Brief items
Security
Security quotes of the week
People need to stop using SAML. This needs to be a priority. [...]
Obviously this is a crazy approach to one of the most security-critical parts of an application on the internet, and it breaks all the time.
Kernel development
Kernel release status
The 5.10 kernel was released on December 13; in the announcement Linus said: "I pretty much always wish that the last week was even calmer than it was, and that's true here too. There's a fair amount of fixes in here, including a few last-minute reverts for things that didn't get fixed, but nothing makes me go 'we need another week'. Things look fairly normal."
Significant changes in this release include support for the Arm memory tagging extension, restricted rings for io_uring, sleepable BPF programs, the process_madvise() system call, ext4 "fast commits", and more. See the LWN merge-window summaries (part 1, part 2) and the KernelNewbies 5.10 page for more details.
Note that the 5.10.1 update came out almost immediately thereafter to fix a couple of late-arriving bugs.
Stable updates: beyond 5.10.1, 5.9.14, 5.4.83, 4.19.163, 4.14.212, 4.9.248, and 4.4.248 were released on December 11, followed by 5.9.15 and 5.4.84 on December 16.
Quote of the week
Distributions
CloudLinux promises a CentOS Replacement
CloudLinux has put out a press release stating that it will commit over $1 million per year toward the creation and maintenance of a CentOS replacement distribution. "CloudLinux is sponsoring Project Lenix, which will create a free, open-source, community-driven, 1:1 binary compatible fork of RHEL 8 (and future releases). It will provide an uninterrupted way to convert existing CentOS servers with absolutely zero downtime. Entire server fleets will be able to be converted with a single command with no reinstallation and no reboots required."
Two OpenWrt service releases
The OpenWrt project has released two updates: 18.06.9 and 19.07.5. Both contain a number of important fixes, including a few with CVE numbers attached. Also notable is that 18.06.9 is the last update for 18.06; users will need up upgrade to 19.07 for continued support.Distribution quote of the week
Development
Firefox 84.0 and 78.6 ESR
Firefox 84.0 has been released. This version includes an accelerated rendering pipeline for Linux/GNOME/X11 users and improved performance and compatibility with Docker. This is the final release to support Adobe Flash. The release notes have additional details.Firefox 78.6.0 ESR has also been released, with various stability, functionality, and security fixes. See the release notes for more information.
Jansson: On the Graying of GNOME
Hans Petter Jansson has done an analysis of contributions to the GNOME project, raising some concerns about how well the project is doing at bringing in new developers for the long haul. "According to this, GNOME peaked at slightly above 1,400 contributors in 2010 and went into decline with the GNOME 3.0 release the following year. However, 2020 saw the most contributors in a long time, even with preliminary data — there’s still two weeks to go. Who knows if it’s an anomaly or not. It’s been an atypical year across the board."
GTK 4.0
Version 4.0 of the GTK toolkit has been released. "It is impossible to summarize 4 years of development in a single post. We’ve written detailed articles about many of the new things in this release over the past year: Data transfers, Event controllers, Layout managers, Render nodes, Media playback, Scalable lists, Shaders, Accessibility." GTK 2 has reached the end of its life.
Page editor: Jake Edge
Next page:
Announcements>>