Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security
  • Security updates for Friday [LWN.net]

    Security updates have been issued by CentOS (java-1.8.0-openjdk), Debian (graphicsmagick), Fedora (grafana), Mageia (aom and roundcubemail), openSUSE (log4j and qemu), Oracle (parfait:0.5), Red Hat (java-1.7.1-ibm and java-1.8.0-openjdk), Slackware (expat), SUSE (containerd, docker, log4j, and strongswan), and Ubuntu (cpio, shadow, and webkit2gtk).

  • Reproducible Builds (diffoscope): diffoscope 202 released

    The diffoscope maintainers are pleased to announce the release of diffoscope version 202. This version includes the following changes:

    [ Chris Lamb ]
    * Don't fail if comparing a nonexistent file with a .pyc file (and add test).
      (Closes: #1004312)
    * Drop a reference in the manual page which claims the ability to compare
      non-existent files on the command-line. This has not been possible since
      version 32 which was released in September 2015. (Closes: #1004182)
    * Add experimental support for incremental output support with a timeout.
      Passing, for example, --timeout=60 will mean that diffoscope will not
      recurse into any sub-archives after 60 seconds total execution time has
      elapsed and mark the diff as being incomplete. (Note that this is not a
      fixed/strict timeout due to implementation issues.)
      (Closes: reproducible-builds/diffoscope#301)
    * Don't return with an exit code of 0 if we encounter device file such as
      /dev/stdin with human-readable metadata that matches literal, non-device,
      file contents. (Closes: #1004198)
    * Correct a "recompile" typo.
    
    [ Sergei Trofimovich ]
    * Fix/update whitespace for Black 21.12.

  • CISA Adds Eight Known Exploited Vulnerabilities to Catalog | CISA

    CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed in the table below. These types of vulnerabilities are a frequent attack vector for malicious cyber actors of all types and pose significant risk to the federal enterprise.

More in Tux Machines

7 Best Rufus Alternatives To Create Bootable USB In 2022

One of the first steps of trying out an operating system is installing the image of the same on a USB drive. Rufus is one of the most widely used tools to create bootable USBs, but you might not like it due to its UI or slow on your computer. Hence, in this article, let’s look at some of the best Rufus alternatives to create bootable USBs. Read more

Android Leftovers

today's leftovers

  • Here's what's new and changed in Kodi 20 'Nexus' Alpha 1

    Yesterday, we revealed that the next big version of Kodi had hit an important milestone. Nightly builds of Kodi 20 'Nexus' have been available for months, but now there’s a much more stable release for users to download. Although it’s only a pre-release build, and therefore will likely have some bugs to watch out for, Kodi 20 'Nexus' Alpha 1's arrival will excite a lot of people. Team Kodi is very proud of this release, and highlights the following changes and new features.

  • MiTubo 1.0: playlist support, new “website” | Mardy

    Expanding a bit on the points above, the first thing worth saying is that the choice of releasing this version as “1.0” does not mean that it's more stable than the previous ones; it just means that I'm rather satisfied with the feature set, and that I believe that the program is ready for more widespread use. This is also the reason why I decided to prepare a web page for it: mardy.it/mitubo. I didn't go for a completely separate website, unlike what I previously did for Mappero Geotagger, PhotoTeleport and Imaginario (which reminds me that I haven't been working on the latter for a long time! I should try to correct this soon!), both because this way it's simpler to publish news about it (I'll continue doing that here, instead of cross-posting in two sites), and because having it in the same domain might be mutually beneficial for the SEO ranking of the blog and of MiTubo.

  • Adriaan de Groot: Blue Systems Farewell

    Calamares serves the needs of several dozen Linux distributions, large and small. I’ve been running the Calamares project for five years now, sponsored by Blue Systems who have supported the Calamares project since its beginning and through two maintainers now. After these five years, I have decided to hand in my badge and move on to different things. This means that I’m no longer paid to spend three days a week on Calamares and my involvement is going to be dialed back to incidental-volunteer-contributor. This means that maybe I’ll finally ignore Linux distro’s and sit down to make it work for FreeBSD.

  • Elevate from a normie to an elite internet user - Invidious
  • Strengthening digital infrastructure: A policy agenda for free and open source software

    While there is little debate that digital forces are playing an increasingly crucial role in the economy, there is limited understanding of the importance of the digital infrastructure that underlies this role. Much of the discussion around digital infrastructure has focused on broadband availability (which is certainly important), but the role of free and open source software (FOSS or OSS) has gone underappreciated. FOSS—software whose source code is public, is often created by decentralized volunteers, and can be freely used and modified by anyone—has come to play a vital role in the modern economy. It is baked into technology we use every day (cars, phones, websites, etc.), as well as into various aspects of critical infrastructure including our finance and energy systems.

  • Improve legibility and reduce layout shifts with x-height adjustments

    There’s more to setting the text size on your webpages than just the CSS font-size property. It only controls the size of majuscule (“uppercase”, e.g. “A”) letters, numbers, and punctuation. The size of minuscule (“lowercase”, e.g. “a”) letters is left up to the font. [...] Unfortunately, font-size-adjust is only supported in Firefox. It has been supported by this browser for over a decade already. It was implemented in Chrome for almost half a decade, but it has been left to rot behind the Experimental Web Platform features flag. It’s not implemented in Safari.

Linux and "Open" Devices