Friday, February 1st, 2013

Time	Event
12:55a	Final FOSDEM 2013 speaker interviews Completing the set, Koen Vervloesem has put out the last three speaker interviews for FOSDEM 2013, which starts on Saturday, February 2 in Brussels, Belgium. In this edition: Kohsuke Kawaguchi on "How we made the Jenkins community", Jeremy Allison on Samba4, and Morgan Quigley on "ROS: towards open source in robotics". (Comment on this)
4:03a	Kernel prepatch 3.8-rc6 Linus has released the sixth 3.8 prepatch while attending linux.conf.au 2013 in Canberra. "I have a CleverPlan(tm) to make *sure* that rc7 will be better and much smaller. That plan largely depends on me being unreachable for the next week due to the fact that there is no internet under water." Once he returns from diving, he plans to be very aggressive about accepting only patches that "fix major security issues, big user-reported regressions, or nasty oopses". Update: the sharp-eyed observer will note that the code name for the release has changed; it is now "Unicycling Gorilla". (Comment on this)
5:32p	The FSF licensing team's 2012 report The Free Software Foundation's licensing team has posted a brief report on what it did in 2012. "We responded and resolved over 400 reports of suspected license violations and over 600 general licensing and compliance questions." (Comment on this)
5:37p	A pair of UEFI updates Matthew Garrett has posted a summary of currently-known problems with UEFI-based machines and Linux. "Some Lenovos will only boot Windows or Red Hat Enterprise Linux. I recommend drinking, because as far as I know they haven't actually got around to doing anything useful about this yet." Meanwhile, James Bottomley has put up a report on his work with the Linux Foundation's secure boot loader. "The upshot of all of this is you can now use Pre-BootLoader with Gummiboot (as demoed at LCA2013). To boot, you have to add two hashes: one for Gummiboot itself and one for the kernel you’re booting, but actually this is a good thing because now you have a single security policy controlling all of your boot sequence. Gummiboot itself has also been patched to recognise a failure due to secure boot and pop up a helpful message telling you which hash to enrol." (Comment on this)
7:38p	Friday's security advisories CentOS has updated freetype (C5; C6: code execution), nss (C5: certificate removal), nspr (C6: certificate removal), mingw-libxml2 (C6: multiple vulnerabilities), xorg-x11-drv-qxl (C6: denial of service), mysql (C6: multiple unspecified vulnerabilities), libreport (C6: two privilege escalation flaws), and abrt (C6: two privilege escalation flaws). Fedora has updated jakarta-commons-httpclient (F16; F17; F18: incorrect certificate validation), coreutils (multiple vulnerabilities), ettercap (F16; F18: code execution), ndjbdns (F16; F17; F18: ghost domain attack), thunderbird (F16: multiple vulnerabilities), and axis (F17; F18: incorrect certificate validation). Mandriva has updated freetype2 (two vulnerabilities). Oracle has updated mingw-libxml2 (OL6: multiple vulnerabilities), nss, nss-util, and nspr (OL6: certificate removal), freetype (OL5; OL6: code execution), xorg-x11-drv-qxl (OL6: denial of service), abrt and libreport (OL6: two privilege escalation flaws), mysql (OL6: multiple unspecified vulnerabilities), and nss and nspr (OL5: certificate removal). Red Hat has updated nss, nss-util, and nspr (RHEL6: certificate removal), nss and nspr (RHEL5: certificate removal), abrt and libreport (RHEL6: two privilege escalation flaws), freetype (RHEL5&6: code execution), mingw-libxml2 (RHEL6: multiple vulnerabilities), xorg-x11-drv-qxl (RHEL6: denial of service), and mysql (RHEL6: multiple unspecified vulnerabilities). Scientific Linux has updated xorg-x11-drv-qxl (SL6: denial of service), mysql (SL6: multiple unspecified vulnerabilities), mingw-libxml2 (SL6: multiple vulnerabilities), abrt and libreport (SL6: two privilege escalation flaws), nss and nspr (SL5: certificate removal), nss, nss-util, and nspr (SL6: certificate removal), and freetype (SL5&6: code execution). Ubuntu has updated kernel (12.10: regression in previous security fix), OMAP4 kernel (12.10: regression in previous security fix), kernel (12.04: regression in previous security fix), OMAP4 kernel (12.04: regression in previous security fix), and Quantal kernel (12.04: regression in previous security fix). (Comment on this)

<< Previous Day

2013/02/01 [Calendar]

Next Day >>