惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Google Online Security Blog
Google Online Security Blog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Stack Overflow Blog
Stack Overflow Blog
GbyAI
GbyAI
Microsoft Azure Blog
Microsoft Azure Blog
I
InfoQ
F
Fortinet All Blogs
N
Netflix TechBlog - Medium
Martin Fowler
Martin Fowler
腾讯CDC
C
CERT Recently Published Vulnerability Notes
博客园 - 聂微东
L
LINUX DO - 热门话题
Y
Y Combinator Blog
H
Hackread – Cybersecurity News, Data Breaches, AI and More
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
Microsoft Security Blog
Microsoft Security Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
WordPress大学
WordPress大学
C
Cisco Blogs
A
Arctic Wolf
Latest news
Latest news
Jina AI
Jina AI
P
Proofpoint News Feed
博客园 - 叶小钗
Vercel News
Vercel News
T
Threat Research - Cisco Blogs
博客园 - 三生石上(FineUI控件)
K
Kaspersky official blog
C
Check Point Blog
H
Heimdal Security Blog
博客园 - Franky
小众软件
小众软件
The Register - Security
The Register - Security
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Google DeepMind News
Google DeepMind News
AWS News Blog
AWS News Blog
The Hacker News
The Hacker News
T
The Exploit Database - CXSecurity.com
aimingoo的专栏
aimingoo的专栏
Project Zero
Project Zero
G
GRAHAM CLULEY
爱范儿
爱范儿
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Scott Helme
Scott Helme
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
NISL@THU
NISL@THU

Morten Linderud

ACME device attestation, smallstep and pkcs11: attezt Personal infrastructure setup 2026 Self-hosting DNS for no fun, but a little profit! Easter hack: terraform-provider-openwrt SSH CA with device and identity attestation: ssh-tpm-ca-authority NixOS is not reproducible Stream to chromecast with resolved, vlc and bash Store ssh keys inside the TPM: ssh-tpm-agent Store age identities inside the TPM: age-plugin-tpm Golang crypto/ecdh and the TPM My FOSS work update coredumpctl, delve and debug packages for Go Monitoring the kernel.org Transparency Log for a year Streaming the Steam Deck to OBS mkinitcpio v31 and UEFI stubs FOSS Activities in April 2021 FOSS Activities in March 2021 Simplifying and securing the boot process FOSS Activities in February 2021 FOSS Activities in December 2020 Kubernetes in Arch Linux FOSS Activities in November 2020 PAM Bypass: when null(is not)ok FOSS Activities in October 2020 Improving the Secure Boot user experience Packaging LXD for Arch Linux Reproducible Arch Linux Packages Mailpile, sendmail and procmail The State of Hy Morten Linderud
FOSS Activities in January 2021
Morten Linderud · 2021-02-01 · via Morten Linderud

FOSS Activities in January 2021

And January is over! Time has frankly been moving fast the past days.

Packaging wise, things has been fine. Added tailscale and some other minor packages, but had a real purge of old packages from resigned maintainers. Also dropped ntop to the AUR which hasn’t been actively developed for years at this point. I’m curious when people are going to bug me about that one :)

On the security side of things there has been quite a lot happening just the past week. sudo had CVE-2021-3156 and libgcrypt had CVE-2021-3345 which are both are quite severe. My personal take is that the sudo one bad, but not that bad. While libgcrypt is a bit more terrible considering the data is parsed before it’s authenticated. However both was patched fairly quickly in Arch.

In other news things are moving fine on different projects. Did some progress on finishing up debuginfod on the infrastructure side. Not that much happening on the dbscripts side of things. Slowly been hacking away on some CVE tracking for the security team, but the CVE dataset is a mess. Among more exciting stuff I have submitted some WIP UEFI structs for ImHex which is a neat hex editor.

I have 3-4 blog posts about Arch Conf and archlinux-repro rework that I have in the pipeline. But been a bit lazy in the evenings rewatching Halt and Catch Fire (which is a terrific TV show).

Other then that I have a talk about sbctl this weekend for FOSDEM. Improving the Secure Boot landscape: sbctl & go-uefi.

Enjoy this weeks summary and stay safe!

  • python-milc updated to 1.0.12-1, 1.0.13-1
  • python-reportlab updated to 3.5.59-1, 3.5.60-1
  • python-pygame updated to 2.0.1-1
  • python-typed-ast updated to 1.4.2-1
  • v2ray updated to 4.34.0-1
  • fzf updated to 0.25.0-1
  • jgmenu updated to 4.3.0-1
  • libmd updated to 1.0.3-1
  • plocate updated to 1.1.3-2
  • toolbox updated to 0.0.98-1, 0.0.98.1-1, 0.0.99-1
  • gopls updated to 0.6.2-1, 0.6.3-1, 0.6.4-1
  • python-prompt_toolkit updated to 3.0.9-1, 3.0.11-1, 3.0.13-1, 3.0.14-1
  • minicom updated to 2.8-1
  • lxd updated to 4.10-1
  • python-prompt_toolkit updated to 3.0.10-1
  • python-pandas updated to 1.2.0-1
  • buildah updated to 1.19.0-1, 1.19.2-1, 1.19.3-1
  • skopeo updated to 1.2.1-1
  • gopass updated to 1.11.0-1
  • qmk updated to 0.0.39-1
  • perl-type-tiny updated to 1.012001-1
  • git-lfs updated to 2.13.2-1
  • font-awesome updated to 5.15.2-1
  • conmon updated to 1:2.0.23-1, 1:2.0.24-1, 1:2.0.25-1
  • helm updated to 3.5.0-1, 3.5.1-1
  • buildah updated to 1.19.2-1
  • python-google-api-core updated to 1.25.0-1, 1.25.1-1
  • docker-compose updated to 1.28.0-1, 1.28.2-1
  • nvme-cli updated to 1.13-2
  • go updated to 2:1.15.7-1
  • staticcheck updated to 2020.2.1-1
  • github-cli updated to 1.5.0-1
  • fuse-overlayfs updated to 1.4.0-1
  • crun updated to 0.17-1
  • udiskie updated to 2.3.0-1, 2.3.2-1
  • screenkey updated to 1.4.1-1
  • yubikey-manager updated to 3.1.2-1
  • hy updated to 0.20.0-1
  • pdfjs updated to 2.7.570-1
  • cni-plugins updated to 0.9.0-5
  • perl-gnupg-interface updated to 1.01-1
  • qutebrowser updated to 2.0.0-1, 2.0.1-1
  • tailscale updated to 1.4.0-1, 1.4.1-1
  • python-adblock updated to 0.4.1-1
  • delve updated to 1.6.0-1
  • step-cli updated to 0.15.3-1
  • tailscale
  • step-ca
  • eric
  • eric-i18n
  • pychecker
  • canorus
  • julius
  • libasl
  • python-pmw
  • libmatio
  • pdfsam
  • voxforge-am-julius
  • g15daemon
  • libg15
  • libg15render
  • libco
  • sqlite-replication
  • ntop
  • oomd
  • vgrep
  • git-publish
  • b4
  • psi-notify
  • etcd
  • micro

Bugfixes

  • plocate: Should enable the timer, nor the service. Slight typi there!
  • nvme-cli: Fixed FS#69374
    • Some dracut warning. Backported upstream patch.
  • cni-plugins: Fixed FS#69276
    • Had to copy the binaries into /opt/cni/bin
  • hy: Fixed FS#69390
    • Removed python-clint for python-colorama

Security Team

We have published 45 advisories this month. We have in total published 1000 advisories since the tracker was deployed in 2016!

Other things…

Cheers!

Back to posts