Category Blog
Google has released patches with improved implementation of the LRU mechanism for LinuxLRU (Least Recently User) is a mechanism for discarding or swapping out unused memory pages. Google believes the current implementation of this page-swapping mechanism places excessive CPU load and often makes poor decisions about which pages to swap out. In experiments, […]
Kees Cook, former chief sysadmin of kernel.org and leader Ubuntu Security Team, now working at Google to ensure security Android and ChromeOS, published a set of patches implementing kernel stack offset randomization when handling system calls. The patches improve kernel security by changing the stack layout, making stack attacks significantly more difficult and […]
Linus Torvalds reviewed patches implementing the ability to create drivers in the Rust language for the kernel. Linux, and made some critical comments. The biggest criticism was the potential for panic() to occur in erroneous situations, such as low-memory situations, when dynamic memory allocation operations, including those within the kernel, can fail. Torvalds stated that such a […]
Google has released Chrome 89.0.4389.128, which fixes two vulnerabilities (CVE-2021-21206 and CVE-2021-21220) for which working zero-day exploits are available. CVE-2021-21220 was used to hack Chrome during the Pwn2Own 2021 competition. This vulnerability is exploited by executing specially crafted WebAssembly code (the vulnerability is caused by an error in the WebAssembly virtual machine that allows data to be written or read at arbitrary […]
The main branch of nginx 1.19.10 has been released, within which the development of new features continues (in the parallel supported stable branch 1.18, only changes related to the elimination of serious errors and vulnerabilities are made). Major changes: The default value of the “keepalive_requests” parameter, which determines the maximum number of requests that can be sent through one keep-alive connection, has been increased from 100 to 1000. A new directive has been added […]
The X.Org Server 1.20.11 release has been published, which fixes a vulnerability (CVE-2021-3472) that allows you to escalate your privileges on systems where the X server is running with root rights. The issue is caused by a bug in the XInput extension that causes the contents of a memory region outside the allocated buffer to change when processing ChangeFeedbackControl requests with specially formatted input data. A similar issue has also been fixed in xwayland 21.1.1. […]
System76 is a company specializing in the production of laptops, PCs and servers supplied with Linux, introduced a new user environment, COSMIC (Computer Operating System Main Interface Components), which will replace the modified GNOME desktop included in the Pop!_OS distribution. The new user environment will begin shipping with the release of Pop!_OS 21.04, scheduled for June. The COSMIC code is developed under the GPLv3 license. The previously […]
Two and a half years after the formation of the 12.x branch, the release of FreeBSD 13.0 was presented, which is prepared for the amd64, i386, powerpc, powerpc64, powerpc64le, powerpcspe, armv6, armv7, aarch64 and riscv64 architectures. Additionally, images were generated for virtualization systems (QCOW2, VHD, VMDK, raw) and cloud environments Amazon EC2, Google Compute Engine and Vagrant. Main innovations: The transition to a unified system […]
The research groups Forescout Research Labs and JSOF Research have published the results of a joint study of the security of various implementations of the compression scheme used to pack duplicate names in DNS, mDNS, DHCP, and IPv6 RA messages (packaging duplicate domain parts in messages that include multiple names). During the work, 9 vulnerabilities were identified, which are summarized under the code name NAME:WRECK. Problems identified […]
Google has introduced a new declarative logic programming language, Logica, designed for data manipulation and translating programs into SQL. The new language is aimed at those who want to use logic programming syntax when writing database queries. Currently, the resulting SQL code can be executed in Google BigQuery storage or in PostgreSQL and SQLite DBMSs, which are currently supported […]
Amazon has announced the creation of the OpenSearch project, within which a fork of the Elasticsearch search, analysis and data storage platform, as well as the Kibana web interface associated with the platform, has been created. The code is distributed under the Apache 2.0 license. In the future, we plan to rename the Amazon Elasticsearch Service to Amazon OpenSearch Service. OpenSearch is forked from the Elasticsearch 7.10.2 codebase. Officially, work on the fork […]
Slackware 15.0 has entered beta testing. Slackware has been in development since 1993 and is the oldest of the currently existing distributions. The distribution's distinctive features include a lack of complexity and a simple initialization system in the style of classic BSD systems, making Slackware an interesting solution for learning Unix-like systems, experimenting, and getting acquainted with LinuxAn installation image has been prepared for download, […]