Language Selection

English French German Italian Portuguese Spanish

Security: Updates, Flaws, and Purism

Filed under
Security
  • Security updates for Thursday
  • Critical Linux Flaw Opens the Door to Full Root Access
  • It has been a bad week for encrypted messaging and it’s only Wednesday

    Also on Monday, a different team of researchers disclosed a vulnerability in the desktop version of the Signal messenger. It allowed attackers to send messages containing malicious HTML and JavaScript that would be executed by the app. Signal developers published a security update on Friday, a few hours after the researchers privately notified them of the vulnerability. On Monday, Signal developers issued a new patch after discovering over the weekend that the first one didn’t fully fix the bug. (The incompleteness of the patch was independently and more-or-less simultaneously found by the researchers.)

  • Purism and Nitrokey Partner to Build Purekey for Purism’s Librem Laptops

    Purism, the social purpose corporation which designs and produces security focused hardware and software, has announced today that they are partnering with Nitrokey, maker of Free Software and Open Hardware USB OpenPGP security tokens and Hardware Security Modules (HSMs) to create Purekey, Purism’s own OpenPGP security token designed to integrate with its hardware and software. Purekey embodies Purism’s mission to make security and cryptography accessible where its customers hold the keys to their own security and follows on the heels of their announcement of a partnership with cryptography pioneer and GnuPG maintainer Werner Koch.

  • Purism Expands Its Linux Hardware Portfolio To Include A USB-Based GPG SmartCard

    If Purism didn't have their hands full enough already working to further free Linux laptops and their very ambitious project to get their own Linux smartphone software/hardware shipping next year, they have now expanded their portfolio with the Purekey.

More on Purism

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

KDevelop 5.2.2 and 5.2.3 released

KDevelop 5.2.2 and 5.2.3 released We today provide a stabilization and bugfix release with version 5.2.2 and 5.2.3. 5.2.2 was tagged 6 weeks ago, but we never managed to release it because we did not have the patience to fix the Windows installers in time due to a broken CI. Windows installers are provided for 5.2.3 again. We'll only provide source tarballs for 5.2.2 and we encourage everyone to just skip this release and use 5.2.3 which contains a few more bug fixes. This is a bugfix-only release, which introduces no new features and as such is a safe and recommended update for everyone currently using KDevelop 5.2.1. Read more Also: This week in Usability & Productivity, part 19

FreeOffice 2018 Release is Seamlessly Compatible With MS Office on Linux

FreeOffice 2018 has just been released and it provides even better support for Microsoft Office documents on Linux. Read more

Android Leftovers

today's howtos