LinuxSecurity.com: Updated readline packages fix security vulnerability:
Steve Kemp discovered the _rl_tropen() function in readline insecurely
handled a temporary file. This could allow a local attacker to perform
symbolic link attacks (CVE-2014-2524).
LinuxSecurity.com: Updated glibc packages fix security issues:
Stephane Chazelas discovered that directory traversal issue in locale
handling in glibc. glibc accepts relative paths with .. components
in the LC_* and LANG variables. Together with typical OpenSSH
LinuxSecurity.com: Updated cups packages fix security vulnerability:
In CUPS before 1.7.4, a local user with privileges of group=lp
can write symbolic links in the rss directory and use that to gain
'@SYSTEM' group privilege with cupsd (CVE-2014-3537).
LinuxSecurity.com: Updated tor package fixes security vulnerability:
Tor before 0.2.4.23 maintains a circuit after an inbound RELAY_EARLY
cell is received by a client, which makes it easier for remote
attackers to conduct traffic-confirmation attacks by using the pattern
LinuxSecurity.com: Multiple vulnerabilities has been discovered and corrected in php:
Use-after-free vulnerability in ext/spl/spl_array.c in the SPL
component in PHP through 5.5.14 allows context-dependent attackers to
cause a denial of service or possibly have unspecified other impact via
LinuxSecurity.com: Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate [More...]
LinuxSecurity.com: Updated php53 and php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5 and 6 respectively. The Red Hat Security Response Team has rated this update as having Moderate [More...]
LinuxSecurity.com: Updated resteasy-base packages that fix one security issue are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate [More...]
LinuxSecurity.com: Updated samba packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having [More...]
LinuxSecurity.com: An updated yum-updatesd package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having [More...]
Sentris is a new kind of music game that puts you at the epicenter of musical creation. It's colourful and filled with great music, so what more could you want?
It's very early though, so be warned they will be plenty of bugs and nasties lurking around, but the basic game is actually a pretty awesome idea.
The Journey Down: Chapter Two is a point-and-click adventure that will transport you back in the golden era of gaming that was populated by titles like Grim Fandango and Broken Sword. It's an amazing experience and it shows us that adventures games are not a thing of the past.
Metro Redux is on its way to Linux and it will require Linux gamers have OpenGL 4.x core support. For now this means that right off the bat the open-source Mesa/Gallium3D drivers are off-limits for the time being.
The third part in my articles on giving some limelight to open source games, this time I have a completely different set to show you! See part one is here where I highlight 18 different projects, also see part 2 for even more open source goodness!.
Matt Mullenweg founder and CEO of Automattic which is responsible for WordPress.com has reached out to people who develop software on the GNU/Linux platform to find someone who will bring the Simplenote application to GNU/Linux.
UberWriter is described by its developer as a simple markdown editor, but it's so much more than that. It has only a handful of features and some people might be disturbed by its simplicity, but in the end everyone will love it.
The Linux platform has no shortage of media players, and most of them are really good. It should come as no surprise that Quod Libet is also playing in the same league and that users will really enjoy it.
Intel Beignet Is Working Out Surprisingly Well For OpenCL On Linux
Beignet is the project out of Intel's Open-Source Technology Center for exposing GPGPU/compute capabilities out of Ivy Bridge hardware and newer when using a fully open-source Linux stack. While Beignet differs greatly from Gallium3D's Clover state tracker, this Intel-specific open-source OpenCL implementation is working out quite well for Ubuntu Linux.
While I've been writing about Intel's Beignet project since early 2013, it's probably been about a year now since I tried out the code, which is developed by Intel's OTC graphics team in China. This weekend I tried out Beignet v0.9.2 as trying out the newest Intel OpenCL code has been on my TODO list for a while and it's been working out rather well in my initial tests.