Language Selection

English French German Italian Portuguese Spanish

RealNetworks issues patches to fix critical flaws

Filed under
Security

According to eEye Digital Security, the company that discovered two of the flaws, attackers could gain access to the unsuspecting users' system by introducing an incomplete .rm movie file and then triggering a buffer overflow. This would allow the hacker to run arbitrary code on the computer and thus take control of it.

The second flaw allows buffer overrun in a third-party compression library, "An attacker can zip one file that has hostile data and create a .rjs file. [The attacker] can change the file length field of .rjs file so when it processes [the] zip file, it will cause a heap overflow," a statement issued by the company said.

RealNetworks is advising all users to update their players with the latest patches to be on the safe side.

Full Story.

More in Tux Machines

France: ‘tax source code will be made public’

France’s tax department is willing to make the source code available for its income tax software system, says Axelle Lemaire, minister responsible for Digital Affairs. However, preparation takes time, she told April, France’s free software advocacy group, last month. Read more

Simplicity Linux 15.7 Comes at the End of July with Linux Kernel 4.0

David Purse from the development team of Simplicity Linux, a distribution derived from LXPup and built around the LXDE desktop environment, has announced the release of the first Beta build towards the final version of Simplicity Linux 15.7. Read more

Linux Kernel 3.14.46 LTS Has ARM and ARM64 Improvements, Updated Drivers

After announcing the release of the Linux kernel 4.1.1, Linux kernel 4.0.7, and Linux kernel 3.10.82 LTS, Greg Kroah-Hartman also published details about a new maintenance release of the Linux 3.14 kernel branch. Read more

Google open-sources its software for making trippy images with deep learning

The deepdream project is now available on GitHub. The project relies on the open-source Caffe deep learning framework. Deep learning involves training artificial neural networks on a large pile of data — for example, pictures of geese — and then throwing them a new piece of data, like a picture of an ostrich, to receive an educated guess about it. Read more