Multiple security issues have been found in Iceweasel, Debian's version
of the Mozilla Firefox web browser: Multiple memory safety errors,
use-after-frees and other implementation errors may lead to the
execution of arbitrary code or denial of service. This update also
addresses a vulnerability in DHE key processing commonly known as
the LogJam vulnerability.
Johan Olofsson discovered an authentication bypass vulnerability in
Stunnel, a program designed to work as an universal SSL tunnel for
network daemons. When Stunnel in server mode is used with the redirect
option and certificate-based authentication is enabled with verify = 2
or higher, then only the initial connection is redirected to the hosts
specified with redirect. This allows a remote attacker to bypass
It was discovered that the Jackrabbit WebDAV bundle was susceptible to a
XXE/XEE attack. When processing a WebDAV request body containing XML,
the XML parser could be instructed to read content from network
resources accessible to the host, identified by URI schemes such as
http(s) or file. Depending on the WebDAV request, this could not
only be used to trigger internal network requests, but might also be
used to insert said content into the request, potentially exposing it to
the attacker and others.
Russian manufacturer Yota, well known for its Yotaphone dual screen phones, has announced that its next devices will no longer operate using Android but Sailfish, an alternative developed by former Nokia engineers at Jolla.
Interesting, if not a bit of an odd decision. One has to wonder what prompted this decision, because even though I like Sailfish for what it represents, it's far from a true alternative to Android or iOS. Maybe Yota knows something about Sailfish 2.0 we don't?
At the 1989 Consumer Electronics Show in Las Vegas, Nintendo of America's then-chairman Howard Lincoln took the stage to reveal some unexpected news: the company was partnering with European electronics firm Philips to make a CD-ROM-based games console. While the announcement took everyone in the audience by surprise, Sony engineer Ken Kutaragi was the most shocked of all. Just the night before, he and several Sony executives had been demonstrating a product developed in partnership with Nintendo. It was to be the world's first hybrid console, featuring an SNES cartridge slot and a CD drive, with both formats available to game developers. That product, called "Play Station" (with a space), would never see the light of day.
Industry lore suggests that only 200 of the Play Station consoles were ever produced, and hardly anyone has actually seen one of the fabled consoles in the flesh. However, pictures of the legendary original Play Station surfaced on reddit yesterday, showing the hybrid console in all its grey and yellowed-plastic glory.
Absolutely glorious. I could look at the pictures for hours.
Recently there has a been a lot of debate wether Safari is the new IE, or Apple simply is building a user-centric web, but I think that removes focus from the real problem.
The problem isn't Safari. It's a somewhat modern browser that in the eyes of some might lack some important features, but overall is still pretty good and modern.
The real problem is Apple's lack of browser-choice in iOS, and that's a problem for several reasons.
When Apple allows other browsers (not just wrappers!), email clients, mapping services, etc. to be set as default by iOS users, we're going to see a whole bunch of Google iPhones. I'm pretty sure Apple is not looking forward to that as of yet.
Maybe later, when Apple Maps stops being a joke, Mail.app doesn't choke when it's displaying more than 3 emails, and Safari stops sucking.
The developers of Parsix GNU/Linux, a desktop oriented Debian-based distribution, have announced the availability of a new development release. The new release offers users an updated kernel, experimental UEFI support and the GNOME 3.16 desktop. "Parsix GNU/Linux 8.0 (code name Mumble) brings stable GNOME 3.16 desktop environment, a....
The 4MLinux project has announced a new release of the independent Linux distribution. The latest release, 4MLinux 13.0, ships with the GNU Compiler Collection 5 and offers miscellaneous desktop improvements. "The status of the 4MLinux 13.0 series has been changed to S. Major changes in the core of....
David Purse has announced the availability of the beta release of Simplicity Linux 15.7, a lightweight Puppy-based distribution for netbooks and desktops. Due to unresolved issues, the "Desktop" edition is only available in a 32-bit build for now. From the release announcement: "Simplicity Linux 15.7 beta is now....