Hírolvasó

Security updates have been issued by Debian (mercurial and opensaml), Fedora (augeas, mingw-libxslt, and nodejs-nodemon), Mageia (chromium-browser-stable), Red Hat (grafana, kernel, kernel-rt, opentelemetry-collector, and podman), SUSE (apache-commons-vfs2, python3, and python36), and Ubuntu (ghostscript, linux, linux-aws, linux-azure, linux-gcp, linux-gke, linux-gkeop, linux-ibm, linux-intel-iotg, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux-raspi, linux, linux-aws, linux-azure, linux-gcp, linux-hwe-6.11, linux-oracle, linux-realtime, linux, linux-aws, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oracle, linux-oracle-6.8, linux-aws-5.15, linux-kvm, linux-azure, linux-ibm, linux-lowlatency, linux-lowlatency-hwe-6.11, linux-oem-6.11, linux-oem-6.8, linux-realtime, smarty, and snakeyaml).

Tesztüzemben már zajlik a reklámmentes videónézést kínáló linkek megosztása lehetősége.

Dedikált hírfolyam érkezik a barátok tartalmaival.

Az Intel ex-vezérigazgatója szerint Amerika sosem lesz újra félvezetőipari világelső pusztán a gyárépítésektől.

A Siemens maga árulhatta el, hogy jogtalanul használhatott több ezer példányt a VMWare szoftverekből.

Már nem elég zárkózott zseninek lenni, aki egyedül old meg problémákat.

A magyar hatóság elnöke szerint a Bizottság képtelen változtatni az egyenlőtlen helyzeten, miközben a DSA kizárja a hatékony tagállami fellépést.

"az Európai Bizottság a jelek szerint nem hajlandó kiadni a politikai aktivistákkal kötött szerződések listáját" trey 2025. 03. 28., p – 08:44

Ubuntu 23.10 and 24.04 LTS introduced a feature using AppArmor to restrict access to user namespaces. Qualys has reported three ways to bypass AppArmor's restrictions and enable local users to gain full administrative capabilities within a user namespace. Ubuntu has followed up with a post that explains the namespace-restriction feature in detail, and says these bypasses do not constitute security vulnerabilities.

While a superficial observation of the application of user namespaces may indicate privileged (root level) access, this is a fictitious state that is operating as expected, with access control still mapped to the real (root namespace) user's permissions. As such, these bypasses do not enable more access than what the default Linux kernel unprivileged user namespace feature allows in most Linux distributions. They do, however, demonstrate limitations that we are looking to address in order to strengthen existing protections against as-of-yet-unknown Linux kernel vulnerabilities.

LWN covered Ubuntu 24.04 LTS last May.

One recurring criticism of Rust has been that the language has no official specification. This is a barrier to adoption in some safety-conscious organizations, as well as to writing alternate language implementations. Now, the Rust project has announced that it will be adopting the Ferrocene Language Specification (FLS) developed by Ferrous Systems and maintaining it as part of the core project. While this may not satisfy die-hard standardization-process enthusiasts, it's a step toward removing another barrier to using Rust in safety-critical systems.

It's in that light that we're pleased to announce that we'll be adopting the FLS into the Rust Project as part of our ongoing specification efforts. This adoption is being made possible by the gracious donation of the FLS by Ferrous Systems. We're grateful to them for the work they've done in assembling the FLS, in making it fit for qualification purposes, in promoting its use and the use of Rust generally in safety-critical industries, and now, for working with us to take the next step and to bring the FLS into the Project.

Arthur Cohen has posted a massive series of patches in four parts (part 1, part 2, part 3, part 4) upstreaming all of the recent work on the GCC Rust front end. These changes include the Polonius borrow checker, the foreign-function interface, inline assembly support, if-let statement handling, multiple built-in derive macros, for loops, and more.

"arany-rolexxel parádézol te takony hülyegyerek" trey 2025. 03. 27., cs – 16:52

Még a tapasztalt biztonsági szakértők sem teljesen védettek a kiberbűnözők ellen, egy támadás most a Have I Been Pwned tulajdonosánál is betalált.

The 2024 Linux Storage, Filesystem, Memory-Management, and BPF Summit included a tense session on the use of Rust code in the kernel's filesystem layer. The Rust topic returned in 2025 in a session run by Andreas Hindborg, with a scope that also covered the storage and memory-management layers. A lot of progress has been made, and the discussion was less adversarial this year, but there are still process issues that need to be worked out.

A meetingeken egyre több problémát okoz ugyanis, ha a résztvevők bár folyékonyan beszélik az angolt, mégsem értik meg őket.

Security updates have been issued by Arch Linux (exim), Debian (exim4, ghostscript, and libcap2), Red Hat (container-tools:rhel8), SUSE (apache-commons-vfs2, argocd-cli, azure-cli-core, buildah, chromedriver, docker-stable, ed25519-java, kernel, kubernetes1.29-apiserver, kubernetes1.30-apiserver, kubernetes1.32-apiserver, libmbedcrypto7, microcode_ctl, php7, podman, proftpd, tomcat10, and webkit2gtk3), and Ubuntu (containerd, exim4, mariadb, opensaml, and org-mode).

Akamai has sent out a press release saying that it is now hosting the kernel.org repositories.

The Linux kernel is massive — approximately 28 million lines of code. Since 2005, more than 13,500 developers from more than 1,300 different companies have contributed to the Linux kernel. Additionally, there are many kernel versions, and developers update the code constantly, distributing that code to developers who are working on various distributions of Linux. Akamai now delivers the infrastructure that these developers and their users rely on, at no cost, supporting the Git environments developers use to access kernel sources quickly, regardless of where they're based.

Az OpenAI bevallása szerint az eszköz a vártnál nagyobb érdeklődést kapott.

Egy ideig biztosan nem fog enyhülni a feszültség a két üzleti partner közt: világszerte trösztellenes kampányt indított a Qualcomm az Arm Holdings ellen, hogy megtartsa előnyet a félvezetők piacán.

A későbbiekben egy fejlettebb AI-hangasszisztenst kaphat a navigációs-közösségi app.