Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

USN-5726-1: Firefox vulnerabilities

2022-11-16 KENNETH 0

USN-5726-1: Firefox vulnerabilities Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, spoof the contents of the addressbar, bypass security restrictions, cross-site tracing or execute arbitrary code. (CVE-2022-45403, CVE-2022-45404, CVE-2022-45405, CVE-2022-45406, CVE-2022-45407, CVE-2022-45408, CVE-2022-45409, CVE-2022-45410, CVE-2022-45411, CVE-2022-45413, CVE-2022-40674, CVE-2022-45418, CVE-2022-45419, CVE-2022-45420, CVE-2022-45421) Armin Ebert discovered that Firefox did not properly manage while resolving file symlink. If a user were tricked into opening a specially crafted weblink, an attacker could potentially exploit these to cause a denial of service. (CVE-2022-45412) Jefferson Scher and Jayateertha Guruprasad discovered that Firefox did not properly sanitize the HTML download file extension under certain circumstances. If a user were tricked into downloading and executing malicious content, a remote attacker could execute arbitrary code with the [ more… ]

No Image

LSN-0090-1: Kernel Live Patch Security Notice

2022-11-16 KENNETH 0

LSN-0090-1: Kernel Live Patch Security Notice David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2022-1015) David Bouman and Billy Jheng Bing Jhong discovered that a race condition existed in the io_uring subsystem in the Linux kernel, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2022-2602) Sönke Huster discovered that an integer overflow vulnerability existed in the WiFi driver stack in the Linux kernel, leading to a buffer overflow. A physically proximate attacker could use this to cause an denial of service (system crash) or possibly execute arbitrary code.(CVE-2022-41674) Sönke Huster discovered that the WiFi driver stack [ more… ]

[도서] 오늘부터 노션으로 일합니다

2022-11-16 KENNETH 0

[도서] 오늘부터 노션으로 일합니다 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]오늘부터 노션으로 일합니다 이명성 저 | e비즈북스 | 2022년 11월 판매가 17,550원 (10%할인) | YES포인트 970원(5%지급) 노션은 개인부터 기업까지 누구나 각자의 환경에 맞게, 심지어 노 코드(No-Code)로 간편하게 업무에 필요한 시스템을 만들 수 있는 최강의 도구이다. 그래서 스타트업부터 나이키, 맥도날드, 버라이즌과 같은 유수의 Source: [도서] 오늘부터 노션으로 일합니다

No Image

WordPress 6.1.1 Maintenance Release

2022-11-16 KENNETH 0

WordPress 6.1.1 Maintenance Release WordPress 6.1.1 is now available This minor release features 29 bug fixes in Core and 21 bug fixes for the block editor. WordPress 6.1.1 is a short-cycle maintenance release. You can review a summary of the key updates in this release by reading the RC1 announcement. The next major release will be version 6.2 planned for 2023. If you have sites that support automatic background updates, the update process will begin automatically. You can download WordPress 6.1.1 from WordPress.org, or visit your WordPress Dashboard, click “Updates”, and then click “Update Now”. For more information, check out the version 6.1.1 HelpHub documentation page. Thank you to these WordPress contributors The WordPress 6.1.1 release was led by @desrosj, @mamaduka, and @jeffpaul. WordPress 6.1.1 would not have been possible without the contributions of more than 105 people. Their asynchronous [ more… ]

No Image

USN-5625-2: Mako vulnerability

2022-11-16 KENNETH 0

USN-5625-2: Mako vulnerability USN-5625-1 fixed a vulnerability in Mako. This update provides the corresponding update for Ubuntu 22.10. Original advisory details: It was discovered that Mako incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause a denial of service. Source: USN-5625-2: Mako vulnerability