Népszerű fórum témák
FreeBSD Project News
Linux Weekly News
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Frissült: 24 perc 59 másodperc
The LWN.net Weekly Edition for October 24, 2013 is available.
Debian has updated xorg-server (code execution).
Mandriva has updated nss (unspecified impact).
openSUSE has updated jakarta-commons-fileupload (12.x: overwrites content).
As of this writing, the 3.12-rc6 prepatch has been released, Linus seems happy with the state of the kernel, and, in general, there are few reports of problems on the mailing lists. If things continue to stabilize, the 3.12 cycle might be a short one, even by recent standards. So, clearly, it's time to get the traditional development statistics article out there.
Click below (subscribers only) for the full article from this week's Kernel Page.
Debian has updated librack-ruby (multiple vulnerabilities).
Oracle has updated java-1.7.0-openjdk (OL5: multiple vulnerabilities).
Red Hat has updated java-1.7.0-openjdk (RHEL5: multiple vulnerabilities).
Scientific Linux has updated java-1.7.0-openjdk (SL5: multiple vulnerabilities).
Ubuntu has updated eglibc (multiple vulnerabilities), kernel (12.04 LTS; 12.10: information leak), kernel (13.04: multiple vulnerabilities), linux-lts-quantal (12.04 LTS: information leak), linux-lts-raring (12.04 LTS: multiple vulnerabilities), and linux-ti-omap4 (12.04 LTS; 12.10; 13.04: information leak).
The 3.4.67 and 3.0.101 stable updates are out. This is the end of the line for 3.0: "I will NOT be doing any more 3.0.x kernel releases. If you rely on the 3.0.x kernel series, you should now move to the 3.10.x kernel series, or, at the worse case, 3.4.x."
CentOS has updated rubygems (C6: multiple vulnerabilities).
Fedora has updated dropbear (F18; F19: denial of service), fedmsg (F19; F18: parsing error), hplip (F18: authorization bypass), java-1.7.0-openjdk (F18; F19: multiple vulnerabilities), kernel (F18: denial of service), libtar (F18; F19: code execution), and mod_fcgid (F19; F18: code execution).
Oracle has updated rubygems (OL6: multiple vulnerabilities).
The Linux Foundation has announced that it will be hosting the Open Virtualization Alliance, the home of the KVM project. "As many folks already know, The Xen Project is also a Linux Foundation Collaborative Project. We love that a number of open source projects can emerge to address similar questions to complex technology problems. Competition gives way to collaboration and cross-pollination, and everyone benefits. The more open source code, the better for everyone. Historically in open source we've witnessed that competition and collaboration among open source projects can advance and accelerate technology."
Charles Stross reviews Ubuntu 13.10. "But Unity is still a mickey mouse level program launcher aimed at non-techies; it's as if the folks at Canonical have tried to copy the toy-like appearance of Mac OS X without actually providing the underlying shortcuts and power tools that make it acceptable to serious folks who like to get stuff done. Luckily salvation isn't far away: one sudo apt-get install xubuntu-desktop later and I had XFCE 4 instead of Unity. Again, some tweaking is needed; but at least it's a real desktop."
Here's a lengthy ars technica article describing the mechanisms by which Google maintains control of Android. "For some of these apps, there might still be an AOSP equivalent, but as soon as the proprietary version was launched, all work on the AOSP version was stopped. Less open source code means more work for Google's competitors. While you can't kill an open source app, you can turn it into abandonware by moving all continuing development to a closed source model. Just about any time Google rebrands an app or releases a new piece of Android onto the Play Store, it's a sign that the source has been closed and the AOSP version is dead."
Linus has released the 3.12-rc6 prepatch from the airport on his way to the kernel summit. "Nothing major happened last week., and the upcoming week is likely to be quiet too, since a lot of core maintainers will be in Edinburgh for the KS."
For those who have been following nftables, the replacement firewall subsystem for the kernel: this code has just been pulled into the net-next tree. That means that, barring some sort of trouble, it will be merged in the 3.13 development cycle. This code is not ready to replace iptables yet, but the pace of the work should increase once this subsystem is in the mainline. Anybody wanting to try out nftables can see the quick howto page for instructions.
Mark Shuttleworth goes on the offensive against his critics before disclosing that Ubuntu 14.04 will be named "trusty tahr." "Mir is really important work. When lots of competitors attack a project on purely political grounds, you have to wonder what THEIR agenda is. At least we know now who belongs to the Open Source Tea Party ;) And to put all the hue and cry into context: Mir is relevant for approximately 1% of all developers, just those who think about shell development. Every app developer will consume Mir through their toolkit. By contrast, those same outraged individuals have NIH’d just about every important piece of the stack they can get their hands on… most notably SystemD, which is hugely invasive and hardly justified. What closely to see how competitors to Canonical torture the English language in their efforts to justify how those toolkits should support Windows but not Mir. But we’ll get it done, and it will be amazing."
CentOS has updated kernel (C6: multiple vulnerabilities).
Debian has updated mysql-5.1 (multiple unspecified vulnerabilities).
Mageia has updated aircrack-ng (code execution), apache-mod_fcgid (code execution), chromium-browser-stable (stable update; multiple vulnerabilities), clutter (authentication bypass), libtar (code execution), nmap (MGA3: arbitrary file upload), quagga (code execution), quassel (MGA3: SQL injection), and torque (authentication bypass).
Mandriva has updated aircrack-ng (MBS1: code execution), apache-mod_fcgid (MBS1: code execution), clutter (MBS1: authentication bypass), libtar (code execution), quagga (MBS1: code execution), and torque (MBS1: authentication bypass).
Scientific Linux has updated rubygems (SL6: multiple vulnerabilities).
Ubuntu has updated xorg-server, xorg-server-lts-quantal, xorg-server-lts-raring (multiple denial-of-service vulnerabilities).
A number of upstream community developers and Google Android developers got together at the 2013 Linux Plumbers Conference discuss some of the non-graphics related out-of-tree or still-in-staging portions of the Android patch set. This discussion followed the Android graphics microconference held earlier in the day. This article contains a summary of the major issues discussed at this gathering.
Click below (subscribers only) for the full article by John Stultz.
Beginning with Wireshark 1.11.0 the project has switched its user interface library from GTK+ to Qt. "Both libraries make it easy for developers write applications that will run on different platforms without having to rewrite a lot of code. GTK+ has had a huge impact on the way Wireshark looks and feels and on its popularity but it doesn’t cover our supported platforms as effectively as it should and the situation is getting worse as time goes on." (Thanks to Matthias Berndt)
CentOS has updated xorg-x11-server (C6: code execution).
Mandriva has updated mysql (multiple unspecified vulnerabilities).
openSUSE has updated chromium (12.x: multiple vulnerabilities).
Oracle has updated kernel (OL6: two vulnerabilities).
Red Hat has updated kernel (RHEL6: two vulnerabilities).
Scientific Linux has updated kernel (SL6: two vulnerabilities).
Ars technica has a lengthy review of the Ubuntu 13.10 release. "Unity 8 is expected to arrive on the desktop in Ubuntu 14.04, at which time Unity 7 will likely be retired from further development. Due to the imminent transition to Unity 8 and Mir, Ubuntu 13.10 is sort of like the calm before the storm. It ships with the familiar old Unity 7 and Xorg—which are reliable but headed for deprecation. As Canonical’s attention is almost entirely dominated by the major technical changes coming in the near future, there wasn't a whole lot of work that surfaced in 13.10—the assortment of new features is pretty thin."
The Ubuntu 13.10 release is out. "Ubuntu 13.10 introduces the first release of Ubuntu for phones and Ubuntu Core for the new 64-bit ARM systems (the "arm64" architecture, also known as AArch64 or ARMv8), and improved AppArmor confinement. In addition to these flagship features there are also major updates throughout." See the release notes for more information.
HUP napi hírlevél
Legfrissebb Linux játékvideók
Legfrissebb HUP dokumentumok
Szerintem egy szabad szoftver dokumentációjában (README, man oldal stb.) .... a "felnőtt" szavak, utalások.
Összes szavazat: 406