LWN.net's Journal
 
 [Most Recent Entries] [Calendar View]

Wednesday, September 30th, 2020

    Time Event
    3:03p
    Security updates for Wednesday
    Security updates have been issued by Arch Linux (chromium, firefox, libvirt, and podman), Debian (firefox-esr and nss), Gentoo (bitcoind, chromium, cifs-utils, gpsd, libuv, and xen), Mageia (firefox, gnutls, mediawiki, samba, and Thunderbird), openSUSE (brotli and cifs-utils), Red Hat (audiofile, bluez, cloud-init, cpio, cups, curl, dbus, dnsmasq, e2fsprogs, evince and poppler, exiv2, expat, firefox, fontforge, freeradius, freerdp, glib2 and ibus, glibc, httpd, hunspell, ipa, kernel, kernel-rt, libcroco, libexif, libmspack, libpng, librabbitmq, libsndfile, libsrtp, libssh2, libtiff, libvirt, libvpx, libwmf, libxml2, libxslt, mariadb, mod_auth_openidc, NetworkManager, nss and nspr, okular, OpenEXR, openldap, openwsman, pcp, python, python-pillow, python3, qemu-kvm, qemu-kvm-ma, qt5-qtbase, samba, SDL, spamassassin, squid, subversion, systemd, tigervnc, tomcat, unoconv, and webkitgtk4), SUSE (bcm43xx-firmware, nodejs8, pdns, python-pip, and xen), and Ubuntu (libapreq2, netqmail, samba, and tomcat6).
    5:36p
    RPM 4.16.0 released
    Version 4.16.0 of the RPM package manager has been released. "This
    turned out to be a much bigger release than anticipated with several
    groundbreaking new features, despite finally being back to annual cycle
    almost to date.    " Highlights include new database backends, macro and
    %if expressions including ternary operator and native version comparison,
    optional MIME type based file classification, new version parsing and
    comparison API in C and Python, license clarification, and more. The release notes have more details.
    9:27p
    [$] LVFS tames firmware updates
    Keeping device firmware up-to-date can be a challenge for end users. Firmware
    updates are often important for correct behavior, and they can have security
    implications as well. The Linux Vendor Firmware
    Service     (LVFS) project is playing an increasing role in making firmware
    updates more straightforward for both end users and vendors; LVFS
    just announced     its 20-millionth firmware download. Since
    even a wireless mouse dongle     can pose a security threat, the importance
    of simple, reliable, and easily applied firmware updates is hard to
    overstate.
    11:18p
    [$] OpenWrt and SELinux
    SELinux is a
    security mechanism with a lot of ability to restrict user-space compromises
    in various useful ways. It has also generally been considered a
    heavyweight option that is not suitable for more resource-restricted
    systems like wireless routers. Undeterred by this perception, some OpenWrt developers are adding SELinux as
    an option for protecting the distribution, which targets embedded devices.

    << Previous Day 2020/09/30
    [Calendar]     		Next Day >>

LWN.net   About LJ.Rossia.org