Language Selection

English French German Italian Portuguese Spanish

Debian

Debian & Ubuntu Fix Man-in-the-Middle Attack in APT Package Manager, Update Now

Filed under
Debian
Ubuntu

The security vulnerability was discovered by Max Justicz in the APT package, the high-level package manager used by the Debian GNU/Linux and Ubuntu operating systems, as well as any other derivative, official or unofficial, such as Kubuntu, Lubuntu, Xubuntu, Ubuntu MATE, and even the popular Linux Mint.

The issue could allow a remote attacker to trick APT into installing malicious packages that pose as valid ones, but which could be used for code execution with administrative (root) privileges after installation to gain control of the vulnerable machine. More details are available for further reading at CVE-2019-3462.

Read more

Security Updates, Reproducible Builds and More Debian Maintenance

Filed under
Security
Debian
  • Security updates for Tuesday
  • Reproducible Builds: Weekly report #195

    As part of the Debian Long Term Support (LTS) effort it was noticed that an old package was failing to build beyond ~2015.

  • Kai-Chung Yan: My Open-Source Activities from November to December 2018

    I do not work on open-source full-time, although I sincerely would love to. Therefore the posts may cover a ridiculously long period (even a whole year).

    Debian

    Debian is a general-purpose Linux distribution that is widely used on the planet. I am a Debian Developer who works on packages related to Android SDK and the Java ecosystem.

    After a month of hardwork, I finally finished the packaging of android-platform-art. The tricky part was that this package is the first of our Android SDK packages that fails to build using GCC, which was realized only after I had patched an awful lot of code.

  • Free Software Activities in December 2018

    Hello again for another of my monthly updates on my work on Debian Science and the FreeCAD ecosystem.

    There's only a few announcement items since I was mostly enjoying my holidays, but several important things were accomplished this month. Also, since there's not much time left before the release of Debian 10, there's some consideration to be done towards what I'll be working on in the next few months.

Testing Ubuntu, Linux Mint Debian Edition, openSUSE Leap and more Linux distributions on my new laptop

Filed under
Linux
Debian
Ubuntu

In my previous post, I described loading five different Linux distributions onto my new Acer Aspire 5. In this post, I will add four more. But first I would like to add a bit more information about the laptop itself; I have been using it for a week, and I am quite pleased and impressed with it.

First, it is quite fast, it boots Tumbleweed in less than 30 seconds, for example. Battery life is good, too; the specifications say approximately seven hours, and in continuous real-life use I've gotten

Read more

Testing openSUSE, Manjaro, Debian, Fedora, and Mint Linux distributions on my new laptop

Filed under
Linux
Red Hat
Debian
SUSE

Due to the recent unfortunate demise of a couple of my computers I found myself in need of a new laptop on rather short notice. I found an Acer Aspire 5 on sale at about half price here in Switzerland, so I picked one up. I have been installing a number of Linux distributions on it, with mostly positive results.

Read more

Debian and Ubuntu Leftovers

Filed under
Debian
Ubuntu
  • Freexian’s report about Debian Long Term Support, December 2018

    Like each month, here comes a report about the work of paid contributors to Debian LTS.

  • CasparCG Server for TV broadcast playout in Debian

    The layered video playout server created by Sveriges Television, CasparCG Server, entered Debian today. This completes many months of work to get the source ready to go into Debian. The first upload to the Debian NEW queue happened a month ago, but the work upstream to prepare it for Debian started more than two and a half month ago. So far the casparcg-server package is only available for amd64, but I hope this can be improved. The package is in contrib because it depend on the non-free fdk-aac library. The Debian package lack support for streaming web pages because Debian is missing CEF, Chromium Embedded Framework. CEF is wanted by several packages in Debian. But because the Chromium source is not available as a build dependency, it is not yet possible to upload CEF to Debian. I hope this will change in the future.

  • Participate in Fedora Test Day Today, Netrunner Announces Netrunner 19.01 Blackbird, Security Patch for GNOME Bluetooth Tools in Ubuntu 18.04, New Giant Board SBC from Groboard and Linspire Posts Development Roadmap for 2019-2020

    Canonical yesterday released a security patch for the GNOME Bluetooth tools to address a security vulnerability with Ubuntu 18.04. Softpedia News reports that security researcher Chris Marchesi discovered the vulnerability in the BlueZ Linux Bluetooth stack, "which made it incorrectly handle disabling Bluetooth visibility, allowing a remote attacker to possibly pair to Bluetooth devices." All Ubuntu 18.04 LTS users should update immediately to the gnome-bluetooth 3.28.0-2ubuntu0.1 and libgnome-bluetooth13 3.28.0-2ubuntu0.1 packages from the official repos. See the wiki for detailed instructions.

  • Ubuntu Weekly Newsletter Issue 561

Debian-Based Netrunner 19.01 "Blackbird" Officially Released with New Dark Look

Filed under
Debian

Dubbed Blackbird, Netrunner 19.01 comes ten months after the Netrunner 18.03 "Idolon" release with a fresh, dark new look and feel with a more 3D-looking design, which was created using the Kvantum theme engine and the Alpha-Black Plasma theme. The new theme comes with some bling too as there's now a light glow for the "Minimize all Windows to show Desktop" function.

"Around this time of the year, we thought we could try something more vivid and colorful to lighten up the shortened days. So instead of going with the previously used “material look”, we thought of something different. Blackbird ships with a new Look and Feel Theme called “Netrunner Black” that is based on a dark, yet not too harsh contrasting visual," reads today's announcement.

Read more

Also: Netrunner 19.01 – Blackbird released

Here's the Default Theme and Artwork for Debian GNU/Linux 10 "Buster"

Filed under
Debian

Created by Alex Makas, the "futurePrototype" artwork set was selected the winner of the artwork proposals for Debian GNU/Linux 10 "Buster" and will be used as the default theme for the upcoming operating system. The "futurePrototype" artwork set consists of a wallpaper, login theme with the Debian Buster logo, as well as a theme for the GRUB bootloader.

"After the Debian Desktop Team made the call for proposing themes, a total of eleven choices have been submitted, and any Debian contributor has received the opportunity to vote on them in a survey," said the Debian team in an announcement. "We received 3,646 responses ranking the different choices, and futurePrototype has been the winner among them."

Read more

Upgrading Debian From Stable To Testing

Filed under
Debian

I reckon you've been a long time user of Debian stable and now wants to change some few aspects of your computer....oh wait! I mean huge aspects of your computer operating system. Now you want to upgrade to Debian testing because you'd like new features, get access to cool software, and importantly test that newly updated software too Wink Well, in that case, lucky you! I am happy to guide you on how to accomplish that on your computer. Moreover, if you are a total newbie to Debian operating system, don't worry, I've made sure to explain about basic stuff first so you can get a clear perspective on what the content of this topic is.

Read more

Also: DocKnot 2.00

Debian: Freexian's Debian LTS, FreeRDP and SEPTOR Linux

Filed under
Debian

Debian: New Debian Developers and Maintainers, DebConf19 and More

Filed under
Debian
  • New Debian Developers and Maintainers (November and December 2018)

    The following contributors got their Debian Developer accounts in the last two months:

    Abhijith PA (abhijith)
    Philippe Thierry (philou)
    Kai-Chung Yan (seamlik)
    Simon Qhuigley (tsimonq2)
    Daniele Tricoli (eriol)
    Molly de Blanc (mollydb)
    The following contributors were added as Debian Maintainers in the last two months:

    Nicolas Mora
    Wolfgang Silbermayr
    Marcos Fouces
    kpcyrd
    Scott Martin Leggett

  • DebConf19 is looking for sponsors!

    DebConf19 will be held in Curitiba, Brazil from July 21th to 28th, 2019. It will be preceded by DebCamp, July 14th to 19th, and Open Day on the 20th.

    DebConf, Debian's annual developers conference, is an amazing event where Debian contributors from all around the world gather to present, discuss and work in teams around the Debian operating system. It is a great opportunity to get to know people responsible for the success of the project and to witness a respectful and functional distributed community in action.

    The DebConf team aims to organize the Debian Conference as a self-sustaining event, despite its size and complexity. The financial contributions and support by individuals, companies and organizations are pivotal to our success.

  • Nonce sense paper online

    When you create a cryptographic signatures using ECDSA (the elliptic curve digital signature algorithm), you need to come up with the nonce, a 256 bit random number. It is really important to use a different nonce every time, otherwise it is easy for someone else to take your signatures (which might be stored for everyone to read on the Bitcoin blockchain) and calculate your private key using relatively simple math, and with your private key they can spend all your Bitcoins. In fact, there is evidence that people out there continuously monitor the blockchains for signatures with such repeated nonces and immediately extract the money from compromised keys.

    Less well known, but still nothing new to the crypto (as in cryptopgraphy) community is the that an attacker can calculate the key from signature that use different, but similar nonces: For example if they are close by each other (only the low bits differ), or if they differ by exactly a large power of two (only the high bits differ). This uses a fancy and powerful technique based on lattices. Our main contribution here is to bridge crypto (as in cryptopgraphy) and crypto (as in cryptocurrency) and see if such vulnerabilities actually exist out there.

    And indeed, there are some. Not many (which is good), but they do exist, and clearly due to more than one source. Unfortunately, it is really hard to find out who made these signatures, and with which code, so we can only guess about the causes of these bugs. A large number of affected signatures are related to multisig transactions, so we believe that maybe hardware tokens could be the cause here.

  • Jonathan Dowland: Amiga floppy recovery project, part 3: preliminaries

    The first step for my Amiga project was to recover the hardware from my loft and check it all worked.

    When we originally bought the A500 (in, I think, 1991) we bought a RAM expansion at the same time. The base model had a whole 512KiB of RAM, but it was common for people to buy a RAM expander that doubled the amount of memory to a whopping 1 MiB. The official RAM expander was the Amiga 501, which fit into a slot on the underside of the Amiga, behind a trapdoor.

    The 501 also featured a real-time clock (RTC), which was powered by a backup NiCad battery soldered onto the circuit board. These batteries are notorious for leaking over a long enough time-frame, and our Amiga had been in a loft for at least 20 years. I had heard about this problem when I first dug the machine back out in 2015, and had a vague memory that I checked the board at the time and could find no sign of leakage, but reading around the subject more recently made me nervous, so I double-checked.

  • Debian Bug Squash Party Tokyo 2019-01
  • Mario Lang: Please delete me from Planet

    Wow. Hi Debian. Apparently, you've changed even more in a direction I personally never really liked. As a member of a minority group, I feel the need to explain that I highly dislike the way you are currently handling minority groups. And no, I dont feel you are ignoring them. You are giving a select view far too much attention for a technically focused project.

Syndicate content

More in Tux Machines

Microsoft Windows Server Benchmarked Against Six Linux Distributions

While it was not too long ago that Microsoft Windows Server 2019 began shipping and that we conducted some end-of-year benchmarks between Windows and Linux, with being in the process of running a number of Windows and Linux benchmarks as part of our ongoing 10GbE OS performance testing, I also took the opportunity to run some other benchmarks on Windows Server 2016 and 2019 as well as a set of Linux distributions. With carrying out the fresh OS installations anyways for the network testing, with recently having brought over some more Phoronix Test Suite test profiles with Windows support, I decided to run some fresh Windows Server vs. Linux benchmarks anyways. Granted, not all of the tests are server-oriented and not all of the traditional Linux server distributions were used. Just take this as you wish of some fresh Windows vs. Linux performance benchmarks. Read more

Games: Lutris, Little Mouse's Encyclopedia, Team Fortress 2 and More

Roundup of Wine 4.0 Release Coverage

  • Wine 4.0 Released
    The Wine team is proud to announce that the stable release Wine 4.0 is now available.
  • Wine 4.0 Officially Released with Vulkan & Direct3D 12 Support, HiDPI on Android
    The Wine project proudly announced today the general availability of the Wine 4.0 release, a major version of the open-source software that lets Linux and macOS users install and use Windows apps on their computers. Wine 4.0 comes about a year after the Wine 3.0 release, which was the first to introduce an Android driver to allow users run Windows apps and games on devices powered by Google's Android mobile OS, Direct3D 11 support by default for AMD Radeon and Intel GPUs, a task scheduler, as well as AES encryption support on macOS. With Wine 4.0, the team continues to improve the free and open-source compatibility layer that allows Windows program to run on Linux and Mac computers, adding new features like support for the next-generation Vulkan graphics API, Direct3D 12 support, HiDPI (High-DPI) support on Android, and support for game controllers.
  • Wine 4.0 Released With New Features: Run Windows Apps On Linux Efficiently
    With Microsoft’s initiative to bring Linux Bash Shell on Windows 10, the Windows users are now able to run their favorite Linux tools on their current operating system. But what if you need to run full-fledged Windows apps and games on a Linux distro? In that case, a software like Wine is really helpful. The developers of this utility have recently released the new version, i.e., 4.0, with lots of features. Wine 4.0 is the result of a year of development effort.
  • Wine 4.0 Released With Vulkan Support, Initial Direct3D 12 Support, CSMT Enabled By Default
    After being in development for a year, Wine 4.0 is now available for download. The new stable Wine release includes important changes like support for Vulkan, Direct3D 12 and game controllers. For those that might not be familiar with it, Wine is a Windows compatibility layer for Linux that lets you run Windows applications and games on Linux, macOS, and Android (experimental). Wine is used by Proton, Valve's Steam Play compatibility layer that allows playing Windows games on Linux, and by CrossOver, a commercial Microsoft Windows compatibility layer for macOS and Linux, among others.
  • Wine 4.0 is Here with Significant New Features
    Not everyone prefers to use Wine. But, if you have a favorite app/service that is not yet available for Linux, you can try Wine in order to run Windows apps or games. For those who are not aware of Wine, it’s a software that lets you run Windows-only applications and games on Linux. Want iTune on Linux, Wine is your best bet.
  • Wine 4.0 Released With Vulkan Support, Initial Direct3D 12 and Better HiDPI
  • Wine 4.0 Officially Released With Vulkan Support, Initial Direct3D 12 & Better HiDPI
    Wine 4.0 is now officially available as the new annual stable release to Wine for running Windows programs and games on Linux and other operating systems. Following seven weekly release candidates, Wine 4.0 was ready to ship today as judged by Wine founder Alexandre Julliard. Wine 4.0 is a big release bringing initial Vulkan graphics API support, Direct3D CSMT is enabled by default, early Direct3D 12 support via VKD3D, continued HiDPI work, various OpenGL improvements, multi-sample D3D texture support, 64-bit improvements, continued Android support, and much more... See our Wine 4.0 feature overview to learn more about this big update.
  • Just over a year after the last main release, Wine 4.0 is officially here
    You might want to grab a glass for this one, no not that dusty old thing, one of the nice ones. The ones at the back of the cupboard for special occasions! Wine 4.0 is officially here. Comparing Wine 3.0 to 4.0, naturally it's a pretty huge release. Although, most people have likely been using the development builds for some time.

today's howtos