lwn.net 피드 구독하기
LWN.net is a comprehensive source of news and opinions from and about the Linux community. This is the main LWN.net feed, listing all articles which are posted to the site front page.
업데이트: 39분 5초 지남

Security updates for Tuesday

화, 2022/12/20 - 11:46오후
Security updates have been issued by Fedora (mujs) and SUSE (kernel and thunderbird).

Linux Mint 21.1 ("Vera") released

화, 2022/12/20 - 10:54오후
Linux Mint has announced the release of version 21.1 of the distribution in three editions: Cinnamon (what's new), MATE (what's new), and Xfce (what's new). Mint 21.1 is based on Ubuntu 22.04 and uses kernel version 5.15. Linux Mint 21.1 is a long term support release which will be supported until 2027. It comes with updated software and brings refinements and many new features to make your desktop even more comfortable to use.

[$] Enabling non-executable memfds

화, 2022/12/20 - 1:01오전
The memfd interface is a bit of a strange and Linux-specific beast; it was initially created to support the secure passing of data between cooperating processes on a single system. It has since gained other roles, but it may still come as a surprise to some to learn that memory regions created for memfds, unlike almost any other data area, have the execute permission bit set. That can facilitate attacks; this patch set from Jeff Xu proposes an addition to the memfd API to close that hole.

Stable kernels 6.0.14, 5.15.84, 5.10.160, and 5.4.228

월, 2022/12/19 - 11:51오후
Greg Kroah-Hartman has announced the release of the 6.0.14, 5.15.84, 5.10.160, and 5.4.228 stable kernels. They contain a relatively small number of important fixes throughout the tree.

Security updates for Monday

월, 2022/12/19 - 11:29오후
Security updates have been issued by Debian (chromium and thunderbird), Fedora (keylime, libarchive, libtasn1, pgadmin4, rubygem-nokogiri, samba, thunderbird, wireshark, and xorg-x11-server-Xwayland), Gentoo (curl, libreoffice, nss, unbound, and virtualbox), Mageia (advancecomp, couchdb, firefox, freerdp, golang, heimdal, kernel, kernel-linus, krb5, leptonica, libetpan, python-slixmpp, thunderbird, and xfce4-settings), Oracle (firefox, nodejs:16, and thunderbird), Scientific Linux (firefox and thunderbird), Slackware (samba), SUSE (chromium and kernel), and Ubuntu (linux-oem-5.17).

Apache SpamAssassin 4.0.0 released

월, 2022/12/19 - 5:06오전
Version 4.0.0 of the Apache SpamAssassin spam filter has been released.

Apache SpamAssassin 4.0.0 contains numerous tweaks and bug fixes over the past releases. In particular, it includes major changes that significantly improve the handling of text in international language.

As with any major release, there are countless functional patches and improvements to upgrade to 4.0.0. Apache SpamAssassin 4.0.0 includes several years of fixes that significantly improve classification and performance. It has been thoroughly tested in production systems. We strongly recommend upgrading as soon as possible.


OCaml 5.0.0 released

토, 2022/12/17 - 8:23오후
Version 5.0.0 of the OCaml programming language is out.

The highlight of this new major version of OCaml is the long-awaited runtime support for shared memory parallelism and effect handlers. This multicore support is the culmination of more than 8 years of effort, and required a full rewrite of the OCaml runtime environment. Consequently, OCaml 5.0.0 is expected to be a more experimental version of OCaml than the usual OCaml releases.


[$] The intersection of shadow stacks and CRIU

금, 2022/12/16 - 10:45오후
Shadow stacks are one of the methods employed to enforce control-flow integrity and thwart attackers; they are a mechanism for fine-grained, backward-edge protection. Most of the time, applications are not even aware that shadow stacks are in use. As is so often the case, though, life gets more complicated when the Checkpoint/Restore in Userspace (CRIU) mechanism is in use. Not breaking CRIU turns out to be one of the big challenges facing developers working to get user-space shadow-stack support into the kernel.

Security updates for Friday

금, 2022/12/16 - 9:52오후
Security updates have been issued by Debian (firefox-esr, libde265, php7.3, and thunderbird), Fedora (firefox, freeradius, freerdp, and xorg-x11-server), Oracle (firefox, prometheus-jmx-exporter, and thunderbird), Red Hat (firefox, nodejs:16, prometheus-jmx-exporter, and thunderbird), and SUSE (ceph and chromium).

Xfce 4.18 released

목, 2022/12/15 - 11:51오후
Version 4.18 of the Xfce desktop environment has been released.

Since Xfce 4.16 a lot of major development happened. Our team added multiple nice new features, did a gazillion of bug fixes and did various minor improvements. Finally, all that is going to be released for your pleasure.

See the announcement for a long list of new features.


[$] 6.2 Merge window, part 1

목, 2022/12/15 - 11:37오후
Once upon a time, Linus Torvalds would try to set a pace of about 1,000 changesets pulled into the mainline each day during the early part of the merge window. For 6.2, though, the situation is different; no less than 9,278 non-merge changesets were pulled during the first two days. Needless to say, these commits affect the kernel in numerous ways, even though there are fewer fundamental changes than were seen in 6.1.

Security updates for Thursday

목, 2022/12/15 - 10:52오후
Security updates have been issued by Debian (firefox-esr and git), Slackware (mozilla and xorg), SUSE (apache2-mod_wsgi, capnproto, xorg-x11-server, xwayland, and zabbix), and Ubuntu (emacs24, firefox, linux-azure, linux-azure-5.15, linux-azure-fde, linux-oem-6.0, and xorg-server, xorg-server-hwe-18.04, xwayland).

The Linux kernel contribution maturity model

목, 2022/12/15 - 5:18오후
Ted Ts'o, in collaboration with the Linux Foundation Technical Advisory Board, has put together a document called the Linux kernel contribution maturity model to help companies improve their participation in the kernel development process.

The goal is to encourage, in a management-friendly way, companies to allow their engineers to contribute with the upstream Linux Kernel development community, so we can grow the "talent pipeline" for contributors to become respected leaders, and eventually kernel maintainers.


Another set of stable kernel updates

목, 2022/12/15 - 4:34오후
The 6.0.13, 5.15.83, 5.10.159, 5.4.227, 4.19.269, 4.14.302, and 4.9.336 stable kernel updates have all been released; each contains another set of important fixes.

[$] LWN.net Weekly Edition for December 15, 2022

목, 2022/12/15 - 9:43오전
The LWN.net Weekly Edition for December 15, 2022 is available.

[$] Troubles with triaging syzbot reports

목, 2022/12/15 - 3:20오전
A report from the syzbot kernel fuzz-testing robot does not usually spawn a vitriolic mailing-list thread, but that is just what happened recently. While the invective is regrettable, the underlying issue is important. The dispute revolves around how best to report bugs to affected subsystems and, ultimately, how not to waste maintainers' time.

Security updates for Wednesday

수, 2022/12/14 - 7:37오후
Security updates have been issued by Debian (pngcheck), Fedora (qemu), Mageia (admesh, busybox, emacs, libarchive, netkit-telnet, ruby, rxvt-unicode, and shadowutils), Oracle (bcel and kernel), Red Hat (389-ds-base, bcel, dbus, firefox, grub2, kernel, kernel-rt, kpatch-patch, thunderbird, and usbguard), Scientific Linux (bcel), SUSE (containerd, firefox, grafana, java-1_8_0-openjdk, libtpms, net-snmp, and wireshark), and Ubuntu (pillow).

Everything Open call for proposals

수, 2022/12/14 - 5:25오후
Everything Open is, seemingly, the future form of the conference once known as linux.conf.au; see this page for a discussion of the reasoning behind the change. The inaugural event will be held March 14 to 16 in Melbourne, Australia, and the call for proposals has gone out now, with a deadline of January 15. "Our aim is to create a deeply technical conference where we bring together industry leaders and experts on a wide range of subjects."

A security release for xorg-server

수, 2022/12/14 - 5:07오후
X.org users running in potentially hostile environments will want to look into the xorg-server 21.1.5 release, which fixes several potentially serious security vulnerabilities. "All theses issues can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for ssh X forwarding sessions".

Firefox 108 released

수, 2022/12/14 - 4:19오후
Version 108 of the Firefox browser has been released. The headline feature this time around appears to be the enabling of import maps by default, along with support for the Web MIDI API and the usual set of security fixes.