Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 24 min 34 sec ago

Alpine Linux 3.11 released

Thursday 19th of December 2019 11:09:13 PM
Version 3.11 of the lightweight Alpine Linux distribution is available. Changes include the 5.4 kernel, Raspberry Pi 4 support, GNOME and KDE support, and the deprecation of Python 2.

Cloud Native Computing Foundation announces TUF graduation

Thursday 19th of December 2019 09:02:52 PM
The Cloud Native Computing Foundation (CNCF) is part of the Linux Foundation that is focused on Kubernetes and other cloud technologies. It has announced that The Update Framework (TUF) has graduated to a full member project. "TUF, an open-source technology that secures software update systems, is the first specification and first security-focused project to graduate. Justin Cappos, associate professor of computer science and engineering at NYU Tandon School of Engineering, initially developed the project in 2009. Cappos is also the first academic researcher to lead a graduated project and TUF is the first project born out of a university to graduate.

Security updates for Thursday

Thursday 19th of December 2019 02:03:08 PM
Security updates have been issued by Arch Linux (git, libgit2, and shadow), Debian (debian-edu-config and python-django), Fedora (python-django), Mageia (apache-commons-beanutils, fence-agents, flightcrew, freerdp, htmldoc, libssh, pacemaker, rsyslog, samba, and sssd), Oracle (freetype and kernel), Scientific Linux (freetype and kernel), SUSE (firefox, spectre-meltdown-checker, thunderbird, xen, and zziplib), and Ubuntu (python-django).

[$] LWN.net Weekly Edition for December 19, 2019

Thursday 19th of December 2019 12:25:18 AM
The LWN.net Weekly Edition for December 19, 2019 is available.

[$] A year-end wrap-up from LWN

Wednesday 18th of December 2019 09:20:28 PM
2019 is coming to a close. It has been another busy year with a lot going on in the Linux and free-software communities. Here at LWN, we have a longstanding tradition of looking back at the predictions made in January to see just how badly we did; it's not good to go against tradition no matter how embarrassing the results might be, so we might as well get right into it.

[$] Fedora and optical media testing

Wednesday 18th of December 2019 09:04:12 PM
Once upon a time, Linux was installed from a stack of floppy disks—thankfully cassette tape "drives" were long in the past at that point—but floppies were superseded by optical media, first CDs and then DVDs. These days, those options are starting to fade away in most new computer systems; just as it is now rather hard to find a floppy-based Linux installer, not to mention the media and drives themselves, someday optical media installation will disappear as well. For Fedora, that day has not truly arrived, though a somewhat confusingly presented proposal on the Fedora devel mailing list is, to a limited extent, a step in that direction.

Stable kernel updates

Wednesday 18th of December 2019 03:53:27 PM
Stable kernels 5.4.4, 5.3.17, 4.19.90, and 4.14.159 have been released. They all contain important fixes and users should upgrade.

Update: Stable kernels 5.4.5 and 5.3.18 have also been released. This is the last 5.3.y kernel release and users should move to 5.4.y.

Security updates for Wednesday

Wednesday 18th of December 2019 03:45:22 PM
Security updates have been issued by Debian (debian-edu-config, harfbuzz, libvorbis, and python-ecdsa), Fedora (chromium, fribidi, libssh, and openslp), openSUSE (chromium), Oracle (grub2), Red Hat (rh-maven35-apache-commons-beanutils), SUSE (kernel, libssh, mariadb, samba, and xen), and Ubuntu (openjdk-8, openjdk-lts).

[$] One million ought to be enough for anybody

Tuesday 17th of December 2019 10:44:26 PM
Programming languages generally have limits—explicit or implicit—on various aspects of their operation. Things like the maximum length of an identifier or the range of values that a variable can store are fairly obvious examples, but there are others, many of which are unspecified by the language designers and come about from various implementations of the language. That ambiguity has consequences, so nailing down a wide variety of limits in Python is the target of an ongoing discussion on the python-dev mailing list.

SpamAssassin 3.4.3 available

Tuesday 17th of December 2019 05:04:24 PM
SpamAssassin 3.4.3 has been released. It includes a new plugin for finding macros in Office documents, a couple of security fixes, and various other improvements. The project is also letting it be known that, due to the dropping of support for rulesets with SHA-1 signatures, versions of SpamAssassin prior to 3.4.2 will no longer be able to download rule updates as of the beginning of March.

Security updates for Tuesday

Tuesday 17th of December 2019 03:55:34 PM
Security updates have been issued by Debian (libssh, ruby2.3, and ruby2.5), Fedora (kernel and libgit2), openSUSE (chromium and libssh), Oracle (openslp), Red Hat (container-tools:1.0, container-tools:rhel8, freetype, kernel, and kpatch-patch), Scientific Linux (openslp), SUSE (git and LibreOffice), and Ubuntu (graphicsmagick).

Wong: XFS - 2019 Development Retrospective

Monday 16th of December 2019 05:51:12 PM
XFS filesystem maintainer Darrick Wong summarizes the significant XFS developments from the last year. "The year 2038 poses a special problem for Linux -- any signed 32-bit seconds counter will overflow back to 1901. Work is underway in the kernel to extend all of those counters to support 64-bit counters fully. In 2020, we will begin work on extending XFS's metadata (primarily inode timestamps and quota expiration timer) to support timestamps out to the year 2486. It should be possible to upgrade to existing V5 filesystems."

Stable kernel updates

Monday 16th of December 2019 03:32:40 PM
Stable kernels 5.4.3, 5.3.16, and 4.19.89 have been released. They all contain important fixes throughout the tree and users should upgrade.

Security updates for Monday

Monday 16th of December 2019 03:25:22 PM
Security updates have been issued by Debian (davical, intel-microcode, libpgf, php-horde, spamassassin, spip, and thunderbird), Mageia (clementine, dnsmasq, git, jasper, kdelibs4, kernel, libcroco, libgit2, libvirt, ncurses, openafs, proftpd, qbittorrent, signing-party, squid, and wireshark), openSUSE (java-1_8_0-openjdk and postgresql), Oracle (kernel), Red Hat (chromium-browser and openslp), and SUSE (kernel, libssh, and xen).

Kernel prepatch 5.5-rc2

Monday 16th of December 2019 03:00:08 AM
The second 5.5 kernel prepatch is out. "Things look normal - rc2 is usually fairly calm, and so it was this week too."

Russian police raid NGINX Moscow office

Sunday 15th of December 2019 02:52:11 PM
ZDNet reports on a police raid at the NGINX office. "Moscow police executed the raid after last week the Rambler Group filed a copyright violation against NGINX Inc., claiming full ownership of the NGINX web server code. The Rambler Group is the parent company of rambler.ru, one of Russia's biggest search engines and internet portals. According to copies of the search warrant posted on Twitter today, Rambler claims that Igor Sysoev developed NGINX while he was working as a system administrator for the company, hence they are the rightful owner of the project."

[$] Explicit pinning of user-space pages

Friday 13th of December 2019 03:52:30 PM
The saga of get_user_pages() — and the problems it causes within the kernel — has been extensively chronicled here; see the LWN kernel index for the full series. In short, get_user_pages() is used to pin user-space pages in memory for some sort of manipulation outside of the owning process(es); that manipulation can sometimes surprise other parts of the kernel that think they have exclusive rights to the pages in question. This patch series from John Hubbard does not solve all of the problems, but it does create some infrastructure that may make a solution easier to come by.

Security updates for Friday

Friday 13th of December 2019 02:02:41 PM
Security updates have been issued by Fedora (knot-resolver and xen), openSUSE (kernel), and SUSE (haproxy, kernel, and openssl).

More in Tux Machines

Today in Techrights

21 Important Penetration Tools in Kali Linux

Kali Linux uses many kinds of penetration tools to assess the security situation of your devices and networks. Whether you are looking to advance your career as an ethical tester or find the vulnerabilities of your systems, these powerful tools yield excellent results. Almost all of them should be accessible from the main Kali Linux terminal. Note: if you are an ethical tester, you must have the necessary permissions to access another person’s device, unless you’re testing on your own devices. Read more

Hello, LineageOS 17.1

We have been working extremely hard since Android 10’s release last August to port our features to this new version of Android. Thanks to massive refactoring done in some parts of AOSP, we had to work harder than anticipated to bring some features forward, and in some cases, introduced implementations similar to some of our features into AOSP (but we’ll get to that later). First, let’s talk about naming versioning - you may be thinking “Shouldn’t this be 17.0, as AOSP is on 10, and not 10.1?”. and given our previous versioning, you’d be correct. When the December Android Security Bulletin (ASB) dropped, we rebased on the more feature filled Google Pixel 4/4 XL tag of AOSP. We decided that, in the future, if we decide for any reason to rebase a large number of repos on a different tag, we will uprev our subversion, eg. 17.0 -> 17.1. As per this migration, on March 4th, we locked all lineage-17.0 branches and abandoned existing 17.0 changes. Not to fear, you can always cherry-pick your changes to 17.1, even via the Gerrit UI if you’d like! Read more Also: LineageOS 17.1 released

Red Hat Enterprise Linux helps pioneering unmanned marine research

In 1620, the Mayflower embarked on an uncertain journey across the Atlantic Ocean, with more than 100 pilgrims on board hoping to begin a new life in the New World. Now, 400 years later, The Mayflower Autonomous Ship (MAS) will follow in the footsteps of the original ship from Plymouth, England to Plymouth, Massachusetts. Only this time, there will be no human captain or onboard crew. It will be one of the first full-sized, fully-autonomous and unmanned vessels to cross the Atlantic Ocean. The MAS project is a global collaboration led by marine research organization Promare. Conceived as a way to commemorate the 400th anniversary of the Mayflower voyage, it could have long-lasting implications for the shipping industry and the future of oceanographic research. The autonomous shipping market is projected to grow from $90BN today to over $130BN by 2030. However; many of today's autonomous ships are just automated and do not dynamically adapt to new situations. Using an integrated set of IBM's AI, cloud, and edge technologies, ProMare is aiming to give the Mayflower the ability to operate independently in some of the most challenging circumstances on the planet. Read more