All posts by corbet

[$] Replacing openSUSE Leap

Post Syndicated from corbet original https://lwn.net/Articles/943591/

OpenSUSE Leap is a hybrid
distribution; it is based on SUSE’s enterprise distribution (SLE), which
follows the “slow and stable” approach, but adds a number of newer packages
on top. Leap is intended to be a desktop-oriented distribution with a stable
and reliable base. As SUSE transitions away from its traditional
enterprise distribution toward its “Adaptable
Linux Platform” (ALP), though, the stable base upon which openSUSE Leap
is built is going away. The openSUSE community is currently discussing how
the project should respond.

Mozilla: It’s Official: Cars Are the Worst Product Category We Have Ever Reviewed for Privacy

Post Syndicated from corbet original https://lwn.net/Articles/943699/

The Mozilla Foundation has published a
report on the data-collection and privacy practices of 25 car brands.

We reviewed 25 car brands in our research and we handed out 25
“dings” for how those companies collect and use data and personal
information. That’s right: every car brand we looked at collects
more personal data than necessary and uses that information for a
reason other than to operate your vehicle and manage their
relationship with you. For context, 63% of the mental health apps
(another product category that stinks at privacy) we reviewed this
year received this “ding.”

Proof, once again, that running Linux does not automatically make a device
privacy-friendly.

Security updates for Wednesday

Post Syndicated from corbet original https://lwn.net/Articles/943679/

Security updates have been issued by Debian (aom and php7.3), Fedora (freeimage and mingw-freeimage), Scientific Linux (thunderbird), SUSE (amazon-ssm-agent, chromium, container-suseconnect, docker, glib2, php7, python-Django1, and rubygem-rails-html-sanitizer), and Ubuntu (kernel, linux, linux-aws, linux-aws-5.4, linux-gcp, linux-hwe-5.4, linux-ibm,
linux-iot, linux-kvm, linux-oracle, linux-oracle-5.4, linux, linux-aws, linux-aws-6.2, linux-hwe-6.2, linux-kvm,
linux-lowlatency, linux-lowlatency-hwe-6.2, linux-raspi, linux, linux-aws, linux-aws-hwe, linux-gcp, linux-gcp-4.15, linux-hwe,
linux-kvm, linux-oracle, and linux, linux-gcp, linux-hwe-5.15, linux-ibm, linux-kvm, linux-lowlatency,
linux-lowlatency-hwe-5.15, linux-nvidia).

KDE Gear 23.08 Arrived With Plenty of Changes (FOSS Force)

Post Syndicated from corbet original https://lwn.net/Articles/943596/

FOSS Force looks
at the KDE Gear 23.08 release.

For this release, developers have been working in high gear (no pun
intended) as there were important improvements made to many of
Gear’s most iconic applications. Not only that: just a little over
a year after its arrival, the Kalendar app is going through a name
change as it morphs into what appears will eventually become a
full-featured email application.

Security updates for Tuesday

Post Syndicated from corbet original https://lwn.net/Articles/943584/

Security updates have been issued by Debian (file and thunderbird), Fedora (exercism, libtommath, moby-engine, and python-pyramid), Oracle (cups and kernel), Red Hat (firefox, kernel, kernel-rt, kpatch-patch, and thunderbird), SUSE (amazon-ecs-init, buildah, busybox, djvulibre, exempi, firefox, gsl, keylime, kubernetes1.18, php7, and sccache), and Ubuntu (docker-registry and linux-azure-5.4).

[$] Security topics: io_uring, VM attestation, and random-reseed notifications

Post Syndicated from corbet original https://lwn.net/Articles/943239/

The kernel-development community has recently been discussing a number of
independent patches, each of which is intended to help improve the security
of deployed systems in some way. They touch on a number of areas within the
kernel, including the question of how widely io_uring should be available,
how to allow virtual machines to attest to their integrity, and the best
way to inform applications when their random-number generators need to be
reseeded.

[$] Race-free process creation in the GNU C Library

Post Syndicated from corbet original https://lwn.net/Articles/943022/

The pidfd API has been added to the kernel
over the last several years to provide a race-free way for processes to
refer to each other. While the GNU C Library (glibc) gained
basic pidfd support with the 2.36 release in 2022, it still lacks a
complete solution for race-free process creation. This
patch set from Adhemerval Zanella seems likely to fill that gap in the
near future, though, with an extension to the posix_spawn()
API.

Security updates for Wednesday

Post Syndicated from corbet original https://lwn.net/Articles/943087/

Security updates have been issued by Debian (qpdf, ring, and tryton-server), Fedora (mingw-qt5-qtbase and moby-engine), Red Hat (cups, kernel, kernel-rt, kpatch-patch, librsvg2, and virt:rhel and virt-devel:rhel), and Ubuntu (amd64-microcode, firefox, linux, linux-aws, linux-aws-5.15, linux-gcp, linux-gke, linux-gkeop,
linux-hwe-5.15, linux-ibm, linux-kvm, linux-lowlatency,
linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux, linux-aws, linux-aws-5.4, linux-gcp, linux-hwe-5.4, linux-kvm,
linux-oracle, linux-xilinx-zynqmp, linux, linux-aws, linux-aws-6.2, linux-azure, linux-hwe-6.2, linux-ibm,
linux-kvm, linux-lowlatency, linux-lowlatency-hwe-6.2, linux-raspi, linux-bluefield, linux-ibm, linux-oem-6.1, and openjdk-lts, openjdk-17).

Security updates for Tuesday

Post Syndicated from corbet original https://lwn.net/Articles/943006/

Security updates have been issued by Debian (flask-security and opendmarc), Fedora (qemu), Oracle (rust and rust-toolset:ol8), Red Hat (cups and libxml2), Scientific Linux (cups), SUSE (ca-certificates-mozilla, chromium, clamav, freetype2, haproxy, nodejs12, procps, and vim), and Ubuntu (faad2, json-c, libqb, linux, linux-aws, linux-lts-xenial, linux-gcp-5.15, linux-gke, linux-gke-5.15, linux-gkeop, linux-gkeop-5.15, and linux-gke, linux-ibm-5.4).

Rest in peace Satoru Ueda

Post Syndicated from corbet original https://lwn.net/Articles/942973/

[Satoru Ueda]

The OpenChain site carries the sad news of the
passing of Satoru Ueda. Your editor first met Ueda San at the 2007 Linux Foundation Japan Symposium, where a
small group of dedicated developers and managers was working hard to bring
open-source development practices to the country. Ueda San was always a
strong advocate for this cause and deserves much credit for the success of
Linux and open source in Japan. He was also always a warm and welcoming
person; he will be much missed.

[$] Development statistics for the 6.5 kernel

Post Syndicated from corbet original https://lwn.net/Articles/941675/

The 6.5 kernel was released
on August 27 after a nine-week development cycle. By that time, some
13,561 non-merge changesets had found their way into the mainline
repository, the lowest number seen since the 5.15 release (12,377
changesets) in late 2021. Nonetheless, quite a bit of significant work was
done in this cycle; read on for a look at where that work came from.

The 6.5 kernel has been released

Post Syndicated from corbet original https://lwn.net/Articles/942876/

Linus has, as expected, released the 6.5
kernel.

I still have this nagging feeling that a lot of people are on
vacation and that things have been quiet partly due to that. But
this release has been going smoothly, so that’s probably just me
being paranoid. The biggest patches this last week were literally
just to our selftests.

Headline features in 6.5 include
faster booting on large x86 systems,
Arm Permission Indirection Extension
support,
Rust 1.68.2 support,
unaccepted memory handling,
mount beneath” support for filesystems,
the cachestat() system call,
the ability to pass a pidfd via a SCM_CREDENTIALS control message,
scope-based resource management for
internal kernel code,
the deprecation of the SLAB allocator,
and more. See the LWN merge-window summaries
(part 1,
part 2) and the (in-progress)
KernelNewbies 6.5 page
for details.