Language Selection

English French German Italian Portuguese Spanish

IPFire Open-Source Linux Firewall Now Patched Against Intel MDS Vulnerabilities

Filed under
OSS
Security

IPFire 2.23 Core Update 132 is more like an emergency release that ships with an updated Linux kernel, version 4.14.120, which is patched against the recently disclosed Intel MDS (Microarchitectural Data Sampling) security vulnerabilities known as RIDL, Fallout, and ZombieLoad, as well as an updated intel-microcode firmware, version 20190514.

"Additionally, to mitigate this bug which cannot be fixed at all, SMT is disabled by default on all affected processors which has significant performance impacts," said Michael Tremer in the release announcement. "Please note, that Intel unfortunately is not releasing microcode for all processors any more and so you might still be vulnerable. To apply the fixes, please reboot your system."

Read more

IPFire 2.23 - Core Update 132 Released with Important Security

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

today's howtos

The Linux kernel: Top 5 innovations

The word innovation gets bandied about in the tech industry almost as much as revolution, so it can be difficult to differentiate hyperbole from something that’s actually exciting. The Linux kernel has been called innovative, but then again it’s also been called the biggest hack in modern computing, a monolith in a micro world. Setting aside marketing and modeling, Linux is arguably the most popular kernel of the open source world, and it’s introduced some real game-changers over its nearly 30-year life span. Read more

Android Leftovers

Removing Qt 4 from Ubuntu before the 20.04 release

I would like to completely remove Qt 4 from the Ubuntu archive before the 20.04 release. This includes all of KDE 4 and dependencies. The Debian Qt/KDE Team (which I am a part of) is raising the status of the Qt 4 removal bugs to RC[1], and since the Qt 6 work is starting upstream in the dev branch in the coming months, now is the time for Qt 4 to go. My timeline for this is to change all of the bugs filed to ask people to port[2] to removal bugs, and go over the list of Qt 4 reverse dependencies one last time, so the removal can be done at the beginning of the 20.04 cycle before the archive opens. This would make 19.10 the last release with Qt 4. Read more Also: Ubuntu Planning To Drop Qt4 & Its Dependencies Ahead Of 20.04 LTS