Articles by KENNETH

About KENNETH
지락문화예술공작단
No Image

Announcing Windows 11 Insider Preview Build 23475

2023-06-08 KENNETH 0

Announcing Windows 11 Insider Preview Build 23475 Hello Windows Insiders, today we are releasing Windows 11 Insider Preview Build 23475 to the Dev Channel. TL;DR: This build includes a handful of new features we’re beginning to roll out to Windows Insiders in the Dev Channel including a modernized File Explorer Home and address bar, Dynamic Lighting, and support for Emoji 15. As part of introducing these new features, we’ve also added some new known issues. We’re also releasing a new Microsoft Store update. Check out all the details in the below blog post! What’s new in Build 23475 Modernized File Explorer Home and Address Bar Now that File Explorer is powered by Windows App SDK, we are introducing a modernized File Explorer Home powered by WinUI. Recommended files for users signed into Windows with an Azure Active Directory (AAD) account [ more… ]

No Image

USN-6145-1: Sysstat vulnerabilities

2023-06-07 KENNETH 0

USN-6145-1: Sysstat vulnerabilities It was discovered that Sysstat incorrectly handled certain arithmetic multiplications. An attacker could use this issue to cause Sysstat to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue was only fixed for Ubuntu 16.04 LTS. (CVE-2022-39377) It was discovered that Sysstat incorrectly handled certain arithmetic multiplications in 64-bit systems, as a result of an incomplete fix for CVE-2022-39377. An attacker could use this issue to cause Sysstat to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2023-33204) Source: USN-6145-1: Sysstat vulnerabilities

No Image

USN-6028-2: libxml2 vulnerabilities

2023-06-07 KENNETH 0

USN-6028-2: libxml2 vulnerabilities USN-6028-1 fixed vulnerabilities in libxml2. This update provides the corresponding updates for Ubuntu 23.04. Original advisory details: It was discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to cause a crash. (CVE-2022-2309) It was discovered that lixml2 incorrectly handled certain XML files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. (CVE-2023-28484) It was discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to cause a crash. (CVE-2023-29469) Source: USN-6028-2: libxml2 vulnerabilities

No Image

USN-6144-1: LibreOffice vulnerabilities

2023-06-07 KENNETH 0

USN-6144-1: LibreOffice vulnerabilities It was discovered that LibreOffice did not properly validate the number of parameters passed to the formula interpreter, leading to an array index underflow attack. If a user were tricked into opening a specially crafted spreadsheet file, an attacker could possibly use this issue to execute arbitrary code. (CVE-2023-0950) Amel Bouziane-Leblond discovered that LibreOffice did not prompt the user before loading the host document inside an IFrame. If a user were tricked into opening a specially crafted input file, an attacker could possibly use this issue to cause information disclosure or execute arbitrary code. (CVE-2023-2255) Source: USN-6144-1: LibreOffice vulnerabilities

No Image

USN-6143-1: Firefox vulnerabilities

2023-06-07 KENNETH 0

USN-6143-1: Firefox vulnerabilities Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. (CVE-2023-34414, CVE-2023-34416, CVE-2023-34417) Jun Kokatsu discovered that Firefox did not properly validate site-isolated process for a document loaded from a data: URL that was the result of a redirect, leading to an open redirect attack. An attacker could possibly use this issue to perform phishing attacks. (CVE-2023-34415) Source: USN-6143-1: Firefox vulnerabilities