#oob — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #oob, aggregated by home.social.
-
Poważna podatność w platformie Ollama prowadzi do wycieku pamięci. A wszystko przez odpowiednio spreparowany plik GGUF (CVE-2026-5757)
Badacz bezpieczeństwa Jeremy Brown, znany z odkrywania luk (memory corruption) w ogólnodostępnych narzędziach, po raz kolejny udowodnił, że innowacyjne metody oraz nieszablonowe działania pozwalają wychwycić błędy, które przez lata pozostawały niewidoczne. Korzystając ze wsparcia sztucznej inteligencji udało mu się wykryć poważną podatność w silniku Ollama, skutkującą możliwym wyciekiem danych z...
-
via @dotnet : .NET 10.0.7 Out-of-Band Security Update
https://ift.tt/M4BdDGe
#dotnet #dotnet10 #dotnetcore #AspNetCore #DataProtection #SecurityUpdate #OutOfBand #OOB #CVE202640372 #SecurityVulnerability #Decryption #HMAC #Encryption #ReleaseNotes #Downloads #SD… -
via @dotnet : .NET 10.0.7 Out-of-Band Security Update
https://ift.tt/M4BdDGe
#dotnet #dotnet10 #dotnetcore #AspNetCore #DataProtection #SecurityUpdate #OutOfBand #OOB #CVE202640372 #SecurityVulnerability #Decryption #HMAC #Encryption #ReleaseNotes #Downloads #SD… -
via @dotnet : .NET 10.0.7 Out-of-Band Security Update
https://ift.tt/M4BdDGe
#dotnet #dotnet10 #dotnetcore #AspNetCore #DataProtection #SecurityUpdate #OutOfBand #OOB #CVE202640372 #SecurityVulnerability #Decryption #HMAC #Encryption #ReleaseNotes #Downloads #SD… -
via @dotnet : .NET 10.0.7 Out-of-Band Security Update
https://ift.tt/M4BdDGe
#dotnet #dotnet10 #dotnetcore #AspNetCore #DataProtection #SecurityUpdate #OutOfBand #OOB #CVE202640372 #SecurityVulnerability #Decryption #HMAC #Encryption #ReleaseNotes #Downloads #SD… -
via @dotnet : .NET 10.0.7 Out-of-Band Security Update
https://ift.tt/M4BdDGe
#dotnet #dotnet10 #dotnetcore #AspNetCore #DataProtection #SecurityUpdate #OutOfBand #OOB #CVE202640372 #SecurityVulnerability #Decryption #HMAC #Encryption #ReleaseNotes #Downloads #SD… -
From the .NET blog...
In case you missed it earlier...
.NET 10.0.7 Out-of-Band Security Update
https://devblogs.microsoft.com/dotnet/dotnet-10-0-7-oob-security-update/ #dotnet #MaintenanceUpdates #NET10 #CVE202640372 #OOB #Security -
From the .NET blog...
.NET 10.0.7 Out-of-Band Security Update
https://devblogs.microsoft.com/dotnet/dotnet-10-0-7-oob-security-update/ #dotnet #MaintenanceUpdates #NET10 #CVE202640372 #OOB #Security -
#Microsoft muss schon wieder ein Notfall-Update für #Windows11 nachschieben - diesmal sind #Bluetooth-Geräte in den #Einstellungen schlicht unsichtbar. #OOB #Update https://winfuture.de/news,157534.html?utm_source=Mastodon&utm_medium=ManualStatus&utm_campaign=SocialMedia
-
From the .NET blog...
In case you missed it earlier...
.NET 10.0.5 Out-of-Band Release – macOS Debugger Fix
https://devblogs.microsoft.com/dotnet/dotnet-10-0-5-oob-release-macos-debugger-fix/ #dotnet #MaintenanceUpdates #NET10 #Debugging #macos #OOB #VisualStudioCode -
From the .NET blog...
.NET 10.0.5 Out-of-Band Release – macOS Debugger Fix
https://devblogs.microsoft.com/dotnet/dotnet-10-0-5-oob-release-macos-debugger-fix/ #dotnet #MaintenanceUpdates #NET10 #Debugging #macos #OOB #VisualStudioCode -
From the .NET blog...
.NET 10.0.5 Out-of-Band Release – macOS Debugger Fix
https://devblogs.microsoft.com/dotnet/dotnet-10-0-5-oob-release-macos-debugger-fix/ #.NET #Maintenance & Updates #.NET 10 #Debugging #macos #OOB #Visual Studio Code -
via @dotnet : .NET 10.0.5 Out-of-Band Release – macOS Debugger Fix
https://ift.tt/v1U3Iae
#dotnet #dotnet10 #dotnet105 #dotnetupdate #net10 #debuggerfix #macOS #macos #apple silicon #arm64 #visualstudiocode #vscode #dotnetsdk #netcore #outofband #oob #release #s… -
.NET 10.0.5 Out-of-Band Release – macOS Debugger Fix
https://devblogs.microsoft.com/dotnet/dotnet-10-0-5-oob-release-macos-debugger-fix/#microsoft #NET #Maintenance_Updates #NET_10 #Debugging #macos #OOB #Visual_Studio_Code
-
「Windows 11 23H2」が終了・休止できなくなる問題、緊急パッチでは対策不十分/「仮想セキュア モード」(VSM)環境で報告がやまず
https://forest.watch.impress.co.jp/docs/news/2082657.html#forest_watch_impress #OOB #Secure_Launch #システム_ファイル #システム #Windows
-
Microsoft、今月2回目の緊急パッチ ~クラウドストレージや「Outlook」の問題に対処/Windowsでクラウドファイルを開いたり、保存したりするとアプリが応答不能に
https://forest.watch.impress.co.jp/docs/news/2080591.html#forest_watch_impress #Outlook #Dropbox #OneDrive #OOB #セキュリティ #不具合_障害 #Windows
-
「Windows 11 バージョン 23H2」がシャットダウン・休止できなくなる問題/「セキュア起動」(Secure Launch)が有効な環境で、対策パッチがリリース
https://forest.watch.impress.co.jp/docs/news/2078835.html#forest_watch_impress #OOB #Secure_Launch #システム_ファイル #システム #Windows
-
Microsoft、2026年1月のWindowsセキュリティパッチの問題を解決するパッチを緊急公開/リモート接続アプリの接続・認証、一部デバイスのシャットダウン・休止にトラブル
https://forest.watch.impress.co.jp/docs/news/2078757.html -
Как мы в Yandex Infrastructure разделили инфраструктурную сеть, сохранив связность
Когда мы говорим об инфраструктурной сети, важно понимать, что это не просто сеть для сотрудников. Инфраструктурная сеть в Яндексе решает задачу, без которой невозможно функционирование компании: обеспечить связанность сотрудников и сервисов, независимо от того, где они находятся. Сегодня у Яндекса более сотни офисов по всему миру, и в каждом из них нужно обеспечить стабильный доступ к интернету и к внутренним корпоративным ресурсам. Меня зовут Дмитрий Литовченко, я сетевой инженер группы офисных и инфраструктурных сетей в Yandex Infrastructure. В этой статье я расскажу историю, как эволюционировали отношения нашей инфраструктурной сети и сети дата‑центров: наш полученный опыт за несколько лет, декаплинг сетей, планы развития.
https://habr.com/ru/companies/yandex_cloud_and_infra/articles/975996/
-
Krytyczna podatność w OpenVPN
OpenVPN to zbiór narzędzi służący do implementacji technik tworzenia bezpiecznych połączeń punkt-punkt lub strona-strona w sieciach routowanych lub mostkowanych. Tunele OpenVPN powszechnie uznawane są za bezpieczne, a sam projekt za stabilny, jednak warto mieć świadomość, że nawet dojrzałe rozwiązania nie są pozbawione wad. TLDR: Najpoważniejszy problem otrzymał identyfikator CVE-2025-12106 i...
#WBiegu #Awareness #DoS #DostępZdalny #Handshake #Oob #OpenVPN #Tunel
-
#Miscosoft really fucked up the #Win10 #EOL / Fucked their customers
I have 1/2 dozen systems that should be receiving #ESU updates... Every single one of them is borked in that not only are they not receiving the ESU updates.. they don't even see the #OOB update that #MS released (to "fix" the problem they created) as being available via Windows update:
-
@mossman @fesshole
Wow! I have a weirdly identical memory!
Maybe flying/falling down stairs is a very common childish dream?
Anyway, the OP just needs to learn the standard tests for dreaming like, for example, "what happens if I switch the light on?", etc.
"Am I dreaming?" is often a sensible question whereas "am I dead?" is ALWAYS nonsensical. :-)
#NotRocketScience #woowoo #OOB #AstralProjction -
@mossman @fesshole
I think the key word here is "frequently" - so, statistically, every time he experiences the thought it should become less intense since it's clearly never been true on an increasing number of previous occasions.
Either that or we are all living in his dream right now.
#NotRocketScience #woowoo #OOB #AstralProjction -
@fesshole
Gosh, that's complicated.
Look, you can easily tell that you're not dead. If you are thinking about anything at all then you are not dead. See, it's easy.
If you see yourself in bed then you're having an out of body experience. You're still not dead.
#NotRocketScience #woowoo #OOB #AstralProjction -
Тень уязвимости: fake exploit как зеркало реальных техник
Я пишу о том, как создала fake exploit за 7k $ - фейковая уязвимость, которая не наносит вреда, но выглядит как реальный эксплойт. Это не просто пранк, а образовательный инструмент, позволяющий понять структуру эксплойтов, изучить уязвимости и их демонстрацию. Рассматриваются out-of-bounds write, JIT spray, а также показывается, как можно создавать видимость опасных действий, не причиняя реального ущерба. Читать далее O_0 ...
https://habr.com/ru/articles/904452/
#fake #exploit #rce #шутка_юмора #reverseengineering #oob #poc #jitкомпиляция #социнжиниринг #информационная_безопасность
-
Intel NUC AMT has very dangerous design.
More about it: https://www.facebook.com/share/p/akSwrScyifdTWzy5/
#cybersecurity #infosec #intel #intelamt #security #oob -
Windows Server Domain Controller Out-of-band (OOB) updates have been released for some versions of Windows today, March 22, 2024, to addresses this issue related to a memory leak in the Local Security Authority Subsystem Service (LSASS).
This occurs when on-premises and cloud-based Active Directory domain controllers service Kerberos authentication requests.
Read more in the Windows message center docs here:
https://learn.microsoft.com/en-us/windows/release-health/windows-message-center#3143 -
#Microsoft hat ein sogenanntes Notfall-Out-of-Band (#OOB)-Update veröffentlicht, das einen mit den #WindowsServer-Sicherheitsupdates vom März 2024 ausgelieferten Bug behebt. https://winfuture.de/news,141881.html?utm_source=Mastodon&utm_medium=ManualStatus&utm_campaign=SocialMedia
-
These things that were being upgraded are called #Route #Reflectors and they are things that are SUPER CRITICAL to a big network, but also SUPER SIMPLE to have redundancy on - you just add another and tell it to talk to the other one(s). Zero complexity.
They listen to all the OTHER routers that say 'I can get to 1.1.1.1 via x.y.z then a.b.c' or 'I can get to 1.1.1.1 via 8 different paths', and consolidate them all together, and tell every OTHER router the single best path to (in this example) 1.1.1.1
They ALSO take all the internal network routes and squash them together into something that is presented to the outside world via #bgp
Basically, if you have a MASSIVE network, you need a couple of these, and they need to be reliable, and they need to be redundant, but because they're *technically simple*, it's usually not that much of a big deal to upgrade them, as long as you do them one at a time, and *AND THIS IS THE IMPORTANT BIT THAT I THINK THEY MISSED*, make sure that the one you have just upgraded IS ACTUALLY WORKING.
So, at 4am, they all failed. This is a pretty serious failure, because if they're ALL DOWN, you have no network at all. You have to use your #OOB (Out of Band) network to access the routers, and fix them.
But what if your OOB network is using Optus? Well that's an issue if Optus is down, as you can't use the Optus network to fix the Optus network!
So then you need to get someone to physically attach themselves to the OOB network. But here's the NEXT problem - all Optus networking is offshore. There's almost no-one in Australia who can physically fix it.
So what do you do when your offshore outsourced network guys break your core network infrastructure, and you've retrenched everyone who can fix it locally?
You have a 7 hour outage, that's what you do.
Feel free to ask questions or tell me I'm wrong!
-
I'm doing the "Out-Of the-Box" (#OOB) experience on several new computers for a client. Over and over again, on each machine, I have to un-check boxes to opt out of sending information and linking accounts, data files, and devices.
#Microsoft's senior leadership is fundamentally immoral to set all of these options to default opt-in.