Gentoo Weekly Newsletter: 1 October 2007The Gentoo/PPC team held a meeting recently, a summary of the topics and discussion follows. First, the PPC team would like to announce a new lead! Gysbert Wassenaar will be taking the Operational Manager position for Gentoo/PPC. This position fills the position required by the TLP. If you have any Gentoo/PPC project related questions, Gysbert will be handling them. Congratulations Gysbert! Tobias Scherbaum has volunteered to work on updating the Gentoo/PPC website. If anyone has any content or suggestions for content, please let the team know. Next, to help better represent the number of active PPC developers, it was proposed that the developers that are listed in the herd xml for PPC only contain the developers actively working on solving PowerPC bugs and/or working with users in the forums or IRC. To be considered "active" a developer must have worked on PPC bugs in the last 30 days or been active on the forums or IRC. Note that this does NOT mean that developers who are considered inactive will be removed from the PPC mailing alias or retired. This is simply meant to give other developers an idea of the size of the pool of active Gentoo/PPC developers and to give them a list of people who can actively answer their question, barring !away status that is. Now, in terms of the Gentoo/PPC team, things aren't all that gloomy! Despite the lack of man-power, they've managed to keep up with the constant stream of keywording requests, and although perhaps a bit late at times, the current list doesn't look too bad. Still, the PPC team is always looking for more help! If you have a 32 bit PPC machine or a 64 bit PPC machine running a 32 bit userland and would either like to donate it or help the PPC team squish bugs, they would like to hear from you! Finally, and this is a big one, the next release was discussed. The Gentoo/PPC team has decided to remain a supported arch and decided to do a release during the next release cycle. In a departure from previous releases, a combined PPC/PPC64 InstallCD was discussed. Such a CD will require coordination with the PPC64 team, but hopefully will end up resulting in less work for both teams. Thanks to all who attended the meeting! The following developers recently left the Gentoo project:
The following developers recently joined the Gentoo project:
The following developers recently changed roles within the Gentoo project:
Lighttpd is vulnerable to the remote execution of arbitrary code. For more information, please see the GLSA Announcement teTeX: Multiple buffer overflows Multiple vulnerabilities have been discovered in teTeX, allowing for user-assisted execution of arbitrary code. For more information, please see the GLSA Announcement Bugzilla: Multiple vulnerabilities Bugzilla contains several vulnerabilities, some of them possibly leading to the remote execution of arbitrary code. For more information, please see the GLSA Announcement RPCSEC_GSS library: Buffer overflow A buffer overflow vulnerability has been discovered in librpcsecgss. For more information, please see the GLSA Announcement PHP contains several vulnerabilities including buffer and integer overflows which could lead to the remote execution of arbitrary code. For more information, please see the GLSA Announcement libvorbis: Multiple vulnerabilities A buffer overflow vulnerability and several memory corruptions have been discovered in libvorbis. For more information, please see the GLSA Announcement A buffer overflow vulnerability has been discovered in libsndfile. For more information, please see the GLSA Announcement QGit: Insecure temporary file creation A vulnerability has been discovered in QGit allowing local users to overwrite arbitrary files and execute arbitrary code with another user's rights. For more information, please see the GLSA Announcement OpenSSL: Multiple vulnerabilities A buffer underflow vulnerability and an information disclosure vulnerability have been discovered in OpenSSL. For more information, please see the GLSA Announcement A buffer overflow vulnerability has been discovered in Tk. For more information, please see the GLSA Announcement This section lists packages that have either been moved or added to the tree and packages that have had their "last rites" announcement given to be removed in the future. The package removals come from many locations, including the Treecleaners and various developers. Most packages which are listed under the Last Rites section are in need of some love and care and can remain in the tree if proper maintainership is established.
The Gentoo community uses Bugzilla (bugs.gentoo.org) to record and track bugs, notifications, suggestions and other interactions with the development team. Between 23 September 2007 and 29 September 2007, activity on the site has resulted in:
Of the 9532 currently open bugs: 10 are labeled 'blocker', 100 are labeled 'critical', and 330 are labeled 'major'. The developers and teams who have closed the most bugs during this period are:
The developers and teams who have been assigned the most new bugs during this period are:
The GWN is staffed by volunteers and members of the community who submit ideas and articles. If you are interested in writing for the GWN, have feedback on an article that we have posted, or just have an idea or article that you would like to submit to the GWN, please send us your feedback and help make the GWN better. 7. GWN subscription information To subscribe to the Gentoo Weekly Newsletter, send a blank e-mail to gentoo-gwn+subscribe@gentoo.org. To unsubscribe to the Gentoo Weekly Newsletter, send a blank e-mail to gentoo-gwn+unsubscribe@gentoo.org from the e-mail address you are subscribed under. The Gentoo Weekly Newsletter is also available in the following languages:
|
|