🎉 NetBSD 10.0 Released With Much Improved Hardware Support & Faster Performance | Phoronix
「 #NetBSD 10 provides #WireGuard support, support for many newer #Arm platforms including for #AppleSilicon and newer #RaspberryPi boards, a new Intel Ethernet drive, support for Realtek 2.5GbE network adapters, #SMP performance improvements, automatic swap encryption, and an enormous amount of other hardware support improvements that accumulated over the past 4+ years 」
There's a huge backdoor (#CVE -2024-3094) allowing remote SSH access (as far as I can tell at this moment) caused by a util called #xz affecting a ton of systems (#Linux and #macOS, well not really) and it's causing quite a huge panic. I honestly don't know much about it just yet, but just sharing some pieces to read about the huge vulnerability.
The person who had maliciously planted this vulnerability into xz-utils, Jia Tan, has made at least 750 contributions to the project over the past 2 years. They even have direct push access to the code repo, allowing them to have pushed commits with forged authors. Being "free" from this vulnerability is not as simple as reverting to a previous version due to just how much and how long they've contributed to the project, and people are rightfully suspicious that this person might have hidden other backdoors in xz.
Unlike most other vulnerabilities, it's a lot harder to pinpoint versions affected by this but the most likely case is most systems out there have xz installed on their system that are impacted - which at this moment, the info being thrown around is any version past 5.3.1, 5.4.6, or 5.6.0 (latest is 5.6.1).
As far as I can tell, you're only impacted by this vulnerability only if:
Your distro sources/packages xz from their release tarballs rather than through the Git source directly.
The payload was only included for the #RPM or #DEB packaging, so unless your distro uses these - you're probably safe.
As far as I can tell, it also only affects x86 systems so #ARM based systems should be fine.
As far as I can tell, your system needs to be running #systemd to be impacted by this, so #Docker/#Podman#containers should mostly if not entirely be fine....? maybe.
In other news, people are currently investigating and evaluating other projects also actively contributed by the compromised developer, Jia Tan, including #libarchive.
People are also analysing the dev's commit history to deduce their background from their activity lol. They've been found to push commits during office hours Mon-Fri, every other Saturdays, presumably Public Holidays that seem to align with China's PH, and seems to be on GMT +8 locale.
another on-premise bare-metal cluster build for 2024!
greater than five but fewer than ten Ampere Altra Q80-30 servers will be combined with Xeon based hosts of mostly-equivalent specs (dual-socket 8280 and E5-2697v4 hosts), 768GB - 1TB of RAM per each, and NICs w/ multiple 10, 25, and 100GbE ports depending on system role. switches are all Arista.
I would only consider any of the upcoming Windows on ARM laptops with the new Qualcomm processors if and only if there is first-tier support for Linux and nothing is locked-down tight re: Secure Boot or TPM.
For #RetroComputing / #Archival / #DataPreservation peeps: Anyone have copies of #ARM DDI 0100 ("ARM Architecture Reference Manual") revisions A, C, F, G, or H? I only have B, D, E, and I. I promise I'll put a complete bundle of them up on the @internetarchive if I can track down the complete bundle.
La durada de la bateria dels #MacbookPro amb processador #Arm és imbatible.
Des d'ahir a les 16:18 que estava al 100% fins les 22:30, quan al vaig parar amb un càrrega per sobre del 50%, van 6 hores i 12 minuts.
Avui porta engegat 1 hora i 20 minuts i la bateria està al 46%.
En total ja son 7 hores i 32 minuts funcionant amb bateria. I li queda quasi la meitat! brutal 👏
No hi ha cap altre marca que superi a #Apple en això.
#Panfrost & #RK3588 news: The long-awaited kernel driver supporting 10th-gen Arm Mali GPUs has now been merged into drm-misc! The existing Gallium driver support has also been extended, effectively enabling GPUs on Rockchip's RK3588! https://openfir.st/panthor#OpenSource#Arm
Gary’s recent (mostly) good experience with an Arm Chromebook makes us wonder about the current state of proper Linux on Arm laptops. Plus follow up on why the Wyse 5070 has some limitations, but is still a great little x86 box.
I'm trying to fix a patch to allow #pixman's #ARM#NEON#assembly code to build with clang. They perform a lot of mechanical changes to switch to the "unified" ARM assembly syntax (.syntax unified), supported by both #gcc and #clang.
With clang the code builds but fails 3 of the tests in the test suite with what appear to be unaligned accesses. With gcc, the test suite passes before and after the patches.
Hey, @AsahiLinux!
My company asked me to write a blogpost to be put on our website, detailing what Asahi is, how it started, and what impact could it have on software development business in the future.
Would you like to fact check such blogpost, maybe give your own few words to be put in it, and maybe, just maybe, do a short video interview?
Would be thrilled!
Please, repost this, so Asahi team sees this 🙏 #linux#asahi#apple#silicon#arm#interview#blogpost