SECURITY – 페이지 1413 – 지락문화예술공작단

MS16-039 – Critical: Security Update for Microsoft Graphics Component (3148522) – Version: 1.0

2016-04-12 KENNETH 0

MS16-039 – Critical: Security Update for Microsoft Graphics Component (3148522) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (April 12, 2016): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Windows, Microsoft .NET Framework, Microsoft Office, Skype for Business, and Microsoft Lync. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted document or visits a webpage that contains specially crafted embedded fonts. Source: MS16-039 – Critical: Security Update for Microsoft Graphics Component (3148522) – Version: 1.0

MS16-047 – Important: Security Update for SAM and LSAD Remote Protocols (3148527) – Version: 1.0

2016-04-12 KENNETH 0

MS16-047 – Important: Security Update for SAM and LSAD Remote Protocols (3148527) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (April 12, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker launches a man-in-the-middle (MiTM) attack. An attacker could then force a downgrade of the authentication level of the SAM and LSAD channels and impersonate an authenticated user. Source: MS16-047 – Important: Security Update for SAM and LSAD Remote Protocols (3148527) – Version: 1.0

MS16-050 – Critical: Security Update for Adobe Flash Player (3154132) – Version: 1.0

2016-04-12 KENNETH 0

MS16-050 – Critical: Security Update for Adobe Flash Player (3154132) – Version: 1.0 Severity Rating: CriticalRevision Note: V1.0 (April 12, 2016): Bulletin published.Summary: This security update resolves vulnerabilities in Adobe Flash Player when installed on all supported editions of Windows 8.1, Windows Server 2012, Windows Server 2012 R2, Windows RT 8.1, and Windows 10. Source: MS16-050 – Critical: Security Update for Adobe Flash Player (3154132) – Version: 1.0

MS16-045 – Important: Security Update for Windows Hyper-V (3143118) – Version: 1.0

2016-04-12 KENNETH 0

MS16-045 – Important: Security Update for Windows Hyper-V (3143118) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (April 12, 2016): Bulletin published.Summary: This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow remote code execution if an authenticated attacker on a guest operating system runs a specially crafted application that causes the Hyper-V host operating system to execute arbitrary code. Customers who have not enabled the Hyper-V role are not affected. Source: MS16-045 – Important: Security Update for Windows Hyper-V (3143118) – Version: 1.0

USN-2948-2: Linux kernel (Utopic HWE) regression

2016-04-12 KENNETH 0

USN-2948-2: Linux kernel (Utopic HWE) regression Ubuntu Security Notice USN-2948-2 11th April, 2016 linux-lts-utopic regression A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary USN 2948-1 introduced a regression in the Ubuntu 14.10 Linux kernel backported to Ubuntu 14.04 LTS. Software description linux-lts-utopic – Linux hardware enablement kernel from Utopic for Trusty Details USN-2948-1 fixed vulnerabilities in the Ubuntu 14.10 Linux kernelbackported to Ubuntu 14.04 LTS. An incorrect reference countingfix in the radeon driver introduced a regression that could cause asystem crash. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Ralf Spenneberg discovered that the USB driver for Clie devices in the Linux kernel did not properly sanity check the endpoints reported by the device. An attacker with physical access could cause a denial of service (system crash). (CVE-2015-7566) [ more… ]