Debian Security   [more] [xml]
 2014-04-18 DSA-2910 qemu-kvm - security update

Michael S. Tsirkin of Red Hat discovered a buffer overflow flaw in the way qemu processed MAC addresses table update requests from the guest.

 2014-04-18 DSA-2909 qemu - security update

Michael S. Tsirkin of Red Hat discovered a buffer overflow flaw in the way qemu processed MAC addresses table update requests from the guest.

 2014-04-17 DSA-2908 openssl - security update

Multiple vulnerabilities have been discovered in OpenSSL. The following Common Vulnerabilities and Exposures project ids identify them:

Debian Wiki   [more] [xml]
 2014-04-19T20:32:44Z Teams/PythonAppsPackagingTeam/HowTo
CategoryPackageManagement -> PackageManagement
 2014-04-19T20:32:07Z Teams/Ruby/Packaging
CategoryPackageManagement -> PackageManagement
 2014-04-19T20:22:30Z SponsorChecklist   [more] [xml]
 Sat, 19 Apr 2014 10:00:00 -0700 Pixel Piracy, A Pirate Sandbox Sim Gains Better Linux Support, Yarrrr!

 GamingOnLinux: Pixel Piracy already has a Linux version out for a while now, but they have just realised a patch they have been working on for some-time fixing start-up issues for Linux & Mac, yarrr maties, land ahoy!

 Sat, 19 Apr 2014 06:00:00 -0700 For Red Hat, it's RHEL and then????

 NetworkWorld: As Red Hat basks in the glory of making more than a billion dollars off a free open source project, some are questioning where the company will go after RHEL.

 Fri, 18 Apr 2014 23:00:00 -0700 GNOME 3: It's time to let go of the past

 EyeOnLinux: No Linux desktop, including Unity, has generated more heated arguments than GNOME 3.

OSNews   [more] [xml]
 Sat, 19 Apr 2014 09:02:19 GMT Greed and the Wright Brothers
The Wright brothers' critical insight was the importance of "lateral stability" - that is, wingtip-to-wingtip stability - to flight. And their great innovation was something they called "wing warping," in which they used a series of pulleys that caused the wingtips on one side of the airplane to go up when the wingtips on the other side were pulled down. That allowed the Wrights' airplane to make banked turns and to correct itself when it flew into a gust of wind. But when the Wrights applied for a patent, they didn't seek one that just covered wing warping; their patent covered any means to achieve lateral stability. There is no question what the Wrights sought: nothing less than a monopoly on the airplane business - every airplane ever manufactured, they believed, owed them a royalty. As Wilbur Wright, who was both the more domineering and the more inventive of the two brothers, put it in a letter: "It is our view that morally the world owes its almost universal system of lateral control entirely to us. It is also our opinion that legally it owes it to us." Even though Wrights' competitor Curtiss developed an entirely different system to achieve lateral stability (the ailerons airplanes use to this day), the Wright brothers still believed Curtiss owed them money for it. The legal standoff that ensued in the US airplane industry at the time halted all innovation, so much so that when the WWI broke out, the US government had to step in to force airplane manufacturers to cross-license their patents. Sadly, by this time, US airplanes weren't good enough for combat. It seems nobody learns from history.
 Fri, 18 Apr 2014 09:44:11 GMT Judge confirms link between Apple and patent troll Rockstar
Rockstar, the massive patent troll in which Apple is a majority shareholder, sued Google for patent infringement. Of course, Rockstar filed suit in the Eastern District of Texas, the usual venue for patent trolls. Because of Apple's involvement, Google motioned to have the suit take place in California instead, where it stands a much greater chance of winning. Judge Claudia Wilken sides with Google. She states in the ruling: Google and Apple's rivalry in the smartphone industry is well-documented. Apple's founder stated that he viewed Android as a "rip off" of iPhone features and intended to "destroy" Android by launching a "thermonuclear war." Defendants' litigation strategy of suing Google customers is consistent with Apple's particular business interest... This 'scare the customer and run' tactic advances Apple's interest in interfering with Google's Android business. Every now and then, someone just gets it. Judge Wilken looked beyond the constructed sham companies and legal cobwebs - such as Rockstar setting up a sham company in Delaware with zero California contacts and transferring all patents-in-suit to that company a day before it sued Google. The world needs more judges like this. In addition - it seems like Jobs' remarks about Android are catching up to the company. Delightful.
 Thu, 17 Apr 2014 22:48:07 GMT FreeBSD quarterly status report
The first quarter of 2014 was, again, a hectic and productive time for FreeBSD. The Ports team released their landmark first quarterly stable branch. FreeBSD continues to grow on the ARM architecture, now running on an ARM-based ChromeBook. SMP is now possible on multi-core ARM systems. bhyve, the native FreeBSD hypervisor, continues to improve. An integral test suite is taking shape, and the Jenkins Continuous Integration system has been implemented. FreeBSD patches to GCC are being forward-ported, and LLDB, the Clang/LLVM debugger is being ported. Desktop use has also seen improvements, with work on Gnome, KDE, Xfce, KMS video drivers,, and vt, the new console driver which supports KMS and Unicode. Linux and Wine binary compatibility layers have been improved. UEFI booting support has been merged to head. I always love how to-the-point the various BSDs are. Please, never change.
 Thu, 17 Apr 2014 22:29:00 GMT Ubuntu 14.04 LTS released
Ubuntu 14.04 LTS is the first long-term support release with support for the new "arm64" architecture for 64-bit ARM systems, as well as the "ppc64el" architecture for little-endian 64-bit POWER systems. This release also includes several subtle but welcome improvements to Unity, AppArmor, and a host of other great software. Is it just me, or do releases of major Linux distributions simply not create much excitement anymore? I remember a time when these releases were hotly anticipated and much debated. These days, they go by and nobody really seems to care. Is this a reflection of shifting focus in the industry - towards mobile - or because the interest in desktop Linux in general has waned considerably?
 Wed, 16 Apr 2014 21:57:14 GMT Samsung promises Tizen handsets again
Yoon said Samsung was working to introduce at least two smartphones running on its own Tizen operating system, a major step in the market leader's bid to break out of the Android universe. Sure.
 Wed, 16 Apr 2014 09:06:46 GMT In 2001, Nokia developed its M510 internet tablet
As it turns out, Nokia developed an internet tablet all the way back in 2001. It was called the Nokia M510, several thousand units were made, and it was functional. Sadly, market research showed that consumers were not yet ready for a device like this, and so the project was cancelled. It had a 800x600 display, ran EPOC (Symbian), and sported wifi. The stories are in Finnish, and since I don't speak Finnish, I had to rely on Google Translate (as a translator, this made me feel dirty). Now that Nokia's devices division is essentially dead, it wouldn't surprise me to see more of these stories to come out. There must be some truly outrageous stuff locked away at Nokia.
 Mon, 14 Apr 2014 16:59:40 GMT Windows Phone 8.1 released
Microsoft released Windows Phone 8.1 to those who enrolled in the developer preview program (i.e., everyone). Ars' Peter Bright in his review of 8.1: The result feels a whole lot more mature and a whole lot more capable than its predecessor. The 0.1 version bump, chosen to align the phone platform with its desktop sibling, belies the true nature of this upgrade. It is substantial, and makes Windows Phone tremendously better. We might still wish that there were a few more apps, and that developers spoke of the platform in the same breath as iOS and Android, but even in spite of this, Windows Phone 8.1 is a polished, fun, clever, and personal smartphone platform that's just about everyone can enjoy. It's a magnificent smartphone platform. I've been using it since earlier today, and the notification centre (finally) alone is more than enough to make this a fantastic update. Sadly, my HTC 8X does not seem to be supported by Cortana - other 8X owners are reporting the same, as do 8X owners on Twitter - which makes me worry a little about Cortana, perhaps, being an exclusive feature for Nokia phones, or it having some other restrictive limitations. That, honestly, would be a shame. Update: Here's an 8X with Cortana working just fine, so the original worries clearly aren't necessary.
 Mon, 14 Apr 2014 16:40:07 GMT How the iPhone changed Android
From a 2006 (pre-iPhone) Android specification document: Touchscreens will not be supported: the Product was designed with the presence of discrete physical buttons as an assumption. However, there is nothing fundamental in the Product's architecture that prevents the support of touchscreens in the future. The same document, but a few versions later, from 2007 (post-iPhone): A touchscreen for finger-based navigation - including multi-touch capabilites - is required. The impact of the iPhone on Android in two documents. Google knew the iPhone would change the market, while Microsoft, Nokia, and BlackBerry did not. That's why Android is now the most popular smartphone platform, while the mentioned three are essentially irrelevant.
 Fri, 11 Apr 2014 20:21:50 GMT NSA said to exploit Heartbleed bug for intelligence for years
The U.S. National Security Agency knew for at least two years about a flaw in the way that many websites send sensitive information, now dubbed the Heartbleed bug, and regularly used it to gather critical intelligence, two people familiar with the matter said. The NSA's decision to keep the bug secret in pursuit of national security interests threatens to renew the rancorous debate over the role of the government’s top computer experts. I'm so surprised. Update: NSA denies.
 Fri, 11 Apr 2014 20:09:55 GMT The state of in-car UX
There's certainly some hope on the horizon with Apple and Google, though just how good these systems will be remains to be seen. One thing is clear, though: the current state of all in-car experiences is incredibly bad. For those manufacturers looking to go it alone, I don't expect much. In-car software is absolutely horrifying and crazy complex. A good friend of mine regularly drives brand new and super-expensive cars (in the hundreds of thousands of euros category), and even in those cars, the user interfaces are just terrible. There's a lot of room for improvement and disruption here.
 Fri, 11 Apr 2014 09:49:10 GMT Sailfish OS released
And the updates keep on coming. Two-way sync of Exchange contacts. Over-the-air (OTA) provisioning: Receive mobile data and MMS access point settings from your operator over-the-air Share and receive pictures and contacts via MMS (experimental) EXIF data is now stored in photos taken with camera. Save GPS coordinates in captured photos [Settings->Apps->Camera] Set default account to be used for sending emails [Settings->Apps->Email] Swipe to close gesture available as a setting and disabled by default for new users [Settings->System->Shortcuts] Visual interaction hints in events view, browser, camera, email, phone and messages apps Keyboard sounds [Settings->System->Sounds and feedback->Touch screen tones] The update also fixes the Heartbleed security issue.
 Thu, 10 Apr 2014 20:05:23 GMT An exploration of ARM TrustZone technology
Behind the term TrustZone lies a security technology that is almost omnipresent in ARM-based devices, ranging from low-cost development boards to most mobile phones. Yet, there hardly exists a public body of knowledge around it. This prompted the Genode developers to investigate. Today, they published their findings in the form of a comprehensive article and an demonstration video. In contrast to TPMs, which were designed as fixed-function devices with a predefined feature set, TrustZone represented a much more flexible approach by leveraging the CPU as a freely programmable trusted platform module. To do that, ARM introduced a special CPU mode called "secure mode" in addition to the regular normal mode, thereby establishing the notions of a "secure world" and a "normal world". The distinction between both worlds is completely orthogonal to the normal ring protection between user-level and kernel-level code and hidden from the operating system running in the normal world. Furthermore, it is not limited to the CPU but propagated over the system bus to peripheral devices and memory controllers. This way, ARM-based platforms become effectively kind of a split personality. When secure mode is active, the software running on the CPU has a different view on the whole system than software running in non-secure mode. The Genode team is nothing short of amazing. Not only are they developing unique software, they're also doing stuff like this. Much respect for these women and men.
 Thu, 10 Apr 2014 19:56:49 GMT Expanding Google's security services for Android
Building on Verify apps, which already protects people when they're installing apps outside of Google Play at the time of installation, we're rolling out a new enhancement which will now continually check devices to make sure that all apps are behaving in a safe manner, even after installation. In the last year, the foundation of this service - Verify apps - has been used more than 4 billion times to check apps at the time of install. This enhancement will take that protection even further, using Android's powerful app scanning system developed by the Android security and Safe Browsing teams. Available for Android 2.3 and up with Google Play - so effectively for every proper Android device out there.
 Thu, 10 Apr 2014 15:34:07 GMT Google releases Project Ara MDK
Google has released the Module Developers Kit for Project Ara. The Module Developers Kit (MDK) defines the Ara platform for module developers and provides reference implementations for various design features. The Ara platform consists of an on-device packet-switched data network based on the MIPI UniPro protocol stack, a flexible power bus, and an elegant industrial design that mechanically unites the modules with an endoskeleton. Throughout 2014, the Project Ara team will be working on a series of alpha and beta MDK releases. We welcome developer input to the MDK: either through the Ara Module Developers mailing list/forum or at one of the series of Developers Conferences. These phones will be crazy flexible in their design - and they look pretty good too. I don't know if it'll be a small niche or a runaway success, but I definitely appreciate them for trying to do something different.
 Thu, 10 Apr 2014 10:50:44 GMT Stock Android ported to Nokia X
Interested in the Nokia X, but not the horrible Frankendroid Nokia cooked up? Good news - stock Android has been ported to the Nokia X. Everything works, it's stable - but it is, like Nokia Frankendroid, only Android 4.1.2. There are better Android phones for the money, but it's still great that the Nokia X gets a taste of proper Android (via!). News   [more] [xml]
 2014-04-19T11:09:43+00:00 Distribution Release: Simplicity Linux 14.4
David Purse has announced the release of Simplicity Linux 14.4, the new stable release of the project's Puppy-based distributions for desktops and netbooks: "Simplicity Linux 14.4 is now available for download. It is based on the excellent Slacko Puppy 5.6.5, and uses LXDE as a desktop environment. There....
 2014-04-19T03:49:53+00:00 Development Release: OpenMandriva Lx 2014.0 RC1
Kate Lebedeff has announced the availability of the first release candidate of OpenMandriva Lx 2014.0: "Phosphorous burns very hot and very fast and is the perfect name for our latest RC1 release of OpenMandriva Lx. This release candidate has been optimised for boot speed and you will find....
 2014-04-19T00:24:46+00:00 Distribution Release: Mythbuntu 14.04
Thomas Mashos has announced the availability of Mythbuntu 14.04, the new stable version of an Ubuntu-derived distribution that makes it simple to set up a standalone MythTV system: "After some last-minute critical fixes and ISO respins by the release team, the Mythbuntu team is proud to announce that....

powered by zFeeder





Translate to Spanish