Language Selection

English French German Italian Portuguese Spanish

Security

Remote buffer overflow bug bites Linux Kernel

Filed under
Linux
Security

blogs.zdnet: A remote buffer overflow vulnerability in the Linux Kernel could be exploited by attackers to execute code or cripple affected systems, according to a Gentoo bug report that just became public.

Mac, Linux, BSD open for attack: Kaspersky

Filed under
Security

computerworld.com.au: Looming attacks will soon pop the security bubble enjoyed by Linux and Macintosh users, according to Russian security expert Eugene Kaspersky.

Firefox add-on blocks 'clickjacking' attacks

Filed under
Moz/FF
Security

computerworld.com: A popular Firefox add-on designed to block scripts and plug-ins has been updated to stymie the new "clickjacking" class of attacks, the extension's developer said today.

Vendors rush to fix critical TCP/IP bug

Filed under
Security

techworld.com (IDG): Internet infrastructure vendors are rushing to develop patches for a set of TCP/IP security flaws, which could help hackers knock servers offline with very little effort. Robert Lee and Jack Louis, have said that they can knock Windows, Linux, embedded systems and even firewalls offline.

How To Stop Firefox Clickjacking Exploit Attack

Filed under
Security

cyberciti.biz: Really scary exploit attack in wild, which affects all browsers under any desktop operating systems including MS IE, Linux, Apple safari, Opera, Firefox and Adobe flash. Any website that uses CSS, flash and IFRAME can be used to attack on end users. Attacker is able to take control of the links that your browser visits.

Hackers attack Large Hadron Collider

Filed under
Security

telegraph.co.uk: Hackers have mounted an attack on the Large Hadron Collider, raising concerns about the security of the biggest experiment in the world as it passes an important new milestone.

Red Hat's security issue

Filed under
Linux
Security

blog.perens.com: Last month, Red Hat issued a security bulletin. Not all that went on is clear, but it seems that the servers used to develop and distribute Fedora and Red Hat were accessed by a person with criminal intent. But there are continuing problems with Red Hat's handling of the situation.

Also: Fedora and our security attitude

Putting A 'Korset' On The Spread Of Computer Viruses

Filed under
Software
Security

sciencedaily.com: Anti-virus companies play a losing game. But Prof. Avishai Wool recently unveiled a unique new program called the “Korset” to stop malware on Linux, the operating system used by the majority of web and email servers worldwide.

New security hole in VLC video player

Filed under
Security

heise-online.co.uk: A new critical security hole has been found in the VLC player from the VideoLan project, while there is still no public fix for the previous security hole found two weeks ago.

Linux under attack: Compromised SSH keys lead to rootkit

Filed under
Linux
Security

blogs.zdnet: The U.S. Computer Emergency Readiness Team (CERT) has issued a warning for what it calls “active attacks” against Linux-based computing infrastructures using compromised SSH keys.

Syndicate content

More in Tux Machines

Graphics: Nouvea, NVIDIA RTX "Turing", KDE Plasma 5.15 Beta Wayland Session, Qt5 GUIs With Spying

  • Nouveau Open-Source Driver Will Now Work With NVIDIA RTX 2080 Ti On Linux 5.0
    Among the many Linux 5.0 kernel features is initial open-source NVIDIA driver support for the latest-generation Turing graphics processors. Missed out on during the Linux 5.0 merge window was "TU102" support but now that is coming down as a fix for the 5.0 kernel. Back in December, Ben Skeggs of Red Hat posted the initial Turing support for Nouveau in the form of the TU104 (RTX 2080) and TU106 (RTX 2060/2070) but was lacking coverage of the TU102, which is for the flagship RTX 2080 Ti and TITAN RTX. He wasn't able to test the support at the time and thus left it out. Skeggs has now been able to verify the TU102 support is working and that patch is now on its way to the mainline kernel tree.
  • Quake 2 Gets Real-Time Path Tracing Powered By NVIDIA RTX / VK_NV_ray_tracing
    For those Linux gamers with a NVIDIA RTX "Turing" graphics card, there's finally an interesting open-source workload to enjoy that makes use of the RTX hardware and NVIDIA's VK_NV_ray_tracing extension... A real-time path tracing port of the legendary Quake 2 game. While Quake II recently saw a Vulkan port, university students have now done an "RTX" port for Quake 2 with the new Q2VKPT project.
  • KDE Plasma 5.15 Beta Wayland Run Through
    In this video, we look at KDE Plasma 5.15 Beta the Wayland Session. Please keep in mind that it is still in development and the Xorg session is perfect.
  • Qt 5.13 Might Add QTelemetry For Opt-In Anonymous Data Collection
    The next release of the Qt5 tool-kit might introduce a potentially controversial module to facilitate anonymous data collection of Qt applications.  The addition of Qt Telemetry has been under code review since last September. There was some reviews taking place and code revisions happening but since November that review dried up. 

Pseudo-Open Source (Openwashing)

  • Red Hat drops MongoDB over SSPL; MDB -3%
    Amazon responded by launching DocumentDB, a managed database that's compatible with existing MongoDB applications and tools. DocumentDB works with MongoDB version 3.6, which predates the SSPL license.
  • Governance without rules: How the potential for forking helps projects
    The speed and agility of open source projects benefit from lightweight and flexible governance. Their ability to run with such efficient governance is supported by the potential for project forking. That potential provides a discipline that encourages participants to find ways forward in the face of unanticipated problems, changed agendas, or other sources of disagreement among participants. The potential for forking is a benefit that is available in open source projects because all open source licenses provide needed permissions. In contrast, standards development is typically constrained to remain in a particular forum. In other words, the ability to move the development of the standard elsewhere is not generally available as a disciplining governance force. Thus, forums for standards development typically require governance rules and procedures to maintain fairness among conflicting interests.
  • Oracle exec: Open-source vendors locking down licences proves 'they were never really open'
  • MoltenVK Sees Big Update To Jump-Start Vulkan On macOS In 2019
  • Facebook 'Likes' (And Open Sources) Better Mobile Image Software
  • Open source Spectrum library enables edge processing of images for faster performance
    Spectrum, an open source image processing library from Facebook, aims to give developers the ability to perform image transformation client-side, with predictable, repeatable results on different platforms. The library can be integrated into Android or iOS apps, and uses C/C++ code for higher performance with Java and Objective-C wrapper APIs for integration ease. Spectrum's API is declarative, allowing developers to define the target output characteristics, leaving the work of formulating settings to achieve that goal to the library itself.

The Best Open Source Software in 2018 (Users’ Choice)

LibreOffice is a free and open source office suite written in C++, Java, and Python. It was first released in January 2011 by The Document Foundation and has since known to be the most reliable open source office suite. Read more

How Do You Fedora: Journey into 2019

Jose plans on continuing to push open source initiatives such as cloud and container infrastructures. He will also continue teaching advanced Unix systems administration. “I am now helping a new generation of Red Hat Certified Professionals seek their place in the world of open source. It is indeed a joy when a student mentions they have obtained their certification because of what they were exposed to in my class.” He also plans on spending some more time with his art again. Carlos would like to write for Fedora Magazine and help bring the magazine to the Latin American community. “I would like to contribute to Fedora Magazine. If possible I would like to help with the magazine in Spanish.” Akinsola wants to hold a Fedora a release part in 2019. “I want make many people aware of Fedora, make them aware they can be part of the release and it is easy to do.” He would also like to ensure that new Fedora users have an easy time of adapting to their new OS. Kevin is planning is excited about 2019 being a time of great change for Fedora. “In 2019 I am looking forward to seeing what and how we retool things to allow for lifecycle changes and more self service deliverables. I think it’s going to be a ton of work, but I am hopeful we will come out of it with a much better structure to carry us forward to the next period of Fedora success.” Kevin also had some words of appreciation for everyone in the Fedora community. “I’d like to thank everyone in the Fedora community for all their hard work on Fedora, it wouldn’t exist without the vibrant community we have.” Read more