Security Projects - Page 6 - Results from #117

Discover Security Projects News

How a Botched Kernel Patch Broke Ubuntu – and Why It May Happen Again

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

If you spent the early days of June fighting kernel panics in Ubuntu 20.04, you were not alone – and we now know why.

LinuxSecurity.com Team
Jul 11, 2022

Intel Brews Linux Change For More Efficient Idle CPU Searching Under Heavy System Load

A "sched/fair" change for Linux 5.20 aims to enhance the efficiency when searching for an idle CPU under heavy system load. The change led by Intel should improve the kernel's efficiency when the system is overloaded but as with most low-level tuning does run the risk of regressions.

LinuxSecurity.com Team
Jun 29, 2022

Microsoft's CBL-Mariner 2.0 Linux Distro Now Supports Kernel Live Patching, PXE Boot

Last month Microsoft issued the first production release of CBL-Mariner 2.0, its in-house Linux distribution used for powering services from Microsoft Azure to WSL use-cases and more. CBL-Mariner 2.0 this weekend saw a rather large monthly update with a number of fixes, package updates, and new additions to this "Common Base Linux" platform.

LinuxSecurity.com Team
Jun 28, 2022

Rust in the Linux Kernel by 2023, Linus Torvalds Predicts

Rust, the fast-growing systems programming language, may be merged into the Linux kernel next year, or “maybe the next release,” according to Linux creator Linus Torvalds.

LinuxSecurity.com Team
Jun 23, 2022

Linux Mint Project Takes Over Development of Timeshift Backup Tool and Makes it a XApp

There has been an interesting development in this month’s Linux Mint news segment regarding the future of the backup utility Timeshift which has become a core part of the distro in recent years. It turns out that Tony George, the developer behind the project doesn’t have time to work on Timeshift any longer and has agreed for the Mint team to take over. As part of the plans, Timeshift will now become a XApp, a suite of apps developed by the Mint team.

LinuxSecurity.com Team
Jun 02, 2022

Google: Here comes our 'Open Source Maintenance Crew'

The Google Open Source Maintenance Crew will support under-resourced critical open-source products to fix security issues.

LinuxSecurity.com Team
May 26, 2022

Citi Donates Software Supply Chain Security Kit to OpenSSF

The financial services company's prototype system based on CNCF's software supply chain security guidelines joins OpenSSF's $150 million open source standards campaign.

LinuxSecurity.com Team
May 20, 2022

Open source security: Linux Foundation project presents 10-point plan

The Open Source Software Security Foundation (OpenSSF), a project of the Linux Foundation, has come up with a 10-point plan to improve the safety of the software supply chain, costed at $147.9M over two years, though it relies in part on developers changing their behaviour to take more account of security issues.

LinuxSecurity.com Team
May 19, 2022

27.Tablet Connections Blocks Lock Esm H200

Open-source security: It's too easy to upload 'devastating' malicious packages, warns Google

The Google and OpenSSF Package Analysis project aims to reduce security risks created by developers' crazy package-updating schedules.

LinuxSecurity.com Team
May 05, 2022

Linux Kernel 5.17 Released, With Major Security Fixes But Not Much Else

After a short delay, Linus Torvalds has announced the latest version of the Linux kernel, version 5.17, which adds major security enhancements.

LinuxSecurity.com Team
Mar 23, 2022

Open Source Security Foundation Now Counts 60 Members

The Open Source Security Foundation (OpenSSF) on Tuesday announced that 19 more organizations have joined the initiative, showing commitment towards identifying and addressing vulnerabilities in open source software. OpenSSF now has a total of 60 members.

LinuxSecurity.com Team
Mar 03, 2022

Torvalds moves Linux to C11

Old one out-of-date, but this one goes to 11.

LinuxSecurity.com Team
Mar 02, 2022

GitHub calls for contributions to new cybersecurity Advisory Database

GitHub has announced that their Advisory Database for security data is now open to contributions from experts. The full contents of the Advisory Database have already been published to encourage collaboration.

LinuxSecurity.com Team
Feb 24, 2022

Alpha-Omega Project takes a human-centered approach to open-source software security

The Linux Foundation and OpenSSF Alpha-Omega Project, backed by Microsoft and Google, aims to improve the security of 10,000 open-source projects through a human-centered approach to open-source software security.

LinuxSecurity.com Team
Feb 07, 2022

OpenSSF Announces The Alpha-Omega Project to Improve Software Supply Chain Security for 10,000 OSS Projects

Following a meeting with government and industry leaders at the White House, OpenSSF is excited to announce the Alpha-Omega Project to improve the security posture of open source software (OSS) through direct engagement of software security experts and automated security testing.

LinuxSecurity.com Team
Feb 03, 2022

Rust-Written Replacement To GNU Coreutils Progressing, Some Binaries Now Faster

Along with the broader industry trend of transitioning security-sensitive code to memory-safe languages like Rust, there has been an effort to write a Rust-based replacement to GNU Coreutils. For nearly a year that Rust Coreutils has been able to run a basic Debian system while more recently they have been increasing their level of GNU Coreutils compatibility and in some cases now even outperforming the upstream project.

LinuxSecurity.com Team
Feb 01, 2022

LVFS Exploring Alternate, Open-Source Firmware For Capable End-Of-Life Devices

The Linux Vendor Firmware Service (LVFS) with Fwupd for firmware updating on Linux could soon be making it easier to transition older, end-of-life devices off official firmware packages and onto the likes of open-source Coreboot for capable aging PC hardware. This not only would make the system run on more free software but would extend the life of the hardware with firmware updates where the vendor has ceased their support.

LinuxSecurity.com Team
Jan 26, 2022

20.Lock AbstractDigital Circular Esm H200

Intel's Unaccepted Memory Support Updated For Substantially Faster Booting Of TDX VMs

Way back in August Intel posted a set of Linux kernel patches for supporting "unaccepted memory" by the Linux kernel in preparation for next-generation Xeon processors and speeding up the boot time for guest virtual machines making use of Intel's Trust Domain Extensions (TDX) security feature. Unaccepted memory support hasn't yet made it to the mainline kernel but now a second iteration of the patches have been posted.

LinuxSecurity.com Team
Jan 21, 2022

Cleaning up the Linux kernel's 'Dependency Hell': This developer is proposing 2,200 commit changes

Cleaning off decades of code mess isn't for the faint of heart, but leading Linux kernel developer Ingo Molnar is giving it the old college try in the Linux kernel. The result will make it easier and quicker than ever to make improvements, patches, and add features to Linux.

LinuxSecurity.com Team
Jan 05, 2022

Intel Is Bringing A Feature Upgrade To Linux That Will Make Windows Users Jealous

Intel is bringing a feature upgrade to Linux that will make Windows users jealous. "The upcoming “pfr_update” driver is set to be introduced in Linux kernel 5.17. Sources say it appears to be designed for system firmware updates in cases of critical bugs or security issues, allowing server administrators to patch their hardware without downtime."

LinuxSecurity.com Team
Jan 03, 2022

Security Projects - Page 7.75

CoCo VMs Will Now Panic If RdRand Is Broken in Linux 6.9

New GitHub Actions Enhancements Boost Security & Power

Tails 6.1 Released with Security, User Experience Enhancements