LAN 219: Linux Action News 219¶
- Air Date: 2021-12-12
- Duration: 17 mins 1 secs
About this episode¶
The Log4Shell vulnerability is making waves this week; we'll explain why and break down how it works.
Your hosts¶
Sponsored by¶
- Jupiter Network Membership: Support the entire network, and get access to every member's special feed for every show on the network. Promo Code: thesignal
- Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
- Ting: Save $25 off your first device, or $25 in service credit if you bring one!
Episode links¶
- GNOME 42 To Finally Allow Input Events To Happen Full-Rate — Up to now GNOME Shell has been compressing pointer motion events so they are synchronized to the monitor refresh rate, which can be anywhere from around 30 to 144 events per second depending upon display.
- An Eventful Instant – GNOME Shell & Mutter
- Do not throttle input in wayland event delivery
- FreeBSD 12.3-RELEASE Announcement — The FreeBSD Release Engineering Team is pleased to announce the availability of FreeBSD 12.3-RELEASE. This is the fourth release of the stable/12 branch.
- systemd 250 Is Coming With A Boat Load Of New Features — systemd 250 is packing a rather large number of new features and changes across the board for this dominant Linux init system and service manager.
- Log4Shell — RCE 0-day exploit found in log4j2, a popular Java logging package
- Apache - The ASF on Twitter — “Did you know that Ingenuity, the Mars 2020 Helicopter mission, is powered by Apache Log4j? https://t.co/gV0uyE1ylk #Apache #OpenSource #innovation #community #logging #services
- Tom (^-^) on Twitter
- Kevin Beaumont on Twitter — “Starting a new thread for log4j security vulnerability and fallout. Spoiler: although this emerged as a Minecraft issue (lol) there is going to be impacts across a wide range of enterprise software for some time.”
- Log4jAttackSurface MEMES
Tags¶
144hz, apache, apache struts, apple icloud, exploit, formatmsgnolookups, freebsd 12.3, gnome 42, gnome shell, input events, java, java naming and directory interface, jndi, jvm, linux action news, linux news podcast, log4j2, log4shell, minecraft, open source funding, refresh rate, steam, systemd 250, systemd-homed, uid mapped mounts, vulnerability