Friday, September 16th, 2016

Time	Event
12:57p	Hutterer: Synaptics pointer acceleration For this week's development horror story, it would be hard to do better than Peter Hutterer's quest to figure out how pointer acceleration works in the Synaptics driver. "Also a disclaimer: the last time some serious work was done on acceleration was in 2008/2009. A lot of things have changed since and since the server is effectively un-testable, we ended up with the mess below that seems to make little sense. It probably made sense 8 years ago and given that most or all of the patches have my signed-off-by it must've made sense to me back then. But now we live in the glorious future and holy cow it's awful and confusing." (Comment on this)
5:15p	Friday's security advisories CentOS has updated libarchive (C7; C6: multiple vulnerabilities, some from 2015). Debian has updated tomcat7 (privilege escalation) and tomcat8 (privilege escalation). Debian-LTS has updated mysql-5.5 (privilege escalation). Fedora has updated curl (F24: code execution). Mageia has updated cracklib (code execution), dropbear (three code execution flaws), jasper (two vulnerabilities from 2015), krb5 (denial of service), lcms2 (information leak), mediawiki (multiple vulnerabilities), openvpn (information leak), perl-DBD-mysql (two code execution flaws from 2014 and 2015), and perl-XSLoader (code execution). openSUSE has updated opera (42.1: multiple vulnerabilities) and tiff (42.1: multiple vulnerabilities, three from 2015). Red Hat has updated chromium-browser (RHEL6: multiple vulnerabilities). Scientific Linux has updated kernel (SL7: three vulnerabilities). Slackware has updated curl (code execution). (Comment on this)
10:22p	Bash 4.4 and Readline 7.0 released The GNU Bourne Again SHell (Bash) project has released version 4.4 of the tool. It comes with a large number of bug fixes as well as new features:"The most notable new features are mapfile's ability to use an arbitrary record delimiter; a --help option available for nearly all builtins; a new family of ${parameter@spec} expansions that transform the value of `parameter'; the `local' builtin's ability to save and restore the state of the single-letter shell option flags around function calls; a new EXECIGNORE variable, which adds the ability to specify names that should be ignored when searching for commands; and the beginning of an SDK for loadable builtins, which consists of a set of headers and a Makefile fragment that can be included in projects wishing to build their own loadable builtins, augmented by support for a BASH_LOADABLES_PATH variable that defines a search path for builtins loaded with `enable -f'. The existing loadable builtin examples are now installed by default with `make install'." In addition, the related Readline command-line editing library project has released Readline 7.0. (Comment on this)

<< Previous Day

2016/09/16 [Calendar]

Next Day >>