[월:] 2019년 06월

No Image

USN-4015-2: DBus vulnerability

2019-06-12 KENNETH 0

USN-4015-2: DBus vulnerability dbus vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 ESM Ubuntu 12.04 ESM Summary DBus could allow unintended access to services. Software Description dbus – simple interprocess messaging system Details USN-4015-1 fixed a vulnerability in DBus. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: Joe Vennix discovered that DBus incorrectly handled DBUS_COOKIE_SHA1 authentication. A local attacker could possibly use this issue to bypass authentication and connect to DBus servers with elevated privileges. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM dbus – 1.6.18-0ubuntu4.5+esm1 libdbus-1-3 – 1.6.18-0ubuntu4.5+esm1 Ubuntu 12.04 ESM dbus – 1.4.18-1ubuntu1.9 libdbus-1-3 – 1.4.18-1ubuntu1.9 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need [ more… ]

No Image

2019 年 6 月のセキュリティ更新プログラム (月例)

2019-06-12 KENNETH 0

2019 年 6 月のセキュリティ更新プログラム (月例) 2019 年 6 月 12 日 (日本時間)、マイクロソフトは以下のソフトウェアのセキュリティ更新プログラムを公開しました。 Source: 2019 年 6 月のセキュリティ更新プログラム (月例)

[도서] 실전 엑셀 비밀 노트

2019-06-12 KENNETH 0

[도서] 실전 엑셀 비밀 노트 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]실전 엑셀 비밀 노트 김진찬 저 | 지와수 | 2019년 06월 판매가 16,200원 (10%할인) | YES포인트 900원(5%지급) 실무에서의 엑셀은 쉽고, 빠르고, 단순해야 한다 직장에서 가장 유용하게 쓰이는 오피스 프로그램 중 하나가 ‘엑셀’이다. 하지만 정작 실무에서 엑셀을 제대로 쓰는 사람들은 많지 않다. 현실적으로 차분하게 Source: [도서] 실전 엑셀 비밀 노트

A Regular Expression Tester for NGINX and NGINX Plus

2019-06-12 KENNETH 0

A Regular Expression Tester for NGINX and NGINX Plus While working on a regular expression (regex) to use with NGINX, I got an idea for a way to easily test a regex from within an actual NGINX configuration. (The regex tester works just the same for NGINX Plus, but for ease of reading I’ll refer to NGINX.) Support for regular expressions is one of the powerful features of NGINX, but regexes can be complex and difficult to get right, especially if you don’t work with them regularly. NGINX allows regexes in multiple parts of a configuration, for example locations, maps, rewrites, and server names. The tester described here is for regexes in locations and maps. There are other free online regex testers that are good for most regexes, but NGINX uses some non‑standard shortcuts optimized for web applications. For example, you [ more… ]

No Image

USN-4016-2: Neovim vulnerability

2019-06-12 KENNETH 0

USN-4016-2: Neovim vulnerability Neovim vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.10 Summary Neovim could be made to run programs as your login if it opened a specially crafted file. Software Description neovim – heavily refactored vim fork Details It was discovered that Neovim incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code. (CVE-2019-12735) Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04 neovim – 0.3.4-1ubuntu0.19.04.1 neovim-runtime – 0.3.4-1ubuntu0.19.04.1 Ubuntu 18.10 neovim – 0.3.1-1ubuntu0.1 neovim-runtime – 0.3.1-1ubuntu0.1 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References USN-4016-1 CVE-2019-12735 Source: USN-4016-2: Neovim vulnerability