Language Selection

English French German Italian Portuguese Spanish


Syndicate content is a comprehensive source of news and opinions from and about the Linux community. This is the main feed, listing all articles which are posted to the site front page.
Updated: 3 hours 48 min ago

[$] Weekly Edition for December 18, 2014

4 hours 29 min ago
The Weekly Edition for December 18, 2014 is available.

Securing the future of GnuPG

10 hours 5 min ago
The GnuPG project is seeking donations. "For a critical project of this size two experienced developers are required for proper operation. This requires gross revenues of 120000 Euro per year. Unfortunately there is currently only one underpaid full time developer who is barely able to keep up with the work; see this blog entry for some background." (Thanks to Paul Wise)

Security advisories for Wednesday

11 hours 32 min ago

CentOS has updated kernel (C6: multiple vulnerabilities) and mailx (C7; C6: command execution).

Debian has updated bsd-mailx (command execution) and heirloom-mailx (command execution).

Fedora has updated dbus (F21: multiple vulnerabilities), grub2 (F19: code execution), mingw-jasper (F21; F20; F19: code execution), pwgen (F19: two vulnerabilities), python-tornado (F20: denial of service), rpm (F21: code execution), and xorg-x11-server (F20: multiple vulnerabilities).

openSUSE has updated seamonkey (13.2; 13.1, 12.3: multiple vulnerabilities) and thunderbird (13.2, 13.1, 12.3: multiple vulnerabilities).

Oracle has updated kernel (OL6: multiple vulnerabilities) and mailx (OL7; OL6: command execution).

Red Hat has updated kernel (RHEL6: multiple vulnerabilities), kernel-rt (RHE MRG: privilege escalation), mailx (RHEL6,7: command execution), and thermostat1-thermostat (RHSCL: privilege escalation).

Scientific Linux has updated kernel (SL6: multiple vulnerabilities) and mailx (SL6,7: command execution).

Stable kernel updates

Tuesday 16th of December 2014 11:35:58 PM
Stable kernels 3.18.1, 3.17.7, 3.14.27, and 3.10.63 have been released. All contain important fixes.

Trinity Desktop Environment R14.0.0 Released

Tuesday 16th of December 2014 09:23:28 PM
The Trinity Desktop Environment (TDE) development team has announced the release of TDE R14.0.0. "Unlike previous releases TDE R14.0.0 has been in development for over two years. This extended development period has allowed us to create a better, more stable and more feature-rich product than previous TDE releases. R14 is brimming with new features, such as a new hardware manager based on udev (HAL is no longer required), full network-manager 0.9 support, a brand new compositor (compton), built-in threading support, and much more!"

Harmer: Overview of Qt3D 2.0 – Part 1

Tuesday 16th of December 2014 07:08:45 PM
Sean Harmer covers the revival of Qt3D, a 3D framework. "With OpenGL taking a much more prominent position in Qt 5’s graphical stack — OpenGL is the underpinning of Qt Quick 2’s rendering power — and with OpenGL becoming a much more common part of customer projects, KDAB decided that it would be good for us and for the Qt community at large if we took over maintainership and development of the Qt3D module. To this end, several KDAB engineers have been working hard to bring Qt3D back to life and moreover to make it competitive to other modern 3D frameworks. This article is the first in a series that will cover the capabilities, APIs, and implementation of Qt3D in detail."

The Open Source Initiative's 2014 annual report

Tuesday 16th of December 2014 05:26:14 PM
The Open Source Initiative has posted its annual report for 2014 [PDF] describing its efforts to increase its relevance. "In that context, 2014 was a turning point for OSI. Our decision to hire a General Manager started to bear fruit both in the form of a growing membership and of heightened activity. We saw news from new Affiliates appearing daily, profiles of individual members inspiring us through the newsletter and both categories of members bringing forward new ideas like the curriculum for further education and the hosting of OpenHatch. We also saw more corporate sponsors than ever before generously offering funds to support our growth. That meant we had the resources both to promote open source and to challenge abuses of the term around the world."

Tuesday's security updates

Tuesday 16th of December 2014 04:24:32 PM

Mandriva has updated apache-mod_wsgi (privilege escalation).

SUSE has updated flash-player (SLED11 SP3: multiple vulnerabilities).

nftables 0.4 released

Tuesday 16th of December 2014 01:18:17 PM
For those of you following the development of nftables (the virtual-machine-based eventual replacement for iptables) version 0.4 of the user-space nftables utility is out. It provides access to a lot of new features, including global ruleset operations, improved logging support, masquerading and NAT, redirect support (will need a 3.19 kernel), and a lot of fixes.

Security advisories for Monday

Monday 15th of December 2014 08:03:54 PM

Debian has updated c-icap (denial of service), libyaml (denial of service), libyaml-libyaml-perl (denial of service), and mediawiki (code injection).

Fedora has updated antiword (F20; F19: denial of service), castor (F21; F20: XML injection), curl (F21; F20: information leak), dbus (F20: multiple vulnerabilities), docker-io (F21: multiple vulnerabilities), erlang (F20: command injection), flac (F21: multiple vulnerabilities), icecast (F21; F20; F19: two vulnerabilities), kde-plasma-networkmanagement (F19: man-in-the-middle attack), kde-plasma-nm (F21; F20: man-in-the-middle attack), kernel (F20: denial of service), libuv (F21; F20; F19: man-in-the-middle attack), libyaml (F21; F20; F19: denial of service), mingw-flac (F21; F20; F19: multiple vulnerabilities), nodejs (F21; F20; F19: man-in-the-middle attack), openvpn (F20; F19: denial of service), perl-YAML-LibYAML (F20; F19: denial of service), php-horde-kronolith (F21; F20: multiple vulnerabilities), phpMyAdmin (F19: two vulnerabilities), pkcs11-helper (F20; F19: denial of service), pwgen (F21; F20: two vulnerabilities), smack (F21; F20: information disclosure), util-linux (F21: command injection), and xorg-x11-server (F21: unspecified vulnerability).

Gentoo has updated chromium (multiple vulnerabilities), couchdb (denial of service), dbus (multiple vulnerabilities), django (multiple vulnerabilities), freerdp (code execution), ghostscript-gpl (multiple vulnerabilities), gnustep-base (denial of service), mcollective (two vulnerabilities), mod_wsgi (two vulnerabilities), nagios-core (multiple vulnerabilities), openjpeg (multiple vulnerabilities), ppp (privilege escalation), qtgui (denial of service), rails (multiple vulnerabilities), ruby (multiple vulnerabilities), strongswan (two vulnerabilities), tomcat (multiple vulnerabilities), varnish (two vulnerabilities), and xfig (two vulnerabilities from 2009).

Mageia has updated apache (two vulnerabilities), cpio (denial of service), freetype2 (buffer overflow), qemu (two vulnerabilities), and rpm (code execution).

Mandriva has updated bind (denial of service), cpio (denial of service), flac (multiple vulnerabilities), graphviz (format string vulnerability), jasper (code execution), mediawiki (multiple vulnerabilities), mutt (denial of service), nss (multiple vulnerabilities), openafs (multiple vulnerabilities), openvpn (denial of service), phpmyadmin (two vulnerabilities), qemu (two vulnerabilities), rpm (code execution), tcpdump (three vulnerabilities), and yaml (denial of service).

openSUSE has updated apache2 (12.3: multiple vulnerabilities), cpio (13.2, 13.1, 12.3: denial of service), jasper (13.2, 13.1, 12.3: code execution), java-1_7_0-openjdk (13.1; 12.3: multiple vulnerabilities), libjpeg-turbo, libjpeg62-turbo (13.2, 13.1, 12.3: denial of service), mutt (13.2, 13.1, 12.3: denial of service), perl-Plack (13.2, 13.1: information disclosure), phpMyAdmin (13.2, 13.1, 12.3: two vulnerabilities), rrdtool (13.2, 13.1, 12.3: denial of service), and firebird (13.2, 13.1, 12.3: denial of service).

Oracle has updated bind (OL7; OL6; OL5: denial of service) and bind97 (OL5: denial of service).

Scalability Techniques for Practical Synchronization Primitives (ACM Queue)

Monday 15th of December 2014 01:02:38 PM
Davidlohr Bueso gives an overview of kernel locking scalability techniques in this ACM Queue article. "There have recently been significant efforts to address lock-scaling issues in the Linux kernel on large high-end servers. Many of the problems and solutions apply to similar system software. This article applies general ideas and lessons learned to a wider systems context, in the hope that it can be helpful to people who are encountering similar scaling problems."

Chromium to start marking HTTP as insecure

Saturday 13th of December 2014 02:24:12 PM
The Chromium development team has posted a plan to start actively marking web pages served with HTTP as not being secure. "We know that people do not generally perceive the absence of a warning sign... Yet the only situation in which web browsers are guaranteed not to warn users is precisely when there is no chance of security: when the origin is transported via HTTP."

Launching CollabMark Project to Hack Trademarks for Free Culture

Saturday 13th of December 2014 12:03:35 AM

Stanford Law School's Center for Internet and Society (CIS) has announced a project named CollabMark designed to "provide information about how open source and free culture communities can use trademarks." Specifically, the project "seeks to offer some strategies to collaborative communities, including a Collaborative Mark Policy that they can adopt to protect their name and logo in an open way" until, the announcement says, "trademark law evolves to accommodate collaborative work."

Friday's security updates

Friday 12th of December 2014 07:21:35 PM

CentOS has updated bind (C5; C6; C7: denial of service), bind97 (C5: denial of service), and xorg-x11-server (C5; C6; C7: multiple vulnerabilities).

Debian has updated dbus (denial of service) and graphviz (code execution).

Fedora has updated antiword (F21: denial of service), asterisk (F21: protocol downgrade), couchdb (F20; F21: cross-site scripting), grub2 (F20; F21: code execution), kernel (F21: denial of service), mantis (F19; F20; F21: multiple vulnerabilities), mariadb (F20: multiple vulnerabilities), mediawiki (F19; F20: multiple vulnerabilities), openvpn (F21: denial of service), pcre (F21: information leak), perl-YAML-LibYAML (F21: denial of service), phpMyAdmin (F20; F21: multiple vulnerabilities), python3 (F20: multiple vulnerabilities), qemu (F21: code execution), and xen (F19; F20; F21: multiple vulnerabilities).

Gentoo has updated emul-linux-x86-baselibs (multiple vulnerabilities), and has issued three bulk updates—one for seven packages (multiple vulnerabilities from 2012), one for 25 packages (multiple vulnerabilities from 2011), and one for 27 packages (multiple vulnerabilities from 2010).

openSUSE has updated chromium (13.1, 13.2: multiple vulnerabilities), firebird (11.4: denial of service), flash-player (11.4; 12.3, 13.1, 13.2: multiple vulnerabilities), and libyaml (12.3, 13.1, 13.2: denial of service).

Oracle has updated kernel (O5; O5; O6; O6; O6; O7: multiple vulnerabilities) and xorg-x11-server (O5; O6; O7: multiple vulnerabilities).

Red Hat has updated bind (RHEL: denial of service), bind97 (RHEL5: denial of service), and xorg-x11-server (RHEL5; RHEL6,7: multiple vulnerabilities).

Scientific Linux has updated bind (denial of service), bind97 (SL5: denial of service), and xorg-x11-server (SL5; SL6,7: multiple vulnerabilities).

SUSE has updated Mozilla Firefox (SLE10 SP4, SLE11 SP3: multiple vulnerabilities) and shim (SLE11 SP3: multiple vulnerabilities).

Ubuntu has updated EC2 kernel (10.04: multiple vulnerabilities), kernel (10.04; 12.04; 14.04; 14.10: multiple vulnerabilities), linux-lts-trusty (12.04: multiple vulnerabilities), linux-lts-utopic (14.04: multiple vulnerabilities), linux-ti-omap4 (12.04: multiple vulnerabilities), mutt (denial of service), and qemu, qemu-kvm (multiple vulnerabilities).

Fairphone: Our approach to software and ongoing support for the first Fairphones

Thursday 11th of December 2014 06:42:55 PM
Over at the Fairphone blog, Kees Jongenburger reflects on what went right—and wrong—for the software that went into the first version of the Fairphone, which is a project aimed at creating a mobile phone that is, well, more "fair". The project seeks to inject social values into the supply chain so that minerals come from conflict-free mining, for example, and that the workers are provided with a living wage. "Fairphone’s high-level ambition is to bring more fairness to software. To us, that means focusing on two key principles: transparency and longevity. We believe products should be long-lasting. The longer a phone lasts, the less waste it creates and the fewer resources it requires. Longevity plays a role in hardware choices; and at the software level, longevity means keeping the software up-to-date and secure after the product was sold. Openness ties directly into our ideas for longevity. We believe that our community should have access to the source code of our software to make improvements, add cool functionality, and extend usability. We believe that releasing the code as open source will prolong the life of the phone past its commercial life. For the first Fairphone, we pinpointed a number of (in retrospect, over-ambitious) goals that aligned with the ideas of transparency and longevity." We looked at Fairphone back in July 2013. (Thanks to Paul Wise.)

Security updates for Thursday

Thursday 11th of December 2014 05:01:02 PM

Debian has updated pdns-recursor (denial of service), unbound (denial of service), and xorg-server (multiple vulnerabilities).

Gentoo has updated adobe-flash (multiple vulnerabilities), clamav (denial of service), and libxml2 (denial of service).

Mageia has updated bind (M4: denial of service), firebird (M4: denial of service), and pdns-recursor (M4: denial of service).

Red Hat has updated flash-plugin (RHEL5&6: multiple vulnerabilities).

Scientific Linux has updated kernel (SL7: multiple vulnerabilities, one from 2013).

Slackware has updated bind (denial of service), mozilla (multiple vulnerabilities), openssh (tcp wrappers support), openvpn (denial of service), pidgin (multiple vulnerabilities), seamonkey (multiple vulnerabilities), and wpa_supplicant (command execution).

Ubuntu has updated nvidia-graphics-drivers (14.10, 14.04, 12.04: three vulnerabilities).

[$] Weekly Edition for December 11, 2014

Thursday 11th of December 2014 01:04:01 AM
The Weekly Edition for December 11, 2014 is available.

Python 2.7.9 released

Wednesday 10th of December 2014 10:56:59 PM
The Python 2.7.9 release is out. The 2.7 series is in deep maintenance mode, but this update still includes a new SSL module (taken from Python 3.4) and validation of SSL certificates by default. This release also adds the ensurepip module, making the "pip" package manager available in all installations.

[$] Emacs and changing documentation formats

Wednesday 10th of December 2014 10:52:21 PM

The GNU Emacs project is debating the idea of changing the format in which its official documentation is written and maintained. Proposing the change is Eric S. Raymond, who argues that the Texinfo format currently used is archaic and constitutes a barrier to entry. His proposal has its supporters—including Richard Stallman—but plenty of other project members contend that whatever shortcomings the Emacs documentation may have, replacing Texinfo as Raymond suggests is not the fix.

[$] Funding for free projects

Wednesday 10th of December 2014 08:20:11 PM
Funding projects in the "free and open" world is a perennial problem. "Crowdfunding" using Kickstarter and other platforms has helped to alleviate some funding issues for some projects, but it is a model that targets one-time goals, not sustained development., which is an organization aimed at providing long-term funding for free and open projects, has—somewhat ironically—announced a crowdfunding campaign to launch itself.

Click below (subscribers only) for the full article.

More in Tux Machines

KDE Applications 14.12 - New Features, Frameworks Ports

Today KDE released KDE Applications 14.12, delivering new features and bug fixes to more than a hundred applications. Most of these applications are based on KDE Development Platform 4 but the first applications have been ported to KDE Frameworks 5. Frameworks is a set of modularized libraries providing additional functionality for Qt5, the latest version of the popular Qt cross-platform application framework. KDE app dragons This release marks the beginning of a new style of releases replacing the threesome of KDE Workspaces, Platform and Applications in the 4 series which ended with the latest KDE Applications update last month. Read more

What To Expect In 2015: Robots Join The Open-Source Revolution

The number of downloads doubled in 2014, to 3.5 million, and Gerkey expects adoption to spike again with the release of ROS 2.0 this summer. The upgrade will coordinate swarms, improve walking, and support smart sensors—basically, assimilate the world’s robots. Read more

New Input Drivers Coming For Linux 3.19 Kernel

One of the latest pull requests for the Linux 3.19 kernel is the input driver subsystem pull, which includes numerous updates along with a few new drivers. The new drivers will benefit some Google Chromebooks in running the latest upstream kernel. Read more

Docker and the Linux container ecosystem

Linux container technology is experiencing tremendous momentum in 2014. The ability to create multiple lightweight, self-contained execution environments on the same Linux host simplifies application deployment and management. By improving collaboration between developers and system administrators, container technology encourages a DevOps culture of continuous deployment and hyperscale, which is essential to meet current user demands for mobility, application availability, and performance. Read more