Another HTTPS vulnerability has started to make its rounds earlier this morning. Dubbed Logjam by its researchers, the vulnerability stems from the US's encryption export mandate back in the 1990s. This particular vulnerability, in the transport-layer security layer protocol, breaks the Diffie-Hellman perfect forward-secrecy. Susceptibility to the vulnerability is depended on servers and clients supporting the DHE_EXPORT encryption scheme, or using a key less-than-or-equal to 1024 bits.
A new release of the GNU Guix functional package manager is now available.
This is a guest post by Tom Li, a Phoronix reader wishing to share his views on the increasing problems of free/open-source software public mailing lists being flooded with spam and other garbage. There are some extreme situations where there can be "flooding attacks" of list subscribers receiving thousands of mailing list messages per day from attackers. Tom is hoping the open-source community can come up with better solutions to fend off this problem.
Junio Hamano has ended out the month by releasing Git 2.4.0, the latest feature update to the popular distributed version control system.
Besides being powered by more powerful server hardware, also delivering faster response times to Phoronix and OpenBenchmarking.org is thanks to MariaDB.
Daniel Phillips has worked out faster fsync support within Tux3, the promising open-source file-system that continues to be developed outside of the mainline kernel.
For those wondering about the state of the Lima and Tamil graphics drivers for providing open-source, accelerated support to ARM Mali graphics processors, Luc Verhaegen has written a new blog post after being silent for a while.
Version 1.8.0 of the Nginx open-source web server is now available.
One month ago I wrote about the Library Operating System for Linux (LibOS) and initial reaction to that independent project led to an interesting range of responses. A month later, LibOS is still being worked on for Linux.
Version 4.0 of the open-source Ardour audio editing software has been released. Ardour 4.0 brings over a reported 1,000 bug fixes.
A new release of ZFS On Linux is available this week for providing the latest capabilities for this Oracle/Sun ZFS file-system implemented as an out-of-tree, native Linux kernel driver.
Version 4.4 of the popular phpMyAdmin MySQL database administration software is now available.
Blender 2.74 was released yesterday as the newest version of this leading open-source 3D/modeling software.
Various Phoronix readers have written in this weekend and commented in the forums and elsewhere that systemd developers forked the Linux kernel. This is not the case.
Facebook today announced Nuclide, its latest open-source project, which is an integrated development environment derived from GitHub's Atom editor.
An early preview release of Git 2.4 is now available but it doesn't add too many features as this cycle has organically found itself doing a ton of polishing and bug fixing.
Pixar has made a free, non-commercial version of its RenderMan software available to the public.
While this winter brought many exciting milestones for Linux and open-source fans, there's also some milestones/features hoped for this winter that haven't yet come to fruition.
Sirius is an open-source, end-to-end Intelligent Personal Assistant (IPA) service. Sirius is able to recognize speech or imagery and return the results in natural language.
The latest OpenSSL security vulnerabilities were made public today with four CVEs being addressed.
OpenSSH 6.8 was released this morning and with this version a lot of their internal code was refactored to make OpenSSH more library-like.
Most Linux distributions now use Plymouth as their graphical boot system / splash screen that leverages DRM/KMS kernel support. While many Linux distributions rely on Plymouth, there hasn't been a formal release in the better part of a year -- until yesterday.
Days after Gitorious got acquired by GitLab, the latest code hosting platform seeing a shake-up is Google Code. Google has announced today they're shutting down Google Code.
For those interested in the new SPIR-V specification for the intermediate representation used by Vulkan and OpenCL 2.1, a developer has already written an open-source reader and writer of SPIR-V.
Samba 4.2.0 was just released for those in need of file and print service sharing with Windows via SMB/CIFS. The Samba 4.2 release brings with it several new features.
Gitorious, a once formidable competitor to GitHub in the early days of the Git revision control system for hosting open-source projects, has been acquired by GitLab.
Hewlett Packard has patented the identification of a failed code change by automatically running a set of tests against the set of changes for indicating the regression.
Rich Lander of Microsoft has posted an update concerning the open-sourcing of Microsoft's .NET core and how they're looking to do feature work more in the open and with the community's involvement.
Thanks to recent work done by systemd developers Kay Sievers and David Herrmann on Gummiboot, there's a UEFI boot-loader stub for starting a Linux kernel with an initial RAM disk (initrd) and kernel command line that are all embedded within the executable.
For those still relying upon the Reiser4 file-system and haven't migrated off to ZFS On Linux or Btrfs, the out-of-tree Reiser4 kernel code has been updated for compatibility with the Linux 3.18 kernel.
1273 Free Software news articles published on Phoronix.