[월:] 2023년 02월

No Image

USN-5902-1: PHP vulnerabilities

2023-02-28 KENNETH 0

USN-5902-1: PHP vulnerabilities It was discovered that PHP incorrectly handled certain invalid Blowfish password hashes. An invalid password hash could possibly allow applications to accept any password as valid, contrary to expectations. (CVE-2023-0567) It was discovered that PHP incorrectly handled resolving long paths. A remote attacker could possibly use this issue to obtain or modify sensitive information. (CVE-2023-0568) It was discovered that PHP incorrectly handled a large number of parts in HTTP form uploads. A remote attacker could possibly use this issue to cause PHP to consume resources, leading to a denial of service. (CVE-2023-0662) Source: USN-5902-1: PHP vulnerabilities

No Image

USN-5821-3: pip regression

2023-02-28 KENNETH 0

USN-5821-3: pip regression USN-5821-1 fixed a vulnerability in wheel and pip. Unfortunately, it was missing a commit to fix it properly in pip. We apologize for the inconvenience. Original advisory details: Sebastian Chnelik discovered that wheel incorrectly handled certain file names when validated against a regex expression. An attacker could possibly use this issue to cause a denial of service. Source: USN-5821-3: pip regression

No Image

USN-5901-1: GnuTLS vulnerability

2023-02-28 KENNETH 0

USN-5901-1: GnuTLS vulnerability Hubert Kario discovered that GnuTLS had a timing side-channel when handling certain RSA messages. A remote attacker could possibly use this issue to recover sensitive information. Source: USN-5901-1: GnuTLS vulnerability

No Image

Previewing Phone Link for iPhone users on Windows 11 with Windows Insiders

2023-02-28 KENNETH 0

Previewing Phone Link for iPhone users on Windows 11 with Windows Insiders As announced today by Panos, we are beginning an early preview of Phone Link for iOS on Windows 11 with Windows Insiders. The preview will begin rolling out to Insiders who have opted in their device into one of the 3 Insider Channels via Settings > Windows Update > Windows Insider Program. If you are new to the Windows Insider Program, you can go here to get started. We are beginning this preview with a small percentage of Insiders at first throughout this week, which means not all Insiders will see the preview right away. We will increase the availability of the preview to more Insiders over time and based on feedback we receive with this first set of Insiders. The preview will require Phone Link app version [ more… ]

No Image

Introducing a big update to Windows 11 making the everyday easier including bringing the new AI-powered Bing to the taskbar

2023-02-28 KENNETH 0

Introducing a big update to Windows 11 making the everyday easier including bringing the new AI-powered Bing to the taskbar It’s an exciting time in technology, not just for our industry but for the world. The Windows PC has never been more relevant in our daily lives, and this is increasingly the case as we approach the next wave of computing led by the mass adoption of AI. Today’s major update to Windows 11, that I am pumped to introduce, meets this new age of AI and reinvents and improves the way people get things done on their PCs. Launched just over a year ago, Windows 11 gave the PC a modern refresh and all new experiences that enable each of us to connect, participate, and be seen and heard. Since the launch, Windows 11 users continue to be more [ more… ]