Language Selection

English French German Italian Portuguese Spanish

Security: Updates, Mitigations, Myths, DNS/IPFire and Huawei

Submitted by Roy Schestowitz on Thursday 13th of February 2020 03:27:29 AM Filed under
Security
  • Security updates for Wednesday

    Security updates have been issued by CentOS (spice-gtk), Debian (libemail-address-list-perl), openSUSE (chromium, libqt5-qtbase, nginx, systemd, and wicked), Oracle (spice-gtk), Slackware (firefox and thunderbird), and Ubuntu (libexif and Yubico PIV Tool).

  • Mitigations are attack surface, too

    This blog post discusses a bug leading to memory corruption in Samsung's Android kernel (specifically the kernel of the Galaxy A50, A505FN - I haven't looked at Samsung's kernels for other devices). I will describe the bug and how I wrote a (very unreliable) exploit for it. I will also describe how a second vulnerability, which had long been fixed in the upstream kernel, the upstream stable releases, and the Android common kernel, but not in Samsung's kernel, aided in its exploitation.

    If you want to look at the corresponding source code yourself, you can download Samsung's kernel sources for the A505FN from here. The versions seem to be sorted such that the newer ones are at the top of the list; A505FNXXS3ASK9 is the newest one at the time of writing, corresponding to the November 2019 security patch level.

  • What to know about open source security

    Many companies have a preference towards open source technology, so what should be kept in mind in regards to ensuring its security?

  • Enhancements to our DNS Resolver

    Today, we have taken some important changes on our DNS Resolver into production. Having released support for DNS-over-TLS in 2018, we have now added TCP Fast Open and TLSv1.3.

    Lightning Wire Labs is managing a DNS Resolver to provide an alternative to the large corporation who are trying to get the global DNS system under their control and use it for marketing purposes.

    To not fall behind the technical development, we have now enabled some new features on our resolver to make it ready for the new DNS changes that are going to land with IPFire 2.25 - Core Update 141 very soon.

  • U.S. Officials Say Huawei Can Covertly Access Telecom Networks

    Huawei can covertly access mobile networks through back doors meant for law enforcement, the U.S. has told allies in a bid to show that the firm poses a security threat. 

    U.S. officials say Huawei Technologies Co. can covertly access mobile-phone networks around the world through “back doors” designed for use by law enforcement, as Washington tries to persuade allies to exclude the Chinese company from their networks.

»

More in Tux Machines

Privacy-focused Linux Distributions to Secure Your Online Presence in 2021

Linux distros are usually more secure than their Windows and Mac counterparts. Linux Operating Systems being open-source leaves very less scope of unauthorized access to its core. However, with the advancement of technologies, incidents of attacks are not rare. Are you in a fix with the coming reports of Linux systems targeted malware attacks? Worried about your online presence? Then maybe it’s time to go for a secure, privacy-focused Linux distro. This article presents a guide to 3 privacy-oriented Linux distributions that respect your privacy online. Read more

Stable Kernels: 5.14.7, 5.10.68, 5.4.148, 4.19.207, 4.14.247, 4.9.283, and 4.4.284

I'm announcing the release of the 5.14.7 kernel.

All users of the 5.14 kernel series must upgrade.

The updated 5.14.y git tree can be found at:
	git://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git linux-5.14.y
and can be browsed at the normal kernel.org git web browser:
	https://git.kernel.org/?p=linux/kernel/git/stable/linux-s...

thanks,

greg k-h
Read more Also: Linux 5.10.68 Linux 5.4.148 Linux 4.19.207 Linux 4.14.247 Linux 4.9.283 Linux 4.4.284

i.MX8M Nano based mini-PC features Wirepas mesh networking

SolidRun’s $221-and-up “SolidSense N8 IoT Compact” mini-PC runs Linux on an i.MX8M Nano Solo with GbE, WiFi/BT, USB, and a choice of LTE or PoE. You also get a choice of RS485 with CAN or BLE 5.0 with Wirepas Massive. The SolidSense N8 IoT Compact embedded system follows SolidRun’s i.MX6-based SolidSense N6 Edge Gateway, which similarly offers a bundle of the Wirepas wireless mesh software from Tampere, Finland based Wirepas. The wireless mesh software, which is now called Wirepas Massive, is pre-installed along with software defined radios (SDRs) on two of the four i.MX8M Nano based SolidSense N8 models. Applications include IoT tasks such as automation, asset tracking, security, and smart buildings. Read more

AMD Ryzen processors are getting a performance boost on Linux

Chip giant AMD has shared details about a new driver that promises to improve the performance of its Zen-based processors on Linux. According to reports, the new driver is the result of a joint collaboration between AMD and Valve, with the two companies toiling to enhance performance and power efficiency reportedly in preparation for the launch of the Steam Deck, Valve’s Zen 2-based take on portable gaming. Read more

More on Tux Machines: AboutGalleryForumBlogsSearchNewsRSS Feed

Part of Bytes Media ● Sister sites below.

TechBytes Techrights button

Powered by Drupal, an open source content management system

Content available under CC-BY-SA CC

© by original authors

Powered by CentOS 6.5 (GNU/Linux), Varnish, and Drupal 6