Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

USN-3137-1: MoinMoin vulnerabilities

2016-11-24 KENNETH 0

USN-3137-1: MoinMoin vulnerabilities Ubuntu Security Notice USN-3137-1 23rd November, 2016 moin vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in MoinMoin. Software description moin – Collaborative hypertext environment Details It was discovered that MoinMoin did not properly sanitize certain inputs,resulting in cross-site scripting (XSS) vulnerabilities. With cross-sitescripting vulnerabilities, if a user were tricked into viewing serveroutput during a crafted server request, a remote attacker could exploitthis to modify the contents, or steal confidential data, within the samedomain. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: python-moinmoin 1.9.8-1ubuntu1.16.10.1 Ubuntu 16.04 LTS: python-moinmoin 1.9.8-1ubuntu1.16.04.1 Ubuntu 14.04 LTS: python-moinmoin 1.9.7-1ubuntu2.1 Ubuntu 12.04 LTS: python-moinmoin 1.9.3-1ubuntu2.3 To update your system, please follow these [ more… ]

Windows Ink 3: Beyond Doodling

2016-11-24 KENNETH 0

Windows Ink 3: Beyond Doodling In the first post in this series, we took a quick look at Windows Ink using the InkCanvas and saw that it can be as simple as one line of code to add inking support to your application. In the second post, we show you how to customize the Ink experience in your app with InkToolbarCustomPen and InkToolbarCustomToolButton, in addition to the out-of-the box items like InkToolbarBallpointPenButton and InkToolbarPenConfigurationControl. In both of those explorations, we stayed within the context of a drawing style application. In today’s post, we will look at how Windows Ink can be used to bring the natural input experience of using a pen to other types of applications and scenarios. Pen input can be useful in a majority of applications that require some sort of user input. Here are a few [ more… ]

No Image

USN-3136-1: LXC vulnerability

2016-11-24 KENNETH 0

USN-3136-1: LXC vulnerability Ubuntu Security Notice USN-3136-1 23rd November, 2016 lxc vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary LXC could be made to allow containers to access to the host filesystem. Software description lxc – Linux Containers userspace tools Details Roman Fiedler discovered a directory traversal flaw in lxc-attach. Anattacker with access to an LXC container could exploit this flaw to accessfiles outside of the container. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 16.10: lxc1 2.0.5-0ubuntu1.2 liblxc1 2.0.5-0ubuntu1.2 Ubuntu 16.04 LTS: lxc1 2.0.5-0ubuntu1~ubuntu16.04.3 liblxc1 2.0.5-0ubuntu1~ubuntu16.04.3 Ubuntu 14.04 LTS: lxc 1.0.8-0ubuntu0.4 liblxc1 1.0.8-0ubuntu0.4 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2016-8649 Source: [ more… ]

This Week on Windows: Black Friday Edition

2016-11-24 KENNETH 0

This Week on Windows: Black Friday Edition Save big on hit apps, games, movies & more with deals in the Windows Store Today, we’re excited to share all the awesome deals the Windows Store has for Black Friday! Available until Nov. 28, this collection* includes great deals on apps, games, music, movies and more for your Windows 10 PC or Xbox console. Keep reading for some of the top titles, check out the full collection, or head over here to learn more about all the great deals on Windows 10 devices and all things Xbox we mentioned in this week’s latest episode. GAMES Gears of War 4 – 40% off Beginning today through Nov. 28, purchase Gears of War 4 at 40% off and receive the entire Gears of War Collection for play on Xbox One. Get the game today [ more… ]

AWS 12월 온라인 세미나 – 개발자를 위한 AWS 총정리

2016-11-24 KENNETH 0

AWS 12월 온라인 세미나 – 개발자를 위한 AWS 총정리 AWS 한국팀에서도 AWS 클라우드를 아껴주시는 한국 고객 분들을 위해 지속적으로 AWS 월간 웨비나 시리즈를 진행하고 있습니다. 올해 마지막 12월 웨비나에서는 한 해를 마무리 하면서 ‘개발자를 위한 AWS 총정리’ 시간을 마련하였습니다. 이번 웨비나는 AWS 테크에반젤리스트인 윤석찬님이 올해 개발자 커뮤니티 사이의 핫(Hot) 토픽이었던, 서버리스(Serverless), 마이크로서비스(Microservices), 인공 지능(Artficial Intelligence) 등을 AWS 클라우드 서비스 관점에서 소개하는 시간을 가집니다. 관심 있는 개발자 여러분의 많은 참여를 바랍니다. ※ 참고. 개별 강의에 모두 참가하고 싶으신 분은 1회 등록 후, 로그인하여 기존 입력 정보를 통해 참가 신청 하시면 됩니다. 기존에 AWS 웨비나에 참가하시고, 아이디가 있으신 분은 오른족 맨 위의 “이전에 등록한 경우 여기를 클릭하십시오.” 링크를 통해 로그인 하시기 바랍니다. 등록을 완료하시면, 메일을 통해 온라인 세미나에 접속할 수 있는 참여 URL을 보내 드립니다. 1. 파이선(Python) 개발자를 위한 세 가지 AWS 활용 방법 – 일시: 2016년 12월 14일 (수) 오전 10:00 [ more… ]