ProHoster > Articles by: ProHoster

Author: ProHoster

FreeBSD 13 almost ended up with a hacky implementation of WireGuard with license violations and vulnerabilities

Submitted by

From the code base on which the FreeBSD 13 release was formed, the code implementing the WireGuard VPN protocol, developed by order of Netgate without consultation with the developers of the original WireGuard, and already included in the stable releases of the pfSense distribution, was scandalously removed. After checking the code by Jason A. Donenfeld, the author of the original WireGuard, it turned out that the proposed FreeBSD […]

Image decoding library SAIL 0.9.0-pre12 release

Submitted by

Several major updates to the SAIL image decoding library have been published, providing a C rewrite of the codecs from the long-defunct KSquirrel image viewer, but with a high-level abstract API and numerous improvements. The library is ready for use, but is still being continuously improved. Binary and API compatibility is not yet guaranteed. Demonstration. Features of SAIL Fast and easy to use […]

The Genode Project has published the Sculpt 21.03 General Purpose OS release

Submitted by

The release of the Sculpt 21.03 operating system has been introduced, within which, based on Genode OS Framework technologies, a general-purpose operating system is being developed that can be used by ordinary users to perform everyday tasks. The source code of the project is distributed under the AGPLv3 license. A 27 MB LiveUSB image is offered for download. Supports operation on systems with Intel processors and graphics […]

Rust programming language 1.51 release

Submitted by

The release of the system programming language Rust 1.51, founded by the Mozilla project, but now developed under the auspices of the independent non-profit organization Rust Foundation, has been published. The language focuses on memory safety, provides automatic memory management, and provides the means to achieve high job parallelism while avoiding the use of a garbage collector and runtime (runtime is reduced to basic initialization and […]

NGINX Unit 1.23.0 Application Server Release

Submitted by

The NGINX Unit 1.23 application server was released, within which a solution is being developed to ensure the launch of web applications in various programming languages ​​(Python, PHP, Perl, Ruby, Go, JavaScript/Node.js and Java). NGINX Unit can simultaneously run multiple applications in different programming languages, the launch parameters of which can be changed dynamically without the need to edit configuration files and restart. Code […]

GNOME Commander 1.12 release

Submitted by

The release of the two-panel file manager GNOME Commander 1.12.0, optimized for use in the GNOME user environment, has taken place. GNOME Commander introduces features such as tabs, command line access, bookmarks, changeable color schemes, directory skip mode when selecting files, access to external data via FTP and SAMBA, expandable context menus, automatic mounting of external drives, access to navigation history, [ …]

Debian Initiates General Vote to Support Petition Against Stallman

Submitted by

A voting plan has been published, with only one option: to support the petition against Stallman for the Debian project as an organization. The organizer of the vote, Steve Langasek from Canonical, limited the discussion period to a week (previously, a minimum of 2 weeks was allocated for discussion). The vote's founders also included Neil McGovern, Steve McIntyre and Sam Hartman, all […]

OpenSSL 1.1.1k update fixes two dangerous vulnerabilities

Submitted by

A corrective release of the OpenSSL cryptographic library 1.1.1k is available, which eliminates two vulnerabilities that are assigned a high level of danger: CVE-2021-3450 - the ability to bypass verification of a certificate authority certificate when the X509_V_FLAG_X509_STRICT flag is enabled, which is disabled by default and is used for additional verification of the presence of certificates in a chain. The problem was introduced in the implementation of a new check that appeared in OpenSSL 1.1.1h, prohibiting the use of […]

Release of GNU Emacs 27.2 text editor

Submitted by

The GNU Project has published the release of the GNU Emacs 27.2 text editor. Until the release of GNU Emacs 24.5, the project developed under the personal leadership of Richard Stallman, who handed over the post of project leader to John Wiegley in the fall of 2015. It is noted that the Emacs 27.2 release includes only bug fixes and does not introduce new features, with the exception of a change in the behavior of the 'resize-mini-frames' option. At […]

Fixing a GPL violation in the mimemagic library caused a crash in Ruby on Rails

Submitted by

The author of the popular Ruby library mimemagic, which has over 100 million downloads, was forced to change its license from MIT to GPLv2 due to the discovery of a violation of the GPLv2 license in the project. RubyGems retained only versions 0.3.6 and 0.4.0, which were shipped under the GPL, and removed all older MIT-licensed releases. Moreover, mimemagic development was stopped, and the GitHub repository […]

The OSI organization will hold re-elections of the governing council due to the compromise of the voting system

Submitted by

The Open Source Initiative (OSI), which checks licenses for compliance with Open Source criteria, decided to re-elect the governing council due to the discovery of a vulnerability in the voting platform, which was used to distort the results of the elections. At the moment, the vulnerability has been blocked and an independent expert has been brought in to determine the consequences of the hack. Details of the incident will be published after […]

Samba 4.14.2, 4.13.7 and 4.12.14 update with vulnerabilities fixed

Submitted by

Corrective releases of the Samba package 4.14.2, 4.13.7 and 4.12.14 have been prepared, in which two vulnerabilities are eliminated: CVE-2020-27840 - a buffer overflow that occurs when processing specially designed DN (Distinguished Name) names. An anonymous attacker can crash a Samba-based AD DC LDAP server by sending a specially crafted bind request. Since during the attack it is possible to control the overwriting area, […]

« back to top 566 567 568 569 570 571 572 573 574 575 In the end "