Feed aggregator

OpenStack creates a structure for managing change without a benevolent dictator

News.Debuntu.Org - Fri, 07/25/2014 - 20:00

O'Reilly Radar: Can education and peer review keep a huge open source project on track?

Bookmark/Search this post with:
Categories: Network

CVE-2014-5103

News.Debuntu.Org - Fri, 07/25/2014 - 19:55

Cross-site scripting (XSS) vulnerability in ZOHO ManageEngine EventLog Analyzer 9 build 9000 allows remote attackers to inject arbitrary web script or HTML via the j_username parameter to event/j_security_check.

Bookmark/Search this post with:
Categories: Network

CVE-2014-5102

News.Debuntu.Org - Fri, 07/25/2014 - 19:55

SQL injection vulnerability in vBulletin 5.0.4 through 5.1.3 Alpha 5 allows remote attackers to execute arbitrary SQL commands via the criteria[startswith] parameter to ajax/render/memberlist_items.

Bookmark/Search this post with:
Categories: Network

CVE-2014-5101

News.Debuntu.Org - Fri, 07/25/2014 - 19:55

Multiple cross-site scripting (XSS) vulnerabilities in WeBid 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) TPL_name, (2) TPL_nick, (3) TPL_email, (4) TPL_year, (5) TPL_address, (6) TPL_city, (7) TPL_prov, (8) TPL_zip, (9) TPL_phone, (10) TPL_pp_email, (11) TPL_authnet_id, (12) TPL_authnet_pass, (13) TPL_worldpay_id, (14) TPL_toocheckout_id, or (15) TPL_moneybookers_email in a first action to register.php or the (16) username parameter in a login action to user_login.php.

Bookmark/Search this post with:
Categories: Network

CVE-2014-5100

News.Debuntu.Org - Fri, 07/25/2014 - 19:55

Multiple cross-site request forgery (CSRF) vulnerabilities in Omeka before 2.2.1 allow remote attackers to hijack the authentication of administrators for requests that (1) add a new super user account via a request to admin/users/add, (2) insert cross-site scripting (XSS) sequences via the api_key_label parameter to admin/users/api-keys/1, or (3) disable file validation via a request to admin/settings/edit-security.

Bookmark/Search this post with:
Categories: Network

CVE-2014-5027

News.Debuntu.Org - Fri, 07/25/2014 - 19:55

Cross-site scripting (XSS) vulnerability in Review Board 1.7.x before 1.7.27 and 2.0.x before 2.0.4 allows remote attackers to inject arbitrary web script or HTML via a query parameter to a diff fragment page.

Bookmark/Search this post with:
Categories: Network

CVE-2014-2227

News.Debuntu.Org - Fri, 07/25/2014 - 19:55

The default Flash cross-domain policy (crossdomain.xml) in Ubiquiti Networks UniFi Video (formerly AirVision aka AirVision Controller) before 3.0.1 does not restrict access to the application, which allows remote attackers to bypass the Same Origin Policy via a crafted SWF file.

Bookmark/Search this post with:
Categories: Network

A New Video Has Us Real Excited About The New UT For Linux

News.Debuntu.Org - Fri, 07/25/2014 - 19:50

Epic Games has posted another video about their upcoming free Unreal Tournament game that is natively supporting Linux...

Epic Games has posted another video about their upcoming free Unreal Tournament game that is natively supporting Linux...
Read more at Phoronix

Bookmark/Search this post with:
Categories: Network

Open Source and the Challenge of Making Money

News.Debuntu.Org - Fri, 07/25/2014 - 19:00

New York Times: Remember how the open source software movement was supposed to be like Woodstock, with everybody sharing and everything free?

Bookmark/Search this post with:
Categories: Network

The first stable CoreOS release

News.Debuntu.Org - Fri, 07/25/2014 - 18:52

The CoreOS developers have announced the release of
version 367.1.0 of the CoreOS distribution; this is the first version
deemed to be stable and ready for production. "Please note: The
stable release is not including etcd and fleet as stable, this release is
only targeted at the base OS and Docker 1.0. etcd/fleet stable support will
be in subsequent releases."
LWN looked at CoreOS last April.

Bookmark/Search this post with:
Categories: Network

Moving to LibreOffice saves Toulouse 1 million

News.Debuntu.Org - Fri, 07/25/2014 - 18:00

OpenSource Observatory: Toulouse, France's fourth largest city, has saved 1 million euro by migrating all its desktops to LibreOffice, an open source suite of office productivity tools.

Bookmark/Search this post with:
Categories: Network

Interview with Nathan Willis, GUADEC Keynote Speaker (GNOME News)

News.Debuntu.Org - Fri, 07/25/2014 - 17:42

LWN editor Nathan Willis is giving a keynote talk at the upcoming GUADEC (GNOME Users and Developers European Conference) and was interviewed by GNOME News. Willis's talk is titled "Should We Teach The Robot To Kill" and will look at free software and the automotive industry. 

Bookmark/Search this post with:

read more

Categories: Network

Interview with Nathan Willis, GUADEC Keynote Speaker (GNOME News)

News.Debuntu.Org - Fri, 07/25/2014 - 17:42

LWN editor Nathan Willis is giving a keynote talk at the upcoming GUADEC (GNOME Users and Developers European Conference) and was interviewed by GNOME News. Willis's talk is titled "Should We Teach The Robot To Kill" and will look at free software and the automotive industry.

Bookmark/Search this post with:

read more

Categories: Network

First CoreOS Stable Release

News.Debuntu.Org - Fri, 07/25/2014 - 17:11

CoreOS Blog: Starting today, you can begin running CoreOS in production. 

First off, Happy SysAdmin Day. We think we have a pretty good SysAdmin surprise in store for you today as we are announcing the CoreOS stable release channel. Starting today, you can begin running CoreOS in production. This version is the most tested, secure and reliable version available for users wanting to run CoreOS. This is a huge milestone for us. Since our first alpha release in August 2013:
 

Bookmark/Search this post with:

read more

Categories: Network

How open source launched my small business

News.Debuntu.Org - Fri, 07/25/2014 - 17:00

OpenSource.com: Open source hardware has truly changed my life. It allowed me to launch my own business.

Bookmark/Search this post with:
Categories: Network

Kügler: Plasma’s Road to Wayland

News.Debuntu.Org - Fri, 07/25/2014 - 15:34

On his blog, Sebastian Kügler looks at what's left to be done for KDE's Plasma desktop to support Wayland. He discusses why the project cares about Wayland, what it means to support Wayland, the current status, the strategy for further work, and how interested folks can get involved.
"One of the important topics which we have (kind of) excluded from Plasma’s recent 5.0 release is support for Wayland.

Bookmark/Search this post with:

read more

Categories: Network

Raspberry Pi-based signage player sips 7 Watts

News.Debuntu.Org - Fri, 07/25/2014 - 15:00

 LinuxGizmos: The Pi Media Player is one of the most power-efficient signage players on the market

Bookmark/Search this post with:
Categories: Network

Bugcrowd Seeks to Streamline Reporting and Handling of Bugs

News.Debuntu.Org - Fri, 07/25/2014 - 14:55

"All software contains security flaws," touts the homepage of Bugcrowd, a new site that seeks to streamline the way flaws are reported by enforcing crowdsourced "responsible disclosure" policies. 

Bookmark/Search this post with:

read more

Categories: Network

Security updates for Friday

News.Debuntu.Org - Fri, 07/25/2014 - 14:45

CentOS has updated kernel (C7; C6; C5: two
vulnerabilities) and qemu-kvm (C7: many vulnerabilities).

Debian has updated apache2 (three
vulnerabilities) and transmission (code execution).

Fedora has updated httpd (F20:
multiple vulnerabilit

Bookmark/Search this post with:

read more

Categories: Network

How To Install ownCloud 7 On Ubuntu 14.04

News.Debuntu.Org - Fri, 07/25/2014 - 14:39

How To Install ownCloud 7 On Ubuntu 14.04
This document describes how to install and configure ownCloud 7 on Ubuntu 14.04. I will also connect to the ownCloud Server's data with another Ubuntu 14.04 Desktop and a Windows 7 machine. ownCloud provides access to your data through a web interface or WebDAV while providing a platform to easily view, sync and share across devices—all under your control. ownCloud’s open architecture is extensible via a simple but powerful API for applications and plugins and works with any storage.

Bookmark/Search this post with:
Categories: Network
Syndicate content