Undoubtedly, 2021 was a fairly active year, despite the fact that even during the first half of that year there were still many restrictions due to the measures taken by different nations in relation to the current Covid-19 pandemic.
Within the events that arose we share in this article some of the most important and that they had something to talk about or that they were very popular news.
2021 Events
Something was not stopped talking during 2021 and that during the last semester of this he had a lot to talk about was the issue of vulnerabilities of which of the most notorious we can remember that of log4j which allows the execution of arbitrary code when a specially formatted value is written to the registry in the format "{jndi: URL}".
There is also that of Mozilla NSS en the set of cryptographic libraries NSS (Network security services) from Mozilla that could lead to the execution of malicious code when processing DSA or RSA-PSS digital signatures specified using DER (Distinguished Encoding Rules).
Another was the one that was detected in HP printers affecting more than 150 different models of HP LaserJet, LaserJet Managed, PageWide and PageWide Managed printers and MFPs. The vulnerability allows a buffer overflow in the font processor when sending a specially designed PDF document for printing and having its code run at the firmware level.
On the side of the vulnerabilities in processors and hardware are those of the new types of attacks on Intel and AMD CPUs. Three Specter and Meltdown class vulnerabilities in AMD CPUs and vulnerability in AMD SEV. Data leaks through the Intel CPU ring bus.
We must also remember the attack on Intel SGX and the vulnerabilities in MediaTek's DSP chips and NXP tokens.
On the other hand, we must also remember andThe movement to remove stallman and dissolve the Board of Directors of the STR Foundation following Stallman's return to the STR Foundation Board of Directors. The severance of relationships with the Open Source Foundation for many open source projects, including Red Hat, Fedora, Creative Commons, GNU Radio, OBS Project, SUSE, The Document Foundation. The Debian project has taken a neutral position. Restructuring of the management of the Open Source Foundation.
Another very notorious case was that of the suspension from the University of Minnesota in kernel development Linux, since due to certain activities that they mentioned as "experimenting" with the sending of potentially vulnerable patches and as soon as they were discovered, the university was left out of participation in the kernel.
On the side of the software and what was born in 2021 Amazon's news about OpenSearch, which is a fork of Elasticsearch, to which Elasticsearch subsequently blocked the ability to connect to forks in client libraries.
In the case of operating systems this muditaOS which is for electronic paper displays. Muen is a microkernel for building highly reliable systems. Kerla is a Linux compatible Rust kernel. Chimera (Linux kernel + FreeBSD environment). ToaruOS. OpenVMS port for x86-64. Fuchsia OS pre-installation on Nest Hub devices and support for running Linux programs on Fuchsia.
In the part of acquisitions is that of Muse Group that took over Audacity and introduced new privacy rules (the community reacted with forks) and also this category is the news of Brave who bought the search engine Cliqz.
Finally, on the part of the claims, there is that of the legal claim against Vizio, associated with the violation of the GPL, also the resolution of the case that has lasted many years between Xinuos against IBM and Red Hat.
Sony Music succeeded in blocking pirated sites at the level of Quad9's DNS resolution system and where the court in charge rejected Quad9's appeal.
Another very notorious case was that of Google in which it defeats Oracle in the case of Java and Android and we cannot forget about the case of Take-Two Interactive which has secured a GitHub crash of its RE3 open source project. After the appeal, GitHub regained access, but Take-Two filed legal action against the developers and GitHub again blocked the repository.