BIND vulnerability (CVE-2017-3145) can crash name

[German]A vulnerability in BIND (performing DNS resolutions) may cause the named daemon to crash. Here are some information about the vulnerability, that since 2000.

Continue reading


Advertising



Posted in Security | Tagged | Leave a comment

InSpectre: Test your machine against Meltdown/Spectre flaw

[German]Since beginning of this year 2018, we know about the CPU vulnerabilities, that can be attacked via Meltdown/Spectre attacks. InSpectre is a tool, that checks your system’s vulnerability against both attacks.

Continue reading

Posted in Security, Windows | Tagged , | Leave a comment

VirtualBox 5.2.6 released

Virtualbox[German]After releasing Virtualbox version 5.2.4 on December 19, 2017, Oracle has released another update on January 15, 2018 of its virtualization software VirtualBox Version 5.2.6. It’s a maintenance update.

Continue reading

Posted in Virtualization | Tagged | Leave a comment

Seagate patched silently a security flaw in NAS devices

[German]Do you own a Seagate NAS device? Seagate has fixed quietly a security vulnerability in the firmware of their Seagate Personal Cloud Home Media Storage.

Continue reading

Posted in devices, Security | Tagged , , , | Leave a comment

Ubuntu 17.04 reached end of life

Another short message: Ubuntu 17.04 (Zesty Zapus) has reached the end of live date and there are no more updates. The version released on April 13, 2017 is no longer supported. There are also no more patches for the kernel. Users can switch to Ubuntu 17.10. Some information can also be found here.

Posted in computer, Linux | Tagged , | Leave a comment

Microsoft Security Update Minor Revision (CVE-2018-0802)

SicherheitAnother short Microsoft addendum on security updates, which has been released on January 9, 2018. The security description for Office (CVE-2018-0802) has been slightly revised.

Continue reading

Posted in Office, Security, Update | Tagged , | Leave a comment

Microsoft Security Advisory Notification January 10, 2018

Microsoft has released this night a new Security Advisory Notification – dated January 10, 2018. This notification lists revisions of Security Advisories released or updated recently. Here are the details.

Continue reading

Posted in Security | Tagged , , , | Leave a comment

Meltdown and Spectre: What Windows users need to know

[German]At the beginning of the year, a design flaw (Meltdown) in Intel’s processors went public. Later on a 2nd attack, called Spectre, affecting nearly all processor have become public. OS vendors begun to rollout patches, to mitigate these security issues. In this blog post, I summarize information that is relevant and important for Windows users.

Continue reading

Posted in Security, Windows | Tagged , , , | Leave a comment

Test: Is my browser vulnerable for Spectre attacks?

[German]Here’s a tip for users of devices, who are wondering, if their browser is vulnerable for Spectre attacks. The test is independent of the device and operating system and there is no need to install anything.

Continue reading

Posted in browser, Security, Windows | Tagged , , | 1 Comment

How to mitigate Spectre in Google Chrome

This blog post shows, how to mitigate Google Chrome browser against the Spectre attack using Strict site isolation.

Continue reading

Posted in browser, Security | Tagged , , | Leave a comment