Linux News for Jul 30, 2002
EnGarde Secure Linux Advisory: openssl, openssl-misc (2004-03-17 17:29:04)
"Using a commercial TLS protocol testing suite the OpenSSL
Project discovered three vulnerabilities in the OpenSSL
Debian GNU/Linux Advisory: openssl (2003-10-01 15:52:11)
"Dr. Stephen Henson, using a test suite provided by NISCC,
discovered a number of errors in the OpenSSL ASN1 code..."
SuSE Linux Advisory: openssl (2003-04-04 17:14:01)
"Researchers from the University of Stanford have discovered
certain weaknesses in OpenSSL's RSA decryption algorithm..."
Trustix Secure Linux Advisory: openssl (2003-02-22 12:59:14)
"OpenSSL version since 0.9.6c supposedly treat block cipher
padding errors like MAC verification errors during record
LinuxPlanet: Burning CDs in Linux: Tips and Tricks (2002-07-30 23:30:57)
Some may like their CD-RW drives to make nothing but coasters,
but for the rest of us, the frustration of a mishandled CD burn can
drive us crazy. It does not have to be that way. Linux has some
excellent (and maturing) tools that will let you get your data
recorded the right way. Dee-Ann LeBlanc reports on these tools and
how to use them to the best advantage.
CNET News: Will Real Feast Where Apple Failed? (2002-07-30 22:00:20)
"As RealNetworks turns to open source in its battle for the
streaming media market, it faces a foe as formidable as Microsoft:
Trustix Secure Linux Advisory: util-linux (2002-07-30 21:54:06)
"The chfn feature of the util-linux package shipped with all
versions of TSL suffers from a locally exploitable file locking
SuSE Linux Advisory: openssl (2002-07-30 21:52:36)
"Several buffer overflows have been discovered in the OpenSSL
library affecting the SSL implementation, as well as a signedness
issue in the ASN.1 decoding routines..."
Debian GNU/Linux Advisory: mm (2002-07-30 21:49:43)
"Marcus Meissner and Sebastian Krahmer discovered and fixed a
temporary file vulnerability in the mm shared memory
Update: OfB.biz: Red Hat to KDE: "Do As I Say, Not As I Do" (2002-07-30 21:27:29)
"It started seemingly innocuously enough; a letter was received
by one member of the KDE development team asking the KDE Project to
use RedHat [sic] Linux on machines at LWCE and to display
RedHat's shadow man logo on those machines..." [The story
continues to what may be a resolution. -ed]
CRN: Bloom Sees Signs Of Solaris-To-Linux Migration (2002-07-30 20:30:11)
"Veritas CEO Gary Bloom, Monday said there are 'early signs' of
a migration from Sun Solaris to Linux..."
NewsFactor: OpenOffice Gets Its OS X Story Straight (2002-07-30 17:30:39)
"On Thursday, OpenOffice.org released an alpha version of
OpenOffice for Mac OS X Latest News about OS X, along with a call
for volunteers to help bring the Mac version to completion.
However, the OpenOffice community was startled when an article
appeared the following day on an online news site stating that Sun
and Apple were collaborating on developing StarOffice for
Linux Journal: Linux Journal Offers Artistic Immortality (2002-07-30 16:00:24)
Linux Journal has made some changes in the last few weeks, with
new Editor in Chief Don Marti at the helm. Marti now reports on
Lj's efforts to put their works back into the community's
Red Hat Linux Advisory: openssl (2002-07-30 15:45:44)
"A security audit of the OpenSSL code sponsored by DARPA found
several buffer overflows in OpenSSL which affect versions 0.9.7 and
0.9.6d and earlier.."
Trustix Secure Linux Advisory: openssl (2002-07-30 15:44:29)
"Several severe security problems have been found in the openssl
source code which upon the TSL openssl packages are based..."
ZDNet UK: Linux Invades iPod (2002-07-30 14:30:25)
"Software for allowing Linux users to access iPod has gone on
sale just ten days after testing began. But there are a few
additional requirements that consumers should be aware of..."
Alan Cox: Linux 2.4.19rc3-ac5 (2002-07-30 14:29:59)
Changelog, link within.
EnGarde Secure Linux Advisory: openssl, openssl-misc (2002-07-30 14:29:30)
"There are several potentially exploitable vulnerabilities in
the OpenSSL toolkit..."
Debian GNU/Linux Advisory: openssl (2002-07-30 14:29:00)
"The OpenSSL development team has announced that a security
audit by A.L. Digital Ltd and The Bunker, under the DARPA CHATS
program, has revealed remotely exploitable buffer overflow
conditions in the OpenSSL code..."
Mandrake Linux Advisory: mm (2002-07-30 11:45:13)
"Marcus Meissner and Sebastian Krahmer discovered a temporary
file vulnerability in the mm library which is used by the Apache
Kernel Traffic #177 by Zack Brown (2002-07-30 11:30:44)
The latest message traffic from the Linux kernel development
New Straits Times: Komnas Twenty20 a Major Hit (2002-07-30 10:00:54)
A new state-sponsored Linux-based PC is, according to this
report, flying off the shelves in Malaysia.
AbiWord Weekly News #102 by Jesper Skov (2002-07-30 07:00:14)
"The past week a lot of Bug Votes have been reclaimed by the
developers, closing even a few very high profile Bugs. I must
remind users to help QA the closed Bugs so their description will
show up in the section of closed Bugs below..."
WOLK - Working Overloaded Linux Kernel v3.5rc4 (2002-07-30 05:30:52)
"Next will be final. Needs merging of O(1) Scheduler and
Release Digest: General, July 29, 2002 (2002-07-30 05:00:30)
Today's General apps: The Jiles Project 1.16, OSCAR 1.3, and Ch
Release Digest: GNOME, July 29, 2002 (2002-07-30 05:00:00)
Today's GNOME app: GNUApplet-0.1.0.
TinyMinds.org: Daniel Robbins of Gentoo Linux (2002-07-30 04:00:39)
"We recently got a chance to interview Daniel Robbins, founder
and Chief Architect of the project...
The Register: Microsoft Welcomes UK Govt Open Source Policy (2002-07-30 02:30:54)
"Microsoft Corp has given a warm welcome to the UK government's
recent open source software policy statement, indicating a further
softening of the company's approach to its open source