news.debuntu.org

Commit
b0a873ebb, merged for the 2.6.37 kernel, included an out of bounds
reference bug that went undetected until Tommi Rantala discovered it
with the Trinity fuzzing tool this April.

In Berkeley, California — the birthplace of PostgreSQL — it's spring: plum
and cherry blossoms, courting finches and college students, new plans for
the summer, and the first beta release of the database
system. Every year, the first beta of the next PostgreSQL version comes out
in April or May, for a final release in September. PostgreSQL
9.3 beta 1 was released to the public on May 13th, and contains a
couple dozen new features both for database administrators and application
developers.

Canonical has announced that the Ubuntu kernel team will be providing
stable updates for the 3.8 kernel now that Greg Kroah-Hartman has moved
on. This support will last as long as support for the Ubuntu 13.04
release: through August, 2014. "We welcome any feedback and contribution to this effort. We will be
posting the first review cycle patch set in a week or two.

Ben Hutchings has released stable kernel 3.2.45 with lots of important fixes throughout
the tree.

CentOS has updated httpd (C6;
C5: multiple vulnerabilities).

Fedora has updated php-geshi (F18; F17: multiple vulnerabilities)
and libtiff (F18: multiple vulnerabilities).

Oracle has updated httpd (OL6; OL5:
multiple vulnerabili

Version 1.1 of the "Go" programming language has been released.
The bulk of the work seems to be in performance improvements, but there's a
number of new features as well, including a race detector and an expanded
library. See the release notes
for details.

CentOS has updated hypervkvpd (C5:
denial of service).

Debian has updated xen (multiple
vulnerabilities) and mysql (multiple
vulnerabilities).

Fedora has updated plexus-archiver (F18; F17:
denial of service) and php-sabredav-Sabre_DAV (F18;

The first PostgreSQL 9.3 beta is out for testing. There are plenty of new
features in this release, including writable foreign tables, automatically
updatable VIEWs, lateral joins, indexed regular expression searches,
checksums to detect filesystem-induced data corruption, and more. "In 9.3, PostgreSQL has greatly reduced its requirement for SysV shared
memory, changing to mmap(). This allows easier installation and
configuration of PostgreSQL, but means that we need our users to
rigorously test and ensure that no memory management issues have been
introduced by the change."

Linus has announced the 3.10-rc1 kernel
prepatch and the closure of the merge window for this development cycle.
All told, nearly 12,000 changesets were pulled into the mainline during the
merge window, making it the busiest such ever. See
this article (subscribers only)
for a summary
of changes merged since
last week's merge window update.

The 3.9.2, 3.8.13, 3.4.45, and 3.0.78 stable updates are out with the usual
collection of important fixes. Greg says: "NOTE, this is the LAST
3.8.y kernel release, please move to the 3.9.y kernel series at this time.
It is end-of-life, dead, gone, buried, and put way behind us never to be
spoken of again. Seriously, move on, it's just not worth it
anymore."