LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Thursday, January 28th, 2016

    Time Event
    1:12a
    [$] LWN.net Weekly Edition for January 28, 2016
    The LWN.net Weekly Edition for January 28, 2016 is available.
    3:47p
    Thursday's security advisories

    Arch Linux has updated nginx (three denial of service flaws).

    Debian has updated iceweasel (three vulnerabilities) and openjdk-7 (multiple vulnerabilities).

    openSUSE has updated chromium (13.1: multiple vulnerabilities), java-1_7_0-openjdk (13.2: multiple vulnerabilities), java-1_8_0-openjdk (42.1; 13.2: multiple vulnerabilities), java7 (13.1: multiple vulnerabilities), and openldap2 (42.1: two vulnerabilities).

    Oracle has updated bind (OL7; OL6; OL5: denial of service), bind97 (OL5: denial of service), and firefox (OL7; OL6; OL5: two code execution flaws).

    Red Hat has updated bind (RHEL6.4, 6.5: four denial of service flaws, including one from 2014) and bind (RHEL6.6: three denial of service flaws).

    Scientific Linux has updated bind (denial of service), bind97 (SL5: denial of service), and firefox (two code execution flaws).

    SUSE has updated java-1_7_0-openjdk (SLE12; SLE11: multiple vulnerabilities) and openldap2 (Studio Onsite 1.3: two vulnerabilities).

    Ubuntu has updated curl (authentication bypass) and oxide-qt (15.10, 15.04, 14.04: multiple vulnerabilities).

    8:08p
    NSA Hacker Chief Explains How to Keep Him Out of Your System (Wired)
    Wired reports on a talk at the USENIX Enigma conference by Rob Joyce of the US National Security Agency (NSA). Joyce is the head of the NSA's Tailored Access Operations, which is tasked with breaking into the systems of adversaries and sometimes allies. He spoke about ways to thwart the NSA and other nation-state-level attackers. "'We put the time in …to know [that network] better than the people who designed it and the people who are securing it,' he said. 'You know the technologies you intended to use in that network. We know the technologies that are actually in use in that network. Subtle difference. You'd be surprised about the things that are running on a network vs. the things that you think are supposed to be there.'"

    << Previous Day 2016/01/28
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org