No Image

USN-4027-1: PostgreSQL vulnerability

2019-06-20 KENNETH 0

USN-4027-1: PostgreSQL vulnerability postgresql-10, postgresql-11 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.10 Ubuntu 18.04 LTS Summary PostgreSQL could be made to crash or run programs if it received specially crafted network traffic. Software Description postgresql-11 – Object-relational SQL database postgresql-10 – Object-relational SQL database Details Alexander Lakhin discovered that PostgreSQL incorrectly handled authentication. An authenticated attacker or a rogue server could use this issue to cause PostgreSQL to crash, resulting in a denial of service, or possibly execute arbitrary code. The default compiler options for affected releases should reduce the vulnerability to a denial of service. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04 postgresql-11 – 11.4-0ubuntu0.19.04.1 Ubuntu 18.10 postgresql-10 – 10.9-0ubuntu0.18.10.1 Ubuntu 18.04 LTS postgresql-10 – 10.9-0ubuntu0.18.04.1 To update your [ more… ]

No Image

USN-4023-1: Mosquitto vulnerabilities

2019-06-20 KENNETH 0

USN-4023-1: Mosquitto vulnerabilities mosquitto vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary Several security issues were fixed in Mosquitto. Software Description mosquitto – MQTT version 3.1⁄3.1.1 compatible message broker Details It was discovered that Mosquitto broker incorrectly handled certain specially crafted input and network packets. A remote attacker could use this to cause a denial of service. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 libmosquitto1 – 1.4.15-2ubuntu0.18.10.3 libmosquittopp1 – 1.4.15-2ubuntu0.18.10.3 mosquitto – 1.4.15-2ubuntu0.18.10.3 mosquitto-clients – 1.4.15-2ubuntu0.18.10.3 Ubuntu 18.04 LTS libmosquitto1 – 1.4.15-2ubuntu0.18.04.3 libmosquittopp1 – 1.4.15-2ubuntu0.18.04.3 mosquitto – 1.4.15-2ubuntu0.18.04.3 mosquitto-clients – 1.4.15-2ubuntu0.18.04.3 Ubuntu 16.04 LTS libmosquitto1 – 1.4.8-1ubuntu0.16.04.7 libmosquittopp1 – 1.4.8-1ubuntu0.16.04.7 mosquitto – 1.4.8-1ubuntu0.16.04.7 mosquitto-clients – 1.4.8-1ubuntu0.16.04.7 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In [ more… ]

No Image

USN-4026-1: Bind vulnerability

2019-06-20 KENNETH 0

USN-4026-1: Bind vulnerability bind9 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.10 Ubuntu 18.04 LTS Summary Bind could be made to crash if it received specially crafted network traffic. Software Description bind9 – Internet Domain Name Server Details It was discovered that Bind incorrectly handled certain malformed packets. A remote attacker could possibly use this issue to cause Bind to crash, resulting in a denial of service. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04 bind9 – 1:9.11.5.P1+dfsg-1ubuntu2.5 Ubuntu 18.10 bind9 – 1:9.11.4+dfsg-3ubuntu5.4 Ubuntu 18.04 LTS bind9 – 1:9.11.3+dfsg-1ubuntu1.8 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2019-6471 Source: USN-4026-1: Bind vulnerability

centos8 building 20190620

2019-06-20 KENNETH 0

출처https://wiki.centos.org/About/Building_8 궁금해서 퍼옴, 자세한 내용은 출처에… Current Timeline Item Started Ended Status Sources pushed to CentOS Git 2019-05-07 2019-05-08 DONE Source code evaluation 2019-05-07 YYYY-MM-DD Ongoing New Build System Setup 2019-05-07 2019-05-08 DONE Debranding patches added 2019-05-07 YYYY-MM-DD Ongoing Artwork Requested 2019-03-07 2019-05-07 DONE Artwork Selections 2019-05-09 YYYY-MM-DD Ongoing Build Loop 0 2019-05-07 2019 mid June DONE Build Loop 1 2019 mid June YYYY-MM-DD Ongoing Build Loop N YYYY-MM-DD YYYY-MM-DD Not started Installer work 2019-06-16 YYYY-MM-DD Ongoing QA work YYYY-MM-DD YYYY-MM-DD Not started RC work YYYY-MM-DD YYYY-MM-DD Not started Release work YYYY-MM-DD YYYY-MM-DD Not started Definitions DONE – Step is completed Ongoing – Work is progressing Not started – This step may requires work from another step to reach some completion or requires time from person who is working on other parts. Build loop 0 – Getting an initial set of packages together [ more… ]

Introducing Microsoft Edge preview builds for Windows 7, Windows 8, and Windows 8.1

2019-06-20 KENNETH 0

Introducing Microsoft Edge preview builds for Windows 7, Windows 8, and Windows 8.1 Today we are excited to make preview builds from the Microsoft Edge Canary channel available on Windows 7, Windows 8, and Windows 8.1. This rounds out the initial set of platforms that we began to roll out back in April, so developers and users alike can try out the next version of Microsoft Edge on every major desktop platform. Visit the Microsoft Edge Insider site from your Windows 7, 8, or 8.1 device to download and install the preview today! The Microsoft Edge Dev channel will be coming to previous versions of Windows soon. You will find the experience and feature set on previous versions of Windows to be largely the same as on Windows 10, including forthcoming support for Internet Explorer mode for our enterprise customers. [ more… ]