Friday, May 1st, 2015

Time	Event
1:10a	Mozilla: Deprecating Non-Secure HTTP The Mozilla community has declared its intent to phase out "non-secure" (not encrypted with TLS) web access. "Since the goal of this effort is to send a message to the web developer community that they need to be secure, our work here will be most effective if coordinated across the web community. We expect to be making some proposals to the W3C WebAppSec Working Group soon." (Comment on this)
4:02p	Security advisories for Friday Arch Linux has updated perl-xml-libxml (information disclosure). Debian has updated chromium-browser (multiple vulnerabilities). Debian-LTS has updated libjson-ruby (denial of service), libxml-libxml-perl (information disclosure), squid (denial of service), xdg-utils (command execution), and xorg-server (information leak/denial of service). Mageia has updated kernel (multiple vulnerabilities), kernel-linus (multiple vulnerabilities), libreoffice (code execution), ppp (denial of service), and quassel (SQL injection). openSUSE has updated wpa_supplicant (13.2, 13.1: code execution). Red Hat has updated chromium-browser (RHEL6: multiple vulnerabilities) and kernel (RHEL5.6: privilege escalation). Scientific Linux has updated 389-ds-base (SL7: access control bypass). SUSE has updated kernel (SLES10 SP4: multiple vulnerabilities). (Comment on this)
5:50p	OpenBSD 5.7 OpenBSD 5.7 has been released. This version includes improved hardware support, network stack improvements, installer improvements, security and bug fixes, and more. OpenSSH 6.8, LibreSSL, and other packages have also seen improvements and bug fixes. (Comment on this)

<< Previous Day

2015/05/01 [Calendar]

Next Day >>