|
Navigation
Recherche
Top: LWN.net
|
PC / Tech. > LWN.net
vendredi 23 février 2024, 15:42
The Curl project has previously had problems with CVEs issued for things that are not security issues. On February 21, Daniel Stenberg wrote about the Curl project's most recent issue with the CVE system, saying: I keep insisting that the CVE system is broken and that the ...
jeudi 22 février 2024, 16:24
The Linux kernel uses a number of hardening techniques to try to protect itself against compromise; one of those is kernel address-space layout randomization (KASLR). But randomization is of little benefit if the kernel spills the beans on where its code has ended up. As it...
Security updates have been issued by CentOS (python-pillow), Debian (firefox-esr and imagemagick), Fedora (kernel, mbedtls, rust-asyncgit, rust-bat, rust-cargo-c, rust-eza, rust-git-absorb, rust-git-delta, rust-git2, rust-gitui, rust-libgit2-sys, rust-lsd, rust-pore,...
mercredi 21 février 2024, 20:19
Sudo is a ubiquitous tool for running commands with the privileges of another user on Unix-like operating systems. Over the past decade or so, some alternatives have been developed; the base system of OpenBSD now comes with doas instead, sudo-rs is a subset of sudo...
Alexei Starovoitov introduced a patch series for the Linux kernel on February 6 to add bpf_arena, a new type of shared memory between BPF programs and user space. Starovoitov expects arenas to be useful both for bidirectional communication between user space and BPF...
Version 5.10 of the RawTherapee raw photo editor is out. The list of changes is long, and includes improved support for many camera-specific formats. (LWN looked at RawTherapee in 2022).
Security updates have been issued by CentOS (linux-firmware and python-reportlab), Debian (unbound), Fedora (freeglut and syncthing), Red Hat (edk2, go-toolset:rhel8, java-1.8.0-ibm, kernel, kernel-rt, mysql:8.0, oniguruma, and python-pillow), Slackware (libuv and mozilla),...
mardi 20 février 2024, 20:01
DNS resolvers (those that handle DNSSEC, at least) are almost uniformly vulnerable to an exploit that has been named 'KeyTrap'. In short, the right type of packet can send a DNS system into something close to an infinite loop, taking it out of service indefinitely. With...
Qubes OS is a security-focused desktop Linux distribution built on Fedora Linux and the Xen hypervisor. Qubes uses virtualization to run applications, system services, and devices access via virtual machines called 'qubes' that have varying levels of trust and persistence to ...
Andrea Righi has started a blog series on writing a user-space CPU scheduler with the BPF-based extensible scheduler class:.select_cpu() implements the logic to assign a target CPU to a task that wants to run, typically you have to decide if you want to keep the task on the...
Drew DeVault announced the first numbered release of the Hare programming language on February 16. Many Hare users want to ship their Hare projects to users, and as such, software written in Hare is making its way into Linux distributions and the like. However, due to...
Security updates have been issued by Fedora (freeglut, hugin, libmodsecurity, qemu, rust-asyncgit, rust-bat, rust-cargo-c, rust-eza, rust-git-absorb, rust-git-delta, rust-git2, rust-gitui, rust-libgit2-sys, rust-lsd, rust-pore, rust-pretty-git-prompt, rust-shadow-rs,...
lundi 19 février 2024, 18:34
Spritely is a project seeking to build a platform for sovereign distributed applications — applications where users run their own nodes in order to control their own data — as the basis of a new social internet. While there are many such existing projects, Spritely takes ...
Security updates have been issued by Debian (engrampa, openvswitch, pdns-recursor, and runc), Fedora (caddy, expat, freerdp, libgit2, libgit2_1.6, mbedtls, python-cryptography, qt5-qtbase, and sudo), Gentoo (Apache Log4j, Chromium, Google Chrome, Microsoft Edge, CUPS,...
dimanche 18 février 2024, 22:35
The 6.8-rc5 kernel prepatch is out for testing. 'Absolutely nothing stands out here, although I do wish things should have calmed down a bit more at this point in the release process.'
vendredi 16 février 2024, 21:42
The openSUSE News blog looks at the roadmap for Agama (a new installer from the YaST development team) with releases planned for April and July: The milestone in April is set to revolutionize Agama’s architecture. It will be moving away from its reliance on Cockpit toward ...
Greg Kroah-Hartman has announced the release of the 6.7.5, 6.6.17, and 6.1.78 stable kernels. As is the norm, they contain important fixes throughout the kernel tree. So far, there are no new CVEs reported on the linux-cve-announce mailing list, which means that the new...
The futex mechanism provided by the kernel allows for the creation of efficient and flexible locking primitives in user space. Futexes work well for many applications, but not all. One of the exceptions, it seems, is that perennially difficult-to-support use case: Windows...
Security updates have been issued by Mageia (bind), Red Hat (.NET 8.0 and kpatch-patch), SUSE (golang-github-prometheus-alertmanager, java-1_8_0-openj9, kernel, libaom, openssl-3, postgresql15, salt, SUSE Manager Client Tools, SUSE Manager Server 4.3, and webkit2gtk3), and...
|
56 sources (32 en français)
Date Actuelle
jeu. 25 avril - 23:34 CEST
|
