Google Gives WebView the Cold Shoulder

By Richard Adhikari

Google has decided not to fix vulnerabilities in WebView for Android 4.3 and older, sparking heated discussions among developers. Those versions of WebView run on the WebKit browser. Fixing them “required changes to significant portions of the code and was no longer practical to do so safely,” explained Adrian Ludwig, lead engineer for Android security. Ludwig recommended steps users and developers can take to mitigate the potential exploitation of WebView vulnerabilities without updating to Lollipop, or Android 5.0.

From: Linux Insider

FacebookTwitterGoogle+LinkedInEvernotePocketGoogle Gmail

PostgreSQL, the NoSQL Database

By Reuven Lerner

One of the most interesting trends in the computer world during the past
few years has been the rapid growth of NoSQL databases. The term may
be accurate, in that NoSQL databases don’t use SQL in order to store
and retrieve data, but that’s about where the commonalities end. NoSQL
databases range from key-value stores to columnar databases to
document databases to graph databases.
more>>

From: Linux Journal

FacebookTwitterGoogle+LinkedInEvernotePocketGoogle Gmail

There’s a GHOST in Linux’s Library

By Jack M. Germain

Patches for GHOST, a critical vulnerability in glibc, the Linux GNU C Library, now are available through vendor communities for a variety of Linux server and desktop distributions. Qualys earlier this week reported its discovery of GHOST, a vulnerability that allows attackers to remotely take control of an entire system without having any prior knowledge of system credentials. Qualys security researchers found the GHOST flaw and worked closely with Linux distribution vendors in a coordinated effort to develop a patch for all affected systems.

From: Linux Insider

FacebookTwitterGoogle+LinkedInEvernotePocketGoogle Gmail

HPC Cluster Grant Accepting Applications!

By John Grogan

Silicon Mechanics, Inc. has announced the open
submission period for its 4
th annual Research Cluster
Grant Program. This competitive grant will award two complete high performance compute clusters to two
institutions of higher education and research. The competition is open to all US and Canadian qualified post-secondary
institutions, university-affiliated research institutions, non-profit research institutions, and researchers at federal
labs with university affiliations.

more>>

From: Linux Journal

FacebookTwitterGoogle+LinkedInEvernotePocketGoogle Gmail