LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Monday, February 11th, 2013

    Time Event
    2:26p
    Emont: Video decoding in a sandbox
    Guillaume Emont describes
    his work using the Chromium sandbox mechanism     to make video decoding in
    GStreamer more secure. "The way setuid-sandbox works is rather
    straightforward: there is a sandboxme command that needs to be installed
    setuid root. You run sandboxme my_command and then from inside my_command,
    you first set up the file descriptors that you will need (being careful not
    to put there anything that could allow to escape the sandbox, more on that
    later), and then you call the provided chrootme() function, which will tell
    the sandboxme process to restrict the privileges that my_command has
    (e.g. it can still read and write on the fds that it has open, but it
    cannot open new ones).    "
    4:57p
    Monday's security advisories
    Debian has updated xen-qemu-dm-4.0 (buffer overflow) and ircd-ratbox (denial of service).

    Fedora has updated postgresql (F18: information disclosure/denial of service).

    Oracle has updated java-1.7.0-openjdk (OL5: multiple unspecified vulnerabilities).

    6:23p
    [$] LCA: The X-men speak

    Linux.conf.au 2013 in Canberra provided an interesting window into the world of display server development with a pair of talks about the X Window System and one about its planned successor Wayland (a talk which will be the subject of its own article shortly). First, Keith Packard discussed coming improvements to compositing and rendering. He was followed by David Airlie, who talked about recent changes and upcoming new features for the Resize, Rotate and Reflect Extension (RandR), particularly to cope with multiple-GPU laptops. Each talk was each entertaining enough in its own right, but they worked even better together as the speakers interjected their own comments into one another's Q&A period (or, from time to time, during the talks themselves).

    7:25p
    Some stable kernel releases
    Greg KH has released stable kernels 3.7.7,
    3.4.30 and 3.0.63. All contain important fixes.

    << Previous Day 2013/02/11
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org