[월:] 2017년 04월

No Image

USN-3261-1: QEMU vulnerabilities

2017-04-21 KENNETH 0

USN-3261-1: QEMU vulnerabilities Ubuntu Security Notice USN-3261-1 20th April, 2017 qemu vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in QEMU. Software description qemu – Machine emulator and virtualizer Details Zhenhao Hong discovered that QEMU incorrectly handled the Virtio GPUdevice. An attacker inside the guest could use this issue to cause QEMU tocrash, resulting in a denial of service. This issue only affected Ubuntu16.04 LTS and Ubuntu 16.10. (CVE-2016-10028, CVE-2016-10029) Li Qiang discovered that QEMU incorrectly handled the 6300esb watchdog. Aprivileged attacker inside the guest could use this issue to cause QEMU tocrash, resulting in a denial of service. (CVE-2016-10155) Li Qiang discovered that QEMU incorrectly handled the i.MX Fast EthernetController. A privileged attacker inside the guest could use this issue tocause [ more… ]

No Image

Bountycraft at Nullcon 2017

2017-04-21 KENNETH 0

Bountycraft at Nullcon 2017 Security is a critical component of our products at Microsoft. A strong emphasis on security is a persistent factor throughout our entire development process. Microsoft is committed to designing and developing secure software. Testing is performed both internally and by working closely with the broader security community. This is done through a wide range of partnerships and programs including bug bounties to ensure that customers receive the most secure products. Serving this mission, Microsoft launched its first bounty program in 2013 to compensate researchers for their time spent investigating and reporting security vulnerabilities directly to Microsoft. Since then, Microsoft has significantly expanded its bug bounty programs to include Office, Windows, Internet Explorer, Edge and the Microsoft Cloud Services. After launching the Microsoft Cloud, Edge and Mitigation bypass bounty programs, we realized that the software and services [ more… ]

[도서] 실전, 3D 프린팅 활용가이드

2017-04-21 KENNETH 0

[도서] 실전, 3D 프린팅 활용가이드 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]실전, 3D 프린팅 활용가이드 김천환 저/강우준,이철규 감수 | 비제이퍼블릭(BJ퍼블릭) | 2017년 04월 판매가 19,800원 (10%할인) | YES포인트 1,100원(5%지급) 이벤트 : 주목 IT 신간&예약판매 사은품 이벤트 NCS 융합 과정에 맞춘 3D 프린팅 실무 4차 산업혁명 시대 속의 3D 프린팅은 소자본 개인 창업자에서 대규모 기업의 제조 부문 혁신에 이르기까지 융합 기반 기술의 핵심 아이콘으로 성장하고 있다. 개인의 아이디 Source: [도서] 실전, 3D 프린팅 활용가이드