openSUSE Announce January 2012

announce@lists.opensuse.org

3 participants
3 discussions

[opensuse-announce] SSL cert update for opensuse.org hosts in Nuremberg

by Marcus Rueckert

hi Thursday 2012-02-02 we will update the certificates for all openSUSE hosts located Nuremberg (see detailed list below). The fingerprint of the new certificate is: [[[ Signed with security(a)suse.de key: pub 2048R/3D25D3D9 1999-03-06 uid SuSE -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SHA1 Fingerprint=F0:76:9C:42:D3:F1:C0:ED:C6:F6:15:C0:F8:D5:C7:29:60:EB:53:46 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.18 (GNU/Linux) iQEVAwUBTyAnZXey5gA9JdPZAQI7yQf/d4OqlBnV4WT80cqI3DVGGcEacTSES8Ux dK0z9aW/UQWFTHGoQmDk8xcgHED/mHVAlywIPgccbleWNi3NND3+1EAvsxnR5M1m mdVsNYOEsGDrk/3qvPVzyTjkBgINOnetH/0Hd77NhxaDVkU0f1Tl0wbO5NdhKy6m 0dmGwJgUESi3IQjubaibmGZHCZPfEEO0ReW00tRDjFpV4MnU923/BZWT30WuvfMo ClSedk0r6PBt3FGr5yqIFyjM1i3CX/dioW1nJ3qOP1GKMDGLSL20YEY6ZE/F8nL4 bycPLfTjDxKodWXeAmeBlXNTNVYxjphowtjYMQqFe7hXyUkSHBCLLQ== =UhMT -----END PGP SIGNATURE----- ]]] The following hosts will be affected: * static.opensuse.org * api.opensuse.org * build.opensuse.org * connect.opensuse.org * features.opensuse.org * hermes.opensuse.org * login.opensuse.org * notify.opensuse.org * svn.opensuse.org * ci.opensuse.org We do not expect any service interruptions, but some users run with strict certificate checks. With kind regard Your openSUSE admin team -- openSUSE - SUSE Linux is my linux openSUSE is good for you www.opensuse.org -- To unsubscribe, e-mail: opensuse-announce+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-announce+help(a)opensuse.org

9 years, 2 months

[opensuse-announce] openSUSE 11.3 has reached end of SUSE support

by Benjamin Brunner

Hi, With the release of release-notes-openSUSE on Friday 20th of January SUSE has released the last update for openSUSE 11.3. openSUSE 11.3 is now officially discontinued and out of support by SUSE. Here are some security statistics: openSUSE 11.3 was released on July 15th 2010, making it 18 months of security and bugfix support. Some statistics on the released patches (compared to 11.2): Total updates: 581 (+92) Security: 358 (+41) Recommended: 221 (+49) Optional: 2 (+2) CVE Entries: 1212 (+78) Top issues (compared to 11.2 for issues down to 5), (not lifetime adjusted): 14 seamonkey (+3) 12 MozillaFirefox (-6) 12 flash-player (+2) 11 MozillaThunderbird (+3) 10 opera (-3) 9 kernel (+4) 7 mozilla-xulrunner191 (+1) 7 libopenssl-devel (+2) 7 java-1_6_0-openjdk (+2) 6 krb5 (-3) 6 bind (+3) 6 acroread (-2) 5 wireshark (+1) 5 tomcat6 (0) 5 exim (+2) 5 dhcp (+4) 5 clamav (0) 5 apache2-mod_php5 (0) And top issues sorted by CVE (Common Vulnerability Enumeration) count down to 5) (compared to 11.2 for the top, not adjusted to lifetime): 214 libwebkit (+34) 138 seamonkey (+18) 123 kernel (+17) 113 MozillaFirefox (-6) 111 MozillaThunderbird (-16) 96 mozilla-xulrunner191 (+12) 90 java-1_6_0-sun (-4) 86 acroread (-27) 82 flash-player (-1) 54 opera (+27) 51 java-1_6_0-openjdk (-43) 49 apache2-mod_php5 (+4) 32 wireshark (+6) 16 icedtea-web 13 libfreetype6 13 krb5 (-2) 12 OpenOffice_org (0) 12 libopenssl-devel (+6) 11 tomcat6 (0) 10 apache2 (+8) 10 quagga 9 libmariadbclient16 8 freetype2 (-10) 8 rubygem-actionmailer 8 gimp (+2) 8 libmysqlclient-devel (-15) 8 perl (-1) 8 dhcp (+6) 8 libmysqlclusterclient16 8 clamav (-2) 8 bind (+2) 8 libmodplug (+7) 7 libtiff-devel (+2) 7 exim (+2) 7 libsvn_auth_gnome_keyring-1-0 (+4) 7 libvirt (+1) 7 finch (-5) 7 NetworkManager (+5) 6 ecryptfs-utils 6 libpng14 6 puppet (+5) 6 sysconfig (+2) 6 xorg-x11-Xvnc (+4) 6 sudo (0) 6 libpng12 6 python-feedparser (+1) 6 kvm (+5) 5 compat-openssl097g (+4) 5 otrs (+3) 5 glibc (-1) 5 libmoon-devel 5 radvd 5 evince (0) 5 libxml2 (+3) 5 Kernel 5 libpcsclite1 (0) 5 cyrus-imapd # security updates by count # grep -l type..secur updateinfo-*|sed -e 's/^updateinfo-//;s/-[0-9]*.xml$//;'|sort|uniq -c|sort -n +0 -r|less # grep CVE- update* |perl -e '%cves=();while (<>) { while (/(CVE-2...-....)/) { $cve{$1}++; s/CVE-2...-....//;} } print join("\n",sort keys %cve)."\n";' | wc -l # for i in updateinfo-* ; do echo -n "$i " ; grep CVE- $i|perl -e '%cves=();while (<>) { while (/(CVE-2...-....)/) { $cve{$1}++; s/CVE-2...-....//;} } print join("\n",sort keys %cve)."\n";' | wc -l ; done |perl -e 'while (<>) { /^updateinfo-(\S*)-\d*.xml (\d*)$/; $cnt{$1}+=$2; } ; foreach (sort { $cnt{$b} <=> $cnt{$a} } keys %cnt) { print "$cnt{$_}\t\t$_\n";} ' -- Benjamin Brunner , SUSE LINUX, Maintenance SUSE LINUX GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 21284 (AG Nürnberg) -- To unsubscribe, e-mail: opensuse-announce+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-announce+help(a)opensuse.org

9 years, 2 months

[opensuse-announce] Why openSUSE.org goes on strike tomorrow

by Henne Vogelsang

Members, contributors, friends, people. End of January the US Congress will vote to pass two laws, the “PROTECT IP Act” (PIPA) and the “Stop Online Piracy Act” (SOPA). If these laws pass they would enable copyright holders to get court orders against websites accused of doing or facilitating copyright infringement. So far so good, the openSUSE Project is against copyright violations. We are a community that provides free and easy access to Free and Open Source Software. We innovate, integrate, polish, document, distribute, maintain and support one of the world’s best Linux distributions. We are working together in an open, transparent and friendly manner as part of the worldwide Free and Open Source community. And in this community there is no room for copyright abuses. This however does not mean that the end justifies the means. We at openSUSE are opposed to the proposals because we depend on our users to not only be able to freely and openly contribute their code but also their opinion and other information. Why that is threatened by these proposals, you can read over at the EFF[1], or watch this video from Fight for the Future[2] We hope the decision to blackout openSUSE.org will educate people around the world about this issue that threatens the basics of the internet, will make some US based contributors, friends and users contact their representatives in congress and inspire others to join the strike. The openSUSE Board [1] https://www.eff.org/deeplinks/2012/01/how-pipa-and-sopa-violate-white-house… [2] http://vimeo.com/31100268 -- To unsubscribe, e-mail: opensuse-announce+unsubscribe(a)opensuse.org For additional commands, e-mail: opensuse-announce+help(a)opensuse.org

9 years, 3 months

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

openSUSE Announce January 2012