Népszerű fórum témák
FreeBSD Project News
Linux Weekly News
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Frissült: 19 perc 27 másodperc
The Creative Commons has announced the availability of version 4.0 of its license suite. "We had ambitious goals in mind when we embarked on the versioning process coming out of the 2011 CC Global Summit in Warsaw. The new licenses achieve all of these goals, and more. The 4.0 licenses are extremely well-suited for use by governments and publishers of public sector information and other data, especially for those in the European Union. This is due to the expansion in license scope, which now covers sui generis database rights that exist there and in a handful of other countries."
Docker is a system for the creation and deployment of applications within containers; it was covered here in October. The 0.7 release is now available, with a long list of new features, including the ability to run on standard Linux kernels, a fancy storage driver subsystem, better control over networking and communications between containers, and more. "It took us a while to find our bearings and adapt to the new, crazy pace of Docker’s development. But we are finally figuring it out. Starting with 0.7, we are placing Quality in all its forms – user interface, test coverage, robustness, ease of deployment, documentation, consistency of APIs – at the center our development process."
On his blog, KDE hacker Aaron Seigo introduces Improv, the first hardware product from the Make•Play•Live community. Improv is a $75 development board, with some fairly beefy specs and running Mer OS, that will be shipping in January. It consists of two separate boards, the CPU card and the feature board, with the latter being an open hardware device. "The hardware of Improv is extremely capable: a dual-core ARM® Cortex™-A7 System on Chip (SoC) running at 1Ghz, 1 GB of RAM, 4 GB of on-board NAND flash and a powerful OpenGL ES GPU. To access all of this hardware goodness there are a variety of ports: 2 USB2 ports (one fullsize host, one micro OTG), SD card reader, HDMI, ethernet (10/100, though the feature card has a Gigabit connector; more on that below), SATA, i2c, VGA/TTL and 8 GPIO pins. The entire device weighs less than 100 grams, is passively cooled and fits in your hand."
Fedora has updated drupal6-context (F18; F19: multiple vulnerabilities), kernel (F19: denial of service), mantis (F19; F18: cross-site scripting), monitorix (F19: unspecified vulnerability), moodle (F18; F19: multiple vulnerabilities), and samba (F18: restriction bypass).
Mageia has updated bip (denial of service), glibc (multiple vulnerabilities), graphicsmagick (denial of service), kernel (multiple vulnerabilities), kernel-linus (multiple vulnerabilities), kernel-rt (multiple vulnerabilities), kernel-tmb (multiple vulnerabilities), kernel-vserver (multiple vulnerabilities), memcached (denial of service), nginx (security restriction bypass), perl-HTTP-Body (code execution), qemu (privilege escalation), samba (restriction bypass), and wireshark (multiple vulnerabilities).
openSUSE has updated krb5 (11.4: denial of service).
After years of work, version 1.0 of the checkpoint/restore tool is available. This is a mostly user-space-based tool that is able to capture the state of a set of processes to persistent storage and restore it at some future time, possibly on a different system. See this 2013 Kernel Summit article for details on the current state of this functionality.
Linus has released 3.13-rc1 and closed the merge window for this development cycle. In the end, 10,518 non-merge changesets were pulled into the mainline during this merge window. Now the stabilization period starts, with the final 3.13 release due around the end of the year.
Gentoo has updated qtcore (two vulnerabilities, one from 2011).
Mandriva has updated samba (BS1: file restriction bypass).
Ubuntu has updated openjdk-6 (10.04, 12.04: multiple vulnerabilities).
The "Advanced Configuration and Power Interface" (ACPI) was not an obvious win when support for it was first merged into the mainline kernel. The standard was new, actual implementations were unreliable, and supporting it involved bringing a large virtual machine into the kernel. For years, booting with ACPI disabled was the first response to a wide range of problems; one can still find web sites advising readers to do that. But, for the most part, ACPI has settled in as a mandatory part of the PC platform standard. Now, however, it appears that a similar story may be about to play out in the ARM world.
Linux.com profiles Eduard Bachmakov, a Google Summer of Code student that worked on static analysis for the Linux kernel. "Much work toward creating a static analyzer for the Linux kernel had already been done as part of the LLVM project. One of the goals of Bachmakov's internship was to demonstrate how the analzyer works through a tool that traces where errors come from and creates a report. (See an example of his checker tool, here.) He also set out to make a selection of checkers that make sense within the kernel. “A lot (of checks) while technically correct, don’t apply. Many checks are just omitted because it’s understood that this would never happen,” Bachmakov said. “These are issues that can’t be read from the code. These are things you have to know, so there were a lot of false positives.”"
Red Hat has announced the release of Enterprise Linux 6.5 (RHEL 6.5). The release has new features in multiple areas, including security, networking, virtualization, and more. "As application deployment options grow, portability becomes increasingly important. Red Hat Enterprise Linux 6.5 enables customers to deploy application images in containers created using Docker in their environment of choice: physical, virtual, or cloud. Docker is an open source project to package and run lightweight, self-sufficient containers; containers save developers time by eliminating integration and infrastructure design tasks."
Debian has updated curl (regression in previous security fix).
Fedora has updated bip (F19; F18: denial of service), drupal7-context (F19; F18: ), openstack-glance (F19: information leak), samba (F19: access restriction bypass), and xen (F19; F18: denial of service).
Mageia has updated curl (unchecked certificate host name), firefox, rootcerts, nspr & nss (multiple vulnerabilities), iceape (multiple vulnerabilities), krb5 (M3; M2: denial of service), libjpeg (two vulnerabilities), lighttpd (three vulnerabilities), pmake (insecure tmp file usage), poppler (two vulnerabilities), and python-scipy (insecure tmp directory).
Mandriva has updated curl (unchecked certificate host name), firefox (ES5: multiple vulnerabilities), java-1.6.0-openjdk (ES5: multiple vulnerabilities), java-1.7.0-openjdk (BS1: multiple vulnerabilities), krb5 (denial of service), libjpeg (ES5; BS1: multiple vulnerabilities), lighttpd (BS1: three vulnerabilities), nss (BS1: multiple vulnerabilities), pmake (BS1: insecure tmp file usage), poppler (BS1: two vulnerabilities), and torque (BS1: code execution).
Red Hat has updated 389-ds-base (RHEL6: denial of service), augeas (RHEL6: file overwrite and information leak), busybox (RHEL6: privilege escalation), coreutils (RHEL6: three vulnerabilities), dracut (RHEL6: information disclosure from 2012), evolution (RHEL6: encrypt email to unintended recipient), glibc (RHEL6: three vulnerabilities), kernel (RHEL6: multiple vulnerabilities), libguestfs (RHEL6: insecure tmp directory), luci (RHEL6: two vulnerabilities), openssh (RHEL6: denial of service from 2010), pacemaker (RHEL6: denial of service), php (RHEL6: three vulnerabilities, one from 2006), python (RHEL6: certificate checking botch), qemu-kvm (RHEL6: privilege escalation), RDMA stack (RHEL6: two vulnerabilities, one from 2012), samba (RHEL6: three vulnerabilities), samba4 (RHEL6: denial of service), sudo (RHEL6: three privilege escalation flaws), wireshark (RHEL6: a ton of vulnerabilities, some going back to 2012), and xorg-x11-server (RHEL6: information leak).
Ubuntu has updated thunderbird (multiple vulnerabilities).
The LWN.net Weekly Edition for November 21, 2013 is available.
Greg KH has released stable kernels 3.12.1, 3.11.9, 3.10.20, and 3.4.70. All contain important fixes.
Ars technica reports that Mir won't be the default display server in Ubuntu 14.04. "[Jono] Bacon expanded upon Shuttleworth's remarks in an e-mail to Ars. The goal from the start was to "deliver Mir + XMir + Unity 7 in Ubuntu 14.04 Desktop, and Mir + Unity 8 on the phone and tablet," he wrote. However, "for the 14.04 Desktop, we are very conscious that this is an LTS release," Bacon continued. "This means that our already fairly conservative assessment of when to land significant new foundational pieces is even more conservative from a quality, technology, and support perspective. We feel that while Mir is on-track (hence its current delivery on the phone and scheduled for tablet too), we have more reservations about quality in terms of the XMir, and we didn't want to risk the LTS experience for our users.""
Ubuntu has updated firefox (multiple vulnerabilities).
Virtual private networks (VPNs) are designed to overlay a second, secure network on top of the existing (insecure) Internet, but that network overlay can take a number of different forms depending on the precise security needs in question, how static or dynamic the network is, and other factors. GNU Virtual Private Ethernet (GVPE) is a free software VPN suite that takes a different approach to the problem than that of popular projects like OpenVPN. In particular, GVPE creates an actual network where all participating nodes can talk directly to one another, rather than setting up a point-to-point tunnel, and it tries to simplify VPN deployment by making encryption and other settings into compile-time options.
Click below (subscribers only) for the full article.
Fedora has updated ibus-pinyin (F19: password disclosure).
Gentoo has updated graphicsmagick (multiple vulnerabilities).
SUSE has updated Java 6 (multiple vulnerabilities).
Ubuntu has updated nss (multiple vulnerabilities).
The initial posting on containerops.org reads: "One of the (many) things which are not yet entirely clear to me and to the people I speak with about this topic almost on daily basis is how the networking can be done and configured when using LXC. Hopefully the first blog post on this topic is going to shed some more light on this matter and hopefully it will inspire further posts on various other topics related to the containers." What follows is a detailed and extensive tutorial on how to manage networking within and around LXC containers.
The Jailhouse project has announced its existence. Jailhouse is a Linux-native hypervisor like KVM, but with a focus on minimalism and isolation of virtual machines on dedicated CPUs. "Jailhouse is a partitioning hypervisor that can create asymmetric multiprocessing (AMP) setups on Linux-based systems. That means it runs bare-metal applications or non-Linux OSes aside a standard Linux kernel on one multicore hardware platform. Jailhouse ensures isolation between these 'cells', as we call them, via hardware-assisted virtualization. The typical workloads we expect to see in non-Linux cells are applications with highly demanding real-time, safety or security requirements." The project is in an early stage and looking for interested developers.
The openSUSE 13.1 release is available. "Much effort was put in testing openSUSE 13.1, with improvements to our automated openQA testing tool, a global bug fixing hackathon and more. The btrfs file system has received a serious workout and while not default, is considered stable for everyday usage. This release has been selected for Evergreen maintenance extending its life cycle to 3 years." See the announcement for a long list of new features in this release.
HUP napi hírlevél
Legfrissebb Linux játékvideók
Legfrissebb HUP képek
Legfrissebb HUP dokumentumok
Karácsonyi ajándékként ... örülök a legjobban.
számítógép alkatrésznek (CPU, memória, VGA kártya stb.)
szórakoztató elektronikai eszköznek (iPod, Xbox, PlayStation, TV, e-book olvasó, okostelefon stb.)
számítógépnek (szerver, desktop, tablet, laptop, Raspberry Pi, NAS stb.)
könyvnek, magazinnak (papír)
könyvnek, magazinnak (elektronikus)
szoftvernek, elektronikus tartalomnak (pl. számítógépes játék, felhasználói szoftver, mobil app, zene stb.)
szerszámnak (pl. egy jó csavarhúzó, multiméter, kés, szerszám stb.)
ruhának (pl. téli bakancs, okostelefon-képes kesztyű stb.)
old school játéknak (Rubik kocka, sakk, asztali szerepjáték stb.)
jó kajának, italnak
nem érdekel az ajándékozás
nem érdekel a karácsony
Összes szavazat: 468