Unix Server - Server
 
  1. Server >
  2. Unix Server

ArabicEnglishFrenchGermanGreekItalianJapaneseKoreanPersianPolishPortugueseRussianSpanishTurkishVietnamese
Anzeige

Unix Server


Suchen

CentOS Blog: Dojo at DevConf.us

Unix Server vom 21.08.2018 um 11:18 Uhr | Quelle blog.centos.org

This Thursday we held our first Dojo at DevConf.us in Boston. We had about 40 people in attendance, and had 9 presenters on a variety of topics.

I want to particularly draw attention to our keynote, by Brendan Conoboy, who discussed the relationship - past and future - between Fedora, CentOS, and RHEL, which is more complicated than many people understand. But we're working on simplifying those relationships, and Brendan does a great job of explaining where we're headed, and why.

The details of this event are in the CentOS Wiki and are being updated with slides and videos as they become available. All of the videos are in the event playlist on Youtube - check back over the coming week as we upload the remainder of the talks.

Our next event will be held at CERN in Meyrin, Switzerland, in October. Details are available at cern.ch/centos and we expect to post the schedule in the coming week.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

CentOS Blog: CentOS Atomic Host 7.1807 Available for Download

Unix Server vom 21.08.2018 um 03:07 Uhr | Quelle blog.centos.org

The CentOS Atomic SIG has released an updated version of CentOS Atomic Host (7.1807), an operating system designed to run Linux containers, built from standard CentOS 7 RPMs, and tracking the component versions included in Red Hat Enterprise Linux Atomic Host.

CentOS Atomic Host includes these core component versions:

  • atomic-1.22.1-22.git5a342e3.el7.x86_64
  • cloud-init-0.7.9-24.el7.centos.1.x86_64
  • docker-1.13.1-68.gitdded712.el7.centos.x86_64
  • etcd-3.2.22-1.el7.x86_64
  • flannel-0.7.1-4.el7.x86_64
  • kernel-3.10.0-862.11.6.el7.x86_64
  • ostree-2018.5-1.el7.x86_64
  • rpm-ostree-client-2018.5-1.atomic.el7.x86_64

Download CentOS Atomic Host

CentOS Atomic Host is available as a VirtualBox or libvirt-formatted Vagrant box, or as an installable ISO, qcow2 or Amazon Machine image. For links to media, see the CentOS wiki.

Upgrading

If you’re running a previous version of CentOS Atomic Host, you can upgrade to the current image by running the following command:

# atomic host upgrade

Release Cycle

The CentOS Atomic Host image follows the upstream Red Hat Enterprise Linux Atomic Host cadence. After sources are released, they’re rebuilt and included in new images. After the images are tested by the SIG and deemed ready, we announce them.

Getting Involved

CentOS Atomic Host is produced by the CentOS Atomic SIG, based on upstream work from Project Atomic. If you’d like to work on testing images, help with packaging, documentation – join us!

You’ll often find us in #atomic and/or #centos-devel if you have questions. You can also join the atomic-devel mailing list if you’d like to discuss the direction of Project Atomic, its components, or have other questions.

Getting Help

If you run into any problems with the images or components, feel free to ask on the centos-devel mailing list.

Have questions about using Atomic? See the atomic mailing list or find us in the #atomic channel on Freenode.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4279 linux - security update

Unix Server vom 20.08.2018 um 02:00 Uhr | Quelle debian.org

Multiple researchers have discovered a vulnerability in the way the Intel processor designs have implemented speculative execution of instructions in combination with handling of page-faults. This flaw could allow an attacker controlling an unprivileged process to read memory from arbitrary (non-user controlled) addresses, including from the kernel and all other processes running on the system or cross guest/host boundaries to read host memory.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4278 jetty9 - security update

Unix Server vom 19.08.2018 um 02:00 Uhr | Quelle debian.org

Multiple vulnerabilities were discovered in Jetty, a Java servlet engine and webserver which could result in HTTP request smuggling.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4276 php-horde-image - security update

Unix Server vom 17.08.2018 um 02:00 Uhr | Quelle debian.org

Fariskhi Vidyan and Thomas Jarosch discovered several vulnerabilities in php-horde-image, the image processing library for the Horde groupware suite. They would allow an attacker to cause a denial-of-service or execute arbitrary code.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4277 mutt - security update

Unix Server vom 17.08.2018 um 02:00 Uhr | Quelle debian.org

Several vulnerabilities were discovered in Mutt, a text-based mailreader supporting MIME, GPG, PGP and threading, potentially leading to code execution, denial of service or information disclosure when connecting to a malicious mail/NNTP server.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Oracle schließt kritische Lücke in Database Server für Windows

Unix Server vom 16.08.2018 um 16:26 Uhr | Quelle google.com
Auch die Version 12.1.0.2 für Windows, Linux und Unix ist betroffen – für Linux und Unix steht allerdings schon seit Juli ein Patch zur Verfügung.
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4274 xen - security update

Unix Server vom 16.08.2018 um 02:00 Uhr | Quelle debian.org

This update provides mitigations for the L1 Terminal Fault vulnerability affecting a range of Intel CPUs.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4275 keystone - security update

Unix Server vom 16.08.2018 um 02:00 Uhr | Quelle debian.org

Kristi Nikolla discovered an information leak in Keystone, the OpenStack identity service, if running in a federated setup.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4273 intel-microcode - security update

Unix Server vom 16.08.2018 um 02:00 Uhr | Quelle debian.org

This update ships updated CPU microcode for some types of Intel CPUs and provides SSBD support (needed to address Spectre v4) and fixes for Spectre v3a.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4272 linux - security update

Unix Server vom 14.08.2018 um 02:00 Uhr | Quelle debian.org

1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4271 samba - security update

Unix Server vom 14.08.2018 um 02:00 Uhr | Quelle debian.org

Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix. The Common Vulnerabilities and Exposures project identifies the following issues:


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4270 gdm3 - security update

Unix Server vom 13.08.2018 um 02:00 Uhr | Quelle debian.org

Chris Coulson discovered a use-after-free flaw in the GNOME Display Manager, triggerable by an unprivileged user via a specially crafted sequence of D-Bus method calls, leading to denial of service or potentially the execution of arbitrary code.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4269 postgresql-9.6 - security update

Unix Server vom 10.08.2018 um 02:00 Uhr | Quelle debian.org

Two vulnerabilities have been found in the PostgreSQL database system:


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4268 openjdk-8 - security update

Unix Server vom 10.08.2018 um 02:00 Uhr | Quelle debian.org

It was discovered that the PatternSyntaxException class in the Concurrency component of OpenJDK, an implementation of the Oracle Java platform could result in denial of service via excessive memory consumption.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

CentOS Blog: CentOS Dojo in Brussels, February 1, 2019 (CFP now open)

Unix Server vom 08.08.2018 um 21:10 Uhr | Quelle blog.centos.org

Save the date! February 1 in Brussels!

As we do each year, we are once again planning to host a CentOS Dojo in Brussels on Friday, February 1st, the day before FOSDEM 2019. Details about this event are on the CentOS wiki, and will more details are being added all the time.

The Call for Presentations for this event is now open, and will be open until October 15th, 2018.

CentOS Dojos are one-day (or, occasionally, two day) events that bring together people from the CentOS community to talk about systems administration, best practices, and emerging technologies, and bring the community closer together.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Unternehmensweites PAM-as-a-Service mit Thycotic Secret Server Cloud

Unix Server vom 08.08.2018 um 17:00 Uhr | Quelle google.com
„Mit Secret Server Cloud stehen Unternehmen jeder Größe ab sofort alle ... Verwaltet und schützt Servicekonten, DevOps-Workflows und Unix- ...
1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4267 kamailio - security update

Unix Server vom 08.08.2018 um 02:00 Uhr | Quelle debian.org

Henning Westerholt discovered a flaw related to the To header processing in kamailio, a very fast, dynamic and configurable SIP server. Missing input validation in the build_res_buf_from_sip_req function could result in denial of service and potentially the execution of arbitrary code.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

CentOS Blog: CentOS Pulse Newsletter, August 2018

Unix Server vom 07.08.2018 um 17:27 Uhr | Quelle blog.centos.org
It's time for another community newsletter. As always, we have lots of 
information about upcoming events, recent releases, and what our SIGs 
(Special Interest Groups) are working on.

You can read the newsletter at https://wiki.centos.org/Newsletter/1803

Past editions of the newsletter, as well as information about how you 
can contribute, is available at http://wiki.centos.org/Newsletter

In the coming months, we'd like to feature articles from you, the users 
of CentOS, about what you're doing on top of this great platform.

Talk to you next month!

Rich, for the CentOS Newsletter team

1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4266 linux - security update

Unix Server vom 06.08.2018 um 02:00 Uhr | Quelle debian.org

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation or denial of service.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4265 xml-security-c - security update

Unix Server vom 05.08.2018 um 02:00 Uhr | Quelle debian.org

It was discovered that the Apache XML Security for C++ library performed insufficient validation of KeyInfo hints, which could result in denial of service via NULL pointer dereferences when processing malformed XML data.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4264 python-django - security update

Unix Server vom 05.08.2018 um 02:00 Uhr | Quelle debian.org

Andreas Hug discovered an open redirect in Django, a Python web development framework, which is exploitable if django.middleware.common.CommonMiddleware is used and the APPEND_SLASH setting is enabled.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4263 cgit - security update

Unix Server vom 04.08.2018 um 02:00 Uhr | Quelle debian.org

Jann Horn discovered a directory traversal vulnerability in cgit, a fast web frontend for git repositories written in C. A remote attacker can take advantage of this flaw to retrieve arbitrary files via a specially crafted request, when 'enable-http-clone=1' (default) is not turned off.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4262 symfony - security update

Unix Server vom 03.08.2018 um 02:00 Uhr | Quelle debian.org

Multiple vulnerabilities have been found in the Symfony PHP framework which could lead to open redirects, cross-site request forgery, information disclosure, session fixation or denial of service.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4261 vim-syntastic - security update

Unix Server vom 03.08.2018 um 02:00 Uhr | Quelle debian.org

Enrico Zini discovered a vulnerability in Syntastic, an addon module for the Vim editor that runs a file through external checkers and displays any resulting errors. Config files were looked up in the current working directory which could result in arbitrary shell code execution if a malformed source code file is opened.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4260 libmspack - security update

Unix Server vom 02.08.2018 um 02:00 Uhr | Quelle debian.org

Several vulnerabilities were discovered in libsmpack, a library used to handle Microsoft compression formats. A remote attacker could craft malicious CAB, CHM or KWAJ files and use these flaws to cause a denial of service via application crash, or potentially execute arbitrary code.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

CentOS Blog: DevConf.IN this weekend!

Unix Server vom 31.07.2018 um 18:16 Uhr | Quelle blog.centos.org

Join us this weekend (August 4th - 5th) in Bengaluru for DevConf.in, the second annual Developers' Conference.

We want to draw particular attention to two talks.

Bama charan Kundu will be talking about the CentOS Container Pipeline project:

Various container build services offer developers to build their image with a git push and scan the container for known CVEs (as a paid service). What they don't provide is Dockerfile linting; scanners that would scan for available package updates (rpm, pip, npm, gem); a build process that rebuilds an image not only on git push but also when there's RPM update in its enabled repo or when its base image is updated.

Welcome to CentOS Container Pipeline project. It provides all these and more, out of the box, free of cost, on CentOS infra, and with a focus on open source developers. All it needs is the link to git repo containing the Dockerfile.

And Karanbir Singh will be delivering the closing keynote:

Open Source won! In this session, I would like to explore the effects this has on culture and impact beyond just the software development process; focusing on how we run and operate software today and into the future. As an existing or potential contributor to future services, as either a developer, an operator or manager, I will aim to give you the focus points helping you make good choices in the right directions. And most importantly, asking the right questions.

Additionally, CentOS will have a booth in the expo hall, so drop by for your CentOS stickers and swag! See you in Bengaluru!


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4259 ruby2.3 - security update

Unix Server vom 31.07.2018 um 02:00 Uhr | Quelle debian.org

Several vulnerabilities have been discovered in the interpreter for the Ruby language, which may result in incorrect processing of HTTP/FTP, directory traversal, command injection, unintended socket creation or information disclosure.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4258 ffmpeg - security update

Unix Server vom 29.07.2018 um 02:00 Uhr | Quelle debian.org

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4257 fuse - security update

Unix Server vom 28.07.2018 um 02:00 Uhr | Quelle debian.org

Jann Horn discovered that FUSE, a Filesystem in USErspace, allows the bypass of the user_allow_other restriction when SELinux is active (including in permissive mode). A local user can take advantage of this flaw in the fusermount utility to bypass the system configuration and mount a FUSE filesystem with the allow_other mount option.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

CentOS Blog: CentOS Dojo at DevConf.us, August 16th

Unix Server vom 27.07.2018 um 21:27 Uhr | Quelle blog.centos.org

We're just three weeks away from our upcoming Dojo at DevConf.us. We've recently added a new keynote to kick the day off, and an awesome evening event. Further event details are available on the CentOS Events Wiki, but here's the highlights:

The day starts at 9am with a keynote from Brendan Conoboy, who will be discussing the relationship between Fedora, CentOS, and Red Hat Enterprise Linux (RHEL) in his talk "RHEL, Fedora and CentOS: Solving The Penrose Triangle".

The day continues with technical presentations about Kubernetes, various CentOS SIGs, HPC, Ceph, and other topics.

And we'll wrap up the day by walking over to Cheeky Monkey Brewing for light refreshments.

So, join us at 9am, Thursday August 16th, at the George Sherman Union building at Boston University. Register by clicking the link on the event page, so that we know you're coming and can plan accordingly. (Registration is free, but we need to know how many people are coming.)


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4256 chromium-browser - security update

Unix Server vom 26.07.2018 um 02:00 Uhr | Quelle debian.org

Several vulnerabilities have been discovered in the chromium web browser.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4255 ant - security update

Unix Server vom 24.07.2018 um 02:00 Uhr | Quelle debian.org

Danny Grander reported that the unzip and untar tasks in ant, a Java based build tool like make, allow the extraction of files outside a target directory. An attacker can take advantage of this flaw by submitting a specially crafted Zip or Tar archive to an ant build to overwrite any file writable by the user running ant.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4254 slurm-llnl - security update

Unix Server vom 24.07.2018 um 02:00 Uhr | Quelle debian.org

Several vulnerabilities were discovered in the Simple Linux Utility for Resource Management (SLURM), a cluster resource management and job scheduling system. The Common Vulnerabilities and Exposures project identifies the following problems:


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

DSA-4253 network-manager-vpnc - security update

Unix Server vom 23.07.2018 um 02:00 Uhr | Quelle debian.org

Denis Andzakovic discovered that network-manager-vpnc, a plugin to provide VPNC support for NetworkManager, is prone to a privilege escalation vulnerability. A newline character can be used to inject a Password helper parameter into the configuration data passed to vpnc, allowing a local user with privileges to modify a system connection to execute arbitrary commands as root.


1-Klick Newsbewertung vornehmen

Weiterlesen Artikel ansehen

Seitennavigation

Seite 1 von 63 Seiten (Bei Beitrag 1 - 35)
2.182x Beiträge in dieser Kategorie

Nächste 2 Seite | Letzte Seite
[ 2 ] [ 3 ] [ 4 ] [ 5 ] [ 6 ] [ 7 ] [ 8 ] [ 9 ] [ 10 ] [ 11 ]