[월:] 2019년 08월

No Image

USN-4049-3: GLib regression

2019-08-06 KENNETH 0

USN-4049-3: GLib regression glib2.0 regression A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Summary USN-4049-1 introduced a regression in GLib. Software Description glib2.0 – GLib Input, Output and Streaming Library (fam module) Details USN-4049-1 fixed a vulnerability in GLib. The update introduced a regression in Ubuntu 16.04 LTS causing a possibly memory leak. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that GLib created directories and files without properly restricting permissions. An attacker could possibly use this issue to access sensitive information. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS libglib2.0-0 – 2.48.2-0ubuntu4.4 libglib2.0-bin – 2.48.2-0ubuntu4.4 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the [ more… ]

No Image

Corporate IoT – a path to intrusion

2019-08-06 KENNETH 0

Corporate IoT – a path to intrusion Several sources estimate that by the year 2020 some 50 billion IoT devices will be deployed worldwide. IoT devices are purposefully designed to connect to a network and many are simply connected to the internet with little management or oversight. Such devices still must be identifiable, maintained, and monitored by security teams, especially in large … Corporate IoT – a path to intrusion Read More » Source: Corporate IoT – a path to intrusion

No Image

Azure Security Lab: a new space for Azure research and collaboration

2019-08-06 KENNETH 0

Azure Security Lab: a new space for Azure research and collaboration Azure is exceptionally secure.  To help keep it that way, we are doubling the top bounty reward for Azure vulnerabilities to $40,000.  But we aren’t stopping there.   To make it easier for security researchers to confidently and aggressively test Azure, we are inviting a select group of talented individuals to come and do their worst … Azure Security Lab: a new space for Azure research and collaboration Read More » Source: Azure Security Lab: a new space for Azure research and collaboration

Windows 10 Tip: Clipboard

2019-08-06 KENNETH 0

Windows 10 Tip: Clipboard Editor’s note: We’re back with the summer batch of weekly Windows 10 tips posts, which highlight some of the many helpful features that come with the Windows 10 May 2019 Update. We’ve been working hard behind the scenes to make your daily life easier with a streamlined update process, as well as clean and simple experiences for your desktop. Thanks to the Windows 10 May 2019 Update, you’ll find that your Clipboard can do more. Hold down the Windows key + V to check it out. You’ll find a history of the past 25 things you’ve copied, including URLs, text from web pages and docs – and even screenshots. See it in action: Find out more about Clipboard through this Windows Community video and article. If you like this, check out more Windows 10 Tips. The [ more… ]

No Image

USN-4058-2: Bash vulnerability

2019-08-05 KENNETH 0

USN-4058-2: Bash vulnerability bash vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 ESM Ubuntu 12.04 ESM Summary A system hardening measure could be bypassed. Software Description bash – GNU Bourne Again SHell Details USN-4058-1 fixed a vulnerability in bash. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that Bash incorrectly handled the restricted shell. An attacker could possibly use this issue to escape restrictions and execute any command. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM bash – 4.3-7ubuntu1.8+esm1 Ubuntu 12.04 ESM bash – 4.2-2ubuntu2.8 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References USN-4058-1 CVE-2019-9924 Source: USN-4058-2: [ more… ]