ProHoster | ProHoster

The possibility of executing user code in the context of the kernel was detected and fixed in the futex system call

Submitted by 02.02.2021

In the implementation of the futex (fast userspace mutex) system call, stack memory usage after free was detected and eliminated. This, in turn, allowed the attacker to execute his code in the context of the kernel, with all the ensuing consequences from a security point of view. The vulnerability was in the error handler code. A fix for this vulnerability appeared on the Linux mainline on January 28 and […]

First public release of JingOS

Submitted by 01.02.2021

The first public release of the JingOS operating system, aimed at mobile devices, took place, in particular the JingPad C1, mass production of which is planned to begin in July 2021. The system is a fork of Ubuntu, supplied with a KDE fork that incorporates many of the qualities of the Apple iPad OS. It is also developing its own set of stock applications such as calendar, app store, PIM, voice notes, and […]

Critical vulnerability in libgcrypt 1.9.0

Submitted by 01.02.2021

On January 28, a 0-day vulnerability was discovered in the libgcrypt cryptographic library by a certain Tavis Ormandy from Project Zero (a group of security specialists at Google who look for 0-day vulnerabilities). Only version 1.9.0 (now renamed on the upstream FTP server to avoid accidental downloading) is affected. Incorrect assumptions in the code can result in a buffer overflow, potentially leading to remote code execution. Overflow may […]

FOSDEM 2021 will be held at the Matrix on February 6 and 7

Submitted by 01.02.2021

FOSDEM, one of the largest European conferences dedicated to open and free software, attracting more than 15 thousand participants annually, will be held virtually this year. The program includes: 608 speakers, 666 events and 113 tracks; virtual rooms (devrooms) devoted to various topics from microkernel development to discussion of legal and legal issues; blitz reports; virtual stands of open projects, [...]

Release of EiskaltDC++ 2.4.1

Submitted by 31.01.2021

A stable release of EiskaltDC++ v2.4.1 has been released - a cross-platform client for Direct Connect and Advanced Direct Connect networks. Builds are prepared for various Linux, Haiku, macOS and Windows distributions. Maintainers of many distributions have already updated packages in the official repositories. Major changes since version 2.2.9, which was released 7.5 years ago: General changes Added support for OpenSSL >= 1.1.x (support […]

perl.com domain hijacked

Submitted by 28.01.2021

Work is underway to restore control over the domain. It's best to avoid visiting it for now. Source: linux.org.ru

Vivaldi 3.6 browser release

Submitted by 28.01.2021

Today the final version of the Vivaldi 3.6 browser based on the open Chromium core was released. In the new release, the principle of working with groups of tabs has been significantly changed - now when you go to a group, an additional panel automatically opens, which contains all the tabs of the group. If necessary, the user can dock the second panel for ease of working with multiple tabs. Other changes include […]

GitLab cancels Bronze/Starter for $4/month

Submitted by 28.01.2021

Current Bronze/Starter customers will be able to continue using them at the same price until the end of their subscription and for another year after that. Then they must choose either a more expensive subscription or a free account with less functionality. If you choose a more expensive subscription, significant discounts are provided, thanks to which the price will increase to the usual price within three years. For example Premium […]

Dotenv-linter updated to v3.0.0

Submitted by 27.01.2021

Dotenv-linter is an open source tool for checking and fixing various problems in .env files, which serve to more conveniently store environment variables within a project. The use of environment variables is recommended by The Twelve Factor App development manifesto, a set of best practices for developing applications for any platform. Following this manifesto makes your application ready to scale, easy […]

A critical vulnerability in sudo has been identified and fixed

Submitted by 27.01.2021

A critical vulnerability was found and fixed in the sudo system utility, allowing absolutely any local user of the system to gain root administrator rights. The vulnerability exploits a heap-based buffer overflow and was introduced in July 2011 (commit 8255ed69). Those who found this vulnerability managed to write three working exploits and successfully test them on Ubuntu 20.04 (sudo 1.8.31), Debian 10 (sudo 1.8.27) […]

Firefox 85

Submitted by 27.01.2021

Firefox 85 is available. Graphics subsystem: WebRender is enabled on devices using the GNOME+Wayland+Intel/AMD graphics card combination (except for 4K displays, support for which is expected in Firefox 86). Additionally, WebRender is enabled on devices using Iris Pro Graphics P580 (mobile Xeon E3 v5), which the developers forgot about, as well as on devices with Intel HD Graphics driver version 23.20.16.4973 (this particular driver […]

Identified and fixed a critical vulnerability in the implementation of NFS

Submitted by 25.01.2021

The vulnerability lies in the ability of a remote attacker to gain access to directories outside the NFS exported directory by calling READDIRPLUS on the .. root export directory. The vulnerability was fixed in kernel 23, released on January 5.10.10, as well as in all other supported versions of kernels updated on that day: commit fdcaa4af5e70e2d984c9620a09e9dade067f2620 Author: J. Bruce Fields[email protected]> Date: Mon Jan 11 […]

"Back « back to top 586 587 588 589 590 591 592 593 594 595 In the end " forward "

Author: ProHoster