Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 1 hour 17 min ago

Secure, Monitor and Control your data with Nextcloud 10

6 hours 55 min ago
Nextcloud 10 has been released with new features for system administrators to control and direct the flow of data between users on a Nextcloud server. "Rule based file tagging and responding to these tags as well as other triggers like physical location, user group, file properties and request type enables administrators to specifically deny access to, convert, delete or retain data following business or legal requirements. Monitoring, security, performance and usability improvements complement this release, enabling larger and more efficient Nextcloud installations."

The long-awaited Maru OS source release

8 hours 23 min ago
The Maru OS handset distribution that includes an Ubuntu desktop (reviewed here in April) is finally available in source form. "If you're interested in contributing in general, please check out the project's GitHub (https://github.com/maruos/maruos), get up and running with the developer guide (https://github.com/maruos/maruos/wiki/Developer-Guide), and join the developer group (https://groups.google.com/forum/#!forum/maru-os-dev)"

Security advisories for Friday

9 hours 24 min ago

Arch Linux has updated mediawiki (multiple vulnerabilities).

CentOS has updated java-1.6.0-openjdk (C7; C6; C5: multiple vulnerabilities).

Debian has updated flex (code execution), imagemagick (multiple vulnerabilities), quagga (two vulnerabilities), and rails (cross-site scripting).

Fedora has updated gnupg (F24: flawed random number generation), openvpn (F24: information disclosure), and rubygem-actionview (F24; F23: cross-site scripting).

Red Hat has updated java-1.6.0-openjdk (RHEL5,6,7: multiple vulnerabilities).

Scientific Linux has updated java-1.6.0-openjdk (SL5,6,7: multiple vulnerabilities).

OpenSSL 1.1.0 released

13 hours 51 min ago
Version 1.1.0 of the OpenSSL TLS library is available. A list of changes can be found on this page; they include a new threading API, a number of new algorithms and the removal of a number of older ones, pipelining (parallel processing) support, extended master secret support, and more.

Rintel: NetworkManager 1.4: with better privacy and easier to use

Thursday 25th of August 2016 08:30:39 PM
Lubomir Rintel takes a look at new features in NetworkManager 1.4. "It is now possible to randomize the MAC address of Ethernet devices to mitigate possibility of tracking. The users can choose between different policies; use a completely random address, or just use different addresses in different networks. For Wi-Fi devices, the same randomization modes are now supported and does no longer require support from wpa-supplicant." Also a newly added API for using configuration snapshots that automatically roll back after a timeout, IPv6 tokenized interface identifiers can be configured, new features in nmcli, and more are covered. (Thanks to Paul Wise)

Thursday's security updates

Thursday 25th of August 2016 04:23:48 PM

Fedora has updated eog (F23: out-of-bounds write).

openSUSE has updated ImageMagick (Leap42.1: three vulnerabilities).

Red Hat has updated qemu-kvm-rhev (RHOSP9: two vulnerabilities) and Red Hat OpenShift Enterprise 2.2.10 (RHOSE: multiple vulnerabilities).

Ubuntu has updated eog (out-of-bounds write), harfbuzz (16.04, 14.04: two vulnerabilities), and libidn (multiple vulnerabilities).

[$] LWN.net Weekly Edition for August 25, 2016

Thursday 25th of August 2016 02:24:03 AM
The LWN.net Weekly Edition for August 25, 2016 is available.

[$] 25 Years of Linux — so far

Wednesday 24th of August 2016 04:26:21 PM
On August 25, 1991, an obscure student in Finland named Linus Benedict Torvalds posted a message to the comp.os.minix Usenet newsgroup saying that he was working on a free operating system as a project to learn about the x86 architecture. He cannot possibly have known that he was launching a project that would change the computing industry in fundamental ways. Twenty-five years later, it is fair to say that none of us foresaw where Linux would go — a lesson that should be taken to heart when trying to imagine where it might go from here.

In Memory of Jonathan “avenj” Portnoy

Wednesday 24th of August 2016 03:52:23 PM
The Gentoo community is mourning the loss of Jonathan Portnoy. "Jon was an active member of the International Gentoo community, almost since its founding in 1999. He was still active until his last day. His passing has struck us deeply and with disbelief. We all remember him as a vivid and enjoyable person, easy to reach out to and energetic in all his endeavors."

Wednesday's security updates

Wednesday 24th of August 2016 02:56:31 PM

CentOS has updated kernel (C6: TCP injection).

Debian-LTS has updated libgcrypt11 (flawed random number generation).

Fedora has updated eog (F24: out-of-bounds write), kernel (F23: use-after-free), mariadb (F23: multiple vulnerabilities), mingw-lcms2 (F24: heap memory leak), postgresql (F23: multiple vulnerabilities), and python (F23: proxy injection).

openSUSE has updated libidn (Leap 42.1: multiple vulnerabilities) and kernel (13.2: multiple vulnerabilities).

Oracle has updated kernel (O6: TCP injection).

Red Hat has updated kernel (RHEL 7.1: multiple vulnerabilities; RHEL6: TCP injection) and qemu-kvm-rhev (RHOSP8: multiple vulnerabilities).

Scientific Linux has updated kernel (SL6: TCP injection).

Slackware has updated gnupg (flawed random number generation), kernel (14.2: TCP injection), and libgcrypt (flawed random number generation).

KDevelop 5.0 released

Wednesday 24th of August 2016 12:31:38 AM

Version 5.0.0 of the KDevelop integrated development environment (IDE) has been released, marking the end of a two-year development cycle. The highlight is a move to Clang for C and C++ support: "The most prominent change certainly is the move away from our own, custom C++ analysis engine. Instead, C and C++ code analysis is now performed by clang." The announcement goes on to describe other benefits of using Clang, such as more accurate diagnostics and suggested fixes for many syntax errors. KDevelop has also been ported to KDE Frameworks 5 and Qt 5, which opens up the possibility of Windows releases down the line.

Tuesday's security updates

Tuesday 23rd of August 2016 02:35:45 PM

Arch Linux has updated libgcrypt (information disclosure).

Fedora has updated kernel (F24: use-after-free vulnerability), pagure (F24: cross-site scripting), and postgresql (F24: multiple vulnerabilities).

Red Hat has updated qemu-kvm-rhev (RHEL7 OSP5; RHEL7 OSP7; RHEL6 OSP5; RHEL7 OSP6: multiple vulnerabilities).

SUSE has updated MozillaFirefox (SLE12: multiple vulnerabilities).

Android 7.0 "Nougat" released

Monday 22nd of August 2016 07:06:12 PM
Google has announced that the Android 7.0 release has started rolling out to recent-model Nexus devices. "It introduces a brand new JIT/AOT compiler to improve software performance, make app installs faster, and take up less storage. It also adds platform support for Vulkan, a low-overhead, cross-platform API for high-performance, 3D graphics. Multi-Window support lets users run two apps at the same time, and Direct Reply so users can reply directly to notifications without having to open the app. As always, Android is built with powerful layers of security and encryption to keep your private data private, so Nougat brings new features like File-based encryption, seamless updates, and Direct Boot." See this page for a video-heavy description of new features.

Stable kernels 4.7.2, 4.4.19, and 3.14.77

Monday 22nd of August 2016 01:27:03 PM
Greg Kroah-Hartman has announced the release of the 4.7.2, 4.4.19, and 3.14.77 stable kernels. As usual, they contain fixes throughout the tree and users of those series should upgrade.

Monday's security advisories

Monday 22nd of August 2016 01:22:28 PM

Arch Linux has updated linux-lts (connection hijacking).

CentOS has updated kernel (C7: connection hijacking).

Debian-LTS has updated cracklib2 (code execution) and suckless-tools (screen lock bypass).

Fedora has updated firewalld (F24: authentication bypass), glibc (F24: denial of service on armhfp), knot (F24; F23: denial of service), libgcrypt (F24: bad random number generation), and perl (F23: privilege escalation).

openSUSE has updated apache2-mod_fcgid (42.1, 13.2: proxy injection), gd (13.2: multiple vulnerabilities), iperf (SPHfSLE12; 42.1, 13.2: denial of service), pdns (42.1, 13.2: denial of service), python3 (42.1, 13.2: multiple vulnerabilities), roundcubemail (42.1; 13.2; 13.1: multiple vulnerabilities, two from 2015), and typo3-cms-4_7 (42.1, 13.2: three vulnerabilities from 2013 and 2014).

Scientific Linux has updated kernel (SL7: connection hijacking) and python (SL6&7: three vulnerabilities).

Kernel prepatch 4.8-rc3

Monday 22nd of August 2016 11:36:15 AM
The 4.8-rc3 kernel prepatch is out. "It all looks pretty sane, I'm not seeing anything hugely scary here."

Fedora 25 to run Wayland by default

Friday 19th of August 2016 06:46:45 PM
The Fedora engineering steering committee has agreed that the upcoming Fedora 25 release should use the Wayland display manager by default. "There are still some bugs that are important to solve. However, there is still time to work on them. And the legacy Xorg session option will not be removed, and will be clearly documented how to fallback in cases where users need it." If this plan holds, it may be an important step in the long-awaited move away from the X Window system.

kdenlive 16.08.0 released

Friday 19th of August 2016 05:56:16 PM
The kdenlive video editor project has announced the 16.08.0 release. "Kdenlive 16.08.0 marks a milestone in the project’s history bringing it a step closer to becoming a full-fledged professional tool." Highlights include three-point editing, pre-rendering of timeline effects, Krita image support, and more.

Friday's security updates

Friday 19th of August 2016 03:16:14 PM

CentOS has updated python (C7; C6: multiple vulnerabilities).

Fedora has updated ca-certificates (F24: update to CA certificates) and spice (F23: multiple vulnerabilities).

Oracle has updated kernel (O7: TCP injection) and python (O7; O6: multiple vulnerabilities).

Red Hat has updated kernel (RHEL7; RHEL6: TCP injection), kernel-rt (RHEL7: TCP injection), python (RHEL 6,7: multiple vulnerabilities), python27-python (RHSC: multiple vulnerabilities), python33-python (RHSC: multiple vulnerabilities), realtime-kernel (RHEM2.5: TCP injection), rh-mariadb101-mariadb (RHSC: multiple vulnerabilities), rh-python34-python (RHSC: multiple vulnerabilities), and rh-python35-python (RHSC: multiple vulnerabilities).

SUSE has updated the Linux Kernel (SLE12: multiple vulnerabilities) and xen (SLE11: multiple vulnerabilities).

Ubuntu has updated gnupg (12.04, 14.04, 16.04: flawed random-number generation), libgcrypt11, libgcrypt20 (12.04, 14.04, 16.06: flawed random-number generation), and postgresql-9.1, postgresql-9.3, postgresql-9.5 (12.04, 14.04, 16.04: multiple vulnerabilities).

Microsoft announces PowerShell for Linux and Open Source

Thursday 18th of August 2016 10:35:42 PM
Microsoft has announced the release of its PowerShell automation and scripting platform under the MIT license, complete with a GitHub repository. "Last year we started down this path by contributing to a number of open source projects (e.g. OpenSSH) and open sourcing a number of our own components including DSC resources. We learned that working closely with the community, in the code and with our backlog and issues list, allowed us prioritize and drive the development much more responsively. We’ve always worked with the community but shifting to a fine-grain, tight, feedback loop with the code, energized the team and allowed us to focus on the things that had the most impact for our customers and partners. Now we are going big by making PowerShell itself an open source project and making it available on Mac OS X, Ubuntu, CentOS/RedHat and others in the future."

More in Tux Machines

Having offended everyone else in the world, Linus Torvalds calls own lawyers a 'nasty festering disease'

Coding curmudgeon Linus Torvalds has gone off on yet another rant: this time against his own lawyers and free software activist Bradley Kuhn. On a mailing list about an upcoming Linux conference, a discussion about whether to include a session on the GPL that protects the open source operating system quickly devolved in an angry rant as its founder piled in. Read more

The Battle of The Budgie Desktops – Budgie-Remix vs SolusOS!

Ladies and gentleman, it’s the moment you have all been waiting for… the main even of the evening! In this corner, wearing Budgie trunks, fighting out of Ireland, created by Ikey Doherty, the man behind Linux Mint Debian Edition — SolusOS! And in this corner, built on the defending champion, also wearing Budgie trunks, aiming to be the next flavor of Ubuntu, Budgie-Remix! Read more

Leftovers: Software

  • 5 Cool Unikernels Projects
    Unikernels are poised to become the next big thing in microservices after Docker containers. Here’s a look at some of the cool things you can do with unikernels. First, though, here’s a quick primer on what unikernels are, for the uninitiated. Unikernels are similar to containers in that they let you run an app inside a portable, software-defined environment. But they go a step further than containers by packaging all of the libraries required to run the app directly into the unikernel.
  • Cedrus Is Making Progress On Open-Source Allwinner Video Encode/Decode
    The developers within the Sunxi camp working on better Allwinner SoC support under Linux have been reverse-engineering Allwinner's "Cedar" video engine. Their project is being called Cedrus with a goal of "100% libre and open-source" video decode/encode for the relevant Cedar hardware. The developers have been making progress and yesterday they published their initial patches that add a V4L2 decoder driver for the VPU found on Allwinner's A13 SoC.
  • Phoronix Test Suite 6.6 Milestone 3 Released For Linux Benchmarking
  • Calibre 2.65.1 eBook Viewer Adds Driver for Kobo Aura One and Aura 2 Readers
    Kovid Goyal released today, August 26, 2016, a new maintenance update of his popular, cross-platform, and open-source Calibre e-book viewer, converter and library management tool. Calibre 2.65 was announced earlier, and it looks like it's both a feature and bugfix release that adds drivers for the Kobo Aura One and Kobo Aura Edition 2 ebook readers, along with a new option to the Kobo driver to allow users to ignore certain collections on their ebook reader. The list of new features continues with support for right-to-left text and tables to the DOCX Input feature, as well as the implementation of a new option to allow users to make searching case-sensitive. This option can be found and enabled in the "Searching" configuration section under Preferences.
  • Calamares 2.4 Universal Installer Framework Polishes Existing Functionality
    A new stable version of the Calamares universal installer framework used by various GNU/Linux distributions as default graphical installer has been released with various improvements and bug fixes. Calamares 2.4 is now the latest build, coming two months after the release of the previous version, Calamares 2.3, which introduced full-disk encryption support. However, Calamares 2.4 is not as big as the previous update as it only polished existing functionality and address various annoying issues reported by users.
  • RcppArmadillo 0.7.400.2.0
    Another Armadillo 7.* release -- now at 7.400. We skipped the 7.300.* serie release as it came too soon after our most recent CRAN release. Releasing RcppArmadillo 0.7.400.2.0 now keeps us at the (roughly monthly) cadence which works as a good compromise between getting updates out at Conrad's sometimes frantic pace, while keeping CRAN (and Debian) uploads to about once per month. So we may continue the pattern of helping Conrad with thorough regression tests by building against all (by now 253 (!!)) CRAN dependencies, but keeping release at the GitHub repo and only uploading to CRAN at most once a month.
  • Spotio Is A Light Skin for Spotify’s Desktop App — And Its Coming To Linux
    Spotify’s dark design is very much of its identity. No-matter the platform you use it on, the dark theme is there staring back at you. Until now. A bunch of ace websites, blogs and people I follow have spent the past 24 hours waxing lyrical over a new Spotify skin called Spotio.