[월:] 2022년 01월

No Image

USN-5212-2: Apache HTTP Server vulnerabilities

2022-01-10 KENNETH 0

USN-5212-2: Apache HTTP Server vulnerabilities USN-5212-1 fixed several vulnerabilities in Apache. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that the Apache HTTP Server incorrectly handled certain forward proxy requests. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly perform a Server Side Request Forgery attack. (CVE-2021-44224) It was discovered that the Apache HTTP Server Lua module incorrectly handled memory in the multipart parser. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-44790) Source: USN-5212-2: Apache HTTP Server vulnerabilities

No Image

WordPress 5.8.3 Security Release

2022-01-07 KENNETH 0

WordPress 5.8.3 Security Release This security release features four security fixes. Because this is a security release, it is recommended that you update your sites immediately. All versions since WordPress 3.7 have also been updated. WordPress 5.8.3 is a short-cycle security release. The next major release will be version 5.9, which is already in the Release Candidate stage. You can update to WordPress 5.8.3 by downloading from WordPress.org or visiting your Dashboard → Updates and clicking Update Now. If you have sites that support automatic background updates, they’ve already started the update process. Security Updates Four security issues affect WordPress versions between 3.7 and 5.8. If you haven’t yet updated to 5.8, all WordPress versions since 3.7 have also been updated to fix the following security issue (except where noted otherwise): Props to Karim El Ouerghemmi and Simon Scannell of [ more… ]

No Image

Announcing Windows 11 Insider Preview Build 22526

2022-01-07 KENNETH 0

Announcing Windows 11 Insider Preview Build 22526 Hello Windows Insiders, today we are releasing Windows 11 Insider Preview Build 22526 to the Dev Channel. TL;DR This build has a good set of changes and improvements as well as fixes. Please be sure to read the list of known issues below! Changes and Improvements We’re experimenting with showing ALT + TAB as windowed instead of full screen for some Insiders. We have added support for wideband speech when using Apple AirPods products (AirPods, AirPods Pro, or AirPods Max), improving audio quality for voice calls. Starting with Build 22518, Credential Guard is now enabled by default on Windows 11 Enterprise (E3 and E5) licensed PCs that are enterprise-joined. We are experimenting with indexing more file locations so that using search to find important files in Files Explorer is quicker. Fixes [File Explorer] [ more… ]

[도서] Amazon VPC 네트워킹 원리와 보안

2022-01-07 KENNETH 0

[도서] Amazon VPC 네트워킹 원리와 보안 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]Amazon VPC 네트워킹 원리와 보안 차정도 저 | 에이콘출판사 | 2022년 01월 판매가 28,800원 (10%할인) | YES포인트 1,600원(5%지급) 기업 클라우드 보안 정책을 수립하고 적합성 평가를 직접 수행하며 겪은 저자의 노하우가 담긴 VPC 네트워킹 책이다. VPC 공간과 컴퓨팅, 네트워킹 연결 서비스의 구조와 원리를 AWS 토폴로지로 친절히 설명해 초보 Source: [도서] Amazon VPC 네트워킹 원리와 보안

No Image

USN-5213-1: WebKitGTK vulnerabilities

2022-01-06 KENNETH 0

USN-5213-1: WebKitGTK vulnerabilities A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution. Source: USN-5213-1: WebKitGTK vulnerabilities