The H Week - OpenSolaris Governance Board resigns, DLL hijacking spreads
In the past week, The H reported that the OpenSolaris Governance Board resigned, more Windows applications were found to be vulnerable to DLL hijacking, Ubuntu got a technical architect, Fedora 14 alpha arrived and Zurich Insurance was fined £2.28m for losing its customers' private data
Featured
This week, The H featured a new edition of the Kernel Log on the arrival of the latest X Server, Radeon Drivers and Stable kernels and all the latest news, in detail, from the world of Linux development. Richard Hillesley took an in-depth look at the history behind the GNU Compiler Collection (GCC) and how it has helped make free software cheaper to develop. September's open source and security community events in the UK were listed in The H's Community Calendar.
- Kernel Log: New X Server, 3D drivers for Radeon 5000 and new stable kernels
- GCC - 'We make free software affordable'
- The H Community Calendar - September 2010
Security
Microsoft confirmed the existence of the DLL hijacking vulnerability as the list of affected applications increased, IBM's latest X-Force report confirmed that the number of unpatched critical vulnerabilities is on the rise and the US Deputy Secretary of Defense confirmed a 2008 attack on military computers via a USB flash drive.
- Microsoft warns of DLL vulnerability in applications
- Scope of DLL security problem widens - Update
- Number of critical, but unpatched, vulnerabilities is rising
- US Deputy Secretary of Defense confirms virus attack
The H reported that the WPA key used by German Telekom's popular Speedport routers are easily discovered, police confiscated hardware belonging to VPN provider Perfect Privacy, Microsoft changed the license on its process for developing secure software and Zurich Insurance was fined £2.28 million for losing the details of 46,000 of its customers.
- WPA key of Speedport routers too simple
- Police confiscate hardware from VPN provider
- Microsoft's Security Development Lifecycle under Creative Commons License
- £2.28 million fine for Zurich Insurance's data loss
Security Alerts
- Microsoft warns of DLL vulnerability in applications
- Apple releases Security Update for Mac OS X
- Adobe patch 18 critical holes in Shockwave Player
- VLC Media Player 1.1.4 fixes Windows DLL vulnerability
Open Source
The OpenSolaris Governance Board (OGB) resigned while Nexenta announced that its OpenSolaris based NexentaStor software is now pre-certified to work with Supermicros's Super Storage Bridge Bay. Allison Randal was appointed as the Technical Architect of Ubuntu at Canonical by Ubuntu founder Mark Shuttleworth and the MPEG LA appeared to respond to VP8 by announcing an permanent end to royalties for free H.264 internet streaming.
- OpenSolaris Governance Board resigns
- NexentaStor certified for SuperMicro hardware
- Allison Randal appointed Technical Architect of Ubuntu
- MPEG LA extends fee free use of H.264
The first pre-release version of Fedora 14 arrived this week and glibc is finally free of a 25 year old license restriction thanks to a Fedora engineer. SpringSource released RabbitMQ 2.0.0 and announced a RabbitMQ Plug-in for the Grails web application framework. The 2011 FOSDEM conference and the Ubuntu 11.04 Developer Summit were announced.
- First pre-release version of Fedora 14
- Glibc finally free software
- RabbitMQ plugs into Grails
- RabbitMQ 2.0.0 released
- FOSDEM 2011 dates confirmed
- Ubuntu 11.04 Developer Summit announced
It was confirmed that Larry Ellison would be presenting the opening keynote at JavaOne, Motorola bought open source Cappuccino web framework maker 280 North and Google wrapped up its sixth annual Summer of Code event. InfoWorld presented its yearly Bossie (Best Open Source Software) Awards, Novell announced a decline in its quarterly revenues and profits, and Red Hat outlined its future cloud strategy.
- JavaOne: Larry Ellison to chart Java future
- Motorola buys Cappuccino maker
- Google's 6th Summer of Code wraps up
- Best Open Source Software Awards 2010
- Novell sees decline in revenues and profits
- Red Hat: New cloud strategy
Open Source Releases
- Matterhorn: Open source lecture recording tool
- Mozilla releases fourth Firefox 4 beta
- Mozilla fires up three new APIs in Jetpack SDK 0.7
- Open source media Centre Boxee adds Movie Library
- Inkscape 0.48 lined up and released
- Parted Magic 5.3 improves memory usage
- Miranda IM v0.9.0 messaging client released
- Gnash 0.8.8 GNU Flash player released
- WordPress for Android adds new comment feature
- digiKam 1.4.0 released
- OpenSSH 5.6 arrives
- Python 2.6.6 released
- Eucalyptus 2.0 to offer improved scalability
- Google open source Acre, a server-side JavaScript application platform
- Zenwalk Live 6.4 released
- Open source media Centre Boxee adds Movie Library
- Rails 3.0 approaches with RC2
- Vyatta 6.1 now IPv6 certified
- Ruboto: Android App development with Ruby
- Google updates Chrome Dev channel to version 7
- Camino 2.0.4 addresses critical security vulnerabilities
To see all last week's news see The H's last seven days of news and to keep up with The H, subscribe to the RSS feed, or follow honlinenews on Twitter. You can follow The H's own tweeting on Twitter as honline.
(crve)