LWN.net has posted a Linux Mandrake advisory: “A number of problems were found by the SuSE security team recently
during an internal audit of the CUPS printing package. These problems
have been resolved with the latest CUPS release which include temp
file creation vulnerabilities, potential buffer overflows, and other
security enhancements. It is highly recommended that all
Linux-Mandrake users upgrade to this new version of CUPS. Due to prior
packaging problems, users are advised to completely remove the
following CUPS packages if they are currently installed on your system: cups-common, libcups1, and libcups1-devel.”

From a press release at LinuxPR: “Teamware Group, a Fujitsu subsidiary, and The FIEN Group, a Southern California-based technology consulting organization have signed a partner agreement according to which The FIEN group will sell Teamware Office 5.3 for Linux groupware to customers across the USA.”

LWN.net: “ISC BIND 8 contains a buffer overflow in transaction signature (TSIG)
handling code.” Versions of TurboLinux 6.05 and earlier are affected, as is WorkStation 6.1.

LWN.net: “Sendmail, launched with the -bt command-line switch, enters its special
“address test” mode. Under these conditions, it is vulnerable to a
segmentation fault which can occur when trying to set a class in ad-
dress test mode due to a negative array index.” Affects TurboLinux 6.1 WorkStation and TurboLinux 6.05 and earlier.

From a press release at LinuxPR: “The Colorado Linux Info Quest (CLIQ) board of
directors is pleased to announce our preliminary lineup for invited talks
and Birds of a Feather Sessions for CLIQ 2001.

This years event includes noted speakers such as Scott Draeker of Loki Entertainment Software, Andy Hertzfeld of Eazel, and John Lasser, author of the book “Think Unix.” While not all the invited speaker slots have been filled, and the event day schedule has yet to be finalized, the CLIQ board wanted to get the word out on how things are shaping up.”

From ZDNet News: “Intel will up the stakes in the power-saving mobile processor game next week with a faster mobile Pentium III aimed at smaller notebook PCs, an evolving class of systems referred to as “thin-and-lights.””

Network World Fusion News reports that Sun is ready to give its Solaris operating system a shot in the arm. The company announced Sun Solaris 5 1/01 OE will include a refined Unix file system and other features that increase the OS performance and client network scalability by up to ten percent.

XML is considered by many to be the best thing o happen to computers since the invention of the Internet, but that doesn’t mean companies are rushing to embrace it. In fact, quite a few companies are still trying to figure out if XML is even worth more than a cursory glance. Story at Network World Fusion News.

Dan Meyers writes “RidgeRun, Inc., announced their Open Multimedia Interface(tm) (OMI), an API and multimedia plug-ins for Linux. With OMI, Linux software developers now have an easy way to integrate multimedia functionality into applications and games. OMI is simple, powerful and lightweight to meet the constraints of embedded devices as well as supporting high-end systems. The company’s intent is to help developers create multimedia-enabled applications and games for Linux. RidgeRun’s DSPLinux excels at running multimedia content on embedded systems by using the strengths of Digital Signal Processors.

RidgeRun has announced sponsorship for GStreamer, a popular Open Source streaming media framework, which is an important infrastructure component of OMI. “There are many great Open Source libraries out there,” said Phil Verghese, RidgeRun’s CTO, “but most are tied to specific applications and few scale well. GStreamer stands out from the rest, because of its good design and multimedia performance.” Verghese explained, “Within the Linux community today, there is a considerable excitement and activity around integrating multimedia into applications and games. At RidgeRun, we want to promote and foster that activity to enable more compelling Linux applications. OMI offers a powerful, yet simple to use API which easily supports current and future multimedia standards, in an application-friendly Open Source framework that extends the great foundation of GStreamer.”

Developers are encouraged to visit http://omi.sourceforge.net to contribute to this project. The first version of the OMI interface will be released there in the next few weeks, along with future enhancements to GStreamer. OMI and GStreamer are both released under the GNU Library General Public License (LGPL).

About RidgeRun, Inc.
RidgeRun, Inc. is exclusively focused on bringing the reliability and
flexibility of Linux to embedded Internet appliances based on DSPs (digital signal processors). RidgeRun’s DSPLinuxTM is an operating system that leverages the power of Texas Instruments’ dual-core DSP architectures to deliver performance leading platforms for wireless, broadband and multimedia appliances using DSPs. These include mobile phones; digital cameras, audio and video players, automotive systems, set-top boxes, home networking gateways, and PDA’s. The RidgeRun team has unparalleled experience in developing world-class embedded systems, fault-tolerant software and high performance Linux solutions. RidgeRun can be reached at www.ridgerun.com http://www.ridgerun.com/ or by e-mail to info@ridgerun.com.

###

All products and trademarks mentioned herein are the property of their respective owners.”

ZDNet reports: “Sun Microsystems has revealed a security hole in several versions of a critical component of Java that could allow an attacker to run harmful programs on a victim’s computer.
The vulnerability appears in versions of the Java Runtime Environment that Sun has released for servers running Windows, Linux and Sun’s Solaris operating systems. However, the company asserts that the flaw doesn’t affect the Java components included in Microsoft’s Internet Explorer and Netscape’s Navigator browsers.”