Update:01 November 2022 12:57 PM PDT The OpenSSL Project has officially disclosed two high-severity vulnerabilities:CVE-2022-3602 and CVE-2022-3786.These CVEs impact all OpenSSL versions after 3.0.The sole exception is version 3.0.7, which contains fixes for those latest vulnerabilities.Previously, these CVEs were thought to be “critical.” ––––––––––––––––––––––––––––––––––––––––––––––––––––––––––––––––– Our title and original post below (written October 27th, 2022) have been updated:

What are they?

CVE-2022-3602 is an arbitrary 4-byte stack buffer overflow that could trigger crashes

Just published by Docker: Read more

In part one of this two-part series, we discussed the intersection of Web3 and Docker at a conceptual level.In this post, it’s time to get our hands dirty and review practical examples involving decentralized storage.

We’d like to see how we can integrate Web3 projects with Docker.At the beginning we have to choose from two options:

We can use Docker to containerize any Web3 application.We can also start an IPFS daemon or an Ethereum node inside a container.Docker

Just published by Docker: Read more

September Newsletter Banner 600x200
Docker Hacktoberfest
Going “Remocal” with Docker, Telepresence, & Kubernetes

Gone are the days of locally running and testing entire applications on your laptop before pushing to production.Join us with Ambassador on a tour of coding, testing, and shipping microservices using remote-to-local tools and techniques. Register Now

Just published by Docker: Read more

Topping Stack Overflow’s 2022 list of most popular web frameworks and technologies, Node.js continues to grow as a critical MERN stack component.And since Node applications are written in JavaScript — the world’s leading programming language — many developers will feel right at home using it.We introduced the Node Docker Official Image (DOI) due to Node.js’ popularity and to solve some common development challenges.  The Node.js Foundation describes Node as “an open-source, cross-platform JavaScript runtime environment.” Developers use it to create

Just published by Docker: Read more

OpenSSL 3.0.7 and “Text4Shell” might be the most recent critical vulnerabilities to plague your development team, but they won’t be the last.In 2021, critical vulnerabilities reached a record high.Attackers are even reusing their work, with over 50% of zero-day attacks this year being variants of previously-patched vulnerabilities.  With each new security vulnerability, we’re forced to re-examine our current systems and processes.If you’re impacted by OpenSSL or Text4Shell (aka CVE-2022-42889), you’ve probably asked yourself, “Are we using

Just published by Docker: Read more

Weitere Beiträge ...

  1. October Extensions Roundup: CI on Your Laptop and Hacktoberfest!
  2. Introducing the Docker+Wasm Technical Preview
  3. Security Advisory: CVE-2022-42889 “Text4Shell”
  4. Developer Engagement in the Remote Work Era with RedMonk and Miva
  5. Control Dev Environments Better with Hardened Desktop (and More!)

Seite 14 von 24