Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

USN-3977-1: Intel Microcode update

2019-05-15 KENNETH 0

USN-3977-1: Intel Microcode update intel-microcode update A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 ESM Summary The system could be made to expose sensitive information. Software Description intel-microcode – Processor microcode for Intel CPUs Details Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Giorgi Maisuradze, Dan Horea Lutas, Andrei Lutas, Volodymyr Pikhur, Stephan van Schaik, Alyssa Milburn, Sebastian Österlund, Pietro Frigo, Kaveh Razavi, Herbert Bos, Cristiano Giuffrida, Moritz Lipp, Michael Schwarz, and Daniel Gruss discovered that memory previously stored in microarchitectural fill buffers of an Intel CPU core may be exposed to a malicious process that is executing on the same CPU core. A local attacker could use this to expose sensitive information. (CVE-2018-12130) Brandon Falk, Ke Sun, Henrique Kawakami, Kekai Hu, Rodrigo Branco, Stephan [ more… ]

No Image

Prevent a worm by updating Remote Desktop Services (CVE-2019-0708)

2019-05-15 KENNETH 0

Prevent a worm by updating Remote Desktop Services (CVE-2019-0708) Today Microsoft released fixes for a critical Remote Code Execution vulnerability, CVE-2019-0708, in Remote Desktop Services – formerly known as Terminal Services – that affects some older versions of Windows. The Remote Desktop Protocol (RDP) itself is not vulnerable. This vulnerability is pre-authentication and requires no user interaction. In other words, the vulnerability is ‘wormable’, meaning that any future malware that exploits this vulnerability could propagate from vulnerable computer to vulnerable computer in a similar way as the WannaCry malware spread across the globe in 2017. While we have observed no exploitation of this vulnerability, it is highly likely that malicious actors will write an exploit for this vulnerability and incorporate it into their malware.  Now that I have your attention, it is important that affected systems are patched as quickly as possible to prevent such a scenario from happening. In response, we are taking the unusual step of providing a security update [ more… ]

No Image

May 2019 Security Update Release

2019-05-15 KENNETH 0

May 2019 Security Update Release Today, we released security updates to provide additional protections against malicious attackers. As a best practice, we encourage customers to turn on automatic updates. More information about this month’s security updates can be found on the Security Update Guide. Source: May 2019 Security Update Release

No Image

USN-3976-2: Samba vulnerability

2019-05-14 KENNETH 0

USN-3976-2: Samba vulnerability samba vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 ESM Ubuntu 12.04 ESM Summary Samba could allow unintended access to network services. Software Description samba – SMB/CIFS file, print, and login server for Unix Details USN-3976-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: Isaac Boukris and Andrew Bartlett discovered that Samba incorrectly checked S4U2Self packets. In certain environments, a remote attacker could possibly use this issue to escalate privileges. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM samba – 2:4.3.11+dfsg-0ubuntu0.14.04.20+esm1 Ubuntu 12.04 ESM samba – 2:3.6.25-0ubuntu0.12.04.18 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the [ more… ]

HP launches world’s first dual-screen gaming laptop and other innovations

2019-05-14 KENNETH 0

HP launches world’s first dual-screen gaming laptop and other innovations In our multitasking world, when you’re playing PC games, there’s a good chance you’re doing a lot of other things, too. Gaming industry insights show 82% of people use their mobile phones for messaging during gaming sessions, while 61% listen to music and 49% watch game-related live streams, view video content and browse websites [1]. With this in mind, HP has created the world’s first dual-screen gaming laptop [2], the OMEN X 2S. OMEN X 2S Players will be able to message friends in WeChat and WhatsApp, browse the perfect songs to accompany their sessions on Spotify, watch Twitch and YouTube, or even serve as a hub for OMEN Command Center software through an easy-to-use 6-inch 1080p touchscreen above the keyboard – freeing them from the hassles of alt-tabbing. A [ more… ]