USN-6006-1: .NET vulnerability
USN-6006-1: .NET vulnerability It was discovered that .NET did not properly manage dll files. An attacker could potentially use this issue to execute arbitrary code. Source: USN-6006-1: .NET vulnerability
[월:] 2023년 04월
USN-6008-1: Exo vulnerability
USN-6008-1: Exo vulnerability It was discovered that Exo did not properly sanitized desktop files. A remote attacker could possibly use this issue to to cause a crash or arbitrary code execution. Source: USN-6008-1: Exo vulnerability
Update to Windows Subsystem for Android™ on Windows 11 (April 2023)
Update to Windows Subsystem for Android™ on Windows 11 (April 2023) Today we are shipping an update (2303.40000.3.0) for Windows Subsystem for Android™ on Windows 11 to all Windows Insider channels. This update will improve reliability, security and enable picture-in-picture (PIP). Picture-in-picture For apps that use the Android PIP feature, the subsystem now supports this behavior. With the flexibility of having apps in windowed mode and all of the great Windows resize and snap features, this makes multitasking within Android apps even easier. What’s New Picture-in-picture mode supported A new “Partially running” system setting added to WSA Settings app, which runs the subsystem with minimal resources but apps launch quicker than “As needed” mode Linux kernel updated to 5.15.78 Improvements to platform reliability Android 13 security updates Giving feedback If you are having issues with Windows Subsystem for Android™ – please [ more… ]
USN-6004-1: Linux kernel (Intel IoTG) vulnerabilities
USN-6004-1: Linux kernel (Intel IoTG) vulnerabilities It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs. An attacker in a guest VM could use this to expose sensitive information from the host OS or other guest VMs. (CVE-2022-2196) It was discovered that a use-after-free vulnerability existed in the SGI GRU driver in the Linux kernel. A local attacker could possibly use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-3424) Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-36280) Hyunwoo Kim discovered that the DVB Core driver in the Linux kernel did not properly [ more… ]
[도서] 클라우드 네이티브 Go
[도서] 클라우드 네이티브 Go 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]클라우드 네이티브 Go 매튜 A. 티트무스 저/노승헌 역 | 동양북스(동양books) | 2023년 04월 판매가 31,500원 (10%할인) | YES포인트 1,750원(5%지급) Go 프로그래밍으로 배우는 클라우드 네이티브 서비스의 모든 것! 도커(Docker), 쿠버네티스(Kubernetes), 프로메테우스(Prometheus) 같은 클라우드 네이티브 기술의 공통점은 무엇일까요? 바로 Go라는 프로그래밍 Source: [도서] 클라우드 네이티브 Go