Language Selection

English French German Italian Portuguese Spanish

Security Leftovers

Filed under
Security
  • Friday's security updates
  • Critical OpenSSL Patch Available. Patch Now!

    All versions of OpenSSL are vulnerable to CVE-2014-0195, but this vulnerability only affects DTLS clients or servers (look for SSL VPNs... not so much HTTPS).

  • Linux Trojan That Takes Screenshots and Records Audio Has a Windows Brother

    The Linux trojan that spied on users by taking screenshots of their desktop has now a Windows variant, as Kaspersky's security team has found out.

    The trojan, first discovered by Dr.Web and named Linux.Ekocms, and later also identified by Sophos as Linux/Mokes-A, and then by Kaspersky as Backdoor.Linux.Mokes.a, has caused some stir in the Linux community because it was one of the first spyware threats detected in the wild on the platform.

More in Tux Machines

Antergos 17.9 Gnome - Ghost riders in the Tux

Antergos 17.9 is a weird distro, full of polarities. It comes with a weak live session, and it does not really demo what it can do. The installer is good, robust, and if offers some neat tricks, including extra software and proprietary graphics driver. I'm really impressed by that. The installed system behaved reasonably, but with some oddities. Hardware support isn't the best, most notably touchpad and what happened after waking from suspend. On the other hand, you get good smartphone and media support, a colorful and practical software selection, a moderately reasonable package manager with some tiny dependency hiccups, pretty looks, okay performance, and nowhere does it advertise its Archness. Much better than I expected, not as good as it should be. Well, taking everything into consideration, I guess it deserves something like 7.5/10. Antergos needs a livelier live session, more hardware love out of the box, and a handful of small tweaks around desktop usability. Shouldn't be too hard to nail. Worth watching. Read more

LibreELEC (Krypton) v8.1.2 BETA

This is the third beta for our 8.2 release. It addresses minor findings related to the Samba bump: we now detect and avoid invalid Samba v3 configurations, old samba.conf.sample templates are overwritten with the new v4 template, and remote SMB shares are mounted using SMB2 or where possible SMB3. The release also adds support for the Raspberry Pi IQAudIO Digi+ board and a Xiaomi BT remote, and includes security fixes for the Blueborne Linux/BlueZ vulnerability. This is hopefully the final 8.1.x beta release; next will be 8.2.0. Read more

Android Leftovers

Red Hat: Microsoft Blobs, Being Red Hat, Red Hat Patents, and Imminent Financial Results (RHT)