No Image

USN-3934-1: PolicyKit vulnerability

2019-04-03 KENNETH 0

USN-3934-1: PolicyKit vulnerability policykit-1 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary PolicyKit could allow unintended access. Software Description policykit-1 – framework for managing administrative policies and privileges Details It was discovered that PolicyKit incorrectly relied on the fork() system call in the Linux kernel being atomic. A local attacker could possibly use this issue to gain access to services that have cached authorizations. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 libpolkit-backend-1-0 – 0.105-21ubuntu0.4 policykit-1 – 0.105-21ubuntu0.4 Ubuntu 18.04 LTS libpolkit-backend-1-0 – 0.105-20ubuntu0.18.04.5 policykit-1 – 0.105-20ubuntu0.18.04.5 Ubuntu 16.04 LTS libpolkit-backend-1-0 – 0.105-14.1ubuntu0.5 policykit-1 – 0.105-14.1ubuntu0.5 Ubuntu 14.04 LTS libpolkit-backend-1-0 – 0.105-4ubuntu3.14.04.6 policykit-1 – 0.105-4ubuntu3.14.04.6 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. [ more… ]

[도서] 애프터 이펙트 CC 2019 무작정 따라하기

2019-04-03 KENNETH 0

[도서] 애프터 이펙트 CC 2019 무작정 따라하기 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]애프터 이펙트 CC 2019 무작정 따라하기 신의철 저 | 길벗 | 2019년 04월 판매가 22,500원 (10%할인) | YES포인트 1,250원(5%지급) PC, 모바일 구분 없이 어느 장소에서나 자유자재로 활용할 수 있는 애프터 이펙트 CC 2019는 이전의 어떤 버전보다 강력한 성능을 자랑한다. 점점 커지는 스크린 크기와 다양해진 모바일 환경에 맞추어 빠르게 변화 Source: [도서] 애프터 이펙트 CC 2019 무작정 따라하기

Microsoft Bounty Program Updates: Faster bounty review, faster payments, and higher rewards

2019-04-03 KENNETH 0

Microsoft Bounty Program Updates: Faster bounty review, faster payments, and higher rewards In 2018 The Microsoft Bounty Program awarded over $2,000,000 to encourage and reward external security research in key technologies to protect our customers. Building on that success, we are excited to announce a number of improvements in our bounty programs to better serve the security research community.   Faster bounty review – As of January 2019, the Cloud, Windows, and Azure DevOps programs now award bounties upon completion of reproduction and assessment of each submission, rather than waiting until the final fix has been determined. Shortening the time from submission to award determination is just one way we will get bounty rewards to researchers faster.     Faster bounty payments, with more payment options – Once a vulnerability submission has successfully qualified for bounty award, we want to ensure payments happen [ more… ]

[도서] 프리미어 프로 CC 2019 무작정 따라하기

2019-04-03 KENNETH 0

[도서] 프리미어 프로 CC 2019 무작정 따라하기 분야별 신상품 – 국내도서 – 컴퓨터와 인터넷 [도서]프리미어 프로 CC 2019 무작정 따라하기 이현석,김나현 공저 | 길벗 | 2019년 04월 판매가 22,500원 (10%할인) | YES포인트 1,250원(5%지급) 언제 어디서나 자유자재로 활용할 수 있는 프리미어 프로 CC 2019는 이전의 어떤 버전보다 강력한 성능을 자랑한다. 현실의 미디어 기술을 소프트웨어에 반영하여 영상 편집 도구로서 큰 역할과 기능을 담당하는 프 Source: [도서] 프리미어 프로 CC 2019 무작정 따라하기

No Image

USN-3933-2: Linux kernel (Trusty HWE) vulnerabilities

2019-04-03 KENNETH 0

USN-3933-2: Linux kernel (Trusty HWE) vulnerabilities linux-lts-trusty vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 12.04 ESM Summary Several security issues were fixed in the Linux kernel. Software Description linux-lts-trusty – Linux hardware enablement kernel from Trusty for Precise ESM Details USN-3933-1 fixed vulnerabilities in the Linux kernel for Ubuntu 14.04 LTS. This update provides the corresponding updates for the Linux Hardware Enablement (HWE) kernel from Ubuntu 14.04 LTS for Ubuntu 12.04 ESM. It was discovered that an information leak vulnerability existed in the Bluetooth implementation of the Linux kernel. An attacker within Bluetooth range could possibly expose sensitive information (kernel memory). (CVE-2017-1000410) It was discovered that the USB serial device driver in the Linux kernel did not properly validate baud rate settings when debugging is enabled. A local attacker could use this to cause [ more… ]