[월:] 2017년 09월

No Image

USN-3414-1: QEMU vulnerabilities

2017-09-13 KENNETH 0

USN-3414-1: QEMU vulnerabilities Ubuntu Security Notice USN-3414-1 13th September, 2017 qemu vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in QEMU. Software description qemu – Machine emulator and virtualizer Details Leo Gaspard discovered that QEMU incorrectly handled VirtFS access control.A guest attacker could use this issue to elevate privileges inside theguest. (CVE-2017-7493) Li Qiang discovered that QEMU incorrectly handled VMWare PVSCSI emulation.A privileged attacker inside the guest could use this issue to cause QEMUto consume resources or crash, resulting in a denial of service.(CVE-2017-8112) It was discovered that QEMU incorrectly handled MegaRAID SAS 8708EM2 HostBus Adapter emulation support. A privileged attacker inside the guest coulduse this issue to cause QEMU to crash, resulting in a denial of service, orpossibly to obtain sensitive [ more… ]

No Image

RHSA-2017:2702-1: Critical: flash-plugin security update

2017-09-13 KENNETH 0

RHSA-2017:2702-1: Critical: flash-plugin security update Red Hat Enterprise Linux: An update for flash-plugin is now available for Red Hat Enterprise Linux 6 Supplementary. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-11281, CVE-2017-11282 Source: RHSA-2017:2702-1: Critical: flash-plugin security update

nginx.conf 2017 Keynote: NGINX CEO Gus Robertson

2017-09-13 KENNETH 0

nginx.conf 2017 Keynote: NGINX CEO Gus Robertson This blog post is one of six NGINX team keynotes from nginx.conf 2017. Together, these blog posts introduce the NGINX Application Platform, new products, and product and strategy updates. The blog posts are: This post: Speeding Innovation, Gus Robertson (video here) NGINX Product Roadmap, Owen Garrett (video here) Introducing NGINX Controller, Chris Stetson and Rachael Passov (video here) Introducing NGINX Unit, Igor Sysoev and Nick Shadrin (video here, demo here) To come: The Future of Open Source at NGINX, Ed Robinson (video here) To come: NGINX Amplify demo, Owen Garrett (video here) You may also wish to view the conference video playlist on the NGINX YouTube Channel. Welcome to Portland. It’s fantastic to have you all here. I want to thank you all for coming and making the effort to come up to Portland, if you’re not from Portland. I want [ more… ]

No Image

nginx.conf 2017: Keynote with Gus Robertson

2017-09-13 KENNETH 0

nginx.conf 2017: Keynote with Gus Robertson This post is adapted from the keynote delivered at nginx.conf 2017 in Portland, Oregon, by Gus Robertson, CEO of NGINX, Inc., Speeding Innovation: How NGINX Helps You Deliver Change, Faster and Better on September 5, 2017. Welcome to Portland. It’s fantastic to have you all here. I want to thank you all for coming and making the effort to come up to Portland, if you’re not from Portland. I want to thank, of course, the sponsors who are all outside in the booths. A particular thanks to Red Hat. Many of you probably know that I used to work for Red Hat. It’s great to have their support and have their sponsorship here, as well as all the other sponsors, and for the staff. I want to thank our staff for putting this together. [ more… ]

[도서] 일래스틱서치 고급 기능의 개념과 활용

2017-09-13 KENNETH 0

[도서] 일래스틱서치 고급 기능의 개념과 활용 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]일래스틱서치 고급 기능의 개념과 활용 바디 딕시트 저/김용환 역 | 에이콘출판사 | 2017년 09월 판매가 31,500원 (10%할인) | YES포인트 1,750원(5%지급) 이벤트 : 주목 IT 신간&예약판매 사은품 이벤트 최신 일래스틱서치 5를 소개한 책으로 기존 일래스틱서치 하위 버전에서 제공하던 기능도 함께 소개하고 있다. 새롭게 개선된 아파치 루씬 6의 기본 텍스트 스코어링 메커니즘에 대한 설명과 설정 방법 뿐 아니라 모 Source: [도서] 일래스틱서치 고급 기능의 개념과 활용