Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

USN-5071-1: Linux kernel vulnerabilities

2021-09-09 KENNETH 0

USN-5071-1: Linux kernel vulnerabilities Maxim Levitsky and Paolo Bonzini discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel allowed a guest VM to disable restrictions on VMLOAD/VMSAVE in a nested guest. An attacker in a guest VM could use this to read or write portions of the host’s physical memory. (CVE-2021-3656) Maxim Levitsky discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel did not properly prevent a guest VM from enabling AVIC in nested guest VMs. An attacker in a guest VM could use this to write to portions of the host’s physical memory. (CVE-2021-3653) It was discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel did not ensure enough processing time was given to perform cleanups of large SEV VMs. A local attacker could use this to [ more… ]

No Image

USN-5070-1: Linux kernel vulnerabilities

2021-09-09 KENNETH 0

USN-5070-1: Linux kernel vulnerabilities Maxim Levitsky and Paolo Bonzini discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel allowed a guest VM to disable restrictions on VMLOAD/VMSAVE in a nested guest. An attacker in a guest VM could use this to read or write portions of the host’s physical memory. (CVE-2021-3656) Maxim Levitsky discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel did not properly prevent a guest VM from enabling AVIC in nested guest VMs. An attacker in a guest VM could use this to write to portions of the host’s physical memory. (CVE-2021-3653) It was discovered that the Linux kernel did not properly enforce certain types of entries in the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. An attacker could use this to bypass UEFI Secure Boot restrictions. [ more… ]

A Guide to Choosing an Ingress Controller, Part 1: Identify Your Requirements

2021-09-09 KENNETH 0

A Guide to Choosing an Ingress Controller, Part 1: Identify Your Requirements This is the first blog post in our series on how to choose a Kubernetes Ingress controller. A Guide to Choosing an Ingress Controller, Part 1: Identify Your Requirements (this post) A Guide to Choosing an Ingress Controller, Part 2: Risks and Future-Proofing (coming soon) A Guide to Choosing an Ingress Controller, Part 3: Open Source vs. Default vs. Commercial (coming soon) A Guide to Choosing an Ingress Controller, Part 4: NGINX Ingress Controller Options (coming soon) When organizations first start experimenting with Kubernetes, they often don’t put a lot of thought into the choice of Ingress controller. They might think that all Ingress controllers are alike, and in the interests of getting up and running quickly it’s easiest to stick with the default Ingress controller for the [ more… ]

No Image

USN-5069-2: mod-auth-mellon vulnerability

2021-09-09 KENNETH 0

USN-5069-2: mod-auth-mellon vulnerability USN-5069-1 fixed a vulnerability in mod-auth-mellon. This update provides the corresponding updates for Ubuntu 21.04. Original advisory details: It was discovered that mod-auth-mellon incorrectly filtered certain URLs. A remote attacker could possibly use this issue to perform an open redirect attack. Source: USN-5069-2: mod-auth-mellon vulnerability

Lenovo launches Windows 11 on new Yoga and refreshed ThinkBook laptops

2021-09-09 KENNETH 0

Lenovo launches Windows 11 on new Yoga and refreshed ThinkBook laptops At Tech World 2021, Lenovo introduced the 14-inch Lenovo Yoga Slim 7 Carbon and the new 16-inch ultra-slim Lenovo Yoga Slim 7 Pro consumer laptops. Lenovo also recently revealed a refreshed ThinkBook business laptop portfolio. Select devices will include a FREE Upgrade to Windows 11 when available (see below*). Windows 11 is designed to bring you closer to what you love, empowering your productivity and inspiring your creativity. Start is now at the center, making it easier to quickly find what you need. Start utilizes the power of the cloud and Microsoft 365 to show you your recent files no matter what platform or device you were viewing them on earlier. Windows has always been about helping you work how you want, by offering flexibility of multiple windows and the ability to snap apps side by side. [ more… ]