No Image

USN-3041-1: Oxide vulnerabilities

2016-08-05 KENNETH 0

USN-3041-1: Oxide vulnerabilities Ubuntu Security Notice USN-3041-1 5th August, 2016 oxide-qt vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Several security issues were fixed in Oxide. Software description oxide-qt – Web browser engine for Qt (QML plugin) Details Multiple security issues were discovered in Chromium. If a user weretricked in to opening a specially crafted website, an attacker couldpotentially exploit these to read uninitialized memory, cause a denialof service (application crash) or execute arbitrary code. (CVE-2016-1705) It was discovered that the PPAPI implementation does not validate theorigin of IPC messages to the plugin broker process. A remote attackercould potentially exploit this to bypass sandbox protection mechanisms.(CVE-2016-1706) It was discovered that Blink does not prevent window creation by adeferred frame. A remote attacker could potentially exploit this to bypasssame origin [ more… ]

No Image

USN-3044-1: Firefox vulnerabilities

2016-08-05 KENNETH 0

USN-3044-1: Firefox vulnerabilities Ubuntu Security Notice USN-3044-1 5th August, 2016 firefox vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Firefox could be made to crash or run programs as your login if it opened a malicious website. Software description firefox – Mozilla Open Source web browser Details Gustavo Grieco discovered an out-of-bounds read during XML parsing insome circumstances. If a user were tricked in to opening a speciallycrafted website, an attacker could potentially exploit this to cause adenial of service via application crash, or obtain sensitive information.(CVE-2016-0718) Toni Huttunen discovered that once a favicon is requested from a site,the remote server can keep the network connection open even after the pageis closed. A remote attacked could potentially exploit this to trackusers, resulting in information disclosure. (CVE-2016-2830) [ more… ]

No Image

NGINX Plus vs. Citrix NetScaler: A Price‑Performance Comparison

2016-08-05 KENNETH 0

NGINX Plus vs. Citrix NetScaler: A Price‑Performance Comparison table, th, td { border: 1px solid black; } th { background-color: #d3d3d3; align: left; padding-left: 5px; padding-bottom: 2px; padding-top: 2px; line-height: 120%; } td { padding-left: 5px; padding-bottom: 5px; padding-top: 5px; line-height: 120%; } A few months ago we published a blog comparing the price and performance of NGINX Plus vs. F5 BIG‑IP hardware application delivery controllers (ADCs). In researching and publishing that blog, we learned that by moving from F5 BIG‑IP to NGINX Plus you can drastically reduce costs while maintaining the same feature set and level of performance. In this blog we’re again comparing NGINX Plus price and performance, this time with Citrix NetScaler ADCs, and the results are just as strong as with F5 BIG‑IP ADCs. You can replace Citrix NetScaler ADCs with NGINX Plus and save up to 89% without any sacrifice in performance or critical features. [ more… ]

The Ink Canvas and Ruler: combining art and technology

2016-08-05 KENNETH 0

The Ink Canvas and Ruler: combining art and technology How easy is it to integrate Inking into your app? As easy as one line of XAML. In this post, we’re going to walk you through the new Windows 10 Inking capabilities, which are making communication via writing and drawing easier than ever for users. You’ll learn how to implement these new capabilities in your Windows app and how they will improve your users’ experience. The easiest ways for Universal Windows Platform developers to hook into this capability is through the Ink Canvas. We’ll start out with some examples of this. The built-in experience There are many potential applications of Inking. As a starting point, it’s helpful to think of a typical user of Inking apps – for instance, an insurance adjuster who spends more time in the field than in [ more… ]