lwn.net

warning: Creating default object from empty value in /var/www/home/chantra/debuntu.org/drupal-6.19/modules/taxonomy/taxonomy.pages.inc on line 34.

Tuesday's security updates

Debian has updated kernel (multiple vulnerabilities).

Fedora has updated drupal6 (F20; F19: multiple vulnerabilities) and drupal7 (F20; F19: multiple vulnerabilities).

Mandriva has updated nss (BS1.0: code execution).

Red Hat has updated

Android crypto blunder exposes users to highly privileged malware (ars technica)

Ars technica reports
on a newly disclosed Android vulnerability. It seems that some apps are
hard-coded into the system as having special privileges. "According
to Jeff Forristal, CTO of Bluebox Security, Android fails to verify the
chain of certificates used to certify an app belongs to this elite class of
super privileged programs.

An Indiegogo campaign for the Ottawa Linux Symposium

Andrew Hutton, the organizer of the Ottawa Linux Symposium, has put
together an
Indiegogo campaign
to try to raise funds for this event, which has
fallen on hard times in recent years. "When I admitted that this
year would likely be the last OLS many people expressed a desire to do
something to help. This crowdfunding campaign is the best way I could
think of to reach out and offer the community a way to help."

Chris Beard Named CEO of Mozilla

Mitchell Baker announced
that Chris Beard has been appointed CEO of Mozilla Corp. "Over the years, Chris has led many of Mozilla’s most innovative projects. We have relied on his judgment and advice for nearly a decade. Chris has a clear vision of how to take Mozilla’s mission and turn it into industry-changing products and ideas."

Stable kernel updates

Greg KH has released stable kernels 3.15.7,
3.14.14, 3.10.50, and 3.4.100. All contain important fixes
throughout the tree.

Security advisories for Monday

Debian has updated cups (privilege escalation) and modsecurity-apache (rules bypass).

Fedora has updated audacious-plugins (F20: denial of service), cinnamon (F20: denial of service), cinnamon-control-center (F20: denial of
service), cinnamon-settings-daemon (F20:
denial of service), cobbler (

Kernel prepatch 3.16-rc7

Linus has released 3.16-rc7. "We
obviously *do* have various real fixes in here, but none of them look all
that special or worrisome. And rc7 is finally noticeable smaller than
previous rc's, so we clearly are calming down. So unlike my early worries,
this might well be the last rc, we'll see how next week
looks/feels."

The first stable CoreOS release

The CoreOS developers have announced the release of
version 367.1.0 of the CoreOS distribution; this is the first version
deemed to be stable and ready for production. "Please note: The
stable release is not including etcd and fleet as stable, this release is
only targeted at the base OS and Docker 1.0. etcd/fleet stable support will
be in subsequent releases."
LWN looked at CoreOS last April.

Interview with Nathan Willis, GUADEC Keynote Speaker (GNOME News)

LWN editor Nathan Willis is giving a keynote talk at the upcoming GUADEC (GNOME Users and Developers European Conference) and was interviewed by GNOME News. Willis's talk is titled "Should We Teach The Robot To Kill" and will look at free software and the automotive industry.

Kügler: Plasma’s Road to Wayland

On his blog, Sebastian Kügler looks at what's left to be done for KDE's Plasma desktop to support Wayland. He discusses why the project cares about Wayland, what it means to support Wayland, the current status, the strategy for further work, and how interested folks can get involved.
"One of the important topics which we have (kind of) excluded from Plasma’s recent 5.0 release is support for Wayland.

Syndicate content