[월:] 2019년 01월

Announcing Windows 10 Insider Preview Build 18312

2019-01-10 KENNETH 0

Announcing Windows 10 Insider Preview Build 18312 Hello Windows Insiders, today we are releasing Windows 10 Insider Preview Build 18312 (19H1) to Windows Insiders in the Fast ring. REMINDER: As is normal with builds early in the development cycle, builds may contain bugs that might be painful for some. If this makes you uncomfortable, you may want to consider switching to the Slow ring. Slow ring builds will continue to be higher quality. If you are looking for a complete look at what build is in which Insider ring – head on over to Flight Hub. You can also check out the rest of our documentation here including a complete list of new features and updates that have gone out as part of Insider flights for the current development cycle (which currently is 19H1). What’s new in Build 18312 Reserving [ more… ]

No Image

USN-3851-1: Django vulnerability

2019-01-10 KENNETH 0

USN-3851-1: Django vulnerability python-django vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Django could be made to expose spoofed information over the network. Software Description python-django – High-level Python web development framework Details It was discovered that Django incorrectly handled the default 404 page. A remote attacker could use this issue to spoof content using a malicious URL. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 python-django – 1:1.11.15-1ubuntu1.1 python3-django – 1:1.11.15-1ubuntu1.1 Ubuntu 18.04 LTS python-django – 1:1.11.11-1ubuntu1.2 python3-django – 1:1.11.11-1ubuntu1.2 Ubuntu 16.04 LTS python-django – 1.8.7-1ubuntu5.7 python3-django – 1.8.7-1ubuntu5.7 Ubuntu 14.04 LTS python-django – 1.6.11-0ubuntu1.3 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all [ more… ]

No Image

USN-3850-1: NSS vulnerabilities

2019-01-10 KENNETH 0

USN-3850-1: NSS vulnerabilities nss vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in NSS. Software Description nss – Network Security Service library Details Keegan Ryan discovered that NSS incorrectly handled ECDSA key generation. A local attacker could possibly use this issue to perform a cache-timing attack and recover private ECDSA keys. (CVE-2018-0495) It was discovered that NSS incorrectly handled certain v2-compatible ClientHello messages. A remote attacker could possibly use this issue to perform a replay attack. (CVE-2018-12384) It was discovered that NSS incorrectly handled certain padding oracles. A remote attacker could possibly use this issue to perform a variant of the Bleichenbacher attack. (CVE-2018-12404) Update instructions The problem can be corrected by updating your system to the following package [ more… ]

No Image

RHBA-2019:0044-1: binutils bug fix update

2019-01-10 KENNETH 0

RHBA-2019:0044-1: binutils bug fix update Red Hat Enterprise Linux: Updated binutils packages that fix one bug are now available for Red Hat Enterprise Linux 7.2 Advanced Update Support. Source: RHBA-2019:0044-1: binutils bug fix update