LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Thursday, April 18th, 2019

    Time Event
    1:09a
    [$] LWN.net Weekly Edition for April 18, 2019
    The LWN.net Weekly Edition for April 18, 2019 is available.
    12:58p
    Security updates for Thursday
    Security updates have been issued by CentOS (polkit), Gentoo (dovecot, libseccomp, and patch), openSUSE (aubio, blktrace, flac, lxc, lxcfs, pspp, SDL, sqlite3, and xen), Red Hat (java-1.8.0-openjdk, java-11-openjdk, and rh-maven35-jackson-databind), Scientific Linux (java-1.8.0-openjdk), Slackware (libpng), SUSE (python, python3, sqlite3, and xerces-c), and Ubuntu (ntfs-3g).
    1:11p
    OpenSSH 8.0 released
    OpenSSH 8.0 has been released with a bunch new features and some bug fixes, including one for a security problem:
    "This release contains mitigation for a weakness in the scp(1) tool
    and protocol (CVE-2019-6111): when copying files from a remote system
    to a local directory, scp(1) did not verify that the filenames that
    the server sent matched those requested by the client. This could
    allow a hostile server to create or clobber unexpected local files
    with attacker-controlled content.

    This release adds client-side checking that the filenames sent from
    the server match the command-line request,

    The scp protocol is outdated, inflexible and not readily fixed. We
    recommend the use of more modern protocols like sftp and rsync for
    file transfer instead.    "
    1:34p
    Ubuntu 19.04 (Disco Dingo) released
    Ubuntu 19.04, code named "Disco Dingo", has been released, along with the following flavors: Ubuntu Budgie, Kubuntu, Lubuntu, Ubuntu Kylin, Ubuntu MATE,
    Ubuntu Studio, and Xubuntu.
    "The Ubuntu kernel has been updated to the 5.0 based Linux kernel,
    our default toolchain has moved to gcc 8.3 with glibc 2.29, and we've
    also updated to openssl 1.1.1b and gnutls 3.6.5 with TLS1.3 support.

    Ubuntu Desktop 19.04 introduces GNOME 3.32 with increased performance,
    smoother startup animations, quicker icon load times and reduced CPU+GPU
    load. Fractional scaling for HiDPI screens is now available in Xorg
    and Wayland.

    Ubuntu Server 19.04 integrates recent innovations from key open
    infrastructure projects like OpenStack Stein, Kubernetes, and Ceph with
    advanced life-cycle management for multi-cloud and on-prem operations,
    from bare metal, VMware and OpenStack to every major public cloud.    " More information can be found in the release notes.
    4:01p
    [$] Tracking pages from get_user_pages()
    As has been recently discussed here,
    developers for the filesystem and memory-management subsystems have been
    grappling for years with the problems posed by the get_user_pages()
    mechanism. This function maps memory into the kernel's address space for
    direct access by the kernel or peripheral devices, but that kind of access
    can create confusion in the filesystem layers, which may not be expecting
    that memory to be written to at any given time. A new patch
    set     from Jérôme Glisse tries to chip away at a piece of the problem,
    but a complete solution is not yet in view.

    << Previous Day 2019/04/18
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org