lwn.net

warning: Creating default object from empty value in /var/www/home/chantra/debuntu.org/drupal-6.19/modules/taxonomy/taxonomy.pages.inc on line 34.

[$] LWN.net Weekly Edition for April 24, 2014

The LWN.net Weekly Edition for April 24, 2014 is available.

Shuttleworth: U talking to me?

Ubuntu's Trusty Tahr has been released and that means it's time for a new
development branch. Mark Shuttleworth has announced the name
of the next Ubuntu release. "So bring your upstanding best to the table – or the forum – or the mailing list – and let’s make something amazing. Something unified and upright, something about which we can be universally proud.

Band Releases Album as a Kernel Module

A band called netcat has released their
latest album as a Linux kernel module. The album "Cycles Per Instruction"
is available from the band's web site, and on github.

Stable kernel 3.13.11

Greg Kroah-Hartman has released stable kernel 3.13.11 with some important fixes. This is
the last 3.13.y release. Please move to 3.14.y now.

[$] The next generation of Python programmers

In a keynote on day two of PyCon
2014
(April 12), Jessica McKellar made an impassioned plea for the
Python community to focus on the "next generation" of Python programmers.
She outlined the programming-education problem that exists in US high
schools (and likely
elsewhere in the world as well), but she also highlighted some concrete
steps the community could take to help fix it. Subscribers can click below
for the full keynote coverage.

Security advisories for Wednesday

CentOS has updated qemu-kvm (C6: multiple vulnerabilities).

Debian has updated openjpeg
(fixes a regression in the previous update).

Fedora has updated httpd (F19:
multiple vulnerabilities), jbigkit (F19:
code execution), and python-django-horizon
(F20: cross-site scripting).

Oracle has updated

OpenSSL code beyond repair, claims creator of “LibreSSL” fork (Ars Technica)

Ars Technica takes
a look
at the LibreSSL fork of
OpenSSL created by the OpenBSD project. "The decision to fork OpenSSL is bound to be controversial given that OpenSSL powers hundreds of thousands of Web servers. When asked why he wanted to start over instead of helping to make OpenSSL better, de Raadt said the existing code is too much of a mess.

"Our group removed half of the OpenSSL source tree in a week.

Tuesday's security advisories

Debian has updated icedove (multiple vulnerabilities).

openSUSE has updated squid (13.1,
12.3: denial of service), flash-player
(13.1, 12.3: multiple vulnerabilities), json-c (13.1, 12.3: denial of service), openssl (13.1, 12.3: information disclosure),
and otrs (13.1, 12.3: cross-site scripting).

GCC 4.9.0 released

Version 4.9.0 of the GNU Compiler Collection is out. "GCC 4.9.0 is a
major release containing substantial new functionality not available in GCC
4.8.x or previous GCC releases." The list of new features is indeed
long; see the 4.9.0
release page
for lots more information.

Faure: Freedesktop Summit 2014 Report

David Faure has a report
on the Freedesktop Summit
, which was held recently in Nuremberg. "The meeting also produced an agreement on the future of startup notification in the Wayland world. A protocol based on broadcast of D-Bus signals will be used instead of the current approach with X client messages. This approach is expected to integrate nicely with future frameworks for sandboxed applications.

Syndicate content