LWN.net's Journal
 
[Most Recent Entries] [Calendar View]

Friday, October 28th, 2016

    Time Event
    3:13p
    Friday's security advisories

    Debian has updated nginx (packaging problem in previous security update).

    Debian-LTS has updated tre (code execution).

    openSUSE has updated flash-player (13.2: code execution).

    Red Hat has updated kernel (RHEL5: two vulnerabilities) and nodejs and nodejs-tough-cookie (RHOSE: two vulnerabilities).

    SUSE has updated flash-player (SLE12: code execution).

    Ubuntu has updated firefox (two vulnerabilities), , nginx (16.10, 16.04, 14.04: packaging problem in previous security update), and thunderbird (multiple vulnerabilities).

    4:01p
    [$] Defending against Rowhammer in the kernel
    The Rowhammer
    vulnerability affects hardware at the deepest levels. It has proved to be
    surprisingly exploitable on a number of different systems, leaving
    security-oriented developers at a loss. Since it is a hardware
    vulnerability, it would appear that solutions, too, must be placed in the
    hardware. Now, though, an interesting software-based mitigation mechanism
    is under discussion on the linux-kernel mailing list. The ultimate
    effectiveness of this defense is unproven, but it does show that there may
    be hope for a solution that doesn't require buying new computers.
    4:33p
    Two new stable kernels
    Greg Kroah-Hartman has released the 4.8.5
    and 4.4.28 stable kernels. As usual, they
    contain fixes throughout the tree and users of those series should upgrade.
    5:05p
    A change of lawyers at the FSF
    The Free Software Foundation has announced
    that Eben Moglen has stepped down as the organization's general counsel;
    there is no word on who his replacement will be. "The FSF looks
    forward to working together in other capacities with Professor Moglen and
    SFLC on future projects to advance the free software movement and use of
    the GNU General Public License (GPL).
    "
    5:13p
    Formatted kernel documentation at kernel.org
    For the last couple of release cycles, the kernel's ongoing transition to
    the Sphinx documentation system has left kernel.org behind. Thanks to some
    work by Konstantin Ryabitsev, that situation has now been remedied, and
    kernel.org has the formatted
    documentation
    generated from the current -rc kernel. The DocBook-generated documents
    remain available for as long as DocBook stays in use. (For those
    interested in the linux-next version of the documentation, the version on LWN's server is
    usually up to date; it currently has the changes that are queued for 4.10.)
    6:52p
    What comes after ‘iptables’? It’s successor, of course: `nftables` (RH blog)
    The Red Hat Developers Blog is running an
    introduction to the nftables packet filtering system
    .
    "nftables implements a set of instructions, called expressions, which
    can exchange data by storing or loading it in a number of registers. In
    other words, the nftables core can be seen as a virtual
    machine. Applications like the nftables front end-tool nft can use the
    expressions offered by the kernel to mimic the old iptables matches while
    gaining more flexibility.
    "

    << Previous Day 2016/10/28
    [Calendar]
    Next Day >>

LWN.net   About LJ.Rossia.org