Linux developer Andrey Konovalov has released a fix for an 11-year old bug in Linux kernel. The security hole is in the support for Datagram Congestion Control Protocol (DCCP) that was introduced in 2005.
The flaw can be exploited by malicious software on a vulnerable device or gain root-level access when users logged into their accounts. Once reached through a backdoor, attackers can leverage the vulnerability to compromise the system and even acquire a box from a connected network or Internet. Moreover, the programing blunder is in how DCCP code handles a socket buffer (skb).
According to the email list announcement by Konovalov, an skb for a DCCP_PKT_REQUEST packet [...]
Kernel 4.10 has the honor of being christened the “Anniversary Edition” by Linus Torvalds. I’m guessing this is because of the recent 25th anniversary of the release of Linux 0.01. Admittedly, it is a bit late for that (the anniversary was back in September); however, Linus had not named any of the recent releases for the occasion, opting instead for naming them after several deranged animals.
Although everybody was expecting Linus to release the final version of 4.10 on February 12th, he ended postponing it until the 19th because, with travel coming up, he preferred not to open the merge window for 4.11 while he was on the road.
Be that as it may, [...]
Dubbed Krypton, LibreELEC 8.0.0 has been in development since early October last year, during which it received over 200 nightly builds, no less than ten official Alpha versions, and a total of three Beta releases. It’s built around the recently released Kodi 17 “Krypton” open-source media center, so you’ll enjoy all of its cool new features.
“LibreELEC (Krypton) 8.0.0 has arrived after a long gestation period,” reads [...]