Ghostscript, a set of tools for processing, converting and generating documents in PostScript and PDF formats, has a critical vulnerability (CVE-2021-3781) that allows arbitrary code execution when processing a specially formatted file. Initially, the problem was brought to the attention of Emil Lerner, who spoke about the vulnerability on August 25 at the ZeroNights X conference held in St. Petersburg (the report described how Emil […]
Google has published the release of the Dart 2.14 programming language, which continues the development of a radically redesigned Dart 2 branch, which differs from the original version of the Dart language in the use of strong static typing (types can be inferred automatically, so specifying types is not necessary, but dynamic typing is no longer used and the initial calculation the type is assigned to the variable and strict checking is subsequently applied […]
The release of the PipeWire 0.3.35 project has been published, developing a new generation multimedia server to replace PulseAudio. PipeWire offers enhanced video streaming capabilities over PulseAudio, low-latency audio processing, and a new security model for device- and stream-level access control. The project is supported in GNOME and is already used by default […]
The release of the system programming language Rust 1.55, founded by the Mozilla project, but now developed under the auspices of the independent non-profit organization Rust Foundation, has been published. The language focuses on memory safety, provides automatic memory management, and provides the means to achieve high job parallelism while avoiding the use of a garbage collector and runtime (runtime is reduced to basic initialization and […]
The GNU Project has introduced the first test release of GNU Anastasis, a protocol and its implementation applications for securely backing up encryption keys and access codes. The project is being developed by the developers of the GNU Taler payment system in response to the need for a tool to recover keys lost after a failure in the storage system or due to a forgotten password with which the key was encrypted. Code […]
The Norwegian proprietary browser Vivaldi, created by the developers of Opera Presto, has become the default browser in the edition of the Linux distribution Manjaro, supplied with the Cinnamon desktop. The Vivaldi browser will also be available in other editions of the Manjaro distribution through the official project repositories. For better integration with the distribution, a new theme was added to the browser, adapted to the design of Manjaro Cinnamon, and […]
GitHub has revealed details of seven vulnerabilities in the tar and @npmcli/arborist packages, which provide functions for working with tar archives and calculating the dependency tree in Node.js. Vulnerabilities allow, when unpacking a specially designed archive, to overwrite files outside the root directory into which the unpacking is carried out, as far as current access rights allow. Problems make it possible to organize the execution of arbitrary code in [...]
The main branch of nginx 1.21.3 has been released, within which the development of new features continues (in the parallel supported stable branch 1.20, only changes related to the elimination of serious errors and vulnerabilities are made). Main changes: The reading of the request body when using the HTTP/2 protocol has been optimized. Fixed errors in the internal API for processing the request body, which appear when using the HTTP/2 protocol and […]
The release of a specialized distribution Tails 4.22 (The Amnesic Incognito Live System), based on the Debian package base and designed to provide anonymous access to the network, has been published. Anonymous access to Tails is provided by the Tor system. All connections other than traffic through the Tor network are blocked by the packet filter by default. To store user data in the user data saving mode between launches, […]
A release of the Chrome OS 93 operating system has been published, based on the Linux kernel, the upstart system manager, the ebuild/portage assembly tools, open components and the Chrome 93 web browser. The Chrome OS user environment is limited to a web browser, and instead of standard programs, web applications are used, however, Chrome OS includes a full multi-window interface, desktop, and taskbar. Building Chrome OS 93 […]
The release of the desktop-oriented distribution GhostBSD 21.09.06, built on the basis of FreeBSD and offering the MATE user environment, has been presented. By default, GhostBSD uses the ZFS file system. Both work in Live mode and installation on a hard drive are supported (using its own ginstall installer, written in Python). Boot images are created for x86_64 architecture (2.6 GB). In the new version: To launch […]
After three years of development and 19 test releases, the OpenSSL 3.0.0 library was released with the implementation of the SSL/TLS protocols and various encryption algorithms. The new branch includes changes that break backwards compatibility at the API and ABI level, but the changes will not affect the operation of most applications that require a rebuild to migrate from OpenSSL 1.1.1. Support for the previous branch of OpenSSL 1.1.1 will be […]
