Linux Weekly News

Tartalom átvétel
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Frissült: 16 perc 47 másodperc

GnuPG 2.1.0 "modern" released

cs, 2014-11-06 14:43
Version 2.1.0 of the GNU Privacy Guard has been released; this is the first release in the new "modern" branch. Changes include elliptic curve cryptography support, better keyserver pool handling, the creation of revocation certificates by default, the removal of support for PGP2 keys, and more.
Kategóriák: Linux

[$] LWN.net Weekly Edition for November 6, 2014

cs, 2014-11-06 02:37
The LWN.net Weekly Edition for November 6, 2014 is available.
Kategóriák: Linux

[$] A control group manager

sze, 2014-11-05 18:53

CGManager is a year-old project to develop a daemon to manage control groups (cgroups) on a Linux system. These days, it is mostly targeted at doing that management for LXC containers, but it was originally envisioned as an alternative to systemd's cgroup management for those distributions that were not using systemd as their init. LXC maintainer Serge Hallyn gave a presentation about CGManager on October 13 at LinuxCon Europe in Düsseldorf, Germany.

Subscribers can click below for the full report on the talk from this week's edition.

Kategóriák: Linux

Security advisories for Wednesday

sze, 2014-11-05 18:02

CentOS has updated mod_auth_mellon (C6: two vulnerabilities).

Debian has updated php5 (three vulnerabilities).

Fedora has updated fedup (F19: temporary directory creation), php-Smarty (F20; F19: code execution), and thunderbird (F19: multiple vulnerabilities).

Red Hat has updated mod_auth_mellon (RHEL6: two vulnerabilities) and shim (RHEL7: multiple vulnerabilities).

SUSE has updated openssl1 (SLES11 SP3: multiple vulnerabilities) and wpa_supplicant (SLE11 SP3: command execution).

Ubuntu has updated ruby1.8, ruby1.9.1, ruby2.0, ruby2.1 (14.10, 14.04, 12.04: two vulnerabilities).

Kategóriák: Linux

LCA2015 Keynote Speaker - Professor Eben Moglen

sze, 2014-11-05 02:20
Professor Eben Moglen, Executive Director of the Software Freedom Law Center and professor of Law and Legal History at Columbia University Law School, will be a keynote speaker at linux.conf.au.
Kategóriák: Linux

[$] Kdbus meets linux-kernel

k, 2014-11-04 22:16
There has been a long history of attempts to put interprocess messaging systems into the Linux kernel; in general, these attempts have not gotten very far. From the beginning, though, the expectations around "kdbus," an in-kernel implementation of the widely used D-Bus mechanism, have been higher than the usual. Kdbus has been under development for more than two years, and was unveiled at linux.conf.au in January. But it had never been posted to the linux-kernel mailing list for review and, with luck, eventual inclusion — until October 29, when Greg Kroah-Hartman posted a twelve-part series for consideration.
Kategóriák: Linux

Mobile Linux Distros Keep on Morphing (Linux.com)

k, 2014-11-04 20:58
Linux.com looks at the distributions powering mobile devices, including Firefox OS, Tizen, Ubuntu, and WebOS. "At the Mozilla Festival held earlier this week in the U.K. , Mozilla unveiled a PiFxOS version of Firefox OS for the Raspberry Pi, also dubbed Foxberry Pi, with promises to make it competitive with Raspbian Linux. It's currently a bleeding edge demoware build, but Mozilla appears to be serious about ramping it up, with an early focus on robotics hacking and media players. PiFxOS is based on a Firefox OS port to the Pi developed by Oleg Romashin and Philip Wagner, which seems to have stalled. Mozilla plans to beef it up with support for sensors, control motors, LEDs, solenoids, and other components, as well as build a modified version for drones. A longer term project is to develop a DOM/CSS platform for robots using "a declarative model of a reactive system.""
Kategóriák: Linux

Videos from the GNU Tools Cauldron

k, 2014-11-04 20:39
The GNU Tools Cauldron, a conference on the low-level toolchain (GCC, glibc, GDB, etc.) was held last July. There is now a full set of videos from the event available for your viewing pleasure. Anybody with an interest in this area is advised to have a fair amount of time available before visiting that page; there are quite a few interesting topics in the list.
Kategóriák: Linux

Fedora 21 beta released

k, 2014-11-04 19:35
The Fedora 21 beta release is available for testing. "Every bug you uncover is a chance to improve the experience for millions of Fedora users worldwide. Together, we can make Fedora 21 a rock-solid distribution. We have a culture of coordinating new features and pushing fixes upstream as much as feasible and your feedback will help improve not only Fedora but Linux and free software on the whole."
Kategóriák: Linux

Tuesday's security updates

k, 2014-11-04 17:58

CentOS has updated cups-filters (C7: command execution).

Oracle has updated cups-filters (OL7: command execution).

Red Hat has updated cups-filters (RHEL7: command execution) and RHOSE (two vulnerabilities).

Scientific Linux has updated cups (SL6: multiple vulnerabilities), cups-filters (SL7: command execution), file (SL6: multiple vulnerabilities), firefox (SL5,6,7: multiple vulnerabilities), glibc (SL6: two vulnerabilities), java-1.8.0-openjdk (SL6: multiple vulnerabilities), kernel (SL7; SL6: multiple vulnerabilities), krb5 (SL6: multiple vulnerabilities), luci (SL6: code execution), php (SL6,7: multiple vulnerabilities), php53 (SL5: multiple vulnerabilities), thunderbird (SL6: multiple vulnerabilities), wget (SL6,7: symlink attack), and X11 client libraries (SL6: multiple vulnerabilities).

Slackware has updated mariadb (multiple vulnerabilities), firefox (multiple vulnerabilities), php (three vulnerabilities), and seamonkey (multiple vulnerabilities).

Kategóriák: Linux

openSUSE 13.2 released

k, 2014-11-04 14:14
The openSUSE 13.2 release is now available. "This version presents the first step to adopt the new openSUSE design guidelines system-wide. The graphical revamp is noticeable everywhere: the installer, the bootloader, the boot sequence and all of the (seven!) supported desktops (KDE, GNOME, Xfce, LXDE, Enlightenment 19, Mate and Awesome). Even the experimental Plasma 5.1 is adapted to the overall experience." See the announcement for details on what's new in this release.
Kategóriák: Linux

Introducing Dynomite - Making non-distributed databases, distributed

k, 2014-11-04 14:07
The Netflix Tech Blog has posted an introduction to Dynomite, a database distribution system. "In the age of high scalability and big data, Dynomite’s design goal is to turn those single-server datastore solutions into peer-to-peer, linearly scalable, clustered systems while still preserving the native client/server protocols of the datastores, e.g., Redis protocol." Dynomite is available under the Apache license.
Kategóriák: Linux

Vetter: Atomic Modeset Support for KMS Drivers

h, 2014-11-03 21:50
For those who are interested in the grungy details of getting the new atomic modesetting operations working with existing graphics drivers, Daniel Vetter has the scoop: "So I've just reposted my atomic modeset helper series, and since the main goal of all that work was to ensure a smooth and simple transition for existing drivers to the promised atomic land it's time to elaborate a bit. The big problem is that the existing helper libraries and callbacks to driver backends don't really fit the new semantics, so some shuffling was required to avoid long-term pain. So if you are a driver writer and just interested in the details then read for what needs to be done to support atomic modeset updates using these new helper libraries."
Kategóriák: Linux

Security advisories for Monday

h, 2014-11-03 18:50

Debian has updated icedove (multiple vulnerabilities), quassel (information disclosure), and wget (symlink attack).

Fedora has updated fedup (F20: temporary directory creation) and phpMyAdmin (F19: cross-site scripting).

Mageia has updated pulseaudio (denial of service).

openSUSE has updated firefox, (13.1; 12.3: multiple vulnerabilities), gnome-settings-daemon (13.1: lock screen bypass), phpMyAdmin (13.1, 12.3: cross-site scripting), and thunderbird (13.1; 12.3: multiple vulnerabilities).

Red Hat has updated openstack-cinder (RHEL OSP for RHEL7; RHEL OSP for RHEL6: information disclosure), openstack-keystone (RHEL OSP for RHEL7; RHEL OSP for RHEL6: information leak), openstack-neutron (RHEL OSP for RHEL7; RHEL OSP for RHEL6: denial of service), openstack-nova (RHEL OSP for RHEL7; RHEL OSP for RHEL6: two vulnerabilities), and python-keystoneclient (RHEL OSP for RHEL7; RHEL OSP for RHEL6: man-in-the-middle attacks).

SUSE has updated spacewalk-java (SUSE Manager1.7 for SLE11 SP2; SUSE Manager Server: cross-site scripting).

Ubuntu has updated kernel (14.10: multiple vulnerabilities).

Kategóriák: Linux

Kernel prepatch 3.18-rc3

h, 2014-11-03 13:52
The third 3.18 prepatch is out there for testing. Linus complained that things aren't slowing down as he would like, but doesn't seem too worried: "That said, I don't think there is anything particularly horrible in here. Lots and lots of small stuff, with drivers accounting for the bulk of it (both in commits and in lines), but networking and core kernel showing up too. Nothing particularly stands out." With this prepatch, the codename for the release has changed to "Diseased Newt."
Kategóriák: Linux

Fedora Council elections scheduled

p, 2014-10-31 23:26

Fedora Project Leader Matthew Miller has announced the election schedule meant to fill the two new "at large" slots on Fedora's upcoming Fedora Council governance body. "These positions are of strategic importance, with a full voice in the Council's consensus process. The primary function of the Council is to identify community goals and to organize and enable the project to achieve them." Nominations will be open from November 4 through 10; voting be open from November 18 through 25. The week in between will be for campaigning. Miller also encourages potential candidates to consider the time commitment the new roles require. "We recognize that this level of commitment is difficult for many community members with full-time jobs not directly related to Fedora, and the intent is not to exclude those contributors. At the same time, these positions will require a meaningful commitment of time and responsiveness. If your other obligations make this impossible, please consider suggesting candidacy to other community members who you feel would be able to bring your voice to the table."

Kategóriák: Linux

Linux 3.16.y.z extended stable support

p, 2014-10-31 19:48
The Ubuntu kernel team has announced that they will be providing extended support for the 3.16 kernel series. The team will pick up where Greg Kroah-Hartman left off, with 3.16.7, and will provide support until April 2016.
Kategóriák: Linux

Friday's security updates

p, 2014-10-31 17:50

CentOS has updated php (C6; C7: multiple vulnerabilities), php53 (C5: multiple vulnerabilities), and wget (C6; C7: code execution).

Debian has updated kernel (multiple vulnerabilities).

Fedora has updated sddm (F21: multiple vulnerabilities).

Mageia has updated file (denial of service) and dokuwiki (multiple vulnerabilities).

Oracle has updated kernel (O5; O6; O6; O7: multiple vulnerabilities), php (O6; O7: multiple vulnerabilities), php53 (O5: multiple vulnerabilities), and wget (O6; O7: code execution).

Red Hat has updated kernel (RHEL6: multiple vulnerabilities), php (RHEL6,7: multiple vulnerabilities), php53 (RHEL5: multiple vulnerabilities), php54-php (SC1: multiple vulnerabilities), php55-php (SC1: multiple vulnerabilities), and wget (RHEL6,7: code execution).

Ubuntu has updated kernel (14.04: multiple vulnerabilities), linux-lts-trusty (12.04: multiple vulnerabilities), and wget (code execution).

Kategóriák: Linux

KVM Matures, and the Use Cases Multiply (Linux.com)

cs, 2014-10-30 20:41
Over at Linux.com, Adam Jollans has a report from the recently completed KVM Forum that was held in Düsseldorf, Germany October 14-16. He looks at a talk that he gave on KVM's relationship to OpenStack and the open cloud, a new white paper on KVM [PDF], and a panel on network function virtualization (NFV): "In the past, communications networks have been built with specific routers, switches and hubs with the configuration of all the components being manual and complex. The idea now is to take that network function, put it into software running on standard hardware. The discussion touched on the demands – in terms of latency, throughput, and packet jitter – that network function virtualization places on KVM when it is being run on general purpose hardware and used to support high data volume. There was a lively discussion about how to get fast communication between the virtual machines as well as issues such as performance and sharing memory, as attendees drilled down into how KVM could be applied in new ways."
Kategóriák: Linux

Stable kernels 3.17.2, 3.16.7, 3.14.23, and 3.10.59

cs, 2014-10-30 18:04
Greg Kroah-Hartman has announced the release of four new stable kernels: 3.17.2, 3.16.7, 3.14.23, and 3.10.59. As always, they contain important fixes and users of those series should update. Note that 3.16.7 is the last stable kernel in the 3.16 series; users should upgrade to 3.17 soon.
Kategóriák: Linux