Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 9 min 9 sec ago

The Core Infrastructure Initiative census project

Thursday 9th of July 2015 01:37:13 PM
The Core Infrastructure Initiative (a Linux Foundation effort to direct resources to critical projects in need of help) has announced a census project to identify the development projects most in need of assistance. "Unlike the Fed’s stress tests, which are opaque, all of the census data and analysis is open source. We are eager for community involvement. We encourage developers to fork the project and experiment with different data sources, different parameters, and different algorithms to test out the concept of an automated risk assessment census. We are also eager for input to help sanitize and complete the data that was used in this first iteration of the census."

[$] LWN.net Weekly Edition for July 9, 2015

Thursday 9th of July 2015 02:05:57 AM
The LWN.net Weekly Edition for July 9, 2015 is available.

[$] A preview of PostgreSQL 9.5

Wednesday 8th of July 2015 04:43:05 PM
The PostgreSQL 9.5 alpha release is now available for testing. In this feature article, PostgreSQL core team member Josh Berkus discusses the need for an alpha release and introduces a number of the new features that will show up in 9.5. Click below (subscribers only) for the full article.

Security advisories for Wednesday

Wednesday 8th of July 2015 04:25:55 PM

Arch Linux has updated bind (denial of service) and flashplugin (code execution).

Debian has updated bind9 (denial of service).

Debian-LTS has updated linux-ftpd-ssl (segmentation fault).

openSUSE has updated flash-player (13.2, 13.1: code execution).

Oracle has updated abrt (OL6: multiple vulnerabilities).

Scientific Linux has updated abrt (SL6: multiple vulnerabilities).

Slackware has updated bind (denial of service), cups (code execution), firefox (multiple vulnerabilities), and ntp (denial of service).

SUSE has updated bind (SLE11SP3: denial of service) and Xen (SLES10SP4: two vulnerabilities).

Ubuntu has updated bind9 (15.04, 14.10, 14.04, 12.04: denial of service) and libwmf (15.04, 14.10, 14.04, 12.04: multiple vulnerabilities).

Debian to switch back to ffmpeg

Wednesday 8th of July 2015 01:55:13 PM
After nearly a year of consideration, the Debian project has decided to switch back to the ffmpeg multimedia library at the expense of its fork libav. See this wiki page for a summary of the current reasoning behind the switch.

[$] Self-hosting projects with Gogs

Tuesday 7th of July 2015 09:08:39 PM
In May, we noted the problems that GIMP and other free-software projects have encountered of late with the SourceForge project-hosting service. While there are plenty of alternative hosting providers to choose from, some developers will likely always prefer to self-host their projects—precisely because an outside service provider can make just such an abrupt or surprising about-face. Gogs is one option for those taking the self-hosting approach: it provides a web-based front-end to a GitHub-like hosting service. Gogs offers quite a few features, but its choice of GitHub-like qualities may not be to everyone's tastes.

ownCloud 8.1 released

Tuesday 7th of July 2015 05:44:46 PM
The ownCloud 8.1 release is out. "This release marks significant under the hood improvements, such as increasing scalability and performance of syncing and file operations while making ownCloud a better platform for developers to build upon. Security enhancements, integrated documentation links, more control in the admin panel over external storage, LDAP and encryption make ownCloud more secure and easier to use." See the release notes for details.

Security updates for Tuesday

Tuesday 7th of July 2015 04:33:54 PM

Arch Linux has updated ntp (denial of service).

CentOS has updated firefox (C7; C6; C5: multiple vulnerabilities).

Debian has updated cups-filters (code execution) and libwmf (code execution).

Gentoo has updated exiv2 (denial of service), icu (code execution), libvncserver (multiple vulnerabilities), libxml2 (denial of service), sqlite (three vulnerabilities), tor (denial of service), and unrtf (code execution).

Red Hat has updated abrt (RHEL6: multiple vulnerabilities) and kernel (RHEL6.4: privilege escalation).

Ubuntu has updated haproxy (15.04, 14.10: information leak), kernel (15.04; 14.10; 14.04; 12.04: multiple vulnerabilities), linux-lts-trusty (12.04: multiple vulnerabilities), linux-lts-utopic (14.04: multiple vulnerabilities), linux-lts-vivid (14.04: multiple vulnerabilities), and linux-ti-omap4 (12.04: privilege escalation).

Stable kernel updates

Monday 6th of July 2015 06:44:29 PM
Greg KH has released two new stable kernels; 3.14.47 and 3.10.83. Both contain important fixes.

Security advisories for Monday

Monday 6th of July 2015 05:18:04 PM

Arch Linux has updated haproxy (information leak) and openssh (restriction bypass).

Debian has updated haproxy (information leak) and iceweasel (multiple vulnerabilities).

Debian-LTS has updated aptdaemon (information leak) and virtualbox-ose (multiple vulnerabilities).

Fedora has updated ansible (F22; F21: two vulnerabilities), mariadb (F22: man-in-the-middle attack), pam (F21: denial of service), and trafficserver (F22; F21: several vulnerabilities).

Gentoo has updated chrony (multiple vulnerabilities).

Mageia has updated chromium-browser (MG4,5: multiple vulnerabilities), coreutils (MG4: memory handling error), curl (MG5: information disclosure), filezilla (MG4,5: cipher-downgrade attacks), firefox (MG4,5: multiple vulnerabilities), libwmf (MG4,5: multiple vulnerabilities), mysql-connector-java (MG4: information disclosure), owncloud-client (MG4,5: man-in-the-middle attack), pam (MG4,5: denial of service), pcre (MG5: information leak), php (MG4: multiple vulnerabilities), polkit (MG4,5: multiple vulnerabilities), tidy (MG4: buffer overflow), and wireshark (MG5: denial of service).

openSUSE has updated php5 (13.2, 13.1: multiple vulnerabilities) and phpMyAdmin (13.2, 13.1: three vulnerabilities).

Scientific Linux has updated firefox (SL5,6,7: multiple vulnerabilities).

SUSE has updated OpenSSL (SLE11SP3; SLED11SP3, SLES10SP4; SLES11SP2; SLES10SP4: multiple vulnerabilities).

Ubuntu has updated cups-filters (15.04, 14.10, 14.04, 12.04: code execution) and php5 (15.04, 14.10, 14.04, 12.04: multiple vulnerabilities).

Kernel Summit 2015: Call for Proposals

Monday 6th of July 2015 12:23:27 AM
The 2015 Kernel Summit will be held October 26-28 in Seoul, South Korea; the call for discussion proposals is out now. Now would be a good time for those who would like to attend the Summit to come up with a good topic and get the discussion going. Proposals are due by July 31.

Kernel prepatch 4.2-rc1

Sunday 5th of July 2015 11:44:27 PM
Linus has released 4.2-rc1 and closed the merge window for this development cycle. As Linus explains, 4.2 may, in the end, not end up being the development cycle with the most commits ever, but there is still a lot going on. "However, if you count the size in pure number of lines changed, this really seems to be the biggest rc we've ever had, with over a million lines added (and about a quarter million removed). That beats the previous champion (3.11-rc1) that was huge mainly due to Lustre being added to the staging tree." The source of the biggest chunk of those new lines is the new amdgpu graphics driver.

More in Tux Machines

Ubuntu MATE Projects Donates Money to Debian, MATE, and Syncthing Developers

The Ubuntu MATE project does something very admirable each month. Its makers contribute financially to other open source projects that are being used in the operating system, and that is something that doesn't happen all the often in the FOSS universe. Read more

Wine 1.7 Series Turn Two Years Old, No Sign Of Wine 1.8

Today marks two years since the start of the Wine 1.7 development series. While it's been two years of doing bi-weekly development releases, there's no sign of Wine 1.8.0 being ready for release in the near future. Read more

Today in Techrights

Leftovers: Software

  • gtkmm now uses C++11
    All the *mm projects now require C++11. Current versions of g++ require you to use the –std=c++11 option for this, but the next version will probably use C++11 by default. We might have done this sooner if it had been clearer that g++ (and libstdc++) really really supported C++11 fully.
  • Pixman Baking ARMv6, PowerPC 64 Improvements
    Pixman 0.33.2 RC has many new ARMv6 optimizations, bug fixes for PowerPC 64-bit, and various other fixes and enhancements to the MMX code.
  • Obnam 1.13 released (backup software)
    I have just released version 1.13 of Obnam, my backup program. See the website at http://obnam.org for details on what it does. The new version is available from git (see http://git.liw.fi) and as Debian packages from http://code.liw.fi/debian, and uploaded to Debian, and soon in unstable.
  • MusicTube Review - Use YouTube as Your Source of Music
    MusicTube is a very interesting music player designed for multiple platforms using YouTube as the music source. It's not made for locally hosted music, and you can't add other online sources, but YouTube is a huge resource.