Articles by KENNETH

About KENNETH
지락문화예술공작단

Save big on tech gifts with Microsoft Store’s Black Friday sale

2022-11-17 KENNETH 0

Save big on tech gifts with Microsoft Store’s Black Friday sale If you’re one of the nearly half of holiday shoppers looking to scoop up gifts on sale this season, we have great news – Microsoft Store’s Black Friday sale starts today, Nov. 17. Savings on everything from Surface devices, Xbox consoles, tech accessories, digital games and more make finding something for everyone on your list a breeze. And if you’re stumped, take the guesswork out and book a free, online personal shopping appointment with a Microsoft product expert. Bring us your hard-to-shop-for family and friends, and we’ll help you find the perfect gifts. When you shop the Microsoft Store, you can start purchasing early and be confident you’re getting a great deal. The Microsoft Store Promise gives shoppers extra peace of mind with extended holiday returns through Jan. 31, flexible payment [ more… ]

No Image

USN-5731-1: multipath-tools vulnerabilities

2022-11-17 KENNETH 0

USN-5731-1: multipath-tools vulnerabilities It was discovered that multipath-tools incorrectly handled symlinks. A local attacker could possibly use this issue, in combination with other issues, to escalate privileges. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 22.10. (CVE-2022-41973) It was discovered that multipath-tools incorrectly handled access controls. A local attacker could possibly use this issue, in combination with other issues, to escalate privileges. (CVE-2022-41974) Source: USN-5731-1: multipath-tools vulnerabilities

No Image

USN-5730-1: WebKitGTK vulnerabilities

2022-11-17 KENNETH 0

USN-5730-1: WebKitGTK vulnerabilities Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution. Source: USN-5730-1: WebKitGTK vulnerabilities

No Image

USN-5638-2: Expat vulnerabilities

2022-11-17 KENNETH 0

USN-5638-2: Expat vulnerabilities USN-5638-1 fixed a vulnerability in Expat. This update provides the corresponding updates for Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. Original advisory details: Rhodri James discovered that Expat incorrectly handled memory when processing certain malformed XML files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. Source: USN-5638-2: Expat vulnerabilities

No Image

USN-5729-1: Linux kernel vulnerabilities

2022-11-17 KENNETH 0

USN-5729-1: Linux kernel vulnerabilities It was discovered that a race condition existed in the instruction emulator of the Linux kernel on Arm 64-bit systems. A local attacker could use this to cause a denial of service (system crash). (CVE-2022-20422) Hsin-Wei Hung discovered that the BPF subsystem in the Linux kernel contained an out-of-bounds read vulnerability in the x86 JIT compiler. A local attacker could possibly use this to cause a denial of service (system crash) or expose sensitive information (kernel memory). (CVE-2022-2905) Hao Sun and Jiacheng Xu discovered that the NILFS file system implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-2978) Abhishek Shah discovered a race condition in the PF_KEYv2 implementation in the Linux kernel. A local attacker could [ more… ]