Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

USN-4467-1: QEMU vulnerabilities

2020-08-20 KENNETH 0

USN-4467-1: QEMU vulnerabilities Ziming Zhang and VictorV discovered that the QEMU SLiRP networking implementation incorrectly handled replying to certain ICMP echo requests. An attacker inside a guest could possibly use this issue to leak host memory to obtain sensitive information. This issue only affected Ubuntu 18.04 LTS. (CVE-2020-10756) Eric Blake and Xueqiang Wei discovered that the QEMU NDB implementation incorrectly handled certain requests. A remote attacker could possibly use this issue to cause QEMU to crash, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2020-10761) Ziming Zhang discovered that the QEMU SM501 graphics driver incorrectly handled certain operations. An attacker inside a guest could use this issue to cause QEMU to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2020-12829) It was discovered that the QEMU SD memory card implementation incorrectly [ more… ]

No Image

USN-4466-1: curl vulnerability

2020-08-19 KENNETH 0

USN-4466-1: curl vulnerability Marc Aldorasi discovered that curl incorrectly handled the libcurl CURLOPT_CONNECT_ONLY option. This could result in data being sent to the wrong destination, possibly exposing sensitive information. Source: USN-4466-1: curl vulnerability

No Image

USN-4465-1: linux kernel vulnerabilities

2020-08-19 KENNETH 0

USN-4465-1: linux kernel vulnerabilities It was discovered that the XFS file system implementation in the Linux kernel did not properly validate meta data in some circumstances. An attacker could use this to construct a malicious XFS image that, when mounted, could cause a denial of service. (CVE-2020-12655) It was discovered that the bcache subsystem in the Linux kernel did not properly release a lock in some error conditions. A local attacker could possibly use this to cause a denial of service. (CVE-2020-12771) Kyungtae Kim discovered that the USB testing driver in the Linux kernel did not properly deallocate memory on disconnect events. A physically proximate attacker could use this to cause a denial of service (memory exhaustion). (CVE-2020-15393) Source: USN-4465-1: linux kernel vulnerabilities

No Image

Real-Time APIs: Stories from the Real World

2020-08-19 KENNETH 0

Real-Time APIs: Stories from the Real World Real‑time APIs have become part of our daily lives. From ordering food from to buying and selling stocks using our mobile phones, many day-to-day activities entail interaction with real‑time APIs. But what does this look like from the perspective of the API publisher? What market demands are driving companies to serve APIs in real time? How are NGINX customers achieving real‑time performance? Let’s look at some examples. Managing API Traffic at Scale for a Microservices‑Based Application Situation African Bank was founded in 2016 in South Africa to provide digital banking services to underserved and rural customers. They built a modern application using microservices from the ground up. Challenge A sophisticated microservices architecture based on a reference architecture from NGINX provided speed-to-market and cost advantages, but introduced complexity around API scalability and inter‑service communication. Solution [ more… ]

[도서] 양자 컴퓨터 원리와 수학적 기초

2020-08-19 KENNETH 0

[도서] 양자 컴퓨터 원리와 수학적 기초 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]양자 컴퓨터 원리와 수학적 기초 크리스 베른하트 저/이정문 역 | 에이콘출판사 | 2020년 08월 판매가 22,500원 (10%할인) | YES포인트 1,250원(5%지급) 기본적인 수학 배경지식을 갖춘 독자를 대상으로 양자 컴퓨터의 기본 원리를 설명하는 이론서다. 얽힘, 중첩 등 양자 컴퓨터의 바탕이 되는 양자역학적 개념의 수학적 모델을 가급적 단순화해서 설명하므로, 고등학 Source: [도서] 양자 컴퓨터 원리와 수학적 기초