Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 6 hours 12 min ago

Kernel prepatch 4.14-rc6

16 hours 48 min ago
The 4.14-rc6 kernel prepatch is out. "rc6 is a bit larger than I was hoping for, and I'm not sure whether that is a sign that we _will_ need an rc8 after all this release (which wouldn't be horribly surprising), or whether it's simply due to timing. I'm going to leave that open for now, so just know that rc8 _may_ happen."

Linux Foundation debuts Community Data License Agreement

17 hours 23 min ago
The Linux Foundation has announced a pair of licenses for data that are modeled on the two broad categories of free-software licenses: permissive and copyleft. The Community Data License Agreement (CDLA) comes in two flavors: Sharing that "encourages contributions of data back to the data community" and Permissive that allows the data to be used without any further requirements. "Inspired by the collaborative software development models of open source software, the CDLA licenses are designed to enable individuals and organizations of all types to share data as easily as they currently share open source software code. Soundly drafted licensing models can help people form communities to assemble, curate and maintain vast amounts of data, measured in petabytes and exabytes, to bring new value to communities of all types, to build new business opportunities and to power new applications that promise to enhance safety and services. The growth of big data analytics, machine learning and artificial intelligence (AI) technologies has allowed people to extract unprecedented levels of insight from data. Now the challenge is to assemble the critical mass of data for those tools to analyze. The CDLA licenses are designed to help governments, academic institutions, businesses and other organizations open up and share data, with the goal of creating communities that curate and share data openly."

Stable kernels 4.13.9, 4.9.58, 4.4.94, and 3.18.77

17 hours 45 min ago
Greg Kroah-Hartman has announced the release of four new stable kernels: 4.13.9, 4.9.58, 4.4.94, and 3.18.77. There are fixes throughout the tree in them, so users of those series should upgrade.

Security updates for Monday

17 hours 56 min ago
Security updates have been issued by Arch Linux (irssi, musl, and xorg-server), CentOS (httpd and java-1.8.0-openjdk), Debian (libav, ming, and openjfx), Fedora (ImageMagick, libwpd, rubygem-rmagick, and sssd), Gentoo (adobe-flash, chromium, dnsmasq, go, kodi, libpcre, and openjpeg), openSUSE (bluez, exiv2, python3-PyJWT, salt, xen, xerces-j2, and xorg-x11-server), Oracle (java-1.8.0-openjdk and kernel), Red Hat (java-1.8.0-oracle and rh-nodejs4-nodejs), and Scientific Linux (java-1.8.0-openjdk).

Schaller: Looking back at Fedora Workstation so far

Friday 20th of October 2017 08:15:32 PM
Christian Schaller has posted a list of the Fedora Workstation project's accomplishments since its inception. "Wayland – We been the biggest contributor since we joined the effort and have taken the lead on putting in place all the pieces needed for actually using it on a desktop, including starting to ship it as our primary offering in Fedora Workstation 25. This includes putting a lot of effort into ensuring that XWayland works smoothly to ensure full legacy application support." The list as a whole is quite long.

[$] A look at the 4.14 development cycle

Friday 20th of October 2017 07:52:44 PM
The 4.14 kernel, due in the first half of November, is moving into the relatively slow part of the development cycle as of this writing. The time is thus ripe for a look at the changes that went into this kernel cycle and how they got there. While 4.14 is a fairly typical kernel development cycle, there are a couple of aspects that stand out this time around.

Firefox 57 coming soon: a Quantum leap (Fedora Magazine)

Friday 20th of October 2017 01:50:15 PM
The upcoming Firefox 57 release presents a challenge to distributors, who have to decide when and how to ship a major update that will break a bunch of older extensions. This Fedora Magazine article describes the plan that Fedora has come up with for this transition. "Users probably shouldn’t 'hold back at FF56 as my favorite extensions don’t work.' Recall that security fixes only come from new versions, and they’ll all be WebExtension only. The Extended Support Release version will also switch to WebExtensions only at the next release. This date, June 2018, marks the deadline for ESR users to migrate their extensions."

Security updates for Friday

Friday 20th of October 2017 12:51:13 PM
Security updates have been issued by Arch Linux (chromium), Debian (jackson-databind, libvirt, and mysql-5.5), Fedora (SDL2_image), Mageia (db53, kernel, poppler, and wpa_supplicant, hostapd), Oracle (httpd), Red Hat (ansible, chromium-browser, httpd, java-1.8.0-openjdk, kernel, and kernel-rt), and Scientific Linux (httpd and kernel).

LEDE v17.01.4 service release

Thursday 19th of October 2017 03:43:27 PM
Version 17.01.4 of the LEDE router distribution is available with a number of important fixes. "While this release includes fixes for the bugs in the WPA Protocol disclosed earlier this week, these fixes do not fix the problem on the client-side. You still need to update all your client devices. As some client devices might never receive an update, an optional AP-side workaround was introduced in hostapd to complicate these attacks, slowing them down."

Apache OpenOffice 4.1.4 released

Thursday 19th of October 2017 03:22:51 PM
The OpenOffice 4.1.4 release is finally available; see this article for some background on this release. The announcement is all bright and sunny, but a look at the August 16 Apache board minutes shows concern about the state of the project. Indeed, the OpenOffice project management committee was, according to these minutes, supposed to post an announcement about the state of the project; it would appear that has not yet happened.

Samsung to support Linux distributions on Galaxy handsets

Thursday 19th of October 2017 02:49:17 PM
Here's a Samsung press release describing the company's move into the "run Linux on your phone" space. "Installed as an app, Linux on Galaxy gives smartphones the capability to run multiple operating systems, enabling developers to work with their preferred Linux-based distributions on their mobile devices. Whenever they need to use a function that is not available on the smartphone OS, users can simply switch to the app and run any program they need to in a Linux OS environment."

Ubuntu 17.10 (Artful Aardvark) released

Thursday 19th of October 2017 02:43:56 PM
The Ubuntu 17.10 release is out. "Under the hood, there have been updates to many core packages, including a new 4.13-based kernel, glibc 2.26, gcc 7.2, and much more. Ubuntu Desktop has had a major overhaul, with the switch from Unity as our default desktop to GNOME3 and gnome-shell. Along with that, there are the usual incremental improvements, with newer versions of GTK and Qt, and updates to major packages like Firefox and LibreOffice." See the release notes for more information.

Security updates for Thursday

Thursday 19th of October 2017 02:41:36 PM
Security updates have been issued by CentOS (wpa_supplicant), Debian (db, db4.7, db4.8, graphicsmagick, imagemagick, nss, and yadifa), Fedora (ImageMagick, rubygem-rmagick, and upx), Mageia (flash-player-plugin, libxfont, openvpn, ruby, webmin, and wireshark), openSUSE (cacti, git, and upx), Oracle (wpa_supplicant), Red Hat (kernel-rt, rh-nodejs4-nodejs-tough-cookie, rh-nodejs6-nodejs-tough-cookie, and wpa_supplicant), Scientific Linux (wpa_supplicant), and Slackware (libXres, wpa_supplicant, and xorg).

[$] LWN.net Weekly Edition for October 19, 2017

Thursday 19th of October 2017 01:20:51 AM
The LWN.net Weekly Edition for October 19, 2017 is available.

[$] KRACK, ROCA, and device insecurity

Wednesday 18th of October 2017 10:21:26 PM

Monday October 16 was not a particularly good day for those who are even remotely security conscious—or, in truth, even for those who aren't. Two separate security holes came to light; one probably affects almost all users of modern technology. The other is more esoteric at some level, but still serious. In both cases, the code in question is baked into various devices, which makes it more difficult to fix; in many cases, the devices in question may not even have a plausible path toward a fix. Encryption has been a boon for internet security, but both of these vulnerabilities have highlighted that there is more to security than simply cryptography.

Tips to Secure Your Network in the Wake of KRACK (Linux.com)

Wednesday 18th of October 2017 07:21:31 PM
Konstantin Ryabitsev argues on Linux.com that WiFi security is only a part of the problem. "Wi-Fi is merely the first link in a long chain of communication happening over channels that we should not trust. If I were to guess, the Wi-Fi router you’re using has probably not received a security update since the day it got put together. Worse, it probably came with default or easily guessable administrative credentials that were never changed. Unless you set up and configured that router yourself and you can remember the last time you updated its firmware, you should assume that it is now controlled by someone else and cannot be trusted."

[$] Achieving DisplayPort compliance

Wednesday 18th of October 2017 03:55:40 PM

At the X.Org Developers Conference, hosted by Google in Mountain View, CA September 20-22, Manasi Navare gave a talk about her journey learning about kernel graphics on the way to achieving DisplayPort (DP) compliance for Intel graphics devices. Making that work involved learning about DP, the kernel graphics subsystem, and how to do kernel development, as well. There were plenty of details to absorb, including the relatively new atomic mode setting support, the design of which was described in a two-part LWN article.

Ruiz: Fleet Commander: production ready!

Wednesday 18th of October 2017 03:34:18 PM
Alberto Ruiz announces that Fleet Commander is ready for production use. "Fleet Commander is an integrated solution for large Linux desktop deployments that provides a configuration management interface that is controlled centrally and that covers desktop, applications and network configuration. For people familiar with Group Policy Objects in Active Directory in Windows, it is very similar."

Stable kernel updates

Wednesday 18th of October 2017 03:33:13 PM
Greg Kroah-Hartman has released stable kernels 4.13.8, 4.9.57, 4.4.93, and 3.18.76. All of them contain important fixes and users should upgrade.

Security updates for Wednesday

Wednesday 18th of October 2017 03:27:17 PM
Security updates have been issued by Arch Linux (kernel, linux-hardened, and linux-zen), CentOS (wpa_supplicant), Debian (xorg-server), Fedora (selinux-policy), Gentoo (libarchive, nagios-core, ruby, and xen), openSUSE (wpa_supplicant), Oracle (wpa_supplicant), Red Hat (Red Hat Single Sign-On, rh-nodejs6-nodejs, rh-sso7-keycloak, and wpa_supplicant), Scientific Linux (wpa_supplicant), SUSE (git, wpa_supplicant, and xen), and Ubuntu (xorg-server, xorg-server-hwe-16.04, xorg-server-lts-xenial).