As PHP Group Patches High-Risk Bugs, 62% of Sites Still Use PHP 5

America’s Multi-State Information Sharing & Analysis Center is operated in collaboration with its Department of Homeland Security’s Office of Cybersecurity and Communications — and they’ve got some bad news.
MS-ISAC released an advisory warning government agencies, businesses, and home users of multiple high-risk security issues in PHP that can allow attackers to execute arbitrary code. Furthermore, if the PHP vulnerabilities are not successfully exploited, attackers could still induce a denial-of-service condition rendering the probed servers unusable… The PHP Group has issued fixes in the PHP 7.1.23 and 7.2.11 releases for all the high-risk bugs that could lead to DoS and arbitrary code execution in all vulnerable PHP 7.1 and 7.2 versions before these latest updates.
But meanwhile, Threatpost reported this week that 62% of the world’s web sites are still running PHP version 5 — even though its end of life is December 31st. “The deadlines will not be extended, and


Original URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/Zw8HDBZUn1Y/as-php-group-patches-high-risk-bugs-62-of-sites-still-use-php-5

Original article

GitHub Launches ‘Actions’ — Code That Can Be Run (and Maybe Monetized)

An anonymous reader quotes TechCrunch:
For the longest time, GitHub was all about storing source code and sharing it either with the rest of the world or your colleagues. Today, the company, which is in the process of being acquired by Microsoft, is taking a step in a different but related direction by launching GitHub Actions. Actions allow developers to not just host code on the platform but also run it. We’re not talking about a new cloud to rival AWS here, but instead about something more akin to a very flexible IFTTT for developers who want to automate their development workflows, whether that is sending notifications or building a full continuous integration and delivery pipeline.
This is a big deal for GitHub. Indeed, Sam Lambert, GitHub’s head of platform, described it to me as “the biggest shift we’ve had in the history of GitHub… I see Continuous Integration/Continuous Delivery as


Original URL: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/uEiORPG1hTI/github-launches-actions----code-that-can-be-run-and-maybe-monetized

Original article

How to use picture-in-picture mode in Chrome 70

The Chrome web browser was starting to get some bad press after problems with extensions and then concerns over automatic sign-ins. Google listened to the complaints and promised to do something about it — the result is Chrome 70. But Chrome 70 is about more than just security and privacy changes. Google has also used this released to introduce a handful of new features. One of the best is picture-in-picture mode (PiP) which lets you keep watching a video in an overlay while you continue to browse other sites. Here’s how to use it. See also: Chrome 70 introduces more… [Continue Reading]


Original URL: https://betanews.com/2018/10/20/chrome-picture-in-picture/

Original article

Why Microsoft and Google love progressive web apps

Progressive web apps just got real.Though progressive web apps, or PWAs, have been around for about three years — an initiative mostly driven by Google — they got real this week when Google released Chrome 70.[ Further reading: Google’s Chromium browser explained ]The new version of Google’s web browser comes with a robust roster of new features. But the biggest news is new support for PWAs that work with desktop Windows. (Mac and Linux support should appear in Chrome 72.)To read this article in full, please click here


Original URL: https://www.computerworld.com/article/3314746/mobile-apps/why-microsoft-and-google-love-progressive-web-apps.html#tk.rss_all

Original article

Proudly powered by WordPress | Theme: Baskerville 2 by Anders Noren.

Up ↑

%d bloggers like this: