Ubuntu Security Notice 4348-1 - It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this to issue execute arbitrary scripts or HTML. It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this issue to display arbitrary text on a web page. It was discovered that Mailman incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code. Various other issues were also addressed.

Ubuntu Security Notice 4341-2 - USN-4341-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM. It was discovered that Samba incorrectly handled certain LDAP queries. A remote attacker could possibly use this issue to cause Samba to consume resources, resulting in a denial of service. Various other issues were also addressed.

Ubuntu Security Notice 4333-2 - USN-4333-1 fixed vulnerabilities in Python. This update provides the corresponding update for Ubuntu 20.04 LTS. It was discovered that Python incorrectly stripped certain characters from requests. A remote attacker could use this issue to perform CRLF injection. Various other issues were also addressed.

Ubuntu Security Notice 4349-1 - A buffer overflow was discovered in the network stack. An unprivileged user could potentially enable escalation of privilege and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. A buffer overflow was discovered in BlockIo service. An unauthenticated user could potentially enable escalation of privilege, information disclosure and/or denial of service. This issue was already fixed in a previous release for 18.04 LTS and 19.10. Various other issues were also addressed.

Ubuntu Security Notice 4350-1 - Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.80 in Ubuntu 19.10 and Ubuntu 20.04 LTS. Ubuntu 16.04 LTS and Ubuntu 18.04 LTS have been updated to MySQL 5.7.30. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Various other issues were also addressed.

Ubuntu Security Notice 4330-2 - USN-4330-1 fixed vulnerabilities in PHP. This update provides the corresponding update for Ubuntu 20.04 LTS. It was discovered that PHP incorrectly handled certain EXIF files. An attacker could possibly use this issue to access sensitive information or cause a crash. Various other issues were also addressed.

Ubuntu Security Notice 4351-1 - Eli Biham and Lior Neumann discovered that certain Bluetooth devices incorrectly validated key exchange parameters. An attacker could possibly use this issue to obtain sensitive information.

Ubuntu Security Notice 4352-1 - It was discovered that OpenLDAP incorrectly handled certain queries. A remote attacker could possibly use this issue to cause OpenLDAP to consume resources, resulting in a denial of service.

Ubuntu Security Notice 4352-2 - USN-4352-1 fixed a vulnerability in OpenLDAP. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. It was discovered that OpenLDAP incorrectly handled certain queries. A remote attacker could possibly use this issue to cause OpenLDAP to consume resources, resulting in a denial of service. Various other issues were also addressed.

Ubuntu Security Notice 4130-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

Ubuntu Security Notice 4178-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

Ubuntu Security Notice 4181-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

Ubuntu Security Notice 4261-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

Ubuntu Security Notice 4281-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

Ubuntu Security Notice 4310-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

Ubuntu Security Notice 4331-1 - A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

Ubuntu Security Notice 4347-1 - A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

The University of Notre Dame and South Bend’s Venues Parks & Arts have broken ground on a 2.5-MW hydroelectric generation facility at an existing city-owned dam on the St. Joseph River in downtown South Bend, Ind.

The Ford F-150, Ram 1500, and Chevy Silverado have been the best-selling light vehicles in America for a long time, but for the first time ever, the pickup truck segment as a whole outsold the car segment in the month of April, Bloomberg reported on Tuesday. The difference was by a large margin, too, with pickups outselling cars by more than...

It’s lighter, abundant and finally ready to take on Tesla. Hydrogen-powered vehicles are gearing up to challenge electric vehicles again in the race for mass-market clean cars. This week, a much larger group of companies signed on to a global coalition aimed at drumming up government support for the technology that Tesla Inc. Chief Executive Officer Elon Musk has derided as “ mind-bogglingly stupid” for cars. The firms also pledged to find a cleaner way to produce the gas.

Has the environment for electricity generation changed dramatically since the Obama administration’s Clean Power Plan began its slow exit from public and regulatory consciousness several months ago? Not really!

Federal energy regulatory commissioner Cheryl LaFleur announced on Twitter on January 31 that she will not be seeking a third term and will be leaving the commission later in 2019. She said in the tweet that this is not the outcome she had hoped for but that she felt very lucky to have served on FERC for more than 8 years. She said she plans to serve out the rest of her term, which is up at the end of June.

Among my circle of friends and colleagues, everyone is aware of the impact of human activities on climate change - the melting of arctic ice, the destruction of species - and the major causes of it, namely, coal burning for electricity and fossil fuels burning for transport. What nearly everyone is unclear about is what specifically to do about it and how fast.

Attending the Ocean Energy Europe event in Paris recently the considerable presence of developers and manufacturers signalled a long-term transformation for the sector, which - for tidal stream in particular - is now emerging as a technological reality.

This week New York Governor Andrew M. Cuomo announced that $280 million of support is available for energy storage projects.

A new report produced by the International Energy Agency (IEA), the International Renewable Energy Agency (IRENA), the United Nations Statistics Division (UNSD), the World Bank and the World Health Organization (WHO) and released this week says that despite significant progress in recent years, the world is falling short of meeting the global energy targets set in the United Nations Sustainable Development Goals (SDG) for 2030.

Among my circle of friends and colleagues, everyone is aware of the impact of human activities on climate change - the melting of arctic ice, the destruction of species - and the major causes of it, namely, coal burning for electricity and fossil fuels burning for transport. What nearly everyone is unclear about is what specifically to do about it and how fast.

It's the environmentalist's third rail question: "Should we promote nuclear power as an expedient way to reduce CO2 emissions?" On the one hand, nuclear power generates electricity with almost negligible CO2 emissions — potentially a good way for our society to reverse the current global warming trends. On the other hand, nuclear power is...well...nuclear. Problems related to waste disposal, proliferation and high costs have not been solved, and we still have the occasional disaster.

India, the world’s third-largest polluter, will spend at least $100 billion on climate-related projects but isn’t ready to follow China and the U.S., the top two emitters, in promising to limit its fossil-fuel emissions.

In May of 2014, Speaker of the House John Boehner responded to a climate change question with, “listen, I’m not qualified to debate the science over climate change. I am astute to understand that every proposal that has come out of this administration to deal with climate change involves hurting our economy and killing American jobs. That can’t be the prescription for dealing with changes to our climate.” Speaker Boehner is not the only one reluctant to enter into the debate on climate change. In a March interview Mitch McConnell responded to a climate change remark with, “For everybody who thinks it's warming, I can find somebody who thinks it isn't…”

Turns out that Americans are a bit overly optimistic about the role that renewable energy plays in the U.S. The average American believes that 20 percent of the country’s energy use comes from renewables—11 percent from solar and 9 percent from wind.

Federal energy regulatory commissioner Cheryl LaFleur announced on Twitter on January 31 that she will not be seeking a third term and will be leaving the commission later in 2019. She said in the tweet that this is not the outcome she had hoped for but that she felt very lucky to have served on FERC for more than 8 years. She said she plans to serve out the rest of her term, which is up at the end of June.

This week New York Governor Andrew M. Cuomo announced that $280 million of support is available for energy storage projects.

All it took was a pandemic, but the long-running joke finally became a reality: DEF CON is canceled. 

The annual hacker conference in Las Vegas, Nevada, typically draws tens of thousands of attendees to talk shop, compare notes, and generally cause delightful mischief. One element of that mischief is the constant — and until now false — yearly claim that DEF CON is canceled. The coronavirus changed that, and the organization announced Friday that the in-person conference will not take place this year. 

"The #DEFCONiscanceled meme has crossed over into real life, courtesy of #COVID19," read the announcement. "In early March we had hopes that things would be stable by August. That is no longer realistic." Read more...

Between the infamous Peloton commercial, the wild Boyhood wannabe that ended up being a Subway ad, and the endless #girlboss marketing reminding you that even women can be part of the capitalist machine, 2019 was a year for advertising. 

But nothing quite tops this one, which was released in September but resurfaced in a viral tweet on Friday.  

The ad starts off with a bleak statistic: women hold just 10 percent of all patented inventions. Then, it pans over to a delightful montage of ambitious young women. Each one is filmed preparing for their career goals, from mixing delicate chemicals in a laboratory to carefully testing the consistency of soil.  Read more...

A not-for-profit in the US is seeking expressions of interests from organisations, including academia, for their COVID-19 Health Coalition, to help preserve the healthcare delivery system and protect US populations.

The Department of Defense and two other government agencies have issued a proposed rule designed to help ensure that government contractors provide adequate privacy training to their staff members.

India, the world’s third-largest polluter, will spend at least $100 billion on climate-related projects but isn’t ready to follow China and the U.S., the top two emitters, in promising to limit its fossil-fuel emissions.

Get Amped for Latest Platform Breakthroughs in AI, Deep Learning, Autonomous Vehicles, Robotics and Professional Graphics

Bracken Hill Court at Ackworth Management Company Ltd v Dobson [2018] UKUT 333 (LC) The Upper Tribunal (Lands Chamber) has upheld an appeal from a management company and determined that contracts of less than 12 months are not Qualifying Long T...

Ashtead Plant Hire Company Limited v Granton Central Developments Limited [2019] CSOH 7 This case involves a landlord and tenant dispute over the proper construction of the rent review provisions in a lease of commercial premises.  The parties ...

Pezaro & Anor v Bourne & Anor [2019] EWHC 1964 (Ch) The High Court has held that a right of way was not extinguished where a landowner had relied on an oral agreement made with the previous owner of the land which benefited from the right of...

The new Electronic Communications Code (“the Code”) received royal assent on 27 April 2017, as part of the Digital Economy Act 2017 (“the Act”). The Code came into force on 28 December 2017.  

This is another important Scottish Sheriff Court case on the competency of an assignation of standard securities (secured charges).  It follows two recent conflicting cases of OneSavings Bank v Burns, where the court found in favour of the borr...

Gateway Assets Limited v C.V Panels Limited [2018] CSOH 48 A tenant had a ten year lease with a break option after 5 years, which could be exercised by giving not less than 6 months’ written notice to the landlord. When the tenant served a bre...

No.1 West India Quay (Residential) Ltd v East Tower Apartments Ltd [2018] EWCA Civ 250 The Court of Appeal has overturned the High Court’s decision and confirmed that where two out of three of the landlord’s reasons for refusing consent ...