Linux Action News 292
05/11/23 • 13 min
We get you up to speed on two serious flaws, Linux's recent gaming loss, Ubuntu doubling down on RISC-V, and news from the Open Source Summit North America.
Sponsored By:
- Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
- Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
Links:
- CVE - CVE-2023-28410 — Improper restriction of operations within the bounds of a memory buffer in some Intel(R) i915 Graphics drivers for linux before kernel version 6.2.10 may allow an authenticated user to potentially enable escalation of privilege via local access.
- INTEL-SA-00886
- Intel Security Center
- New NetFilter flaw gives attackers root privileges — A new Linux NetFilter kernel flaw has been discovered, allowing unprivileged local users to escalate their privileges to root level, allowing complete control over a system.
- NVD - CVE-2023-32233
- Goodbye to Roblox on Linux — I’m sorry to be such a downer about this, but it’s the reality. We have to spend our time porting to and supporting the platforms that will grow our community.
- Proper support for the Linux platform - Feature Requests
- Ubuntu 23.04 Now Works on StarFive’s VisionFive 2 RISC-V SBC — ”This partnership will provide users with a seamless development experience, allowing them to leverage the best of open source software and RISC-V through Ubuntu and VisionFive 2.”
- Canonical enables Ubuntu on StarFive’s VisionFive 2 RISC-V single board computer
- Open Source Summit North America — Open Source Summit is a conference umbrella, composed of a collection of events covering the most important technologies, topics, and issues affecting open source today.
- AWS open-sources snapshot fuzzing and policy authorization tools
- Schedule - Linux Foundation Events
- The Linux Foundation on Twitter
We get you up to speed on two serious flaws, Linux's recent gaming loss, Ubuntu doubling down on RISC-V, and news from the Open Source Summit North America.
Sponsored By:
- Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
- Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
Links:
- CVE - CVE-2023-28410 — Improper restriction of operations within the bounds of a memory buffer in some Intel(R) i915 Graphics drivers for linux before kernel version 6.2.10 may allow an authenticated user to potentially enable escalation of privilege via local access.
- INTEL-SA-00886
- Intel Security Center
- New NetFilter flaw gives attackers root privileges — A new Linux NetFilter kernel flaw has been discovered, allowing unprivileged local users to escalate their privileges to root level, allowing complete control over a system.
- NVD - CVE-2023-32233
- Goodbye to Roblox on Linux — I’m sorry to be such a downer about this, but it’s the reality. We have to spend our time porting to and supporting the platforms that will grow our community.
- Proper support for the Linux platform - Feature Requests
- Ubuntu 23.04 Now Works on StarFive’s VisionFive 2 RISC-V SBC — ”This partnership will provide users with a seamless development experience, allowing them to leverage the best of open source software and RISC-V through Ubuntu and VisionFive 2.”
- Canonical enables Ubuntu on StarFive’s VisionFive 2 RISC-V single board computer
- Open Source Summit North America — Open Source Summit is a conference umbrella, composed of a collection of events covering the most important technologies, topics, and issues affecting open source today.
- AWS open-sources snapshot fuzzing and policy authorization tools
- Schedule - Linux Foundation Events
- The Linux Foundation on Twitter
Previous Episode
Linux Action News 291
The results from the recent HDR Hackfest, Mozilla's new acquisition, and the concerning crack down on free software encryption.
Sponsored By:
- Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
- Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
Links:
- HDR hackfest wrap-up — People from various organizations were on-site: Red Hat, KDE, System76, AMD, Igalia, Collabora, Canonical, etc. Some more people from NVIDIA, Intel and Google joined us remotely (some of them waking up at 2 AM due to their timezone!).
- Fakespot is acquired by Mozilla — I have exciting news to share, Fakespot has been acquired by Mozilla! We are joining a company that develops one of the most popular browsers in the world in Firefox with a lineage that dates back to the origins of the internet.
- Apple removes Fakespot from App Store after Amazon complains
- More Rust Code Readied For Linux 6.4 — New Rust code for Linux 6.4 includes the introduction of the pin-init API, which is for dealing with safe pinned initialization and allows reducing the amount of "unsafe" Rust code within the kernel.
- Asahi Lina on Twitter: My Rust contributions for Linux 6.4 are finally merged upstream! 🦀🐧 — The next big challenge is going to be the DRM subsystem abstractions!
- India blocks 14 mobile apps used by terrorists in Pakistan to send information in J-K — As inputs received that these applications are being used to further terror propaganda and incite youths in Jammu and Kashmir, the Central government blocked them under Section 69A of the Information Technology Act, 2000.
- India removes ban on VLC media player after cybersecurity concerns addressed
- Text of the RESTRICT Act — To authorize the Secretary of Commerce to review and prohibit certain transactions between persons in the United States and foreign adversaries, and for other purposes...
- Tell Congress: Don’t Outlaw Encrypted Applications
Next Episode
Linux Action News 293
Bcachefs hits a major milestone, how the Red Hat cuts impact Fedora, Plasma 6 plans, and the software update bricking EV batteries.
Sponsored By:
- Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
- Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
- Jupiter Network Membership: Support the entire network, and get access to every member's special feed for every show on the network. Promo Code: thesignal
Links:
- bcachefs out for review — I'm submitting the bcachefs filesystem for review and inclusion.
- bcachefs TestServerSetup
- Bcachefs Submitted For Review - Aims For Mainline
- Fedora Program Manager Laid Off — On 24 April 2023, Red Hat announced a 4% reduction in global staff. As a member of that 4%, today is my last day at Red Hat.
- Fedora Program Manager Laid Off As Part Of Red Hat Cuts
- KDE Developers Planning For Plasma 6.0 — This week my fellow developers and I are in Germany for an in-person Plasma sprint–our first since 2019!
- KDE Developers In Germany Planning For Plasma 6.0
- KDE Plasma 6 to Ship with Floating Panel by Default, Double-Click for Opening Files
- Tesla sued over battery-busting OTA patch in Model S, X — The named plaintiffs claim that, despite Tesla saying their batteries are supposed to last the life of the vehicle, the Musk-owned automaker "deliberately and significantly interfere[d] with the car's performance through software updates that reduce operating capacity."
If you like this episode you’ll love
Episode Comments
Generate a badge
Get a badge for your website that links back to this episode
Select type & size
<a href="https://goodpods.com/podcasts/linux-action-news-34394/linux-action-news-292-30081957"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to linux action news 292 on goodpods" style="width: 225px" /> </a>
Copy