GitLab 6.0, Git 1.8.4, Ubuntu 12.04.3, Debian Privileges and ngIRCd updates in Snippets


  • GitLab 6.0: The open-source alternative to GitHub, GitLab has just been updated to version 6.0 with improved group management for projects which can associate users to the group, merge requests between forks of a project and the original project, branch pruning and creation from the GitLab UI and lists of other enhancements. Version 6.0 also sees the introduction of an enterprise edition of GitLab.
  • Git 1.8.4: The latest update to Git itself comes in the form of Git 1.8.4 which updates the Cygwin port and Git-gui, has changes to credential helper, adds an interactive mode to “git clean”, made gitweb more navigable, improved performance of various components and much more. Check the release notes for the full list of features and fixes and a note on backward compatibility and the forthcoming Git 2.0.
  • Ubuntu 12.04.3 LTS: As is its nature, the latest rollup of fixes and patches for Ubuntu’s most recent Long Term Support edition 12.04, has arrived in the form of Ubuntu 12.04.3 LTS with an updated kernel and X stack and refreshed versions of Kubuntu, Edubuntu, Mythbuntu and Ubuntu Studio. If you’ve been updating your installations, you won’t need this. If you are going to be installing 12.04LTS on new systems, you’ll want to download the updated images.
  • Debian Privilege Escalation: Debian users should be aware that Tavis Ormandy has been looking into Debian and found an interesting privilege escalation when VMware was installed. Ormandy had alerted VMware already and they issued an advisory with workarounds and patches.
  • ngIRCd security updates: If you run the fine ngIRCd IRC daemon, then you may have updated version 20 when it was released last year. That version, and 20.1 and 20.2 contained an error which could crash the server when NoticeAuth was enabled. 20.1 and 20 also could be crashed by arbitrary users with the KICK command. Now, there’s version 20.3 with both flaws fixed and available to download.

Meteor framework burns brighter


Meteor is a very clever Node/JavaScript framework which I will admit to have been using in the recent past. It allows developers to create live updating, multiple screen apps without having to delve too much into the required magic of how the data gets from A to B,C and D – check out the screencasts and examples for a better idea. Now the developers have announced the latest update, version 0.6.5, which has added some very useful features that will make building larger, more complex applications easier. First new feature is a namespacing system which gives each module or package its own namespace and automagically wraps them to stop them clashing. This works in the server or browser and makes life easier of package writers who don’t need to worry about butting heads with other package writers.

Second highlight feature is the components of standard apps are now visible in the packaging systems as “standard-app-packages” and developers can remove them as needed. One example would be removing the web server so you can write lean command-line tools or daemons. Third up, full support for source maps which means that when there’s an error with say CoffeeScript code (which is turned into JavaScript and goes through various manipulations before it hits the browser or server), then the error will, using the source map, point to where it went wrong in the CoffeeScript source, not to the JavaScript code it became. Fourth feature on the list is simple support for server-side data files. Full details of these and the many other changes in the release notes. Meteor is open sourced under an MIT licence.