ls -1TörténelemNépszerű témákNépszerű fórum témákHardverAjánlott böngésző FreeBSD Project NewsOpenBSD JournalNetBSD News
|
Linux Weekly News
LWN.net is a comprehensive source of news and opinions from
and about the Linux community. This is the main LWN.net feed,
listing all articles which are posted to the site front page.
Webcím: http://lwn.net
Frissült: 13 perc 20 másodperc Security advisories for WednesdayCentOS has updated mysql55-mysql (C5: multiple vulnerabilities) and openswan (C6; C5: denial of service). Debian has updated libtar (directory traversal). Mandriva has updated gnutls (certificate verification error), python (code execution), and tomcat6 (multiple vulnerabilities). openSUSE has updated poppler (11.4: multiple vulnerabilities). Oracle has updated mysql55-mysql (OL5: multiple vulnerabilities) and openswan (OL6; OL5: denial of service). Red Hat has updated mysql55-mysql (RHEL5: multiple vulnerabilities) and openswan (RHEL5&6: denial of service). Scientific Linux has updated mysql55-mysql (SL5: multiple vulnerabilities) and openswan (SL5&6: denial of service). Ubuntu has updated EC2 kernel (10.04 LTS: multiple vulnerabilities), kernel (10.04 LTS; 12.04 LTS; 12.10; 13.10: multiple vulnerabilities), linux-lts-quantal (12.04 LTS: multiple vulnerabilities), linux-lts-raring (12.04 LTS: multiple vulnerabilities), linux-lts-saucy (12.04 LTS: multiple vulnerabilities), and linux-ti-omap4 (12.04 LTS; 12.10; 13.10: multiple vulnerabilities). Kategóriák: Linux
[$] C11 atomic variables and the kernelThe C11 standard added a number of new features for the C and C++
languages. One of those features — built-in atomic types — seems like it
would naturally be of interest to the kernel development community; for the
first time, the language standard tries to address concurrent access to
data on contemporary hardware.
But, as recent discussions show, it may be a while before C11 atomics are
ready for use with the kernel — if they ever are — and the kernel community
may not feel any great need to switch.
Click below (subscribers only) for the full article from this week's Kernel Page. Kategóriák: Linux
Tuesday's security updatesFedora has updated apache-commons-fileupload (F20; F19: denial of service), gnutls (F20: certificate verification error), and kernel (F20; F19: multiple vulnerabilities). Gentoo has updated xpdf (multiple vulnerabilities from 2009 and 2010). Mageia has updated mongodb (MG3: denial of service) and tomcat6 (MG3: multiple vulnerabilities). Mandriva has updated ffmpeg (multiple unspecified vulnerabilities), kernel (multiple vulnerabilities), libgadu (buffer overflow), puppet (insecure temporary files), and varnish (denial of service). openSUSE has updated chromium (13.1, 12.3: multiple vulnerabilities), kernel (11.4: multiple vulnerabilities), and xtrabackup (13.1: poor encryption). SUSE has updated firefox (multiple vulnerabilities) and IBM Java (multiple vulnerabilities). Kategóriák: Linux
grep-2.17 releasedVersion 2.17 of the GNU grep utility is out. "This release is
notable for its performance improvements: we don't often see a 10x speed-up
in a tool like grep." Other changes include the removal of the
long-deprecated --mmap option.
Kategóriák: Linux
Security advisories for MondayDebian has updated chromium-browser (multiple vulnerabilities) and file (denial of service). Fedora has updated curl (F19: information disclosure), imapsync (F19: TLS botch), numpy (F20: insecure temp files), python3 (F20: code execution), xen (F19; F20: multiple vulnerabilities), and zarafa (F19; F20: denial of service). Mageia has updated cxxtols (MG4: denial of service), denyhosts (MG3: denial of service), gnutls (certificate verification error), libgadu (buffer overflow), libpng (MG3: denial of service), libpng12 (MG4: denial of service), maradns (MG3; MG4: denial of service), pacemaker (MG3: denial of service), rawtherapee (denial of service), socat (denial of service), tntnet (information leak), and xbmc (denial of service). Mandriva has updated drupal (multiple vulnerabilities), flite (insecure temporary files), libpng (denial of service), socat (denial of service), and yaml (code execution). openSUSE has updated pidgin, (13.1, 12.3: multiple vulnerabilities). Kategóriák: Linux
Kernel prepatch 3.14-rc3Linus has released 3.14-rc3, and he's on
the verge of getting grumpy. "When I made the rc2 announcement, I
mentioned how nice and small it was. I also mentioned that I mistrusted you
guys, and that I suspected that some people were giggling to themselves and
holding back their pull requests, evil little creatures like you are. And
I hate being right." One assumes that the subsystem maintainers,
having been warned, will be careful about what they send for the rest of
the development cycle.
Kategóriák: Linux
Ubuntu Community Council statement on Canonical package licensingThe Ubuntu Community Council has issued a
statement regarding Canonical's requirement that binary redistributors
(such as Linux Mint) obtain a license from Canonical. "We believe there is
no ill-will against Linux Mint, from either the Ubuntu community or
Canonical and that Canonical does not intend to prevent them from
continuing their work, and that this license is to help ensure that. What
Linux Mint does is appreciated, and we want to see them succeed."
There is no real discussion on what is being licensed; it would appear to
be a fairly mundane trademark issue stemming from the fact that Linux Mint
distributes binary packages taken directly from the Ubuntu repository.
Kategóriák: Linux
Chinese software pioneer Red Flag bites the dust (South China Morning Post)The South China Morning Post is reporting the demise of Red Flag, which is a government-backed Linux distribution by and for the Chinese people. "China’s best hope for a home-grown computer operating system to take on global giants like Microsoft lay in tatters after state-backed Red Flag Software was forced to close its doors for business.
Founded in 2000 during the dot-com boom, Red Flag was once the world’s second-largest Linux distributor, providing desktop and server software built on top of the free and open-source Linux program.
Despite its lofty goals and early success, Beijing-based Red Flag has gone out of business and terminated all its employment contracts on Monday, according to a report on the Sina news portal on Thursday."
Kategóriák: Linux
How OpenStack parallels the adoption of Linux (opensource.com)Over at opensource.com, Red Hat's cloud evangelist Gordon Haff looks at the adoption of OpenStack through the lens of the adoption of Linux (and surrounding projects). "Early Linux success didn’t come about because it was better technology than Unix. For the most part it wasn’t. Rather it often won because it was less expensive than proprietary Unix running on proprietary hardware. It also gave users a choice of both distributions and hardware vendors as well as the ability to customize the code should they so choose. However, what has truly distinguished Linux and open source broadly over time is the power of the open source development models and the innovation that comes from communities around projects."
Kategóriák: Linux
Security updates for FridayCentOS has updated kvm (C5: two vulnerabilities), mysql (C6: multiple vulnerabilities), and piranha (C5; C6: access restriction bypass). Fedora has updated icedtea-web (F19: insecure tmpfile use), imapsync (F20: TLS botch), libgadu (F20: code execution), maradns (F20: denial of service), pidgin (F19: multiple vulnerabilities), and python (F20: code execution). Mageia has updated ffmpeg (M3: multiple unspecified vulnerabilities), mpg123 (denial of service), perl-Capture-Tiny (insecure tmpfile use), and varnish (denial of service). Mandriva has updated mariadb (BS1.0: multiple vulnerabilities) and mysql (ES5.0: code execution). Oracle has updated piranha (OL5: access restriction bypass). Red Hat has updated mysql55-mysql (RHEL6: multiple vulnerabilities) and piranha (RHEL5; RHEL6: access restriction bypass). Scientific Linux has updated piranha (SL5; SL6: access restriction bypass). Slackware has updated curl (information disclosure) and ntp (denial of service). Ubuntu has updated maas (12.04, 12.10, 13.10: two vulnerabilities) and libyaml (12.04, 12.10, 13.10: regression in previous security fix). Kategóriák: Linux
Shuttleworth: Losing graciouslyMark Shuttleworth responds to Debian's
decision to go with systemd. "Nevertheless, the decision is for
systemd, and given that Ubuntu is quite centrally a member of the Debian
family, that’s a decision we support. I will ask members of the Ubuntu
community to help to implement this decision efficiently, bringing systemd
into both Debian and Ubuntu safely and expeditiously."
Kategóriák: Linux
Stable kernels 3.13.3, 3.12.11, 3.10.30, and 3.4.80Greg Kroah-Hartman has release the latest batch of stable kernels: 3.13.3, 3.12.11, 3.10.30, and 3.4.80. Users of those kernel series should
upgrade.
Kategóriák: Linux
Thursday's security updatesMageia has updated augeas (M3: three vulnerabilities, two from 2012), ejabberd (M3: information disclosure), kernel-linus (M4: privilege escalation), kernel-rt (M4: privilege escalation), kernel-vserver (M4: multiple vulnerabilities), openldap (denial of service), plexus-archiver (M3: denial of service from 2012), qemu (M4: denial of service), and tor (bad random number generation). Mandriva has updated php (BS1.0: denial of service). Oracle has updated kernel (OL6: multiple vulnerabilities), kvm (OL5: two vulnerabilities), and mysql (OL6: multiple vulnerabilities). Red Hat has updated kvm (RHEL5: two vulnerabilities) and mysql (RHEL6: multiple vulnerabilities). Scientific Linux has updated kvm (SL5: two vulnerabilities) and mysql (SL6: multiple vulnerabilities). Ubuntu has updated lxc (13.10: privilege escalation). Kategóriák: Linux
LWN.net Weekly Edition for February 13, 2014The LWN.net Weekly Edition for February 13, 2014 is available.
Kategóriák: Linux
Security advisories for WednesdayCentOS has updated xen (Xen4CentOS: multiple vulnerabilities), kernel (Xen4CentOS: multiple vulnerabilities), and kernel (C6: multiple vulnerabilities). Debian has updated libyaml (regression in previous update) and parcimonie (information disclosure). Fedora has updated firefox (F19: multiple vulnerabilities), fwsnort (F20; F19: code execution), graphviz (F20; F19: multiple vulnerabilities), ibus-chewing (F20: password disclosure), libpng12 (F20; F19: denial of service), libpng15 (F20: denial of service), lightdm-gtk (F20; F19: denial of service), openldap (F20: denial of service), socat (F20; F19: denial of service), tpp (F20; F19: code execution), and xulrunner (F19: multiple vulnerabilities). Gentoo has updated freetype (multiple vulnerabilities). Mageia has updated chrony (MG4: distributed denial of service via amplification), kernel-vserver (MG3: multiple vulnerabilities), libvirt (MG3: denial of service), moodle (multiple vulnerabilities), and ruby-will_paginate (MG3: cross-site scripting). Mandriva has updated openldap (denial of service). Oracle has updated kernel (OL6: multiple vulnerabilities). Red Hat has updated kernel (RHEL6: multiple vulnerabilities). Scientific Linux has updated kernel (SL6: multiple vulnerabilities). SUSE has updated flash-player (code execution) and kernel (regression in previous update). Ubuntu has updated libav (code execution). Kategóriák: Linux
Apache SpamAssassin 3.4.0 availableThe SpamAssassin 3.4.0 release is out. "This is a major release. It
introduces over two years of bug fixes and features since the release of
SpamAssassin 3.3.2 on June 16, 2011." Changes include use of the Redis backend for Bayesian data storage, native
IPv6 support, and, of course, lots of rule changes.
Kategóriák: Linux
Mozilla To Sell Ads In Firefox Web Browser (AdvertisingAge)AdvertisingAge is reporting that Mozilla will be selling ads in Firefox. In particular, the "New Tab" page that normally has nine of the most frequently visited sites shown will, for new users, show ads and "pre-packaged content" in the new feature called "Directory Tiles". The Mozilla blog gives a bit more detail: "Some of these tile placements will be from the Mozilla ecosystem, some will be popular websites in a given geographic location, and some will be sponsored content from hand-picked partners to help support Mozilla’s pursuit of our mission. The sponsored tiles will be clearly labeled as such, while still leading to content we think users will enjoy.
We are excited about Directory Tiles because it has inherent value to our users, it aligns with our vision of a better Internet through trust and transparency, and it helps Mozilla become more diversified and sustainable as a project."
Kategóriák: Linux
Top 10 legal issues for free software of 2013 (opensource.com)Opensource.com covers some
legal issues faced in 2013. Topics include Android patent litigation,
license compliance, forks, enforcement, GitHub's license selection policy,
good news in the patent wars, FOSS in government and in the private sector,
contributor agreements, and collaborations. "On June 14, 2013, the district court of Hamburg found that Fantec violated the obligation in the GPLv2 to provide to its customers the "complete corresponding source code" of the software. Fantec objected that it had been assured by its Chinese supplier that the source code received from the supplier was complete. And Fantec claimed that they had investigated options with third parties for source code analysis and had been informed that such reviews were quite expensive and not completely reliable. The court rejected these excuses."
Kategóriák: Linux
Tuesday's security updatesCentOS has updated wget (C6: code execution). Debian has updated pidgin (multiple vulnerabilities). Gentoo has updated roundcube (code execution). Mageia has updated darktable (MG3: denial of service), flite (insecure temporary files), icedtea-web (insecure temporary file use), kernel-linus (MG3: multiple vulnerabilities), kernel-rt (MG3: multiple vulnerabilities), kernel-tmb (MG3: multiple vulnerabilities), kernel-tmb (MG4: privilege escalation), seamonkey (multiple vulnerabilities), and springframework (MG3: denial of service). Mandriva has updated pidgin (multiple vulnerabilities). Oracle has updated wget (OL6: code execution). Red Hat has updated wget (RHEL6: code execution from 2010). Scientific Linux has updated wget (SL6: code execution). Ubuntu has updated firefox (multiple vulnerabilities) and libgadu (buffer overflow). Kategóriák: Linux
The Debian technical committee vote concludesAll of the votes are in on the simplified ballot to choose the default init
system for the Debian "jessie" release (on Linux). The Condorcet process
left systemd and upstart tied with four votes each; committee chair Bdale
Garbee has now used his casting vote in favor of systemd. That ends one
chapter of the debate, though the chances of this decision being reviewed
via a general resolution seem high.
Kategóriák: Linux
|
KeresésNavigációBelépésÁllásajánlatokHWSWFriss blogbejegyzések
HUP napi hírlevélLegfrissebb HUP videókLegfrissebb Linux játékvideókLegfrissebb HUP képekLegfrissebb HUP dokumentumokSzavazásHallottál már a FidoNetről? Nem 48% Valami dereng, de nem tudnám megmondani mi az 24% Igen, használtam is 9% Igen, üzemeltettem ilyen infrastruktúrát 2% Igen, de nem használtam 18% Összes szavazat: 495
InformációKövess minket!Partnerünk |
Friss hozzászólások
45 másodperc
55 másodperc
3 perc 9 másodperc
4 perc 22 másodperc
4 perc 32 másodperc
6 perc 25 másodperc
7 perc 47 másodperc
7 perc 49 másodperc
14 perc 8 másodperc
18 perc 34 másodperc