Security Leftovers

• Reproducible Builds: Supporter spotlight: Hans-Christoph Steiner of the F-Droid project

  The Reproducible Builds project relies on several projects, supporters and sponsors for financial support, but they are also valued as ambassadors who spread the word about our project and the work that we do. This is the fifth instalment in a series featuring the projects, companies and individuals who support the Reproducible Builds project. We started this series by featuring the Civil Infrastructure Platform project and followed this up with a post about the Ford Foundation as well as a recent ones about ARDC, the Google Open Source Security Team (GOSST) and Jan Nieuwenhuizen on Bootstrappable Builds, GNU Mes and GNU Guix.

• Citrix Releases Security Updates for Hypervisor | CISA

  Citrix has released security updates to address vulnerabilities that could affect Hypervisor. An attacker could exploit one of these vulnerabilities to take control of an affected system.

• Ransomware groups targeting Mitel VoIP zero-day - The Record by Recorded Future

  Ransomware groups are targeting a zero-day affecting a Linux-based Mitel VoIP appliance, according to researchers from CrowdStrike. The zero-day – tagged as CVE-2022-29499 – was patched in April by Mitel after CrowdStrike researcher Patrick Bennett discovered the issue during a ransomware investigation. In a blog post on Thursday, Bennett explained that after taking the Mitel VoIP appliance offline, he discovered a “novel remote code execution exploit used by the threat actor to gain initial access to the environment.”

This Week in GNOME: #49 New Views

Update on what happened across the GNOME project in the week from June 17 to June 24.

Notepadqq - A powerful text editor, somewhat forgotten

If you're tuning late into the Dedoimedo show, here's a TL;DR on what's happening. I'd like to be able to move away from Windows as my primary computing platform for home use. This is easier said than done, because of a long software dependency exclusive to Windows, office and gaming being the prime culprits. My journey is starting now, but could take a good few years to complete. Along the way, I'm migrating my software workloads to Linux. Some programs are native, some aren't. One possible solution: WINE. WINE, the main reason why we're here. I've already shown you how to run Notepad++ this way. It' an amazing, flexible program, with superb capabilities, and in my opinion, unrivaled by any other program of this nature. The question is then, is it possible to get Notepad++ look & feel in Linux, natively? Today, I'd like to figure that out. I'm not stranger to text editors, it's just that my experience shows that whatever is out there, the other options aren't as good or friendly as Notepad++. However, I'm always testing and trying new things. I do quite frequently use KWrite, Kate, Geany, and to some extent, Notepadqq. Indeed, it is time to tell you a bit more about the latter.

PSPP 1.6.1 has been released

I'm very pleased to announce the release of a new version of GNU PSPP. PSPP is a program for statistical analysis of sampled data. It is a free replacement for the proprietary program SPSS.