Other Sites

LinuxGizmos.com

(Updated) Banana Pi Showcases BPI-CanMV-K230D Zero with Canaan K230D Chip Design

The Banana Pi BPI-CanMV-K230D-Zero is an upcoming single-board computer for AIoT applications, developed in collaboration with Canaan Technology. Featuring the Kendryte K230D chip, it provides local AI inference capabilities, making it useful for DIY projects and embedded systems.

SolidRun HummingBoard i.MX8M IIOT SBC with NVMe, RS232, RS485, and LTE Support

SolidRun has launched a single-board computer tailored for Industrial Internet of Things and Human-Machine Interface applications, built around the i.MX8M Plus System-on-Module from NXP. Its carrier board includes features like RS232, RS485, dual CAN-FD, and dual 1Gb Ethernet and more.

Forlinx FET MX95xx C System on Module for Industrial and IoT Applications

Forlinx Embedded has introduced the FET-MX95xx-C System on Module, built around the high-performance NXP i.MX95xx processor for industrial, automotive, and IoT applications. Key features include a 10GbE port, dual GbE ports, CAN interfaces, camera support, and multiple wireless protocols.

T Display S3 AMOLED Plus with Enhanced 1.91″ Display and Real Time Clock

The T-Display S3 AMOLED Plus is an upgraded development board based on the ESP32-S3 microcontroller with a dual-core LX7 processor. It features a 1.91″ AMOLED display with a 240×536 resolution, using RM67162 IPS AMOLED technology for sharp colors and full viewing angles with QSPI interface support.

MYC LR3576 SoM with Octa-Core RK3576 for Embedded Applications

The MYC-LR3576 System-On-Module from MYIR is described as a robust platform for AIoT applications. Powered by the Rockchip RK3576, this compact module handles demanding edge computing, multimedia, and AI tasks with high-performance processing and versatile connectivity.

Tor Project blog

Get the latest from Tor, join us for State of the Onion 2024

Both events will be live-streamed and available for replay on our YouTube channel. Engage in the conversation on social media with the hashtag #StateOfTheOnion2024 or post questions and comments in the chat during the event.

news

Security Leftovers

posted by Roy Schestowitz on May 22, 2024

Krebs On Security ☛ Why Your Wi-Fi Router Doubles as an Fashion Company Apple AirTag

Apple and the satellite-based broadband service Starlink each recently took steps to address new research into the potential security and privacy implications of how their services geo-locate devices. Researchers from the University of Maryland say they relied on publicly available data from Fashion Company Apple to track the location of billions of devices globally -- including non-Apple devices like Starlink systems -- and found they could use this data to monitor the destruction of Gaza, as well as the movements and in many cases identities of Russian and Ukrainian troops.
CS Monitor ☛ Change your password, EPA warns. Hackers from Russia, China, Iran are targeting water supplies.

The Environmental Protection Agency warns that cyberattacks against water utilities around the United States are becoming more frequent and more severe. The agency has issued an alert urging water systems to take immediate action.
RFERL ☛ Belarusian Activist Not Released After Serving Prison Term For Second Time

Belarusian activist Palina Sharenda-Panasyuk, who was expected to be released from prison on May 21 after serving 3 years and 5 months, remains in custody and may face an additional unspecified charge, her husband told RFE/RL.
LWN ☛ Security updates for Tuesday

Security updates have been issued by AlmaLinux (firefox, nodejs, and thunderbird), Fedora (uriparser), Oracle (firefox and thunderbird), Slackware (mariadb), SUSE (cairo, gdk-pixbuf, krb5, libosinfo, postgresql14, and python310), and Ubuntu (firefox, linux-aws, linux-aws-5.15, and linux-azure).
Security Week ☛ QNAP Rushes Patch for Code Execution Flaw in NAS Devices

QNAP rolls out patches for multiple vulnerabilities after proof-of-concept exploit published for a remote code execution vulnerability.
SANS ☛ Scanning without Scanning with NMAP (APIs FTW), (Tue, May 21st)
IT Wire ☛ Western Sydney Uni reports cyber incident after four months

"Importantly, there have been no threats received by the University to disclose any of the private information which was accessed, and the University has not received any demands in exchange for maintaining privacy.

"In order to protect University staff, students and stakeholders, the University has sought and been granted an injunction from the NSW Supreme Court to prevent access, use, transmission and publication of any data that was the subject of the incident.

"The University unreservedly apologises for this incident and its impact on our community. It is deeply regrettable and we are committed to transparently rectifying the matter."
Security Week ☛ Zoom Adding Post-Quantum End-to-End Encryption to Products [Ed: But what prevents Zoom the company and the US government decrypting and saving everything at the server side?]

Zoom is announcing post-quantum end-to-end encryption on Meetings, with Phone and Rooms coming soon.
Security Week ☛ CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw

CISA has added CVE-2023-43208, an unauthenticated remote code execution vulnerability, to its KEV catalog.
Security Week ☛ OmniVision Says Personal Information Stolen in Ransomware Attack

Semiconductor giant OmniVision Technologies says personal information was stolen in a September 2023 ransomware attack.
OpenSSF (Linux Foundation) ☛ What’s in the SOSS? Podcast #4 – Eric Brewer and the Future of Open Source Security
Latest Ubuntu Security Updates: Fixing Linux Kernel Vulnerabilities

Several vulnerabilities have been discovered in the Linux kernel that could lead to privilege escalation, denial of service, or information leaks. The Ubuntu security team has addressed these issues in the latest Ubuntu security updates for multiple releases. In this article, we will explore some of the vulnerabilities fixed and learn how to apply updates without rebooting the system.
The Register UK ☛ Long-term supported distros' kernel policies are all wrong

A new hire at Rocky Linux creator CIQ is rocking the LTS-Linux-distro boat – by shining a spotlight on the elephant in the room (or one of the herd).

A recent blog post from Rocky Linux developer CIQ, subtitled Cracks in the Ice, examines "Why a 'frozen' distribution Linux kernel isn't the safest choice for security." The post itself is an executive summary of a study the company conducted comparing the numbers of bugs and bug fixes in RHEL 8's kernel, which it has published in a white paper titled Vendor Kernels, Bugs and Stability.

FOSS software, which provides the building blocks of projects like Linux distributions, is built around community development. The problem is that this is hard to monetize. Some companies have found ways to do this, but they aren't sharing enough of their work, leaving vital parts of the ecosystem starved. There are clearly visible and perfectly feasible ways around this. The snag is that implementing them would mean persuading billion-dollar companies to play nicely together.

Other Recent Tux Machines' Posts

today's howtos: many howtos for Friday
Kubernetes 1.32 sneak peek and Istio 1.24.0: Server level releases
Ubuntu Touch OTA-6 Rolls Out with Wireless Display Improvements, Bug Fixes: The UBports Foundation announced today the release and general availability of Ubuntu Touch OTA-6 as the sixth update to the Ubuntu Touch mobile operating system based on Ubuntu 20.04 LTS.
KDE Frameworks 6.8.0: KDE today announces the release of KDE Frameworks 6.8.0
KDE Gear 24.08.3 Released with More Fixes for Your Favorite KDE Applications: The KDE Project released today KDE Gear 24.08.3 as the third and last maintenance update to the KDE Gear 24.08 collection of applications for the KDE Plasma desktop environment and the GNU/Linux ecosystem.
GNOME 48 Desktop Environment Release Date Slated for March 19th, 2025: While most of us are already enjoying the many new features and improvements of the GNOME 47 “Denver” desktop environment series, the GNOME project started working on the next major release, GNOME 48.
Forlinx FET MX95xx C System on Module for Industrial and IoT Applications: The module operates on a Linux-based platform, ensuring compatibility with a wide range of software libraries and development tools
After Cyberwar: many applications labelled as "cybersecurity" and given a veneer of legitimacy are really "weaponised" and abusive code
Slow Weekend Ahead [original]: It's part of the Web becoming worse and worse each month
Tux Machines Will Hopefully Become Faster Soon [original]: At the moment we're finishing the last batch of maintenance work
Mass Layoffs at Mozilla Again: 30% of staff
Stable kernels: Linux 6.6.60, Linux 6.11.7, Linux 6.1.116, Linux 5.15.171, Linux 5.10.229, Linux 5.4.285, and Linux 4.19.323: I'm announcing the release of the 6.6.60 kernel
Android Leftovers: More Android devices will introduce users to Quick Share during setup, following Pixel
Raspberry Pi News and Projects: Raspberry Pi picks
KDE Frameworks 6.8 Adds Breeze Icons for Typst Files And Fixes Many Bugs: The KDE Project released today KDE Frameworks 6.8 as a new monthly update to this collection of more than 70 add-on libraries to Qt providing commonly needed functionality for KDE applications and the KDE Plasma desktop.
Calibre 7.21 Adds Read Aloud with Sentence Tracking for EPUBs: Calibre 7.21 ebook manager introduces an audio overlay for EPUB, enabling immersive reading with sentence tracking & custom voices
Celebrating our top contributors on Firefox’s 20th anniversary: Firefox was built by a group of passionate developers, and has been supported by a dedicated community of caring contributors since day one
Portwell PJAI-100-ON rugged Edge AI embedded system features NVIDIA Jetson Orin Nano for industrial quality control: While specific operating systems are not confirmed, NVIDIA Jetson modules rely on the Jetpack SDK based on Ubuntu by default, but also supporting other Linux operating systems since version 6.0
Radxa E52C – A Rockchip RK3582 router with dual 2.5GbE, USB 3.0 port, USB serial console port: On the software side, it’s pretty much the same as for the E20C router with the E52C board running Debian Linux
Kdenlive 24.08.3 Arrives with Subtitle and Timeline Stability Fixes: Kdenlive 24.08.3 open-source video editor addresses codec crashes, timeline bugs, and clip removal issues
Security Leftovers: Windows TCO and Integrity
Best Free and Open Source Software: They are all free and open source goodness
Desktop icons are surprisingly hard!: I spent past three weeks working on refactoring and fixing legacy code (the oldest of which was from 2013) that handled positioning Plasma desktop icons
Samsung A54 smartphone review, a year later: This is the sixth long-term report of my usage of one Samsung A54 device
MYC LR3576 SoM with Octa-Core RK3576 for Embedded Applications: To support developers, the MYC-LR3576 runs on Debian 12 or Linux 6.1 and includes a suite of software resources
This lightweight Linux distro is the best (and easiest) way to revive your old computer. Here's how: If you want to breathe life back into a slow or aging computer, Linux Lite 7.0 is a lightweight
Games: Steam Deck, The Spell Brigade, and More: GamingOnLinux: the latest eight articles
today's leftovers: only half a dozen for now
BarryK's Latest Development Updates From EasyOS: Some of his latest
Today in Techrights: Some of the latest articles
Windows Gets Infected, Media Blames "Linux": Fear, Uncertainty, Doubt/Fear-mongering/Dramatisation
Canonical/Ubuntu Leftovers: Canonical/Ubuntu stories
Security Leftovers: Security links, only 3 for now
today's leftovers: mixture of topics of less importance
Programming Leftovers: Programming with various paradigms
Red Hat and Fedora Leftovers: Inc. Red Hat's official site
Education Leftovers: FreeBSD, LANOG, Eleventy, and OpenFest
PCBs, Purism, Arduino, Retro and More: hardware themed stories for today
Release of curl 8.11.0 and Daniel Stenberg at FLOSS Weekly: curl news
NetBSD, FreeBSD, and More: BSD news collection
today's howtos: long list of howtos
GIMP 3.0 Release Candidate Is Now Available for Public Testing: The development team behind the popular GIMP open-source image editing software announced today the general availability of the Release Candidate (RC) milestone of the highly anticipated GIMP 3.0 release.
Android Leftovers: The secret to summarizing notifications on Android
Immich Celebrates 50K Stars on GitHub with v1.120: Immich celebrates 50K GitHub stars with v1.120, which now includes auto-database backups, faster HDR transcoding, and a timeline scroll indicator
Forty years of commitment to software freedom: We're planning a jam-packed anniversary year and we hope you'll join us for the festivities
Inkscape Turned 21, Happy Birthday!: Inkscape's 21st anniversary
What’s new for Fedora Atomic Desktops in Fedora 41: So let’s see what arrives with the new releases for the Fedora Atomic Desktops variants (Silverblue, Kinoite, Sway Atomic and Budgie Atomic)
What happens to Linux when Linus Torvalds dies?: The Linux kernel is at the heart of countless operating systems, powering everything from smartphones to servers
Why we're still waiting for Canonical's immutable Ubuntu Core Desktop: 'First impressions matter' but a KDE flavor is in the making – and more publicly at that
Forlinx launches NXP i.MX 95 SoM and development board with 10GbE, CAN Bus, RS485, and more: Only Linux is supported, and the company says its module targets the automotive, industrial, and commercial IoT markets
Andes QiLai quad-core AX45MP RISC-V SoC with NX27V vector processor powers micro-ATX Voyager Development Platform: Andes explains the NX27V core can cooperate with the AX45MP cluster and make QiLai a heterogeneous software development platform where a Linux SMP system and an RTOS or bare-metal system can run simultaneously
Best Free and Open Source Software: The ratings only relate to the Flickr functionality offered by each program
Little Wayland Things: While I do have a Qt git build on my machine that I use for development
HDR and color management in KWin, part 5: HDR on SDR laptops: This one required a few other features to be implemented first, so let’s jump right in
Kubuntu 24.04, it's been a few months now ...: Rough start. Very much so. A time travel back into the past, but not in a good way, if you will. I was not very happy the first time I tried Kubuntu 24.04
Windows TCO Leftovers: True cost of Microsoft/Windows
Games: Vampire Hunters, Bye Sweet Carole, and More: Latest 7 from GamingOnLinux
Focusing on Free Software, Political Sites Will Do Politics [original]: We'll try to keep this site politics-free and focus on Free software
today's leftovers: GNU/Linux, howtos, security
Programming: Ruby 3.3.6 Released, Perl, and More: Programming related picks
LWN Articles on Graphics, OSI's Openwashing, and Rust: outside the paywall as of hours ago
Today in Techrights: Some of the latest articles
Audiocasts/Shows/Videos About GNU/Linux: Some from days ago
LWN Articles About Linux Kernel: Now outside the paywall
Peropesis 2.8: OpenSSH: Peropesis 2.8 is released
Linuxfx 11.24.04: new version of the operating system based on Kubuntu 24.04.1 LTS
Parted Magic 2024.11.03: This version of Parted Magic updates the kernel to linux-6.11 and adds/updates various program
NethSecurity project milestone 8.3: We are excited to announce the release of NethSecurity project milestone 8.3
Release of Pisi GNU/Linux 2.4: Inspired by the rare flowers of Anatolia, Pisi GNU/Linux delivers the 2.4 version 'Karagül' to its users
BackBox Linux 9 released!: The BackBox Team is happy to announce the updated release of BackBox Linux
Br OS 24.10: Brazilian Linux distribution based on Ubuntu
Linux Lite 7.2 Released with Lite Theme Manager, Based on Ubuntu 24.04 LTS: Linux Lite creator Jerry Bezencon announced today the release and general availability of Linux Lite 7.2 as the latest stable version of this Ubuntu-based distribution using the lightweight Xfce desktop environment.
4MLinux 46.1 STABLE released.: This is a minor (point) release in the 4MLinux STABLE channel
Release of Dr.Parted 24.11: This release is based on the Debian testing repository (2024/November/01).
Open Hardware/Modding: Robot, Arduino, Raspberry Pi, and More: Some hardware picks
Security Leftovers: Security stories
The Bitcoin Mailing List and its history is erased from Linux: Swathes of Bitcoin’s history have been erased from the internet forum that hosted communications between developers for nearly a decade
Events: Capitole du Libre, Free Software Directory, and All Thing Open: 3 events in the blogs today
7 Reasons Why NU/Linux Is the Best Tool For Programming: Explore why GNU/Linux is the top choice for developers and programmers
today's leftovers: FOSS and more for now
ScummVM and Games; PicoROM, A DIP-32 8-Bit ROM Emulator: Gaming centric news
Security Leftovers: Security picks
Free Applications and Free Software: FOSS picks
Programming Leftovers: many picks for today
LXQt 2.1 Desktop Environment Released with Initial Wayland Support: The development team behind the lightweight LXQt desktop environment written in Qt announced today the release and general availability of LXQt 2.1 as a major update bringing exciting new features.
today's howtos: many howtos for now
HowTos, Red Hat, and FSF: today's leftovers
Open Hardware, Raspberry Pi, and Retro: Mostly Raspberry Pi
Windows TCO Leftovers: The true cost of Microsoft reliance
Android Leftovers: The best PSP emulator on Android just got even better
KDE Plasma 6.2.3 Brings Better Support for HDR Displays, Various Bug Fixes: The KDE Project released today KDE Plasma 6.2.3 as the third maintenance update to the latest KDE Plasma 6.2 desktop environment series with more bug fixes and various improvements.
Tor and Tails Team Up for Better Online Privacy Protections: The merger of two popular open-source communities could sharpen the focus on bolstering online privacy and web-surfing anonymity
GIMP 3.0 Release Candidate Arrives with Major Features in Tow: If it feels like the next major release of open source image editor The GIMP has been in the works forever
Best Free and Open Source Software: Only free and open source software is included
Games: Stardew Valley 1.6.9, SuperTuxKart 1.5, and More: Latest from GamingOnLinux
Manjaro Considers Embedding a Telemetry Tool: Manjaro’s new MDD telemetry tool will collect user data for better metrics, yet automatic sharing concerns users
Today in Techrights: Some of the latest articles
Gnome OS is Changing: "I would like to turn GNOME OS, GNOME’s home-grown distro for testing and development of the GNOME Desktop, into a daily-drivable general purpose OS."

Tux Machines

Other Sites

LinuxGizmos.com

(Updated) Banana Pi Showcases BPI-CanMV-K230D Zero with Canaan K230D Chip Design

SolidRun HummingBoard i.MX8M IIOT SBC with NVMe, RS232, RS485, and LTE Support

Forlinx FET MX95xx C System on Module for Industrial and IoT Applications

T Display S3 AMOLED Plus with Enhanced 1.91″ Display and Real Time Clock

MYC LR3576 SoM with Octa-Core RK3576 for Embedded Applications

Tor Project blog

Get the latest from Tor, join us for State of the Onion 2024

news

Security Leftovers

Krebs On Security ☛ Why Your Wi-Fi Router Doubles as an Fashion Company Apple AirTag

CS Monitor ☛ Change your password, EPA warns. Hackers from Russia, China, Iran are targeting water supplies.

RFERL ☛ Belarusian Activist Not Released After Serving Prison Term For Second Time

LWN ☛ Security updates for Tuesday

Security Week ☛ QNAP Rushes Patch for Code Execution Flaw in NAS Devices

SANS ☛ Scanning without Scanning with NMAP (APIs FTW), (Tue, May 21st)

IT Wire ☛ Western Sydney Uni reports cyber incident after four months

Security Week ☛ Zoom Adding Post-Quantum End-to-End Encryption to Products [Ed: But what prevents Zoom the company and the US government decrypting and saving everything at the server side?]

Security Week ☛ CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw

Security Week ☛ OmniVision Says Personal Information Stolen in Ransomware Attack

OpenSSF (Linux Foundation) ☛ What’s in the SOSS? Podcast #4 – Eric Brewer and the Future of Open Source Security

Latest Ubuntu Security Updates: Fixing Linux Kernel Vulnerabilities

The Register UK ☛ Long-term supported distros' kernel policies are all wrong

Other Recent Tux Machines' Posts