[월:] 2018년 01월

Improvements to the DevTools Console in the Windows 10 Fall Creators Update

2018-01-18 KENNETH 0

Improvements to the DevTools Console in the Windows 10 Fall Creators Update We made significant improvements to the Microsoft Edge DevTools in EdgeHTML 16 with the Windows 10 Fall Creator’s Update, including new support for DOM mutation breakpoints and event and CSS inspection in the new Elements tab. Today, we’d like to walk through new improvements we’ve made to the Console to improve the output and input experiences of working with the Console. Our main goals were to increase the flexibility of the Console in displaying information, and to increase your productivity when working with the Console prompt. First, let’s cover the new features we made to improve the user experience of Console output. Log message consolidation and UX improvements Have you ever written a console.log statement in a for loop and watched your entire Console fill up with output? [ more… ]

No Image

USN-3536-1: GNU C Library vulnerability

2018-01-18 KENNETH 0

USN-3536-1: GNU C Library vulnerability Ubuntu Security Notice USN-3536-1 17th January, 2018 eglibc vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.04 LTS Summary The GNU C library could be made to run programs as an administrator. Software description eglibc – GNU C Library Details It was discovered that the GNU C library did not properly handle all ofthe possible return values from the kernel getcwd(2) syscall. A localattacker could potentially exploit this to execute arbitrary code in setuidprograms and gain administrative privileges. (CVE-2018-1000001) Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 12.04 LTS: libc6 2.15-0ubuntu10.21 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need to reboot your computer to makeall the necessary changes. References CVE-2018-1000001 Source: USN-3536-1: GNU [ more… ]

No Image

Windows 10 SDK Preview Build 17069 now available

2018-01-18 KENNETH 0

Windows 10 SDK Preview Build 17069 now available Today, we released a new Windows 10 Preview Build of the SDK to be used in conjunction with Windows 10 Insider Preview (Build 17069 or greater). The Preview SDK Build 17069 contains bug fixes and under development changes to the API surface area. The Preview SDK can be downloaded from developer section on Windows Insider. For feedback and updates to the known issues, please see the developer forum. For new developer feature requests, head over to our Windows Platform UserVoice. Things to note: This build works in conjunction with previously released SDKs and Visual Studio 2017. You can install this SDK and still also continue to submit your apps that target Windows 10 Creators build or earlier to the store. The Windows SDK will now formally only be supported by Visual Studio 2017 and greater. You can download [ more… ]

No Image

USN-3535-2: Bind vulnerability

2018-01-18 KENNETH 0

USN-3535-2: Bind vulnerability Ubuntu Security Notice USN-3535-2 17th January, 2018 bind9 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.04 LTS Summary Bind could be made to crash if it received specially crafted network traffic. Software description bind9 – Internet Domain Name Server Details USN-3535-1 fixed a vulnerability in Bind. This update providesthe corresponding update for Ubuntu 12.04 ESM. Original advisory details: Jayachandran Palanisamy discovered that the Bind resolver incorrectly handled fetch cleanup sequencing. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 12.04 LTS: bind9 1:9.8.1.dfsg.P1-4ubuntu0.24 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. [ more… ]

No Image

USN-3535-1: Bind vulnerability

2018-01-17 KENNETH 0

USN-3535-1: Bind vulnerability Ubuntu Security Notice USN-3535-1 17th January, 2018 bind9 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Bind could be made to crash if it received specially crafted network traffic. Software description bind9 – Internet Domain Name Server Details Jayachandran Palanisamy discovered that the Bind resolver incorrectlyhandled fetch cleanup sequencing. A remote attacker could possibly use thisissue to cause Bind to crash, resulting in a denial of service. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.10: bind9 1:9.10.3.dfsg.P4-12.6ubuntu1.1 Ubuntu 16.04 LTS: bind9 1:9.10.3.dfsg.P4-8ubuntu1.10 Ubuntu 14.04 LTS: bind9 1:9.9.5.dfsg-3ubuntu0.17 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2017-3145 Source: USN-3535-1: Bind vulnerability