The H Week - Malware examined, Monoculture ended and Linux 2.6.35's graphics

In the last week, The H has looked at forensic analysis of malware, full analysis of the graphics in the next Linux kernel, the break down of a Microsoft monoculture, the latest Python release, the Ubuntu font in beta, legal moves in the European and Swiss courts, shenanigans in the Apple App Store, Firefox 4's beta début and much more...

Featured

A packed week of features on The H included the latest episode of CSI:Internet The image of death, all the background information from the recent Red Hat Summit and the latest Kernel Log on what's coming in Linux 2.6.35 both from Thorsten Leemhuis, and Glyn Moody looked at how the one of the largest Microsoft monocultures in the world has just been unlocked.

• CSI:Internet - The image of death
• Red Hat Summit and JBoss World 2010: Background on future versions
• Kernel Log: Coming in 2.6.35 (Part 1) - Graphics
• South Korea: Super fast, and finally free

Open Source

Ubuntu's message of the day was "There's a privilege escalation vulnerability in the message of the day", Python 2.7 arrived for Python developers who don't want to go to Python 3 just yet, and five different stable Linux kernels arrived. Firefox 4 beta 1 made its official début, developers were unhappy with the Android Market and a new cross platform music player called MiniTunes appeared. Canonical started beta testing the "Ubuntu Font" and added "Opinion" as a new bug status to Launchpad. Open source vendors lost in the Swiss courts over their challenge to an untendered purchase of Microsoft software, MySQL founder Monty Widenius appealed the Oracle ruling at the European Commission and, in the case that just won't go away, SCO launched yet another appeal. There were release candidates for FreeBSD 8.1, KDE 4.5 and Ruby 1.9.2 and new releases of IPFire, Mandriva Linux, PCLinuxOS, WordPress for Android, Symbian^3's PDK, Notepad++ and MeeGo for Netbooks.

• Ubuntu closes root hole
• A flood of new, stable, Linux kernels
• Python 2.7 released
• MySQL founder seeks to challenge Oracle's acquisition of Sun
• Minitunes released for Mac OS X and Linux
• Developers criticise Google's Android Market
• Mozilla releases first Firefox 4 beta
• Canonical introduce new "Opinion" bug status to Launchpad
• EMC takes over Greenplum
• Open source vendors lose Swiss Federal Administrative Tribunal case
• Canonical start closed beta test of "The Ubuntu Font"
• SCO appeals against Stewart ruling
• Alfresco gets an extensions incubator

Open Source Releases

• IPFire open source firewall updated
• Mandriva Linux 2010.1 Spring released
• FreeBSD 8.1 RC2 arrives
• Shotwell 0.6.1 adds basic support for RAW images
• Ruby 1.9.2 approaches with release candidate
• Notepad++ 5.7 released from a new web host
• Version 1.3 of WordPress for Android adds stats
• Platform kit for Symbian S^3 goes 100 per cent open source
• PCLinuxOS quarterly ISO updates released
• MeeGo 1.0 for netbooks updated
• Final KDE SC 4.5 release candidate arrives

Security

Odd goings on at Apple's App Store led to a vendor being ejected and cross site scripting attacks latched onto YouTube comments. Chrome 5 had more holes closed by Google and a debate over full disclosure or no disclosure began as security vendors started informing only their customers of vulnerabilities they had found. Adobe's fixes for embedded scripts in Reader were found to be wanting and Skype's encryption, or at least a part of it, was revealed by reverse engineering. Pirate Bay users were all at sea when user credentials were leaked and Microsoft said it'll have a fix for Windows Help holes next week.

• Strange goings on at Apple's App Store
• Google fixes cross-site scripting vulnerability in YouTube comments
• Adobe's protection against embedded scripts incomplete
• Microsoft vulnerabilities: full disclosure and no disclosure
• Apple ejects vendor following App Store security problems
• Security expert once more threatened with arrest for giving talk
• Skype's encryption procedure partly exposed
• The Pirate Bay: 4 million user credentials overboard
• WIndows Support Center patch due Tuesday

Security Alerts

• Google closes vulnerabilities in Chrome 5
• Ubuntu closes root hole

To see all last week's news see The H's last seven days of news and to keep up with The H, subscribe to the RSS feed, or follow honlinenews on Twitter. You can follow The H's own tweeting on Twitter as honline.

(djwm)