Security: Updates, Reproducible Builds, Dnsmasq, Leaks, Kaspersky, and Linux LTS
-
Security updates for Tuesday
-
Reproducible Builds: Weekly report #127
-
Widely used DNS forwarder and DHCP server Dnsmasq riddled with flaws
Google researchers have discovered seven serious vulnerabilities in Dnsmasq, a lightweight, widely used DNS forwarder and DHCP server for small computer networks.
-
Episode 64 - Networks and Dnsmasq and IoT oh my
-
Code-execution flaws threaten users of routers, Linux, and other OSes
-
Severe flaws in DNS app create hacking risk for routers, smartphones, computers, IoT
-
Google issues warning on Dnsmasq vulnerabilities in Android, Linux and Kubernetes
-
Protect Linux Web Servers from "Zero Day" Attacks; RoboCyberWall Unveils Award-Winning Precision Firewall [Ed: RoboCyberWall wants us to believe that it has a 'magic' firewall that's more effective than patching the flaws]
-
“NSFW” doesn’t begin to describe Bluetooth security in sex toys
Technologies such as Bluetooth Low Energy (BLE) have allowed an increasing number of devices to be controlled by mobile devices. But as Ars has reported in the past, BLE devices also can be a privacy and security risk. And as Alex Lomas of Pentest Partners found recently, some of these vulnerable devices are of a very personal nature. Lomas discovered that he could relatively easily search for and hijack BLE-enabled sex toys—a pursuit he named "screwdriving" (after the Wi-Fi network finding practice of "wardriving").
-
IRS awards Equifax no-bid, $7.25 million contract after hack
Just because your resume says you exposed the personal data, including Social Security numbers, of some 143 million Americans while practicing unsafe security, it doesn't mean you can't score a multi-million dollar contract with the Internal Revenue Service. That's the case even if your name is Equifax and you're being contracted by the IRS to "verify taxpayer identity" to combat fraud.
-
Every Yahoo account that existed—all 3 billion—was compromised in 2013 hack
The revelation, contained in an updated page about the 2013 hack, is the result of new information and the forensic analysis of an unnamed security consultant. Previously, Yahoo officials said about one billion accounts were compromised. With Yahoo maintaining roughly three billion accounts at the time, the 2013 hack would be among the biggest ever reported.
"We recently obtained additional information and, after analyzing it with the assistance of outside forensic experts, we have identified additional user accounts that were affected," Yahoo officials wrote in the update. "Based on an analysis of the information with the assistance of outside forensic experts, Yahoo has determined that all accounts that existed at the time of the August 2013 theft were likely affected."
-
DHS says Kaspersky decision based on ‘open source’ information
The Department of Homeland Security’s (DHS) decision to bar federal agencies and departments from using Kaspersky Lab software was primarily based on open-source information, a department official said Tuesday.
-
Linux kernel long term support extended from two to six years
Long-term-support (LTS) editions of the Linux Kernel will henceforth be supported for six years, up from the current two.
News of the extension emerged at the “Linaro Connect” conference at which Googler Ilyan Malchev announced it, saying he had Linux royalty Greg Kroah-Hartman's permission to break the news.
Malchev works on Google's Project Treble, an effort to ease the work required to upgrade devices to new versions of Android. Treble emerged in May 2017, when our own Andrew Orlowski opined that the project “gives Google greater control over pushing out Over The Air updates” rather than leaving them to handset-makers.
-
Great News! LTS Release of Linux Kernel will be Supported for 6 Years Now
- Login or register to post comments
- Printer-friendly version
- 3415 reads
- PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
digiKam 7.7.0 is releasedAfter three months of active maintenance and another bug triage, the digiKam team is proud to present version 7.7.0 of its open source digital photo manager. See below the list of most important features coming with this release. |
Dilution and Misuse of the "Linux" Brand
|
Samsung, Red Hat to Work on Linux Drivers for Future TechThe metaverse is expected to uproot system design as we know it, and Samsung is one of many hardware vendors re-imagining data center infrastructure in preparation for a parallel 3D world. Samsung is working on new memory technologies that provide faster bandwidth inside hardware for data to travel between CPUs, storage and other computing resources. The company also announced it was partnering with Red Hat to ensure these technologies have Linux compatibility. |
today's howtos
|
Recent comments
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago
1 year 11 weeks ago