Hírolvasó
oath-toolkit: privilege escalation in pam_oath.so (SUSE Security Team Blog)
The SUSE Security Team Blog has a detailed report on its discovery of a privilege escalation in the oath-toolkit, which provides libraries and utilities for managing one-time password (OTP) authentication.
Fellow SUSE engineer Fabian Vogt approached our Security Team about the project's PAM module. A couple of years ago, the module gained a feature which allows to place the OTP state file (called usersfile) in the home directory of the to-be-authenticated user. Fabian noticed that the PAM module performs unsafe file operations in users' home directories. Since PAM stacks typically run as root, this can easily cause security issues.Security updates for Friday
Security updates have been issued by AlmaLinux (firefox, golang, linux-firmware, and thunderbird), Debian (kernel and zabbix), Fedora (firefox, pgadmin4, and php), Mageia (chromium-browser-stable, cjson, hostapd and wpa_supplicant, and openjpeg2), Oracle (firefox, flatpak, and go-toolset:ol8), Red Hat (cups-filters, firefox, grafana, linux-firmware, python3, python3.11, and python3.9), SUSE (expat, firefox, libpcap, and opensc), and Ubuntu (freeradius, imagemagick, and unzip).
Nem tudnak leállni a japán Google-nél a hülye billentyűzetekkel
Idén is itt egy remekbeszabott ergonomikus példány.
Huang: mindenki a Blackwellt akarja
Ebben a negyedévben megkezdődhet az új AI-feldolgozóegységek szállítása. A kereslet a gyártó szerint óriási.
Könnyebbé válhat a kollaboráció a ChatGPT-vel
A canvas móddal a kódok és szövegek szerkesztése jóval áttekinthetőbbé válik.
A konzol élt, él és élni fog
Ki vesz ma játékkonzolt és miért? Mi a gyártók koncepciója a jövőre nézve? Kiderül a 46. weeklyből!
Megint vegzálhatják a Microsoft böngészőjét
A kisebb riválisok szerint a Microsoft jogosulatlan versenyelőnyhöz juttatja az Edge-t az EU-ban.
Dave Airlie (blogspot): zinking the video
A few years ago Mike and I discussed adding video support to zink, so that we could provide vaapi on top of vulkan video implementations.
This of course got onto a long TODO list and we nerdsniped each other into moving it along, this past couple of weeks we finally dragged it over the line.
This MR adds initial support for zink video decode on top of Vulkan Video. It provides vaapi support. Currently it only support H264 decode, but I've implemented AV1 decode and I've played around a bit with H264 encode. I think adding H265 decode shouldn't be too horrible.
I've tested this mainly on radv, and a bit on anv (but there are some problems I should dig into).
[$] Coping with complex cameras
Cameras were never the simplest of devices for Linux to support; they have
a wide range of operating parameters and can generate high rates of data.
In recent years, though, they have become increasingly complex, stressing
the ability of the kernel's media
subsystem to manage them. At the 2024 Linux Plumbers Conference, developers from
that subsystem and beyond gathered to discuss the state of affairs and how
complex camera devices should be supported in the future.
Befejezi működését a World Wide Web Foundation
Sir Tim Berners-Lee alapítványa lehúzza a rolót, hogy más dolgokra koncentráljon a jövőben.
Security updates for Thursday
Security updates have been issued by AlmaLinux (cups-filters), Debian (chromium and php8.2), Fedora (firefox), Oracle (cups-filters, flatpak, kernel, krb5, oVirt 4.5 ovirt-engine, and python-urllib3), Red Hat (cups-filters, firefox, go-toolset:rhel8, golang, and thunderbird), SUSE (postgresql16), and Ubuntu (gnome-shell and linux-azure-fde-5.15).
Pontosabbak és gyűrűszerűbbek az Oura új okosgyűrűi
A finnek negyedik generációs okosgyűrűje több mintavételből dolgozik és a szenzorok is jobban elbújnak benne.
Rémálom lehet a privátszférának a Meta okosszemüvege
Arcfelismerő technológiával kombinálva akár másodpercek alatt kideríthetővé válhat egy ismeretlen személy neve a hétköznapinak tűnő szemüveg pillantása mögül.
Eurómilliárdokat fektet be Olaszországban a Microsoft
Az új adatközponti fejlesztésekkel Olaszország a mediterrán régió és Észak-Afrika legnagyobb hub-ja lesz.
Már 157 milliárd dolláron az OpenAI értékelése
Szinte duplázódott a legforróbb AI-startup értékelése, miután a befektetők körébe csatlakozott a SoftBank és az Nvidia is.
[$] LWN.net Weekly Edition for October 3, 2024
The LWN.net Weekly Edition for October 3, 2024 is available.
[$] Inkscape 1.4 coming soon
The open-source vector-graphics editor, Inkscape, is expected to release version 1.4
in October. The release represents an evolutionary step for the program, which
brings new features, user-interface improvements, new and improved
file-format support, and important changes to the code base. The changes in
this release should improve the user experience for both casual and
professional designers, and make Inkscape more compatible with proprietary
vector-graphics software, including Adobe Illustrator and Affinity
Designer.
[$] BTF, Rust, and the kernel toolchain
BPF Type Format (BTF), BPF's debugging information format, has undergone rapid evolution to match the evolving needs of BPF programs. José Marchesi spoke at Kangrejos about some of that work — and how it could impact Rust, specifically. He discussed debug information, kernel-specific relocations, and the planned changes to kernel stack unwinding. Each of these will require some amount of work to fully support in Rust, but preliminary signs look promising.
Manjaro 24.1 released
Version 24.1 of the Arch-based Manjaro distribution is now available with the 6.10 Linux kernel, GNOME 46.5, KDE Plasma 6.1 and KDE Gear 24.08:
Plasma 6.1 on Wayland now has a feature that "remembers" what you were doing in your last session like it did under X11. Although this is still work in progress, If you log off and shut down your computer with a dozen open windows, Plasma will now open them for you the next time you power up your desktop, making it faster and easier to get back to what you were doing. At Manjaro we are still defaulting to X11, however switching to Wayland can be done easily by selecting the wanted session in your display manager.The project also offers minimal install images with the 6.6 LTS and 6.1 LTS kernels to support older hardware as needed.