LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Thursday, December 8th, 2016

    Time Event
    1:15a
    [$] LWN.net Weekly Edition for December 8, 2016
    The LWN.net Weekly Edition for December 8, 2016 is available.
    5:00p
    Thursday's security updates

    Debian has updated xen (multiple vulnerabilities).

    Debian-LTS has updated gst-plugins-bad0.10 (code execution) and gst-plugins-base0.10 (code execution).

    Fedora has updated memcached (F25: three vulnerabilities), ntp (F25; F24; F23: multiple vulnerabilities), php-php-gettext (F23: code execution), and phpMyAdmin (F23: multiple vulnerabilities).

    Gentoo has updated binutils (multiple vulnerabilities from 2014), coreutils (code execution from 2014), cracklib (code execution), jq (code execution from 2015), openjpeg (multiple vulnerabilities, one from 2015), socat (encryption botch), and sqlite (code execution from 2015).

    Mageia has updated kernel (multiple vulnerabilities) and ntp (multiple vulnerabilities).

    openSUSE has updated kernel (42.2; 42.1: multiple vulnerabilities, some from 2015).

    Oracle has updated kernel 4.1.12 (OL7; OL6: two vulnerabilities).

    Red Hat has updated atomic-openshift (RHOSCP 3.3, 3.2, 3.1:), chromium-browser (RHEL6: many vulnerabilities), and openstack-cinder and openstack-glance (RHOSP 9.0: denial of service from 2015).

    SUSE has updated firefox (SLE12: code execution), java-1_6_0-ibm (SLE11: multiple vulnerabilities), java-1_7_1-ibm (SLE12; SLE11: multiple vulnerabilities), kernel (SLE12: three vulnerabilities), and xen (SLE11: multiple vulnerabilities).

    Ubuntu has updated openjdk-6 (12.04: multiple vulnerabilities).

    6:15p
    Remembering a friend: Matthew Williams (Fedora Community Blog)
    Over at the Fedora Community Blog, Brian Proffitt writes about Fedora member Matthew Williams who passed away recently from cancer. "Matthew’s passion to constantly improve the software and hardware with which he worked created a tireless advocate for the Fedora Project, and his presence was felt at conferences across the nation: SCaLE, Ohio LinuxFest, and the former Indiana LinuxFest, an Indianapolis-based event that he helped found.

    Matthew also devoted time to interviewing and archiving notable figures in the free and open source software communities to learn what drove people to work on their projects. He was also very driven to share what he knew, launching the Open FOSS training site in 2015 to help new Linux users with getting involved with any Linux distribution. While he was active in the Fedora community, Matthew was also very involved with Ubuntu as well.    "
    8:36p
    Stable kernels 4.8.13 and 4.4.37
    Greg Kroah-Hartman has announced the release of the 4.8.13 and 4.4.37 stable kernels. As usual, there are fixes throughout the tree and users of those kernel series should upgrade.

    Note that the fix for the kernel code execution vulnerability using AF_PACKET sockets (also known as CVE-2016-8655) has not made it into these stable kernels. Those running systemd may want to check Lennart Poettering's blog post on how to mitigate the problem for services started by systemd.

    << Previous Day 2016/12/08
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org