PhpSpreadsheet < 1.5.0 - XML External Entity (XXE)

Tencent Xuanwu Lab Security Daily News[ Browser ] [...]

Apache Spark – Unauthenticated Command Execution […]

VBScript – ‘rtFilter’ Out-of-Bounds R […]

VBScript – ‘OLEAUT32!VariantClear’ an […]

xorg-x11-server < 1.20.3 - 'modulepath' Local Privilege […]

HTML5 Video Player 1.2.5 – Buffer Overflow (Metas […]

Synaccess netBooter NP-02x/NP-08x 6.8 – Authentic […]

Linux Kernel 4.8 (Ubuntu 16.04) – Leak sctp Kerne […]

Schneider Electric PLC – Session Calculation Auth […]

中商情报网讯：当天上午，中消协发布了《100款App个人信息收集与隐私政策测评报告》。报告显示，很多被测评App在隐私政策等文件中，未将其收集的个人信息与其实现的产品功能明确挂钩，其中很多个人信息与消费者通常理解的产品功能之间无明显关联，甚至明显超出合理范围。

Data belonging to 32 million customers of SKY Brasil has been exposed online long enough to make their theft very likely, an independent security [...]

 永恒之蓝漏洞刚出来时，我可以顺利搞定Windows 7，但在攻击Windows XP时我一直没有成功。我尝试了各种补丁和Service Pack的组合，但利用程序要么无法成功，要么会导致系统蓝屏。当时我没有深入研究，因为FuzzBunch（NSA泄露工具集）还有待探索许多点。

This is a guest post. The views expressed here are solely those of the authors and do not represent positions of IEEE Spectrum or the IEEE.

她最担心的是，一旦这对经基因编辑的双胞胎未来有任何健康问题，很可能会导致民众对基因编辑态度的极大反弹，从而长期抑制该领域的一些更温和的、合理的进展。

对通用汽车来说，2018 年的秋天“寒意”正盛。2008 年世界金融危机中“死”过一次的通用汽车 10 年后又遇到了一个坎。11 月 30 日，“一朝被蛇咬，十年怕井绳”的汽车巨头干脆玩起了壮士断腕，开始走上转型之路。

在近日2018中国区块链大会上，中国计算机学会区块链专委会主任、复旦教授斯雪明介绍了一番区块链形式化表示与体系结构演进。

距离上次见到亚马逊CTO 沃纳·威格尔(Werner Vogels)正好过去了111天，那还是在8月9日于中国举办的AWS技术峰会上。而这一次，沃纳·威格尔则出现在拉斯维加斯AWS re：Invent大会第4天主题演讲的舞台。

While earlier smartphones seemed to manage well enough with individual applications that only weighed in at a few megabytes, a perusal of the modern [...]

In January, AT&T said it would launch a 5G wireless network in 2018. On Tuesday, the company said it would meet that target—barely—by launching a 5G [...]

Universe TodaySpace and astronomy newsAstronomers have discovered a distant body that’s more than 100 times farther from the Sun than Earth is. Its [...]

戴尔宣称发现安全漏洞 [...]

A huge database with over 114 million records of US citizens and companies has been discovered sitting online unprotected. The number of individuals [...]

Did you read all 3000+ articles published on Hackaday this year? We did. And to help catch you up, we preset the Hackaday 2018 Year in Review podcast!

Measuring power transfer through a circuit seems a simple task. Measure the current and voltage, do a little math courtesy of [Joule] and [Ohm], and [...]

本文来源微信公众号：领教工坊(ID: ClecChina)，作者：陈统奎周观林：康乃馨家纺董事长，领教工坊1511组组员

车展一端连着车企，一端连着消费者。很多车企都将车展视为展示新产品、新技术和新战略的重要契机，尤其是具有国际影响力的大型车展，更是各大车企必争之地。

There’s never been a movie quite like Netflix’s Roma, writer-director Alfonso Cuarón’s gorgeous, deeply immersive black-and-white drama about a young [...]

高精度定位与高精度地图，已被行业定义为自动驾驶刚需。然而全场景、高精度、室内外一体化的精准位置感知仍是当下高精度位置服务领域急需解决的技术难点之一。

Hello, Starter Story readers! It is fantastic to be back on this blog for another guest post.In case you have no idea who I am (likely), my name is Lucy [...]

Front page layoutSite themeSign up or login to join the discussions! Ron Amadeo - Dec 18, 2018 6:22 pm UTC

The web site for the popular VLC Media Player - VideoLan.org - is getting a big warning in Bing when users hover their cursor over it. This warning [...]

Anthony Levandowski, the engineer whose alleged theft of trade secrets landed him in the middle of a blockbuster self-driving car legal fight, has stepped [...]

从互联互通时代到如今的人工智能时代，包括个人信息在内的各种数据变成了最宝贵的财富。然而，大数据、云计算、人工智能等新技术的运用，在充分发挥数据价值的同时，也给个人隐私保护带来严峻挑战，数据产业的发展和个人信息安全之间出现了失衡。

In the past I often referred to the equivalence between state machines and coroutines as a kind of obvious fact that doesn't need any additional [...]

云原生技术正席卷全球，云原生基金会在去年 KubeCon +CloudNativeCon NA 的现场宣布：

　　如果说以蒸汽技术驱动的第一次工业革命延伸了人的肢体，拓展了人类的力量，那么，以新一代人工智能技术为驱动的新一轮科技革命和产业变革将拓展人类的智能，极大提升人类智力所能创造的价值。

1、概述 近日，安天CERT（安全研究与应急处理中心）在梳理相关安全事件时发现多例对马拉维国民银行（National Bank of Malawi）的钓鱼邮件攻击样本。马拉维共和国（Republic of [...]

The ability to execute code in parallel is crucial in a wide variety of scenarios. Concurrent programming is a key asset for web servers, producer/consumer [...]

雷军曾表示，小米创立的原因之一，在于安卓的开源。现在，小米已经有自己的开源团队，成为开源的倡导者和支持者，开源贯穿了小米整个CBA路线。

11月28日，AI语音赛道独角兽公司出门问问举办了一场媒体沟通会，发布了旗下智能手表TicWatch Pro 4G版新品，阐述了出门问问的战略布局、最新进展以及对行业的思考。

[...]

Front page layoutSite themeSign up or login to join the discussions! Timothy B. Lee - Dec 18, 2018 6:18 pm UTC

By Aliakbar ZahraviSteganography, or the method used to conceal a malicious payload inside an image to evade security solutions, has long been used by [...]

A data breach notification from the City of York has gone awry as new details shed light over the incident, revealing a completely inappropriate response [...]

{{node.type}} · {{ node.urlSource.name }} · by {{node.authors[0].realName }}

备受关注的三星 note7 炸机机主回先生诉三星案在广州越秀区人民法院一审宣判，法院仅支持原告回先生诉求中，原价赔偿烧坏的笔记本电脑一项，驳回了回先生其他诉讼请求，认定被告三星中国公司不存在欺诈的故意。

[...]

11月28日的发布会上，这三家企业仍然没有到场，超功能的权限设置也没有改变。

智能调酒机器人 奚金燕 摄    11月29日，2018中国义乌国际智能装备博览会(以下简称装博会)在浙江义乌开幕，来自全国13个省(区、市)以及美国、德国、日本、新加坡、意大利等9个国家和地区的471家企业参展，智能跟随旅行箱、智能调酒机器人、智能擦窗机器人等多项炫酷“黑科技”亮相，吸睛十足。