Népszerű fórum témák
FreeBSD Project News
Linux Weekly News
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Frissült: 22 perc 34 másodperc
Stable kernels 3.15.3, 3.14.10, 3.10.46, and 3.4.96 have been released. All contain important fixes throughout the tree.
openSUSE has updated freerdp (13.1, 12.3: two vulnerabilities), kernel (12.3: multiple vulnerabilities), libreoffice (13.1: unexpected VBA macro execution), samba (13.1; 12.3: multiple vulnerabilities), seamonkey (13.1, 12.3: multiple vulnerabilities), thunderbird (13.1, 12.3: multiple vulnerabilities), and xalan-j2 (13.1, 12.3: information disclosure/code execution).
Fedora has updated gnupg2 (F20: denial of service), kernel (F20: multiple vulnerabilities), php (F20: multiple vulnerabilities), python (F20: missing boundary check), and zabbix (F20; F19: local file inclusion).
Linus has released the third 3.16 prepatch. "We're back on a Sunday release schedule, and things are looking reasonably normal."
At his blog, Allan Day points GNOME users and developers to some new usability research about GNOME 3.10 and 3.12 conducted by Jim Hall, a graduate student at the University of Minnesota. Day has started filing a number of bug reports based on Hall's findings, including problems with Nautilus bookmarking and confusion over the purpose of the GNOME Software application. The full data set is not yet available online, but Hall is scheduled to present it at GUADEC in July.
Debian has updated gnupg2 (denial of service).
Gentoo has updated asterisk (multiple vulnerabilities), django (multiple vulnerabilities), konqueror (multiple vulnerabilities), libav (multiple vulnerabilities), polkit, Spice-Gtk, systemd, HPLIP, libvirt (privilege escalation), spice-gtk (privilege escalation), and sudo (privilege escalation).
Ubuntu has updated gnupg, gnupg2 (denial of service), kernel (12.04; 13.10: multiple vulnerabilities), linux-lts-quantal (multiple vulnerabilities), linux-lts-saucy (multiple vulnerabilities), linux-lts-trusty (multiple vulnerabilities), linux-ti-omap4 (12.04: multiple vulnerabilities), and samba (multiple vulnerabilities).
Dark Reading writes about a newly-discovered bug that has existed for 20 years in multiple LZO compression implementations. "Patches for the integer overflow bug, which allows an attacker to cripple systems running the so-called Lempel-Ziv-Oberhumer (LZO) code with denial-of-service type attacks as well as remote code execution, were issued the past few days for the Linux kernel, as well as for various open-source media libraries. LZO handles high-speed compression and decompression of IP network traffic and files, typically images, in embedded systems. 'The most popular use is in image data, decompressing photos taken, raw images taken from a camera or video stream,' says Don Bailey, mobile and embedded systems security expert with Lab Mouse Security, who discovered the vulnerability while manually auditing the code."
Greg Kroah-Hartman has announced the release of four stable kernels: 3.15.2, 3.14.9, 3.10.45, and 3.4.95. As usual, they contain changes throughout the tree and users of those kernel series should upgrade.
Over at KDE.news, Jos Poortvliet has a look at where KDE is today and where it is going in the future. It is part one of a "mini series". This piece looks at the community, Plasma, Frameworks, design, and applications, while the next will cover governance and how the community has been changing. "Experiences in the world of mobile and web applications have shown that users are far more likely to start using features and appreciate small batches instead of large dumps. Short release cycles can bring bug fixes and improvements to our users much faster. On the other hand, most users of KDE software access their software and updates through the downstream distributions which are on slower release cycles even though they have repositories for updated software. [Therefore] this is a discussion which needs to include the distributions as much as the upstream developers."
Debian has updated gnupg (denial of service).
The LWN.net Weekly Edition for June 26, 2014 is available.
Red Hat has updated kernel (RHEL7: multiple vulnerabilities).
The Freecode site (once known as Freshmeat), has announced that they are no longer updating entries. "Freecode has been the Web's largest index of Linux, Unix and cross-platform software, and mobile applications. Thousands of applications, which are preferably released under an open source license, were meticulously cataloged in the Freecode database, but links to new applications and releases are no longer being added. Each entry provides a description of the software, links to download it and to obtain more information, and a history of the project's releases."
openSUSE has updated wireshark (13.1: denial of service).
SUSE has updated firefox (SLES11 SP1 LTSS, SLES10 SP4 LTSS: multiple vulnerabilities).
Opensource.com covers a talk by Coraline Ehmke about diversity in open source. "She came at the topic from the angle of diversity as a value of the culture of our groups. By now we've heard from many open source thought leaders on why we need diversity in open source—arguments mainly center around the more people of the greater population that we include in our groups, and make feel welcome to our groups, the better our results will be. Why? Coraline points to a study indicating that groupthinking is a real thing—we tend to agree with and value the things that are said and done by other people that are simply like us. So, the presence of someone different in our group increases accuracy by reducing knee-jerk agreements."
There have been arguments about the legality of binary-only kernel modules for almost as long as the kernel has had loadable module support. One of the key factors in this disagreement is the EXPORT_SYMBOL_GPL() directive, which is intended to keep certain kernel functions out of the reach of proprietary modules. A recent discussion about the merging of a proposed new kernel subsystem has revived some questions about the meaning and value of EXPORT_SYMBOL_GPL() — and whether it is worth bothering with at all.
SUSE has updated firefox (SLE11 SP3, SLES10 SP3 LTSS: multiple vulnerabilities).
NetworkManager 0.9.10 is out with a long list of new features including a curses-based management interface, more modular device support, data center bridging support, many new customization options, better cooperation with other network management tools, and more. (Correction: the release is almost out, being planned for "later this week").
The second 3.16 prepatch is out. Linus says: "It's a day early, but tomorrow ends up being inconvenient for me due to being on the road most of the day, so here you are. These days most people send me their pull requests and patches during the week, so it's not like I expect that a Sunday release would have made much of a difference. And it's also not like I didn't have enough changes for making a rc2 release."
HUP napi hírlevél
Legfrissebb HUP videók
Legfrissebb Linux játékvideók
Legfrissebb HUP képek
Legfrissebb HUP dokumentumok
Érdemes-e 35 év felett belevágni az első diploma megszerzésébe?
Nem. Nem ér annyit.
Nem. Túl öreg tanulni egy ilyen korú ember.
Nem. Aki eddig nem ért el semmit, az diplomával sem fog.
Nem. Túl sokba kerül.
Teljesen mindegy. Ha kell neki csinálja.
Igen. Mindig jól jön plusz egy papír.
Igen. De csak ha a cég támogatja.
Igen. Újat tanulni mindig érdemes.
Igen. Diploma nélkül nem lehet megélni.
Kaszásmókus vagyok. (Csak az eredmény érdekel)
Összes szavazat: 283