LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Thursday, August 14th, 2014

    Time Event
    1:03a
    [$] LWN.net Weekly Edition for August 14, 2014
    The LWN.net Weekly Edition for August 14, 2014 is available.
    3:52p
    Security advisories for Thursday

    CentOS has updated openssl (C7; C6; C5: multiple vulnerabilities).

    Debian has updated gpgme1.0 (code execution).

    Gentoo has updated adobe-flash (multiple vulnerabilities), catfish (multiple privilege escalations), and libpng (three vulnerabilities, two from 2013).

    openSUSE has updated flash-player (13.1, 12.3: multiple vulnerabilities).

    Oracle has updated openssl (OL7; OL6; OL5: multiple vulnerabilities).

    Red Hat has updated openssl (RHEL6&7; RHEL5: multiple vulnerabilities).

    Scientific Linux has updated openssl (SL6; SL5: multiple vulnerabilities).

    4:08p
    Five new stable kernels
    Greg Kroah-Hartman has announced the release of five new stable kernels: 3.16.1, 3.15.10, 3.14.17, 3.10.53, and 3.4.103. As usual, each has important fixes
    and users should upgrade. In addition, this is the last 3.15.x release, so
    users should be switching to the 3.16 series.
    5:15p
    Riddell: Upstream and Downstream: why packaging takes time
    Kubuntu developer Jonathan Riddell looks at packaging all of the pieces of KDE on his blog. His perspective is, of course, Kubuntu-focused, but the comments contain lengthy responses from Fedora and openSUSE KDE packagers, which makes for a good look at the work distributions put into packaging a huge code base like KDE. "Much of what we package are libraries and if one small bit changes in the library, any applications which use that library will crash. This is ABI and the rules for binary [compatibility] in C++ are nuts. Not infrequently someone in KDE will alter a library ABI without realising. So we maintain symbol files to list all the symbols, these can often feel like more trouble than they're worth because they need updated when a new version of GCC produces different symbols or when symbols disappear and on investigation they turn out to be marked private and nobody will be using them anyway, but if you miss a change and apps start crashing as nearly happened in KDE PIM last week then people get grumpy." (Thanks to Robie Basak.)

    << Previous Day 2014/08/14
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org