[월:] 2022년 10월

No Image

Come to the Fauna Faire in Minecraft Dungeons’ 3rd seasonal adventure

2022-10-20 KENNETH 0

Come to the Fauna Faire in Minecraft Dungeons’ 3rd seasonal adventure Take on the Tower with all-new multiplayer levels, explore the jungle in Treetop Tangle, or see who now awaits you at camp. Fauna Faire, Minecraft Dungeons’ third seasonal adventure, arrives on Oct. 19, bringing both new ways to play and customize your character. “The fall might be upon us, but Fauna Faire brings an animal-focused late summer to the camp,” writes Per Landin in a post on Minecraft.net. “This means there will be an abundance of furr-tastic skins, pets and other mob-themed cosmetic items to add to your closet. Whether you want to embrace your inner chicken or show off your mighty paw-er, there’s something for everyone.” Head over to Minecraft.net to watch the video and find out more. Source: Come to the Fauna Faire in Minecraft Dungeons’ 3rd [ more… ]

No Image

USN-5690-1: libXdmcp vulnerability

2022-10-20 KENNETH 0

USN-5690-1: libXdmcp vulnerability It was discovered that libXdmcp was generating weak session keys. A local attacker could possibly use this issue to perform a brute force attack and obtain another user’s key. Source: USN-5690-1: libXdmcp vulnerability

No Image

Updating NGINX for Vulnerabilities in the MP4 and HLS Video-Streaming Modules

2022-10-19 KENNETH 0

Updating NGINX for Vulnerabilities in the MP4 and HLS Video-Streaming Modules Today, we are releasing updates to NGINX Plus, NGINX Open Source, NGINX Open Source Subscription, and NGINX Ingress Controller in response to recently discovered vulnerabilities in the NGINX modules for video streaming with the MP4 and Apple HTTP Live Streaming (HLS) formats, ngx_http_mp4_module and ngx_http_hls_module. (NGINX Open Source Subscription is a specially packaged edition of NGINX Open Source available in certain geographies.) The vulnerabilities have been registered in the Common Vulnerabilities and Exposures (CVE) database and the F5 Security Incident Response Team (SIRT) has assigned scores to them using the Common Vulnerability Scoring System (CVSS v3.1) scale. The following vulnerabilities in the MP4 module (ngx_http_mp4_module) apply to NGINX Plus, NGINX Open Source, and NGINX Open Source Subscription. CVE-2022-41741 (Memory Corruption) – CVSS score 7.1 (High) CVE-2022-41742 (Memory Disclosure) – CVSS score 7.0 (High) [ more… ]

No Image

USN-5689-1: Perl vulnerability

2022-10-19 KENNETH 0

USN-5689-1: Perl vulnerability It was discovered that Perl incorrectly handled certain signature verification. An remote attacker could possibly use this issue to bypass signature verification. Source: USN-5689-1: Perl vulnerability

No Image

USN-5688-1: Libksba vulnerability

2022-10-19 KENNETH 0

USN-5688-1: Libksba vulnerability It was discovered that an integer overflow could be triggered in Libksba when decoding certain data. An attacker could use this issue to cause a denial of service (application crash) or possibly execute arbitrary code. Source: USN-5688-1: Libksba vulnerability