IPFire 2.15 Core 84 is a new stable release of the specialist distribution designed for firewalls. This is a release that fixes some security issues in the GNU Bash package which are commonly known as 'Shellshock' and it comes with more fixes and minor feature enhancements. As you may have already seen on the news, the Shellshock issues made more people look into the code of the default shell of many *nix systems. Those people found many more programming errors and provided fixes for them which have been applied in this release. IPFire is now shipping GNU Bash 4.3.30 and the companion library readline in version 6.3. There have been some denial of service issues in the Squid web proxy which have been fixed in release 3.4.8. Those are of minor severity only and quite possibly cannot be exploited to inject code. The firewall got a couple of new features which I explained in detail in a post on the IPFire planet.
Version 1.1.1 of Tails is a Debian-based specialist distribution and live CD designed for anonymous web browsing. Notable user-visible changes include: upgrade the web browser to 24.8.0esr (Firefox 24.8.0esr + Iceweasel patches + Torbrowser patches); add an I2P boot parameter, without adding 'i2p' to the kernel command line, I2P will not be accessible for the Live user; I2P was upgraded to 0.9.14.1 and stricter firewall rules are applied to it, among other security enhancements; upgrade Tor to 0.2.4.23 (fixes CVE-2014-5117); upgrade Linux kernel to 3.14.15 (fixes CVE-2014-3534, CVE-2014-4667 and CVE-2014-4943); prevent dhclient from sending the hostname over the network; override the hostname provided by the DHCP server.
Scientific Linux 7.0 is a distribution compiled from the source code for Red Hat Enterprise Linux 7. elrepo-release - this package contains the ELRepo driver yum repo and GPG key; epel-release - this package contains the EPEL driver yum repo and GPG key; OpenAFS - this package contains the OpenAFS driver and client utilities; SL_gdm_no_user_list - this package will disable the GDM user list in the chooser; SL_enable_serialconsole - will setup a serial console for login; SL_no_colorls - will disable the automatic colorized ls output; sl-bookmarks - replaces redhat-bookmarks and removes upstream branding...
Lunar Linux 1.7.0 is a source-based distribution with a complete application management system. New features in 1.7.0: out with sysvinit and in with systemd; Linux kernel 3.16.3, GCC 4.9.1 and glibc 2.19; added support for the Btrfs file system; GRUB 2 or LILO, pick your poison; improved installer; now with initrd support; a bunch of updated modules.
BackBox Linux 4.0 is a major new version of the distribution designed for penetration testing - now based on Ubuntu 14.04 LTS. This release includes features such as Linux kernel 3.13, EFI mode, anonymous mode, LVM + disk encryption installer, privacy additions and armhf Debian packages. What's new? New Ubuntu 14.04 base; handy Thunar custom actions; RAM wipe at shutdown and reboot; system improvements; upstream components; bug corrections; performance boost; improved anonymous mode; predisposition to ARM architecture (armhf Debian packages); predisposition to BackBox Cloud platform; new and updated hacking tools.
ROSA R4 "Desktop Fresh" edition is a a desktop Linux distribution featuring a customised and user-friendly KDE 4.13.3 desktop. The distro presents a vast collection of games and emulators, as well as the Steam platform package along with standard suite of audio and video communications software, including the newest version of Skype. All modern video formats are supported. The distribution includes the fresh LibreOffice 4.3.1, the full TeX suite for true nerds, along with the best Linux desktop publishing, text editing and polygraphy WYSISYG software. The LAMP/C++/ development environments are waiting to be installed by true hackers.
NetBSD 6.1.5 is the latest stable version of NetBSD incorporating fixes to all recent security vulnerabilities. Some of the critical security advisory fixes include: "libXfont multiple vulnerabilities; multiple OpenSSL vulnerabilities; bozohttpd basic http authentication bypass; multiple vulnerabilities in the execve system call; multiple vulnerabilities in the compatibility layers; user-controlled memory allocation in the modctl system call..
gNewSense 3.1 is a minor update of the project's Debian-based Linux distribution built strictly from free software as defined by Richard Stallman's Free Software Foundation. This is a minor update to the current stable version with code name 'Parkes'. These are the most important changes: the correct country-specific package repository (instead of the beta one) is set at installation time; NetworkManager is included on the live image by default; the expert installer no longer suggests to install Debian's non-free repository. Current users of gNewSense 3.0 don't have to reinstall as they get all the updates automatically. However, they should fix their repository configuration. That repository will be disabled next week, in order to start development on gNewSense 4. I urge you to update your software sources to the correct ones as soon as possible.
CAINE 6.0 is a new version of the project's Ubuntu-based distribution and live DVD with an extensive selection of utilities for forensic analysis and penetration testing. CAINE offers a complete forensic environment that is organized to integrate existing software tools as software modules and to provide a friendly graphical interface. Changelog: Linux kernel 3.16; based on Ubuntu 14.04.1 64-bit edition, UEFI and Secure Boot ready; SystemBack is the new installer; fixed password request in polkit; fixed password request in text mode; ShellShock Bash bug fixed; mount policy always in read-only and loop mode; fstrim disabled; autopsy patched by Maxim Suhanov; HFS directories handling fixed; Sun VTOC volume system handling fixed..
Untangle NG Firewall 11.0, a major new version of the project's Debian-based specialist distribution for firewalls and gateways. Firewall software, featuring industry-leading protection with its refreshed Virus Blocker and Spam Blocker applications. Untangle makes an integrated suite of security software and appliances with enterprise-grade capabilities and consumer-oriented simplicity. With this release, Untangle NG Firewall offers improved performance via technology transfer from Untangle’s IC Control product. Combined with a new kernel, NG Firewall also brings enhancements to both HTTPS processing and Captive Portal from the IC Control product. Additionally, Untangle NG Firewall version 11 offers: event logs for search queries on Google, Bing, Yahoo and Ask; improved license management; new Application Control signatures.
GhostBSD 4.0 is a major new version of the project's FreeBSD-based operating system for the desktop, with MATE as the preferred desktop environment. This is the first release of the 4.x branch, which is based on FreeBSD 10 and which introduces some new features. Highlights: GCC is no longer installed by default, Clang is the default compiler; make(1) has been replaced with bmake(1) obtained from the NetBSD Project; pkg(7) is now the default package management utility; pkg_add(1), pkg_delete(1), bxpkg and related tools have been removed; Networkmgr is the default network manager; MATE is the default desktop; three workstation to choose from. GhostBSD 4.0-RELEASE is now available for the amd64 and i386 architectures, it can be installed from bootable ISO images or from USB memory sticks.
KNOPPIX 7.4.2 is a security and bug-fix update which corrects the Shellshock vulnerability in Bash and several other security issues. Version 7.4.2 of KNOPPIX is based on the usual picks from Debian 'Wheezy' and newer desktop packages from Debian 'testing' and Debian 'unstable'. It uses Linux kernel 3.16.3 and X.Org Server 1.16.1 for supporting current computer hardware. Changes: security fixes in Firefox (Iceweasel 32.0.3), Chromium (37.0.2062.120); GNOME desktop starts again using boot option 'knoppix desktop=gnome', if supported by graphics card; patch for the Bash shell against the 'Shellshock' bug in the environment variable parser; updated udev (215) and dBUS (1.8.8) for automatic hardware management and autostart of systemd components, updated LibreOffice (4.3.2), GIMP (2.8.14), KDE libraries (4.8.4)...
Chakra GNU/Linux 2014.09 is a desktop Linux distribution that uses the Pacman package manager and features the latest KDE 4.14 desktop. A noticeable change in this release is the major face-lift of Kapudan, which now gives the option to users to enable the [extra] repository during first boot so they can easily install the most popular GTK+-based applications. As always, many updates to packages are available after installation.
ExTiX 14.1 is an Ubuntu-based distribution with a customised GNOME 3.10 desktop environment. ExTiX 14.1 64-bit is based on Ubuntu 14.04. The original system includes the Unity desktop. After removing Unity I have installed GNOME 3.10 and GNOME Classic 3.10 (a perfect replacement for Cinnamon). The system language is English. The ExTiX ISO image is now a hybrid image, which means that it can be very easily transferred to a USB pen drive. You can then run ExTiX from the USB stick and save all your system changes on the stick. Another big improvement is that ExTiX 14.1 can run from RAM. Use boot option 3 (Copy to RAM). When the system has booted up you can remove the disc or the USB stick. You'll need at least 2 GB of RAM to run ExTiX that way.
CentOS 5.11 is the distribution's final release in the 5.x branch. CentOS 5.11 is based on source code released by Red Hat, Inc. and it includes packages from all variants, including Server and Client. The Bash version included on the CentOS 5.11 ISO images is a version that contains the shellshock vulnerability.
Netrunner 2014.09.1 "Rolling" edition is a Manjaro-based distribution featuring the KDE 4.14 desktop. This release updated Samba file sharing, Kontact accounts and language pack installation. Laptop Mode Tools was replaced by the new TLP to give you better control of your power consumption and achieve a longer battery life with your laptop. With the 2014.09 version we updated Netrunner Rolling to the latest software updates from Manjaro, including Linux kernel 3.14.18 with lots of bugs fixed and new driver support. KDE SC was updated to version 4.14.
OpenELEC 4.2 is a an updated build of the distribution designed for media centres, with separate editions built for Raspberry Pi and Apple TV. OpenELEC 4.2 is now based on Linux kernel 3.16, MESA 10.3, LLVM 3.5 and X.Org Server 1.16. We updated the NVIDIA graphic drivers in the 64-bit image to 340.x (32-bit remains on 304.123), systemd to 216 and XBMC to XBMC Gotham 13.2.
OpenMandriva Lx 2014.1 is an updated version of the project's desktop Linux distribution that features a customised and intuitive KDE desktop. Inside you can find: Linux kernel 3.15.10 with a new nrjQL patchset, KDE 4.13.3, Firefox 32.0.3, X.Org Server 1.15.2, MESA 10.2.6; an updated Bash with the latest security fixes; many updates for drivers and other software. Most of our effort focused on system boot up time, which is around 17 seconds now (and if you have an SSD that comes to about 12 seconds) and also to reduce memory footprint significantly.
Oracle Linux 5.11 is a distribution rebuilt from source code of Red Hat Enterprise Linux 5.11, but shipping with a custom "unbreakable" kernel. This release includes the Unbreakable Enterprise Kernel Release 2 (2.6.39-400), Oracle's recommended kernel for Oracle Linux. Oracle Linux can be downloaded, used and distributed free of charge and updates and errata are freely available. For support, you are free to decide which of your systems you want to obtain a support subscription for, and at what level each system should be supported.
ClearOS 6.5.0 "Community" edition is a CentOS-based distribution for cloud-connected servers and gateways designed for homes, hobbyists and small organisations. Along with the usual round of bug fixes and enhancements, the 6.5.0 release introduces QoS, marketplace enhancements, a network detail report, an administrators application, official Amazon EC2 support, a software RAID manager, a network map tool, UPnP support, an updated web server application, as well as new reporting features. Under the hood, some changes were made to support OwnCloud as well as web-based applications (Tiki Wiki, WordPress, Joomla, etc.). For businesses and organizations, ClearOS Professional 6.5.0 also includes: network map for business; Samba 4 and Samba Directory (beta).