LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Monday, December 14th, 2015

    Time Event
    2:50a
    Kernel prepatch 4.4-rc5
    Linus has released the 4.4-rc5 prepatch.
    "If you have all your Christmas shopping done, I would
    heartily recommend giving rc5 a whirl in between the eggnogs and the
    decorations. And if you're not celebrating the holidays, you have no
    excuse for not testing it all out.    "
    4:12p
    Qubes OS will ship pre-installed on Purism’s security-focused Librem 13 laptop (ars technica)
    Ars technica reports
    that the Purism Librem 13 laptop will be available with the
    virtualization-based Qubes distribution. "Qubes wants to lower the
    barrier of entry for new users, including security-conscious enterprise
    users who might want to buy a number of laptops for their staff. In
    addition to the Librem 13, Qubes plans to certify the larger Librem 15,
    plus other laptops that are 'as diverse as possible in terms of geography,
    cost, and availability.'    " LWN looked at
    Qubes 3.0     back in May.
    5:33p
    Security advisories for Monday

    Debian has updated bouncycastle (invalid curve attack) and libphp-phpmailer (header injection).

    Debian-LTS has updated grub2 (code execution).

    Fedora has updated grub2 (F23: code execution), LibRaw (F22: two vulnerabilities), moodle (F23; F22: multiple vulnerabilities), openssl (F22: multiple vulnerabilities), pax-utils (F22: multiple vulnerabilities), pcre (F22: denial of service), proftpd (F23; F22: denial of service), qemu (F23: denial of service), and wget (F22: information leak).

    openSUSE has updated libpng12 (13.2, 13.1: denial of service), libpng16 (13.2, 13.1: denial of service), libraw (13.2, 13.1: unspecified), and mbedtls (Leap42.1: code execution).

    Oracle has updated openssl (OL7; OL6: multiple vulnerabilities).

    Red Hat has updated chromium-browser (RHEL6: multiple vulnerabilities), glibc (RHEL7.1: multiple vulnerabilities), libpng (RHEL6: multiple vulnerabilities), libreoffice (RHEL6,7: multiple vulnerabilities), openshift (RHOSE3: information leak), and openssl (RHEL6,7; RHEL5: multiple vulnerabilities).

    SUSE has updated java-1_7_1-ibm (SLE12: many vulnerabilities) and java-1_8_0-ibm (SLE12: many vulnerabilities).

    Ubuntu has updated libxml2 (multiple vulnerabilities).

    8:15p
    Luu: Files are hard
    Here is a lengthy posting
    from Dan Luu     on why it is so hard to safely write files on Unix-like
    systems. It comes down to a combination of POSIX semantics and filesystem
    bugs. "Something to note here is that while btrfs’s semantics aren’t
    inherently less reliable than ext3/ext4, many more applications corrupt
    data on top of btrfs because developers aren’t used to coding against
    filesystems that allow directory operations to be reordered (ext2 was the
    only other filesystem that allowed that reordering). We’ll probably see a
    similar level of bug exposure when people start using NVRAM drives that
    only have byte-level atomicity. People almost always just run some tests to
    see if things work, rather than making sure they’re coding against what’s
    legal in a POSIX filesystem.    "
    9:27p
    Release for CentOS Linux 7 (1511)
    The CentOS project has announced the release of CentOS Linux 7 (1511),
    derived from Red Hat Enterprise Linux 7.2. "This release supersedes all previously released content for CentOS
    Linux 7, and therefore we highly encourage all users to upgrade their
    machines. Information on different upgrade strategies and how to
    handle stale content is included in the Release Notes.    "

    << Previous Day 2015/12/14
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org