lwn.net

warning: Creating default object from empty value in /var/www/home/chantra/debuntu.org/drupal-6.19/modules/taxonomy/taxonomy.pages.inc on line 34.

KDE Plasma 5.0

KDE has announced the
release
of Plasma 5.0. "Plasma 5.0 introduces a new major version of KDE's workspace offering. The new Breeze artwork concept introduces cleaner visuals and improved readability. Central work-flows have been streamlined, while well-known overarching interaction patterns are left intact. Plasma 5.0 improves support for high-DPI displays and ships a converged shell, able to switch between user experiences for different target devices.

Tuesday's security updates

Red Hat has updated ror40-rubygem-activerecord (RHSC1: SQL
injection) and ruby193-rubygem-activerecord
(RHSC1: SQL injection).

SUSE has updated flash-player
(SLED11SP3: multiple vulnerabilities).

Google's "Project Zero"

Google's newly announced
Project Zero is focused on making the net as a whole safer from attackers.
"We're not placing any particular bounds on this project and will
work to improve the security of any software depended upon by large numbers
of people, paying careful attention to the techniques, targets and
motivations of attackers. We'll use standard approaches such as locating
and reporting large numbers of vulnerabilities.

[$] Filesystem notification, part 2: A deeper investigation of inotify

In the first article in this series, we briefly looked at the original Linux filesystem notification API, dnotify, and noted a number of its limitations. We then turned our attention to its successor, inotify, and saw how the design of the newer API addressed various problems with the dnotify API while providing a number of other benefits as well. At first glance, inotify seems to provide a complete solution for the task of creating an application that reliably monitors the state of a filesystem.

Justin Miller on how Mapbox runs like an open source project (Opensource.com)

Opensource.com has been running a series of interviews with OSCON speakers. In this article
Justin Miller, a
developer at Mapbox, talks with
Michael Harrison.

[Michael] Mapbox is "running a business like you would run an open source
project." Can you elaborate on what that means?

[Justin] This is the meat of my talk, but basically, the organization is flat and open.

Security advisories for Monday

Fedora has updated claws-mail
(F20: code execution), claws-mail-plugins
(F20: code execution), docker-io (F20; F19:
privilege escalation), openstack-nova (F20:
privilege escalation), and pnp4nagios (F20; F19: cross-site scripting).

openSUSE ha

Kernel prepatch 3.16-rc5

Linus has sent out the 3.16-rc5 prepatch.
"Things are looking normal, and as usual, I _wish_ there was a bit
less churn going on since it's getting fairly late in the rc cycle, but
honestly, it's not like there is anything that really raises any eyebrows
here."

First Release of LibreSSL Portable Available

OpenBSD Journal is reporting
that the first release of LibreSSL Portable is available for download from
OpenBSD project servers. LibreSSL is the OpenSSL fork
started in April by members of the OpenBSD development community after the
"Heartbleed" vulnerability; the "Portable" version is designed to run
on operating systems other than OpenBSD itself, including Linux.

Friday's security updates

Debian has updated eglibc
(privilege escalation), libav (code
execution), and libxml2 (denial of service).

Fedora has updated ansible (F19; F20:
unspecified vulnerability) and kernel
(F20: multiple vulnerabilities).

Mandriva has updated apache

Day: Sandboxed applications for GNOME

In the first of a two-part series, GNOME contributor Allan Day looks at sandboxed applications for the GNOME desktop. In this installment, he looks at the benefits of application sandboxes from a couple of different angles. "Security and privacy, I think, are core beliefs for Free Software. Users should be able to trust us to have their interests at heart, and should be able to have more faith in our products than proprietary alternatives.

Syndicate content