KENNETH – 페이지 3105 – 지락문화예술공작단

USN-3201-1: Bind vulnerabilities

2017-02-17 KENNETH 0

USN-3201-1: Bind vulnerabilities Ubuntu Security Notice USN-3201-1 16th February, 2017 bind9 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Bind could be made to crash if it received specially crafted network traffic. Software description bind9 – Internet Domain Name Server Details It was discovered that Bind incorrectly handled rewriting certain queryresponses when using both DNS64 and RPZ. A remote attacker could possiblyuse this issue to cause Bind to crash, resulting in a denial of service. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: bind9 1:9.10.3.dfsg.P4-10.1ubuntu1.3 Ubuntu 16.04 LTS: bind9 1:9.10.3.dfsg.P4-8ubuntu1.5 Ubuntu 14.04 LTS: bind9 1:9.9.5.dfsg-3ubuntu0.13 Ubuntu 12.04 LTS: bind9 1:9.8.1.dfsg.P1-4ubuntu0.21 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system [ more… ]

RHBA-2017:0283-1: Red Hat JBoss Operations Network Agent RPM 3.3 (update 08) EAP 6

2017-02-17 KENNETH 0

RHBA-2017:0283-1: Red Hat JBoss Operations Network Agent RPM 3.3 (update 08) EAP 6 Red Hat Enterprise Linux: Updated jboss-on-agent packages that fix several bugs and add various enhancements are now available. Source: RHBA-2017:0283-1: Red Hat JBoss Operations Network Agent RPM 3.3 (update 08) EAP 6

This Week on Windows: Doctor Strange, The Walking Dead and Halo Wars 2: Live

2017-02-17 KENNETH 0

This Week on Windows: Doctor Strange, The Walking Dead and Halo Wars 2: Live We hope you enjoyed today’s episode of This Week on Windows! Catch up on all the news about security trends & Windows 10 and Spectator View, a new tool to help others see what you see in HoloLens. Or, head over here for tips on how to declutter your digital space and stay organized with Task View and Snap! Here’s what’s new in the Windows Store this week: Tune in today to Halo Wars 2: Live We’re only days away from the official launch of Halo Wars 2 next week, and just a few hours from early access availability tomorrow! As announced back in January, Xbox is celebrating the launch of Halo Wars 2 by inviting you to tune-in to a livestreamed launch event hosted at [ more… ]

[도서] 취약점 진단 스타트 가이드

2017-02-17 KENNETH 0

[도서] 취약점 진단 스타트 가이드 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]취약점 진단 스타트 가이드 우에노 센 저/양현 역 | 위키북스 | 2017년 02월 판매가 22,500원 (10%할인) | YES포인트 1,250원(5%지급) 『웹 보안 담당자를 위한 취약점 진단 스타트 가이드』는 취약점 진단을 시작하고 싶은 사람들을 위해 보안 전문가인 저자가 취약점 진단을 위한 기초 지식과 기술을 친절하게 해설 한 입문서이다. 이 책에서는 웹 Source: [도서] 취약점 진단 스타트 가이드

USN-3198-1: OpenJDK 6 vulnerabilities

2017-02-16 KENNETH 0

USN-3198-1: OpenJDK 6 vulnerabilities Ubuntu Security Notice USN-3198-1 15th February, 2017 openjdk-6 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.04 LTS Summary Several security issues were fixed in OpenJDK 6. Software description openjdk-6 – Open Source Java implementation Details Karthik Bhargavan and Gaetan Leurent discovered that the DES andTriple DES ciphers were vulnerable to birthday attacks. A remoteattacker could possibly use this flaw to obtain clear text data fromlong encrypted sessions. This update moves those algorithms to thelegacy algorithm set and causes them to be used only if no non-legacyalgorithms can be negotiated. (CVE-2016-2183) It was discovered that OpenJDK accepted ECSDA signatures usingnon-canonical DER encoding. An attacker could use this to modify orexpose sensitive data. (CVE-2016-5546) It was discovered that covert timing channel vulnerabilities existedin the DSA implementations in OpenJDK. A remote attacker could [ more… ]