[월:] 2022년 04월

No Image

Windows 11 helps build a more positive, inclusive shopping experience for plus-size women

2022-04-22 KENNETH 0

Windows 11 helps build a more positive, inclusive shopping experience for plus-size women Some people consider clothes shopping to be retail therapy. For Charlotte Oxnam, it’s usually been the opposite of a healing experience. “There’s a really common misconception of, ‘Oh, well there’s multiple sizes. You can just grab one,’ which hurts even more when none of them are yours,” says Oxnam, 20, a plus-size budding entrepreneur and engineering student in her junior year at Northwestern University. “It’s this constant feeling of otherness. Even if you haven’t experienced it in clothing, everyone’s felt it to some degree: of being the odd man out, being the one not thought about, the one left behind. It felt like no matter what you do – the diets you try, the sports you play, the workouts you do – you don’t get to be [ more… ]

No Image

Two epic stories – The Shrouded Deep and Legend of the Veil – become playable in Sea of Thieves

2022-04-22 KENNETH 0

Two epic stories – The Shrouded Deep and Legend of the Veil – become playable in Sea of Thieves Sea of Thieves’ third time-limited Adventure, The Shrouded Deep, and the long-awaited Pirate Legend Voyage, Legend of the Veil, are playable now. The connected stories both involve the Veil of the Ancients, a magical artefact that can grant its user the ability to travel between the living world and the spectral Sea of the Damned. “In The Shrouded Deep, players join forces with Belle and famed Megalodon hunter Merrick, and attempt to summon that great pale leviathan: the Shrouded Ghost,” writes Mike Chapman, creative director for Rare, in a post on Xbox Wire. “Be prepared for a monster hunt that’ll live on in legend as you seek to liberate the Veil of the Ancients from the belly of the beast. Then [ more… ]

No Image

USN-5385-1: Linux kernel vulnerabilities

2022-04-21 KENNETH 0

USN-5385-1: Linux kernel vulnerabilities Brendan Dolan-Gavitt discovered that the aQuantia AQtion Ethernet device driver in the Linux kernel did not properly validate meta-data coming from the device. A local attacker who can control an emulated device can use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-43975) It was discovered that the UDF file system implementation in the Linux kernel could attempt to dereference a null pointer in some situations. An attacker could use this to construct a malicious UDF image that, when mounted and operated on, could cause a denial of service (system crash). (CVE-2022-0617) Lyu Tao discovered that the NFS implementation in the Linux kernel did not properly handle requests to open a directory on a regular file. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2022-24448) It [ more… ]

No Image

USN-5384-1: Linux kernel vulnerabilities

2022-04-21 KENNETH 0

USN-5384-1: Linux kernel vulnerabilities It was discovered that the UDF file system implementation in the Linux kernel could attempt to dereference a null pointer in some situations. An attacker could use this to construct a malicious UDF image that, when mounted and operated on, could cause a denial of service (system crash). (CVE-2022-0617) Lyu Tao discovered that the NFS implementation in the Linux kernel did not properly handle requests to open a directory on a regular file. A local attacker could use this to expose sensitive information (kernel memory). (CVE-2022-24448) It was discovered that the YAM AX.25 device driver in the Linux kernel did not properly deallocate memory in some error conditions. A local privileged attacker could use this to cause a denial of service (kernel memory exhaustion). (CVE-2022-24959) Source: USN-5384-1: Linux kernel vulnerabilities

No Image

USN-5383-1: Linux kernel vulnerabilities

2022-04-21 KENNETH 0

USN-5383-1: Linux kernel vulnerabilities David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2022-1015) Brendan Dolan-Gavitt discovered that the Marvell WiFi-Ex USB device driver in the Linux kernel did not properly handle some error conditions. A physically proximate attacker could use this to cause a denial of service (system crash). (CVE-2021-43976) Wenqing Liu discovered that the f2fs file system implementation in the Linux kernel did not properly validate inode types while performing garbage collection. An attacker could use this to construct a malicious f2fs image that, when mounted and operated on, could cause a denial of service (system crash). (CVE-2021-44879) It was discovered that the UDF file system implementation in the Linux kernel [ more… ]