Open-source News

RHEL In Your Car? Red Hat Building Out Automotive Infotainment Team  Phoronix

Control Scanners in Linux With the SANE API  MUO - MakeUseOf

Control Scanners in Linux With the SANE API  MakeUseOf

New Ubuntu Linux Kernel Security Updates Address Six Vulnerabilities, Patch Now  LXer

System76 Pangolin Linux laptop with AMD Ryzen now available for $849 and up  Liliputing

Going back to last December System76 had been teasing a new Pangolin laptop that would be AMD powered. Finally their new laptop has launched with Ryzen 4000 series mobile processors and making use of the integrated Radeon graphics...

How to Restore and Backup PPAs, Applications, and Packages in Linux With Aptik  MUO - MakeUseOf

How to install qBittorrent on Kali linux - Linux Shout  H2S Media

System76 Pangolin is the AMD-powered Ubuntu Linux laptop of your dreams  BetaNews

Intel Details Rocket Lake S Processors, Linux Benchmarks To Come  Phoronix

Intel today is publicly detailing their 11th Gen "Rocket Lake S" processors. Here is what you need to know about Rocket Lake S although we cannot yet share any Linux performance figures until that later Rocket Lake S review embargo lift date.

Java 16 is out today in the form of the OpenJDK 16 general availability release...

Igalia has outlined some of the recent V3D compiler work they've been engaging in to help with the Vulkan driver performance on the Raspberry Pi 4 while the compiler back-end work also benefits the Mesa OpenGL driver too...

Linux: How to search for text within a file using the nano text editor  TechRepublic

Every month there seems to be a new software vulnerability showing up on social media, which causes open source program offices and security teams to start querying their inventories to see how FOSS components they use may impact their organizations. 

Frequently this information is not available in a consistent format within an organization for automatic querying and may result in a significant amount of email and manual effort. By exchanging software metadata in a standardized software bill of materials (SBOM) format between organizations, automation within an organization becomes simpler, accelerating the discovery process and uncovering risk so that mitigations can be considered quickly. 

In the last year, we’ve also seen standards like OpenChain (ISO/IEC 5320:2020) gain adoption in the supply chain. Customers have started asking for a bill of materials from their suppliers as part of negotiation and contract discussions to conform to the standard. OpenChain has a focus on ensuring that there is sufficient information for license compliance, and as a result, expects metadata for the distributed components as well. A software bill of materials can be used to support the systematic review and approval of each component’s license terms to clarify the obligations and restrictions as it applies to the distribution of the supplied software and reduces risk. 

Kate Stewart, VP, Dependable Embedded Systems, The Linux Foundation, will host a complimentary mentorship webinar entitled Generating Software Bill Of Materials on Thursday, March 25 at 7:30 am PST. This session will work through the minimum elements included in a software bill of materials and detail the reasoning behind why those elements are included. To register, please click here. 

Register for webinar

There are many ways this software metadata can be shared. The common SBOM document format options (SPDX, SWID, and CycloneDX) will be reviewed so that the participants can better understand what is available for those just starting. 

This mentorship session will work through some simple examples and then guide where to find the next level of details and further references. 

At the end of this session, participants will be on a secure footing and a path towards the automated generation of SBOMs as part of their build and release processes in the future. 

The post Generating a Software Bill of Materials (SBOM) with Open Source Standards and Tooling appeared first on Linux Foundation.

While recently Arch Linux developers and stakeholders were discussing the possibility of raising the x86-64 base requirements for this Linux distribution to the "x86-64-v2" micro-architecture feature level that roughly correlates to Intel Nehalem and newer, now the discussion has shifted to keeping the same x86-64 base level while potentially offering a "x86-64-v3" port for those with newer Intel/AMD CPUs...

Linux Vulnerable To Fifteen-Year-Old Security Bugs  Silicon UK

JingPad A 11 inch 5G Linux tablet running JingOS introduced  Geeky Gadgets

Siemens has recently been engaging directly with the upstream Linux kernel developers in aiming to mainline various drivers for benefiting their industrial PC platforms...

Siemens Working To Upstream More Linux Drivers For Their Industrial PCs  Phoronix