Linux Weekly News

Tartalom átvétel
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Frissült: 9 perc 46 másodperc

Firefox 46.0

sze, 2016-04-27 19:05
Firefox 46.0 has been released, featuring improved security of the JavaScript Just In Time (JIT) Compiler and GTK3 integration. See the release notes for more details.
Kategóriák: Linux

Security advisories for Wednesday

sze, 2016-04-27 18:07

CentOS has updated firefox (C7: multiple vulnerabilities).

Debian has updated mysql-5.5 (multiple vulnerabilities) and openjdk-7 (multiple vulnerabilities).

Fedora has updated rpm (F23: two vulnerabilities) and xstream (F23; F22: enabled processing of external entities).

Gentoo has updated libksba (three vulnerabilities) and wireshark (multiple vulnerabilities).

Mageia has updated libgd (code execution), samba (multiple vulnerabilities), w3m (denial of service), and wireshark (multiple vulnerabilities).

Oracle has updated firefox (OL7; OL6; OL5: multiple vulnerabilities).

Red Hat has updated firefox (RHEL5,6,7: multiple vulnerabilities).

Scientific Linux has updated firefox (SL5,6,7: multiple vulnerabilities).

Slackware has updated firefox (multiple vulnerabilities).

Ubuntu has updated firefox (multiple vulnerabilities).

Kategóriák: Linux

GCC 6.1 Released

sze, 2016-04-27 14:14
Version 6.1 of the GCC compiler suite is out. Changes in this release include defaulting to the C++14 standard, improved diagnostic output, full support for OpenMP 4.5, better optimization, and more; see the changelog for a full list.
Kategóriák: Linux

New functional programming language can generate C, Python code for apps (InfoWorld)

k, 2016-04-26 22:24
InfoWorld introduces Futhark, an open source functional programming language designed for creating code that runs on GPUs. It can automatically generate both C and Python code to be integrated with existing apps. "Most GPU programming involves using frameworks like OpenCL or CUDA, both of which use variations of C or C++ to generate code that runs on the GPU. Futhark can generate C code, but is its own language, more similar to Haskell or Standard ML than C. (Futhark is itself written in Haskell.) Futhark's creators claim that the expressiveness of the language makes it easier to describe complex operations that use parallelism. This includes the ability to support nested parallelizations (parallel operations inside other parallel operations). Futhark can do this "despite the complexities of efficiently mapping to the flat parallelism supported by hardware, as a great many programs depend on this feature," say the language's creators."
Kategóriák: Linux

Tuesday's security updates

k, 2016-04-26 18:30

CentOS has updated nspr (C5: two vulnerabilities), nss (C5: two vulnerabilities), nspr (C7: two vulnerabilities), nss (C7: two vulnerabilities), nss-softokn (C7: two vulnerabilities), and nss-util (C7: two vulnerabilities).

Fedora has updated ansible1.9 (F23; F22: code execution), golang (F23; F22: denial of service), gsi-openssh (F23; F22: command injection), mingw-poppler (F23; F22: code execution), mod_nss (F23; F22: invalid handling of +CIPHER operator), and webkitgtk4 (F22: multiple vulnerabilities).

openSUSE has updated flash-player (11.4: code execution).

Oracle has updated nss and nspr (OL5: two vulnerabilities) and nss, nspr, nss-softokn, and nss-util (OL7: three vulnerabilities).

Scientific Linux has updated nss, nspr, nss-softokn, nss-util (SL7: two vulnerabilities).

SUSE has updated php53 (SLE11-SP4: multiple vulnerabilities), portus (SLEM12: multiple vulnerabilities), and xen (SLES11-SP2: multiple vulnerabilities).

Kategóriák: Linux

Finding a new home for Thunderbird

k, 2016-04-26 10:52
The Mozilla Foundation has (in the guise of Gervase Markham) posted an update on the process of spinning off the Thunderbird mail client as a separate project. As part of that, they engaged Simon Phipps to write up a survey of possible new homes [PDF] for the project. "Having reviewed the destinations listed below together with several others which were less promising, I believe there are three viable choices for a future home for the Thunderbird Project; Software Freedom Conservancy, The Document Foundation and a new deal at the Mozilla Foundation. None of these three is inherently the best, and it is possible that over time the project might seek to migrate to a 'Thunderbird Foundation' as a permanent home (although I would not recommend that as the next step)."
Kategóriák: Linux

Intel releases the Arduino 101 firmware source code

k, 2016-04-26 00:04
Arduino has announced the release of the source code for the real-time operating system (RTOS) powering the Arduino 101 and Genuino 101. "The package contains the complete BSP (Board Support Package) for the Curie processor on the 101. It allows you to compile and modify the core OS and the firmware to manage updates and the bootloader. (Be careful with this one since flashing the wrong bootloader could brick your board and require a JTAG programmer to unbrick it)." (Thanks to Paul Wise)
Kategóriák: Linux

Security advisories for Monday

h, 2016-04-25 19:28

Arch Linux has updated pgpdump (denial of service), samba (multiple vulnerabilities), squid (multiple vulnerabilities), and thunderbird (two vulnerabilities).

Debian has updated imlib2 (multiple vulnerabilities) and libgd2 (code execution).

Fedora has updated java-1.8.0-openjdk (F23: multiple vulnerabilities), openssh (F23: privilege escalation), parallel (F23; F22: file overwrites), python-tgcaptcha2 (F23; F22: reusable captchas), thunderbird (F23: multiple vulnerabilities), w3m (F23: denial of service), and webkitgtk4 (F23: multiple vulnerabilities).

Mageia has updated java-1.8.0-openjdk (multiple vulnerabilities), libcryptopp (information disclosure), squid (denial of service), varnish (access control bypass), and vtun (denial of service).

openSUSE has updated Chromium (13.2; 13.1: multiple vulnerabilities) and clamav (Leap42.1: database refresh).

Red Hat has updated nss, nspr (RHEL5: two vulnerabilities) and nss, nspr, nss-softokn, nss-util (RHEL7: two vulnerabilities).

Scientific Linux has updated nss, nspr (SL5: two vulnerabilities).

SUSE has updated yast2-users (SLE12-SP1: empty passwords fields in /etc/shadow).

Ubuntu has updated mysql-5.7 (16.04: multiple vulnerabilities).

Kategóriák: Linux

Kernel prepatch 4.6-rc5

h, 2016-04-25 10:36
Linus has released the 4.6-rc5 kernel prepatch. "Things continue to be fairly calm: rc5 is bigger than rc4 was, but rc4 really was tiny. And while we're back to fairly normal commit counts for this time in the release window, the kinds of bugs people are finding remain very low grade: there's absolutely nothing scary in here. If things continue this way, this might be one of those rare releases that don't even get to rc7."
Kategóriák: Linux

Rintel: Network Manager 1.2 is here

szo, 2016-04-23 01:42

At his blog, Lubomir Rintel highlights some of the changes found in the new 1.2 release of Network Manager, the network-configuration utility suite shipped by many Linux distributions. High on the list are privacy improvements; the post notes that "the identity of a mobile host can also leak via Wi-Fi hardware addresses. A common way to solve this is to use random addresses when scanning for available access points, which is what NetworkManager now does (with a recent enough version of wpa_supplicant). The actual hardware address is used only after the device is associated to an access point." Network Manager can also now be used to manage tun, tap, macvlan, vxlan and IP tunnel software devices, and can run multiple VPN modules simultaneously. In addition, support for several hardware device classes was split into loadable modules, which will reduce memory overhead.

Kategóriák: Linux

Friday's security updates

p, 2016-04-22 17:01

CentOS has updated java-1.7.0-openjdk (C6; C5; C7: multiple vulnerabilities) and java-1.8.0-openjdk (C6; C7: multiple vulnerabilities).

Debian has updated varnish (access control bypass) and xen (multiple vulnerabilities).

Fedora has updated drupal7-block_class (F23; F22: cross-site scripting), glpi (F23; F22: SQL injection), libtasn1 (F23: denial of service), and springframework-amqp (F22: code execution).

Mageia has updated chromium-browser-stable (M5: multiple vulnerabilities), imlib2 (M5: code execution), lha (M5: buffer overflow), and poppler (M5: denial of service).

Oracle has updated java-1.7.0-openjdk (O7; O6; O5: multiple vulnerabilities).

Red Hat has updated java-1.6.0-sun (RHEL 5,6,7: multiple vulnerabilities), java-1.7.0-openjdk (RHEL 5,7; RHEL6: multiple vulnerabilities), java-1.7.0-oracle (RHEL 5,6,7: multiple vulnerabilities), and java-1.8.0-oracle (RHEL 6,7: multiple vulnerabilities).

Scientific Linux has updated java-1.7.0-openjdk (SL 5,7; SL6: multiple vulnerabilities).

Ubuntu has updated mysql-5.5, mysql-5.6 (12.04, 14.04, 15.10: multiple vulnerabilities) and php5 (12.04, 14.04, 15.10: multiple vulnerabilities).

Kategóriák: Linux

Ubuntu 16.04 LTS (Xenial Xerus) released

p, 2016-04-22 01:08
The Ubuntu team has announced the release of Ubuntu 16.04 LTS for Desktop, Server, Cloud, and Core. "Ubuntu 16.04 LTS is the first long-term support release available for the new "s390x" architecture for IBM LinuxONE and z Systems, as well as introducing the new Ubuntu MATE community flavour." Joining Ubuntu in this release are the flavors Kubuntu, Lubuntu, Mythbuntu, Ubuntu GNOME, Ubuntu Kylin, Ubuntu MATE, Ubuntu Studio, and Xubuntu. Maintenance updates will be provided for 5 years for Ubuntu Desktop, Ubuntu Server, Ubuntu Cloud, Ubuntu Core, and Ubuntu Kylin. All the remaining flavors will be supported for 3 years.
Kategóriák: Linux

Three new stable kernel releases

cs, 2016-04-21 23:17

Greg Kroah-Hartman has released the latest batch of stable kernels: 4.5.2, 4.4.8, and 3.14.67. Each contains updates and fixes throughout the tree.

Kategóriák: Linux

Thursday's security updates

cs, 2016-04-21 16:25

Fedora has updated springframework-amqp (F23: code execution).

openSUSE has updated giflib (13.2; 13.1: denial of service) and xerces-c (Leap 42.1: code execution).

Oracle has updated java-1.8.0-openjdk (O7; O6: multiple vulnerabilities).

Red Hat has updated java-1.8.0-openjdk (RHEL6; RHEL7: multiple vulnerabilities).

Scientific Linux has updated java-1.8.0-openjdk (SL6; SL7: multiple vulnerabilities).

Kategóriák: Linux

LWN.net Weekly Edition for April 21, 2016

cs, 2016-04-21 02:38
The LWN.net Weekly Edition for April 21, 2016 is available.
Kategóriák: Linux

Introducing open source DC/OS

sze, 2016-04-20 19:03
Mesosphere has announced the release of DC/OS under the Apache License 2.0. "DC/OS derives from Mesosphere’s Datacenter Operating System, a commercial product built around Apache Mesos. Open sourcing DCOS has always been part of our strategic roadmap and we’re proud to have collaborated with our launch partners for today’s unveiling. DC/OS is a software platform that’s 100 percent open source, comprised of more than 30 component technologies, including Apache Mesos and Marathon. Some of the technologies were always open source, including Mesos, while others were previously proprietary code developed by Mesosphere, such as the GUI and our Minuteman load balancer." Over 60 partner companies participated in the open source release.
Kategóriák: Linux

Security advisories for Wednesday

sze, 2016-04-20 17:59

Fedora has updated kernel (F23: three vulnerabilities).

openSUSE has updated apparmor (13.1: profile updates), samba (13.1; 11.4: multiple vulnerabilities), and tiff (13.1: denial of service).

SUSE has updated samba (SLES10-SP4: three vulnerabilities) and kernel (SLE11-SP4: multiple vulnerabilities).

Ubuntu has updated firefox (regressions in previous update).

Kategóriák: Linux

[$] Persistent-memory error handling

sze, 2016-04-20 16:19
One of the key advantages of persistent memory is that it is, for lack of a better word, persistent; data stored there will be available for recall in the future, regardless of whether the system has remained up in the meantime. But, like memory in general, persistent memory can fail for a number of reasons and, given the quantities in which it is expected to be deployed, failures are a certainty. How should the operating system and applications deal with errors in persistent memory? One of the first plenary sessions at the 2016 Linux Storage, Filesystem, and Memory-Management Summit, led by Jeff Moyer, took on this question.
Kategóriák: Linux

Tuesday's security updates

k, 2016-04-19 18:02

Fedora has updated libreswan (F22: denial of service).

openSUSE has updated systemd (13.2: two vulnerabilities).

Kategóriák: Linux

The Android Security 2015 Annual Report

k, 2016-04-19 15:30
Google has announced the availability of the Android security 2015 year in review [PDF]. "Android’s open source model has also allowed device manufacturers to introduce new security capabilities. Samsung KNOX, for example, has taken advantage of unique hardware capabilities to strengthen the root of trust on Samsung devices. Samsung has also introduced new kernel monitoring capabilities on their Android devices. Samsung is not unique in their contributions to the Android ecosystem. Blackberry has worked to enhance the security of their devices by enabling kernel hardening and other features in the Blackberry PRIV. CopperheadOS has both introduced security improvements to their own version of Android and made significant contributions to the Android Open Source Project. These are just some of the various contributions made possible through open sourcing that improved the Android ecosystem in 2015."
Kategóriák: Linux