What you need to know about that new OpenSSL vulnerability, the big bcachefs update we've been waiting for, and why the community is creating a Gitea fork.

Sponsored By:

• Kolide: User-centered, cross-platform endpoint security for teams that Slack.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• OpenSSL 3.0.7 Released Fixing Critical Flaw — Today we published an advisory about CVE-2022-3786 (“X.509 Email Address Variable Length Buffer Overflow”) and CVE-2022-3602 (“X.509 Email Address 4-byte Buffer Overflow”).
• OpenSSL version 3.0.7 published
• /news/openssl-3.0-notes.html
• Fedora 37 Release Delayed To Mid-November Over Critical OpenSSL Vulnerability
• Linux 6.2 Power-Savings While Idle Or Lightly Loaded — The short story for Linux end-users is the Lazy RCU work can provide 5~10% power-savings for idle or lightly-loaded systems by this lazy/batching functionality.
• Linux 6.2 Picking Up Mainline Support For Apple M1 Pro/Max/Ultra Hardware — This gets the high-end Mac Studio systems with those premium SoCs now compatible with the mainline kernel.
• Hector's Deleted Tweet — I'm getting tired of arguing with kernel maintainers. The other day I spent 6 hours arguing on IRC about what should've been a 30 minute fix patch.
• Hector Martin on Twitter Follow Up Tweet — Like dude, if you aren't going to step into my world and actually understand what I'm trying to do here, just suck it up and ack my patch. It is not my job to drag you kicking and screaming until you either give up or have a lightbulb moment.
• Seems some Kernel Maintainers Noticed the Twitter Rant — Well they saw my tweets and apparently didn't like them 🤷‍♂️
• Bcachefs Rolling Out New Allocator, Performance Continues Improving — Bcachefs developer Kent Overstreet on Friday published a new status update on this original file-system born out of Linux's block cache (BCache) code.
• FreeBSD Re-Introduces WireGuard Support Into Its Kernel — As of Friday, a new WireGuard driver implementation has been re-introduced with many fixes/improvements over the code state from 2020.
• Open Letter to Gitea - Restoring Trust in the Gitea Project — This unfortunately concludes the Gitea Open Letter has failed and there is no alternative but forking the project under a new name, with a healthy democratic governance.