Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 4 hours 38 min ago

McIntyre: Bootstrapping arm64 in Debian

Wednesday 7th of January 2015 12:05:23 AM
Steve McIntyre provides a progress report on the status of the arm64 port for Debian 8 "Jessie". "arm64 is officially a release architecture for Jessie, aka Debian version 8. That's taken a lot of manual porting and development effort over the last couple of years, and it's also taken a lot of CPU time - there are ~21,000 source packages in Debian Jessie! As is often the case for a brand new architecture like arm64 (or AArch64, to use ARM's own terminology), hardware can be really difficult to get hold of. In time this will cease to be an issue as hardware becomes more commoditised, but in Debian we really struggled to get hold of equipment for a very long time during the early part of the port."

Tuesday's security updates

Tuesday 6th of January 2015 07:14:37 PM

CentOS has updated libvirt (C7: information disclosure).

Debian has updated libevent (denial of service).

Fedora has updated bind (F21; F19: denial of service), cpio (F20: denial of service), jasper (F21; F20; F19: three code execution vulnerabilities), python-pip (F21: denial of service), python3 (F19: two vulnerabilities), and roundcubemail (F21; F20: cross-site scripting).

Mageia has updated libvirt (denial of service), openvas-manager (sql injection), privoxy (two vulnerabilities), and python-yaml (denial of service).

Oracle has updated libvirt (OL7: information disclosure).

Red Hat has updated kernel (RHEL4: privilege escalation) and libvirt (RHEL7: information disclosure).

Scientific Linux has updated libvirt (SL7: information disclosure).

SUSE has updated bind (SLE11 SP3: denial of service), mutt (SLE12: denial of service), and suseRegister (SLE11 SP3: man-in-the-middle attack).

Ubuntu has updated cgmanager (14.10, 14.04: information disclosure).

CyanogenMod CM12 nightly builds available

Tuesday 6th of January 2015 03:22:35 PM
For those of you who have been waiting for a CyanogenMod release based on Android "Lollipop," the first nightly builds are now available. "We would like to note that at this point we consider ourselves 85% complete for our initial CM12 M release. We’ll spend the remainder of this month bringing up additional devices and finishing up the features you’ve come to love from CM11 – implementing them into the new Material UI."

Kernel prepatch 3.19-rc3

Tuesday 6th of January 2015 02:12:26 AM
The 3.19-rc3 prepatch is out for testing. "It's a day delayed - not because of any particular development issues, but simply because I was tiling a bathroom yesterday. But rc3 is out there now, and things have stayed reasonably calm. I really hope that implies that 3.19 is looking good, but it's equally likely that it's just that people are still recovering from the holiday season."

Cuthbertson: NixOS and Stateless Deployment

Monday 5th of January 2015 09:03:17 PM
Here is a lengthy post from Tim Cuthbertson on the virtues of building servers with NixOS. "It should hopefully be obvious at this point why NixOS is better than puppet: Both are declarative, but puppet is impure and non-exhaustive - when you apply a config, puppet compares everything specified against the current state of the system. Everything not specified is left alone, which means you’re only specifying a very tiny subset of your system. With NixOS, if something is not specified, it is not present."

Security advisories for Monday

Monday 5th of January 2015 05:47:46 PM

Debian has updated strongswan (denial of service).

Debian-LTS has updated polarssl (denial of service), pyyaml (denial of service), and sox (code execution).

Fedora has updated claws-mail (F19: man-in-the-middle attack), claws-mail-plugins (F19: man-in-the-middle attack), curl (F19: information leak), denyhosts (F20; F19: denial of service), ettercap (F21; F20; F19: multiple vulnerabilities), freetype (F20: buffer overflow), kernel (F19: multiple vulnerabilities), libetpan (F19: man-in-the-middle attack), libssh (F21; F20; F19: denial of service), mailx (F21; F20; F19: command execution), mingw-pcre (F21; F20; F19: information leak), openjpeg (F19: multiple vulnerabilities), python-django-horizon (F21: denial of service), pyxdg (F20: symlink attacks), subversion (F21; F20: denial of service), and unrtf (F21: code execution).

Mandriva has updated c-icap (denial of service), ntp (multiple code execution vulnerabilities), pcre (information leak), php (code execution), and subversion (denial of service).

Ubuntu has updated strongswan (14.10, 14.04: denial of service).

[$] OpenMediaVault: a distribution for NAS boxes

Friday 2nd of January 2015 10:44:03 PM
The Linux community has no shortage of general-purpose distributions that can be made to serve almost any need. But many Linux deployments are not on general-purpose machines; often the owner has a more specific objective in mind. One such objective is to put together a network-attached storage (NAS) box. A general-purpose distribution can easily be used in such a setting, but there are also several specialized distributions that make the task easier. This article, the first in a series, will look at OpenMediaVault, a Debian-based NAS-oriented distribution.

Friday's security updates

Friday 2nd of January 2015 03:09:33 PM

Fedora has updated glpi (F19; F20, F21: SQL injection), mingw-binutils (F20; F21: multiple vulnerabilities), mingw-curl (F20; F21: multiple vulnerabilities), mingw-dbus (F20; F21: multiple vulnerabilities), mingw-freetype (F20; F21: code execution), mingw-libjpeg-turbo (F20; F21: denial of service), mingw-libxml2 (F20; F21: denial of service), mingw-openssl (F20; F21: multiple vulnerabilities), and ntp (F19; multiple vulnerabilities).

openSUSE has updated libvirt (13.1: denial of service; 13.2: multiple vulnerabilities), ruby2.1 (13.2: multiple vulnerabilities), and ruby20 (13.1: multiple vulnerabilities).

Purism Librem 15 (Linux Journal)

Wednesday 31st of December 2014 08:37:32 PM
Linux Journal looks at the Purism Project and the Purism Librem 15 laptop. "The Librem 15 uses the Trisquel distribution which wasn't a distribution I had heard of before now. Basically it's a Debian-based distribution that not only removes the non-free repository by default, but it has no repositories at all that provide non-free software. It was picked for the Librem 15 because it is on the list of official FSF-approved GNU/Linux distributions and since that laptop is aiming to get the FSF stamp of approval, that decision makes sense. Since it's a Debian-based distribution, the desktop environment and most of the available software shouldn't seem too different for anyone who has used a Debian-based distribution before. Of course, if you do want to use any proprietary software (like certain multimedia codecs or official Flash plugins) you will have to hunt for those on your own. Then again, the whole point of this laptop is to avoid any software like that."

Ringing in 2015 with 40 Linux-friendly hacker SBCs (LinuxGizmos)

Wednesday 31st of December 2014 06:41:39 PM
For anybody looking for a single-board computer to experiment with: LinuxGizmos has a survey of 40 of them. "Over the last year we’ve seen some new quad- and octa-core boards with more memory, built-in WiFi, and other extras. Yet, most of the growth has been in the under $50 segment where the Raspberry Pi and BeagleBone reign. Based on specs alone, standouts in price/performance that have broken the $40 barrier include the new Odroid-C1 and pcDuino3 Nano, but other good deals abound here as well."

Security advisories for Wednesday

Wednesday 31st of December 2014 05:41:48 PM

Debian has updated php5 (code execution).

Gentoo has updated mit-krb5 (multiple vulnerabilities).

Mageia has updated castor (XML injection), couchdb (cross-site scripting), cxf (two vulnerabilities), plasma-nm (man-in-the-middle attack), sox (code execution), unzip (code execution), and xml-security (denial of service).

openSUSE has updated kernel (11.4: three vulnerabilities), php5 (11.4: three vulnerabilities), and python (11.4: multiple vulnerabilities).

Oracle has updated docker (OL7; OL6: multiple vulnerabilities).

The Darkmail Internet Mail Environment

Wednesday 31st of December 2014 03:37:23 PM
From Phillip Zimmermann and Ladar Levison (among others) comes the Darkmail Internet Mail Environment, an attempt to replace SMTP with a more secure protocol. It has a 108-page specification [PDF] for those wanting details, and code is available on GitHub. "In addition to the usual protection of content, a design goal for secure email must be to limit what meta-information is disclosed so that a handling agent only has access to the information it needs to see. The Dark Internet Mail Environment (DIME) achieves this with a core model having multiple layers of key management and multiple layers of message encryption."

Tuesday's security updates

Tuesday 30th of December 2014 05:09:11 PM

Debian has updated polarssl (denial of service) and pyyaml (denial of service).

Debian-LTS has updated ettercap (denial of service).

More in Tux Machines

Subsonic 5.1 Media Streamer Released, Install In Ubuntu/Linux Mint


Subsonic 5.1 Released, Install In Ubuntu/Linux Mint

Subsonic is a nice free, multi-platform web basedmedia streamer, make large collection of music handling easy. You can share music with your frineds or stream your favorite music anywhere. You can stream to multiple players simultaneously.
 
 
 
 

Read at LinuxAndUbuntu

GParted 0.21 Brings ReFS Detection, EXT4 For RHEL5, Reiser4 For Linux 3.x

Version 0.21 of the widely-used, GUI-based GNOME Partition Editor is now available. GParted 0.21 key changes according to its developers include a fix for a off by one sector error with GParted's internal block copy, support for EXT4 file-systems on RHEL/CentOS 5.x, and removing unnecessary duplicate actions when resizing a partition. Read more

Ubuntu Touch Apps Running in Unity Desktop – Video

Unity 8 for Ubuntu is coming along and Mir is also making good progress. One of the byproduct of all these improvements is that some of the apps that are designed for the Ubuntu Touch are also working on the Ubuntu desktop, with very little help. Read more