No Image

USN-3179-1: OpenJDK 8 vulnerabilities

2017-01-26 KENNETH 0

USN-3179-1: OpenJDK 8 vulnerabilities Ubuntu Security Notice USN-3179-1 25th January, 2017 openjdk-8 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.10 Ubuntu 16.04 LTS Summary Several security issues were fixed in OpenJDK 8. Software description openjdk-8 – Open Source Java implementation Details Karthik Bhargavan and Gaetan Leurent discovered that the DES andTriple DES ciphers were vulnerable to birthday attacks. A remoteattacker could possibly use this flaw to obtain clear text data fromlong encrypted sessions. This update moves those algorithms to thelegacy algorithm set and causes them to be used only if no non-legacyalgorithms can be negotiated. (CVE-2016-2183) It was discovered that OpenJDK accepted ECSDA signatures usingnon-canonical DER encoding. An attacker could use this to modify orexpose sensitive data. (CVE-2016-5546) It was discovered that OpenJDK did not properly verify objectidentifier (OID) length when reading Distinguished Encoding [ more… ]

New Windows 10 Creators Update gaming features arrive this week for Windows Insiders

2017-01-26 KENNETH 0

New Windows 10 Creators Update gaming features arrive this week for Windows Insiders It’s a big update week for PC and Xbox One gamers who are part of the Xbox and Windows Insider Programs. Starting tomorrow, these gamers will see and experience new features from the Windows 10 Creators Update on PC, with additional features expected to hit console in the coming days. Earlier this week, select Insider members saw new features such as the updated Home, Guide and refreshed multitasking for Xbox One. Tomorrow’s update includes some big new additions for PC gamers, with a few more features releasing for Xbox One owners soon. These new features are releasing to a small subset of Insiders starting now, with more Xbox and Windows Insider Program members receiving these in the coming weeks. Here’s a look at what’s new for select [ more… ]

Improve App Security with the Free O’Reilly NGINX Cookbook, Part 2

2017-01-26 KENNETH 0

Improve App Security with the Free O’Reilly NGINX Cookbook, Part 2 Over the past year web application attacks increased by 50% and DDoS attacks more than doubled, according to Akamai. The unfortunate truth is that everyone is now a potential target. As businesses become more dependent on applications and the data within them, the consequences of a security breach can be devastating. To help prevent you from falling victim to an attack, we’re releasing the second part of our NGINX cookbook series for free download today. Authored in partnership with O’Reilly Media, it provides easy‑to‑follow recipes for protecting your applications using the open source NGINX software and our enterprise‑grade product, NGINX Plus. Open source NGINX has a number of great security features, such as the ability to make HTTP authentication subrequests and set up secure links with expiration dates. NGINX Plus adds in [ more… ]

River Dell Regional School District gives students connected classrooms and digital ink

2017-01-26 KENNETH 0

River Dell Regional School District gives students connected classrooms and digital ink Students and teachers decide what technology the district should adopt. Their choice: Windows 10 and Microsoft Education. River Dell Regional School District in New Jersey has a middle school and high school comprised of more than 1,700 students and 131 educators. When it came time to renew their computer equipment the district they asked the teachers and students what they wanted. OneNote’s collaboration space encourages students to work together on the same document at the same time, whether it’s a shared writing project or gathering data for a science lab report. River Dell Regional School District has equipped every student and teacher with a Windows 10 touch- and pen-enabled laptop with Microsoft Office 365 and OneNote. This combination enables teachers to work more efficiently, facilitates personalized learning opportunities [ more… ]

No Image

RHSA-2017:0192-1: Low: Red Hat Satellite Proxy 5 – 60 day End Of Life Notice

2017-01-25 KENNETH 0

RHSA-2017:0192-1: Low: Red Hat Satellite Proxy 5 – 60 day End Of Life Notice RHN Satellite and Proxy: This is the 60 day notification of the End Of Life (EOL) plans for the following versions of Red Hat Satellite 5: * Red Hat Satellite 5.6 on Red Hat Enterprise Linux 5 Source: RHSA-2017:0192-1: Low: Red Hat Satellite Proxy 5 – 60 day End Of Life Notice