Deepin has Added Mirror Site Service like Linux Kernel and so on

Deepin has Added Mirror Site Service like Linux Kernel and so on

Today, deepin has added some new mirror sites, one of them is: Linux Kernel. This is the first Chinese Linux distro that has landed on the Linux Kernel mirror service! And, of course, We've also added lots of global mirrors and mirrors located in China. As deepin has been widely used all over the world, we will add more and more mirror sites so that deepin users all around the world could get high quality user experience, and especially high quality experience for using Linux desktop. The United States --- Kernel.org http://mirrors.kernel.org/deepin/ http://mirrors.kernel.org/deepin-cd ftp://mirrors.kernel.org/deepin/ ftp://mirrors.kernel.org/deepin-cd rynsc://mirrors.kernel.org/deepin/ rynsc://mirrors.kernel.org/deepin-cd The United States --- Silicon Valley Web ...Read more

Security Updates (DSA 3890-1 &DSA 3891-1 &DSA 3893-1 &DSA 3895-1&DSA 3896-1 &DSA 3898-1)

Security Updates (DSA 3890-1 &DSA 3891-1 &DSA 3893-1 &DSA 3895-1&DSA 3896-1 &DSA 3898-1)

The security updates of spip, tomcat8, jython, flatpak, apache2 and expat. Vulnerability Information DSA-3890-1 spip — Security Updates Security database details: Emeric Boit of ANSSI reported that SPIP, a website engine for publishing, insufficiently sanitises the value from the X-Forwarded-Host HTTP header field. An unauthenticated attacker can take advantage of this flaw to cause remote code execution.   DSA-3891-1 tomcat8 — Security Updates Security database details: Aniket Nandkishor Kulkarni discovered that in tomcat8, a servlet and JSP engine, static error pages used the original request's HTTP method to serve content, instead of systematically using the GET method. This could under certain ...Read more

Deepin Screenshot V4.0 is released——Easy screenshot with continuous happy

Deepin Screenshot V4.0 is released——Easy screenshot with continuous happy

Deepin Screenshot is an elegant screenshot application developed by Deepin Technology, it has features like smart window detection, many shortcut keys, image editing, delay capture, smart saving, adjusting image resolution and so on. As the preinstalled screenshot tool for deepin, Deepin Screenshot V4.0 has most of functions from its previous versions and has refactored code with optimization that can be opened within a second. It also has new designed toolbar, selection box and can capture the right context menu interface directly. Refactored Code with Optimization to Open within a Second The program has refactored code with C++ to boost its launching and to optimize ...Read more

Security Updates(DSA 3786-1 &DSA 3799-1 &DSA 3808-1... &DSA 3885-1)

Security Updates(DSA 3786-1 &DSA 3799-1 &DSA 3808-1... &DSA 3885-1)

The security updates of vim, imagemagick, imagemagick, icu, firefox-esr, weechat, ghostscript, libxstream-java, tomcat7, tomcat8, tiff, libtirpc, libytnef, xen, git, kde4libs, rtmpdump, bitlbee, bind9, jbig2dec, deluge, mysql-connector-java, puppet, imagemagick, fop, mosquitto, strongswan, sudo, openldap, tnef, wordpress, perl, ettercap, libmwaw, otrs2, tor, zziplib, libosip2, libgcrypt20, firefox-esr, request-tracker4, gnutls28, irssi. Vulnerability Information DSA-3786-1 vim —Security Updates Security database details: Editor spell files passed to the vim (Vi IMproved) editor may result in an integer overflow in memory allocation and a resulting buffer overflow which potentially could result in the execution of arbitrary code or denial of service.   DSA-3799-1 imagemagick —Security Updates Security database details: This ...Read more

Security Updates (DSA 3761-1 &DSA 3762-1 &DSA 3764-1... &DSA 3840-1)

Security Updates (DSA 3761-1 &DSA 3762-1 &DSA 3764-1... &DSA 3840-1)

The security updates of rabbitmq-server, tiff, pdns, mapserver, libphp-swiftmailer, libxpm, openssl, lcms2, tcpdump, libgd2, wordpress, ntfs-3g, svgsalamander, viewvc, libevent, spice, libreoffice, munin, bind9, apache2, mupdf, libquicktime, ruby-zip, zabbix, texlive-base, icoutils, chromium-browser, wireshark, ioquake3, r-base, audiofile, wordpress, jbig2dec, gst-plugins-bad1.0, gst-plugins-base1.0, gst-plugins-good1.0, gst-plugins-ugly1.0, gstreamer1.0, eject, jhead, tryton-server, libreoffice, mysql-connector-java. Vulnerability Information DSA-3761-1 rabbitmq-server —Security Updates Security database details: It was discovered that RabbitMQ, an implementation of the AMQP protocol, didn't correctly validate MQTT (MQ Telemetry Transport) connection authentication. This allowed anyone to login to an existing user account without having to provide a password.   DSA-3762-1 tiff —Security Updates Security database details: Multiple vulnerabilities have been discovered in the libtiff library and the included tools tiff2rgba, rgb2ycbcr, tiffcp, tiffcrop, tiff2pdf and tiffsplit, which may result in denial of service, memory disclosure or the execution of arbitrary code.   DSA-3764-1 pdns —Security Updates Security ...Read more

Samba Security Updates (DSA 3860-1)

Samba Security Updates (DSA 3860-1)

Vulnerability Overview DSA-3860-1 samba -- security update Security database information: CVE-2017-7494:steelo discovered a remote code execution vulnerability in Samba, a SMB/CIFS file, print, and login server for Unix. A malicious client with access to a writable share, can take advantage of this flaw by uploading a shared library and then cause the server to load and execute it.   Fixing Status The problems of samba have been fixed in version 2:4.5.8+dfsg-2. Please update to the latest version of deepin to get these patches.