Charlie Smurthwaite of aTech Media discovered a flaw in HAProxy, a fast
and reliable load balancing reverse proxy, when HTTP pipelining is used.
A client can take advantage of this flaw to cause data corruption and
retrieve uninitialized memory contents that exhibit data from a past
request or session.
Multiple security issues have been found in Iceweasel, Debian's version
of the Mozilla Firefox web browser: Multiple memory safety errors,
use-after-frees and other implementation errors may lead to the
execution of arbitrary code or denial of service. This update also
addresses a vulnerability in DHE key processing commonly known as
the LogJam vulnerability.
Johan Olofsson discovered an authentication bypass vulnerability in
Stunnel, a program designed to work as an universal SSL tunnel for
network daemons. When Stunnel in server mode is used with the redirect
option and certificate-based authentication is enabled with verify = 2
or higher, then only the initial connection is redirected to the hosts
specified with redirect. This allows a remote attacker to bypass
Update: there's a denial, which in turn is also being questioned. Conclusion: nope, not happening.
Russian manufacturer Yota, well known for its Yotaphone dual screen phones, has announced that its next devices will no longer operate using Android but Sailfish, an alternative developed by former Nokia engineers at Jolla.
Interesting, if not a bit of an odd decision. One has to wonder what prompted this decision, because even though I like Sailfish for what it represents, it's far from a true alternative to Android or iOS. Maybe Yota knows something about Sailfish 2.0 we don't?
At the 1989 Consumer Electronics Show in Las Vegas, Nintendo of America's then-chairman Howard Lincoln took the stage to reveal some unexpected news: the company was partnering with European electronics firm Philips to make a CD-ROM-based games console. While the announcement took everyone in the audience by surprise, Sony engineer Ken Kutaragi was the most shocked of all. Just the night before, he and several Sony executives had been demonstrating a product developed in partnership with Nintendo. It was to be the world's first hybrid console, featuring an SNES cartridge slot and a CD drive, with both formats available to game developers. That product, called "Play Station" (with a space), would never see the light of day.
Industry lore suggests that only 200 of the Play Station consoles were ever produced, and hardly anyone has actually seen one of the fabled consoles in the flesh. However, pictures of the legendary original Play Station surfaced on reddit yesterday, showing the hybrid console in all its grey and yellowed-plastic glory.
Absolutely glorious. I could look at the pictures for hours.
Recently there has a been a lot of debate wether Safari is the new IE, or Apple simply is building a user-centric web, but I think that removes focus from the real problem.
The problem isn't Safari. It's a somewhat modern browser that in the eyes of some might lack some important features, but overall is still pretty good and modern.
The real problem is Apple's lack of browser-choice in iOS, and that's a problem for several reasons.
When Apple allows other browsers (not just wrappers!), email clients, mapping services, etc. to be set as default by iOS users, we're going to see a whole bunch of Google iPhones. I'm pretty sure Apple is not looking forward to that as of yet.
Maybe later, when Apple Maps stops being a joke, Mail.app doesn't choke when it's displaying more than 3 emails, and Safari stops sucking.
The developers of Parsix GNU/Linux, a desktop oriented Debian-based distribution, have announced the availability of a new development release. The new release offers users an updated kernel, experimental UEFI support and the GNOME 3.16 desktop. "Parsix GNU/Linux 8.0 (code name Mumble) brings stable GNOME 3.16 desktop environment, a....
The 4MLinux project has announced a new release of the independent Linux distribution. The latest release, 4MLinux 13.0, ships with the GNU Compiler Collection 5 and offers miscellaneous desktop improvements. "The status of the 4MLinux 13.0 series has been changed to S. Major changes in the core of....
David Purse has announced the availability of the beta release of Simplicity Linux 15.7, a lightweight Puppy-based distribution for netbooks and desktops. Due to unresolved issues, the "Desktop" edition is only available in a 32-bit build for now. From the release announcement: "Simplicity Linux 15.7 beta is now....
Matthias Klumpp has announced the availability of a release candidate for Tanglu, a Debian based distribution for desktop users. Tanglu 3 RC1 introduces experimental support and is presented in three editions (GNOME, KDE and Core). "We are pleased to announce the release of the first release candidate (RC)....
The antiX project, a distribution suitable for low-resource computing based on Debian's Stable branch, has announced the launch of antiX 15. "A lot of time and work was spent getting antiX-15 (Killa P) ready for stable release; we hope you like it. As with previous releases, antiX-15 comes....
Clement Lefebvre has announced the availability of Linux Mint 17.2. The new release is a long term support release, based on packages from Ubuntu 14.04, and supported through to 2019. Linux Mint ships in two editions, Cinnamon and MATE. The Cinnamon edition offers a number of performance improvements....
Volker Theile has announced the release of OpenMediaVault 2.1, a new version of the project's specialist Debian-based distribution designed for network-attached storage (NAS) tasks: "Today I am happy to announce the release of OpenMediaVault version 2.1 (Stone burner). The main features at a glance: using Sencha ExtJS 5.1.1....
The developers behind OpenMandriva have released a new version of their novice-friendly distribution. OpenMandriva originally started as a fork of Mandriva and continues on with similar goals and practices. The latest release, version 2014.2, ships with UEFI support and upgraded desktop, kernel and multimedia packages. "Just as any....
The DragonFly BSD team has announced the launch of DragonFly BSD 4.2.0. The new release includes a number of important new features and upgrades. DragonFly BSD 4.2.0 includes GNU's GCC 5 compiler as the default system compiler, offers improved graphics support and Sendmail has been replaced by a....
This week in DistroWatch Weekly: Review: Running BSD on the desktop with MidnightBSD 0.6News: Customizing Fedora, Debian gains sponsorship for reproducible builds, Linux's ext4 file system to get built in encryption, openSUSE unveils "42" and Johnathan Riddell leaves the Kubuntu CouncilRapid review: FreeBSD on a Raspberry Pi 2Torrent....