The CELF Embedded Linux Conference is an interesting event, with a unique
mixture of attendees. It is not a developer's conference, but plenty of
free software developers could be found there. It's not a business
conference, but business people were not in scarce supply either. There
was far more representation from countries like Japan and Korea than can be
found at many Linux-oriented conferences. All of these people came
together to talk about the use and development of Linux in small,
special-purpose systems.
They have plenty to talk about. Predictions for Linux in the embedded
market have always been rosy, and they are getting better all the time. As
Motorola's Scott Preece noted in one session, it is now expected that there
will be over 200 million Linux-based phones in circulation by 2012.
Linux shows up in special-purpose applications on a daily basis - often in
unexpected places. Increasingly, Linux is the operating system of choice
for small systems.
The royalty-free nature of Linux is certainly a reason for its success in
the embedded field. If one is selling millions of gadgets, even a small
per-unit royalty adds up in a hurry. But cost is not the real motivation
here. The ways in which Linux can be modified for specific tasks and the
general level of control it gives to vendors are both more important.
Also, as Mr. Preece pointed out, there is a ready supply of Linux expertise
out there for embedded companies to hire. On the other hand, very few
developers go out and learn the Symbian platform on their own. There are
advantages to going with a standard system.
Given this situation, one would have expected the ELC to be a large event,
but it is, instead, surprisingly small. Quite a few embedded systems
vendors were present - telephone handset manufacturers were especially well
represented - but others were notable in their absence. ELC was not a
particularly well-promoted event, which might partially explain its small
size. Whatever the reason, it would be nice to see wider participation in
the future; this community, like any other, needs to get together
occasionally and talk.
Participation in the community was an ongoing theme of this conference,
from Thomas Gleixner's opening
keynote through to the end of the
last day. Embedded vendors are famous for going their own way, neglecting
to contribute their changes back, and generally pushing the GPL as far as
they can. If there is one message which came out of this conference, it
might be this: the embedded vendors are aware of their lack of
participation and the problems it causes. Many of them - at least, those
who came to this event - would like to make the situation better. But they
often find themselves in a hard position.
Working with the community requires patience, openness, and a willingness
to let go of some control. The embedded market, for the most part, does
not reward those characteristics. Products come and go after a few months,
and, once a product is out the door, and an embedded vendor has little
motivation to continue to work with it. So merging product-specific
changes back into the projects upon which they were based looks like a cost
with little associated benefit. There is little intent to maintain that
product into the future, and there will almost certainly be no big software
upgrades for it. So the code looks dead. The fact that getting their work
into the upstream repositories will help those projects support the next
product better is beginning to get through to some companies, but it is a
slow process.
Getting code into an upstream project - be it the kernel or higher-level
software - goes best when that project is engaged from the beginning. A
big after-release dump of previously unreviewed code tends to be hard to
integrate at best. But the last thing a gadget maker wants to do is to
release detailed internal information about its next product months before
that product is announced. So late code dumps will likely be a best-case
scenario for some time yet to come.
Consumer electronics products also tend to be quite static once they are
shipped. When Nokia released a major software upgrade for the 770 tablet,
it was the first time it had upgraded the software for any product
in the field. Openness and modifiability are somewhat strange concepts for
this industry. Products like the Nokia tablets and the OpenMoko phone are
blazing new trails; many vendors are likely to be watching to see how well
these experiments go.
Seen in this context, the announcement of the GNOME Mobile & Embedded
Initiative fits right in. The GNOME developers, too, are
looking to bring embedded vendors into their community and to get them to
help make the platform better. They seem to be succeeding: the project
claims that there are now more GNOME developers paid to work on embedded
applications than on traditional desktop systems. GNOME is already a
capable environment for embedded development, allowing developers to use
the same software stack on all types of systems. If the project continues
to be successful in getting embedded vendors to help build the platform,
interesting things are certain to happen.
Some vendors have GPLv3 on their minds as well. Many of the libraries
being used by embedded systems are licensed under the LGPL; once
version 3 comes around, the LGPL will be essentially a patch to the
GPL giving some extra permissions. So the LGPL will continue to allow
proprietary applications to be used with the libraries. The LGPL does not,
however, waive the anti-DRM provisions of GPLv3, meaning that users will
have to be able to replace any LGPLv3-licensed libraries on their gadgets.
Such replacement could allow application behavior to be changed in
interesting ways - and badly mess up any lockdown scheme. How that will
play out remains to be seen; embedded vendors may gain a renewed interest
in technologies like SELinux or AppArmor to keep embedded applications
firmly sandboxed.
These issues will certainly be worked out; the incentives to do so are
strong. The embedded Linux community is on a roll, and rightly so. Linux
has all of the right features and freedoms to be an attractive platform in
that arena. If this industry can pull together into a true community -
with the users as members too - there will be few limits on what it will be
able to achieve.
Comments (6 posted)
A few days ago, LWN
looked at the
discussion surrounding the GNOME project's mystery announcement at the
2007 Embedded Linux Conference. That announcement turns out to be the
GNOME Mobile & Embedded
Initiative, a determined push to bring about world domination in the
embedded area.
GNOME hacker Jeff Waugh started his presentation with a brief history of
the GNOME project. He pointed out that there is a lot of innovative,
bleeding-edge technology in the GNOME platform - developments which have
pushed the edge within the desktop and beyond. Examples included the
libxml2 library, Pango, Project Utopia (which had the goal of making
hardware "just work"), Network Manager, and now the Power Manager work.
Another stage in this history was the creation of the GNOME Foundation,
which showed that the free software world can work with commercial
interests to the benefit of both.
In recent times, the shipments of desktop PC's are in decline. On the
other hand, laptop shipments are growing, and the shipments of other mobile
devices are growing rapidly. There are, says Jeff, more developers paid to
work on the GNOME platform for embedded use than for the desktop.
Mobile devices, it seems, are the future.
This is the situation that the GNOME Mobile & Embedded Initiative was
created to take advantage of.
There is a long list of companies and projects which have signed on to this
effort - see the
obligatory collection of quotes for details. Much was made of the fact that
the initiative is a cooperative effort including both companies and free
projects.
The initiative, says Jeff, is about writing code. All of that code will
have the full GNOME platform available to it (if it needs it), and will be
ABI-compatible with the desktop platform. This "is not toy GNOME," it's
the full thing. The platform will carry the GNOME LGPL license, making it
available to proprietary applications - royalty-free, of course. And it's
shipping today, though the
first official release will be with GNOME 2.20 in September.
A wide variety of devices is covered by this platform. Examples given at
the conference include the Nokia N800 (an Internet tablet device), the One
Laptop Per Child XO system, the OpenMoko phone, and, at the novel end of
the scale, the upcoming Vernier
LabQuest, a handheld data acquisition and display device with a vast
list of sensors available to it. The LabQuest was held up as an example of
a device which was developed by a company with little software expertise;
the Linux and GNOME platform made the whole thing relatively easy. All of
these, says Jeff, are "beautiful new ideas" enabled by the open source
stack.
The initial code from the GMAE initiative is available now. Possible
additions in the near future include display frameworks from a number of
sources (examples include the OpenMoko framework and the Hildon desktop
used on the N800), applications like TinyMail, integration of GeoClue, and more. There's also
low-level initiatives like better touchscreen support in GTK, fixing the
floating-point usage in Cairo, etc. Beyond that, time will tell; chances
are it's going to be interesting.
Comments (23 posted)
The announcement of the GNOME Mobility & Embedded
Initiative was generally popular within the GNOME project itself. There
was
one complaint which could be heard in
the right places, however: it seems that this whole initiative was
conceived of and agreed to without the involvement of the GNOME marketing
team. One might well ask: if the marketing team does not get involved in
an agreement like this one, what does the project keep it around for?
There's a couple of responses which are worth a read. Dave Neary, a member
of this team, had some stark comments:
Here it is again: no-one cares about the marketing team. We produce
nothing. We have not shown ourselves to be useful. So no-one is
going to come and talk to us about anything until that changes.
Jeff Waugh, the driving force behind the embedded initiative, states:
We make things happen by taking the reins, establishing buy-in, and
kicking arse. Not by waiting to receive blessing or permission.
One might well argue that the GNOME marketing team has failed to live up to
expectations. Some members of the team are doing so and beginning to think
about ways to change that situation. As a result, we might well see a more
active team in the future.
But there is a question which is worth asking here: to what extent might
the comments quoted above apply to any project's marketing team? It
might just be that a project which is trying to grow its user and
development community has little to gain from the formation of a marketing
group.
In the corporate environment, a marketing team takes a leading role in
identifying potential customers, designing something that those customers
might just want to buy, and finding ways to motivate customers to make that
purchase. Once a marketing strategy has been worked out and adopted, the
rest of the company is expected to work to execute that strategy. In
successful companies, marketing tends to lead the way.
Most free software projects are not amenable to this sort of leadership.
What gets done in free software is what individual developers decide to do
- or are told to do by their employers. Paid developers may well be
working toward the execution of a marketing plan, but it's their employer's
plan, not the project's plan. Free software hackers will be working to
make a project better, but they are not marching to the project's drummer.
They will not seek approval from a project's marketing team when they
decide what to hack on.
The same is true of project members who work to create initiatives or
alliances in a specific area. GNOME's support of embedded applications
comes as a result of work by interested developers and the companies which
are operating in that area. It was a natural consequence of the way the
embedded market is going; there was no need for a marketing team to
foresee, plan for, or mandate a bigger role for GNOME in the embedded
marketplace. If a GNOME marketing group were to call for such a role, it
would have little effect on GNOME developers working on more traditional
desktop applications. Free software projects are not corporations; free
software users and developers will not wait for a marketing group to sign
off on their plans.
Some projects do have marketing organizations which appear to be effective.
The push behind the Firefox browser is arguably one of the most prominent
examples; the alliances and promotional campaigns which have been arranged
have undoubtedly helped to increase adoption of the software. The
marketing of packages like MySQL has also been effective. There is a
pattern to be seen here: in almost all of the cases where a free software
project has had an effective marketing operation, that project is owned and
controlled by a single corporation. In such cases, the project's marketing
plan is, in fact, a component of the company's plan; it's the company's
control of the project which allows its marketing objectives to drive what
the project does.
In the absence of that sort of control, it's not clear what a free software
project's marketing team can achieve. Certainly a marketing group can
point out areas of opportunity in the hope that developers will choose to
pursue those opportunities. Such pointing-out must be done carefully,
though; free software hackers tend to be irritated by those who seem to be
trying to tell them what to do. Marketing teams can also fulfill a useful
sales role by, for example, organizing booths at trade shows, distributing
live CDs, convincing distributors to package the software, etc.
But it's not the marketing group which will bring about a project's
success; that depends on the code, artwork, music, documentation, support,
etc. provided by the project's members. A project is made by its
community, not by a marketing plan. It's hard to imagine wanting that to
change.
Comments (7 posted)
Page editor: Jonathan Corbet
Security
April 25, 2007
This article was contributed by Jake Edge.
A recently released
report
on the security track record of Red Hat Enterprise Linux 4 (RHEL4) sets out
to quantify the risks that an administrator would have faced when using
the distribution. It takes a comprehensive look at all of the vulnerabilities
that were classified as 'critical' in the two years since RHEL4 was released.
A measure of pride is evident in the recognition that there were only three
critical vulnerabilities in the default server install, a rather
nice accomplishment; the study itself is an even better result and it
should set the bar for other similar studies in the future.
In stark contrast to almost daily studies that purport to 'prove' that
Redmond's latest offering is vastly superior to Linux in the security arena,
the RHEL study simply looks at the reported vulnerabilities
in that distribution and leaves any comparisons for others. The study mainly
focuses on the critical vulnerabilities, but it does look at the
'Vulnerability Workload Index' for a server install with all available packages.
This index is meant to give a rough measure of the amount of work an
administrator would need to do to keep a system free from all vulnerabilities.
The most interesting conclusion that can be drawn from the graph is that
the overall workload is pretty flat, there are certainly peaks, but it
is neither increasing nor decreasing over time. Because the software released
with RHEL4 is, of course, getting older and the upstream projects are likely
to be releasing newer versions, a case could be made either way regarding
increasing stability vs. more security issues found over time and it
would appear that the two roughly balance each other.
Flaws that get the 'critical' designation are those that can lead to a system
compromise in an automatic way without any user action. These are the kinds
of bugs that could be exploited by worms to invade and propagate. The
critical designation has been stretched to cover web browser bugs that
are exploited when a user visits a site with malicious code. The vast
majority of critical bugs fall into the latter category and that difference
leads to 60 flaws in a system with all packages installed, 50 of which
can be traced to Mozilla products or the HelixPlayer plugin.
The study goes into the 60 critical flaws in some depth, categorizing them by
type and reporting on the so-called 'days of risk' (number of days after
a vulnerability report before a fix is available). All critical flaws were
fixed within two calendar days and 60% were fixed on the same day. The
riskiest packages are also listed using a weighted score based on
the number and severity of bugs in that package with various Mozilla projects
coming out on top. Interestingly, the kernel dropped from #1 last year to #4
in the current report.
The risk to a system is not only a function of the vulnerabilities in the
packages it has installed; exploits 'in the wild' also factor into it.
The report looks in detail at exploits for
37 vulnerabilities, many of which are, unsurprisingly, either browser
or 'user complicit' exploits. Triggering a user complicit exploit requires
convincing a user to perform some action with a malicious file; because
administrators should be wary of such things or even of running a browser
from a privileged account, the impact of those exploits are limited.
The seven kernel and six server exploits represent a more dangerous class,
with system compromise a distinct possibility. None of the kernel exploits
were remote and all were either denial of service or privilege escalation
bugs. Each of the server application exploits could lead to compromise
of the non-root user that runs the service.
It is interesting to note that
SELinux and
Exec-Shield
are specifically
mentioned as either eliminating or reducing the impact of eleven of these
exploits. Both of these security tools are installed by default with RHEL4
and are targeted at stopping or reducing the effectiveness of just these
kinds of attacks. Exec-Shield uses address space randomization and
protection against executing code from the stack to avoid executing
arbitrary code in the presence of a buffer overflow or similar flaw.
The SELinux policy that ships with RHEL4 restricts users and processes
to only that set of resources they need for their normal function and that
can reduce the kinds of problems an exploited process can cause.
While they are no substitute for correctly written code, these technologies
are clearly helpful to reduce security threats; with luck other techniques
will come along that continue this kind of work.
This is the second report on RHEL4 security; the
first
covers the first year of release. Based on a comment on his original
article, the author is planning a four year retrospective on RHEL3 in
November which should be interesting as well. The comment indicates
only six critical vulnerabilities in the RHEL3 default install in its three
and a half years.
It is
difficult to put a label on the level of 'security risk' that a particular
system has, but RHEL4 would seem to have a fairly low risk overall. If one
keeps up with the patches and is reasonably cognizant of security practices,
the chances for a system compromise are low. This is a real accomplishment
by the Red Hat team and should be a feather in the cap for Linux in
general. No software is perfect and an operating system or distribution
is just a collection of software so vigilance is required. Without examining
our track record, it is difficult to gauge progress and this kind of report is
an excellent way to track that progress; hopefully other distributions will
follow suit.
Comments (1 posted)
New vulnerabilities
3proxy: buffer overflow
| Package(s): | 3proxy |
CVE #(s): | CVE-2007-2031
|
| Created: | April 23, 2007 |
Updated: | April 25, 2007 |
| Description: |
The 3proxy development team reported a buffer overflow in the logurl()
function when processing overly long requests. A remote attacker could
send a specially crafted transparent request to the proxy, resulting in the
execution of arbitrary code with privileges of the user running 3proxy.
This has been fixed in the 3proxy 0.5.3i bugfix
release. |
| Alerts: |
|
Comments (none posted)
aircrack-ng: remote execution of arbitrary code
| Package(s): | aircrack-ng |
CVE #(s): | CVE-2007-2057
|
| Created: | April 23, 2007 |
Updated: | May 23, 2007 |
| Description: |
Jonathan So reported that the airodump-ng module does not correctly
check the size of 802.11 authentication packets before copying them
into a buffer. A remote attacker could trigger a stack-based buffer
overflow by sending a specially crafted 802.11 authentication packet to a
user running airodump-ng with the -w (--write) option. This could lead to
the remote execution of arbitrary code with the permissions of the user
running airodump-ng, which is typically the root user. |
| Alerts: |
|
Comments (none posted)
blender: user-assisted remote execution of arbitrary code
| Package(s): | blender |
CVE #(s): | CVE-2007-1253
|
| Created: | April 24, 2007 |
Updated: | April 25, 2007 |
| Description: |
Stefan Cornelius of Secunia Research discovered an insecure use of the
"eval()" function in kmz_ImportWithMesh.py. A remote attacker could entice
a user to open a specially crafted Blender file (.kmz or .kml), resulting
in the execution of arbitrary Python code with the privileges of the user
running Blender. |
| Alerts: |
|
Comments (1 posted)
clamav: several vulnerabilities
| Package(s): | clamav |
CVE #(s): | CVE-2007-1745
CVE-2007-1997
|
| Created: | April 20, 2007 |
Updated: | May 9, 2007 |
| Description: |
The chm_decompress_stream function in libclamav/chmunpack.c leaks file
descriptors, which has unknown impact and attack vectors involving a
crafted CHM file. (CVE-2007-1745)
Integer signedness error in the (1) cab_unstore and (2) cab_extract
functions in libclamav/cab.c might allow remote attackers to execute
arbitrary code via a crafted CHM file that contains a negative integer,
which passes a signed comparison and leads to a stack-based buffer
overflow. (CVE-2007-1997) |
| Alerts: |
|
Comments (none posted)
Courier-IMAP: remote execution of arbitrary code
| Package(s): | courier-imap |
CVE #(s): | |
| Created: | April 23, 2007 |
Updated: | April 25, 2007 |
| Description: |
CJ Kucera has discovered that some Courier-IMAP scripts don't properly
handle the XMAILDIR variable, allowing for shell command injection. A
remote attacker could send specially crafted login credentials to a
Courier-IMAP server instance, possibly leading to remote code execution
with root privileges. |
| Alerts: |
|
Comments (2 posted)
opera: several vulnerabilities
Comments (none posted)
postgresql: privilege escalation
| Package(s): | postgresql |
CVE #(s): | CVE-2007-2138
|
| Created: | April 24, 2007 |
Updated: | June 18, 2007 |
| Description: |
PostgreSQL 8.2 and all back versions are vulnerable to a privilege escalation exploit
in SECURITY DEFINER functions. |
| Alerts: |
|
Comments (none posted)
sqlite: buffer overflow
| Package(s): | sqlite |
CVE #(s): | CVE-2007-1888
|
| Created: | April 19, 2007 |
Updated: | April 25, 2007 |
| Description: |
The sqlite lightweight DBMS has a buffer overflow vulnerability that
may be used by context-dependent attackers to execute arbitrary
code by using an empty value for the in parameter. |
| Alerts: |
|
Comments (1 posted)
webcalendar: cross-site scripting
| Package(s): | webcalendar |
CVE #(s): | CVE-2006-6669
|
| Created: | April 23, 2007 |
Updated: | April 25, 2007 |
| Description: |
A cross-site scripting (XSS) vulnerability in export_handler.php in
WebCalendar 1.0.4 and earlier allows remote attackers to inject arbitrary
web script or HTML via the format parameter. |
| Alerts: |
|
Comments (none posted)
Updated vulnerabilities
acroread: multiple vulnerabilities
| Package(s): | acroread |
CVE #(s): | CVE-2006-5857
CVE-2007-0045
CVE-2007-0046
|
| Created: | January 11, 2007 |
Updated: | October 26, 2009 |
| Description: |
Adobes acrobat reader has the following vulnerabilities:
The Adobe Reader Plugin has a cross site scripting vulnerability that
can be triggered by processes malformed URLs. Arbitrary JavaScript can
be served by a malicious web server, leading to a cross-site scripting
attack.
Maliciously crafted PDF files can be used to trigger two vulnerabilities,
if an attacker can trick a user into viewing the files, arbitrary code
can be executed with the user's privileges. |
| Alerts: |
|
Comments (1 posted)
apache: cross-site scripting
| Package(s): | apache |
CVE #(s): | CVE-2006-3918
|
| Created: | August 9, 2006 |
Updated: | April 4, 2008 |
| Description: |
From the Red Hat advisory: "A bug was found in Apache where an invalid Expect header sent to the server
was returned to the user in an unescaped error message. This could
allow an attacker to perform a cross-site scripting attack if a victim was
tricked into connecting to a site and sending a carefully crafted Expect
header." |
| Alerts: |
|
Comments (none posted)
Asterisk: two SIP denial of service vulnerabilities
| Package(s): | Asterisk |
CVE #(s): | CVE-2007-1561
CVE-2007-1594
|
| Created: | April 3, 2007 |
Updated: | August 27, 2007 |
| Description: |
The Madynes research team at INRIA has discovered that Asterisk contains a
null pointer dereferencing error in the SIP channel when handling INVITE
messages. Furthermore qwerty1979 discovered that Asterisk 1.2.x fails to
properly handle SIP responses with return code 0. A remote attacker could
cause an Asterisk server listening for SIP messages to crash by sending a
specially crafted SIP message or answering with a 0 return code. |
| Alerts: |
|
Comments (none posted)
bluez-utils: hidd vulnerability
| Package(s): | bluez-utils |
CVE #(s): | CVE-2006-6899
|
| Created: | January 16, 2007 |
Updated: | May 14, 2007 |
| Description: |
hidd in BlueZ (bluez-utils) before 2.25 allows remote attackers to obtain
control of the Mouse and Keyboard Human Interface Device (HID) via a
certain configuration of two HID (PSM) endpoints, operating as a server,
aka HidAttack. |
| Alerts: |
|
Comments (none posted)
bugzilla: multiple vulnerabilities
| Package(s): | bugzilla |
CVE #(s): | CVE-2006-5453
CVE-2006-5454
CVE-2006-5455
|
| Created: | November 10, 2006 |
Updated: | August 28, 2007 |
| Description: |
Bugzilla has the following vulnerabilities:
Input data passed to various fields is not properly sanitized before
being passed back to users.
Users can gain unauthorized access to read attachment
descriptions while using diff mode.
HTTP GET and HTTP POST requests can be used to perform unauthorized
actions due to improper verification.
Input that is passed to showdependencygraph.cgi is not properly
sanitized before being returned to users. |
| Alerts: |
|
Comments (none posted)
busybox: insecure password generation
| Package(s): | busybox |
CVE #(s): | CVE-2006-1058
|
| Created: | May 5, 2006 |
Updated: | May 2, 2007 |
| Description: |
The BusyBox 1.1.1 passwd command does not use a proper salt when generating
passwords. This would create an instance where a brute force attack could
take very little time. |
| Alerts: |
|
Comments (2 posted)
cpio: arbitrary code execution
| Package(s): | cpio |
CVE #(s): | CVE-2005-4268
|
| Created: | January 2, 2006 |
Updated: | March 17, 2010 |
| Description: |
Richard Harms discovered that cpio did not sufficiently validate file
properties when creating archives. Files with e. g. a very large size
caused a buffer overflow. By tricking a user or an automatic backup
system into putting a specially crafted file into a cpio archive, a
local attacker could probably exploit this to execute arbitrary code
with the privileges of the target user (which is likely root in an
automatic backup system). |
| Alerts: |
|
Comments (none posted)
vixie-cron: privilege escalation
| Package(s): | cron |
CVE #(s): | CVE-2006-2607
|
| Created: | May 31, 2006 |
Updated: | June 1, 2009 |
| Description: |
The Vixie cron daemon does not check the return code from setuid(); if that call can be made to fail, a local attacker may be able to execute commands as root. |
| Alerts: |
|
Comments (1 posted)
cscope: buffer overflows
| Package(s): | cscope |
CVE #(s): | CVE-2006-4262
|
| Created: | October 2, 2006 |
Updated: | June 16, 2009 |
| Description: |
Will Drewry of the Google Security Team discovered several buffer overflows
in cscope, a source browsing tool, which might lead to the execution of
arbitrary code. |
| Alerts: |
|
Comments (none posted)
cscope: buffer overflows
| Package(s): | cscope |
CVE #(s): | CVE-2004-2541
|
| Created: | May 22, 2006 |
Updated: | June 19, 2009 |
| Description: |
A buffer overflow in Cscope 15.5, and possibly multiple overflows, allows
remote attackers to execute arbitrary code via a C file with a long
#include line that is later browsed by the target. |
| Alerts: |
|
Comments (1 posted)
cups: denial of service
| Package(s): | cups |
CVE #(s): | CVE-2007-0720
|
| Created: | March 26, 2007 |
Updated: | February 7, 2008 |
| Description: |
Previous versions of the cups package could be forced to hang via a client
"partially negotiating" an ssl connection. In this state, cups would not
allow other connections to be made, a denial of service. |
| Alerts: |
|
Comments (none posted)
Cyrus-SASL: DIGEST-MD5 Pre-Authentication Denial of Service
| Package(s): | cyrus-sasl |
CVE #(s): | CVE-2006-1721
|
| Created: | April 21, 2006 |
Updated: | September 4, 2007 |
| Description: |
Cyrus-SASL contains an unspecified vulnerability in the DIGEST-MD5
process that could lead to a Denial of Service. An attacker could possibly
exploit this vulnerability by sending specially crafted data stream to the
Cyrus-SASL server, resulting in a Denial of Service even if the attacker is
not able to authenticate. |
| Alerts: |
|
Comments (none posted)
dokuwiki: cross-site scripting vulnerability
| Package(s): | dokuwiki |
CVE #(s): | CVE-2006-6965
|
| Created: | April 12, 2007 |
Updated: | April 18, 2007 |
| Description: |
DokuWiki has a cross-site scripting vulnerability that is caused by
insufficient user input sanitization of the GET variable 'media' in
the fetch.php file. If a user can be tricked into clicking on a
specially crafted link, CRLF characters can be injected into the variable
allowing arbitrary scripts to be executed with the user's permissions. |
| Alerts: |
|
Comments (none posted)
dovecot: index cache file handling error
| Package(s): | dovecot |
CVE #(s): | CVE-2006-5973
|
| Created: | November 29, 2006 |
Updated: | May 8, 2007 |
| Description: |
The dovecot IMAP server has an error in its index cache file handling code which could be exploited by an authenticated user to execute arbitrary code. Only servers with the (non-default) mmap_disable=yes option setting are vulnerable. |
| Alerts: |
|
Comments (none posted)
dovecot: information exposure
| Package(s): | dovecot |
CVE #(s): | |
| Created: | April 18, 2007 |
Updated: | April 18, 2007 |
| Description: |
Dovecot is vulnerable to a trivial information exposure in which files
outside the user's mail directory could be opened if the zlib plugin is
used. |
| Alerts: |
|
Comments (2 posted)
elinks: arbitrary file access
| Package(s): | elinks |
CVE #(s): | CVE-2006-5925
|
| Created: | November 16, 2006 |
Updated: | October 22, 2009 |
| Description: |
The elinks text-mode browser has an arbitrary file access vulnerability
in the Elinks SMB protocol handler. If a user can be tricked into
visiting a specially crafted web page, arbitrary files may be read or
written with the user's permissions. |
| Alerts: |
|
Comments (none posted)
evolution: format string error
| Package(s): | evolution |
CVE #(s): | CVE-2007-1002
|
| Created: | March 27, 2007 |
Updated: | February 27, 2008 |
| Description: |
A format string error in the "write_html()" function in calendar/gui/
e-cal-component-memo-preview.c when displaying a memo's categories can
potentially be exploited to execute arbitrary code via a specially crafted
shared memo containing format specifiers. |
| Alerts: |
|
Comments (1 posted)
fail2ban: denial of service
| Package(s): | fail2ban |
CVE #(s): | CVE-2006-6302
|
| Created: | February 16, 2007 |
Updated: | July 30, 2007 |
| Description: |
fail2ban 0.7.4 and earlier does not properly parse sshd logs file, which
allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file
and cause a denial of service by adding arbitrary IP addresses to the sshd
log file, as demonstrated by logging in to ssh using a login name
containing certain strings with an IP address. |
| Alerts: |
|
Comments (3 posted)
ffmpeg: buffer overflows
| Package(s): | ffmpeg |
CVE #(s): | CVE-2006-4799
CVE-2006-4800
|
| Created: | September 14, 2006 |
Updated: | May 28, 2007 |
| Description: |
the AVI processing code in FFmpeg has a number of buffer overflow
vulnerabilities.
If an attacker can trick a user into loading a specially crafted
crafted AVI, arbitrary code can be executed with the user's privileges. |
| Alerts: |
|
Comments (2 posted)
file: denial of service
| Package(s): | file |
CVE #(s): | CVE-2007-2026
|
| Created: | April 18, 2007 |
Updated: | May 25, 2007 |
| Description: |
The gnu regular expression code in file 4.20 allows context-dependent
attackers to cause a denial of service (CPU consumption) via a crafted
document with a large number of line feed characters, which is not well
handled by OS/2 REXX regular expressions that use wildcards, as originally
reported for AMaViS. |
| Alerts: |
|
Comments (none posted)
file: arbitrary code execution
| Package(s): | file |
CVE #(s): | CVE-2007-1536
|
| Created: | March 22, 2007 |
Updated: | May 30, 2007 |
| Description: |
The "file" utility incorrectly checks the allocated heap memory size.
If a remote attacker can trick a user into looking at specially crafted
files with file, arbitrary code can be executed with the user's privileges. |
| Alerts: |
|
Comments (1 posted)
firefox: FTP PASV port-scanning
| Package(s): | firefox seamonkey |
CVE #(s): | CVE-2007-1562
|
| Created: | March 23, 2007 |
Updated: | June 4, 2007 |
| Description: |
According to this
advisory, the FTP protocol includes the PASV (passive) command which is
used by Firefox to request an alternate data port. The specification of the
FTP protocol allows the server response to include an alternate server
address as well, although this is rarely used in practice. |
| Alerts: |
|
Comments (1 posted)
freeradius: memory leak
| Package(s): | freeradius |
CVE #(s): | CVE-2007-2028
|
| Created: | April 17, 2007 |
Updated: | May 15, 2007 |
| Description: |
A memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to
cause a denial of service (memory consumption) via a large number of
EAP-TTLS tunnel connections using malformed Diameter format attributes,
which causes the authentication request to be rejected but does not reclaim
VALUE_PAIR data structures. |
| Alerts: |
|
Comments (none posted)
freeradius: several vulnerabilities
| Package(s): | freeradius |
CVE #(s): | CVE-2005-4745
CVE-2005-4746
|
| Created: | August 8, 2006 |
Updated: | April 24, 2007 |
| Description: |
Several remote vulnerabilities have been discovered in freeradius, a
high-performance RADIUS server, which may lead to SQL injection or denial
of service. |
| Alerts: |
|
Comments (none posted)
freetype: integer overflows
| Package(s): | freetype |
CVE #(s): | CVE-2006-0747
CVE-2006-1861
CVE-2006-2493
CVE-2006-2661
CVE-2006-3467
|
| Created: | June 8, 2006 |
Updated: | June 1, 2010 |
| Description: |
The FreeType library has several integer overflow vulnerabilities.
If a user can be tricked into installing a specially
crafted font file, arbitrary code can be executed with the privilege
of the user. |
| Alerts: |
|
Comments (none posted)
gcc: file overwrite vulnerability
| Package(s): | gcc |
CVE #(s): | CVE-2006-3619
|
| Created: | September 6, 2006 |
Updated: | March 14, 2008 |
| Description: |
The fastjar utility found in the GNU compiler collection does not perform adequate file path checking, allowing the creation or overwriting of files outside of the current directory tree. |
| Alerts: |
|
Comments (none posted)
gd: buffer overflow
| Package(s): | gd |
CVE #(s): | CVE-2007-0455
|
| Created: | February 7, 2007 |
Updated: | November 18, 2009 |
| Description: |
The gd graphics library contains a buffer overflow which could enable a remote attacker to execute arbitrary code. Note that various other packages include code from gd and could also be vulnerable. |
| Alerts: |
|
Comments (2 posted)
gdb: buffer overflow
| Package(s): | gdb |
CVE #(s): | CVE-2006-4146
|
| Created: | September 15, 2006 |
Updated: | June 12, 2007 |
| Description: |
A buffer overflow in dwarfread.c and dwarf2read.c debugging code in GNU
Debugger (GDB) 6.5 allows user-assisted attackers, or restricted users, to
execute arbitrary code via a crafted file with a location block
(DW_FORM_block) that contains a large number of operations. |
| Alerts: |
|
Comments (none posted)
gdm: improper file permissions
| Package(s): | gdm |
CVE #(s): | CVE-2006-1057
|
| Created: | April 19, 2006 |
Updated: | May 2, 2007 |
| Description: |
The .ICEauthority file may be created with the wrong ownership and permissions; gdm 2.14.2 fixes the problem. |
| Alerts: |
|
Comments (none posted)
gedit: format string vulnerability
| Package(s): | gedit |
CVE #(s): | CAN-2005-1686
|
| Created: | June 9, 2005 |
Updated: | February 5, 2009 |
| Description: |
A format string vulnerability has been discovered in gedit. Calling
the program with specially crafted file names caused a buffer
overflow, which could be exploited to execute arbitrary code with the
privileges of the gedit user. |
| Alerts: |
|
Comments (1 posted)
grip: buffer overflow
| Package(s): | grip |
CVE #(s): | CAN-2005-0706
|
| Created: | March 10, 2005 |
Updated: | November 19, 2008 |
| Description: |
Grip, a CD ripper, has a buffer overflow vulnerability that can
occur when the CDDB server returns more than 16 matches. |
| Alerts: |
|
Comments (none posted)
gzip: multiple vulnerabilities
| Package(s): | gzip |
CVE #(s): | CVE-2006-4334
CVE-2006-4335
CVE-2006-4336
CVE-2006-4337
CVE-2006-4338
|
| Created: | September 19, 2006 |
Updated: | January 20, 2010 |
| Description: |
Tavis Ormandy of the Google Security Team discovered two denial of service
flaws in the way gzip expanded archive files. If a victim expanded a
specially crafted archive, it could cause the gzip executable to hang or
crash.
Tavis Ormandy of the Google Security Team discovered several code execution
flaws in the way gzip expanded archive files. If a victim expanded a
specially crafted archive, it could cause the gzip executable to crash or
execute arbitrary code. |
| Alerts: |
|
Comments (1 posted)
horde-kronolith: local file inclusion
| Package(s): | horde-kronolith |
CVE #(s): | CVE-2006-6175
|
| Created: | January 17, 2007 |
Updated: | March 7, 2008 |
| Description: |
Kronolith contains a mistake in lib/FBView.php where a raw, unfiltered
string is used instead of a sanitized string to view local files. An
authenticated attacker could craft an HTTP GET request that uses directory
traversal techniques to execute any file on the web server as PHP code,
which could allow information disclosure or arbitrary code execution with
the rights of the user running the PHP application (usually the webserver
user). |
| Alerts: |
|
Comments (none posted)
ImageMagick: integer overflows
| Package(s): | imagemagick |
CVE #(s): | CVE-2007-1797
|
| Created: | April 4, 2007 |
Updated: | August 11, 2009 |
| Description: |
Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote
attackers to execute arbitrary code via (1) a crafted DCM image, which
results in a heap-based overflow in the ReadDCMImage function, or (2) the
(a) colors or (b) comments field in a crafted XWD image, which results in a
heap-based overflow in the ReadXWDImage function, different issues than
CVE-2007-1667. |
| Alerts: |
|
Comments (none posted)
imlib2: arbitrary code execution
| Package(s): | imlib2 |
CVE #(s): | CVE-2006-4806
CVE-2006-4807
CVE-2006-4808
CVE-2006-4809
|
| Created: | November 6, 2006 |
Updated: | August 13, 2007 |
| Description: |
M. Joonas Pihlaja discovered that imlib2 did not sufficiently verify the
validity of ARGB, JPG, LBM, PNG, PNM, TGA, and TIFF images. If a user
were tricked into viewing or processing a specially crafted image with
an application that uses imlib2, the flaws could be exploited to execute
arbitrary code with the user's privileges. |
| Alerts: |
|
Comments (none posted)
ipsec-tools: denial of service
| Package(s): | ipsec-tools |
CVE #(s): | CVE-2007-1841
|
| Created: | April 10, 2007 |
Updated: | August 28, 2007 |
| Description: |
A flaw was discovered in the IPSec key exchange server "racoon". Remote
attackers could send a specially crafted packet and disrupt established
IPSec tunnels, leading to a denial of service. |
| Alerts: |
|
Comments (none posted)
java: multiple vulnerabilities
| Package(s): | java |
CVE #(s): | CVE-2006-4339
CVE-2006-4790
CVE-2006-6731
CVE-2006-6736
CVE-2006-6737
CVE-2006-6745
|
| Created: | January 18, 2007 |
Updated: | June 4, 2010 |
| Description: |
java has multiple vulnerabilities, these include:
an RSA exponent padding attack vulnerability, two vulnerabilities
which allow untrusted applets to access data in other applets,
vulnerabilities that involve applets gaining privileges due to
serialization bugs in the JRE and buffer overflows in the java image
handling routines that can give attackers read/write/execute capabilities
for local files. |
| Alerts: |
|
Comments (1 posted)
kdelibs: kate backup file permission leak
| Package(s): | kdelibs kate kwrite |
CVE #(s): | CAN-2005-1920
|
| Created: | July 19, 2005 |
Updated: | September 21, 2010 |
| Description: |
Kate / Kwrite, as shipped with KDE 3.2.x up to including 3.4.0, creates a file backup before saving a modified file. These backup files are created with default permissions, even if the original file had more strict permissions set. See this advisory for more information. |
| Alerts: |
|
Comments (1 posted)
kdelibs: cross-site scripting
| Package(s): | kdelibs konqeror |
CVE #(s): | CVE-2007-0537
|
| Created: | February 5, 2007 |
Updated: | August 13, 2007 |
| Description: |
Konqueror 3.5.5 does not properly parse HTML comments, which allows remote
attackers to conduct cross-site scripting (XSS) attacks and bypass some XSS
protection schemes by embedding certain HTML tags within a comment, a
related issue to CVE-2007-0478. |
| Alerts: |
|
Comments (none posted)
kernel: denial of service
| Package(s): | kernel |
CVE #(s): | CVE-2007-1357
|
| Created: | April 16, 2007 |
Updated: | November 14, 2007 |
| Description: |
The atalk_sum_skb function in AppleTalk for Linux kernel 2.6.x before
2.6.21, and possibly 2.4.x, allows remote attackers to cause a denial of
service (crash) via an AppleTalk frame that is shorter than the specified
length, which triggers a BUG_ON call when an attempt is made to perform a
checksum. |
| Alerts: |
|
Comments (none posted)
kernel: denial of service
| Package(s): | kernel |
CVE #(s): | CVE-2006-4623
|
| Created: | October 18, 2006 |
Updated: | November 14, 2007 |
| Description: |
The kernel DVB layer can be caused to crash with maliciously-formatted unidirectional lightweight encapsulation (ULE) data. |
| Alerts: |
|
Comments (none posted)
kernel: multiple vulnerabilities
| Package(s): | kernel |
CVE #(s): | CVE-2007-0005
CVE-2007-1000
|
| Created: | March 15, 2007 |
Updated: | November 14, 2007 |
| Description: |
The Linux kernel has a boundary error problem with the
Omnikey CardMan 4040 driver read and write functions. This can be used
to cause a buffer overflow and possible execution or arbitrary code with
kernel privileges.
The ipv6_getsockopt_sticky function in
net/ipv6/ipv6_sockglue.c is vulnerable to a NULL pointer dereference.
Local users can use this to crash the kernel or to disclose kernel
memory. |
| Alerts: |
|
Comments (none posted)
kernel: denial of service
| Package(s): | kernel |
CVE #(s): | CVE-2006-0007
CVE-2007-0006
|
| Created: | February 15, 2007 |
Updated: | November 14, 2007 |
| Description: |
Linux kernel versions from 2.6.9 to 2.6.20 have a denial of service
vulnerability. A remote attacker can cause the key_alloc_serial
function's key serial number collision avoidance code to have a
null dereference, resulting in a crash. |
| Alerts: |
|
Comments (1 posted)
kernel: denial of service
| Package(s): | kernel |
CVE #(s): | CVE-2006-4535
CVE-2006-4538
|
| Created: | September 18, 2006 |
Updated: | January 5, 2009 |
| Description: |
Sridhar Samudrala discovered a local denial of service vulnerability
in the handling of SCTP sockets. By opening such a socket with a
special SO_LINGER value, a local attacker could exploit this to crash
the kernel. (CVE-2006-4535)
Kirill Korotaev discovered that the ELF loader on the ia64 and sparc
platforms did not sufficiently verify the memory layout. By attempting
to execute a specially crafted executable, a local user could exploit
this to crash the kernel. (CVE-2006-4538) |
| Alerts: |
|
Comments (none posted)
kernel: denial of service by memory consumption
| Package(s): | kernel |
CVE #(s): | CVE-2006-2936
|
| Created: | July 17, 2006 |
Updated: | November 14, 2007 |
| Description: |
The ftdi_sio driver (usb/serial/ftdi_sio.c) in Linux kernel 2.6.x up to
2.6.17, and possibly later versions, allows local users to cause a denial
of service (memory consumption) by writing more data to the serial port
than the driver can handle, which causes the data to be queued. |
| Alerts: |
|
Comments (none posted)
kernel: denial of service
| Package(s): | kernel |
CVE #(s): | CVE-2007-0772
|
| Created: | February 23, 2007 |
Updated: | November 14, 2007 |
| Description: |
The Linux kernel before 2.6.20.1 allows remote attackers to cause a denial
of service (oops) via a crafted NFSACL 2 ACCESS request that triggers a free
of an incorrect pointer. |
| Alerts: |
|
Comments (none posted)
kernel: denial of service
| Package(s): | kernel |
CVE #(s): | CVE-2006-5757
|
| Created: | November 13, 2006 |
Updated: | November 14, 2007 |
| Description: |
From the MOKB-05-11-2006
advisory: "The ISO9660 filesystem handling code of the Linux
2.6.x kernel fails to properly handle corrupted data structures, leading to
an exploitable denial of service condition. This particular vulnerability
seems to be caused by a race condition and a signedness issue. When
performing a read operation on a corrupted ISO9660 fs stream, the
isofs_get_blocks() function will enter an infinite loop when
__find_get_block_slow() callback from sb_getblk() fails ("due to various
races between file io on the block device and getblk")." |
| Alerts: |
|
Comments (none posted)
kernel: denial of service
| Package(s): | kernel |
CVE #(s): | CVE-2006-2935
CVE-2006-4145
CVE-2006-3745
|
| Created: | September 1, 2006 |
Updated: | July 30, 2008 |
| Description: |
Previous versions of the kernel package are subject to several
vulnerabilities. Certain malformed UDF filesystems can cause the system to
crash (denial of service). Malformed CDROM firmware or USB storage devices
(such as USB keys) could cause system crash (denial of service), and if
they were intentionally malformed, can cause arbitrary code to run with
elevated privileges. In addition, the SCTP protocol is subject to a remote
system crash (denial of service) attack. |
| Alerts: |
|
Comments (none posted)
kernel: multiple vulnerabilities
| Package(s): | kernel |
CVE #(s): | CVE-2006-5749
CVE-2006-4814
CVE-2006-6106
|
| Created: | January 5, 2007 |
Updated: | January 8, 2009 |
| Description: |
A security issue has been reported in Linux kernel due to an error in
drivers/isdn/i4l/isdn_ppp.c as the "isdn_ppp_ccp_reset_alloc_state()"
function never initializes an event timer before scheduling it with the
"add_timer()" function.
The mincore function in the kernel does not properly lock access to user
space, which has unspecified impact and attack vectors, possibly related to
a deadlock.
Another vulnerability has been reported in Linux kernel caused by a
boundary error within the handling of incoming CAPI messages in
net/bluetooth/cmtp/capi.c. This can be exploited to overwrite certain
Kernel data structures. |
| Alerts: |
|
Comments (none posted)
krb5: uninitialized pointers
| Package(s): | krb5 |
CVE #(s): | CVE-2006-6143
CVE-2006-3084
|
| Created: | January 10, 2007 |
Updated: | July 7, 2010 |
| Description: |
The kdamind daemon can, in some situations, perform operations on uninitialized pointers. This bug could conceivably open up the system to a code execution attack by an unauthenticated remote attacker, but it appears to be difficult to exploit. See this advisory for details. |
| Alerts: |
|
Comments (1 posted)
krb5: local privilege escalation
| Package(s): | krb5 |
CVE #(s): | CVE-2006-3083
|
| Created: | August 9, 2006 |
Updated: | July 7, 2010 |
| Description: |
Some kerberos applications fail to check the results of setuid() calls, with the result that, if that call fails, they could continue to execute as root after thinking they had switched to a nonprivileged user. A local attacker who can cause these calls to fail (through resource exhaustion, presumably) could exploit this bug to gain root privileges. |
| Alerts: |
|
Comments (none posted)
krb5: multiple vulnerabilities
| Package(s): | krb5 |
CVE #(s): | CVE-2007-0956
CVE-2007-0957
CVE-2007-1216
|
| Created: | April 3, 2007 |
Updated: | March 24, 2008 |
| Description: |
A flaw was found in the username handling of the MIT krb5 telnet daemon
(telnetd). A remote attacker who can access the telnet port of a target
machine could log in as root without requiring a password. MIT krb5 Security Advisory 2007-001
Buffer overflows were found which affect the Kerberos KDC and the kadmin
server daemon. A remote attacker who can access the KDC could exploit this
bug to run arbitrary code with the privileges of the KDC or kadmin server
processes. MIT krb5 Security Advisory
2007-002
A double-free flaw was found in the GSSAPI library used by the kadmin
server daemon. MIT krb5 Security Advisory
2007-003 |
| Alerts: |
|
Comments (none posted)
ktorrent: incorrect validation
| Package(s): | ktorrent |
CVE #(s): | CVE-2007-1384
CVE-2007-1385
CVE-2007-1799
|
| Created: | March 13, 2007 |
Updated: | October 24, 2007 |
| Description: |
Bryan Burns of Juniper Networks discovered that KTorrent did not
correctly validate the destination file paths nor the HAVE statements
sent by torrent peers. A malicious remote peer could send specially
crafted messages to overwrite files or execute arbitrary code with user
privileges. |
| Alerts: |
|
Comments (1 posted)
libgadu: memory alignment bug
| Package(s): | libgadu |
CVE #(s): | CAN-2005-2370
|
| Created: | July 29, 2005 |
Updated: | June 25, 2007 |
| Description: |
Szymon Zygmunt and Michal Bartoszkiewicz discovered a memory alignment
error in libgadu (from ekg, console Gadu Gadu client, an instant
messaging program) which is included in gaim, a multi-protocol instant
messaging client, as well. This can not be exploited on the x86
architecture but on others, e.g. on Sparc and lead to a bus error,
in other words a denial of service.
|
| Alerts: |
|
Comments (none posted)
libgtop2: buffer overflow
| Package(s): | libgtop2 |
CVE #(s): | CVE-2007-0235
|
| Created: | January 15, 2007 |
Updated: | August 9, 2007 |
| Description: |
The /proc parsing routines in libgtop are vulnerable to a buffer overflow.
If an attacker can run a process in a specially crafted long
path then trick a user into running gnome-system-monitor,
arbitrary code can be executed with the user's privileges. |
| Alerts: |
|
Comments (none posted)
libmodplug: boundary errors
| Package(s): | libmodplug |
CVE #(s): | CVE-2006-4192
|
| Created: | December 11, 2006 |
Updated: | May 4, 2011 |
| Description: |
Luigi Auriemma has reported various boundary errors in load_it.cpp and
a boundary error in the "CSoundFile::ReadSample()" function in
sndfile.cpp. A remote attacker can entice a user to read crafted modules
or ITP files, which may trigger a buffer overflow resulting in the
execution of arbitrary code with the privileges of the user running the
application. |
| Alerts: |
|
Comments (none posted)
libpng: buffer overflow
| Package(s): | libpng |
CVE #(s): | CVE-2006-3334
|
| Created: | July 19, 2006 |
Updated: | December 15, 2008 |
| Description: |
In pngrutil.c, the function png_decompress_chunk() allocates
insufficient space for an error message, potentially overwriting stack
data, leading to a buffer overflow. |
| Alerts: |
|
Comments (none posted)
libpng: heap based buffer overflow
| Package(s): | libpng |
CVE #(s): | CVE-2006-0481
|
| Created: | February 13, 2006 |
Updated: | December 15, 2008 |
| Description: |
A heap based buffer overflow bug was found in the way libpng strips alpha
channels from a PNG image. An attacker could create a carefully crafted PNG
image file in such a way that it could cause an application linked with
libpng to crash or execute arbitrary code when the file is opened by a
victim. |
| Alerts: |
|
Comments (1 posted)
libtiff: buffer overflow
| Package(s): | libtiff |
CVE #(s): | CVE-2006-2193
|
| Created: | June 15, 2006 |
Updated: | September 1, 2008 |
| Description: |
The t2p_write_pdf_string function in libtiff 3.8.2 and earlier is vulnerable
to a buffer overflow. Attackers can use a TIFF file with UTF-8 characters
in the DocumentName tag to overflow a buffer, causing a denial of service,
and possibly the execution of arbitrary code. |
| Alerts: |
|
Comments (none posted)
libxml2 - arbitrary code execution
| Package(s): | libxml2 |
CVE #(s): | CAN-2004-0110
|
| Created: | February 26, 2004 |
Updated: | August 19, 2009 |
| Description: |
Yuuichi Teranishi discovered a flaw in libxml2 versions prior to 2.6.6.
When fetching a remote resource via FTP or HTTP, libxml2 uses special
parsing routines. These routines can overflow a buffer if passed a very
long URL. If an attacker is able to find an application using libxml2 that
parses remote resources and allows them to influence the URL, then this
flaw could be used to execute arbitrary code. |
| Alerts: |
|
Comments (none posted)
libxml2: multiple buffer overflows
| Package(s): | libxml2 |
CVE #(s): | CAN-2004-0989
|
| Created: | October 28, 2004 |
Updated: | August 19, 2009 |
| Description: |
libxml2 prior to version 2.6.14 has multiple buffer overflow
vulnerabilities, if a local user passes a specially crafted
FTP URL, arbitrary code may be executed. |
| Alerts: |
|
Comments (none posted)
lighttpd: denial of service
| Package(s): | lighttpd |
CVE #(s): | CVE-2007-1869
CVE-2007-1870
|
| Created: | April 18, 2007 |
Updated: | June 11, 2007 |
| Description: |
lighttpd 1.4.12 and 1.4.13 allows remote attackers to cause a denial of
service (cpu and resource consumption) by disconnecting while lighttpd is
parsing CRLF sequences, which triggers an infinite loop and file descriptor
consumption. (CVE-2007-1869)
lighttpd before 1.4.14 allows attackers to cause a denial of service
(crash) via a request to a file whose mtime is 0, which results in a NULL
pointer dereference. (CVE-2007-1870) |
| Alerts: |
|
Comments (none posted)
lookup-el: insecure temporary file
| Package(s): | lookup-el |
CVE #(s): | CVE-2007-0237
|
| Created: | March 19, 2007 |
Updated: | December 10, 2007 |
| Description: |
Tatsuya Kinoshita discovered that Lookup, a search interface to electronic
dictionaries on emacsen, creates a temporary file in an insecure fashion
when the ndeb-binary feature is used, which allows a local attacker to
craft a symlink attack to overwrite arbitrary files. |
| Alerts: |
|
Comments (none posted)
lynx: arbitrary command execution
| Package(s): | lynx |
CVE #(s): | CVE-2005-2929
|
| Created: | November 14, 2005 |
Updated: | September 14, 2009 |
| Description: |
An arbitrary command execute bug was found in the lynx "lynxcgi:" URI
handler. An attacker could create a web page redirecting to a malicious URL
which could execute arbitrary code as the user running lynx. |
| Alerts: |
|
Comments (none posted)
madwifi: multiple vulnerabilities
| Package(s): | madwifi |
CVE #(s): | CVE-2005-4835
CVE-2006-7177
CVE-2006-7178
CVE-2006-7179
CVE-2006-7180
|
| Created: | April 12, 2007 |
Updated: | April 23, 2007 |
| Description: |
Madwifi versions below 0.9.3 have a number of vulnerabilities including:
a denial of service vulnerability in the ath_rate_sample function,
a denial of service vulnerability related to Ad-Hoc mode, a denial of
service caused by improper handling of an AUTH frame by an IBSS node,
a denial of service cause by improper handling of Channel Switch
Announcement Information Elements, and an information disclosure vulnerability caused by the sending of unencrypted packets before
WPA authentication. |
| Alerts: |
|
Comments (none posted)
mod_jk: stack overflow
| Package(s): | mod_jk |
CVE #(s): | CVE-2007-0774
|
| Created: | March 5, 2007 |
Updated: | May 30, 2007 |
| Description: |
A stack overflow flaw was found in the URI handler of mod_jk. A remote
attacker could visit a carefully crafted URL being handled by mod_jk and
trigger this flaw, which could lead to the execution of arbitrary code as the
'apache' user. |
| Alerts: |
|
Comments (none posted)
mod_perl: denial of service
| Package(s): | mod_perl |
CVE #(s): | CVE-2007-1349
|
| Created: | April 12, 2007 |
Updated: | July 18, 2007 |
| Description: |
Apache mod_perl versions 1.30 and below have a vulnerability in
PerlRun.pm and RegistryCooker.pm. PATH_INFO is not properly
escaped before use in a regular expression, allowing remote attackers
to cause a denial of service via a specially crafted URI. |
| Alerts: |
|
Comments (1 posted)
mplayer: buffer overflow
| Package(s): | mplayer |
CVE #(s): | CVE-2007-1246
|
| Created: | March 8, 2007 |
Updated: | April 1, 2008 |
| Description: |
MPlayer versions up to 1.0rc1 have a buffer overflow in the
loader/dmo/DMO_VideoDecoder.c DMO_VideoDecoder_Open function.
user-assisted remote attackers can use this to create a buffer overflow
and possibly execute arbitrary code. |
| Alerts: |
|
Comments (none posted)
mysql: denial of service
| Package(s): | mysql |
CVE #(s): | CVE-2007-1420
|
| Created: | March 22, 2007 |
Updated: | May 21, 2008 |
| Description: |
MySQL subselect queries using "ORDER BY" can be used by an attacker with
access to a MySQL instance in order to create an intermittent denial
of service. |
| Alerts: |
|
Comments (none posted)
mysql: format string bug
| Package(s): | mysql |
CVE #(s): | CVE-2006-3469
|
| Created: | July 21, 2006 |
Updated: | July 30, 2008 |
| Description: |
Jean-David Maillefer discovered a format string bug in the
date_format() function's error reporting. By calling the function with
invalid arguments, an authenticated user could exploit this to crash
the server. |
| Alerts: |
|
Comments (none posted)
MySQL: privilege violations
| Package(s): | mysql |
CVE #(s): | CVE-2006-4031
CVE-2006-4226
|
| Created: | August 25, 2006 |
Updated: | July 30, 2008 |
| Description: |
MySQL 4.1 before 4.1.21 and 5.0 before 5.0.24 allows a local user to access
a table through a previously created MERGE table, even after the user's
privileges are revoked for the original table, which might violate intended
security policy (CVE-2006-4031).
MySQL 4.1 before 4.1.21, 5.0 before 5.0.25, and 5.1 before 5.1.12, when run
on case-sensitive filesystems, allows remote authenticated users to create
or access a database when the database name differs only in case from a
database for which they have permissions (CVE-2006-4226). |
| Alerts: |
|
Comments (none posted)
MySQL: logging bypass
| Package(s): | mysql |
CVE #(s): | CVE-2006-0903
|
| Created: | April 4, 2006 |
Updated: | May 21, 2008 |
| Description: |
MySQL 5.0.18 and earlier allows local users to bypass logging mechanisms
via SQL queries that contain the NULL character, which are not properly
handled by the mysql_real_query function. NOTE: this issue was originally
reported for the mysql_query function, but the vendor states that since
mysql_query expects a null character, this is not an issue for mysql_query. |
| Alerts: |
|
Comments (2 posted)
nas: code execution
Comments (none posted)
nbd: arbitrary code execution
| Package(s): | nbd |
CVE #(s): | CVE-2005-3534
|
| Created: | January 6, 2006 |
Updated: | March 7, 2011 |
| Description: |
Kurt Fitzner discovered that the NBD (network block device) server did not
correctly verify the maximum size of request packets. By sending specially
crafted large request packets, a remote attacker who is allowed to access
the server could exploit this to execute arbitrary code with root
privileges. |
| Alerts: |
|
Comments (none posted)
ncompress: buffer underflow
| Package(s): | ncompress |
CVE #(s): | CVE-2006-1168
|
| Created: | August 10, 2006 |
Updated: | February 21, 2012 |
| Description: |
The ncompress compression utility has a missing boundary check.
A local user can use a maliciously created file to cause a
a .bss buffer underflow. |
| Alerts: |
|
Comments (none posted)
openldap: security bypass
| Package(s): | openldap |
CVE #(s): | CVE-2006-4600
|
| Created: | September 29, 2006 |
Updated: | June 12, 2007 |
| Description: |
slapd in OpenLDAP before 2.3.25 allows remote authenticated users with
selfwrite Access Control List (ACL) privileges to modify arbitrary
Distinguished Names (DN). |
| Alerts: |
|
Comments (none posted)
OpenSSH: denial of service
| Package(s): | openssh |
CVE #(s): | CVE-2006-4925
CVE-2006-5052
|
| Created: | October 6, 2006 |
Updated: | November 15, 2007 |
| Description: |
packet.c in ssh in OpenSSH allows remote attackers to cause a denial of
service (crash) by sending an invalid protocol sequence with
USERAUTH_SUCCESS before NEWKEYS, which causes newkeys[mode] to be NULL.
An unspecified vulnerability in portable OpenSSH before 4.4, when running
on some platforms, allows remote attackers to determine the validity of
usernames via unknown vectors involving a GSSAPI "authentication abort." |
| Alerts: |
|
Comments (none posted)
openssh: remote denial of service
| Package(s): | openssh |
CVE #(s): | CVE-2006-4924
CVE-2006-5051
|
| Created: | September 27, 2006 |
Updated: | September 17, 2008 |
| Description: |
Openssh 4.4 fixes some
security issues, including a pre-authentication denial of service, an
unsafe signal hander and on portable OpenSSH a GSSAPI authentication abort
could be used to determine the validity of usernames on some platforms. |
| Alerts: |
|
Comments (none posted)
php: multiple vulnerabilities
| Package(s): | php |
CVE #(s): | CVE-2007-1001
CVE-2007-1285
CVE-2007-1718
CVE-2007-1583
|
| Created: | April 16, 2007 |
Updated: | December 4, 2007 |
| Description: |
A denial of service flaw was found in the way PHP processed a deeply nested
array. A remote attacker could cause the PHP interpreter to crash by
submitting an input variable with a deeply nested array. (CVE-2007-1285)
A flaw was found in the way the mbstring extension set global variables. A
script which used the mb_parse_str() function to set global variables could
be forced to enable the register_globals configuration option, possibly
resulting in global variable injection. (CVE-2007-1583)
A flaw was discovered in the way PHP's mail() function processed header
data. If a script sent mail using a Subject header containing a string from
an untrusted source, a remote attacker could send bulk e-mail to unintended
recipients. (CVE-2007-1718)
A heap based buffer overflow flaw was discovered in PHP's gd extension. A
script that could be forced to process WBMP images from an untrusted source
could result in arbitrary code execution. (CVE-2007-1001) |
| Alerts: |
|
Comments (none posted)
php: several vulnerabilities
| Package(s): | php |
CVE #(s): | CVE-2006-4481
CVE-2006-4484
CVE-2006-4485
|
| Created: | September 8, 2006 |
Updated: | June 13, 2008 |
| Description: |
The file_exists and imap_reopen functions in PHP before 5.1.5 do not check
for the safe_mode and open_basedir settings, which allows local users to
bypass the settings (CVE-2006-4481).
A buffer overflow in the LWZReadByte function in ext/gd/libgd/gd_gif_in.c
in the GD extension in PHP before 5.1.5 allows remote attackers to have an
unknown impact via a GIF file with input_code_size greater than
MAX_LWZ_BITS, which triggers an overflow when initializing the table array
(CVE-2006-4484).
The stripos function in PHP before 5.1.5 has unknown impact and attack
vectors related to an out-of-bounds read (CVE-2006-4485). |
| Alerts: |
|
Comments (1 posted)
php: buffer overflows
| Package(s): | php |
CVE #(s): | CVE-2006-5465
|
| Created: | November 3, 2006 |
Updated: | January 18, 2010 |
| Description: |
The Hardened-PHP Project discovered buffer overflows in
htmlentities/htmlspecialchars internal routines to the PHP Project. Of
course the whole purpose of these functions is to be filled with user
input. (The overflow can only be when UTF-8 is used) |
| Alerts: |
|
Comments (none posted)
phpbb2: missing input sanitizing
| Package(s): | phpbb2 |
CVE #(s): | CVE-2006-1896
|
| Created: | May 22, 2006 |
Updated: | February 11, 2008 |
| Description: |
It was discovered that phpbb2, a web based bulletin board, insufficiently
sanitizes values passed to the "Font Color 3" setting, which might lead to
the execution of injected code by admin users. |
| Alerts: |
|
Comments (none posted)
phpbb2: multiple vulnerabilities
| Package(s): | phpbb2 |
CVE #(s): | CVE-2005-3310
CVE-2005-3415
CVE-2005-3416
CVE-2005-3417
CVE-2005-3418
CVE-2005-3419
CVE-2005-3420
CVE-2005-3536
CVE-2005-3537
|
| Created: | December 22, 2005 |
Updated: | February 11, 2008 |
| Description: |
The phpbb2 web forum has a number of vulnerabilities including:
a web script injection problem, a protection mechanism bypass, a
security check bypass, a remote global variable bypass, cross site
scripting vulnerabilities, an SQL injection vulnerability,
a remote regular expression modification problem, missing input
sanitizing, and a missing request validation problem. |
| Alerts: |
|
Comments (none posted)
postgresql: SQL injection
| Package(s): | postgresql |
CVE #(s): | CVE-2006-2313
CVE-2006-2314
|
| Created: | May 24, 2006 |
Updated: | June 6, 2007 |
| Description: |
The PostgreSQL team has put out a set of "urgent updates" (in the form of the 7.3.15, 7.4.13, 8.0.8, and 8.1.4 releases) closing a
newly-discovered set of SQL injection issues. Details about the problem
can be found on the
technical information page; in short: multi-byte encodings can be used
to defeat normal string sanitizing techniques. The update fixes one problem
related to invalid multi-byte characters, but punts on another by simply
disallowing the old, unsafe technique of escaping single quotes with a
backslash. |
| Alerts: |
|
Comments (1 posted)
qt: "/../" injection
| Package(s): | qt |
CVE #(s): | CVE-2007-0242
|
| Created: | April 4, 2007 |
Updated: | September 13, 2007 |
| Description: |
Andreas Nolden discovered a bug in qt3, where the UTF8 decoder does not
reject overlong sequences, which can cause "/../" injection or (in the case
of konqueror) a "<script>" tag injection. |
| Alerts: |
|
Comments (2 posted)
quake: buffer overflow
| Package(s): | quake3-bin |
CVE #(s): | CVE-2006-2236
|
| Created: | May 10, 2006 |
Updated: | January 12, 2009 |
| Description: |
Games based on the Quake 3 engine are vulnerable to a buffer overflow exploitable by a hostile game server. |
| Alerts: |
|
Comments (none posted)
rpm: arbitrary code execution
| Package(s): | rpm |
CVE #(s): | CVE-2006-5466
|
| Created: | November 6, 2006 |
Updated: | August 28, 2007 |
| Description: |
An error was found in the RPM library's handling of query reports. In
some locales, certain RPM packages would cause the library to crash. If
a user was tricked into querying a specially crafted RPM package, the
flaw could be exploited to execute arbitrary code with the user's
privileges. |
| Alerts: |
|
Comments (none posted)
Mozilla: multiple vulnerabilities
| Package(s): | seamonkey firefox thunderbird |
CVE #(s): | CVE-2006-6077
CVE-2007-0008
CVE-2007-0009
CVE-2007-0775
CVE-2007-0777
CVE-2007-0778
CVE-2007-0779
CVE-2007-0780
CVE-2007-0800
CVE-2007-0981
CVE-2007-0995
CVE-2007-0996
|
| Created: | February 26, 2007 |
Updated: | July 23, 2007 |
| Description: |
Several flaws were found in the way SeaMonkey processed certain malformed
JavaScript code. A malicious web page could execute JavaScript code in such
a way that may result in SeaMonkey crashing or executing arbitrary code as
the user running SeaMonkey. (CVE-2007-0775, CVE-2007-0777)
Several cross-site scripting (XSS) flaws were found in the way SeaMonkey
processed certain malformed web pages. A malicious web page could display
misleading information which may result in a user unknowingly divulging
sensitive information such as a password. (CVE-2006-6077, CVE-2007-0995,
CVE-2007-0996)
A flaw was found in the way SeaMonkey cached web pages on the local disk. A
malicious web page may be able to inject arbitrary HTML into a browsing
session if the user reloads a targeted site. (CVE-2007-0778)
A flaw was found in the way SeaMonkey displayed certain web content. A
malicious web page could generate content which could overlay user
interface elements such as the hostname and security indicators, tricking a
user into thinking they are visiting a different site. (CVE-2007-0779)
Two flaws were found in the way SeaMonkey displayed blocked popup windows.
If a user can be convinced to open a blocked popup, it is possible to read
arbitrary local files, or conduct an XSS attack against the user.
(CVE-2007-0780, CVE-2007-0800)
Two buffer overflow flaws were found in the Network Security Services (NSS)
code for processing the SSLv2 protocol. Connecting to a malicious secure
web server could cause the execution of arbitrary code as the user running
SeaMonkey. (CVE-2007-0008, CVE-2007-0009)
A flaw was found in the way SeaMonkey handled the "location.hostname" value
during certain browser domain checks. This flaw could allow a malicious web
site to set domain cookies for an arbitrary site, or possibly perform an
XSS attack. (CVE-2007-0981) |
| Alerts: |
|
Comments (1 posted)
shadow-utils: mailbox creation vulnerability
| Package(s): | shadow-utils |
CVE #(s): | CVE-2006-1174
|
| Created: | May 25, 2006 |
Updated: | June 12, 2007 |
| Description: |
The useradd tool from the shadow-utils package has a potential security
problem. When a new user's mailbox is created, the permissions are
set to random garbage from the stack, potentially allowing the
file to be read or written during the time before fchmod() is called. |
| Alerts: |
|
Comments (none posted)
slocate: information disclosure
| Package(s): | slocate |
CVE #(s): | CVE-2007-0227
|
| Created: | February 22, 2007 |
Updated: | September 4, 2012 |
| Description: |
The slocate permission checking code has a local information disclosure
vulnerability. During the reporting of matching files, slocate does not
respect the parent directory's read permissions, resulting in hidden
filenames being viewable by other local users. |
| Alerts: |
|
Comments (none posted)
snort: remote arbitrary code execution
| Package(s): | snort |
CVE #(s): | CVE-2006-5276
|
| Created: | March 2, 2007 |
Updated: | September 7, 2007 |
| Description: |
The Snort intrusion detection system is vulnerable to a buffer overflow
in the DCE/RPC preprocessor code. Remote attackers can send
specially crafted fragmented SMB or DCE/RPC packets which can be used
to allow the the remote execution of arbitrary code. |
| Alerts: |
|
Comments (1 posted)
sun-jdk: arbitrary code execution
| Package(s): | sun-jdk |
CVE #(s): | CVE-2007-0243
|
| Created: | February 19, 2007 |
Updated: | April 25, 2007 |
| Description: |
A anonymous researcher discovered that an error in the handling of a GIF
image with a zero width field block leads to a memory corruption flaw. An
attacker could entice a user to run a specially crafted Java applet or
application that would load a crafted GIF image, which could result in
escalation of privileges and unauthorized access to system resources. |
| Alerts: |
|
Comments (1 posted)
tcpdump: denial of service
| Package(s): | tcpdump |
CVE #(s): | CVE-2007-1218
|
| Created: | March 5, 2007 |
Updated: | November 15, 2007 |
| Description: |
Off-by-one buffer overflow in the parse_elements function in the 802.11
printer code (print-802_11.c) for tcpdump 3.9.5 and earlier allows remote
attackers to cause a denial of service (crash) via a crafted 802.11
frame. NOTE: this was originally referred to as heap-based, but it might be
stack-based. |
| Alerts: |
|
Comments (none posted)
unzip: long file name buffer overflow
| Package(s): | unzip |
CVE #(s): | CVE-2005-4667
|
| Created: | February 6, 2006 |
Updated: | May 2, 2007 |
| Description: |
A buffer overflow in UnZip 5.50 and earlier allows local users to execute
arbitrary code via a long filename command line argument. NOTE: since the
overflow occurs in a non-setuid program, there are not many scenarios under
which it poses a vulnerability, unless unzip is passed long arguments when
it is invoked from other programs. |
| Alerts: |
|
Comments (1 posted)
vixie-cron: weak permissions may cause errors
| Package(s): | vixie-cron |
CVE #(s): | CVE-2007-1856
|
| Created: | April 17, 2007 |
Updated: | December 4, 2007 |
| Description: |
During an internal audit, Raphael Marichez of the Gentoo Linux Security
Team found that Vixie Cron has weak permissions set on Gentoo, allowing
for a local user to create hard links to system and users cron files,
while a st_nlink check in database.c will generate a superfluous error. |
| Alerts: |
|
Comments (1 posted)
w3c-libwww: possible stack overflow
| Package(s): | w3c-libwww |
CVE #(s): | CVE-2005-3183
|
| Created: | October 14, 2005 |
Updated: | May 2, 2007 |
| Description: |
xtensive testing of libwww's handling of multipart/byteranges content from
HTTP/1.1 servers revealed multiple logical flaws and bugs in
Library/src/HTBound.c |
| Alerts: |
|
Comments (1 posted)
XFree86 X.org: integer overflows
| Package(s): | xfree86 x.org |
CVE #(s): | CVE-2007-1003
CVE-2007-1667
CVE-2007-1351
CVE-2007-1352
|
| Created: | April 3, 2007 |
Updated: | August 11, 2009 |
| Description: |
iDefense reported an integer overflow flaw in the XFree86 XC-MISC
extension. A malicious authorized client could exploit this issue to cause
a denial of service (crash) or potentially execute arbitrary code with root
privileges on the XFree86 server. (CVE-2007-1003)
iDefense reported two integer overflows in the way X.org handled various
font files. A malicious local user could exploit these issues to
potentially execute arbitrary code with the privileges of the X.org server.
(CVE-2007-1351, CVE-2007-1352)
An integer overflow flaw was found in the XFree86 XGetPixel() function.
Improper use of this function could cause an application calling it to
function improperly, possibly leading to a crash or arbitrary code
execution. (CVE-2007-1667) |
| Alerts: |
|
Comments (none posted)
xine: format string vulnerabilities
| Package(s): | xine |
CVE #(s): | CVE-2007-0017
|
| Created: | January 23, 2007 |
Updated: | August 10, 2007 |
| Description: |
Multiple format string vulnerabilities in (1) the cdio_log_handler function
in modules/access/cdda/access.c in the CDDA (libcdda_plugin) plugin, and
the (2) cdio_log_handler and (3) vcd_log_handler functions in
modules/access/vcdx/access.c in the VCDX (libvcdx_plugin) plugin, in
VideoLAN VLC 0.7.0 through 0.8.6 allow user-assisted remote attackers to
execute arbitrary code via format string specifiers in an invalid URI, as
demonstrated by a udp://-- URI in an M3U file. |
| Alerts: |
|
Comments (none posted)
xine-lib: arbitrary code execution
| Package(s): | xine-lib |
CVE #(s): | CVE-2007-1387
|
| Created: | March 13, 2007 |
Updated: | April 1, 2008 |
| Description: |
Moritz Jodeit discovered that the DirectShow loader of Xine did not
correctly validate the size of an allocated buffer. By tricking a user
into opening a specially crafted media file, an attacker could execute
arbitrary code with the user's privileges. |
| Alerts: |
|
Comments (none posted)
xine-lib: buffer overflow
| Package(s): | xine-lib |
CVE #(s): | CVE-2006-6172
|
| Created: | December 5, 2006 |
Updated: | June 5, 2007 |
| Description: |
A buffer overflow was discovered in the Real Media input plugin in
xine-lib. If a user were tricked into loading a specially crafted stream
from a malicious server, the attacker could execute arbitrary code with the
user's privileges. |
| Alerts: |
|
Comments (none posted)
xine-lib: buffer overflow
| Package(s): | xine-lib |
CVE #(s): | CVE-2006-1664
|
| Created: | April 27, 2006 |
Updated: | February 27, 2008 |
| Description: |
xine-lib does an improper input data boundary check on
MPEG streams. A specially crafted MPEG file can be
created that can cause arbitrary code execution when the
file is accessed. |
| Alerts: |
|
Comments (none posted)
xinit: race condition
| Package(s): | xinit |
CVE #(s): | CVE-2006-5214
|
| Created: | October 17, 2006 |
Updated: | August 9, 2007 |
| Description: |
A race condition allows local users to see error messages generated during
another user's X session. This could allow potentially sensitive
information to be leaked. |
| Alerts: |
|
Comments (1 posted)
xmms: BMP handling vulnerability
| Package(s): | xmms |
CVE #(s): | CVE-2007-0653
CVE-2007-0654
|
| Created: | March 28, 2007 |
Updated: | July 26, 2011 |
| Description: |
xmms suffers from vulnerabilities in its handling of BMP images. Should a hostile image be included in an xmms skin, it could lead to code execution on the user's system. |
| Alerts: |
|
Comments (none posted)
X.org: local privilege escalations
| Package(s): | xorg-x11 |
CVE #(s): | CVE-2006-4447
|
| Created: | August 28, 2006 |
Updated: | April 30, 2007 |
| Description: |
Several X.org libraries and X.org itself contain system calls to
set*uid() functions, without checking their result. Local users could
deliberately exceed their assigned resource limits and elevate their
privileges after an unsuccessful set*uid() system call. This requires
resource limits to be enabled on the machine. |
| Alerts: |
|
Comments (none posted)
zziplib: buffer overflow
| Package(s): | zziplib |
CVE #(s): | CVE-2007-1614
|
| Created: | April 4, 2007 |
Updated: | September 5, 2007 |
| Description: |
dmcox discovered a boundary error in the zzip_open_shared_io() function
from zzip/file.c . A remote attacker could entice a user to run a zziplib
function with an overly long string as an argument which would trigger the
buffer overflow and may lead to the execution of arbitrary code. |
| Alerts: |
|
Comments (none posted)
Page editor: Jonathan Corbet
Kernel development
Brief items
The current 2.6 prepatch is still 2.6.21-rc7; the expected final
2.6.21 release has not happened as of this writing. Patches to fix
regressions continue to accumulate in the mainline git repository.
There have been no -mm releases in the past week.
For older kernels: 2.6.16.49 was released on
April 23 with a handful of fixes. Users of the 2.4 kernel can choose
between 2.4.34.3
(April 22, networking fixes), 2.4.34.4 (fixes a build problem
in 2.4.34.3), or 2.4.35-pre4
(April 22, various fixes).
Comments (none posted)
Kernel development news
So while with other, heuristic approaches we always had the problem
of creating a "hyper-inflation" of an uneconomic virtual currency
that could be freely printed by certain tasks, in CFS the economy
of this is strict and the finegrained plus/minus balance is
strictly managed by a conservative and independent central bank.
--
Ingo Molnar brings fiscal discipline to
scheduling
We like it in the kernel, we find it to be warm and fuzzy. Whereas,
user space is a cold, dark, and rainy place, and we just don't want
to go there.
--
Matt Ranon
Comments (2 posted)
In
last week's scheduler
timeslice, Ingo Molnar had introduced his "completely fair scheduler"
patch and Staircase Deadline scheduler author Con Kolivas had retreated in
a bit of a sulk. Since then, Con has returned and posted several new
revisions of the SD scheduler, but with little discussion. His intent,
seemingly, is to raise the bar and ensure that whatever scheduler does
eventually replace the current system is the best possible - a goal which
few should be able to disagree with.
Most of the discussion, though, has centered around the CFS scheduler.
Several testers have reported good results, but others have noted some
behavioral regressions. These problems, like most of the others over the
years, involve the X Window System. So potential solutions are being
discussed yet again.
The classic response to X interactivity problems is to renice the X server.
But this solution seems like a bit of a hack to many, so scheduler work
has often been aimed at eliminating the need to run X at a higher
priority. Con Kolivas questions this goal:
The one fly in the ointment for linux remains X. I am still, to
this moment, completely and utterly stunned at why everyone is
trying to find increasingly complex unique ways to manage X when
all it needs is more cpu. Now most of these are actually very good
ideas about _extra_ features that would be desirable in the long
run for linux, but given the ludicrous simplicity of renicing X I
cannot fathom why people keep promoting these alternatives.
Avoiding renicing remains a goal of CFS, but it's interesting to see that
the v4 CFS patch does renice X - automatically. More specifically, the
scheduler bumps the priority level of any process performing hardware I/O
(as seen by calls to ioperm() or iopl(), the loop block
device thread, and worker threads associated with workqueues. With the X
server automatically boosted (as a result of its iopl() use), it
does tend to be more responsive.
While giving kernel threads a priority boost might make sense in the long
term, Ingo sees renicing X as a temporary hack. The real solution to the
problem seems to involve two different approaches: CPU credit transfers
between processes and group scheduling.
Remember that, with the CFS scheduler, each process accumulates a certain
amount of CPU time which is "owed" to it; this time is earned by waiting
while others use the processor. This mechanism can enforce basic fairness
between processes, in that each one gets something very close to an equal
share of the available CPU time. Whether this calculation is truly "fair"
depends on how one judges fairness; if the X server is seen as performing
work for other processes, then fairness would call for X to share in the
credit accumulated by those other processes. Linus has been pushing for a solution along these
lines:
The "perfect" situation would be that when somebody goes to sleep,
any extra points it had could be given to whoever it woke up
last. Note that for something like X, it means that the points are
100% ephemeral: it gets points when a client sends it a request,
but it would *lose* the points again when it sends the reply!
The CFS v5 patch has the
beginnings of support for this mode of operation. Automatic transfers of
credit are not there, but there is a new system call:
long sched_yield_to(pid_t pid);
This call gives up the processor much like sched_yield(), but it
also gives half of the yielding process's credit (if it has any) to the
process identified by pid. This system call could be used by (for
example) the X libraries as a way to explicitly transfer credit to the X
server. There is currently no way for the X server to give back the credit
it didn't use; Ingo has mentioned the
notion of a sched_pay() system call for that purpose. There's
also no way to ensure that X uses the credit for work done on the yielding
process's behalf; it could just as easily squander it on wobbly window
effects. But it's a step in the right direction.
A further step, in a highly prototypical form, is Ingo's scheduler economy patch. This
mechanism allows kernel code to set up a scheduler "work account";
processes can then make deposits to and withdrawls from the account with:
void sched_pay(struct sched_account *account);
void sched_withdraw(struct sched_account *account);
At this point, deposits and withdrawls all involve a fixed amount of CPU
time. The Unix-domain socket code has been modified to create one of these
accounts associated with each socket. Any non-root process (X clients, for
example) writing to a socket will also make a deposit into the work
account; root-owned processes (the X server, in particular) reading
messages also withdraw from the account. It's all a proof of concept; a
real implementation would require a rather more sophisticated API. But the
proof does show that X clients can convey some of their CPU credits to the
server when processor time is scarce.
The other idea in circulation is per-user or group scheduling. Here, the
idea is to fairly split CPU time between users instead of between
processes. If one user is running a single text editor process when
another starts a kernel build with make -j 100, the
scheduler will have 101 processes all contending for the CPU. The current
crop of fair schedulers will divide the processor evenly between all of
them, allowing the kernel build to take over while the text editor must
make do with less than 1% of the available CPU time. This situation may be
just fine with kernel developers, but one can easily argue that the right
split here would be to confine the kernel build to half of the available
time while allowing the text editor to use the other half.
That is the essence of per-user scheduling. Among other things, it could
ease the X interactivity problem: since X runs as a different user (root,
normally), it will naturally end up in a separate scheduling group with its
own fair share of the processor. Linus has been pushing hard for group
scheduling as well (see the quote
of last week). Ingo responds that
group scheduling is on his mind - he just hasn't gotten around to it yet:
Firstly, i have not neglected the group scheduling related CFS
regressions at all, mainly because there _is_ already a quick hack
to check whether group scheduling would solve these regressions:
renice. And it was tried in both of the two CFS regression cases
i'm aware of: Mike's X starvation problem and Willy's "kevents
starvation with thousands of scheddos tasks running" problem. And
in both cases, applying the renice hack [which should be properly
and automatically implemented as uid group scheduling] fixed the
regression for them! So i was not worried at all, group scheduling
_provably solves_ these CFS regressions. I rather concentrated on
the CFS regressions that were much less clear.
In other words, the automatic renicing described above is not a permanent
solution; instead, it's more of a proof of concept for group scheduling.
Ingo goes on to say that there's a lot of other important factors in
getting interactive scheduling right; in particular, nanosecond accounting
and strict division of CPU time were needed. Once all of those details are
right, one can start thinking about the group scheduling problem.
So there would appear to be some work yet to be done on the CFS scheduler.
That will doubtless happen; meanwhile, however, Linus has complained that some of this effort may be
misdirected at the moment:
Anyway, I'd ask people to look a bit at the current *regressions*
instead of spending all their time on something that won't even be
merged before 2.6.21 is released, and we thus have some more
pressing issues. Please?
One might argue that any work which is intended for the upcoming 2.6.22
merge window needs to be pulled into shape now. But the replacement of the
CPU scheduler is likely to take a little bit longer than that. Given the
number of open questions - and the amount of confidence replacing the
scheduler requires - any sort of movement for 2.6.22 seems unlikely.
Comments (14 posted)
One of the fundamental problems facing filesystem developers is that, while
disks are getting both larger and faster, the rate at which they are
growing exceeds the rate at which they are speeding up. As a result, the
time required to read an entire disk is growing. There is little joy in
waiting for a filesystem checker to do its thing during a system reboot, so
the prospect of ever-longer fsck delays is understandably lacking in
appeal. Unfortunately, that is the direction in which things are going.
Journaling filesystems can help avoid fsck, but only in situations
where the filesystem has not suffered any sort of corruption.
Given that filesystem checks are something we have to deal with, it's worth
thinking about how we might make them faster in the era of terabyte disks.
One longstanding idea for improving the situation was recently posted in
the form of chunkfs, "fs
fission for faster fsck." The core idea is to take a filesystem and split
it into several independent filesystems, each of which maintains its own
clean/dirty state. Should things go wrong, only those sub-filesystems which
were active at the time of failure need to be checked.
Like many experimental filesystem developments, chunkfs is built upon ext2.
Internally, it is a series of separate ext2
filesystems which look like a single system to the higher layers of the
filesystem. Each chunk can be maintained independently by the filesystem
code, but the individual chunks are not visible outside of the filesystem.
The idea is relatively simple, though, as always, there are a few pesky
details to work out.
One is that inode numbers in the larger chunkfs filesystem must be unique.
Each chunk, however, maintains its own list of inodes starting with
number one, so inode numbers will be reused from one chunk to the next.
Chunkfs makes these numbers unique by putting the chunk number
in the upper eight bits of every inode number. As a result, there is a
maximum of 256 chunks in any chunkfs filesystem.
A trickier problem comes about when a file grows. The filesystem will try
to allocate additional file blocks in the chunk where the file was
originally created. Should that chunk fill up, however, something else needs
to happen; it would not be good for the filesystem to return "no space"
errors when free space does exist in other chunks. The answer
here is the creation of a "continuation inode." These inodes track the
allocation of blocks in a different chunk; they look much like files in
their own right, but they are part of a larger array of block allocations.
The "real" inode for a given file can have pointers to up to four
continuation inodes in different chunks; if more are needed, each
continuation inode can, itself, point to another four continuations. Thus,
continuation inodes can be chained to create files of arbitrary length.
This code is in a relatively early state; the text with the patch notes
that "this is a preliminary implementation and lots of changes are
expected before this code is even sanely usable." There is a set of
tools which can be used by people who would like to test out chunkfs
filesystems with well backed-up data. With some care and some testing,
chunkfs may grow to the point that it's stable and shortening fsck times
worldwide.
Meanwhile, one of the longest stories in Linux filesystem development has
to be the reiser4 filesystem. By the time Hans Reiser first asked for the merging of
reiser4 in July, 2003, the filesystem had been under development for
some years. Almost four years have passed since then, and reiser4 remains
outside of the mainline kernel. Hans Reiser is now out of the picture, his
company (Namesys) is in trouble, and, to a casual observer, reiser4 appears
not to be going anywhere.
There has been a recent increase in interest in this filesystem, though.
It turns out that two Namesys employees are
still working on the filesystem "mostly on enthusiasm." They have been
feeding patches through to the -mm tree, and they are getting toward the
end of their list of things to fix. So we might see a new push for
inclusion of reiser4, perhaps as soon as 2.6.23. But, says Andrew Morton, some things would have to
happen; in particular, there needs to be a new review of the reiser4 code.
To get it unstuck we'd need a general push, get people looking at
and testing the code, get the vendors to have a serious think about
it, etc. We could do that - it'd require that the namesys people
(and I) start making threatening noises about merging it, I guess.
Or we could move all the reiser4 code into kernel/sched.c - that
seems to get people fired up.
Your editor will go out on a limb and suggest that a mass move of the
reiser4 code is unlikely. But a new round of talk on actually merging this
filesystem is starting to look reasonably likely. There's enough work -
and enough interesting ideas - in this code that people are unwilling to
let it just fade away. Perhaps, soon, it will be heading for its
long-sought spot in the mainline.
Comments (12 posted)
One of the side discussions in the scheduler debate had to do with how the
CFS scheduler broke the out-of-tree
suspend2 suspend-to-disk code. Ingo
Molnar, acting on the reports, found and fixed a bug in CFS. As a way of
returning the favor, he then
posted a
review of the suspend2 code, noting that "
the patch looks sane
all around" and asking whether there were any plans to get suspend2
into the mainline kernel.
Perhaps Ingo wasn't listening the past few times this topic has been
brought up. His question was music to suspend2 author Nigel Cunningham's
ears; Nigel promptly responded with a lengthy reasons to merge suspend2 document. Among
many other things, he notes that the user-space software suspend
implementation (uswsusp) is still running behind suspend2 in features. It
is true that little has been heard from uswsusp in recent times; there has
not been a release since last November. Uptake by distributors has been
slow. But that didn't stop uswsusp hacker Pavel Machek from jumping in saying "Well, current uswsusp
code can do most of stuff suspend2 can do, with 20% (or so) of kernel
code."
Those who followed the discussion one year ago when uswsusp was merged may
remember that it triggered a debate on which functions can sensibly be
moved out of the kernel to user space. Many developers thought that
suspend-to-disk functionality was, perhaps, on the wrong side of that
line. After this debate, the number of proposals for moving functionality
out of the kernel fell significantly. People are still sensitive to the
issue, though, as can be seen in this response
from Linus:
This whole notion that "kernel lines of code" is somehow different
is a stupid and idiotic _disease_ that is spread by microkernel
people and people who have been brainwashed by them.
In a later, calmer moment he added:
This is why I don't believe in the whole kernel-line-counting
thing. I'm personally 100% convinced that it's better to have ten
times as many lines in the kernel, if it means that you can just
forget about version skew and bad user-space interfaces etc.
This discussion should help to keep a lid on future "move kernel code to
user space" projects. While there are certainly times when such moves make
sense, there are also situations where putting functionality in user space
just makes things harder. That said, one should not expect the
recently-posted Kcli patch,
intended to help move entire applications into the kernel, to get into the
mainline anytime soon.
Meanwhile, what about suspend2? It is possible that the renewed discussion
might provide some impetus for the merging of this longstanding
development. Certainly suspend2 has a significant user community which
would appreciate inclusion in the mainline. The amount of discussion has
been relatively low, though. It may well be that enough systems now have
working suspend-to-RAM support that the level of interest in
suspend-to-disk is rather lower than it once was.
Comments (26 posted)
Patches and updates
Kernel trees
Core kernel code
Development tools
Device drivers
Filesystems and block I/O
Memory management
Networking
Architecture-specific
Security-related
Virtualization and containers
Miscellaneous
Page editor: Jonathan Corbet
Distributions
News and Editorials
The Fedora Project wiki has
some release highlights
for the upcoming Fedora 7 release. Here's a quick look.
Fedora 7 will have Spins with different combinations of software to meet
the requirements of end users. Each spin contains a very small
boot.iso image for network installation. Users will be able to
add GNOME and KDE to create live CDs that will also work as a single disk
install. Other users looking for an upgrade path may spin a regular image
for desktops, workstations and servers. A third possibility is to create a
set of DVD images that include all the software in the Fedora repository.
For the desktop user Fedora 7 will have GNOME 2.18 and KDE 3.5.6. Fast
User Switching has been integrated, display devices can be hot plugged and
work automatically, thanks to the inclusion of Xorg Server 1.3, and
NetworkManager presents a graphical interface that allows users to quickly
switch between wireless and wired networks for increased mobility. Also
Fedora 7 has a new "Flying High" theme, Firefox 2, improved I18N support,
and the SELinux troubleshooting tool 'setroubleshoot' is enabled by
default. The kernel has a new FireWire stack for more robust device
handling and it implements dynamic ticks for improved power management.
The experimental nouveau driver has been integrated within Xorg and the
kernel for those with nVidia cards. The mac80211 (formerly Devicescape) wireless stack is also part of the Fedora kernel.
Smolt is an
opt-in hardware profiler used to get anonymous, automated hardware
information from users. It has been integrated with firstboot in the
installer and all data is available on the Smolt homepage. The profile
information will be used to encourage cooperation from vendors in improving
end user hardware experience, and to prioritize development and quality
assurance on commonly used hardware.
The Fedora Directory
Server base is now part of the Fedora software repository. Also all of
the Python software available in the repository uses Python 2.5.
All in all, Fedora 7 is shaping up to be great release.
Comments (8 posted)
New Releases
Foresight Desktop Linux v1.2.1 has
been released. This version provides some package updates, "
...but
mostly we have replaced firstboot with a more robust mechanism for
configuring Xorg and creating the first user."
Full Story (comments: none)
OpenPKG GmbH has released the OpenPKG Enterprise 1 Pro, an online variant
of the resellable product OpenPKG Enterprise 1. "
OpenPKG Enterprise
1 Pro is tailored for SMEs and professionals, replaces OpenPKG Community
2-STABLE and this way fills the gap between OpenPKG Community CURRENT and
OpenPKG Enterprise 1." OpenPKG is
revising its offerings to better balance the
needs of enterprises, professionals and developers.
Full Story (comments: none)
Ubuntu 7.04 "Feisty Fawn" has been announced.
"
The Ubuntu team is proud to announce version 7.04 of the Ubuntu family of distributions.
Ubuntu is a Linux distribution for your desktop or server, with a fast
and easy install, regular releases, a tight selection of excellent
software installed by default, an incredible variety of add-on
software available with a few clicks, and professional technical
support from Canonical Limited and hundreds of other companies around
the world."
Full Story (comments: 16)
Distribution News
The Debian project has been accepted by Google as a mentor organization for
this year's Summer of Code program, with nine tasks in total.
"
Google will fund the students mentioned below to work full time on
these tasks during their summer vacation, from May 28th to August
20th. They will be guided and evaluated during this time by active Debian
developers."
Full Story (comments: none)
The openSUSE developers have sent out a brief note to the effect that
Novell's ZENworks management suite will no longer be a part of the openSUSE
distribution. Instead, openSUSE will be using YaST, zypper, and libzypp for its
package management. Initial responses on the list (follow the thread
here)
suggest that this is a popular idea in the openSUSE community.
Full Story (comments: 31)
The openSUSE project has a new mailing list, openSUSE Artwork. It's meant
for discussing issues related to the distribution styling and branding.
Full Story (comments: none)
Five people have been nominated to expand the Ubuntu community council, and
voting is underway. "
The Community Council is our highest governing
body of the project, and makes fundamental decisions around our community
structure, and code of conduct. They serve to mediate disputes and also
appoint the leaders of key community teams. We specifically have 5
independent candidates because we believe that it's important to have a
broad coverage of timezones and areas of expertise on the CC."
Full Story (comments: none)
The Gutsy Gibbon archives are now accessible, and will be open for normal
upload and syncs from Debian.
Full Story (comments: none)
Xandros has announced that Xandros Server 2.0 is the first product to be
certified by the Linux Foundation through use of the LSB Distribution
Testkit (LSB DTK). "
Xandros engineers worked closely with their
Linux Foundation counterparts in perfecting the new, automated testing
procedures that will facilitate broad application developer support to
Xandros Server 2.0 and all other standards-based Linux operating
systems."
Full Story (comments: none)
New Distributions
Bugnux is a live CD Linux distribution
made specifically for software testers. It is based on Mandriva and
PCLinuxOS and runs entirely in RAM. Bugnux contains an extensive set of
open source software testing tools that can be used for functional and
performance testing. It also has standalone tools to test GUI applications
and Mozilla Firefox extensions as well as a set of stress and load testing
tools that can be used to assist in testing performance of web applications.
Comments (none posted)
Polippix
is the Political Linux Distribution of Denmark. It was created to counter
the increasing amount of surveillance in Denmark, where the ISP's will soon
be required to log a lot of data. The CD has created quite a stir in
Denmark recently. Read more in this
MadPenguin review.
(Thanks to pointwood)
Comments (none posted)
XtreemOS is a 4-year European research project, which aims to develop a
grid operating system based on Linux to simplify the usage, management
and programming of grids. "
An initial version of the XtreemOS
operating system for PCs is planned to be distributed under open source
licence after the first two years of the project (Spring 2008). The
XtreemOS system will eventually be available for a wide range of hardware
platforms: PCs, clusters and mobile devices (mobile phones, PDAs,
etc.)."
Full Story (comments: none)
Distribution Newsletters
The Fedora Weekly News for April 21, 2007 looks at F7T4 and SATA/IDE
Testing, Multi-Lingual Release Announcement,
firstname.lastname@fedoraproject.org is going away, and much, much more.
Full Story (comments: none)
The
Gentoo
Weekly Newsletter for April 16, 2007 covers GWN seeking writers, April
Gentoo Council meeting, Gentoo on AppleTV, and several other topics.
Comments (none posted)
The Ubuntu Weekly Newsletter for April 21, 2007 covers the release of
Ubuntu 7.04 and related press coverage, a week long series of events to
introduce the diverse Ubuntu community, and a friendly competition where
individuals and Lo``Cos can win money and prizes.
Full Story (comments: none)
The
DistroWatch
Weekly for April 23, 2007 is out. "
The week belonged to Ubuntu,
whose new version 7.04 was made available as planned despite the skipped
release candidate a week earlier. The hype surrounding the new release of
the popular operating system completely eclipsed that of another
desktop-oriented distribution - Mandriva Linux 2007.1, which was also made
available last week, but which generated little excitement in
comparison. Also in the news: a new openSUSE-based live CD featuring the
latest KDE 4 snapshot, a link to an interview with Novell's Nat Friedman,
and an update on the development of PC-BSD. Finally, don't miss our fifth
and final part of the overview of top ten distributions, featuring Gentoo
Linux and FreeBSD."
Comments (none posted)
Newsletters and articles of interest
HowtoForge has been busy setting up servers with new releases of
CentOS 5.0,
Ubuntu 7.04
and
Debian
4.0.
Comments (none posted)
Distribution reviews
Enterprise Networking Planet
reviews
CentOS 5.0. "
CentOS is more than RHEL with the trademarks removed,
which in itself is a big job as you'll see in the Release Notes. (The
CentOS team are so paranoid about infringing on Red Hat's trademarks that
you'll find hardly any mentions of "Red Hat" in the CentOS distribution or
on the Web site. Instead, they refer to it as "UOP", or Upstream Operating
system Provider.) They maintain their own package repositories, and apply
security patches as they receive them from upstream. CentOS supports a
range of hardware architectures as this matrix shows. They're always going
to be behind RHEL; with security fixes they're right on top of things, and
with things like new releases and support for multiple architectures, they
sometimes lag a few weeks behind RHEL. It's free and it's binary-compatible
with RHEL, so no complaining allowed."
Comments (none posted)
The Channel Register
covers a
new live CD Linux distribution targeted at newbies and technophobes.
"
BabelLinux is tailored for simplicity, to give users access to the
seven most common applications. It boots from the (free) CD, and once
booted the OS can't write to the local hard drive or USB media. Instead,
users can store their data online in the "BabelBank" - which is how the
venture will get its revenue."
Comments (none posted)
Page editor: Rebecca Sobol
Development
Matthew Sackman recently
announced
the
DisTract
Distributed Bug Tracker project, which aims to decentralize bug tracking:
We're all now familiar with working with distributed software control
systems, such as Monotone, Git, Darcs, Mercurial and others, but bug
trackers still seem to be fully stuck in the centralised model:
Bugzilla and Trac both have single centralised servers. This is
clearly wrong, as if you're able to work on the Train, off the
network and still perform local commits of code then surely you should
also be able to locally close bugs too.
DisTract allows you to manage bugs in a distributed manner through
your web-browser.
The project is still in the early phases of its development,
basic features are still being added:
"Currently, there are two major features missing. The first is bug listings. The links to List Bugs at the top of each page will go nowhere. This should be implemented quite quickly. The other major feature is dealing with
merging."
DisTract is being released under the 3-clause BSD
license.
The software has been written in the Haskell language and takes
advantage of several open-source packages.
The movement of bugs across the net is handled by
Monotone, a distributed version
control system and the
Markdown
text-to-HTML conversion tool is used for working with
bug descriptions and comments.
DisTract defines bug information with its
Bug Fields.
Three field types have been defined: free form fields are for basic bug
descriptions, simple lists are for keeping track of things like bug
revision histories and graphs are for tracking the state of bugs.
Release 0.1.1 of DisTract came out after the original announcement,
it focuses on building the code:
"This version has no new features other than the fact that it actually compiles in a sane way which no longer requires endless amounts of jiggery-pokery. This has been achieved by improving the hinstaller module which DisTract depends on. Thus for all of you who downloaded the source tarball of version 0.1 and were then deeply alarmed by the compilation instructions, fear not.
The
Compilation page is now, correspondingly, simpler!"
DisTract is available for download
here.
Comments (5 posted)
System Applications
Database Software
Sam Tregar
shows how to build a data warehouse with MySQL.
"
Most of us are at least somewhat familiar with the kind of relational
database schemas that are created for e-commerce sites, among others. But
there's another kind of database model out there: the data warehouse. Sam
Tregar gives us the lowdown on this highly UNrelational database."
Comments (none posted)
A whole pile of PostgreSQL releases has come out with a fix for a privilege
escalation bug. "
The frequency of security fixes recently is a result of increased
scrutiny of the PostgreSQL code by government agencies and
security-conscious companies."
Full Story (comments: 37)
The April 22, 2007 edition of the PostgreSQL Weekly News
is online with the latest PostgreSQL DBMS articles and resources.
Full Story (comments: none)
Version 3.3.16 of
SQLite, a light weight DBMS, is out.
Changes include:
"
Performance improvements added in 3.3.14 but mistakenly turned off in 3.3.15 have been reinstated. A bug has been fixed that prevented VACUUM from running if a NULL value was in a UNIQUE column."
Comments (none posted)
Interoperability
Version 3.0.25rc3 of Samba is available for testing.
"
This is the third release candidate of the Samba 3.0.25 code base
and is provided for testing only. An RC release means that we are
close to the final release but the code may still have a few
remaining minor bugs. This release is *not* intended for production
servers. There has been a substantial amount of development since
the 3.0.23/3.0.24 series of stable releases. We would like to ask the
Samba community for help in testing these changes as we work towards
the next significant production upgrade Samba 3.0 release."
Full Story (comments: none)
Mail Software
Stable version 1.0 of Hermes Antispam Proxy
has been announced.
"
Hermes is a generic, transparent, multi-platform anti-spam SMTP proxy that uses a combination of techniques (like greylisting, throttling, etc.) to stop spam from reaching your mailbox. It's compatible with most SMTP extensions like STARTTLS (for SSL security) and SMTP-AUTH (for user authentication)."
Comments (none posted)
Networking Tools
Version 2.9.21 of the PowerDNS authoritative name server is out.
"
This is the first release the PowerDNS Authoritative Server
since the Recursor was split off to a separate product, and also marks
the transfer of the new technology developed specifically for the
recursor, back to the authoritative server.
This move has reduced the amount of code of the Authoritative server by
over 2000 lines, while improving the quality of the program enormously."
Full Story (comments: none)
Web Site Development
Version 1.8.3 of the Midgard web development platform is out.
"
Midgard 1.8.3 release includes major bugfixes and replication
framework enchancements. "
Full Story (comments: none)
Version 3.3.2 of
mnoGoSearch,
a cross-platform web site search engine, is out.
See the
change log for a list of new features and bug fixes.
Comments (none posted)
Desktop Applications
Audio Applications
KDE.News has
announced
the latest issue of the
Amarok Weekly Newsletter.
"
A new issue of the Amarok newsletter is out. It talks about interesting new developments, Amarok's Summer of Code projects, the current events in the 1.4 stable branch, and continues to provide cool Amarok-related tips."
Comments (none posted)
Version 3 of jack_mixer is out with some new capabilities and a number
of bug fixes relating to NaNs.
Full Story (comments: none)
Version 1 of jack_nuke has been announced.
"
jack_nuke is a client for the Jack Audio Connection Kit used to
generate "unwanted" data on jack ports (both midi and audio) to test
the robustness of other jack client applications. For those who've
heard of Jack demolition, jack_nuke proposes similar functionalities
as far as audio is concerned (jack_nuke is based on its code)."
Full Story (comments: none)
The initial release of ofqf has been announced.
"
ofqf is a native OSC implementation in Qt4. Native means that ofqf doesn't
depend on other external libs (except for QtCore and QtNetwork) and ofqf
isn't just a wrapper around liblo or something."
Full Story (comments: none)
Desktop Environments
The following new GNOME software has been announced this week:
You can find more new GNOME software releases at
gnomefiles.org.
Comments (none posted)
KDE.News
notes the arrival of
the Python-based application Guidance to the KDE SVN repository.
"
The first non-C++ application in KDE's SVN has been moved from the playground module to Extragear. Guidance is a number of system configuration modules and a laptop power manager. The recent 0.8 release added a kcontrol module for setting up Wine and improvements to the power manager. One of the aims of KDE 4 is to increase the use of KDE bindings, such as Ruby's Korundum and PyKDE, which will make coding KDE easier for those who do not want to worry about pointers and compilers."
Comments (none posted)
The April 22, 2007 edition of the
KDE Commit-Digest has been
announced.
The content summary says:
"
A week-long Phonon/Solid developer sprint redefines and strengthens their API's. The start of a command-line client for Strigi. Continued improvements in the Konsole refactoring work. More work on visual effects in the KWin window manager composite support branch. Experiments to utilise Solid for connection management in Mailody. Initial support for the Jamendo music service in Amarok. A KDE frontend for Marble is begun, to complement the Qt-based original interface..."
Comments (none posted)
KDE.News
looks at Solid, the
hardware API for KDE 4. "
One of the many new technologies for KDE 4
is the often mentioned, but seldom explained Solid Hardware API. Hardware
has always been a bit of an annoying element of using Linux and other Unix
[like] operating systems, but Solid hopes to fix that for KDE 4. In many
ways, Solid is like Phonon, in that it's a Qt/KDE style API around already
existing components at the lower level, such as freedesktop.org's HAL. It
is already quite functional in the backend, and it's already affecting
visible KDE components."
Comments (none posted)
The following new KDE software has been announced this week:
You can find more new KDE software releases at
kde-apps.org.
Comments (none posted)
The following new Xorg software has been announced this week:
More information can be found on the
X.Org Foundation wiki.
Comments (none posted)
Desktop Publishing
Stable version 0.2 of
Dockboard has been announced.
"
Dockboard is an outline editor created for authors writing books, articles, and other published works. It provides the ability to organize small to large documents."
Comments (none posted)
Version 1.5.0 (beta 2) of LyX, a GUI front-end to the TeX typesetting
system, is out.
"
Compared with the previous beta release we have fixed several bugs
and added some graphical improvements:
A new math toolbar replaces the old (faithful) math panel.
The converter file cache can be now configured in the graphical interface.
The TOC dialog is now a dock widget, embedded in the main window."
Full Story (comments: none)
Electronics
The
gEDA
electronic design and analysis project had a recent code sprint.
"
The 5th worldwide gEDA code sprint was held last Saturday (2007/[04]/10). This sprint was particularly successful (with at least ~20 different people hanging out in irc).
The
irc log from this code sprint has been posted."
Comments (none posted)
Games
The Alpha 0.8.23 release of
Globulation 2
has been announced.
"
Globulation 2 is an innovative Real-Time Strategy (RTS) game which reduces micro-management by automatically assigning tasks to units."
See the
Changes
document for information on this release.
Comments (none posted)
Mail Clients
Version 2.9.1 of
Claws Mail,
an email client, has been announced.
"
This release fixes a security bug (CVE-2007-1558) which affects APOP
users. If you're using APOP for POP3 authentication you are strongly
advised to upgrade."
Comments (none posted)
MozillaZine has
an announcement for the Thunderbird 2 email client.
"
Scott MacGregor of Team Thunderbird writes in with news of the release of Mozilla Thunderbird 2: "Thunderbird 2 is now available for download on Windows, Mac and Linux in over 35 languages. Thunderbird 2 offers easy ways to manage and organize your email with message tags, advanced folder views, message history navigation, find as you type, and improved new mail alert notifications."
See the
Thunderbird 2 Features page for more information on this release.
Comments (none posted)
Music Applications
Release 20070418 of the WhySynth DSSI softsynth has been announced,
it features new oscillator modes, GUI enhancements, improved envelope
generators and more.
Full Story (comments: none)
Office Suites
A collaboration between Pentaho and OpenOffice.org has been announced.
"
The OpenOffice.org community is pleased to announce plans to extend
the power of the database application, Base, with Report Designer,
based on Pentaho's open-source reporting engine. Scheduled to be
available in the next feature release of OpenOffice.org, Report
Designer will particularly interest business users, as it will give
them the ability to create sophisticated business intelligence
reports from various sources, including OLAP and XML, and save them
using the OASIS OpenDocument format, or ODF, the ISO-approved open
standard for file format, among others."
Full Story (comments: none)
Web Browsers
MozillaZine
reports that support for Firefox 1.5 - which was supposed to end on April 24 - has been extended to mid-May. "
This suggests that the Mozilla Corporation wants to extend support for Firefox 1.5 until after Firefox 2 has been pushed out to 1.5 users via the software update feature built in to the browser. To date, the update functionality in 1.5 has only offered 1.5.0.x patches to users, despite the Mozilla Corporation's stated intention to allow 1.5.0.x to 2.0.0.x upgrades."
Comments (none posted)
Languages and Tools
C
The April 24, 2007 edition of the GCC 4.2.0 Status Report is online
with the latest Gnu Compiler Collection news.
"
... I'm not going to consider any of these issues blockers after Sunday,
April 29. At that point, I plan to freeze the branch and build a
release candidate. Then, about a week later, I plan to release 4.2.0.
There has been more than enough time for people to test and fix bugs."
Full Story (comments: none)
Ian Lance Taylor reports on the recent GCC mini-summit.
"
We held a GCC mini-summit at Google on Wednesday, April 18. About 40
people came. This is my very brief summary of what we talked about.
Corrections and additions very welcome.
The goal of the mini-summit was just to let gcc developers meet face
to face and talk. There was no goal of actually making any decisions,
and, indeed, no decisions were made."
Full Story (comments: 2)
C++
Doug Gregor has announced a new C++0x development branch for GCC,
the Gnu Compiler Collection.
C++0x is the next revision of the C++ standard.
"
I have just created a new branch for development of C++0x-specific
features in the GNU C++ front end. The branch is branches/cxx0x-branch
in Subversion, and information about this branch is available at
http://gcc.gnu.org/projects/cxx0x.html."
Full Story (comments: 2)
Caml
The April 24, 2007 edition of the Caml Weekly News
is out with new Caml language articles.
Full Story (comments: none)
Java
Release 0.95 of GNU Classpath, the essential libraries for Java, is out.
Changes include:
"
Full merge of 1.5 generics work. Bootstrappable with OpenJDK javac
compiler. URLConnection timeout support. TimeZone can use platform
zoneinfo file when available. The Collection classes, lang.management
and util.spi have been updated to 1.6. Addition of 1.6 ServiceLoader.
Speedup for cairo and freetype Graphics2D support. The ASM library
is now included. Better detection of browser plugin mechanisms for
gcjwebplugin applet support in mozilla, iceweasel and firefox."
Full Story (comments: none)
Thakur Thribhuvan
works with JMS topics and queues on O'Reilly.
"
Most JMS destinations are created administratively and treated as static resources, but you can dynamically create your own topics and queues at runtime. In this article, Thribhuvan Thakur shows us how to create temporary JMS topics and queues, and discusses architectural reasons why we might want to do so."
Comments (none posted)
Perl
The April 22, 2007 edition of the
Weekly Perl 6 mailing list summary is out with coverage of the latest
Perl 6 developments.
Comments (none posted)
PostScript
Version 8.56 of GPL Ghostscript
has been announced.
"
Artifex Software, Inc. and artofcode LLC are pleased to announce the release of GPL Ghostscript 8.65. This is the latest in our stable 8.5x series, and the first new release since we began developing under the GPL.
In addition to numerous bug fixes, conformance with published test suites is much improved in this release."
Comments (none posted)
Python
Version 2.5.1 of Python has been released.
"
This is the first bugfix release of Python 2.5. Python 2.5
is now in bugfix-only mode; no new features are being added.
According to the release notes, over 150 bugs and patches
have been addressed since Python 2.5, including a fair
number in the new AST compiler (an internal implementation
detail of the Python interpreter).
This is a production release of Python, and should be a
painless upgrade from 2.5."
Full Story (comments: none)
The April 18, 2007 edition of the Python-URL! is online with
a new collection of Python article links.
Full Story (comments: none)
The April 23, 2007 edition of the Python-URL! is online with
a new collection of Python article links.
Full Story (comments: none)
Tcl/Tk
The April 18, 2007 edition of the Tcl-URL! is online with new
Tcl/Tk articles and resources.
Full Story (comments: none)
XML
Michael Day
ponders beautiful XML design on O'Reilly.
"
Given that beauty is in the eye of the beholder, I had better define some criteria. To me, technology is beautiful when it achieves a balance between power and simplicity -- hitting a local maxima in the design space, if you will, such that it cannot be made any simpler without making it less powerful, and it cannot be made any more powerful without losing its simplicity."
Comments (none posted)
Miscellaneous
Version 5.6.4 of
BIEW
has been announced.
"
BIEW (Binary vIEW) is a free, portable, advanced file viewer with built-in editor for binary, hexadecimal and disassembler modes."
Comments (none posted)
Page editor: Forrest Cook
Linux in the news
Recommended Reading
Glyn Moody
examines
some FUD. "
As I've noted before, I am something of a connoisseur of
Microsoft's FUD against open source, in part because I believe each
successive FUD-flavour of the month gives important hints about the
evolution of the thinking and strategy within the company. The latest
development in this area, which revolves around patents, is no exception --
not least because I think people are drawing the wrong conclusions from
it."
Comments (6 posted)
ars technica
covers this week's bad software patent - one which could well come to bite the free software community as well. "
The patent in question was originally filed by Xerox back in 1991. It referenced that company's earlier patents, dating back to 1984, that dealt with graphical user interfaces. This specific patent describes a 'workplace' that consists of multiple windows and 'other display objects' on the screen, and describes each window as potentially containing a 'linking data structure.' If a user clicks on one of the links in each window, it can cause the contents of said window to change, reflecting a different 'workplace.'"
Comments (7 posted)
Trade Shows and Conferences
Linux.com
looks forward
to eLiberatica. "
eLiberatica, the first national Romanian
conference on free and open source software (FOSS), is scheduled for May
18-19 in the city of Braşov. The conference is the result of 18 months
of planning by Lucian Savlac, a Romanian immigrant to Canada, assisted by
FOSS licensing consultant Zak Greant. The goal is nothing less than
unifying FOSS promotion throughout Romania and encouraging its adoption by
business through grassroots organization. The goal, says Greant, "is to
help build a broad, sustainable, effective free and open source movement in
Romania that includes programmers, university students, and business
people.""
Comments (none posted)
According to
This
Channels India article, the Open Invention Network has started a road
show in India. "
'Many Indian software development companies and
customers have found it challenging to understand and adhere to
intellectual property IP and patent rules and regulations,' said Jerry
Rosenthal, chief executive officer of Open Invention Network. 'Because
Linux is based on openness and sharing of the software code base, it is
ideally suited for Indian software developers, vendors, resellers and
customers that want access to powerful IT technology without worrying about
IP and patent issues.'"
Comments (none posted)
InternetNews.com
covers
the recent Linux on Wall St. conference. "
Tim Burke, director of
emerging technologies at Red Hat, took the stage at the Linux on Wall
St. conference and provided the suit-and-tie audience with a real business
case for Real Time Linux, the next evolution of Linux."
Comments (9 posted)
Companies
Linux.com
looks at an
IBM announcement. "
Today, IBM announced a public beta trial of a
virtual Linux environment that will let x86 applications run on its System
p Unix servers without modification. The new IBM System p Application
Virtual Environment (AVE) technology will allow x86 binaries to run as well
without modification, removing the biggest barrier against effective
virtualization for some companies. As a result, customers will be able to
consolidate dozens, if not hundreds, of servers into one virtual
environment."
Comments (3 posted)
News.com
covers Red Hat's promotion of open-source science.
"
Red Hat is taking a second crack at trying to spread its open-source philosophy beyond the realm of software development.
On Wednesday, the Raleigh, N.C.-based Linux seller announced a partnership with the nearby University of North Carolina to try to encourage use of the open, collaborative model in the fields of health care research, biotechnology, bioinformatics and public policy.
"The history of open source has taught us that the more broadly and transparently information is shared and re-used, the faster and stronger the results," Joanne Rohde, Red Hat's executive vice president of operations, said in a statement."
Comments (15 posted)
ZDNet
reports
that Red Hat has acquired MetaMatrix. "
Red Hat has reached an
agreement to acquire privately held data management firm MetaMatrix, the
companies announced Tuesday. Red Hat executives said MetaMatrix's software
will be bundled in with its JBoss middleware as part of a services-oriented
architecture package."
Comments (none posted)
Linux Adoption
DesktopLinux.com
reports
that Michael Dell is using Ubuntu Linux on his laptop.
"
What operating system do the heads of Fortune 500 companies run on their personal laptops? In the case of Michael S. Dell, president and CEO of Dell, it's Ubuntu 7.04 Feisty Fawn.
Yes, the head of Dell Inc., with a market-capitalization of just south of $56-billion, isn't just saying that Dell will be selling Linux-equipped PCs in the near future -- he's already running Linux at home."
Comments (29 posted)
Interviews
KDE.News
has announced
the latest
interview
in the People Behind KDE series.
"
For the next interview in the fortnightly People Behind KDE series we travel over to Germany to talk to the key to your personal information storage, a highly dedicated KDE-PIM developer (though hide any small animals when visiting his apartment!) - tonight's star of People Behind KDE is Volker Krause."
Comments (none posted)
Linux.com
talks briefly with Bob Metcalfe. "
It's the sustainability long-term of the open source model that I worry about. Who will take care of the software after the novelty wears off and the volunteers lose interest and get real jobs?" Mr. Metcalfe appears not to have noticed that an awful lot of those "volunteers"
already have real jobs.
Comments (23 posted)
Resources
Gregory Brown
introduces Rails' ActiveRecord on O'Reilly.
"
ActiveRecord is one of the key elements that makes up Ruby on Rails. It is
the crucial link between Rails and the underlying databases that fuel it.
Gregory Brown, lead developer of Ruby Reports, begins a two-part exploration
of what makes ActiveRecord tick."
Comments (none posted)
Reviews
Linux.com
looks at
Recoll. "
Desktop search engines are all the rage these days. While
Beagle may be the most popular desktop search engine for Linux, there are
alternatives. If you are looking for a lightweight and easy-to-use yet
powerful desktop search engine, you might want to try Recoll. Unlike
Beagle, Recoll doesn't require Mono, it's fast, and it's highly
configurable. Recoll is based on Xapian, a mature open source search engine
library that supports advanced features such as phrase and proximity
search, relevance feedback, document categorization, boolean queries, and
wildcard search."
Comments (20 posted)
Joe 'Zonker' Brockmeier
reviews
ThinkingRock on News.com.
"
ThinkingRock is not released under a free software license, but it is freely distributable, and the creators have indicated that it may be relicensed when the 2.0 version is released.
ThinkingRock is not your everyday task manager. If you're not into the Getting Things Done method of task management, ThinkingRock will feel more than a little awkward."
Comments (none posted)
LinuxDevices.com
takes a look
at ViziFrame. "
A company specializing in weather reporting has used
Linux to build an inexpensive digital sign capable of delivering custom
weather channels to truckstops, private airports, marinas, and golf
courses. ItWorks's ViziFrame runs Slackware Linux on an x86 processor, and
supports TVs or computer displays."
Comments (none posted)
Miscellaneous
GnomeDesktop.org
looks at
the recently announced GNOME Mobile & Embedded Initiative (GMAE).
"
The GNOME Mobile & Embedded Initiative will advance the use, development and
commercialization of GNOME components as a mobile and embedded user
experience platform. It brings together industry leaders, expert
consultants, key developers and the community and industry organizations
they represent."
Comments (none posted)
Page editor: Forrest Cook
Announcements
Non-Commercial announcements
FFII has sent out a release on the passage of the intellectual property
rights enforcement directive in the European Parliament. This directive
turns a number of "intellectual property" infringements into criminal
offenses, threatening ISPs and free software developers, among others. "
The directive now goes to the Council for its first reading. Several
Council members, such as the Dutch and UK governments, have already
expressed serious concerns about the scope and nature of this directive."
Full Story (comments: none)
The Electronic Frontier Foundation has sent out a media release regarding
proposed new European copyright crimes.
"
The Electronic Frontier Foundation's (EFF's)
European Office today announced a broad coalition aimed at
fixing a poorly drafted intellectual property enforcement
proposal that could make criminals of thousands of people
in the European Union.
The Second Intellectual Property Rights Enforcement
Directive (IPRED2) -- set for vote in the European
Parliament early next week -- makes "aiding, abetting, or
inciting" intellectual property infringement on a
"commercial scale" a criminal offence. However, IPRED2
defines criminal offences so vaguely that creators of
legitimate websites, Internet service providers, and even
librarians could be investigated by the police and face
criminal records as well as fines of hundreds of thousands
of euros."
Full Story (comments: none)
The Free Software Foundation Europe has sent out a press release regarding
proposed changes to the European patent and copyright law.
"
FSFE criticises the proposed "second Intellectual Property Enforcement
Directive" (IPRED2) for sweeping criminalisation across various areas of law
and loosely described areas of activity, including for 'attempting, aiding or
abetting and inciting.' The proposed text criminalises these acts for
infringement of many dissimilar laws including copyright, trademark, and
patents. "This threatens" according to a press release of FSFE "to introduce
intimidating degrees of punishment to activities which individuals,
community-based projects, and other small to medium-sized groups participate
in - groups that may not have sufficient money or lawyers to defend their
rights in court.""
Full Story (comments: none)
The Electronic Frontier Foundation is challenging a patent by
NeoMedia Technologies, Inc.
"
The Electronic Frontier Foundation (EFF)
took aim today at a bogus patent threatening innovative
technologies that enhance consumer awareness, requesting a
reexamination by the United States Patent and Trademark
Office (PTO).
NeoMedia Technologies, Inc., claims to own rights to all
systems that provide information over computer networks
using database-like lookup procedures that rely on scanned
inputs, such as a barcode. NeoMedia has used these claims
not only to threaten and sue innovators in the mobile
information space, but also to intimidate projects focused
on increasing awareness among consumers about the social
and environmental impact of the products they buy."
Full Story (comments: none)
Eben Moglen has posted
a weblog entry on what he will be doing once the GPLv3 process stops dominating his life. "
As I return to teaching at Columbia I need to concentrate more of my remaining spare time and effort on the affairs of the Software Freedom Law Center, which is inevitably going to mean less involvement with the affairs of other organizations I care very much about.
In particular, its time for me to leave the board of directors of the Free Software Foundation, where Ive been since 2000."
Comments (4 posted)
The Open Solutions Alliance has
announced its six newest members.
"
The Open Solutions Alliance
(OSA), a nonprofit, vendor-neutral consortium dedicated to driving
interoperability and adoption of comprehensive open solutions, today
announced that six new organizations have joined the Alliance. The new
members include Black Duck, The Mambo Foundation, Onepoint, The Open Source
Technology Alliance (TOSTA), Palamida and Project.net. The OSA today has 18
members."
Comments (none posted)
Commercial announcements
CollabNet and VA Software have
announced a deal
wherein CollabNet will be buying the SourceForge Enterprise Edition code
and business from VA. The
SourceForge
site will apparently remain with VA. "
With the addition of
SourceForge Enterprise Edition business to CollabNet's product portfolio
and team, we have become the standard for this new method of performing
decentralized development. Unlike conventional software development
systems, CollabNet's solutions are designed to promote and optimize the
benefits of collaboration and distributed software development, based on
open source principles" No mention of open-sourcing the
newly-acquired code, however. (Thanks to Rick Moen, who has posted
some
history of the SourceForge code).
Comments (none posted)
Concurrent has announced version 4.1 of its NightStar
integrated software tool set.
"
The revamped tool set features a
complete graphical user interface makeover making it more flexible and
easy to customize. NightStar 4.1 is one of the most advanced, yet
easy-to-use debugging environments for troubleshooting and tuning
complex Linux software applications."
Full Story (comments: none)
Microsoft and Samsung have
announced
a patent deal. "
In these
product lines, Samsung and its distributors and customers may utilize
Microsoft's patents in Samsung's products with proprietary software, and
Samsung will also obtain coverage from Microsoft for its customers' use of
certain Linux-based products."
Comments (10 posted)
Sun Microsystems, Inc. has
announced the availability of the Java technology stack and developer tools for Ubuntu 7.04.
"
This stack, which is comprised of key
popular Java technologies such as GlassFish(TM) v1 (the open source Java
Platform, Enterprise Edition 5 implementation), Java Platform, Standard
Edition (JDK 6), Java DB 10.2 (built from Apache Derby) and NetBeans(TM)
IDE 5.5 -- will be available in the Multiverse component of the Ubuntu
repository on April 19."
Comments (none posted)
Zenoss, Inc. has
announced the launch of the Zenoss Global Partner Program.
"
The new program brings expanded services and technology
capabilities to Zenoss users worldwide and creates new business
opportunities for systems integrators, hosters, managed service providers,
ISVs and OEMs.
The Zenoss Global Partner program provides a business and technology
framework for partnering with Zenoss, Inc. to deliver professional
services, managed services and technology solutions related to Zenoss Core,
the highest ranking open source IT monitoring solution on Sourceforge.net."
Comments (none posted)
New Books
O'Reilly has published the book
Linux System Administration
by Tom Adelstein and Bill Lubanovic.
Full Story (comments: none)
Addison-Wesley Professional has published the book
SQL for MySQL Developers: A Comprehensive Tutorial and Reference
by Rick F. van der Lans.
Full Story (comments: none)
O'Reilly has published the book
Understanding MySQL Internals
by Sasha Pachev.
Full Story (comments: none)
O'Reilly has published the book
XQuery by Priscilla Walmsley.
Full Story (comments: none)
Contests and Awards
Novell, Inc. has
announced the winning of CODiE awards by
SUSE Linux Enterprise Desktop and ZENworks Asset Management.
"
Novell's Linux* and
enterprise management services took home top honors for Best Open Source
Solution and Best Asset Management Solution at the 2007 CODiE awards, the
annual program led by the Software Industry and Information Association
(SIIA) to recognize innovation in the software industry. SUSE(R) Linux
Enterprise Desktop from Novell(R) won in the open source category, while
Novell ZENworks(R) 7.5 Asset Management beat out the competition in the
asset management category."
Comments (none posted)
Education and Certification
The Linux Professional Institute has announced its latest Linux
certification affiliates.
"
The Linux
Professional Institute, the world's premier Linux certification
organization, announced new affiliates throughout
Europe and Africa including LPI-Spain, LPI-France, LPI-Maghreb,
LPI-Malta/Cyprus and a new partner in South Africa."
Full Story (comments: none)
The Linux Professional Institute will hold discounted Linux certification
exams at the IT 360 conference in Toronto, Canada on May 1 and 2, 2007.
Full Story (comments: none)
Event Reports
The
web site for the recent 2007 Linux Audio Conference (LAC)
has been updated.
"
It took us a while, but finally (and hopefully) the last updates
have been made to the LAC website."
Full Story (comments: none)
Calls for Presentations
A call for papers has gone out for Hack.lu 2007. The event will take place
in Luxembourg on October 18-20, 2007, submissions are due by June 1.
Full Story (comments: none)
Upcoming Events
KDE.news
has announced the
Edu and School Day, which will take place in Glasgow, Scotland
during the Akademy conference.
"
You are invited to aKademy Edu & School Day on Tuesday 3rd July. This day will focus on installing and running free educational software in schools, presenting software as well as getting feedback from teachers and community people."
Comments (none posted)
DAM-4 (desktop_architects mailing list) has been announced, the event
will take place on June 13-15, 2007 (new dates) in Mountain View, CA.
"
DAM-4 is being held in conjunction with the Linux Foundation
Collaboration Summit. The Linux Foundation Desktop Linux workgroup is
planning and sponsoring this event for the desktop architects. Once
again, the intent of this meeting is to bring desktop organizations
together to address common problems and to create some working synergy
across organizations."
Full Story (comments: none)
The preliminary schedule for the GUADEC Core Days
has been announced.
Full Story (comments: none)
The Linux Users' Group of Davis will hold the next Linux Installfest on
Saturday, April 28, 2007 in Davis, CA.
Full Story (comments: none)
O'Reilly has announced the program schedule and registration opening for
the 2007 Open Source Convention.
"
This year's program will examine how open
technologies are making breakthroughs in the mainstream IT community, and
delve into the advances on the open source horizon. Now in its ninth year,
OSCON is the annual gathering of developers, hackers, visionaries, and
alpha geeks who are driving the open source movement. OSCON returns to the
Oregon Convention Center in Portland, Oregon July 23-27, 2007."
Full Story (comments: none)
SugarCRM has
announced the SugarCRM Global Developer Conference.
"
SugarCRM, the world's
leading provider of commercial open source customer relationship management
(CRM) software, today announced that it will host the first ever SugarCRM
Global Developer Conference, May 3-5, 2007, at the Sainte Claire Hotel in
San Jose, California. HP, Intel, Microsoft, MySQL, Novell, Pervasive,
Oracle and Sun are among the industry leaders sponsoring the conference,
which is designed for developers, administrators, users, and managers of
CRM projects."
Comments (none posted)
Events: May 3, 2007 to July 2, 2007
The following event listing is taken from the
LWN.net Calendar.
| Date(s) | Event | Location |
May 3 May 4 |
Ubuntu Education Summit |
Sevilla, Spain |
May 3 May 5 |
SugarCRM Global Developer Conference |
San Jose, CA, USA |
May 4 May 6 |
Libre Graphics Meeting 2007 |
Montreal, Quebec, Canada |
May 5 May 6 |
LayerOne Security Conference |
Pasadena, CA, USA |
| May 5 |
Ubucon - Sevilla |
Sevilla, Spain |
May 6 May 11 |
Ubuntu Developer Summit |
Sevilla, Spain |
| May 7 |
CommunityOne |
San Francisco, CA, USA |
May 8 May 9 |
World Summit on Intrusion Prevention |
Baltimore, MD, USA |
May 8 May 11 |
Annual Java Technology Conference |
San Francisco, CA, USA |
May 8 May 11 |
OSHCA 2007 |
Kuala Lumpur, Malaysia |
May 9 May 11 |
Red Hat Summit |
San Diego, CA, USA |
May 10 May 11 |
IEEE International Workshop on Open Source Test Technology Tools |
Berkeley, CA, USA |
| May 10 |
NLUUG Spring Conference 2007 |
Ede, The Netherlands |
May 11 May 13 |
Conferenze Italiana sul Software Libero |
Cosenza, Italy |
May 12 May 13 |
KOffice ODF Weekend |
Berlin, Germany |
May 14 May 25 |
The Pure Data Spring School 2007 |
Glasgow, Scotland |
May 16 May 18 |
php|tek |
Chicago, IL, USA |
May 17 May 20 |
RailsConf 2007 |
Portland, Oregon |
May 18 May 19 |
eLiberatica Open Source and Free Software Conference |
Brasov, Romania |
May 18 May 19 |
FreedomHEC |
Los Angeles, CA |
May 18 May 19 |
BSDCan 2007 |
Ottawa, Canada |
May 19 May 20 |
The 3rd International Workshop on Software Engineering for Secure Systems |
Minneapolis, Minnesota, USA |
May 19 May 20 |
Rockbox International Developers Conference 2007 |
Stockholm, Sweden |
| May 19 |
Grazer LinuxDays 2007 |
Graz, Austria |
May 19 May 20 |
Make Magazine Maker Faire 2007 |
San Mateo, CA, USA |
| May 19 |
Linuxwochen Austria - Graz |
Graz, Austria |
May 21 May 23 |
International PHP 2007 Conference |
Stuttgart, Germany |
May 21 May 25 |
Python Bootcamp with David Beazley |
Atlanta, USA |
May 22 May 23 |
Open Source Business Conference |
San Francisco, USA |
May 22 May 24 |
Linux Days 2007, Geneva |
Geneva, Switzerland |
May 23 May 24 |
PGCon 2007 |
Ottawa, ON, Canada |
| May 25 |
Linuxwochen Austria - Krems |
Krems, Austria |
| May 26 |
PAKCON III |
Karachi, Pakistan |
May 29 May 30 |
Where 2.0 Conference |
San Jose, CA, USA |
May 29 May 31 |
European ADempiere Developers Conference |
Berlin, Germany |
May 29 May 30 |
I FLOSS CONFERENCE RESISTENCIA |
Resistencia, Argentina |
May 30 June 2 |
Linuxtag |
Berlin, Germany |
May 30 June 1 |
3rd UNIX Days Conference - Gdansk 2007 |
Gdansk, Poland |
May 30 June 1 |
Linuxwochen Austria - Wien |
Wien, Austria |
June 2 June 3 |
Journées Python Francophones |
Paris, France |
June 9 June 10 |
PyCon Uno - First Python Italian conference |
Florence, Italy |
June 10 June 15 |
DebCamp |
Edinburgh, Scotland |
| June 10 |
Pluto Meeting 2007 |
Padova, Italy |
June 11 June 14 |
Third International Conference on Open Source Systems |
Limerick, Ireland |
June 13 June 15 |
Linux Foundation Collaboration Summit |
Mountain View, CA, USA |
| June 16 |
DebianDay |
Edinburgh, Scotland |
| June 16 |
Firefox Developer Conference |
Tokyo, Japan |
June 17 June 23 |
Debian Developer Conference |
Edinburgh, Scotland |
June 17 June 22 |
2007 USENIX Annual Technical Conference |
Santa Clara, USA |
June 18 June 20 |
O'Reilly Tools of Change for Publishing Conference |
San Jose, CA, USA |
June 18 June 20 |
Advanced Workshop on GCC Internals |
Bombay, India |
June 20 June 22 |
IT Underground |
Dublin, Ireland |
| June 20 |
Open Source Showcase @ OpenAdvantage |
Birmingham, UK |
| June 23 |
Mozilla Developer Day |
Paris, France |
June 25 June 27 |
SOA World Conference and Expo 2007 |
New York, NY, USA |
June 27 June 30 |
2007 Linux Symposium |
Ottawa, Canada |
June 27 June 29 |
Summer School of Sound |
Lancaster, UK |
| June 29 |
NLUUG event theme innovation Enschede |
Enschede, the Netherlands |
June 30 July 7 |
Akademy 2007 |
Glasgow, Scotland |
If your event does not appear here, please
tell us about it.
Page editor: Forrest Cook