Outils pour utilisateurs

Outils du site


issue146:actus

Ceci est une ancienne révision du document !


Table des matières

1

openSUSE Leap 15.1 Is Here: Offers Full Linux Experience On Raspberry Pi The open source company SUSE is known for its commercial SUSE Linux Enterprise offerings for desktop and server users. The company also sponsors a free and open source community distribution known as openSUSE, which is widely popular across the world. openSUSE further offers two releases: Leap follows the fixed release model and Tumbleweed follows the rolling release model. In this article, I’m going to tell you about the latest openSUSE Leap 15.1 stable release that’s based on SUSE Linux Enterprise 15 Service Pack 1. The official announcement blog post mentions that Leap 15.1 comes with many new innovations that benefit the overall performance, security, and basic usage.

openSUSE Leap 15.01 est arrivé : elle offre une expérience Linux complète sur un Raspberry Pi

La société Open Source SUSE est connue pour ses distributions commerciales SUSE Linux Enterprise pour les utilisateurs d’ordinateurs de bureau et de serveurs. La société sponsorise aussi une distribution communautaire libre et Open Source, appelée openSUSE qui est très populaire partout au monde.

De plus, openSUSE propose deux distributions : Leap suit le modèle de lancement défini et Tumbleweed suit le modèle de mise à jour en continu. Dans cet article, je vous présenterai la dernière publication stable d’openSUSE Leap 15.1, basée sur SUSE Linux Enterprise 15 Service Pack 1.

Le billet de blog contenant l’annonce officielle indique que Leap 15.1 arrive avec beaucoup nouvelles innovations qui profitent à la performance globale, la sécurité et l’utilisation de base.

Starting with the desktop environment, Leap 15.1 lets you choose multiple desktop environments like KDE, GNOME, and Xfce. The specific options available with Leap 15.1 are KDE Plasma 15.2 and GNOME 3.26. The distro also ships with an entirely new graphics stack. However, the new release is still powered by Linux kernel 4.12 but it contains the much-needed backporting from 4.19. You also get better support for AMD Vega CPUs and other hardware. The blog post also mentions that openSUSE Leap 15.1 for ARM64 is the first multi-purpose OS that lets you enjoy a complete standard Linux desktop experience on Raspberry Pi. So what does it mean? It means that the standard Leap ISO image can be directly installed on the Pi. Source: https://fossbytes.com/opensuse-leap-15-1-linux-distro-raspberry-pi/ Pour commencer, Leap 15.1 vous permet de choisir de multiples environnement de bureau comme KDE, GNOME et Xfce. Les options spécifiques disponibles avec Leap 15.1 sont KDE Plasma 15.2 et GNOME 3.26.

La distrib. est livrée avec une pile graphique entièrement nouvelle. Toutefois, la nouvelle publication est toujours propulsé par le noyau Linux 4.12, mais celui-ci contient des rétroportages nécessaires de la 4.19. Vous avez également un meilleur support pour les processeurs Vega d’AMD et d’autres matériaux.

Le billet de blog précise aussi que openSUSE Leap 15.1 pour ARM64 est le premier OS polyvalent qui vous permet de bénéficier d’une expérience complète d’une distribution Linux Desktop sur un Raspberry Pi. Et cela signifie quoi ? Cela signifie que l’image ISO standard de Leap peut être installée directement sur le Pi.

Source: https://fossbytes.com/opensuse-leap-15-1-linux-distro-raspberry-pi/

OnlyOffice 10.0 released OnlyOffice is a comprehensive, free, web-based platform for enterprise collaboration, as well as office suite, project and document management. In addition, it contains a CRM and a mail aggregator. Collaboration platform functionality includes projects, milestones, tasks, reports, events, blogs, forums, bookmarks, wiki, instant messaging, and more. There is also a paid version with support. The new version 10.0 of OnlyOffice contains numerous improvements in all modules. New two-factor authentication through an authenticator app (such as Google Authenticator or Authy) allows for a more secure login process. New access rights to documents allow other users to write comments or fill in certain fields of forms. An integrated media player enables the playback of audio and video files directly in the cloud, supporting all major formats. The LDAP settings have been improved to allow automatic synchronization of users according to schedule and extended attribute mapping. The e-mail module has been completely updated. The management of folders, filters, transmission and read receipts has been improved and the mail server has been extended. The Projects module got intuitive tools for creating reports on Docbuilder, a tool for creating documents, and a separate page with the list of generated reports. The redesigned calendar also received new additional features, including synchronization via the CalDAV protocol and a “to-do” feature. Improvements in portal administration include a bulk import wizard and the optimization of user lists. Source: https://www.pro-linux.de/news/1/27098/onlyoffice-100-erschienen.html

OnlyOffice 10.0 est sortie

OnlyOffice est une plateforme complète, libre et gratuite basée sur le Web pour la collaboration entre entreprises, ainsi qu’une suite bureautique et un gestionnaire de projets et de documents. De plus, elle contient un CRM (Customer Relationship Management, un gestionnaire des rapports avec les clients) et un regroupeur de mails. Les fonctionnalités de la plateforme collaborative sont, notamment des projets, étapes clés, tâches, rapports, événements, blogs, forums, signets, wiki, messagerie instantanée, et plus. Une version payante existe avec du support.

La nouvelle version 10.0 de OnlyOffice comporte de nombreuses améliorations dans tous les modules. Une nouvelle authentification à deux facteurs grâce à une appli authentifiant (comme Google Authenticator ou Authy) permet un processus de connexion plus sûre. De nouveaux droits d’accès aux documents permettent à d’autres utilisateurs de faire des commentaires ou remplir certains champs d’un formulaire. Un lecteur de média intégré, qui prend en charge tous les formats majeurs, rend possible la lecture de fichiers audio et vidéo directement dans le nuage. Les réglages du LDAP (Lightweight Directory Access Protocol, un protocole léger d’accès à un répertoire) ont été améliorés afin de permettre la synchronisation automatique des utilisateurs selon le programme et le mappage étendu des attributs.

Le client mail a été entièrement mis à jour. La gestion des dossiers, filtres, transmission et des reçus de lecture a été améliorée et le serveur mail est étendu. Le module des Projets a reçu des outils intuitifs pour la création de rapports sur Docbuilder, un outil pour la création de documents et une page distincte pour la liste des rapports générés. L’agenda remanié bénéficie également de fonctionnalités nouvelles supplémentaires, y compris la synchronisation via le protocole CalDEV et une fonction Tâches. Les améliorations de l’administration de portails comprennent un assistant d’importation groupée et l’optimisation des listes d’utilisateurs.

Source: https://www.pro-linux.de/news/1/27098/onlyoffice-100-erschienen.html

Linux kernel supports HDR metadata for displays Some important features for displaying content in High Dynamic Range (HDR) have been added to the graphics branch of the Linux kernel. The now available patches ensure a correct handling of the meta data in the communication between the hardware of the computer and the display. In the branch now being used, the changes will be collected for future versions of the Linux kernel, so the changes are expected to be released with Linux 5.3 in mid-September. The work of the participating Intel developers was first publicly presented about two years ago. The team is also working on an HDR implementation in the Wayland protocol and a Compositor. As early as autumn 2016, Nvidia employee Andy Ritger described what changes to the Linux graphics stack would be necessary in order to display HDR under Linux with the free drivers. Specifically implemented with the now patched patches are the parsing of the HDR metadata of the monitors via EDID. Similarly, the patches are used to build the so-called HDR info frame for the transmission of the actual image via HDMI. The patches also ensure that different parts of the Linux kernel can handle and interpret the HDR metadata. Source: https://www.golem.de/news/intel-linux-kernel-unterstuetzt-hdr-metadaten-fuer-displays-1905-141527.html

Le noyau Linux prend en charge les métadonnées HDR pour l’affichage

Quelques fonctionnalités importantes pour l’affichage de contenu dans la HDR (High Dynamic Range, ou plage dynamique étendue) ont été ajoutées à la branche graphiques du noyau Linux. Les correctifs, qui sont actuellement disponibles, assurent le traitement correcte des métadonnées dans la communication entre le matériel de l’ordinateur et l’affichage.

Dans la branche utilisée actuellement, les modifications seront regroupées pour des versions futures du noyau Linux ; ainsi, on prévoit que ces modifications soient publiées dans Linux 5.3 à la mi septembre. Le travail des développeurs d’Intel participant a été présenté publiquement pour la première fois il y a environ deux ans. L’équipe travaille aussi sur une implémentation de la HDR dans le protocole Wayland et un Compositeur. Dès l’automne 2016, Andy Ritger, un employé chez Nvidia, a décrit les modifications qu’il faudrait apporter à la pile graphique de Linux afin de pouvoir afficher la HDR sous Linux avec des pilotes libres.

Implémentés spécifiquement avec les correctifs actuellement corrigés sont l’analyse des métadonnées de la HDR des écrans via EDID. De la même façon, les correctifs sont utilisés pour construire le soi-disant cadre des informations de la HDR pour la transmission de la véritable image via HDMI. De plus, les correctifs garantissent que les différentes parties du noyau Linux peuvent traiter et interpréter les métadonnées de la HDR.

Source: https://www.golem.de/news/intel-linux-kernel-unterstuetzt-hdr-metadaten-fuer-displays-1905-141527.html

2

Chinese military to replace Windows OS amid fears of US hacking Amidst an escalating trade war and political tensions with the US, Beijing officials have decided to develop a custom operating system that will replace the Windows OS on computers used by the Chinese military. The decision, while not made official through the government's normal press channels, was reported earlier this month by Canada-based military magazine Kanwa Asian Defence. Per the magazine, Chinese military officials won't be jumping ship from Windows to Linux but will develop a custom OS. Thanks to the Snowden, Shadow Brokers, and Vault7 leaks, Beijing officials are well aware of the US' hefty arsenal of hacking tools, available for anything from smart TVs to Linux servers, and from routers to common desktop operating systems, such as Windows and Mac.

L’armée chinoise va remplacer Windows OS par crainte de piratage américain

Au milieu d’une guerre commerciale croissante et de tensions politique avec les États-Unis, les fonctionnaires de Beijing ont décidé de développer un système d’exploitation personnalisé qui remplacera Windows OS sur les ordinateurs utilisés par l’armée chinoise.

La décision, bien que non rendu officiellement en se servant des canaux de presse normaux du gouvernement, a été rapporté plus tôt ce mois par un magazine militaire basé au Canada, Kanwa Asian Defence.

Selon le magazine, les fonctionnaires de l’armée chinoise ne vont pas quitter Windows pour Linux, mais développeront un OS personnalisé

Grâce à des fuites de Snowden, Shadow Brokers et Vault7, les fonctionnaires de Beijing connaissent bien l'arsenal lourd d’outils de piratage des États-Unis, disponibles pour n’importe quoi, de TV intelligents aux serveurs Linux et de routeurs aux systèmes d’exploitation standards pour les ordinateurs de bureau comme Windows et Mac.

Since these leaks have revealed that the US can hack into almost anything, the Chinese government's plan is to adopt a “security by obscurity” approach and run a custom operating system that will make it harder for foreign threat actors – mainly the US – to spy on Chinese military operations. The task of developing the new OS and replacing Windows will fall to a new “Internet Security Information Leadership Group,” as first reported by the Epoch Times, citing the May issue of the Kanwa Asian Defence magazine. Per the magazine, this new group answers directly to the Central Committee of the Chinese Communist Party (CCP), being separate from the rest of the military and intelligence apparatus. Source: https://www.zdnet.com/article/chinese-military-to-replace-windows-os-amid-fears-of-us-hacking/

Puisque ces fuites ont révélé que les É-U peuvent pirater presque tout, le projet du gouvernement chinois est d’adopter une approche de « la sécurité par l’obscurité » et feront tourner un système d’exploitation personnalisé qui rendra plus difficile pour des menaces étrangères – les É-U pour la plupart – d’espionner les opérations militaires chinoise.

Comme a rapporté initialement l’Epoch Times, citant le numéro de mai du magazine Kanwa Asian Defence, le développement du nouvel OS et le remplacement de Windows incomberont à un nouveau « Internet Security Information Leadership Group ».

D’après le magazine, ce nouveau groupe est directement sous la commande du Central Committee du Chinese Communist Party (CCP), étant distinct du reste de l’appareil militaire et de renseignement.

Source: https://www.zdnet.com/article/chinese-military-to-replace-windows-os-amid-fears-of-us-hacking/

BlackArch Linux 2019.06.01 released BlackArch Linux is a lightweight, Arch Linux-based distribution for ethical hacking, penetration testing and security researchers. BlackArch also follows the rolling release principle through its direct connection to Arch Linux repositories. Unlike similar distributions such as Kali Linux or Parrot OS BlackArch brings however no desktop environment, but relies on several lightweight window managers. The more than 2,200 tools that BlackArch offers can be installed individually or in groups. With the release of BlackArch Linux 2019.06.01, the developers provide fresh installation media, which in addition to Kernel 5.1.4 and updated packages, among other things offer around 150 new tools. The BlackArch installer has been upgraded to version 1.1.1. The Vim plugins have been updated and the jedi-vim plugin added to Vim's Jedi autocomplete library. The arch configuration files Xresources and Xdefaults have been renewed and added support for the terminal emulator rxvt-unicode. In addition, the menus of the window manager Awesome, Fluxbox and Openbox have been revised. All packages on the image have been run-time tested and the image cleaned up. BlackArch Linux can be used as a live distribution or permanently installed. A complete image including all tools with a size of 12 GB is available. Alternatively, a Netinstall image with 650 MByte is offered, which allows an individual compilation of the distribution. In addition, the developers offer a OVA image with 30 GB, which can be used with VirtualBox, VMware or Qemu. Source: https://www.pro-linux.de/news/1/27106/blackarch-linux-20190601-ver%C3%B6ffentlicht.html

Publication de BlackArch Linux 2019.06.01

Basée sur Arch Linux, BlackArch Linux est une distribution légère pour le piratage éthique, les tests de pénétration et les chercheurs en sécurité. Grâce à sa connexion directe aux dépôts d’Arch Linux, BlackArch suit le même modèle de mises à jour en continu. Contrairement à des distributions similaires comme Kali Linux ou Parrot OS, BlackArch n’apporte pas d’environnement de bureau, mais se fie à plusieurs gestionnaires de fenêtres légers. Les plus de 2 200 outils proposés par BlackArch peuvent être installés individuellement ou en groupe.

Avec la publication de BlackArch Linux 2019.06.01, les développeurs fournissent un nouveau média d’installation, qui, avec le noyau 5.1.4 et des paquets mis à jour, proposent environ 150 nouveaux outils. L’installeur de BlackArch est mis à niveau vers la version 1.1.1. Les greffons Vim sont mis à jour et le greffon jedi-vim est ajouté à la bibliothèque à complétion automatique Jedi de Vim. Les fichiers de configuration d’Arch, Xresources et Xdefaults sont renouvelés et du support de l’émulateur de terminal rxvt-unicode, ajouté. De plus, les menus de Awesome, Fluxbox et Openbox sont rafraîchis. Tous les paquets figurant dans l’image sont testés et l’image, nettoyée.

BlackARch Linux peut être utilisé comme distribution live ou installé de façon permanente. Une image complète avec tous les outils, faisant environ 12 Go est disponible. Autrement, une image Netinstall de 650 Mo est proposée et permet une compilation individuelle de la distribution. De plus, les développeurs offrent une image OVA de 3 Go qui peut être utilisée avec VirtualBox, VMware ou Qemu.

Source: https://www.pro-linux.de/news/1/27106/blackarch-linux-20190601-ver%C3%B6ffentlicht.html

Mageia 7 Linux distribution reaches release candidate (RC) status We recently learned that most Windows 10 users aren't even keeping the operating system up to date, choosing to forgo the often buggy feature releases. Yes, the majority of Windows 10 users are ruining a version that is over a year old! That is shocking stuff folks, and it truly speaks volumes about the negative public perception of Microsoft's operating system. When you factor in the people still on Windows 7 (and Vista and XP), things aren't looking too good for Windows. Thankfully, Linux is picking up the slack, offering an alternative to the much-maligned Windows 10. Amongst Ubuntu, Fedora, Chrome OS, and other distributions, computer users have no shortage of great operating systems these days. One very good, albeit less popular, Linux-based operating system is Mageia. It has a very strong community of knowledgeable users, making it a good choice for both Linux expert and beginners. Today, Mageia 7, the upcoming version of the OS, reaches a major milestone – release candidate status. tewart shares the significant updated packages below. kernel 5.1.5 rpm 4.14.2 dnf 4.2.6 Mesa 19.1 Plasma 5.15.4 GNOME 3.32 Xfce 4.12 Firefox 67 Chromium 73 LibreOffice 6.2.3 Source: https://betanews.com/2019/06/02/mageia-7-linux-rc-download/

La distribution Mageia 7 Linux atteint le statut de pré-publication (release candidate, RC)

Nous avons appris récemment que la plupart des utilisateurs de Windows 10 ne mettent pas le système d’exploitation à jour, choisissant de renoncer aux versions spéciales souvent remplies de bugs. Oui, la majorité des utilisateurs de Windows 10 exécutent une version qui a plus d’un an ! C’est scandaleux et en dit long sur la perception publique négative du système d’exploitation de Microsoft. Compte tenu du nombre de gens qui restent sous Windows 7 (et Vista et XP), les choses ne vont vraiment pas bien pour Windows.

Heureusement, Linux prend le relai en proposant une alternative à Windows 10 qui est tant critiqué. Parmi Ubuntu, Fedora, Chrome OS, et d’autres distributions, les utilisateurs d’ordinateur aujourd’hui ne manque pas de systèmes d’exploitation géniaux. Un très bon, quoique moins populaire système d’exploitation basé sur Linux est Mageia. Sa communauté d’utilisateurs bien informés est très forte, ce qui en fait un bon choix tant pour les experts Linux que pour les débutants. Aujourd’hui, Mageia 7, la prochaine version de l’OS, atteint une étape clé – le statut de pré-publication. Ci-dessous, Stewart annonce les paquets importants mis à jour :. noyau 5.1.5 rpm 4.14.2 dnf 4.2.6 Mesa 19.1 Plasma 5.15.4 GNOME 3.32 Xfce 4.12 Firefox 67 Chromium 73 LibreOffice 6.2.3

Source: https://betanews.com/2019/06/02/mageia-7-linux-rc-download/

3

System76 Ubuntu Linux-powered 'Gazelle' laptop reborn! Gets 9th Gen Intel Core i7 and NVIDIA GTX 16-series graphics System76 is a computer maker and seller that has long been selling laptops, desktops, and servers running a Linux-based operating system. For years, it only offered Ubuntu, but more recently, it began also offering its own Ubuntu-based operating system called “Pop!_OS.” This distribution has proven to be quite popular in the Linux community, as it builds upon the greatness of Ubuntu while also making it better. As great as Pop!_OS is, today, System76 makes a big announcement regarding hardware rather than software. To the delight of many consumers, the company is refreshing its popular “Gazelle” laptop. To be honest, calling it a refresh is a bit of an understatement. Actually, Gazelle has been reborn as an entirely new powerful beast. It comes with a 9th Gen Intel Core i7 by default, and you can choose between an NVIDIA GeForce GTX 1650 or 1660 Ti for graphics. There are two screen sizes available – 15.3-inch and 17.3-inch. Regardless of the display you opt for, the resolution will be 1080p. While pricing is unknown for now, we do have a good idea about availability. System76 promises it will go on sale in June 2019, and guess what? Tomorrow is the first day of June! In other words, we may only be waiting days or weeks for this bad-ass Linux laptop – not months. Source: https://betanews.com/2019/05/31/system76-gazelle-linux-laptop-14/

Goodbye Windows: Russian Military’s Astra Linux Adoption Moves Forward Just earlier this week, we reported regarding the Chinese Military’s plan to ditch the Windows operating system and adopt a new operating system. At the moment, there are no reports of a Linux-based or Unix-like OS being adopted to ditch the proprietary software. As per various reports, it seems that Russia is also acting swiftly to replace Windows with homegrown Astra Linux. It’s a Debian-based distribution that was originally launched by a company named RusBITech in 2008. Initially, RusBITech focused on the private sector but later on expanded to the local government bodies. To make sure that more Russian bodies adopt the operating system, Astra Linux also got certifications to handle “secret” information of the government. Coming back to the recent development, Astra Linux got the security clearance from the Russian Federal Service for Technical and Export Control (FSTEC) on April 17, 2019. As a result, the OS has got a “special importance” clearance to be used government information of the highest degree of secrecy. This step will reduce the time and financial costs of verifying the system integrity and security of the computer systems being used by the military, according to Astra Linux’s Roman Mylitsyn. Source: https://fossbytes.com/russian-military-astra-linux-adoption/

HiddenWasp: New Malware Targets Linux Machines To Control Them Remotely Unlike the Windows cybersecurity ecosystem, the threats concerning the Linux systems aren’t often discussed in much detail. The attacks either go undetected by the security mechanisms laid out by enterprises or they aren’t too severe to be reported widely by the security researchers. However, as pointed out by cybersecurity firm Intezer, malware with sophisticated evasion techniques, which often utilize the already available open source code, do appear on the horizon from time to time. One such recent malware discovered by the firm is HiddenWasp. What makes HiddenWasp pretty dangerous at the moment is the fact that it has a zero detection rate in all popular malware protection systems. The rootkit involved in the malware shares lots of similarities with the open source rootkit Azazel. It also shares parts of strings with ChinaZ malware, Adore-ng rootkit, and Mirai malware. Talking about the capabilities of this stealthy Linux malware, it can run commands on the terminal, execute files, download more scripts, etc. However, security researchers still don’t know the actual infection vector; they suspect that the malware was spread in systems already controlled by the hackers. So, it could be said that HiddenWasp is being used as a secondary payload. Source: https://fossbytes.com/linux-systems-hiddenwasp-malware-trojan/

4

Support for OpenSuse Leap 42.3 ends in June OpenSUSE Leap 42.3 was released on July 27, 2017, after a long development and discovery phase less than two years ago, and has received a number of security updates so far. However, users of the old version should consider migrating their systems to the new version of the product by the end of the month. As Markus Meissner announced on the mailing list, there are likely to be no more security updates and updates for OpenSuse Leap 42.3 from next month. The cessation of support is far behind the original plan. The latest update of the Leap 42 series should receive support by January 2019. This changed at the beginning of the year, as the parent company has committed itself to additional maintenance and security updates. Leap 42.3 is based on Suse Linux Enterprise Server 12 Service Pack 3, and Suse has agreed to release updates for Leap 42.3 through June 2019. Thus, the life cycle of the series has been extended to a total of 44 months. OpenSuse Leap 42.3 can also be upgraded to the latest version 15.1 of the distribution. All you have to do is just use the distribution-internal tools, such as “zypper dup”. Although the concept of the Leap series provides that the basis of the distribution between the individual sub-versions remains the same and only the desktop undergoes major changes in an update, but also a transition between two generations usually works fine with OpenSuse. Source: https://www.pro-linux.de/news/1/27122/support-f%C3%83%C2%BCr-opensuse-leap-423-endet-im-juni.html

Unity 3D: Editor for Linux officially announced Already since 2015 there is the Unity Editor in a version for Linux. However, this was never officially supported and was considered experimental. With the release of Unity 2019.1 on April 16, the announcement in the blog casually mentioned an official pre-release version of the editor for Linux. A few days ago, the announcement of the Linux version appeared in the developer's blog. It is still a preview version, which is offered for download via Unity Hub. The setup application downloaded there comes as AppImage on the hard disk. With full support, the developers expect the release of Unity 2019.3 in late fall. Until then, the experience of the users should be collected in the forum for the Linux version of the editor. The pre-release requires Unity 2019.1 and is available for free and paid licenses for the Ubuntu LTS editions 16.04 and 18.04 and for CentOS 7 for the x86-64 architecture. Developer support will be focussed on Gnome on X11 applications, Nvidia cards with proprietary drivers, and AMD GPUs with desktop mesa drivers without virtualization. The increasing use of the experimental Linux version by developers and the continued adoption of Unity 3d in non-gaming environments such as the film, automotive, transportation, and manufacturing industries prompted the company to launch the Linux version of the Unity Editor officially support. Unity 2018.4 LTS will also be available for release in the coming weeks, but does not support the preview version of the editor for Linux. Source: https://www.pro-linux.de/news/1/27120/unity-3d-editor-f%C3%BCr-linux-offiziell-angek%C3%BCndigt.html

Canonical Outs Linux Kernel Security Updates for All Supported Ubuntu Releases Available for Ubuntu 19.04 (Disco Dingo), Ubuntu 18.10 (Cosmic Cuttlefish), Ubuntu 18.04 LTS (Bionic Beaver), and Ubuntu 16.04 LTS (Xenial Xerus), the new security patches are here to fix several issues affecting the Linux kernels of these releases, especially a security vulnerability (CVE-2019-11191) that only affects the i386 (32-bit) kernels of Ubuntu 18.10, Ubuntu 18.04 LTS, and Ubuntu 16.04 LTS, as Ubuntu 19.10 and Ubuntu 19.04 are not affected. For Ubuntu 19.04 and Ubuntu 16.04 LTS, the new security update also fixes a null pointer dereference flaw (CVE-2019-11810) in Linux kernel's LSI Logic MegaRAID driver, which could let a local attacker to crash the system, as well as a race condition (CVE-2019-11815) discovered in Linux kernel's Reliable Datagram Sockets (RDS) protocol implementation, which could allow a local attacker to crash the system or execute arbitrary code. If you're using Ubuntu, you must update the kernel as soon as possible to patch these security issues. The new Linux kernel versions are linux-image 5.0.0-16.17 for Ubuntu 19.04, linux-image 4.18.0-21.22 for Ubuntu 18.10, linux-image 4.15.0-51.55 for Ubuntu 18.04 LTS, linux-image 4.4.0-150.176 for Ubuntu 16.04 LTS, linux-image 4.18.0-21.22~18.04.1 for Ubuntu 18.04.2 LTS, and linux-image 4.15.0-51.55~16.04.1 for Ubuntu 16.04.6 LTS. Source: https://news.softpedia.com/news/canonical-outs-linux-kernel-security-updates-for-all-supported-ubuntu-releases-526308.shtml

5

Zorin OS 15 Linux Distro Officially Released, Based on Ubuntu 18.04.2 LTS Derived from the software repositories of Ubuntu 18.04.2 LTS (Bionic Beaver) with the HWE (Hardware Enablement) kernel and graphics stack from Ubuntu 18.10 (Cosmic Cuttlefish), Zorin OS 15 is now available to celebrate almost 10 years since the first Zorin OS release hit the streets. Highlights of Zorin OS 15 include Zorin Connect, a new app that lets Android users sync their device's notifications with their personal computer, browse the photos from their phone or tablet, share files and URLs, reply to text messages, control media playback on their PCs, or even use it as a remote control. A new and refreshed look was given to Zorin OS 15 with a beautiful and welcoming desktop theme that adapts throughout the day, switching automatically between the Light and Dark modes, while also offering users no less than six color variants. The new desktop theme also comes with new animations for a complete experience. Zorin OS 15 also features support for touchscreens, Night Light to protect your eyes when you're working at night, the latest LibreOffice 6.2 office suite, support for Flatpak universal apps and the Flathub repository, a Do not disturb mode, and a totally revamped Settings app to make configuring Zorin OS a breeze. Among other noteworthy changes, we can mention Nvidia proprietary graphics drivers bundled in the live ISO image, support for color emoji, Mozilla Firefox as default web browser, new system font, support for Thunderbolt 3 devices, network captive portal detection, and experimental Wayland support. Source: https://news.softpedia.com/news/zorin-os-15-linux-distro-officially-released-based-on-ubuntu-18-04-2-lts-526309.shtml

PinePhone $149 Linux smartphone could support Ubuntu, Sailfish, Maemo, LuneOS and more The PinePhone is a cheap, Linux-ready smartphone that’s expected to ship in limited quantities later this year. It’s not exactly a high-power device by modern smartphone standards, but with an expected starting price of $149, it will be a lot more affordable than some of the other Linux phones on the horizon. It’s also starting to look like the PinePhone could be a very versatile device. Pine64 has been sending out development kits for a while, and it looks like developers are porting a number of GNU/Linux-based operating systems to the platform. Here are a few of the latest examples: PostmarketOS is , LuneOS an open source operating system based on weBOS, SailfishOS, Nemo Mobile with the Glacier UI, Sway, Maemo Leste In other words, there’s a good chance that by the time this phone ships to customers, you may have a variety of open source operating systems to choose from. While it’s unlikely that any of them will have as robust an ecosystem of mobile apps as Android or iOS at launch, this isn’t a device designed for people that just want a cheap Android phone. It’s a phone for open source enthusiasts who would prefer a mobile device that comes with free and open source software that can be customized, modified, or replaced. I’d be surprised if the experience wasn’t a bit buggy at launch, but after years of stops and starts, it looks like this could be the year we start to see smartphones ship that are truly designed to run GNU/Linux distributions. Source: https://liliputing.com/2019/06/pinephone-149-linux-smartphone-could-support-ubuntu-sailfish-maemo-luneos-and-more.html

Opensuse aspires to own organization It has long been clear that the Linux distribution Opensuse suffers from lack of active participation. Without the strong support of Suse, who sees Opensuse as the testing ground for the enterprise distribution Suse Enterprise Linux, the free Opensuse might not exist anymore. For the most part, Opensuse consists of the kernel and packages of Suse Enterprise Linux. But this dependence on Suse goes too far for some members of the community. At this year's Opensuse conference, Opensuse's board discussed how to create a structure independent of Suse. This was preceded by meetings of the board, as explained by a report on LWN. The discussion of the Opensuse conference is now available as a video recording. It's certainly not about becoming completely independent of Suse, because at the moment this is not possible. Rather, regardless of the financial benefits of Suse, parts of the board want to be in a position to accept donations and to use the revenue in the sense of distribution. Members of the community fear that Suse may give up his previous commitments to Opensuse, for example if the company is once again sold or floated. The previous relationship with Suse, however, is considered positive and should not be terminated by the community. The organization to be established, possibly as a foundation under German law, should nevertheless ensure a lower dependence on Suse and thus more future-proof. Which form the organization will ultimately adopt is still open. However, there are many supporters for their founding, and their voices are barely audible. However, Rich Brown, chair of the Opensuse board, says he is in no hurry and they can take their time to find the optimal solution. Source: https://www.pro-linux.de/news/1/27135/opensuse-strebt-eigene-organisation-an.html

6

Linux Command-Line Editors Vulnerable to High-Severity Bug A high-severity bug impacting two popular command-line text editing applications, Vim and Neovim, allow remote attackers to execute arbitrary OS commands. Security researcher Armin Razmjou warned that exploiting the bug is as easy as tricking a target into clicking on a specially crafted text file in either editor. Razmjou outlined his research and created a proof-of-concept (PoC) attack demonstrating how an adversary can compromise a Linux system via Vim or Neowim. He said Vim versions before 8.1.1365 and Neovim before 0.3.6 are vulnerable to arbitrary code execution. “[Outlined is] a real-life attack approach in which a reverse shell is launched once the user opens the file. To conceal the attack, the file will be immediately rewritten when opened. Also, the PoC uses terminal escape sequences to hide the modeline when the content is printed with cat. (cat -v reveals the actual content),” wrote Razmjou in a technical analysis of his research. Vim is a popular modal (insert, visual or command) text editor based on the vi editor, a screen-oriented text editor originally created for the Unix operating system. A modeline is a configuration line that shares settings data to a display server and communicates display settings data. Razmjou’s PoC is able to bypass modeline mitigations, which execute value expressions in a sandbox. That’s to prevent somebody from creating a trojan horse text file in modelines, the researcher said. Source: https://threatpost.com/linux-command-line-editors-high-severity-bug/145569/

KDE Plasma 5.16 Desktop Is Now Available for Kubuntu and Ubuntu 19.04 Users KDE Plasma 5.16 launched earlier today as the latest and most advanced version of the acclaimed graphical desktop environment for Linux-based operating systems, adding several new features and enhancements like a totally revamped notifications system, improved System Settings pages, and revamped login, logout, and lock screens. The KDE Plasma 5.16 release also brings better support for Wayland when using the Nvidia proprietary graphics drivers, improved networking, a much easier to use Plasma Discover graphical software manager, and a much-improved overall desktop experience with lots of polishing for themes, color schemes, widgets, and the panel. Users of the Kubuntu/Ubuntu 19.04 (Disco Dingo) operating system can now install the latest KDE Plasma 5.16 desktop environment from the Kubuntu Backports PPA repository. All you have to do is install the PPA repository and update your installation using the commands listed below in a terminal app, then reboot the system to complete the update. sudo add-apt-repository ppa:kubuntu-ppa/backports sudo apt update && sudo apt full-upgrade Please note that after installing the Kubuntu Backports PPA repository, you will continue to receive updates for the KDE Plasma 5.16 desktop environment as they are available upstream. Therefore, there won't be necessary to reinstall the backports PPA repository, just make sure you keep your system up to date. Source: https://news.softpedia.com/news/kde-plasma-5-16-desktop-is-now-available-for-kubuntu-and-ubuntu-19-04-users-526369.shtml

Debian 10 Buster-based Endless OS 3.6.0 Linux distribution now available When it comes to Linux, I prefer my distributions to be no-nonsense – Fedora is my favorite distro, for instance. Is Fedora boring? Yes, I suppose. But that is sort of why I like it. Look, I just want the damn operating system to take a backseat to my actual work. Fedora with GNOME allows me to focus on my tasks without getting in the way. Understandably though, some Linux users like to “distro hop” where they are constantly moving between distributions, always wondering if the grass is greener on the other side. And yeah, I get that – new is fun. People want excitement. Well, one distro called “Endless OS” has been causing quite the stir in the Linux community thanks to its Debian base and beautifully tweaked GNOME desktop environment. It truly feels like an operating system designed for those who grew up in the smartphone era. It's not radical, but it definitely has sort of a mobile feel without losing focus on functioning as a desktop OS. Today, Endless OS 3.6.0 sees release, and many Linux users are sure to be excited. It is based on the upcoming Debian 10, which is code-named “Buster.” In other words, the included packages are rather bleeding edge. Source: https://betanews.com/2019/06/12/debian-10-buster-endless-os-linux/

7

Matrix 1.0 and the Matrix.org Foundation The project for the communication protocol Matrix was started in 2014, now the developers report version 1.0. Matrix is ​​an open protocol and distributed communication network based on an open standard. The makers themselves see Matrix as a decentralized conversation memory rather than a messaging protocol. A message sent in Matrix will be replicated on all servers whose users participate in a particular conversation, similar to replicating commits between git repositories. There is no node in the chain of multiple servers involved in a conversation that allows control, or in the event of failure, the failure of the entire system and thus terminates the conversation. Recently, KDE Matrix has been the preferred communication platform for IRC and proprietary platforms such as Slack or Discord. According to the developers, with Matrix 1.0, the first fully stable version of the Matrix protocol and specification across all APIs is available - as is the reference implementation Synapse, which also achieves version 1.0 with the mapping of the full Matrix APIs. Matrix 1.0 is a consistent, self-contained, and secure version of the standard that should enable anyone to independently deploy production-ready matrix clients, servers, bots, and bridges. One of the highlights of Matrix 1.0 is the use of X.509 certificates to simplify and improve server-side trust. According to the developers, Matrix 1.0 does not mean that all planned or possible features in Matrix are now specified and implemented. Also, the reference server Synapse is by no means finished. Among other things, work is still needed here to reduce the RAM requirement. Matrix currently has features like editable news in development. Coinciding with the release of the stable version of Matrix, the Matrix.org Foundation has also been officially launched. Its creation is intended to ensure that Matrix's future is guided by a neutral, not-for-profit entity for the benefit of all in the Matrix ecosystem. Source: https://www.pro-linux.de/news/1/27145/matrix-10-und-die-matrixorg-foundation-vorgestellt.html

System76's supercharged Linux-powered Gazelle laptop is finally available Today is Thursday, which is one of the worst days of the week. I mean, I suppose it is better than Monday, Tuesday, and Wednesday, but it can't hold a candle to Friday, Saturday, or Sunday – otherwise known as the weekend. So, yeah, Thursday is typically not something to get excited about. With all of that said, today is a pretty special Thursday for the Linux community. Why? Well, the System76 Gazelle laptop is finally available! This is a laptop we reported on last month, and at the time, System76 only promised it would be available in June 2019. Well, June 13 of 2019 is apparently the exact day it goes on sale, as you can get it now. What makes this laptop so special (besides its pre-installed Linux-based operating system), is its impressive specifications. You see, System76 has supercharged it with a 9th generation Intel Core i7 Processor (9750H) and NVIDIA GTX 16-Series Graphics. It even has something the pricey MacBook Pro doesn't – the ability to be configured with up to 64GB. Yeah, Apple's laptop can only have a maximum of 32GB. Sad.The Gazelle can be configured with additional top specs, such as an NVMe SSD up to 2TB. Actually, it can accommodate two such drives, so you can theoretically have 4TB of speedy storage! You can opt for either a 15 or 17-inch display, both of which have a 1080p resolution. Regardless of screen size, you get a full keyboard too, meaning it has a number pad on the right. And yes, that keyboard is backlit – multi-color, even. Ready to buy your own Gazelle and support the Linux community? You can configure your own with either Ubuntu or Pop!_OS pre-installed. Pricing starts at $1099, but of course, the cost will increase as you improve specs. Source: https://betanews.com/2019/06/13/system76-linux-gazelle-laptop/

Atari VCS Linux-Powered Gaming Console Is Now Available For Pre-Order for $249 Atari issued a press release on Tuesday to announce that after many trials and tribulations it finally has a release date for the official launch of its Atari VCS retro gaming console, along with a release date for those who backed the project during its early days, as well as information about the first key retail partnerships that will have the console ready for pre-order starting today. Therefore, the first retails to offer the upcoming Atari VCS for pre-order will be Walmart and GameStop, but customers will also be able to pre-order the retro gaming console directly from Atari's online shop. While there will be several bundles available for pre-order, the console will cost $249.99 USD for the Atari VCS 400 Onyx (4GB) model, and the price can go up to $389.99 USD for one of the Atari VCS 800 (8GB) variants. There are also good news for early backers who pre-order the Atari VCS gaming console last year during the Indiegogo crowdfunding campaign, as Atari said that they will receive the device as soon as this December. For anyone else that will be pre-ordering the console starting today until its official launch next year, shipping will be kicking off in March 2020. The Atari VCS retro gaming console will feature more than 100 of all-time favorite arcade titles, such as Asteroids, Breakout, Centipede, Gravitar, Missile Command, and Yars' Revenge, as well as a bunch of other new Atari games like Tempest 4000. It comes with the Atari VCS Store as well to allow gamers to buy even more titles and other content that will be available. Source: https://news.softpedia.com/news/atari-vcs-linux-powered-gaming-console-is-now-available-for-pre-order-for-249-526387.shtml

8

Lenovo shipping Ubuntu Linux on 2019 ThinkPad P-series models Lenovo's newly-announced 2019 ThinkPad P-series mobile workstations can be purchased with Ubuntu, according to the ordering page on Lenovo's website. ThinkPads have often been the laptop of choice for Linux users, as Lenovo historically does certify ThinkPad models for Linux use, though prior to this change, buyers were stuck paying the Windows tax for the unwanted bundled license of Windows. Applicable models can be configured with Ubuntu 18.04 LTS, and will be available this month. Though not offered as a preloadable option, the P-series is also certified for Red Hat Enterprise Linux. Lenovo announced 2019 models of the ThinkPad P73, ThinkPad P53, ThinkPad P53s, and P43s, as well as the ThinkPad P1 Gen 2 last week, powered by 9th Generation Intel Core CPUs. The new models introduce OLED displays on certain units, as well as X-Rite Pantone factory color calibration, which is a substantive benefit for content creators. The P-series ThinkPads are closer to a desktop replacement than anything else, as these units come with more expandability options than the T or X-series, and higher-performance NVIDIA graphics. Buyers can also upgrade to Intel Xeon Mobile CPUs on the P-series. It is yet to be seen if this option will be extended to other ThinkPad models. Jerry Paradise, Lenovo's vice president of global commercial portfolio and product management, told TechRepublic in May that having Linux installed from the factory “comes up over and over with some of our very important customers, and it is taken very seriously,” Paradise noted, adding that Lenovo “provides drivers and a BIOS that is compatible,” reiterating that “we get that request a lot.” Source: https://www.techrepublic.com/article/lenovo-shipping-ubuntu-linux-on-2019-thinkpad-p-series-models/

OpenMandriva Lx 4.0 Linux distro is here, and there is a special AMD-only version Today, there is some great news for the Linux community – OpenMandriva Lx 4.0 is now available! This KDE-focused distribution should have you very excited. The default web browser browser has been changed in 4.0 – it is now the Chromium-based Falkon, which promises better KDE integration. Don't worry, you can install Firefox or Chrome if needed. Most interestingly, there is a build that is optimized for modern AMD processors only – it will not work with Intel chips. If you do have an AMD CPU, The OpenMandriva Team claims you will see improved performance by using this version. The team shares several of the important package updates below. DigiKam 6.0 Calamares 3.2.7 Firefox Quantum 66.0.5 Java 12 KDE Applications: 19.04.2 KDE Frameworks: 5.58.0 KDE Plasma: 5.15.5 Kernel 5.1.9 Krita 4.2.1 LibreOffice 6.2.4 LLVM/clang 8.0.1 Mesa 19.1.0 Qt Framework 5.12.3 Systemd 242 Xorg 1.20.4 Ready to download OpenMandriva Lx 4.0? Those using Intel processors or older AMD chips should opt for the x86_64 ISO. If you have a modern AMD EPYC, Ryzen, or ThreadRipper CPU, it is highly recommended to get the znver1 ISO. Source: https://betanews.com/2019/06/16/openmandriva-lx4-linux-amd/

Canonical Outs Important Linux Kernel Security Update for All Ubuntu Releases In a recent security advisory, Canonical details two recently discovered security vulnerabilities (CVE-2019-11477 and CVE-2019-11478) affecting Linux kernel's TCP retransmission queue implementation when handling some specific TCP Selective Acknowledgment (SACKs). Both security vulnerabilities were discovered by Jonathan Looney and could allow a remote attacker to crash the affected system by causing a denial of service. Known as SACK Panic, they affect all supported Ubuntu Linux releases, including Ubuntu 19.04, Ubuntu 18.10, Ubuntu 18.04 LTS, and Ubuntu 16.04 LTS. Canonical urges all users of the Ubuntu 19.04 (Disco Dingo), Ubuntu 18.10 (Cosmic Cuttlefish), Ubuntu 18.04 LTS (Bionic Beaver), and Ubuntu 16.04 LTS (Xenial Xerus) operating system series to update their installations immediately to the new kernel versions available in the official repositories. Patched Linux kernel versions were made available for 32-bit and 64-bit systems, as well as Raspberry Pi 2, OEM processors, Snapdragon processors, cloud environments, Amazon Web Services (AWS-HWE) systems, Amazon Web Services (AWS) systems, Google Cloud Platform (GCP) systems, Oracle Cloud systems, and Microsoft Azure Cloud systems. Linux hardware enablement (HWE) kernels are also available for Ubuntu 18.04.2 LTS systems using Ubuntu 18.10's kernel and Ubuntu 16.04.6 LTS systems using Ubuntu 18.04 LTS' kernel. Source: https://news.softpedia.com/news/canonical-outs-important-linux-kernel-security-update-for-all-ubuntu-releases-526440.shtml

9

Canonical Will Drop Support for 32-bit Architectures in Future Ubuntu Releases Last year, during the development cycle of the Ubuntu 18.04 LTS (Bionic Beaver) operating system series, Canonical announced that they won't offer 32-bit installation images (ISOs), a trend that was shortly followed by all official Ubuntu Linux flavors with the Ubuntu 18.10 (Cosmic Cuttlefish) release. However, Ubuntu's 32-bit repositories were still available. As Ubuntu 18.04 LTS (Bionic Beaver) will be supported for the next five years, Canonical disabled upgrades from Ubuntu 18.04 LTS to Ubuntu 18.10 for 32-bit systems to avoid leaving users on a short-lived release, and now, they announced that starting with the upcoming Ubuntu 19.10 (Eoan Ermine) release, support for 32-bit system will no longer be provided. While Canonical will no longer offer 32-bit programs for its upcoming Ubuntu releases, the company said that it will still be possible to run 32-bit applications on the Linux-based operating system if users want to use certain apps. These can be made available to users by application developers through a supported file format, probably Snap, Flatpak or AppImage. Canonical also said that they will provide more details about the removal of 32-bit support in Ubuntu Linux in the coming months as Ubuntu 19.10 gets closer to the beta and final release later this fall to instruct existing users on how to proceed if they still have 32-bit programs installed. Ubuntu 19.10 (Eoan Ermine) will be released on October 17th, 2019. Source: https://news.softpedia.com/news/canonical-will-drop-support-for-32-bit-architectures-in-future-ubuntu-releases-526439.shtml

issue146/actus.1563122443.txt.gz · Dernière modification : 2019/07/14 18:40 de auntiee