Showing headlines posted by Ridcully

Multiple vulnerabilities have been found in memcached, a high-performance memory object caching system. The Common Vulnerabilities and Exposures project identifies a number of issues.

Ahead of the Consumer Electronics Show (CES) next week in Las Vegas, Google has managed to rope in a large number of hardware vendors ranging from ARM to NVIDIA that will be begin supporting VP9 hardware acceleration in Google's push for VP9 to dominate the Ultra HD / 4K space.

An unsafe use of temporary files was discovered in Puppet, a tool for centralized configuration management. An attacker can exploit this vulnerability and overwrite an arbitrary file in the system.

"Why don't academics discuss research before starting the work?" In a recent blog post, Jack Kelly asked this simple question, and it is a striking one for those of us who are familiar with collaborating at high levels as part of an open source community. One of the pillars of the open source way is rapid prototyping and the idea of: release early, release often.

DNF, the next-generation yum package manager spearheaded by the Fedora project, is now ready for end-user testing ahead of its expected use out-of-the-box by Fedora 22...

BusyBox 1.22 is now available as the latest unstable release of "the Swiss Army Knife of the Embedded Linux." With BusyBox 1.22 comes many changes and improvements.

The CentOS community developers focused on their rebuild of Red Hat Enterprise Linux 7 have already begun playing with the RHEL7 Beta source packages to form CentOS 7.0.

The once popular MPlayer2 fork of MPlayer has sadly not seen any new development activity in nearly one year, but another less well-known fork of MPlayer is still showing a future with its most recent activity just being from hours ago.

Millions of pieces of malware and thousands of malicious hacker gangs roam today's online world preying on easy dupes. Reusing the same tactics that have worked for years, if not decades, they do nothing new or interesting in exploiting our laziness, lapses in judgment, or plain idiocy.

Near the beginning of the month I wrote about an Intel developer finding a Linux kernel power regression increasing the system's power use by 50 Watts. After extensive testing and investigating, the issue has been fixed ahead of the Linux 3.13 kernel release and is proposed for stable point releases on the 3.10, 3.11, and 3.12 kernels.

In several Phoronix articles I've already shared Mesa 10.1-devel benchmarks of this latest open-source graphics driver code currently under development. Most of the open-source graphics tests at Phoronix are done on higher-end hardware, so for this article we're checking on the latest open-source graphics performance when using the low-end Celeron and Pentium processors of the Haswell generation.

At the start of every month one of our rituals is always checking in on Valve's Steam Software/Hardware Survey to see their Linux statistics for the month prior. Let's see how Steam Linux usage was in December with the arrival of SteamOS.

An Ubuntu developer has proposed 32-bit UEFI support within new Ubuntu Linux install images to support the new "Bay Trail" laptops and other hardware that requires 32-bit UEFI support.

Peter McLarnan discovered that the internationalization component of Ruby on Rails does not properly encode parameters in generated HTML code, resulting in a cross-site scripting vulnerability. This update corrects the underlying vulnerability in the i18n gem, as provided by the ruby-i18n package.

Phoronix Test Suite 5.0 "Plavsk" is making excellent progress and is set to premiere in H1'2014 with a brand new graphical user-interface and the latest feature to be added on is a WebSocket API for interfacing with Phoronix Test Suite clients to open up other new testing possibilities.

The launch of the SteamOS 1.0 Beta and the continued Linux graphics improvements and new hardware were among the most exciting content on Phoronix for December 2013.

Multiple vulnerabilities have been discovered in Drupal, a fully-featured content management framework: vulnerabilities due to optimistic cross-site request forgery protection, insecure pseudo random number generation, code execution and incorrect security token validation.

Fans of the open-source Haiku OS derived from BeOS can now be happy if running on modern processors there are some major CPU scheduling improvements and support for more than eight processor cores.

KDE on Wayland should get much love in 2014.

The Debian technical committee hasn't yet decided what will be the default init system for the 8.0 "Jessie" release, but it still is a heated debate as some of the committee members are starting to publicly cast their views.