Articles by KENNETH

About KENNETH
지락문화예술공작단

AWS 신규 리전 – 캐나다 서부(캘거리) 출시 예고

2021-11-11 KENNETH 0

AWS 신규 리전 – 캐나다 서부(캘거리) 출시 예고 AWS는 2016년에 캐나다(중부) 리전을 출시하고 2020년에는 세 번째 가용 영역을 추가했습니다. 출시 이후 수만 명의 AWS 고객이 캐나다에서 AWS 서비스를 사용하여 혁신을 가속화하고 민첩성을 높이며 비용을 절감했습니다. Air Canada, BMO Financial Group, NHL, Porter Airlines, Lululemon 등의 대기업은 물론, 세계로 뻗어나가는 Benevity, D2L, Hootsuite 등의 스타트업 기업도 여기에 동참했습니다. 이 외에도 AWS를 사용하는 곳을 몇 개만 열거하자면 Athabasca University, Humber College, Vancouver General Hospital, 캐나다 국경관리청(Canada Border Services Agency) 등이 있습니다. 캐나다 캘거리에 신규 리전 서비스 예정 2023년 말 또는 2024년 초에 캐나다 캘거리에서 AWS 리전을 개설할 예정임을 발표하게 되어 기쁩니다. 이 3개 AZ 리전은 캐나다 서부의 최종 사용자의 지연 시간을 줄이고 여러 AWS 리전에 걸쳐 있는 고급 분산 솔루션의 개발도 지원할 것입니다. 또한 캐나다 국경 내에서 데이터를 저장하고 처리해야 하는 AWS 고객에게 추가적인 유연성을 제공할 것입니다. 최대한 친환경적인 방법으로 사업을 운영하겠다는 [ more… ]

No Image

USN-5141-1: Firejail vulnerability

2021-11-11 KENNETH 0

USN-5141-1: Firejail vulnerability Roman Fiedler discovered that a race condition existed in Firejail when using OverlayFS to prevent writes to the underlying file system. A local attacker could use this to gain administrative privileges. Note: this update disables support for OverlayFS in Firejail. Source: USN-5141-1: Firejail vulnerability

No Image

LSN-0082-1: Kernel Live Patch Security Notice

2021-11-11 KENNETH 0

LSN-0082-1: Kernel Live Patch Security Notice Jann Horn discovered that the tty subsystem of the Linux kernel did not use consistent locking in some situations, leading to a read-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory).(CVE-2020-29660) Jann Horn discovered a race condition in the tty subsystem of the Linux kernel in the locking for the TIOCSPGRP ioctl(), leading to a use-after- free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code.(CVE-2020-29661) De4dCr0w of 360 Alpha Lab discovered that the BPF verifier in the Linux kernel did not properly handle mod32 destination register truncation when the source register was known to be 0. A local attacker could use this to expose sensitive information (kernel memory) [ more… ]

No Image

USN-5137-2: Linux kernel vulnerabilities

2021-11-11 KENNETH 0

USN-5137-2: Linux kernel vulnerabilities It was discovered that the f2fs file system in the Linux kernel did not properly validate metadata in some situations. An attacker could use this to construct a malicious f2fs image that, when mounted and operated on, could cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2019-19449) It was discovered that the Infiniband RDMA userspace connection manager implementation in the Linux kernel contained a race condition leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possible execute arbitrary code. (CVE-2020-36385) Wolfgang Frisch discovered that the ext4 file system implementation in the Linux kernel contained an integer overflow when handling metadata inode extents. An attacker could use this to construct a malicious ext4 file system image that, when mounted, could cause a [ more… ]

No Image

USN-5140-1: Linux kernel (OEM 5.14) vulnerabilities

2021-11-11 KENNETH 0

USN-5140-1: Linux kernel (OEM 5.14) vulnerabilities It was discovered that the AMD Cryptographic Coprocessor (CCP) driver in the Linux kernel did not properly deallocate memory in some error conditions. A local attacker could use this to cause a denial of service (memory exhaustion). (CVE-2021-3744, CVE-2021-3764) It was discovered that an integer overflow could be triggered in the eBPF implementation in the Linux kernel when preallocating objects for stack maps. A privileged local attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2021-41864) Source: USN-5140-1: Linux kernel (OEM 5.14) vulnerabilities