Showing all newswire headlines

View by date, instead?

« Previous ( 1 ... 7230 7231 7232 7233 7234 7235 7236 7237 7238 7239 7240 ... 7442 ) Next »

Debian alert: New ssmtp packages fix format string vulnerabilities

  • Mailing list; By Matt Zimmerman <mdz@debian.org> (Posted by dave on Apr 15, 2004 7:18 AM EDT)
  • Story Type: Security; Groups: Debian
Max Vozeler discovered two format string vulnerabilities in ssmtp, a simple mail transport agent. Untrusted values in the functions die() and log_event() were passed to printf-like functions as format strings. These vulnerabilities could potentially be exploited by a remote mail relay to gain the privileges of the ssmtp process (including potentially root).

Mandrake security alert: Updated tcpdump packages fix several vulnerabilities

  • Mailing list; By Mandrake Linux Security Team <security@linux-mandrake.com> (Posted by dave on Apr 15, 2004 7:18 AM EDT)
  • Story Type: Security; Groups: Mandriva
A number of vulnerabilities were discovered in tcpdump versions prior to 3.8.1 that, if fed a maliciously crafted packet, could be exploited to crash tcpdump.

Tree Branches for Mozilla 1.7

On Monday, the new Mozilla 1.7 branch was cut from the trunk, in preparation for the final release of Mozilla 1.7 in mid-May. As well as 1.7, the branch will also provide the foundation for Mozilla Firefox 1.0 and several other Mozilla-based applications. Post-1.7, the new branch will replace 1.4 as the stable development baseline. Checkins to the branch require approval from drivers@mozilla.org — the trunk, meanwhile, is now open for 1.8 Alpha development work. Consult tinderbox for the latest tree status.

X is now free of XFree86

A new version of the X11 windowing system, used by Unix-like operating systems including Linux, will become generally available in ten days time. This is significant as it's likely to be the version that will face most users in future distributions. Known as X11R6.7, it's the first release from the XOrg consortium. This was originally founded to steer the specification in May 1999, but only recently decided to do something about it, citing the glacial pace of development by the XFree86 consortium.

GPL warrants heightened attention

  • Search Enterprise Linux; By Michael S. Mimoso (Posted by dave on Apr 15, 2004 7:09 AM EDT)
  • Story Type: News Story; Groups: GNU
The beauty of the open source software community -- and the General Public License that governs Linux and open source -- is that innovation must be shared with the community. This can also cause a bevy of sleepless nights for vendors, IT managers, developers and enterprise bean counters. Reciprocal, or "copyleft", provisions in the GPL give the license a viral aspect...

MySQL's annual conference: They came to learn

  • NewsForge; By Robin 'Roblimo' Miller (Posted by dave on Apr 15, 2004 7:08 AM EDT)
  • Story Type: News Story; Groups: MySQL
Approximately 650 MySQL users and supporters are spending April 14 - 16 in the conference center of the Peabody Hotel, with so much of their time occupied by MySQL training sessions that hardly any of them seem to be taking advantage of Orlando-area tourist attractions like Walt Disney World. These people came here to learn -- and possibly to swim with dolphins Thursday evening. The dolphin outing is totally appropriate; there's a dolphin in the MySQL logo. But long discussions about how to make MySQL run better and faster are this group's main course. The dolphin swim is just dessert.

Linux will fall flat on its face – report

  • The Inquirer (Posted by dave on Apr 15, 2004 6:49 AM EDT)
  • Story Type: News Story
A CANADIAN researcher has warned that Open Source will fall flat on its face unless it gets its act together. In First Monday, Michelle Levesque said that the Open Source concept fails because of its "user-interface design, documentation, feature-centric development, programming for the self and religious blindness". She warned that Open Source will remain an unknown quantity to most computer users until these problems were addressed.

Real World Linux Conference 2004: Day 2

  • NewsForge; By David 'cdlu' Graham (Posted by dave on Apr 15, 2004 6:49 AM EDT)
  • Story Type: News Story
Real World Linux 2004 Conference and Expo is under way this week at the Metro Convention Center in Canada's largest city, and NewsForge is there. Day 2 of the conference saw a lot more people and a lot more happening.

Red Hat alert: Updated Subversion packages fix security vulnerability in neon

  • Mailing list; By bugzilla@redhat.com (Posted by dave on Apr 15, 2004 6:40 AM EDT)
  • Story Type: Security; Groups: Red Hat
Updated Subversion packages that fix a vulnerability in neon, exploitable by a malicious DAV server, are now available.

Bit Prepared: A Missing Link?

  • Linux Journal; By Marco Fioretti (Posted by dave on Apr 15, 2004 6:23 AM EDT)
  • Story Type: News Story
Building the case for turning the Boy Scouts into a worldwide advocate of free software.

Open Source Project Startup for Dummy Administrators?

  • Onlamp; By Russ Miles (Posted by dave on Apr 15, 2004 6:21 AM EDT)
  • Story Type: News Story
So, my challenge goes out to everyone to share their own experiences in getting an open source project off the ground, technically speaking. Are there tools out there that make this process much easier, and perhaps ones that I could take advantage of by moving my own open source project to? Also what experiences have people had with the different community projects?

Open source – a big hit in the classroom

  • ITWeb; By Paul Vecchiatto (Posted by dave on Apr 15, 2004 6:19 AM EDT)
  • Story Type: News Story
Introducing open source software to those who will teach future generations of computer programmers was a major theme at the ICT in Education Conference held in Cape Town last week.

It's Official: Lindows Is Dead, Long Live "Linspire"

Two years after the start of the trademark dispute between Microsoft Corporation and Lindows Inc., the battle over the "LindowsOS" name is over - henceforth it will be called "Linspire."

An in-depth look at SUSE 9.1 RC2

  • Linux.com; By Joe Barr (Posted by dave on Apr 15, 2004 6:14 AM EDT)
  • Story Type: News Story; Groups: SUSE
Here is our promised in-depth look at the latest SUSE 9.1 beta. I found a little more flakiness than I would be comfortable with long-term, but I have been using this near-final version in my day-to-day work for nearly a week now and see no reason to go back to my previous installation.

Public sector warned of open source myths

  • Silicon.com; By Ron Coates (Posted by dave on Apr 14, 2004 3:02 PM EDT)
  • Story Type: News Story
"It is important to remember that open source is not free of cost – it is free to use and share. Its use must be part of a strategy as it can be costly in terms of migration, integration, training and systems management."

Now Outsource To Switch To Open Source

  • CXOtoday.com; By Hinesh Jethwani (Posted by dave on Apr 14, 2004 1:35 PM EDT)
  • Story Type: News Story
With Open Source proliferation on the rise, there is a surging demand for organizations specializing in handling demanding migration projects. Migration has become a key concern for enterprises dreaming of a complete Open Source environment, as legacy overhauls and application transfers impose a gargantuan challenge.

OpenPKG Alert: OpenPKG Security Advisory (mysql)

  • Mailing list; By OpenPKG <openpkg@openpkg.org> (Posted by dave on Apr 14, 2004 1:34 PM EDT)
  • Story Type: Security; Groups: OpenPKG
Shaun Colley discovered [1] that the scripts "mysqlbug" and "mysqld_multi" of the MySQL RDBMS [0] perform insecure creations of temporary files. An attacker could create symbolic links in /tmp to achieve the overwriting of files with the privileges of the user invoking the scripts. The RDBMS startup wrapper "mysqld_multi" is currently not used in OpenPKG, although it is contained in the "mysql" package. The "mysqlbug" script could be run manually by the administrator. The Common Vulnerabilities and Exposures (CVE) project assigned the ids CAN-2004-0381 [2] and CAN-2004-0388 [3] to the problem.

Mozilla Links Newsletter - 17 - April 14, 2004

  • Mailing list; By Mozilla Links Newsletter <newsletter@mozilla.org> (Posted by dave on Apr 14, 2004 1:34 PM EDT)
  • Story Type: Newsletter; Groups: Mozilla
You already know Mozilla excels at providing state of the art Internet products like Mozilla Application Suite and currently in the oven Firefox and Thunderbird, as well as big bunch of other applications like ChatZilla and Mozilla Calendar (recently reviewed). But, what about eye candy?

Try before you buy with Linux 2.6

  • Search Enterprise Linux; By Nigel McFarlane (Posted by dave on Apr 14, 2004 12:18 PM EDT)
  • Groups: Kernel; Story Type: News Story
The recently released Linux 2.6 kernel is going to be the heart of future enterprise Linux offerings. Taking it on a road test enables your IT shop to evaluate its hardware and software upgrade and replacement policies as well as its claims of improved peripheral connectivity.

Mandrake security alert: Updated kernel packages fix multiple vulnerabilities

  • Mailing list; By Mandrake Linux Security Team <security@linux-mandrake.com> (Posted by dave on Apr 14, 2004 10:54 AM EDT)
  • Story Type: Security; Groups: Mandriva
A vulnerability was found in the R128 DRI driver by Alan Cox. This could allow local privilege escalation. The previous fix, in MDKSA-2004:015 only partially corrected the problem; the full fix is included (CAN-2004-0003).

« Previous ( 1 ... 7230 7231 7232 7233 7234 7235 7236 7237 7238 7239 7240 ... 7442 ) Next »