Navigation
User login
Syndicate
Popular content
Today's:
- CVE-2008-2211 (maian_guestbook)
- Google Demos Linux Running on Hacked Glass
- VirtualBox: Creating Backups & Clones Of Running Virtual Machines (No Downtime) With LVM Snapshots
- Using memcached With Your vBulletin Forum To Reduce Server Load (Debian Etch)
- OSCON 2008 presentations, videos posted (Linux-Watch)
lwn.net
Security updates for Tuesday
Debian has updated strongswan
(authentication bypass).
Fedora has updated mediawiki (F18; F17:
multiple vulnerabilities) and qemu (host
file disclosure).
Mandriva has updated apache-mod_security (file disclosure, denial
of service), krb5 (ES 5.0;
Wayland development plans posted
Wayland developer Kristian Høgsberg has sent out a message detailing his
plans for Wayland 1.2 and beyond. "What I'd like to do is to release a new major version
every quarter. So we'll be aiming for 1.2 end of June, 1.3 end of
September and so on. The motivation for this is that we have a lot of
new features and new protocol in the works and a time-based release
schedule is a good way to flush out those features.
Three Outreach Program for Women kernel internships available
The Linux Foundation has announced
that it will be supporting three kernel internships for the upcoming
Outreach Program for Women cycle. "The official deadline for
applying to OPW is May 1st. However, the kernel project joined late, so
that deadline is flexible.
Output redirection vulnerabilities in recent kernels
Andy Lutomirski has posted a description of a set of security
vulnerabilities fixed in recent stable updates. One is a fairly severe
user namespace vulnerability that appeared in the 3.8 kernel; another dates
back to 2.6.36. Exploit code is included.
The 3.9 kernel is out
Linus has announced the release of the 3.9
kernel. "Anyway. Whatever the reason, this week has been very quiet, which
makes me much more comfortable doing the final 3.9 release, so I guess
the last -rc8 ended up working.
GDB 7.6 released
Version 7.6 of the GDB debugger is out. New features include 64-bit ARM
support, an update of the C++ ABI to the GNU v3 version (" This has
been the default for GCC since November 2000"), some Python
scripting improvements, a number of new options, and more.
Friday's security updates
CentOS has updated mysql (C6;
multiple vulnerabilities).
Fedora has updated qemu (F18;
host file disclosure).
Mandriva has updated curl
(session hijacking) and subversion (ES5, BS1;
multiple vulnerabilities).
openSUSE has updated icedtea-web (multiple vulnerabilities).
Development Update, Schedule, and Funds (OpenShot blog)
Hot on the heels of a successful Kickstarter campaign, the OpenShot video editor project has announced its schedule (still targeting December 2013, more detailed plan coming soon) and a switch to Qt 5. "One of the biggest decisions we have made so far is to switch the user interface toolkit that OpenShot uses from GTK+ to Qt. We have carefully considered our options, and our team believes it is the only reasonable path forward.
