First fully sandboxed Linux desktop app

LinuxToday - cs, 2015-02-19 16:30
Kategóriák: Linux

Security updates for Thursday

Linux Weekly News - cs, 2015-02-19 14:03

Debian has updated bind9 (denial of service).

Debian-LTS has updated linux-2.6 (multiple vulnerabilities, one from 2013).

Fedora has updated drupal7-path_breadcrumbs (F21; F20: access restriction bypass).

openSUSE has updated perl-YAML-LibYAML (13.2, 13.1: multiple vulnerabilities, one each from 2013 and 2012) and php5 (13.2, 13.1: multiple vulnerabilities).

SUSE has updated xntp (SLE10SP4: multiple vulnerabilities).

Ubuntu has updated bind9 (14.10, 14.04, 12.04: denial of service).

Kategóriák: Linux

[$] Weekly Edition for February 19, 2015

Linux Weekly News - cs, 2015-02-19 02:22
The Weekly Edition for February 19, 2015 is available.
Kategóriák: Linux

Keeping the bad guys out with fail2ban

LinuxToday - cs, 2015-02-19 01:30
Kategóriák: Linux

Security advisories for Wednesday

Linux Weekly News - sze, 2015-02-18 17:54

Fedora has updated file (F21: multiple vulnerabilities).

Gentoo has updated chromium (multiple vulnerabilities).

Mageia has updated dbus (denial of service), glibc (two vulnerabilities), kernel (multiple vulnerabilities), patch (multiple vulnerabilities), postgresql (multiple vulnerabilities), and x11-server (information leak/denial of service).

openSUSE has updated mdadm (13.2: command injection).

Ubuntu has updated php5 (14.10, 14.04, 12.04: multiple vulnerabilities) and unzip (14.10, 14.04, 12.04: code execution).

Kategóriák: Linux

Linux file system hierarchy

LinuxToday - sze, 2015-02-18 15:30
Kategóriák: Linux

FreeBSD random number generator broken for last 4 months

Linux Weekly News - sze, 2015-02-18 15:28
As several LWN readers have pointed out, John-Mark Gurney posted a message to the freebsd-current mailing list on February 17 noting that the random number generator (RNG) in the FreeBSD "current" kernel has been broken for the last four months. "If you are running a current kernel r273872 or later, please upgrade your kernel to r278907 or later immediately and regenerate keys. I discovered an issue where the new framework code was not calling randomdev_init_reader, which means that read_random(9) was not returning good random data. read_random(9) is used by arc4random(9) which is the primary method that arc4random(3) is seeded from. This means most/all keys generated may be predictable and must be regenerated. This includes, but not limited to, ssh keys and keys generated by openssl. This is purely a kernel issue, and a simple kernel upgrade w/ the patch is sufficient to fix the issue."
Kategóriák: Linux

Open source robot kit taps Raspberry Pi 2

LinuxToday - sze, 2015-02-18 14:30
Kategóriák: Linux