No Image

USN-3307-1: OpenLDAP vulnerability

2017-06-01 KENNETH 0

USN-3307-1: OpenLDAP vulnerability Ubuntu Security Notice USN-3307-1 1st June, 2017 openldap vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary OpenLDAP could be made to crash if it received specially crafted network traffic. Software description openldap – OpenLDAP utilities Details Karsten Heymann discovered that OpenLDAP incorrectly handled certain searchrequests. A remote attacker could use this issue to cause slapd to crash,resulting in a denial of service. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.04: slapd 2.4.44+dfsg-3ubuntu2.1 Ubuntu 16.10: slapd 2.4.42+dfsg-2ubuntu4.1 Ubuntu 16.04 LTS: slapd 2.4.42+dfsg-2ubuntu3.2 Ubuntu 14.04 LTS: slapd 2.4.31-1+nmu2ubuntu8.4 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2017-9287 Source: USN-3307-1: OpenLDAP [ more… ]

Amazon Lightsail 업데이트 – 신규 리전 개설 및 글로벌 콘솔 출시

2017-06-01 KENNETH 0

Amazon Lightsail 업데이트 – 신규 리전 개설 및 글로벌 콘솔 출시 Amazon Lightsail 을 사용하면 단 몇 번의 클릭만으로 AWS에서 가상 사설 서버(VPS)를 시작할 수 있습니다. 한 달에 5 달러부터 시작하는 Lightsail은 손쉽고 단순한 가상 호스팅을 시작할 수 있습니다. (Amazon Lightsail – VPS 출시 소식 참고). 콘솔 메뉴에서 운영 체제 및 애플리케이션 구성을 선택하고 고정 IP, SSD 기반 스토리지, DNS 관리 및 사전 구성된 가상 시스템을 시작할 수 있습니다. 작년 11월에 출시 한 이래 많은 고객들이 Lightsail을 사용하여 가상 개인 서버를 시작했습니다. 뿐만 아니라 많은 웹 사이트를 가진 기업들도 관심을 가지고 있으며, 예를 들어 Monash University는 Amazon Lightsail을 사용하여 간단하고 비용 효율적인 방식으로 여러 CMS ​​서비스를 구성하였습니다. 이미 50 개 워크로드를 마이그레이션했으며 Lightsail을 기반으로하는 내부 CMS 서비스를 만들어 직원과 학생들이 셀프 서비스 방식으로 자체 CMS 인스턴스를 만들 수 있도록 하고 있습니다. 오늘 Lightsail을 9 개의 AWS 리전으로 확장하고 새로운 글로벌 [ more… ]

Introducing CI/CD with NGINX and NGINX Plus

2017-06-01 KENNETH 0

Introducing CI/CD with NGINX and NGINX Plus Continuous integration/continuous delivery (CI/CD) is a modern approach to managing the entire life cycle of writing, updating, and delivering applications. The agile and lightweight design of NGINX and NGINX Plus makes them extremely useful tools in support of many parts of a CI/CD platform. With CI/CD, everything from bug fixes to major feature changes are delivered to users on an ongoing basis. Different parts of an app can use different programming languages, different database schemas, and different development and release schedules. CI/CD is part of a group of related practices, each of which supports the others: The use of tools such as Bamboo and Jenkins for continuous integration The use of Git or similar tools for flexible source code control The use of containers for development, test, and production The use of container management [ more… ]

No Image

USN-3305-1: NVIDIA graphics drivers vulnerabilities

2017-06-01 KENNETH 0

USN-3305-1: NVIDIA graphics drivers vulnerabilities Ubuntu Security Notice USN-3305-1 31st May, 2017 nvidia-graphics-drivers-375 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary NVIDIA graphics drivers could be made to crash or run programs as an administrator. Software description nvidia-graphics-drivers-375 – NVIDIA binary X.Org driver Details It was discovered that the NVIDIA graphics drivers contained flaws in thekernel mode layer. A local attacker could use these issues to cause a denial ofservice or potentially escalate their privileges on the system. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.04: nvidia-367 375.66-0ubuntu0.17.04.1 nvidia-375 375.66-0ubuntu0.17.04.1 Ubuntu 16.10: nvidia-367 375.66-0ubuntu0.16.10.1 nvidia-375 375.66-0ubuntu0.16.10.1 Ubuntu 16.04 LTS: nvidia-367 375.66-0ubuntu0.16.04.1 nvidia-375 375.66-0ubuntu0.16.04.1 Ubuntu 14.04 LTS: nvidia-367 375.66-0ubuntu0.14.04.1 nvidia-375 375.66-0ubuntu0.14.04.1 To update your system, please [ more… ]

A Tale of Two Kernels

2017-06-01 KENNETH 0

A Tale of Two Kernels Insiders are the millions who represent the billions – Dona Sarkar This is absolutely true. Each and every Windows Insider out there is an individual who represents not only themselves, but also – to varying degrees – countless others who don’t participate in this amazing program. One area where the Windows Insider Program excels is in gathering broad coverage on the holistic Windows experience. We receive feedback and insights on every aspect of the OS – from app usage and core OS functionality, to usability and accessibility, from each of the primary languages around the globe. Windows Insiders represent the world in a microcosm. One of the things we as a team have learned along the way is that at times the voice of one or two Insiders can be representative of hundreds of Windows [ more… ]