KENNETH – 페이지 2655 – 지락문화예술공작단

USN-3441-1: curl vulnerabilities

2017-10-11 KENNETH 0

USN-3441-1: curl vulnerabilities Ubuntu Security Notice USN-3441-1 10th October, 2017 curl vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in curl. Software description curl – HTTP, HTTPS, and FTP client and client libraries Details Daniel Stenberg discovered that curl incorrectly handled large floatingpoint output. A remote attacker could use this issue to cause curl tocrash, resulting in a denial of service, or possibly execute arbitrarycode. This issue only affected Ubuntu 14.04 LTS and Ubuntu 16.04 LTS.(CVE-2016-9586) Even Rouault discovered that curl incorrectly handled large file names whendoing TFTP transfers. A remote attacker could use this issue to cause curlto crash, resulting in a denial of service, or possibly obtain sensitivememory contents. (CVE-2017-1000100) Brian Carpenter and Yongji Ouyang discovered that curl incorrectly handlednumerical [ more… ]

USN-3442-1: libXfont vulnerabilities

2017-10-11 KENNETH 0

USN-3442-1: libXfont vulnerabilities Ubuntu Security Notice USN-3442-1 10th October, 2017 libxfont, libxfont1, libxfont2 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in libXfont. Software description libxfont – X11 font rasterisation library libxfont1 – X11 font rasterisation library libxfont2 – X11 font rasterisation library Details It was discovered that libXfont incorrectly handled certain patterns inPatternMatch. A local attacker could use this issue to cause libXfont tocrash, resulting in a denial of service, or possibly obtain sensitiveinformation. (CVE-2017-13720) It was discovered that libXfont incorrectly handled certain malformed PCFfiles. A local attacker could use this issue to cause libXfont to crash,resulting in a denial of service, or possibly obtain sensitive information.(CVE-2017-13722) Update instructions The problem can be corrected by updating your system to the following [ more… ]

RHBA-2017:2640-2: Red Hat Ceph Storage 2.4 bug fix and enhancement update

2017-10-11 KENNETH 0

RHBA-2017:2640-2: Red Hat Ceph Storage 2.4 bug fix and enhancement update Red Hat Enterprise Linux: Red Hat Ceph Storage 2.4 is now available. Source: RHBA-2017:2640-2: Red Hat Ceph Storage 2.4 bug fix and enhancement update

[도서] 소프트웨어 수업백과

2017-10-11 KENNETH 0

[도서] 소프트웨어 수업백과 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]소프트웨어 수업백과 홍지연 저 | 상상박물관 | 2017년 10월 판매가 16,200원 (10%할인) | YES포인트 180원(1%지급) SW교육, 어떻게 수업으로 완성할 것인가? 언플러그드 활동에서부터, 교육용 프로그래밍 언어(EPL), 피지컬 컴퓨팅, 학교 메이커 교육에 이르는 소프트웨어 교육의 전 과정을 다양한 수업 사례를 통해 소개한다. 아울 Source: [도서] 소프트웨어 수업백과

RHSA-2017:2869-1: Important: kernel security and bug fix update

2017-10-10 KENNETH 0

RHSA-2017:2869-1: Important: kernel security and bug fix update Red Hat Enterprise Linux: An update for kernel is now available for Red Hat Enterprise Linux 7.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. CVE-2017-7533 Source: RHSA-2017:2869-1: Important: kernel security and bug fix update