Francisco Alonso of Red Hat Product Security found an issue in the file
utility, whose code is embedded in PHP, a general-purpose scripting
language. When checking ELF files, note headers are incorrectly
checked, thus potentially allowing attackers to cause a denial of
service (out-of-bounds read and application crash) by supplying a
specially crafted ELF file.
Google risks losing its spot as the default search provider in Apple's Safari browser next year, according to a report from The Information. The latest extension of a deal that's put Google Search in the hands of iPhone owners since 2007 is set to expire in 2015, and Mountain View rivals Microsoft and Yahoo are already making a case for change with Apple's leadership. Per the report, each company has pitched Apple SVP Eddy Cue on the idea of replacing Google as the default iOS search provider; Microsoft wants Bing to be the default option out of the box, and Yahoo is vying for the same spot.
This will be an interesting claim of Apple's claim that they care about consumers. If they renew the deal, they place their customer's interests first, because their customers massively prefer Google Search. However, if they ditch Google and replace it with some inferior nonsense like Bing or Yahoo, they care more about their personal vendetta than their customers' best interests. If they go the privacy angle, switching to Bing or Yahoo is even more laughable, since those companies track just as much as Google does.
If Apple opts for DDG as default - well, then they earn some respect.
TempleOS is more than an exercise in retro computing, or a hobbyist's space for programming close to the bare metal. It's the brainchild - perhaps the life's work - of 44-year-old Terry Davis, the founder and sole employee of Trivial Solutions. For more than a decade Davis has worked on it; today, TempleOS is 121,176 lines of code, which puts it on par with Photoshop 1.0. (By comparison, Windows 7, a full-fledged modern operating system designed to be everything to everyone, filled with decades of cruft, is âabout 40 million lines.)
If you read just one article today, make sure it's this one.
The FreeBSD Foundation published a report yesterday on the status of FreeBSD running on 64-bit ARM processors. Work to port FreeBSD to the 64-bit ARM architecture has been progressing quickly and it is now possible to boot a FreeBSD installation into single user mode on the young architecture.
The kernel bring-up portion of the project is nearing completion; FreeBSD/arm64 boots to single-user mode on ARM's reference simulator. Work is underway on the remaining kernel drivers, and on userland support. This project's overall goal is to bring FreeBSD/arm64 to a Tier-1 status, including release media and prebuilt package sets. More information about the arm64 port can be found on the FreeBSD wiki.
Justin Sherrill has announced the release of DragonFly BSD 4.0.1, the first stable 4.0 build of the project's UNIX-like operating system created in 2003 by Matthew Dillon as a fork of FreeBSD 4.8: "Version 4.0.1 released 25 November 2014. Version 4 of DragonFly brings Haswell graphics support, 3D....
Ferdinand Thommes has announced the release of siduction 14.1.0, a set of Debian-based desktop Linux distributions with separate Cinnamon, GNOME, KDE, LXDE, LXQt and Xfce editions: "We are very happy to present the final release of siduction 2014.1 'Indian Summer'. siduction is a distribution based on Debian’s unstable....
This week in DistroWatch Weekly: Feature: Observing Scientific Linux 7.0 News: Debian votes on init coupling, Ubuntu MATE combines classic desktop with Ubuntu packages, Mageia 3 approaches end of life, FreeBSD Foundation receives generous donation, Linux Voice releases first issue for free download Questions and answers: Blocking network....