Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 1 hour 5 min ago

Linux Kernel BPF JIT Spraying (grsecurity forums)

Tuesday 3rd of May 2016 05:33:02 PM
Over at the grsecurity forums, Brad Spengler writes about a recently released proof of concept attack on the kernel using JIT spraying. "What happened next was the hardening of the BPF interpreter in grsecurity to prevent such future abuse: the previously-abused arbitrary read/write from the interpreter was now restricted only to the interpreter buffer itself, and the previous warn on invalid BPF instructions was turned into a BUG() to terminate execution of the exploit. I also then developed GRKERNSEC_KSTACKOVERFLOW which killed off the stack overflow class of vulns on x64. A short time later, there was work being done upstream to extend the use of BPF in the kernel. This new version was called eBPF and it came with a vastly expanded JIT. I immediately saw problems with this new version and noticed that it would be much more difficult to protect -- verification was being done against a writable buffer and then translated into another writable buffer in the extended BPF language. This new language allowed not just arbitrary read and write, but arbitrary function calling." The protections in the grsecurity kernel will thus prevent this attack. In addition, the newly released RAP feature for grsecurity, which targets the elimination of return-oriented programming (ROP) vulnerabilities in the kernel, will also ensure that "the fear of JIT spraying goes away completely", he said.

Security advisories for Tuesday

Tuesday 3rd of May 2016 04:08:42 PM

Debian-LTS has updated openjdk-7 (multiple vulnerabilities) and smarty3 (code execution).

Fedora has updated php (F23: multiple vulnerabilities).

Gentoo has updated git (multiple vulnerabilities).

Oracle has updated mercurial (OL7: two vulnerabilities).

Scientific Linux has updated mercurial (SL7: two vulnerabilities).

Slackware has updated mercurial (code execution).

Ubuntu has updated libtasn1-3, libtasn1-6 (15.10, 14.04, 12.04: denial of service), libtasn1-6 (16.04: denial of service), openssl (multiple vulnerabilities), poppler (15.10, 14.04, 12.04: multiple vulnerabilities), and firefox (12.04: denial of service).

May Android security bulletin

Tuesday 3rd of May 2016 06:44:41 AM
The Android security bulletin for May is available. It lists 40 different CVE numbers addressed by the May over-the-air update; the bulk of those are at a severity level of "high" or above. "Partners were notified about the issues described in the bulletin on April 04, 2016 or earlier. Source code patches for these issues will be released to the Android Open Source Project (AOSP) repository over the next 48 hours. We will revise this bulletin with the AOSP links when they are available. The most severe of these issues is a Critical security vulnerability that could enable remote code execution on an affected device through multiple methods such as email, web browsing, and MMS when processing media files."

Intl. Day Against DRM is Tuesday

Monday 2nd of May 2016 09:36:27 PM
The International Day Against DRM is May 3. "Participate in person at one of the planned events, or join us Tuesday on dayagainstdrm.org for ways to take action against DRM. There will also be a list of discounted ebook offerings from stores participating in the Day."

Security updates for Monday

Monday 2nd of May 2016 06:03:30 PM

Arch Linux has updated firefox (multiple vulnerabilities).

CentOS has updated mercurial (C7: two vulnerabilities).

Debian has updated botan1.10 (multiple vulnerabilities), chromium-browser (multiple vulnerabilities), poppler (code execution), and tardiff (two vulnerabilities).

Debian-LTS has updated botan1.10 (multiple vulnerabilities), gdk-pixbuf (two vulnerabilities), mysql-5.5 (multiple vulnerabilities), poppler (code execution), and subversion (two vulnerabilities).

Fedora has updated ansible (F23; F22: code execution), firefox (F23: multiple vulnerabilities), gd (F23: code execution), openvas-cli (F23: cross-site scripting), openvas-gsa (F23: cross-site scripting), openvas-libraries (F23: cross-site scripting), openvas-manager (F23: cross-site scripting), openvas-scanner (F23: cross-site scripting), roundcubemail (F23; F22: multiple vulnerabilities), and xen (F23; F22: multiple vulnerabilities).

Mageia has updated chromium-browser-stable (multiple vulnerabilities), firefox (multiple vulnerabilities), pgpdump (denial of service), php (multiple vulnerabilities), php-ZendFramework (multiple vulnerabilities), and roundcubemail (three vulnerabilities).

Red Hat has updated chromium-browser (RHEL6: multiple vulnerabilities), java-1.6.0-ibm (RHEL5,6: multiple vulnerabilities), java-1.7.0-ibm (RHEL5: multiple vulnerabilities), java-1.7.1-ibm (RHEL7: multiple vulnerabilities), mercurial (RHEL7: two vulnerabilities), and rh-mysql56-mysql (RHSCL: multiple vulnerabilities).

Slackware has updated ntp (multiple vulnerabilities), php (multiple vulnerabilities), and subversion (two vulnerabilities).

Ubuntu has updated ubuntu-core-launcher (16.04: code execution).

A guide to inline assembly code in GCC

Monday 2nd of May 2016 07:59:38 AM
The "linux-insides" series of articles has gained an overview of inline assembly in GCC. "I've decided to write this to consolidate my knowledge related to inline assembly here. As inline assembly statements are quite common in the Linux kernel and we may see them in linux-insides parts sometimes, I thought that it would be useful if we would have a special part which contains descriptions of the more important aspects of inline assembly. Of course you may find comprehensive information about inline assembly in the official documentation, but I like the rules all in one place."

Kernel prepatch 4.6-rc6

Monday 2nd of May 2016 07:41:40 AM
The 4.6-rc6 kernel prepatch is out. Linus says: "Things continue to be fairly calm, although I'm pretty sure I'll still do an rc7 in this series." As of this prepatch the code name has been changed to "Charred Weasel."

Devuan Jessie beta released

Saturday 30th of April 2016 01:45:10 PM
The Devuan community has finally gotten a beta release out for testing. "Debian GNU+Linux [sic] is a fork of Debian without systemd, on its way to become much more than that. This Beta release marks an important milestone towards the sustainability and the continuation of Devuan as an universal base distribution."

More in Tux Machines

FOSS in 3D Printing

  • Open source wifi enabled 3D printer controller Franklin speeds up with new release
    3D printing hit the mainstream a few years ago thanks in part to the open-source 3D printer market. The origins of this transition had to do with expiring patents held by the traditionally held commercial 3D printing companies. Since then, several small businesses have sprung up around the emerging low-cost 3D printer market. Some of these companies embraced the open-source mentality, while others are seeking shelter with patents.
  • Hackaday Prize Entry: Open-Source Myoelectric Hand Prosthesis
    Hands can grab things, build things, communicate, and we control them intuitively with nothing more than a thought. To those who miss a hand, a prosthesis can be a life-changing tool for carrying out daily tasks. We are delighted to see that [Alvaro Villoslada] joined the Hackaday Prize with his contribution to advanced prosthesis technology: Dextra, the open-source myoelectric hand prosthesis.
  • BCN3D Technologies releases open source files for BCN3D Sigma 3D printer
    As our readers will know, an important part of the 3D printing community is the idea of accessibility. Of course, it is more than just an idea, as everyday makers around the world share their 3D designs and models for free, and even 3D printing companies exercise an open-source philosophy with DIY 3D printers and accessible models. Recently, Barcelona based 3D printer developer BCN3D Technologies decided to further embrace the additive manufacturing open-source philosophy with their latest initiative, Open Source 360º. As part of the initiative, the company has announced that it will share all of its engineering, design, and fabrication information used in the manufacturing of their flagship product, the BCN3D Sigma 3D printer.
  • Shellmo: Aquatic 3D printed robot for fun and education
    Recently I came across a very interesting open hardware project called Shellmo. What caught my eye was that it's a 3D printed crustacean that seems to have no apparent real world use, though with a little creativity I can see educational implications. Shellmo is a unique, almost cartoon-like creatures that could captivate the imagination of children while at the same time affording them an opportunity to 3D print their own robot. With the current emphasis on STEM in education, Shellmo appears to be the kind of project that would stimulate student interest.

LibreOffice Liberation

  • Sun, sea, and open source: How Spain's Balearic islands are trying to turn into a tech paradise
    However, work remains to be done, especially on civil servants' desktops. "We started by replacing MSN Office", explains Villoslada. "Thanks to free office suite LibreOffice 5, we may overcome compatibility problems with documents coming in from different versions of MSN Office. We already have 1,000 Office licenses which are not necessary anymore, and we plan not to renew over 5,500 licenses purchased in 2007", he adds.
  • The Document Liberation Project: What we do
    While The Document Foundation is best known for LibreOffice, it also backs the Document Liberation Project. But what exactly is that? We’ve made a short video to explain all…

Kali Linux Alternative: BackBox Linux 4.6 Released With Updated Hacking Tools

BackBox Linux, a Kali Linux alternative, is here with its latest version i.e. BackBox Linux 4.6. Based on Ubuntu Linux, this hacking operating system is now available for download with updated hacking tools and Ruby 2.2. Read more

Chromebook and GNU/Linux

  • Turn Your Old Laptop into a Chromebook
    Once the drive is ready with bootable CloudReady, plug it into the target PC and boot the system. It may take a while for the system to boot into Chromium OS. Once booted, you will see the screen shown in Figure 3.
  • Running Linux and Chrome OS Together Using Crouton
    Leo Laporte is a longtime technology commentator and also the host of the show “The Screen Savers,” on the TWiT Netcast Network. In this video he explains how to install Linux on a Chromebook using Crouton, an open source tool developed by Google employee David Schneider.