LinuxSecurity.com: Race condition in the rmtree function in File::Path 1.08 and 2.07 (lib/File/Path.pm) in Perl 5.8.8 and 5.10.0 allows local users to create arbitrary setuid binaries via a symlink attack.

LinuxSecurity.com: Stack-based buffer overflow in the demux_open_vqf function in libmpdemux/demux_vqf.c in MPlayer allows remote attackers to execute arbitrary code via a malformed TwinVQ file.

LinuxSecurity.com: A security issue has been reported in GIT, which can be exploited by malicious, local users to gain escalated privileges.

LinuxSecurity.com: Multiple vulnerabilities in VLC may lead to the remote execution of arbitrary code.

LinuxSecurity.com: Glendale, CA (PRWEB) December 21, 2008 -- PandaLabs, Panda Security's malware analysis and detection laboratory, today announced that a significant increase in the volume of malware (viruses, worms, Trojans, etc.) is expected in 2009. Panda Security's laboratory detected more

LinuxPlanet: "I've never believed that the distinction between "amateur" and "professional" was quality; that is, that amateur means poor quality and professional = high quality. The only difference is professionals get paid."

Internet News: "One of the notable features of open source software is forking. If an open source project takes a direction that users or developers don't like, well, they can fork off in a new direction."

SSL Shopper: "Unethical business practices of an SSL Certificate reseller have been exposed and it is causing many to wonder about the security and practices of SSL providers."

Mandriva: "The first alpha for Mandriva Linux 2009 Spring (2009.1) is now available"

Help Net Security: "As a new year approaches we must prepare for new Internet security threats. Every year, new and innovative ways of attacking computer users emerge and continue to increase in volume and severity. To know where we are

Datamation: "Pundits and business executives alike are predicting gloomy economic times for 2009. But when the talk turns to free and open source software (FOSS), suddenly the mood brightens. Whether their concern is the business opportunities in open source or

Cyber Cynic: "AIR (Adobe Integrated Runtime) is a cross-operating system runtime that lets you use rich Internet applications that combine HTML, Ajax, Adobe Flash, and Adobe Flex technologies. What that means to you and me is that it's lets us

In which your faithful editors dispense good will, good wishes, and a scoop on a big Linux story.

Tip of the Trade: "DBAN (Darik's Boot And Nuke) is designed to fully and securely wipe your disk. It's a downloadable self-contained boot disk, available for CD/DVD, floppy disk, or USB flash drive."

Desktop Linux: "Q1 -- When I installed OpenSUSE 11.1, I had to agree to the new license first, but it only seemed to be available in English. Given SUSE's proud history as Europe's top Linux desktop, are there plans to

Open Enterprise: "I don't know what Cox will be doing at Intel, but as an employee of a hardware company he is likely to be involved in dealing with the kind of lower-level issues that have presumably become increasingly scarce

Phoronix: "Video acceleration APIs for Linux has been a hot topic recently with NVIDIA having introduced VDPAU last month (the Video Decode and Presentation API for Unix) that brings PureVideo-like features to Linux with great results while it's already finding

The VAR Guy: "What's the biggest secret to Red Hat's success in a down economy? Plenty of pundits think it's Linux and JBoss open source middleware. But The VAR Guy has another theory: One of Red Hat's smartest moves is

Standards Blog: "Yesterday I filed a pro bono amicus curiae ("friend of the court") brief with the United States Supreme Court in support of the Federal Trade Commission's petition for writ of certiorari in its suit against Rambus Technologies. I'm