Hírolvasó

Linux users often work with text files; tools like grep, awk, and sed are standard utilities in their toolbox. However, these tools fall short when trying to extract or edit data from files in a binary format, analyze corrupt media files, or for parsing a binary data format. FOSDEM 2023 in Brussels had a whole binary tools devroom dedicated to open-source programs that deal with binary data.

Security updates have been issued by Debian (curl, python-werkzeug, and spip), Fedora (curl), Mageia (apache-commons-fileupload, apr, c-ares, clamav, git, gnutls, ipython, jupyter-core, php, postgresql, python-cryptography, python-jupyterlab, python-twisted, sofia-sip, and sox), Red Hat (git, httpd, kernel, kernel-rt, kpatch-patch, lua, openssl, pcs, php, python-setuptools, python3.9, systemd, tar, vim, and zlib), SUSE (libxslt, php8, postgresql15, python3, tpm2-0-tss, and ucode-intel), and Ubuntu (curl, mplayer, openjdk-17, openjdk-19, openjdk-lts, openjdk-8, python3.9, and ruby-rack).

A Microsoft blogján arról ír, hogy a rendszergazdáknak javasolt törölni a Temporary ASP.NET fájlokat, az Inetsrv mappákat, valamint a PowerShell és a w3wp folyamatokat a vírusirtó rendszereken keresztül futtatandó fájlok és mappák kizárási listájáról.

The post A Microsoft frissítette az Exchange antivírus kizárási listára vonatkozó ajánlását first appeared on Nemzeti Kibervédelmi Intézet.

A Trend Micro nevű kiberbiztonsági vállalat kutatói hívták fel a figyelmet egy támadási kampányra, amelyben kiberbűnözők a PlugX nevű RAT (távoli hozzáférésű trójai) malware-t próbálják minél több áldozathoz eljuttatni, egy hivatalos Windows debugger (hibakereső), eszköznek álcázva.

The post Vigyázat, egy windowsos debuggernek álcázva terjesztenek káros kódot! first appeared on Nemzeti Kibervédelmi Intézet.

The Asahi Linux project has posted an update and reality check on the status of Linux support for Apple's M1 hardware.

We are continuously upstreaming kernel features, and 6.2 notably adds device trees and basic boot support for M1 Pro/Max/Ultra machines. However, there is still a long road before upstream kernels are usable on laptops. There is no trackpad/keyboard support upstream yet.

While you can boot an upstream 6.2 kernel on desktops (M1 Mac Mini, M1 Max/Ultra Mac Studio) and do useful things with it, that is only the case for 16K page size kernel builds. No generic ARM64 distro ships 16K kernels today, to our knowledge.

Most of the kernel's code is written in C and intended to be run directly on the underlying hardware. That situation is changing in a few ways, though; one of those is the ability to write kernel code for the BPF virtual machine. The 6.3 kernel release will include a new API making the red-black tree data structure available to BPF programs. Beyond being an interesting feature in its own right, this new API shows how BPF is bringing a different approach to kernel programming — and to the C language in general.

Az Apple utólag három súlyos kockázati besorolású sebezhetőség leírással egészítette ki a múlt hónapban publikált biztonsági közleményét, amelyek az iOS, iPadOS és a macOS rendszereit érintik ─ hívta fel minderre a figyelmet a The Hacker News.

The post Az Apple csendben olyan hibákat javított, amiket zero-click támadásokra is ki lehetett használni first appeared on Nemzeti Kibervédelmi Intézet.

Security updates have been issued by Debian (apr-util, freeradius, mono, nodejs, php7.3, php7.4, and python-cryptography), Fedora (epiphany, haproxy, and podman), SUSE (chromium, libraw, php7, php74, python-pip, and rubygem-activerecord-4_2), and Ubuntu (apr, clamav, curl, intel-microcode, nss, openvswitch, webkit2gtk, and zoneminder).

We all know the OpenBSD is lead from Canada, but what is the status in that country by and large?

Bringing up the subject, Katie McMillan wrote in, saying

I am looking for Canadian OpenBSD contributors for a Q&A, and they haven't been easy to find. You would think that they would be, considering that the person who started the project is from Canada, but it hasn't been. Does this mean that OpenBSD is dead in Canada?

(more after the fold)

Read more…

The 6.2.1, 6.1.14, 5.15.96 5.10.170, 5.4.233, 4.19.274, and 4.14.307 stable kernel updates have all been released; each contains another set of important fixes.

Developers who build distributions often (but not always) put considerable effort into backward compatibility, ensuring, for example, that a program built for one release will continue to run on later releases. Forward compatibility, where it is possible to move a program (or other artifact) from a more recent release to an older one, can be less of a concern, but it still tends to be seen as something that is better to not break if possible. So it is not surprising that an issue affecting the forward-compatibility of ext4 filesystems built for the upcoming Debian 12 ("bookworm") release has generated a fair amount of discussion, even if the number of affected users is likely to be small.

Security updates have been issued by Debian (binwalk, chromium, curl, emacs, frr, git, libgit2, and tiff), Fedora (qt5-qtbase), SUSE (c-ares, kernel, openssl-1_1-livepatches, pesign, poppler, rubygem-activerecord-5_1, and webkit2gtk3), and Ubuntu (linux-aws).

Version 0.84 of Game of Trees has been released (and the port updated).

Read more…

As of this writing, 5,776 non-merge changesets have been pulled into the mainline kernel for the 6.3 release; that is a bit less than half of the work that was waiting in linux-next before the merge window opened. This merge window is thus well underway, but far from complete. Quite a bit of significant work has been pulled so far; read on to see what entered the kernel in the first half of the 6.3 merge window.

The group working on adding keyword generics to the Rust language is foreshadowing what it plans to propose:

A main driver of the keywords generics initiative has been our desire to make the different modifier keywords in Rust feel consistent with one another. Both the const WG and the async WG were thinking about introducing keyword-traits at the same time, and we figured we should probably start talking with each other to make sure that what we were going to introduce felt like it was part of the same language - and could be extended to support more keywords in the future.

Security updates have been issued by CentOS (firefox and thunderbird), Debian (asterisk, git, mariadb-10.3, node-url-parse, python-cryptography, and sofia-sip), Fedora (c-ares, golang-github-need-being-tree, golang-helm-3, golang-oras, golang-oras-1, and golang-oras-2), Oracle (httpd:2.4, kernel, php:8.0, python-setuptools, python3, samba, systemd, tar, and webkit2gtk3), Red Hat (webkit2gtk3), SUSE (phpMyAdmin, poppler, and postgresql12), and Ubuntu (dcmtk and linux-hwe).

Belgiumban egy új, sebezhetőségek bejelentésére vonatkozó keretrendszer lépett életbe, amely lehetőséget nyújt a kiberbiztonsági szakemberek számára, hogy legálisan jelenthessék az általuk talált szoftver- és hardverhibákat a szervezeteknek, valamint a kormánynak.

The post Belgiumban új keretrendszer jelent meg a biztonsági sebezhetőségekre vonatkozóan first appeared on Nemzeti Kibervédelmi Intézet.

The LWN.net Weekly Edition for February 23, 2023 is available.

The Rust community has been working to reform its governance model; that work is now being presented as a draft document describing how that model will work.

This RFC establishes a Leadership Council as the successor of the core team and the new governance structure through which Rust Project members collectively confer the authority to ensure successful operation of the Project. The Leadership Council delegates much of this authority to teams (which includes subteams, working groups, etc.) who autonomously make decisions concerning their purviews. However, the Council retains some decision-making authority, outlined and delimited by this RFC.

As we have seen in earlier articles, the packaging landscape for Python is fragmented and complex, though users of the language have been clamoring for some kind of unification for a decade or more at this point. The developers behind pip and other packaging tools would like to find a way to satisfy this wish from Python-language users and developers, thus they have been discussing possible solutions with increasing urgency, it seems, of late. In order to do that, though, it is important to understand what specific items—and types of Python users—to target.