The support section of Mozilla's website warns that some users will experience a change to their default search engine in the March 98 release of Firefox 8. It is indicated that the change will affect users from all countries, but which search engines will be removed is not reported (the list is not defined in the code, search engine handlers are loaded […]
The GNOME Project has relegated the Clutter graphics library to a legacy project that has been discontinued. Starting with GNOME 42, the Clutter library and its associated components Cogl, Clutter-GTK and Clutter-GStreamer will be removed from the GNOME SDK and the associated code will be moved to archived repositories. To ensure compatibility with existing extensions, GNOME Shell will retain its internal […]
GitHub announced the addition of an experimental machine learning system to its Code scanning service to identify common types of vulnerabilities in code. At the testing stage, the new functionality is currently only available for repositories with code in JavaScript and TypeScript. It is noted that the use of a machine learning system has made it possible to significantly expand the range of identified problems, in the analysis of which the system is no longer limited […]
Qualys has identified two vulnerabilities (CVE-2021-44731, CVE-2021-44730) in the snap-confine utility, supplied with the SUID root flag and called by the snapd process to create an executable environment for applications delivered in self-contained packages in the snap format. The vulnerabilities allow a local unprivileged user to execute code with root privileges on the system. The issues are fixed in today's snapd package update for Ubuntu 21.10, […]
A maintenance release of Firefox 97.0.1 is available, which fixes several bugs: Resolved an issue that caused a crash when attempting to load a TikTok video selected on a user's profile page. Fixed an issue that prevented users from viewing Hulu videos in picture-in-picture mode. A crash that caused rendering problems when using the WebRoot SecureAnywhere antivirus has been fixed. The problem with […]
KaOS 2022.02 is released, a continuous update distribution aimed at providing a desktop based on the latest KDE releases and applications using Qt. Of the distribution-specific design features, one can note the placement of a vertical panel on the right side of the screen. The distribution is developed with Arch Linux in mind, but maintains its own independent repository of over 1500 packages, and […]
In the open platform for organizing e-commerce Magento, which occupies about 10% of the market for systems for creating online stores, a critical vulnerability has been identified (CVE-2022-24086), which allows code to be executed on the server by sending a certain request without authentication. The vulnerability has been assigned a severity level of 9.8 out of 10. The problem is caused by incorrect verification of parameters received from the user in the order processing processor. Details of exploitation of the vulnerability […]
Google has announced an expansion of its cash reward initiative for identifying security issues in the Linux kernel, the Kubernetes container orchestration platform, the Google Kubernetes Engine (GKE), and the kCTF (Kubernetes Capture the Flag) vulnerability competition environment. The rewards program has introduced additional bonus payments of $20 thousand for 0-day vulnerability, […]
The Unredacter toolkit is presented, which allows you to restore the original text after hiding it using filters based on pixelation. For example, the program can be used to identify sensitive data and passwords pixelated in screenshots or snapshots of documents. It is claimed that the algorithm implemented in Unredacter is superior to previously available similar utilities, such as Depix, and has also been successfully used to pass the […]
The release of XWayland 21.2.0 is available, a DDX component (Device-Dependent X) that runs the X.Org Server for running X11 applications in Wayland-based environments. Major changes: Added support for the DRM Lease protocol, which allows the X server to function as a DRM controller (Direct Renderering Manager), providing DRM resources to clients. On the practical side, the protocol is used to generate a stereo image with different buffers for the left and right […]
Valve has published the release of the Proton 7.0 project, which is based on the Wine project codebase and aims to run gaming applications built for Windows and featured in the Steam catalog on Linux. The developments of the project are distributed under the BSD license. Proton allows you to directly run Windows-only game applications on the Steam Linux client. The package includes the implementation […]
Thorsten Behrens, one of the leaders of the LibreOffice graphics subsystem development team, published a demo version of the LibreOffice office suite, compiled into WebAssembly intermediate code and capable of running in a web browser (about 300 MB of data is downloaded to the user’s system). The Emscripten compiler is used to convert to WebAssembly, and to organize the output, a VCL backend (Visual Class Library) based on a modified […]
