RHBA-2017:0210-1: pcs bug fix update
RHBA-2017:0210-1: pcs bug fix update Red Hat Enterprise Linux: Updated pcs packages that fix two bugs are now available for Red Hat Enterprise Linux 7. Source: RHBA-2017:0210-1: pcs bug fix update
[월:] 2017년 01월
USN-3165-1: Thunderbird vulnerabilities
USN-3165-1: Thunderbird vulnerabilities Ubuntu Security Notice USN-3165-1 27th January, 2017 thunderbird vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in Thunderbird. Software description thunderbird – Mozilla Open Source mail and newsgroup client Details Multiple memory safety issues were discovered in Thunderbird. If a user weretricked in to opening a specially crafted message, an attacker couldpotentially exploit these to cause a denial of service via applicationcrash, or execute arbitrary code. (CVE-2016-9893, CVE-2017-5373) Andrew Krasichkov discovered that event handlers on <marquee> elementswere executed despite a Content Security Policy (CSP) that disallowedinline JavaScript. If a user were tricked in to opening a speciallycrafted website in a browsing context, an attacker could potentiallyexploit this to conduct cross-site scripting (XSS) attacks.(CVE-2016-9895) A memory corruption [ more… ]
ICYMI – Campaign APIs, desktop app magic and improved analytics
ICYMI – Campaign APIs, desktop app magic and improved analytics Developers, developers, developers! We’ve got quite a few updates for you this week, ranging from the upcoming live event to improved analytics for your apps in the Windows Store. Read on to see our recap of the past week. Windows Developers Day – Creators Update Only a few days left to RSVP for the upcoming Windows Developers Day – Creators Update. You definitely don’t want to miss this event! Click the below tweet to find out how to RSVP and see a schedule of the sessions. News, tips, a live Q&A and much more – get the #WindowsDevDay schedule now.https://t.co/3t958z1GDc — Windows Developer (@windowsdev) January 25, 2017 Campaign APIs for the Windows Store We are very excited to announce the release of campaign APIs for the Windows Store. Using these [ more… ]
USN-3175-1: Firefox vulnerabilities
USN-3175-1: Firefox vulnerabilities Ubuntu Security Notice USN-3175-1 27th January, 2017 firefox vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Firefox could be made to crash or run programs as your login if it opened a malicious website. Software description firefox – Mozilla Open Source web browser Details Multiple memory safety issues were discovered in Firefox. If a user weretricked in to opening a specially crafted website, an attacker couldpotentially exploit these to cause a denial of service via applicationcrash, or execute arbitrary code. (CVE-2017-5373, CVE-2017-5374) JIT code allocation can allow a bypass of ASLR protections in somecircumstances. If a user were tricked in to opening a specially craftedwebsite, an attacker could potentially exploit this to cause a denial ofservice via application crash, or execute [ more… ]
New Ad Performance and App Promotion Performance Reporting in Windows Store Analytics API
New Ad Performance and App Promotion Performance Reporting in Windows Store Analytics API The team in charge of the Windows Store and Dev Center tools is constantly working to make your dev life simpler. Take the release of the Windows Store analytics API in March as an example — they hear your feedback and work to make sure our features are top notch and as up-to-date as possible. Now, the team has enabled two new features that will simplify reporting even further: the Windows Store Analytics API set for both Advertising Performance Reporting and App Promotion Performance Reporting. These API methods have long been a top request, and we are excited to have them ready and available for you and your team to use right now! As with the original analytics API, these new methods provide the information you once [ more… ]