Language Selection

English French German Italian Portuguese Spanish

LWN

Syndicate content
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
Updated: 4 hours 38 min ago

Weekly edition one day late this week

Wednesday 7th of September 2016 06:43:12 PM
Last Monday was the Labor Day holiday in the US, so the LWN crew took the day off to celebrate. As a result, the weekly edition will be published one day late this week. It will be available on Friday, sometime shortly after midnight UTC.

Stable kernel updates

Wednesday 7th of September 2016 04:05:48 PM
Stable kernels 4.7.3, 4.4.20, and 3.14.78 have been released with the usual set of important fixes. There will be one more 3.14.x kernel release before this kernel series hits its end-of-life.

Wednesday's security advisories

Wednesday 7th of September 2016 03:56:53 PM

Debian has updated charybdis (incorrect SASL authentication).

Debian-LTS has updated libtomcrypt (signature forgery).

Fedora has updated 389-ds-base (F23: information disclosure), libgcrypt (F23: flawed random number generation), libksba (F23: denial of service), and mediawiki (F24; F23: multiple vulnerabilities).

openSUSE has updated Chromium (Leap42.1: multiple vulnerabilities), thunderbird (SPH for SLE12; Leap42.1, 13.2: multiple vulnerabilities), and tomcat (Leap42.1: two vulnerabilities).

Red Hat has updated postgresql92-postgresql (RHSCL: two vulnerabilities) and rh-postgresql95-postgresql (RHSCL: two vulnerabilities).

SUSE has updated Chromium (SPH for SLE12: multiple vulnerabilities).

Git v2.10.0

Tuesday 6th of September 2016 08:21:06 PM
Git 2.10 has been released, with lots of updates to the user interface and workflows, performance enhancements, and much more. See the announcement for details.

Danko: Next steps for Gmane

Tuesday 6th of September 2016 07:01:41 PM
LWN previously reported that Gmane creator and maintainer Lars Magne Ingebrigtsen shut down the website and was contemplating shutting down the service entirely. Martin Danko now reports that Gmane has a new maintainer. "I petitioned some of our directors to allow us to offer to take it over and in the end we entered into agreement with Lars to take over Gmane. The assets of Gmane have been placed into a UK company Gmane Ltd. As part of the agreement, we have received the INN spool with all the articles but none of the code that drives the site. We’ve started rebuilding parts of the site just to get it back online, its not perfect and there are pieces missing but we’re working on building all the functionality back into the site." (Thanks to Brian Thomas)

Security advisories for Tuesday

Tuesday 6th of September 2016 05:08:54 PM

Arch Linux has updated thunderbird (code execution).

CentOS has updated ipa (C7; C6: denial of service) and thunderbird (C7; C6; C5: code execution).

Debian has updated chromium-browser (multiple vulnerabilities), flex (regression in previous update), and kernel (multiple vulnerabilities).

Debian-LTS has updated jsch (path traversal), kernel (multiple vulnerabilities), and tiff3 (multiple vulnerabilities).

Fedora has updated ca-certificates (F23: certificate update), ganglia (F24; F23: cross-site scripting), glibc (F23: denial of service), kernel (F24; F23: two vulnerabilities), lcms2 (F23: heap memory leak), and phpMyAdmin (F24: multiple vulnerabilities).

openSUSE has updated curl (13.2: three vulnerabilities), dosfstools (Leap42.1: two vulnerabilities), eog (Leap42.1, 13.2: out-of-bounds write), and xerces-c (Leap42.1: two vulnerabilities).

Oracle has updated thunderbird (OL7; OL6: code execution).

Red Hat has updated kernel (RHEL6.7; RHEL6.5: information leak) and thunderbird (RHEL5,6,7: code execution).

Scientific Linux has updated ipa (SL6,7: denial of service).

SUSE has updated kernel (SOSC5, SMP2.1, SM2.1, SLE11-SP3: multiple vulnerabilities).

LLVM 3.9 released

Tuesday 6th of September 2016 08:37:11 AM
Version 3.9 of the LLVM compiler suite is out. "This release is the result of the LLVM community's work over the past six months, including ThinLTO, new libstdc++ ABI compatibility, support for all OpenCL 2.0 and all non-offloading OpenMP 4.5 features, clang-include-fixer, many new clang-tidy checks, significantly improved ELF linking with lld, identical code folding and initial LTO support in lld, as well as improved optimization, many bug fixes and more."

Anticipating KDE's 20th anniversary

Tuesday 6th of September 2016 06:38:55 AM
The announcement of a project to develop the "Kool Desktop Environment" went out on October 14, 1996. As the 20th anniversary of that announcement approaches, the KDE project is celebrating with a project timeline and a 20 Years of KDE book. "This book presents 37 stories about the technical, social and cultural aspects that shaped the way the KDE community operates today. It has been written as part of the 20th anniversary of KDE. From community founders and veterans to newcomers, with insights from different perspectives and points of view, the book provides you with a thrilling trip through the history of such an amazing geek family."

Kernel prepatch 4.8-rc5

Monday 5th of September 2016 06:56:07 AM
The 4.8-rc5 kernel prepatch is available for testing. "So rc5 is noticeably bigger than rc4 was, and my hope last week that we were starting to calm down and shrink the releases seems to have been premature. [...] Not that any of this looks worrisome per se, but if things don't start calming down from now, this may be one of those releases that will need an rc8. We'll see."

More in Tux Machines

Red Hat and Fedora

  • Red Hat, Logicalis in digital transformation partnership in Latin America
    PromonLogicalis, a provider of information technology and communication solutions and services in Latin America, and Red Hat, Inc. (NYSE: RHT), the world's leading provider of open source solutions, announced a collaboration that aim to help organizations navigate the digital transformation of their infrastructures to pave the way for cloud and the software-defined technologies, and to advance open source technology awareness in the region. Open source is delivering significant advancements in many areas of technology through community-powered innovation, including cloud computing, mobile, big data, and more. And, as companies embrace modern technology as a competitive advantage via digital transformation efforts, many are turning to open source because of the flexibility and agility it can enable.
  • Red Hat Inc. (RHT) Downgraded by Zacks Investment Research to “Hold”
  • An Easy Way To Try Intel & RADV Vulkan Drivers On Fedora 24
    Fedora 25 should have good support for the open-source Vulkan Linux drivers (particularly if it lands the next Mesa release) while Fedora 24 users can now more easily play with the latest Mesa Git RADV and Intel ANV Vulkan drivers via a new repository. A Phoronix reader has setup a Fedora Copr repository that is building Intel's Vulkan driver from Mesa Git plus the RADV Radeon Vulkan driver re-based from its source (David Airlie's semi-interesting GitHub branch). Fedora COPR, for the uninformed, is the distribution's equivalent to Ubuntu PPA repositories.
  • Meeting users, lots of users
    Every year, I introduce Fedora to new students at Brno Technical University. There are approx. 500 of them and a sizable amount of them then installs Fedora. We also organize a sort of installfest one week after the presentation where anyone who has had any difficulties with Fedora can come and ask for help. It’s a great opportunity to observe what things new users struggle with the most. Especially when you have such a high number of new users. What are my observations this year?

Linux Devices

  • 96Boards SBCs host Intel Joule and Curie IoT modules
    Gumstix announced two SBCs this week, based on Intel Joule and Curie IoT modules and built to 96Boards CE and IE form-factor specifications, respectively. At Linaro Connect Las Vegas 2016, where earlier this week Linaro’s 96Boards.org announced a new 96Boards IoT Edition (IE) spec, Gumstix announced support for 96Boards.org’s open SBC standards with two new single-board computers. Both SBCs will be available for purchase in October.
  • ORWL — First Open Source And Physically Secure PC, Runs Linux And Windows
    ORWL is the first open source, physically secure computer. Using a secure microcontroller (MCU) and an ‘active clamshell mesh’, the device makes sure that nobody breaks the security of the system. Its maker, Design Shift, has also launched a crowdfunding campaign on Crowd Supply.
  • Purism Is Still Hoping To Build A GNU/Linux Free Software Librem Smartphone
    Purism, the startup behind the Librem laptops with a focus on free software and user privacy/freedom, still has their minds set on coming up with a GNU/Linux smartphone. Purism continues selling their high-priced laptops and their Librem 11 is forthcoming as an Intel-based tablet/convertible device with stocking station. Next on their horizon they want to produce "the ideal no-carrier, Free Software phone running a bona fide GNU+Linux stack."

Leftovers: OSS

  • Asterisk 14 Improves Open-Source VoIP
    Digium, the lead commercial sponsor behind the Asterisk open source PBX project announced the release Asterisk 14 this week, continuing to evolve the decade old effort, making it easier to use and deploy.
  • Yahoo open-sources a deep learning model for classifying pornographic images
    Yahoo today announced its latest open-source release: a model that can figure out if images are specifically pornographic in nature. The system uses a type of artificial intelligence called deep learning, which involves training artificial neural networks on lots of data (like dirty images) and getting them to make inferences about new data. The model that’s now available on GitHub under a BSD 2-Clause license comes pre-trained, so users only have to fine-tune it if they so choose. The model works with the widely used Caffe open source deep learning framework. The team trained the model using its now open source CaffeOnSpark system. The new model could be interesting to look at for developers maintaining applications like Instagram and Pinterest that are keen to minimize smut. Search engine operators like Google and Microsoft might also want to check out what’s under the hood here. “To the best of our knowledge, there is no open source model or algorithm for identifying NSFW images,” Yahoo research engineer Jay Mahadeokar and senior director of product management Gerry Pesavento wrote in a blog post.
  • Cloudera, Hortonworks, and Uber to Keynote at Apache Big Data and ApacheCon Europe
  • Vendors Pile on Big Data News at Strata
    Cloudera, Pentaho and Alation are among vendors making Big Data announcements at this week's Strata event. Vendors big and small are making news at this week's Strata + Hadoop event as they try to expand their portion of the Big Data market. Cloudera highlighted a trio of Apache Software Foundation (ASF) projects to which it contributes. Among them is Spark 2.0, which benefits from a new Dataset API that offers the promise of better usability and performance as well as new machine learning libraries.
  • New alliances focus on open-source, data science empowerment
    How can data science make a true market impact? Partnerships, particularly amongst open source communities. As IBM solidifies its enterprise strategies around data demands, two new partnerships emerge: one with Continuum Analytics, Inc., advancing open-source analytics for the enterprise; and another with Galvanize, initiating a Data Science for Executives program. Continuum Analytics, the creator and driving force behind Anaconda — a leading open data science platform powered by Python — has allied with IBM to advance open-source analytics for the enterprise. Data scientists and data engineers in open-source communities can now embrace Python and R to develop analytic and machine learning models in the Spark environment through its integration with IBM’s DataWorks Project. The new agreement between IBM and Galvanize, which provides a dynamic learning community for technology, will offer an assessment, analysis and training element for Galvanize’s Data Science for Executives program. This program empowers corporations to better understand, use and maximize the value of their data. The program will support IBM’s DataFirst Method, a methodology that IBM says provides the strategy, expertise and game plan to help ensure enterprise customers’ succeed on their journey to become a data-driven business.
  • Apache Spot: open source big data analytics for cyber
  • Chinese open source blockchain startup Antshares raises $4.5M through crowdsourcing [Ed: Microsoft-connected]
  • August and September 2016: photos from Pittsburgh and Fresno
  • Libre Learn Lab: a summit on freely licensed resources for education
    Libre Learn Lab is a two-day summit for people who create, use and implement freely licensed resources for K-12 education, bringing together educators, policy experts, software developers, hardware hackers, and activists to share best practices and address the challenges of widespread adoption of these resources in education. The 2nd biennial conference is Saturday, October 8th, and Sunday, October 9th, at the MIT Tang Center. The keynote addresses will be delivered by the FSF’s own Richard M. Stallman, former Chief Open Education Advisor Andrew Marcinek and founder of HacKIDemia Stefania Druga. At the event, there will be a special tribute to Dr. Seymour Papert (the father of educational computing) by Dr. Cynthia Solomon.

Security Leftovers

  • Friday's security advisories
  • ICANN grinds forward on crucial DNS root zone signing key update
    The Internet Corporation for Assigned Names and Numbers is moving -- carefully -- to upgrade the DNS root zone key by which all domains can be authenticated under the DNS Security Extensions protocol. ICANN is the organization responsible for managing the Domain Name System, and DNS Security Extensions (DNSSEC) authenticates DNS responses, preventing man-in-the-middle attacks in which the attacker hijacks legitimate domain resolution requests and replaces them with fraudulent domain addresses. DNSSEC still relies on the original DNS root zone key generated in 2010. That 1024-bit RSA key is scheduled to be replaced with a 2048-bit RSA key next October. Although experts are split over the effectiveness of DNSSEC, the update of the current root zone key signing key (KSK) is long overdue.
  • Cybersecurity isn't an IT problem, it's a business problem
    The emergence of the CISO is a relatively recent phenomenon at many companies. Their success often relies upon educating the business from the ground up. In the process, companies become a lot better about how to handle security and certainly learn how not to handle it. As a CIO, knowing the pulse of security is critical. I oversee a monthly technology steering committee that all the executives attend. The CISO reports during this meeting on the state of the security program. He also does an excellent job of putting risk metrics out there, color coded by red, yellow, and green. This kind of color grading allows us to focus attention on where we are and what we’re doing about it.