Linux News for Jul 30, 2002
EnGarde Secure Linux Advisory: openssl, openssl-misc (Mar 17, 2004, 17:29)
"Using a commercial TLS protocol testing suite the OpenSSL
Project discovered three vulnerabilities in the OpenSSL
Debian GNU/Linux Advisory: openssl (Oct 01, 2003, 15:52)
"Dr. Stephen Henson, using a test suite provided by NISCC,
discovered a number of errors in the OpenSSL ASN1 code..."
SuSE Linux Advisory: openssl (Apr 04, 2003, 17:14)
"Researchers from the University of Stanford have discovered
certain weaknesses in OpenSSL's RSA decryption algorithm..."
Trustix Secure Linux Advisory: openssl (Feb 22, 2003, 12:59)
"OpenSSL version since 0.9.6c supposedly treat block cipher
padding errors like MAC verification errors during record
LinuxPlanet: Burning CDs in Linux: Tips and Tricks (Jul 30, 2002, 23:30)
Some may like their CD-RW drives to make nothing but coasters,
but for the rest of us, the frustration of a mishandled CD burn can
drive us crazy. It does not have to be that way. Linux has some
excellent (and maturing) tools that will let you get your data
recorded the right way. Dee-Ann LeBlanc reports on these tools and
how to use them to the best advantage.
CNET News: Will Real Feast Where Apple Failed? (Jul 30, 2002, 22:00)
"As RealNetworks turns to open source in its battle for the
streaming media market, it faces a foe as formidable as Microsoft:
Trustix Secure Linux Advisory: util-linux (Jul 30, 2002, 21:54)
"The chfn feature of the util-linux package shipped with all
versions of TSL suffers from a locally exploitable file locking
SuSE Linux Advisory: openssl (Jul 30, 2002, 21:52)
"Several buffer overflows have been discovered in the OpenSSL
library affecting the SSL implementation, as well as a signedness
issue in the ASN.1 decoding routines..."
Debian GNU/Linux Advisory: mm (Jul 30, 2002, 21:49)
"Marcus Meissner and Sebastian Krahmer discovered and fixed a
temporary file vulnerability in the mm shared memory
Update: OfB.biz: Red Hat to KDE: "Do As I Say, Not As I Do" (Jul 30, 2002, 21:27)
"It started seemingly innocuously enough; a letter was received
by one member of the KDE development team asking the KDE Project to
use RedHat [sic] Linux on machines at LWCE and to display
RedHat's shadow man logo on those machines..." [The story
continues to what may be a resolution. -ed]
CRN: Bloom Sees Signs Of Solaris-To-Linux Migration (Jul 30, 2002, 20:30)
"Veritas CEO Gary Bloom, Monday said there are 'early signs' of
a migration from Sun Solaris to Linux..."
NewsFactor: OpenOffice Gets Its OS X Story Straight (Jul 30, 2002, 17:30)
"On Thursday, OpenOffice.org released an alpha version of
OpenOffice for Mac OS X Latest News about OS X, along with a call
for volunteers to help bring the Mac version to completion.
However, the OpenOffice community was startled when an article
appeared the following day on an online news site stating that Sun
and Apple were collaborating on developing StarOffice for
Linux Journal: Linux Journal Offers Artistic Immortality (Jul 30, 2002, 16:00)
Linux Journal has made some changes in the last few weeks, with
new Editor in Chief Don Marti at the helm. Marti now reports on
Lj's efforts to put their works back into the community's
Red Hat Linux Advisory: openssl (Jul 30, 2002, 15:45)
"A security audit of the OpenSSL code sponsored by DARPA found
several buffer overflows in OpenSSL which affect versions 0.9.7 and
0.9.6d and earlier.."
Trustix Secure Linux Advisory: openssl (Jul 30, 2002, 15:44)
"Several severe security problems have been found in the openssl
source code which upon the TSL openssl packages are based..."
ZDNet UK: Linux Invades iPod (Jul 30, 2002, 14:30)
"Software for allowing Linux users to access iPod has gone on
sale just ten days after testing began. But there are a few
additional requirements that consumers should be aware of..."
Alan Cox: Linux 2.4.19rc3-ac5 (Jul 30, 2002, 14:29)
Changelog, link within.
EnGarde Secure Linux Advisory: openssl, openssl-misc (Jul 30, 2002, 14:29)
"There are several potentially exploitable vulnerabilities in
the OpenSSL toolkit..."
Debian GNU/Linux Advisory: openssl (Jul 30, 2002, 14:29)
"The OpenSSL development team has announced that a security
audit by A.L. Digital Ltd and The Bunker, under the DARPA CHATS
program, has revealed remotely exploitable buffer overflow
conditions in the OpenSSL code..."
Mandrake Linux Advisory: mm (Jul 30, 2002, 11:45)
"Marcus Meissner and Sebastian Krahmer discovered a temporary
file vulnerability in the mm library which is used by the Apache
Kernel Traffic #177 by Zack Brown (Jul 30, 2002, 11:30)
The latest message traffic from the Linux kernel development
New Straits Times: Komnas Twenty20 a Major Hit (Jul 30, 2002, 10:00)
A new state-sponsored Linux-based PC is, according to this
report, flying off the shelves in Malaysia.
AbiWord Weekly News #102 by Jesper Skov (Jul 30, 2002, 07:00)
"The past week a lot of Bug Votes have been reclaimed by the
developers, closing even a few very high profile Bugs. I must
remind users to help QA the closed Bugs so their description will
show up in the section of closed Bugs below..."
WOLK - Working Overloaded Linux Kernel v3.5rc4 (Jul 30, 2002, 05:30)
"Next will be final. Needs merging of O(1) Scheduler and
Release Digest: General, July 29, 2002 (Jul 30, 2002, 05:00)
Today's General apps: The Jiles Project 1.16, OSCAR 1.3, and Ch
Release Digest: GNOME, July 29, 2002 (Jul 30, 2002, 05:00)
Today's GNOME app: GNUApplet-0.1.0.
TinyMinds.org: Daniel Robbins of Gentoo Linux (Jul 30, 2002, 04:00)
"We recently got a chance to interview Daniel Robbins, founder
and Chief Architect of the project...
The Register: Microsoft Welcomes UK Govt Open Source Policy (Jul 30, 2002, 02:30)
"Microsoft Corp has given a warm welcome to the UK government's
recent open source software policy statement, indicating a further
softening of the company's approach to its open source