Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

USN-5985-1: Linux kernel vulnerabilities

2023-03-30 KENNETH 0

USN-5985-1: Linux kernel vulnerabilities It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service (memory exhaustion). (CVE-2021-3669) It was discovered that the KVM VMX implementation in the Linux kernel did not properly handle indirect branch prediction isolation between L1 and L2 VMs. An attacker in a guest VM could use this to expose sensitive information from the host OS or other guest VMs. (CVE-2022-2196) Gerald Lee discovered that the USB Gadget file system implementation in the Linux kernel contained a race condition, leading to a use-after-free vulnerability in some situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-4382) It was discovered that the RNDIS USB [ more… ]

No Image

USN-5984-1: Linux kernel vulnerabilities

2023-03-30 KENNETH 0

USN-5984-1: Linux kernel vulnerabilities It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory counts. A local attacker could use this to cause a denial of service (memory exhaustion). (CVE-2021-3669) It was discovered that a use-after-free vulnerability existed in the SGI GRU driver in the Linux kernel. A local attacker could possibly use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-3424) Ziming Zhang discovered that the VMware Virtual GPU DRM driver in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-36280) Hyunwoo Kim discovered that the DVB Core driver in the Linux kernel did not properly perform reference counting in some situations, leading to a use- after-free vulnerability. A [ more… ]

No Image

Lenovo introduces new Windows 11 laptops for creators and gamers with Yoga and Legion lineups

2023-03-30 KENNETH 0

Lenovo introduces new Windows 11 laptops for creators and gamers with Yoga and Legion lineups Creators and gamers in search of updating their PCs have new options with the lineups Lenovo recently released that aim to deliver performance, versatility and mobility in portable designs. Lenovo’s PCs come with Windows 11, which introduced a major update at the end of February. One of the biggest additions is a typable Windows search box that brings the new AI-powered Bing front and center. The update also includes improved touch experiences, full screen widgets, quick access to the Windows 365 app and new AI features in Start. Additionally, Windows announced a preview of Phone Link for iOS which is currently available to Windows Insiders and available to all Windows users in the coming months. The flagship Yoga Pro 9i (available in 16-inch and 14.5-inch [ more… ]

프랑스 TF1 방송의 AWS 기반 FIFA 월드컵 결승전 온라인 생중계 고군분투기

2023-03-29 KENNETH 0

프랑스 TF1 방송의 AWS 기반 FIFA 월드컵 결승전 온라인 생중계 고군분투기 수백만 명의 시청자가 역사상 가장 짜릿한 월드컵 결승전을 시청하기 3년 전, 프랑스의 선도적인 사설 TV 채널인 TF1은 새로운 클라우드 기반 아키텍처 채택을 포함하여 방송 플랫폼의 기반을 재정의하는 프로젝트를 시작했습니다. 그들과 다른 모든 방송사들은 전통적인 공중파 방송의 시청자가 감소하고 스마트 TV와 더불어 FireTV, ChromeCast, AppleTV와 같은 박스, 노트북, 태블릿 및 휴대폰과 같은 디지털 플랫폼의 인기가 높아지는 것을 관찰하였습니다. 필자가 최근 AWS 프랑스 팟캐스트에서 인터뷰한 eTF1(TF1 소속 디지털 플랫폼 담당 그룹)의 CTO Thierry Bonhomme에 따르면 현재 디지털 방송은 TF1 전체 시청자 중 20~ 25%를 차지한다고 합니다. 이러한 온라인 및 모바일 사용으로 인해 IT 시스템에서 매우 특정한 트래픽 패턴이 발생합니다. 즉, 경기 시작 몇 분 전에 연결 및 인증이 최고조에 달하고 변화하는 다양한 네트워크 품질을 통해 안정적으로 전송되어야 하는 수백만 개의 비디오 스트림이 발생합니다. 이러한 기술적 문제 외에도 경제적인 문제도 있습니다. 바로 [ more… ]

No Image

USN-5983-1: Nette vulnerability

2023-03-29 KENNETH 0

USN-5983-1: Nette vulnerability Cyku Hong discovered that Nette was not properly handling and validating data used for code generation. A remote attacker could possibly use this issue to execute arbitrary code. Source: USN-5983-1: Nette vulnerability