LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Monday, September 29th, 2014

    Time Event
    12:04a
    Kernel prepatch 3.17-rc7
    In the end, Linus did not do the final 3.17 release this weekend; instead,
    3.17-rc7 is available for testing. "It's not that
    anything particularly scary happened, but quite frankly, things just
    didn't calm down as I hoped for.

    And while my travel schedule would have made it really nice had I been
    able to just do a shorter-than-usual release, 'convenience' isn't
    really part of the release criteria. Oh well.    "
    1:14p
    LibreSSL: More Than 30 Days Later
    Ted Unangst has posted an update
    on LibreSSL development    . "Joel and I have been working on a
    replacement API for OpenSSL, appropriately entitled ressl. Reimagined SSL
    is how I think of it. Our goals are consistency and simplicity. In
    particular, we answer the question 'What would the user like to do?' and
    not 'What does the TLS protocol allow the user to do?'. You can make a
    secure connection to a server. You can host a secure server. You can read
    and write some data over that connection.    "
    6:06p
    Security advisories for Monday

    Debian has updated chromium-browser (multiple vulnerabilities).

    Fedora has updated libvncserver (F20: multiple vulnerabilities), nodejs (F20; F19: denial of service), perl-Data-Dumper (F20: denial of service), and v8 (F20; F19: multiple vulnerabilities).

    Mageia has updated bash (code injection, command execution) and kernel (MG3: denial of service).

    Mandriva has updated perl-XML-DT (file overwrites).

    openSUSE has updated bash (13.1, 12.3; 12.3; 13.1; 11.4; 13.2: multiple vulnerabilities), dbus-1 (13.1; 12.3: multiple vulnerabilities), kernel (11.4: multiple vulnerabilities), geary (13.1: TLS certificate issues), bash (11.4: command execution), mozilla-nss (13.1, 12.3: signature forgery), NSS (11.4: signature forgery), php5 (11.4: multiple vulnerabilities), php5 (11.4: more vulnerabilities), srtp (13.1: denial of service), and wireshark (13.1, 12.3: multiple vulnerabilities).

    Slackware has updated firefox (multiple vulnerabilities), thunderbird: (multiple vulnerabilities) and seamonkey (multiple vulnerabilities).

    SUSE has updated bash (SLE11, SLE10: multiple vulnerabilities) and mozilla-nss (SLES11 SP2: signature forgery).

    << Previous Day 2014/09/29
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org