[월:] 2021년 09월

No Image

USN-5078-2: Squashfs-Tools vulnerabilities

2021-09-16 KENNETH 0

USN-5078-2: Squashfs-Tools vulnerabilities USN-5078-1 fixed several vulnerabilities in Squashfs-Tools. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Etienne Stalmans discovered that Squashfs-Tools mishandled certain malformed SQUASHFS files. An attacker could use this vulnerability to write arbitrary files to the filesystem. (CVE-2021-40153) Richard Weinberger discovered that Squashfs-Tools mishandled certain malformed SQUASHFS files. An attacker could use this vulnerability to write arbitrary files to the filesystem. (CVE-2021-41072) Source: USN-5078-2: Squashfs-Tools vulnerabilities

[도서] 2022 이공자 DIAT 프리젠테이션 파워포인트 2016 (일반형)

2021-09-15 KENNETH 0

[도서] 2022 이공자 DIAT 프리젠테이션 파워포인트 2016 (일반형) 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]2022 이공자 DIAT 프리젠테이션 파워포인트 2016 (일반형) KIE 기획연구실 저 | 아카데미소프트 | 2021년 10월 판매가 12,600원 (10%할인) | YES포인트 700원(5%지급) 새롭게 변경된 시험유형을 모두 반영한 교재!! 최근에 출제된 DIAT 시험의 출제유형을 분석하여 새롭게 변경된 내용과 시험에 자주 출제되는 부분을 단계별로 체크하고 작성할 수 있도록 구성하였다. 출제유형 완 Source: [도서] 2022 이공자 DIAT 프리젠테이션 파워포인트 2016 (일반형)

Microsoft announces passwordless future – available across Microsoft Edge and Microsoft 365 apps

2021-09-15 KENNETH 0

Microsoft announces passwordless future – available across Microsoft Edge and Microsoft 365 apps I don’t know a single person who enjoys managing passwords. Given how much of my life is spent online and in various apps, keeping track of it all, ensuring they’re unique and regularly updated – it can quickly become overwhelming for me – and I’m a techie! Which is why I’m so excited about today’s announcement that now you can remove the password from your Microsoft account and sign in using passwordless methods like Windows Hello, the Microsoft Authenticator mobile app or a verification code sent to your phone or email. This feature will help to protect your Microsoft account from identity attacks like phishing while providing even easier access to the best apps and services like Microsoft 365, Microsoft Teams, Outlook, OneDrive, Family Safety, Microsoft Edge [ more… ]

No Image

USN-5079-2: curl vulnerabilities

2021-09-15 KENNETH 0

USN-5079-2: curl vulnerabilities USN-5079-1 fixed several vulnerabilities in curl. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Patrick Monnerat discovered that curl incorrectly handled upgrades to TLS. When receiving certain responses from servers, curl would continue without TLS even when the option to require a successful upgrade to TLS was specified. (CVE-2021-22946) Patrick Monnerat discovered that curl incorrectly handled responses received before STARTTLS. A remote attacker could possibly use this issue to inject responses and intercept communications. (CVE-2021-22947) Source: USN-5079-2: curl vulnerabilities

No Image

USN-5079-1: curl vulnerabilities

2021-09-15 KENNETH 0

USN-5079-1: curl vulnerabilities It was discovered that curl incorrect handled memory when sending data to an MQTT server. A remote attacker could use this issue to cause curl to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-22945) Patrick Monnerat discovered that curl incorrectly handled upgrades to TLS. When receiving certain responses from servers, curl would continue without TLS even when the option to require a successful upgrade to TLS was specified. (CVE-2021-22946) Patrick Monnerat discovered that curl incorrectly handled responses received before STARTTLS. A remote attacker could possibly use this issue to inject responses and intercept communications. (CVE-2021-22947) Source: USN-5079-1: curl vulnerabilities