CVE-2016-9900, CVE-2016-9901, CVE-2016-9902, CVE-2016-9903,CVE-2016-9904) Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: firefox 50.1.0+build2-0ubuntu0.16.10.1 Ubuntu 16.04 LTS: firefox 50.1.0+build2-0ubuntu0.16.04.1 [ more… ]

No Image

Cortana to open up to new devices and developers with Cortana Skills Kit and Cortana Devices SDK

2016-12-14 KENNETH 0

Cortana to open up to new devices and developers with Cortana Skills Kit and Cortana Devices SDK We believe that everyone deserves a personal assistant. One to help you cope as you battle to stay on top of everything, from work to your home life. Calendars, communications and commitments. An assistant that is available everywhere you need it, working in concert with the experts you rely on to get things done. We’re at the beginning of a technological revolution in artificial intelligence. The personal digital assistant is the interface where all the powers of that intelligence can become an extension of each one of us. Delivering on this promise will take a community that is equally invested in the outcome and able to share in the benefits. Today we are inviting you to join us in this vision for Cortana [ more… ]

No Image

USN-3156-1: APT vulnerability

2016-12-14 KENNETH 0

USN-3156-1: APT vulnerability Ubuntu Security Notice USN-3156-1 13th December, 2016 apt vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary An attacker could trick APT into installing altered packages. Software description apt – Advanced front-end for dpkg Details Jann Horn discovered that APT incorrectly handled InRelease files.If a remote attacker were able to perform a man-in-the-middle attack, thisflaw could potentially be used to install altered packages. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: apt 1.3.2ubuntu0.1 Ubuntu 16.04 LTS: apt 1.2.15ubuntu0.2 Ubuntu 14.04 LTS: apt 1.0.1ubuntu2.17 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2016-1252 Source: USN-3156-1: APT vulnerability

New features arrive in Microsoft Photos on Windows 10

2016-12-14 KENNETH 0

New features arrive in Microsoft Photos on Windows 10 Focusing on the Creators in all of Us Since I was a kid, I have been drawn to computers because of what they enable each of us to make, to create. Recently Microsoft announced new hardware such as the Surface Studio and Dial, the Windows 10 Creators update, and new software such as Paint 3D, all focused on creators. Creation is a theme that extends across our suite of experiences, including the Photos app that comes with Windows 10. We have now made available the next step in this creator’s journey with an update to Microsoft Photos. We’re making it fun to view all your digital memories in photo or video form, with a refreshed user experience that makes it pleasant to browse your collection. We’ve updated the way you edit [ more… ]

No Image

December 2016 security update release

2016-12-14 KENNETH 0

December 2016 security update release Today we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to apply security updates as soon as they are released. More information about this month’s security updates and advisories can be found in the Security TechNet Library. MSRC team Source: December 2016 security update release