Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
内容由Jupiter Broadcasting提供。所有播客内容(包括剧集、图形和播客描述)均由 Jupiter Broadcasting 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
Player FM -播客应用
使用Player FM应用程序离线!
使用Player FM应用程序离线!
Linux Action News 276
Manage episode 352961345 series 1446773
内容由Jupiter Broadcasting提供。所有播客内容(包括剧集、图形和播客描述)均由 Jupiter Broadcasting 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
A high-profile Linux kernel network flaw, we put JFS on a death watch, and break down the controversial Firefox update this week.
Sponsored By:
- Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
- Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
Links:
- A new privilege escalation vulnerability in the Linux kernel — The vulnerability consists of a stack buffer overflow due to an integer underflow vulnerability inside the nftpayloadcopyvlan function, which is invoked with nftpayload expressions as long as a VLAN tag is present in the current skb.
- netfilter: nftpayload: add C-VLAN support · torvalds/linux@f6ae9f1
- CVE-2023-0179
- CVE-2023-0179- Red Hat Customer Portal
- [net,3/3] netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits - Patchwork
- oss-sec: Re: CVE-2023-0179: Linux kernel stack buffer overflow in nftables: PoC and writeup
- libvirt 9.0 Released For Latest Linux Virtualization API — Libvirt 9.0 adds support for external snapshot deletion with QEMU using its existing API, libvirt 9.0 with QEMU now supports PASST as "Plug A Simple Socket Transport" for connecting an emulated network device to the host's network, QEMU external back-end support for SWTPM as a software Trusted Platform Module (TPM), support for passing file descriptors rather than passing files for the QEMU disk, and other additions.
- JFS Filesystem’s Days are Numbered — IBM developed the JFS file-system originally in the 90's for AIX and the second-generation implementation then ported to Linux after it was made open-source.
- Firefox 109.0 Ships Manifest Version 3 — Manifest Version 3 (MV3) extension support is now enabled by default (MV2 remains enabled/supported). This major update also ushers an exciting user interface change in the form of the new extensions button.
- Here’s what’s going on in the world of extensions
- Manage your extensions using the extensions button in the toolbar
- Manifest v3 signing available November 21 on Firefox Nightly
- Google delays start of Manifest V2 Chrome extension deprecation — The original plan called for Chrome Beta, Dev, and Canary builds to start experiments that turned off Manifest V2 extension support. Additionally, Manifest V3 would be required to get the “Featured” badge in the Chrome Web Store.
- Firefox 109 Adds New Extensions Button, Manifest V3 Support — The biggest new feature is the new Unified Extensions button in the toolbar.
- Chrome’s “Manifest V3” plan to limit ad-blocking extensions is delayed
- Chrome Users Beware: Manifest V3 is Deceitful and Threatening — Manifest V3, or Mv3 for short, is outright harmful to privacy efforts. It will restrict the capabilities of web extensions
304集单集
Manage episode 352961345 series 1446773
内容由Jupiter Broadcasting提供。所有播客内容(包括剧集、图形和播客描述)均由 Jupiter Broadcasting 或其播客平台合作伙伴直接上传和提供。如果您认为有人在未经您许可的情况下使用您的受版权保护的作品,您可以按照此处概述的流程进行操作https://zh.player.fm/legal。
A high-profile Linux kernel network flaw, we put JFS on a death watch, and break down the controversial Firefox update this week.
Sponsored By:
- Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
- Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
Links:
- A new privilege escalation vulnerability in the Linux kernel — The vulnerability consists of a stack buffer overflow due to an integer underflow vulnerability inside the nftpayloadcopyvlan function, which is invoked with nftpayload expressions as long as a VLAN tag is present in the current skb.
- netfilter: nftpayload: add C-VLAN support · torvalds/linux@f6ae9f1
- CVE-2023-0179
- CVE-2023-0179- Red Hat Customer Portal
- [net,3/3] netfilter: nftpayload: incorrect arithmetics when fetching VLAN header bits - Patchwork
- oss-sec: Re: CVE-2023-0179: Linux kernel stack buffer overflow in nftables: PoC and writeup
- libvirt 9.0 Released For Latest Linux Virtualization API — Libvirt 9.0 adds support for external snapshot deletion with QEMU using its existing API, libvirt 9.0 with QEMU now supports PASST as "Plug A Simple Socket Transport" for connecting an emulated network device to the host's network, QEMU external back-end support for SWTPM as a software Trusted Platform Module (TPM), support for passing file descriptors rather than passing files for the QEMU disk, and other additions.
- JFS Filesystem’s Days are Numbered — IBM developed the JFS file-system originally in the 90's for AIX and the second-generation implementation then ported to Linux after it was made open-source.
- Firefox 109.0 Ships Manifest Version 3 — Manifest Version 3 (MV3) extension support is now enabled by default (MV2 remains enabled/supported). This major update also ushers an exciting user interface change in the form of the new extensions button.
- Here’s what’s going on in the world of extensions
- Manage your extensions using the extensions button in the toolbar
- Manifest v3 signing available November 21 on Firefox Nightly
- Google delays start of Manifest V2 Chrome extension deprecation — The original plan called for Chrome Beta, Dev, and Canary builds to start experiments that turned off Manifest V2 extension support. Additionally, Manifest V3 would be required to get the “Featured” badge in the Chrome Web Store.
- Firefox 109 Adds New Extensions Button, Manifest V3 Support — The biggest new feature is the new Unified Extensions button in the toolbar.
- Chrome’s “Manifest V3” plan to limit ad-blocking extensions is delayed
- Chrome Users Beware: Manifest V3 is Deceitful and Threatening — Manifest V3, or Mv3 for short, is outright harmful to privacy efforts. It will restrict the capabilities of web extensions
304集单集
Semua episode
×欢迎使用Player FM
Player FM正在网上搜索高质量的播客,以便您现在享受。它是最好的播客应用程序,适用于安卓、iPhone和网络。注册以跨设备同步订阅。