|
1825 Monetary Lane Suite #104 Carrollton, TX
Do a presentation at NTLUG.
What is the Linux Installation Project?
Real companies using Linux!
Not just for business anymore.
Providing ready to run platforms on Linux
|
Show Descriptions... (Show All/All+Images)
(Single Column)
- Debian gsasl Critical Memory Exposure Resolution DSA-6348-1
It was discovered that missing input sanitising in the NTLM client of the GNU SASL library could result in memory disclosure For the stable distribution (trixie), this problem has been fixed in version 2.2.2-1.1+deb13u2. We recommend that you upgrade your gsasl packages.
- Debian Asterisk Important Buffer Overflows and Fixes DLA-4631-1
Several issues have been found in asterisk, an Open Source Private Branch Exchange (PBX). They are related to buffer under- or overflows, either on heap or on stack. Some are related to use-after-free or wrong processing of invalid or untrusted certificates. For Debian 11 bullseye, these problems have been fixed in version
- The LWN public topics list
Part of running LWN is keeping a list of potentially interesting topicsthat may merit the effort to turn into articles. As an experiment, we arenow exposing that list to our subscribers at theProject Leader and Supporter levels. The hope is that this list willprovide useful insights into what is on our radar and which might be comingto LWN in the near future.
With this feature, we hope to give our most committed subscribers a lookbehind the curtain and the ability to provide input on the topics they aremost interested in reading about. There, is, thus, a simple votingmechanism built into this list. No topic will be chosen (or rejected)solely on the basis of votes; there are a lot of considerations that gointo topic selection, and that will not change. But more information aboutwhere our readers' interests lie will, hopefully, be helpful.
For all readers: we are always happy to welcome topic suggestions sent tolwn@lwn.net.
- [$] The state of Fedora in 2026
On June 15 at Fedora's Flock conference, held inPrague, Fedora Project Leader (FPL) Jef Spaleta delivered a short "State ofFedora" keynote that provided a bit of insight into the status of theproject. Topics included the overall growth for Fedora usage, ways to increasecontributions, and an alarming decline in the number of active packagers workingon the project.
- Firefox 152.0 released
Version152.0 of the Firefox web browser has been released. Notablechanges in this release include a brand-new look for the FirefoxSettings interface, the ability to disable tracker blocking in privatebrowsing tabs, a feature to mute browser sound from the address bar,experimental support for the JPEGXL image format, and more.
- KDE Plasma 6.7 released
Version6.7 of KDE's Plasma desktop has been released. Notable changes inthis release include per-screen virtual desktops, faster desktopswitching, introduction of the Uniontheming system as a tech preview, as well as many other improvements and bugfixes. The release is dedicated to Eric Laffoon, a longtime KDEsupporter, who passed away in May.
See the KDEwiki for a full list of new features, and the Changelogfor a list of all commits in this release.
- Security updates for Tuesday
Security updates have been issued by AlmaLinux (mod_http2, postfix, and webkit2gtk3), Debian (bird2, libgd-perl, and libreoffice), Fedora (7zip, ack, hugo, and perl-Mojo-JWT), Mageia (atril, evince, xreader, emacs, lcms2, libgcrypt, libinput, libsndfile, putty, and sudo), Red Hat (openssl and osbuild-composer), SUSE (cheat, chromedriver, containerized-data-importer, cyrus-imapd, freeipmi, graphicsmagick, java-11-openj9, java-17-openj9, kitty, kubevirt, kubevirt-1.6, libcaca, libopenssl-3-devel, librav1e0_8, neonmodem, opensc, openssh, openssl-1_0_0, openssl-1_1, openssl-3, perl-HTTP-Daemon, perl-XML-LibXML, python-python-dotenv, python311-paramiko, python311-PyJWT, python311-starlette, python311-tornado6, qemu, restic, and trivy), and Ubuntu (adsys, cups, fastnetmon, freerdp2, freerdp3, mesa, nginx, rsync, ruby2.3, ruby2.5, and tmux).
- [$] Development statistics for the 7.1 kernel
Linus Torvalds releasedthe 7.1 kernel as expected on June 14. This development cyclebrought in a lot of new features — and a lot of new developers as well.The time has come for our traditional look at where the changes in 7.1 camefrom, with a digression into how our community may be changing in general.
- Stenberg: curl summer of bliss
Daniel Stenberg has announcedthat curl will not be accepting vulnerability reports from July 1through August 3, unless the submitter has a paid supportcontract. He is calling it the "curl summer of bliss".
As previously mentioned, we have been under a huge pressurefor the last four months or so. Now we need some rest. We do notexpect this deluge to be over.
[...] If you and your Open Source projects also want to participatein the summer of bliss 2026: just do it and let us know! I would ofcourse encourage you to do so. To take care of yourself as a toppriority.
The project's issue and pull-request trackers on GitHub will remainopen. The planned release date for curl 8.22.0 has been pushed backtwo weeks to September 2, 2026.
- Security updates for Monday
Security updates have been issued by AlmaLinux (.NET 9.0), Debian (apache2, chromium, jpeg-xl, librabbitmq, and openssl), Fedora (apptainer, bind9-next, chezmoi, chromium, collectd, composer, dnsdist, gh, python-django5, python-python-multipart, varnish, varnish-modules, vmod-querystring, vmod-uuid, weasyprint, and xorg-x11-server-Xwayland), Mageia (cups, expat, libpng, libssh, memcached, nghttp2, openimageio, packages, proftpd, and radare2), Oracle (.NET 10.0, .NET 8.0, .NET 9.0, and firefox), Red Hat (postfix and valkey), and SUSE (afl, alloy, ansible-core, apache-pdfbox, chromedriver, chromium, cpp-httplib-devel, dpkg, elemental-operator, elemental-toolkit, enc, erlang, ffmpeg-7, firewalld, git-bug, golang-github-prometheus-prometheus, grafana, GraphicsMagick, graphite2, kernel, kernel-devel, lcms2, ldns, libsoup, libyang, libzypp, logback, mariadb, NetworkManager, openssh, openvswitch, perl-GD, perl-XML-LibXML, polkit, postgresql-jdbc, postgresql18, python, python-django, python-M2Crypto-doc, python-Pygments, python-pygments, python-requests, python313-Django6, qemu, rpcbind, samba, strongswan, tmux, uriparser, and xdg-dbus-proxy).
- Hundreds of AUR packages compromised
Hundreds of orphaned packages hosted by the Arch User Repository (AUR) havebeen compromised by an attacker who has added a malicious npmpackage (atomic-lockfile) that can exfiltrate sensitivedata. The project is currently workingon cleaning up the mess. There is a list of affected packagesand post (possibly NSFW domain) by"sodiboo" with additional information. Arch Linux users (or users ofArch-based distributions) that use AUR packages may wish to see if theyhave installed any of the compromised updates.
- Security updates for Friday
Security updates have been issued by AlmaLinux (.NET 10.0, .NET 8.0, .NET 9.0, bind, expat, httpd:2.4, kernel, kernel-rt, mod_http2, openssl, poppler, redis, redis:7, samba, and unbound), Debian (ironic, kernel-wedge, libinput, linux-base, and neutron), Fedora (kernel, openssl, vaultwarden, and vaultwarden-web), Mageia (erlang-hex_core, erlang-rebar3, gnupg2, and sqlite3), Red Hat (buildah, podman, and skopeo), SUSE (flannel, gdk-pixbuf-loader-libheif, gnutls, google-cloud-sap-agent, grafana, graphite2, hplip, libIex-3_4-33, libzypp, nginx, openssh, perl-DBI, perl-Git-Repository, perl-Protocol-HTTP2, python-Pygments, python-simpleeval, python311-Django4, rclone, roundcubemail, strongswan, tomcat10, tomcat11, unbound, and webkit2gtk3), and Ubuntu (apache2, dotnet8, dotnet9, dotnet10, gst-plugins-base1.0, ironic, linux-azure-5.15, linux-azure-fips, lwip, mistral, and ubuntu-kylin-software-center).
- Homebrew 6.0.0 released
Version6.0.0 of the Homebrewpackage-management system has been released. Notable changes in thisrelease include the introduction of tap trust to improvesupply-chain security, improvements in sandboxing on Linux, a numberof performance tweaks, and many other changes.
See the changelogfor a full list. LWN covered Homebrew inNovember 2025.
- [$] Automatic mTHP creation in 7.2
The Linux kernel has long tried to use huge pages as a way to improveperformance, sometimes with more success than others. The size of hugepages has traditionally been imposed by the hardware, which typically onlyoffers a couple of relatively large options. In more recent times, though,the use of multi-size transparent huge pages (mTHPs), with more flexiblesizing implemented in software, has been growing. If all goes well, the7.2 development cycle will include the addition of a new feature,contributed by Nico Pache, to make the use of mTHPs even more transparent.
- Security updates for Thursday
Security updates have been issued by AlmaLinux (.NET 10.0, .NET 8.0, .NET 9.0, podman, poppler, and postgresql-jdbc), Debian (chromium, jackson-core, libdbi-perl, and libinput), Fedora (httpd, rust, and xmlstarlet), Mageia (openssh, postfix, and roundcubemail), Oracle (frr, kernel, libyang, n, postgresql-jdbc, and unbound), Red Hat (.NET 10.0, .NET 8.0, .NET 9.0, redis, and redis:7), SUSE (agama-web-ui, cockpit, cosign, glibc, google-cloud-sap-agent, google-osconfig-agent, kanidm, kernel, kubernetes, kubernetes1.23, kubernetes1.24, kubernetes1.25, kubernetes1.27, kubernetes1.28, libpodofo-devel, libyang, NetworkManager-libreswan, openCryptoki, python311-pypdf, rclone, steampipe, wicked, and xen), and Ubuntu (exim4, libcrypt-saltedhash-perl, libhttp-daemon-perl, samba, and uriparser).
- Linux Enacts Guidance To Tighten Acceptance Of New File-Systems Into The Kernel
There is no shortage of different file-systems available for Linux. New file-systems continue to come about in the open-source world but ultimately many of them end up not being well maintained or having very limited users and not necessarily innovating enough to make them worthwhile over other alternatives. Given the continued increase in file-systems looking to get into the Linux kernel, such as FTRFS and VMUFAT being some of the most recent and then even having multiple NTFS drivers for Linux, there is now documentation in place to formally lay out criteria for new file-systems to be accepted...
- ARK Just A Pi carrier board links Raspberry Pi CM5 to autopilot systems
ARK Electronics has recently featured the ARK Just A Pi, a compact carrier board for the Raspberry Pi Compute Module 5. The board provides USB, Ethernet, CSI camera, UART, PCIe, HDMI, and GPIO connectivity in a small form factor intended for integration with autopilot and embedded systems. ARK describes the board as a same-form-factor carrier […]
- First YouTube video new series on EasyOS
EasyOS is a unique Linux distribution and there is a lot of online documentation; however, seeing the features demonstrated, in simple small steps, may be very helpful. Hence we have started this video series. The first has been uploaded.
- Sandbox AI coding agents with microVMs on Fedora Linux
AI coding agents such as Claude code or Codex get more capable every month. This is great for productivity, but approving all commands gets annoying really quickly. On the other hand, allowing agents to run any command on your work machine is not a great idea. They are really good at exploring your production cluster […]
- Orange Pi 6 debuts with CIX P1 SoC, dual 2.5GbE, and 45 TOPS AI compute
Orange Pi has revealed new details for the Orange Pi 6, a compact single-board computer built around the CIX CD8180 processor, also known as the CIX P1. Compared with the previously previewed Orange Pi 6 Plus, the standard model uses a smaller 90 × 90 mm form factor with dual 2.5GbE networking, up to 24GB […]
- FreeBSD Receives Funding To Launch AI-Assisted Vulnerability Discovery
The FreeBSD Project announced today the launch of an AI-Assisted Vulnerability Discovery Project with grant funding provided by the Linux Foundation backed Alpha-Omega project. Alpha-Mega has sponsors including Microsoft, AWS, Google, Anthrophic, OpenAI, and others who will now be helping with FreeBSD uncovering new vulnerabilities by leveraging AI...
- Stop Killing Games Fails To Secure EU Law Despite 1.3 Million Signatures
The European Commission has declined (PDF) to propose a law requiring publishers to keep discontinued video games playable, despite the Stop Killing Games initiative collecting nearly 1.3 million verified signatures. Instead, it plans to develop a voluntary industry code covering end-of-life transparency and preservation. Dextero reports: The Commission's full communication said a legal obligation to keep games playable, as requested by the initiative, "would not be proportionate." It cited concerns about intellectual property rights, confidential business information, publisher costs, and potential cybersecurity or safety risks once games are no longer supported. The code of conduct could include more transparent storefront labeling about possible game discontinuation, along with more partnerships between publishers and cultural heritage institutions to preserve games. However, it would not legally require publishers to provide offline patches, private server tools, or other methods for players to continue accessing games after official support ends. The Commission also argued that existing EU consumer law already provides some safeguards, including requirements around transparency, contract duration, termination conditions, and possible refunds if a shutdown conflicts with the agreement or a consumer's reasonable expectations. [...] Despite the setback, Stop Killing Games has said it is not ending its push for legislation. In a response posted after the Commission's decision, the official Stop Killing Games account said the outcome was "not unexpected" and claimed the campaign had already prepared for the result. The group said it is now pushing for members of the European Parliament to amend Stop Killing Games into the Digital Fairness Act instead. "We can move on without the Commission and their non-decision," the group said, referencing earlier comments from Accursed Farms creator Ross Scott.
 
Read more of this story at Slashdot.
- AI and Brain-Computer Interface Allow Speechless ALS Patient To Work a Full-Time Job
UC Davis researchers say an implanted brain-computer interface has allowed Casey Harrell, an ALS patient who cannot speak, to synthesize sentences from brain activity with 99% accuracy in controlled tests and about 92% accuracy in everyday use. The Register reports that the system has remained usable at home since 2023, helping Harrell communicate naturally, control a computer, and return to full-time work without researchers needing to supervise each session. The Register reports: A team of scientists from the University of California, Davis, published a paper Monday detailing a years-long study of a brain computer interface (BCI) system implanted in a patient with amyotrophic lateral sclerosis (ALS, also known as Lou Gehrig's disease), which destroys motor neurons and causes loss of motor control and eventual paralysis. According to the team, their patient, Casey Harrell, has been living with BCI implants since 2023 that are still working today, giving him the ability not only to control a computer cursor with his thoughts, but also to speak. [...] Davis neurosurgeon David Brandman, co-principal investigator and co-senior author of the paper published Monday, as well as the surgeon who placed Harrell's implant, described the results his team published as the crossing of a threshold in BCI technology: Not only has Harrell's implant been working well with daily use since 2023, but it's also incredibly accurate. In controlled tests, the system managed to synthesize sentences from Harrell's brain activity with 99 percent accuracy; outside of the lab in daily use, Harrell still assessed it as being accurate 92 percent of the time. "The key thing to me is that it's enabling everyday communication for a guy who wants to talk but can't," Brandman told The Register in an interview. "Despite being paralyzed [Harrell] has gone back to work full time and has meaningful conversations with his daughter who's never heard the sound of his voice." Prior work in the BCI space, Brandman told us, has either required researchers to be in a patient's home whenever they're using the tech, or for the patient to come to the researchers. That's not the case here, with the system allowing Harrell's home care team to hook him up to the system themselves, enabling him to use the device for more than 3,800 hours in the past few years. Based on the time the study was filed (It published Monday but went into peer review in July 2025) that would mean Harrell was using the device for more than five hours a day, on average. "It is a life that is more full of dynamic action and with friends and family, with colleagues, and it is something that allows me to communicate more in my natural way of communicating than any other technology that I have experienced," Harrell told UC Davis via his BCI system.
Read more of this story at Slashdot.
- HPE Tempts VMware Users, Partners With Year of Free Virtualization Software
An anonymous reader quotes a report from Ars Technica: Hewlett Packard Enterprise's (HPE) new virtualization software promotion will likely pique the interest of end users and resellers who are unhappy with Broadcom's pricing of VMware. During its HPE Discover event in Las Vegas this week, HPE announced that customers could use its "HPE Morpheus Software -- VM Essentials" offering for free for "up to one year," per a press release. HPE's website describes its virtualization platform as a "VMware alternative." It includes a hardware virtual machine (HVM) hypervisor and unified management and lets users "manage VMware ESXi and HVM clusters from one console and migrate when you're ready," HPE's website says. "New VM Essentials customers can receive up to one free year of licenses for VM Essentials, a year of HPE Zerto for $1 to support non-disruptive migration to HPE virtual machines, and 0 percent interest on software through HPE Financial Services," HPE's announcement reads, referring to HPE's group for helping IT teams manage funding. Free for a year is cheaper than what Broadcom has charged for VMware vSphere since taking over. VMware prices have skyrocketed due to VMware's parent company eliminating perpetual licenses and bundling products into expensive packages. Notably, per its website, HPE recommends charging $600 per CPU socket per year for VM Essentials; Broadcom has controversially shifted vSphere licensing pricing to a per-core basis. "Customers are feeling quite a bit of pain in the change that some of the virtualization companies have put there, specifically Broadcom," Jeremiah Jenson, VP of HPE's North American channel and partner ecosystem, told CRN. The executive claimed that VM Essentials could bring up to 90 percent cost savings compared to VMware while also helping to "eliminate vendor lock-in and simplify hybrid IT." From March 1 to June 30, HPE has also been offering a free year of VM Essentials via rebate to customers who buy an AMD server and a one-year VM Essentials license. VM Essentials is only available through channel partners, a stark contrast from Broadcom's VMware approach, where the chip giant has drastically reduced the number of resellers that can sell VMware products. HPE's new promotion aims to entice customers to more deeply consider migrating off VMware. [...] HPE also announced that it would give 600 reseller partners who earn the HPE partner program's Private Cloud with Virtualization competency by the end of the year free VM Essentials software licenses for three years. Partners still have to pay support costs, though. The benefit is "a step in the correct direction," said Dean Colpitts, CTO of Canadian managed services provider (MSP) Members IT Group (MITG), which VMware cut from its reseller program after 19 years of partnership a year ago. However, limiting the promotion to 600 partners is "very shortsighted." He believes that HPE should give all of its partners VM Essentials "to facilitate getting [VM Essentials] into customer sites and displacing the competitors." "They need to fling [VM Essentials] as far and as fast as they possibly [can] to immediately gain traction and draw ISVs to them, which will increase adoption even more," he said.
Read more of this story at Slashdot.
- Commodore's Callback 8020 Is a $499 Flip Phone That Blocks Social Media and Browsers
Commodore has unveiled the Callback 8020, a $499 Sailfish OS flip phone that runs most Android apps but deliberately blocks social media, browsers, email, and workplace apps to discourage doomscrolling. The "not dumb dumbphone" still supports messaging, music, maps, ridesharing, hotspots, a removable battery, and plenty of Commodore nostalgia. "The phone uses T9-style texting with predictive input, includes Commodore SID ringtones, ships with a selection of Commodore and Sailfish games, and even includes Snake," reports TechSpot. From the report: Commodore says it has developed patent-pending technology that prevents browsers and social media apps from being sideloaded, while DNS-level blocking should stop them from working even if someone finds a way to install them. Users can still sideload nearly anything else if it's not available on the Commostore, but apps designed for doomscrolling remain off limits. That means useful services such as WhatsApp, SMS, Signal, Telegram, WeChat, Spotify, Uber, Lyft, maps, podcasts, QR scanning, voice notes, and hotspot support work, but the likes of Instagram, TikTok, Facebook, Gmail, and browsers do not. The Callback 8020 has a 3.25-inch 480 x 640 internal display, a MediaTek Helio G81 chip, 4GB of RAM, 64GB of storage, a 48MP Sony rear camera, an autofocus front camera, dual SIM support, USB-C, a headphone jack, FM radio, and something many of us miss from flagships: a removable battery. There's no 5G as Commodore argues that 4G VoLTE and Wi-Fi better fit a device meant to discourage constant streaming and scrolling. [...] The main screen is touch-capable but disabled by default, while the outer display keeps things deliberately sparse, showing basics such as time, battery, signal, and notifications via dome LEDs. The 8020 name is a nod to Commodore's 8010 modem from 1980. The phone comes in ProtoPET White, SX Silver, BASIC Beige, a translucent Starlight Edition, and a gold Founders Edition with a 24-karat gold-plated Commodore button. Standard models start at $499, the Starlight version is $549.99, and the Founders Edition costs $640. Preorders open June 30, with shipping targeted for winter. You can watch the launch ad on YouTube.
Read more of this story at Slashdot.
- Binance Set To Lose Permission To Operate In EU
Binance is expected to lose permission to serve EU customers in July after Greek regulators reportedly decided to reject its MiCA license application. Reuters reports: Under new EU rules, called MiCA, crypto firms have until the end of June to obtain a licence to allow them to keep servicing clients across the bloc. Binance's application, made to Greece's market regulator, is set to be turned down, the people said. European regulators have been attempting to rein in crypto exchanges, which allow people to trade cryptocurrencies such as bitcoin around the globe. Under MiCA, crypto companies have to apply for licenses from regulators in individual EU countries, which they can use as a "passport" to operate throughout the 27-nation bloc. At stake is oversight of the multi-trillion-dollar crypto industry, which regulators have long warned could destabilize markets and harm investors if not properly supervised. The Greek rejection would mean Binance will not be given the green light to operate in the EU, leaving the fate of Binance's customers based in the bloc uncertain. Binance posted on X after the Reuters report was published that it intends to "support an orderly process and minimise disruption to our users", without giving further details. A spokesperson for Binance, which has 300 million customers worldwide, earlier said it has been pursuing a MiCA licenze and had worked with regulators for 18 months. Binance believes it has met the requirements to be MiCA authorized, the spokesperson said. It understood that Greece's Hellenic Capital Market Commission had completed its review of the application and it was considered compliant. "HCMC has given no formal indication of the contrary," the spokesperson told Reuters.
Read more of this story at Slashdot.
- France To Stop Certifying Products Without Quantum-Safe Encryption
Starting in 2027, France's cybersecurity agency ANSSI will stop certifying security products that lack quantum-resistant encryption, effectively forcing government agencies and critical infrastructure operators to phase out older cryptographic systems. Reuters reports: Samih Souissi, ANSSI's chief of staff, said at the France Quantum conference that the agency would halt such certifications from 2027, and that businesses should be buying only quantum-safe products by 2030. ANSSI approval is required for use in French government agencies and critical infrastructure, making the policy a de facto phase-out of older encryption. "It's not only a technical issue," Souissi said. "It's a matter of governance, industrial planning, regulation, and sovereignty." The move reflects concern that attackers may store encrypted data now and unlock it later when quantum computers become strong enough to crack today's protections, a risk known as "harvest now, decrypt later."
Read more of this story at Slashdot.
- Mobileye Is Entering the US Robotaxi Market With Standalone Service
An anonymous reader quotes a report from Ars Technica: The driving technology company Mobileye plans to launch a robotaxi service in an as-yet-unnamed US city in 2027, it said earlier today. The service will be vertically integrated, using Mobileye's Moovit mobility platform to interact with customers booking rides, coordinate drivers, and so on. The Israeli company, which was bought by Intel in 2017 before going public again in 2022, says it will start with around 100 robotaxis early next year. The company first rose to prominence in the mid-2010s, when Tesla began using Mobileye's advanced driving assistance systems (ADAS) as part of Autopilot. That relationship lasted until 2016, when Mobileye dropped Tesla as a customer after being alarmed that a driver assistance system was being sold to end users as driverless technology. Since then, Mobileye has continued to work with other partners on ADAS and autonomous vehicles. It has developed a new "SuperVision" ADAS that combines cameras and radar sensors, used by Porsche and Polestar, among others. On the robotaxi front, it has partnered with Volkswagen Group's MOIA to develop a commercially available robotaxi based on the VW ID. Buzz minivan, and last year, Mobileye revealed plans to work with Lyft to deploy robotaxis in Dallas, "as soon as" this year. [...] If Mobileye's experience with the initial 100 robotaxis goes well, it says it will scale up to around 17,000 robotaxis within the following five years. "The robotaxi revolution has only just begun, and its potential for transforming how we travel around the world continues to increase," Shashua said. "This initiative is not a replacement for our existing partnerships; it is an extension of them," said Amnon Shashua, founder and CEO of Mobileye. "We remain deeply committed to enabling automakers and mobility providers with Mobileye Drive. At the same time, operating our own service allows us to accelerate adoption, gain direct operational experience, and showcase the full potential of autonomous mobility."
Read more of this story at Slashdot.
- Snap's First Consumer AI Glasses Are Coming This Fall For $2,195
Snap is launching its first consumer augmented-reality glasses this fall for $2,195. "You can preorder a pair of Specs now at specs.com with a $200 refundable deposit, and Snap says they're expected to ship 'this fall' in the US, UK, and France," reports The Verge. From the report: This is a big moment for Snap: The company made a big entry into smart glasses with its original Spectacles in 2016, and the company has been toiling away on nonpublic AR versions of Spectacles over the past few years. CEO Evan Spiegel promised the company would launch consumer AR glasses in 2026 and even turned its smart glasses team into a separate business. The company says that Specs are "fully standalone, with no puck and no tether." (Which is perhaps a jab at Apple's Vision Pro, which is tethered to a separate battery pack.) They'll be offered in two sizes, a 47mm model weighing 132g and a 52mm model weighing 136g, and will have removable inserts that Snap says will support "a wide range of prescriptions." You probably won't mistake Specs, with their wide, bold frames, for any of Meta's smart glasses -- Snap clearly picked a design that it wants to stand out. (They're not my style -- I don't think I can pull off the "snow goggles, but fashionable" look -- though maybe Jony Ive might like them.) They have visible light and infrared cameras, and while the Specs are recording, a little LED bar will glow in the middle of the glasses. Both of the lenses will be able to show you content, and Snap says that its display system is powered by a "proprietary liquid crystal on silicon technology" that offers a 51-degree field of view and can show 16 million colors. The lenses can also go from clear to tinted in 10 seconds, Snap says. The Specs have two Snapdragon processors onboard, and while Snap isn't specifying exactly which ones they are, the company says that one is focused on "computer vision" while the other is focused on running AR Lenses. "Together, they enable fast hand tracking, low latency, and responsive interactions that help digital content feel anchored in the real world," Snap says. You can also expect up to four hours of battery life on a charge, which Snap says accounts for things like "audio and video playback, AI assistance, Bluetooth notifications, and more." The Specs come with a charging case that Snap says will offer four more charges for a total of 20 hours of battery.
Read more of this story at Slashdot.
- SpaceX To Acquire AI Coding Startup Cursor For $60 Billion
SpaceX has agreed to acquire Cursor for $60 billion in stock, adding the popular AI coding assistant to Elon Musk's newly public aerospace-and-AI conglomerate. CNBC reports: Cursor built a popular AI coding tool that helps software developers generate, edit and review code, and the company has experienced explosive growth since its founding in 2022. In November, Cursor said it crossed $1 billion in annualized revenue, according to a release at the time. Cursor was also ranked at No. 37 on the annual CNBC Disruptor 50 list in 2026. [...] Musk merged SpaceX with his AI startup, xAI, earlier this year, and the Cursor deal looks set to help revitalize the company's efforts to compete with rivals like Anthropic and OpenAI, which also offer popular coding tools. SpaceX expects the merger to close during the third quarter of this year, according to a filing with the Securities and Exchange Commission. The transaction is subject to "requisite regulatory approvals," the filing said.
Read more of this story at Slashdot.
- The US Government's Anthropic Models Ban Was Never About an AI Jailbreak
TechCrunch's Zack Whittaker argues that the U.S. government's abrupt export-control order forcing Anthropic to pull its Fable 5 and Mythos 5 models offline was "never about an AI jailbreak" threat. Instead, it was driven more by "personality differences" between the AI company and Trump administration. Security experts say the reported guardrail bypass did not justify the order and warn that the move sets a troubling precedent: the government can unilaterally disrupt American software products without court approval, potentially undermining trust in U.S. AI providers. From the report: Katie Moussouris, a cybersecurity veteran and researcher who founded Luta Security, said in a blog post that Anthropic recently shared with her a private copy of a paper written by security researchers describing an alleged guardrail bypass in Fable 5. (The Wall Street Journal reports that the paper's authors are security researchers at Amazon.) Moussouris said that Anthropic reached out to ask for her take on the paper. Moussouris' blog post described how the researchers triggered the guardrail bypass, but said that the bypass itself "should never have triggered an export control." The difference is largely between asking an AI model to "review code for security issues" versus asking it to "fix this code." The end result is largely the same, even if the questions are posed slightly differently. "The behavior described in the paper cannot meaningfully be fixed, and any attempt would only weaken the model for defense," said Moussouris, who criticized the export control directive as hasty, heavy-handed, and misguided. Moussouris and dozens of other top security researchers and experts have since called on the Trump administration to revoke the export control order, calling the move to pull advanced cybersecurity capabilities from network defenders in the U.S. as "dangerous." Past administrations have made sweeping decisions on knowledge gaps. For instance, language used by the U.S. government during the 2010s to fix export law covering cybersecurity tools that could also be used for cyberattacks was so broad that inadvertently, it nearly outlawed legitimate security and vulnerability research. However, the Trump administration's directive appears retaliatory. Justin Hendrix, the editor of Tech Policy Press, said the Trump administration's move is "likely to raise alarms in foreign capitals about the reliability of American AI for critical applications." The message is that AI companies in the United States can't be trusted to operate without interference from the U.S. government. The Trump administration hasn't confirmed why it invoked its export control directive. Did the officials misread the report and freak out? Did Amazon CEO Andy Jassy say something to senior government officials that prompted the reaction, out of caution or spite? Was something lost in translation, or was this a way to pressure Anthropic, with whom the administration already has a fractious relationship? It's possible that the White House was unaware of the far-reaching consequences of the letter's demand and officials are scrambling to undo the damage of their own making. To quote Hendrix, "the climate is one of a cloud of suspicion that senior officials are picking favorites based on personal and political factors." The aftermath is that the government has set a dangerous precedent about how much control it intends to wield over the release of American-made software. This time the government took issue with Anthropic; tomorrow it could be with anyone else.
Read more of this story at Slashdot.
- Russian Spam and Profanities Are Now Plaguing the Arch Linux AUR
The Arch Linux User Repository "AUR" is facing another issue just days after more than 1,500 packages were found carrying malware. According to Phoronix, over 70 AUR packages have reportedly been modified to insert Russian spam and profane messages into users' shell configuration files. From the report: Nicolas Boichat with his AI/LLM detection bot detected some questionable messages appearing in AUR content. Russian messages were being added post-install to the bashrc / zshrc / Fish configuration, etc containing offensive messaging. Those commits happened on the 14th, after the recent malware fiasco. And then over the past day reporting on dozens of AUR packages having similar Russian messages containing offensive language. The latest update on that thread indicates more than 70 AUR packages having this Russian spam / offensive messaging. Among those various Python packages, Ruby packages, Llama.cpp, and others. At least the AI/LLM bots are proving helpful here in proactively picking up on some of the AUR abuses until the fundamental situation can be better handled.
Read more of this story at Slashdot.
- Firefox 152 Adds JPEG XL Support, Redesigned Settings
An anonymous reader quotes a report from Linuxiac: Mozilla has released Firefox 152, the latest update to its popular open-source web browser, with updated settings, improved media controls, experimental JPEG XL support, and various platform-specific fixes for desktop and Android. A key update is the redesigned Firefox Settings page, which now features clearer groupings, improved navigation, and a more streamlined structure for easier customization. The release also expands built-in spellchecker support, adding dictionaries for Croatian, English (UK), Georgian, Persian, Slovenian, Tajik, Tamil, Tibetan, Turkish, Welsh, and Xhosa. [...] Importantly, Firefox now offers experimental support for JPEG XL, an image format with improved compression over WebP, JPEG, PNG, and GIF. Users can enable JPEG XL in the Firefox Labs panel within Settings.
Read more of this story at Slashdot.
- Venus' Strange Rotation Was Likely Triggered By a High Velocity Moon-Sized Impactor
New simulations suggest Venus' extremely slow backward rotation may have been triggered by a high-angle collision with a fast-moving object roughly one-tenth its mass. The impact could have dramatically altered Venus' spin and melted nearly its entire mantle. Universe Today reports: Venus' bizarre and extraordinarily slow retrograde rotation on its axis has long puzzled planetary scientists. But in a new paper presented at the recent European Geosciences Union General Assembly in Vienna, the authors argue that their models indicate that a high angle moon-sized, high-velocity impactor likely triggered Venus's strange 248-day rotation. And it probably happened within the first 50 million years of Venus' formation. [...] The team found that an impactor that is about a tenth of Venus' mass hitting the planet at a high angle could drastically slow the early young planet's rotation. Depending on the actual impact parameters, we can slow down a rapidly rotating early Venus to rotation rates that are that are compatible with long-term evolution towards a slow rotating planet, says [Cedric Gillmann, the paper's lead author and a planetary scientist at ETH Zurich]. Or even in some cases with large energetic impact that happen with a tangential impact that would even put planets early on in already a retrograde but faster rotation, he says. In the simulations, giant impacts expectedly produce surface magma oceans, the paper's authors note. Their relative depths vary depending on impact properties: from a shallow melt layer in the order of 100km thick to a fully molten mantle, they note. If the surface can radiate heat to space efficiently, the magma ocean cools down quickly, they write. If Gillmann and colleagues are correct, Venus' likely impactor also melted some 99 percent of Venus' mantle. That is, the interior structure that extends between its core and crust. You will get rid of that impact heat pretty efficiently, and after a few hundred million years, you end up seeing an evolution that is very difficult to distinguish from a case where you don't have an impact, says Gillmann. What role the impact may have played in Venus' lack of plate tectonics, however, remains open for debate. But it's known that Venus' lack of a large-scale carbon recycling mechanism likely led to its current runaway greenhouse.
Read more of this story at Slashdot.
- A Chinese Rocket Breaks Apart Dangerously Close To the Starlink Constellation
A Chinese Zhuque-2E rocket's upper stage broke apart shortly after last week's June 9 launch, likely creating 100 to 150 pieces of debris in a busy region of low-Earth orbit crossed by the ISS and lower-altitude Starlink satellites. Most fragments should reenter within months because of atmospheric drag, but experts say the incident adds to a worsening trend as China leaves more large rocket bodies in orbit while expanding its launch rate. Ars Technica reports: The US Space Force confirmed the breakup event in a post on space-track.org, a website used by the military to distribute orbit data to the public. "The tracked pieces are being incorporated into routine conjunction assessment to support spaceflight safety," the Space Force wrote in an advisory. "There are currently no threats to human spaceflight. Analysis is ongoing." So far, the Space Force has not added any of the debris fragments to the official catalog of human-made space objects. [...] The bad news is that the Zhuque-2E's breakup is the latest chapter in China's growing contribution to the space junk problem. After decades of leaving spent rocket bodies in orbit, launch operators in most countries now reserve enough fuel to steer their upper stages back to Earth for controlled reentries. Rocket bodies attributed to Russia and the former Soviet Union account for the bulk of the launch-related debris in long-lived orbits, followed by China and the United States. But the Russian and American numbers are declining or holding steady, while the mass of Chinese rocket bodies in these long-lived orbits has grown by more than 150 percent in the past five years, according to a new analysis by Space Domain Awareness expert Jim Shell. The increase comes as China ramps up launches of its own megaconstellations designed to compete with SpaceX's Starlink. Rocket bodies are the most concerning sources of space debris because they are typically fairly large in size and mass, often with residual propellant and high-pressure gases that can trigger an explosion. There is no way to maneuver or dispose of them if left abandoned in orbit after releasing their payloads. McKnight characterized the recent breakup of the Zhuque-2E rocket as a "slight space safety issue," but the trend is not good. China's Long March 6A rocket has an especially bad track record, including two explosions that littered a higher-altitude low-Earth orbit with more than 1,000 debris fragments, where they will remain for decades or centuries. "Three of the top four breakup events in LEO are of Chinese origin, with two of these events being from Chinese (rocket body) explosions in the last four years," McKnight said.
Read more of this story at Slashdot.
- Cybersecurity Vets Protest 'Dangerous' US Government Ban On Anthropic's Most Powerful Models
An anonymous reader quotes a report from TechCrunch: A group made up of dozens of cybersecurity experts, including several well-known veterans of the industry, published an open letter to the U.S. government asking it to lift the export control order on Anthropic's Fable and Mythos models. According to the open letter, "this action has taken the best models away from [cybersecurity] defenders" who now can't use the models to find vulnerabilities and make their software and products more secure. "To pull the best capabilities away from defenders without a good reason when our adversaries are rapidly advancing is dangerous," read the letter. On Friday, the U.S. government ordered Anthropic to limit the export of Fable and Mythos, citing national security concerns, without explaining the specific reasons behind the order, according to Anthropic. In response, the company suspended access to the models to all users worldwide. As of this writing, the letter is signed by 76 cybersecurity experts, including Alex Stamos, former Facebook chief of security; Casey Ellis, the founder bug bounty platform Bugcrowd; Jon Callas, famed cryptographer and former Apple security design and architecture manager; Paul Vixie, computer scientist ; Dino Dai Zovi, the former head of applied security engineering at Block; Katie Moussouris, the founder of Luta Security; and Rachel Tobac, the CEO of the security awareness training firm SocialProof Security. [...] Anthropic said that the White House export control order may have been based on a report that there was a method to bypass -- or jailbreak -- Fable to unlock its powerful Mythos-level capabilities. According to Katie Moussouris, one of the signatories of the open letter, the method was demonstrated by Amazon researchers in a paper that is not public but that she has reviewed. But Moussouris said in a blog post that the paper did not actually demonstrate a real jailbreak. Instead, she wrote, the researchers simply asked Fable to fix open source code with public and known vulnerabilities along with "deliberately planted vulnerabilities," after the model initially refused to "review the code for security issues." "The behavior described in the paper cannot meaningfully be fixed, and any attempt would only weaken the model for defense," Moussouris wrote. "Defenders need to be able to ask AI to fix the bugs in a file, explain why the fix matters, and write tests that confirm the patch works. That is not a guardrail bypass. It is the most valuable thing an AI model can do for defensive security: executing the find, fix, and test loop defenders run every day." Moussouris' critique was echoed in the open letter, which also said that the group of experts believe the model capabilities in the Amazon paper "can be replicated" on OpenAI's GPT-5.5, on Anthropic's own publicly available Claude Opus 4.8 and Sonnet, "and even Chinese models like Kimi 2.7." Moussouris told TechCrunch that "the bugs used to demonstrate the techniques in the paper can be found using the other models. The method in the paper is a guardrail bypass technique. Other models that lack the Fable guardrails often won't refuse the straightforward request to look for security bugs, so they don't need a bypass." The letter also asked for transparently and fairly enforced regulations created by "a democratic rule-making process" that are based on scientific research done by industry and academic experts, and "used only to the minimal extent necessary to ensure the safety of the American public."
Read more of this story at Slashdot.
- From DHCP to SZTP – The Trust Revolution
By Juha Holkkola, FusionLayer Group The Dawn of Effortless Connectivity In the transformative years of the late 1990s, a quiet revolution took place, fundamentally altering how we connect to networks. The introduction of DHCP answered a crucial question, Where are you on the network?!, by automating IP address assignment. This innovation eradicated the manual configuration [0]
The post From DHCP to SZTP – The Trust Revolution appeared first on Linux.com.
- Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely
The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
- GCC 17 Lands Initial Infrastructure For C++29
Merged yesterday to the GCC Git development codebase for next year's GCC 17 release is the initial infrastructure laying out support for -std=c++29 and the like for targeting the C++29 standard not anticipated for release until around 2029...
- Linux Finally Ends AppleTalk Protocol Support
While the AppleTalk networking protocols were innovative when they first appeared for their plug-and-play capabilities, Apple itself ended their AppleTalk support back in 2009. Now 17 years later, the Linux kernel is ending AppleTalk support due to a recent surge of AI-generated patches...
- Mozilla Firefox Usage Of zlib-rs For Better Safety & Performance
Since the release in May of Firefox 151, Mozilla has been relying on the zlib-rs library for Gzip compression/decompression. This subtle change to use this Rust-based Zlib implementation has yielded some performance benefits and better memory safety but also some headaches when dealing with Intel CPU bugs...
- Linux Enacts Guidance To Tighten Acceptance Of New File-Systems Into The Kernel
There is no shortage of different file-systems available for Linux. New file-systems continue to come about in the open-source world but ultimately many of them end up not being well maintained or having very limited users and not necessarily innovating enough to make them worthwhile over other alternatives. Given the continued increase in file-systems looking to get into the Linux kernel, such as FTRFS and VMUFAT being some of the most recent and then even having multiple NTFS drivers for Linux, there is now documentation in place to formally lay out criteria for new file-systems to be accepted...
- Linux 7.2 Can Significantly Lower Container Exit/Unmount Latency
A patch series merged for the Linux 7.2 kernel addresses a race condition that can occur when a container is exiting yielding "VFS: Busy inodes after unmount" messages and a possible user-after-free condition. But the patch series also goes further and delivers a very nice optimization to lower the container unmounting latency for environments with heavy I/O load...
- Wine Wayland Lands Fractional Scaling Support
Following last week's Wine 11.11 release that brought alpha modifier support for opacity handling with the Wine Wayland driver, merged this week to Wine is support for fractional scaling with the Wine Wayland driver...
- Linux 7.2 Drops Driver For The 40+ Year Old Hercules Monochrome ISA Graphics Card
After Linux 7.1 dropped support for old i486 CPUs and also began removing some old ISA and PCMCIA device drivers, there is some additional old hardware relics being cleared out of the in-development Linux 7.2 driver... The frame-buffer device driver for the old Hercules Monochrome ISA graphics card is now removed from the Linux kernel after decades at play...
- FreeBSD Receives Funding To Launch AI-Assisted Vulnerability Discovery
The FreeBSD Project announced today the launch of an AI-Assisted Vulnerability Discovery Project with grant funding provided by the Linux Foundation backed Alpha-Omega project. Alpha-Mega has sponsors including Microsoft, AWS, Google, Anthrophic, OpenAI, and others who will now be helping with FreeBSD uncovering new vulnerabilities by leveraging AI...
- Reading /proc/filesystems Is Surprisingly Done Very Often & Now As Much As 444% Faster
Reading /proc/filesystems for obtaining a list of file-systems supported by the running kernel is done frequently on Linux. Namely due to being read by the SELinux library (libselinux), reading of /proc/filesystems is done more often than one would typically expect and now the Linux 7.2 kernel is optimizing for it to yield much better performance...
- Open-Source Success Achieved For Greater Transparency & Security: Running AMD openSIL + Coreboot On EPYC
Ever since AMD announced openSIL in early 2023 for open-source CPU silicon initialization to eventually replace AGESA and enhance their Coreboot support, I have been eager to try it out. The openSIL code drops to date though have just focused on select reference platforms with only aiming for production status in the Zen 6 timeframe. But thanks to 3mdeb porting openSIL and Coreboot to a Gigabyte server motherboard, it9s now possible to try out openSIL+Coreboot right now on Zen 5 hardware.
- KDE Plasma 6.7 released
The KDE team released KDE Plasma 6.7 today, and with it comes a long list of improvements, new features, bug fixes, new old themes, and so much more. A new feature that is sure to please those among us who use virtual desktops: you can now have different virtual desktop setups per display. It�s been a long-requested feature, so it�s great to see it makes its way to the KDE users. I despise virtual desktops, but I�m happy to see something that I assumed was already part of KDE to finally actually become available. Another major feature in KDE Plasma 6.7 is something we�ve already talked about: the return of the classic Oxygen and Air themes from the KDE 4.x days. These themes have seen extensive work over the past year or so to make them usable on the latest KDE release, which includes tons of bug fixes, visual nips and tucks, and countless additions to the collection of assets required to make a modern KDE theme look complete. This includes a ton of new icons in the old styles, light and dark modes, accent colour support, and much more. There�s still work left here, including adding support for QtQuick/Kirigami applications � which brings us to the next major new addition to KDE 6.7 This is also something we�ve already talked about: Union. I won�t repeat what I already explained last time Union came up, but suffice it to say that Union effectively unifies the various different ways KDE applications are themed, allowing theme designers to use relatively standard CSS to create themes that cover every aspect of the KDE user experience. Before Union, theme designers had to create individual, unique themes for a variety of parts of KDE � the Plasma desktop, QtWidgets using QStyle, QtQuick/Kirigami � which was a ton of work, and in the case of QtQuick/Kirigami, wasn�t really possible at all. As such, without Union, KDE�s theming is essentially broken, and Union fixes that. For now, Union is not enabled by default, and must be installed and enabled separately for testing. Of course, there�s a ton of other smaller new features, changes, and bug fixes as well. KDE Plasma 6.7 will find its way to your distribution soon enough.
- Apple adds keylogger to iOS App Store for targeted advertising: tied to your account and unencrypted
A week or so ago, Apple announced a bunch of features for the App Store on iOS, including personalised recommendations based on your activity and usage of iOS. It turns out this includes a keylogger (taplogger?) in the App Store, which records every single tap you make, every single letter you enter, and a lot of other information. All of this information is unencrypted and sent to Apple. Now Apple is putting the extensive identifiable analytics they collect in the App Store in action. They record every tap and there’s no way to turn it off. They can even calculate your typing speed. ↫ Michael Tsai, quoting Mysk The provided screenshots of the data collected are terrifying, especially because the data is unencrypted, sent to Apple, and fully tied to your user account. Apple clearly wants a slice of that big, juicy advertising pie, and they, too, are discovering that the easiest and best way to serve targeted ads is to collect as much data as they can about you. Of course, this is something the entire internet (but not OSNews!) and several megacorporations are built on by now, but Apple has been incredibly sanctimonious about how it supposedly actually cares about user privacy, making this keylogger yet another case of Apple�s hypocrisy on full display. Of course, if you care about privacy, you�re entirely free to download your iOS applications from somewhere other than the App Store and install them yours0 Oh, wait.
- The time the Windows x86 emulator team found code so bad that they fixed it during emulation
Another story from the good old days from Raymond Chen. During an exchange of war stories, a colleague of mine told one from back in the days when Windows included a processor emulator for x86-32 on systems that natively ran some other processor. (This has happened many times. And no, I don’t know which processor this particular story applied to.) ↫ Raymond Chen at The Old New Thing So the core of the story comes down to this: All in all, it took this program 256 kilobytes of code to initialize 64 kilobytes of data. ↫ Raymond Chen at The Old New Thing The people working on Windows were so offended by this, they added code to the processor emulator just to fix this program.
- FreeBSD 15.1 released
Speaking of FreeBSD, the project released version 15.1 of their operating system today. As it�s a point release, it�s not full of massive changes, but it still brings the LinuxKPI-based wireless drivers up to Linux 7.0, support for the C23 version of the C has progressed considerably, Unicode has bene updated to version 17.0.0 and CLDR 48, and more.
- FreeBSD 15 with KDE and Wayland on a Laptop
Expect to see more and more articles like this one, as more and more people discover that FreeBSD�s desktop/laptop support keeps improving rapidly. FreeBSD 15 really feels like a breakthrough release. It’s always been my favorite operating system for servers, but with the arrival of`pkgbase, massive improvements to theLinuxKPI`drivers, and the launch of the`Laptop Support and Usability Project, it’s become my primary desktop, too. ↫ Cullum Smith Since Smith tried FreeBSD 14.0, there�s now KDE Plasma 6.x, you can leave legacy X11 behind and use Wayland on FreeBSD now, and support for Intel Wi-Fi chips has greatly expanded. Apparently, battery life has improved as well, which is one of the hardest problems to solve for an operating system, especially with the wide variety of hardware combinations in the x86 world. The rest of Smith�s article is a guide to setting up FreeBSD 15 with KDE and Wayland. It�s quite detailed with a ton of low-level tuning and fiddling, accompanied by clear and concise explanation of what the changes do, which I really like. Definitely a bookmark for anyone who wants to try out FreeBSD with KDE.
- Zinnia: a modular 64-bit UNIX-like kernel written in Rust
It�s been a while since we�ve had a new operating system project written in Rust, so let�s look at Zinnia. The kernel is written in (almost) 100% Rust and attempts to avoid unsafe code where possible. It implements a big range of POSIX APIs in system calls, but also exposes common extensions found in Linux and BSDs, like epoll and timerfd. This allows it to run a somewhat modern desktop using Wayland and X11 sessions. Most drivers are implemented as modules. These are Rust ELF dylibs which get loaded and linked during boot from an initrd, similar to Linux systems. Zinnia can boot from any UEFI based system thanks to the Limine bootloader. ↫ Zinnia OS website At least Weston and Xfce can run on Zinnia, even on real hardware, which is quite an achievement. The project was started in 2024 as a learning endeavour, but quickly grew out of control, as these projects are wont to do. The code�s open source.
- Haiku enables AVX512 support
We�re a little deep into June already, but it�s only now that Haiku published its monthly progress report for May. There�s a bunch of fixes for drag-and-drop behaviour in Tracker, AVX512 support can now be enabled thanks to changes to the kernel’s FPU handling, some low-level changes were made for the Rust and Zig compilers, and further improvements were made to the boot process on the Raspberry Pi 5 (although a lot more work is needed on that front). There�s still no sixth beta since a few more blockers remain, but don�t let that stop you from installing Haiku � it�s stable enough as it is, sixth beta or no.
- Tribblix Milestone 40 for x86 released
Tribblix, the Illumos distribution focused on giving you a classic UNIX-style experience, has been updated with the release of Milestone 40. This version has some major component updates. Perl in now 5.42 instead of 5.34, and the default Python is now 3.13. The GCC suite is now version 14.2.0, go is version 1.26, Xfce has been updated to version 4.18, node is v22, with v24 added and v20 removed. ↫ Tribblix M40 release notes There�s a more detailed changelog, as well as the downloads page to get started. If you�re already running Tribblix, you can update in-place, of course.
- Your EPUB is fine. Kobo disagrees. Blame Adobe.!
An infuriating story about something most of us don�t really stop to think about: e-books and the rendering engines companies and software use to display them. It’s the year 2026. Thanks to the horrendous RMSDK which Kobo decided to use as their backbone for all book rendering (probably for DRM reasons), a single line of perfectly valid CSS turns a perfectly valid EPUB file into a “corrupted file” on Kobo and just drops the whole book. No clear error message, no fallback. Just a massive fail. ↫ André Klein The level of obnoxiousness goes even deeper: Kobo devices ship with a better, actually maintained renderer for e-books as well, but in order to have a book use it, the book file in question needs to have a specific file extension. Remember that e-book files are just packaged websites; there�s no reason to do any of this nonsense with two rendering engines, one of which is shit and frozen in time. I have never had to do anything related to creating an e-book � I just put books on my own Kobo and read them � and even I am getting annoyed just reading this.
- Windows 1.0 and the WinAPI, 40 years later
How far can you get, application development-wise, by using only the original APIs from Windows 1.0, and only whatever came included by default with Windows 1.0? I finally decided to write an application for the very first version of Windows and see how different the modern WinAPI really is from its earliest versions. Windows 1.0 came out back in the mid-1980s � the era of 16-bit processors, MS-DOS, and cooperative multitasking. At first glance, you might think it has almost nothing in common with modern Windows, but when you look specifically at the application API, that’s where things get interesting. I wanted to see how far it would be possible to go using only the capabilities of the first version of Windows. I didn’t want to just make a minimal example with a window and a menu, but a small, complete application with graphics, keyboard input, timers, and constant redrawing. For this experiment, I chose Xonix � a simple yet surprisingly addictive game. ↫ Stanislav Safronov It turns out that surprisingly, despite the 40 years and massive changes since Windows 1.0, there�s still a lot that feels recognisable. It�s also remarkable that the code Safronov ended up with ran on every version of Windows from 1.0 to 10, but sine it�s a 16 bit application it no longer works on Windows 11. It also had a hiccup on Windows 95, but he suspects that�s an issue in the 16 bit subsystem in Windows 95, and not in his code. The code�s available on GitHub.
- Running DOS on the Behringer DDX3216 with a DIY BIOS from scratch
In 1994 I got my first computer: an Intel i486 DX2-66 with 4 MB RAM and a 512MB harddisk. The software was IBMs OS/2 and Microsofts Windows 3.11. In the next four years I was upgrading this machine every few months with more RAM (up to 16MB), a CD-ROM-drive and a soundblaster card. So I learned upgrading this machine, installing new software and finally learned how to program new software using BASIC. But I never got in touch with the boot-process or the details of MS-DOS. In 2026, 32 years later, I learned from some screenshots of the DDX3216, that Behringer used a real 386 processor within this machine. Immediately, some of my neurons fired in my head and I pondered if I could boot software and even a full operating system on this device. My goal was to learn how an x86-system is booting, how DOS takes over and what is necessary to get into the shell. ↫ Christian Nöding So this introduction is a bit cryptic if you�re not aware of what a DDX3216 is � I sure had no idea. The Behringer DDX3216 is a digital mixing console for use in music studios, and I think it�s about 25 years old or so. Apparently it�s built around a 386, and as Nöding details in this article, that means it can be made to run DOS. It also happens to have a small black and white LCD, so there�s a place to route output to, as well. Furthermore, once you open it up, you�ll find things like a BIOS chip, PCMCIA slot, a floppy controller, serial/parallel port controller, and more. Sure sounds like a PC to me. After talking to companies and individuals who might have a BIOS compatible with the AMD 386 SoC used in the device bore no fruit, Nöding decided to develop his own BIOS, which involves getting all the devices, interfaces, and even the display to work properly as well. The next step was getting DOS to work, and after MS-DOS 6.22 refused to work, FreeDOS did the trick and booted just fine. There�s still a ton more possible things that can be done here, but this is already quite amazing.
- Swift at Apple: migrating the TrueType hinting interpreter
TrueType is a widely used vector font standard for rendering text in web pages, PDFs, operating systems, and applications. Familiar fonts like Helvetica, Garamond, and Monaco are all built on TrueType outlines. The format specifies a hinting interpreter intended to help outlines rasterize faithfully on low-resolution displays. Modern high-resolution displays enable beautiful typography from outlines alone, but TrueType fonts that need hinting to render legibly remain in use and we continue to support them. Font parsers process data from untrusted sources, making the TrueType hinting interpreter a security-critical attack surface. To make the format more resilient on Apple platforms, we rewrote its hinting interpreter from C to memory-safe Swift for the Fall 2025 releases. In addition to memory safety, we also improved performance: on average, our Swift interpreter runs 13% faster than the C interpreter it replaced. ↫ Scott Perry This article provides a deep dive into how, exactly they did that.
- Kyvos is the easiest, cheapest, and possibly fastest way to run AmigaOS 4 and MorphOS
If you want to try out a modern Amiga operating system, your choices are severely constrained. Both MorphOS and AmigaOS 4 need PowerPC hardware, and at the moment, there�s little to no modern hardware available for purchase to run these operating systems on. The only AmigaOS 4 hardware you can buy is either incredibly outdated, incredibly expensive, or both, and while MorphOS does run on readily available Apple PowerPC machines, those, too, are getting quite long in the tooth and performance simply isn�t keeping up. Until the Mirari becomes available � with the project steadily progressing, I have high hopes � the reality for people wanting to try out AmigaOS or MorphOS is going to be expensive, at best. Or is it? QEMU exists, and QEMU can emulate various PowerPC systems just fine. Shouldn�t it be possible to run these two unique operating systems in a virtual environment on your modern PC, thereby making it trivial for those of us interested in the world of Amiga to dip our toes into the water without having to spend inordinate sums for outdated hardware? It turns out that yes, this is entirely possible, and as I highlighted almost a year ago, George Sokianos has made this process effectively foolproof by developing a custom GUI frontend for QEMU specifically designed to make it incredibly easy to set up and run AmigaOS 4 and MorphOS in QEMU virtual machines. We�re almost a year since that first version, and in that time, Sokianos has updated the tool, called Kyvos, to version 2. It costs a mere €9, and works on Linux (x86 and ARM), Windows (x86 and ARM) and macOS (x86 and ARM). You also get an incredibly detailed manual with step-by-step instructions for every supported operating system and specific emulated machine, which includes instructions for the convoluted AmigaOS 4 installation process, as well as a bunch of other information and helpful tips. In addition, the manual includes links to where you can buy AmigaOS 4 � be sure to use these specific links to buy AmigaOS 4, because Sokianos gets a commission for sales through these links. AmigaOS 4 costs like €30, so it�s not a big investment. MorphOS can be downloaded for free, but after 30 minutes of use, the operating system will slow down and cripple itself, unless you pay for and register your copy for €79. I own a copy for my 17C PowerBook G4 1.25Ghz, but I think copies are tied to hardware, so I haven�t tried registering it with my key yet. The MorphOS registration tool does not accept virtual machines, so you can�t use it to buy a copy for a virtual machine. Kyvos� graphical user interface mimics the UI of other virtual machine software like VirtualBox, and it will check to make sure you have all the correct dependencies and requirements installed. The guided setup processes for MorphOS and AmigaOS 4 virtual machines will tell you exactly which operating system ISOs and files you need and makes sure you have them, before setting up the QEMU virtual machines with the optimal settings. Once created, start the virtual machine, and they�ll boot from the installation media. Follow the included manual as you install the operating systems, including some post-install help, and you�ll end up with fully working, network-capable virtual machines running MorphOS and AmigaOS 4. Both installation and setup procedures worked without any issues on my machine, and within like half an our I had to two fully working copies of MorphOS and AmigaOS 4 running on my Linux desktop gaming PC (I exempted myself from the Windows 11 incentive for this one, since my Linux gaming PC is by far the most powerful computer I own). Networking and sound works � AmigaOS 4 requires some post-install steps for those, listed in the Kyvos manual � and I could browse the web right away with the included web browsers. The online update tool for AmigaOS 4 also works perfectly, allowing me to upgrade to the latest version of the operating system and various included components. I�m anything but a MorphOS or AmigaOS 4 expert, so I can�t confidently say much about performance compared to best real compatible hardware out there, but at least for MorphOS I can say it runs considerably faster in this virtual machine than it does on my old 17C PowerBook G4 1.25Ghz. I feel like AmigaOS 4 runs a bit smoother than MorphOS does, as with the latter I experienced the occasional hiccup and stutter which were absent on AmigaOS 4. Still, both are entirely usable and a pleasure to use. With how limited the hardware selection for these two operating systems is, using QEMU through Kyvos is by far the easiest and most straightforward way to dip your toes into the waters of the modern Amiga operating systems. For a total of around €40, you�ll be running AmigaOS 4 in a very capable and straightforward way, and if and when MorphOS allows registration for virtual machines (they really should), an additional €79 will give you a fully working installation of that unique operating system, too. Kyvos is a complete no-brainer for anyone reading OSNews.
- Web browsers on video game consoles
Video game consoles have a long history with web browsers. From the advent of the World Wide Web, consoles have been trying to get online. Browsers on video game consoles were initially very much an attempt to provide a cheap gateway to the web for a casual audience lacking technical expertise, though as time progressed they’ve become a greater and more integrated part of systems. This article takes a look at browsers on video game consoles in detail, though only covers official web browsers. Many consoles have browsers installable via custom firmware and homebrew, but they’re beyond the scope of this post, as are non-web systems such as Satellaview and online services that didn’t provide a browser, such as XBAND, Sega Meganet, and Sega Channel. ↫ Declan Chidlow The article starts off with the Philips CD-I, which has always been a fascinating product for technology fans in The Netherlands because that�s where Philips is from. Memory that far back is untrustworthy, but I can definitely remember being inundated with commercials, advertising, magazine articles, and newspaper reports about the CD-I, all throughout its rather troubled life. Yet, I don�t remember anything about it being capable of browsing a rudimentary web. Of course, we�re talking 1995 here, a time when I didn�t even have internet at home yet, although I did use the web at a friend�s place at that time. We didn�t get internet at home until I think 1997 or 1998, followed by the move to broadband cable internet just a year later, since our small rural town happened to be one of the first places to get broadband. Good times. Did anyone ever actually use browsers on consoles, though? I mean, using them always felt incredibly clunky, and by the time they were capable enough to really do anything we all had laptops and later smartphones anyway. I certainly don�t remember anyone using them for anything but a gimmick, but perhaps my sample size was far too small and not diverse enough.
- MacOS 27 drops Intel support, will be last release with Rosetta 2
With the announcement of an upcoming new macOS release also come the usual changes in which Macs will still be supported. MacOS 27 Golden Gate is an important release in this regard, as it will be the first release of Apple�s desktop operating system that will be entirely ARM-only, dropping support for all Intel Macs. It�s important to note that Apple will provide three more years of security updates for the final Intel release of macOS, so Intel users won�t be dropped like a brick immediately. Still, the Intel Mac Pro was still being sold all the way up until mid-2023, and I�d be royally pissed off if my expensive 2023 Intel Mac went out of support a mere six years after purchase. They weren�t cheap machines, and while you can argue everybody knew the writing was on the wall for the Intel Mac Pro in 2023, it still feels way too short of a supported lifespan for such an expensive, high-end piece of equipment. It didn�t sell many units, I�m sure, but still. In addition, MacOS 27 will be the last release to include the Rosetta 2 translation layer that allows Intel binaries to run on ARM macOS. I have no idea how many important applications are still Intel-only, but I have a feeling that number is going to be relatively small, and will become even smaller as the first macOS release without Rosetta 2 support nears release. On top op of that, I�m sure enterprising users will find a way to transplant Rosetta 2 onto unsupported macOS releases, and if all else fails, there�s always virtual machines.
- Once again, Apple blatantly lies about the EU�s DMA
Apple recently announced its next crack at integrating AI! into its operating systems, this time opting to simply whitelabel Google�s Gemini AI! tools instead of developing its own LLM technology. Called Siri AI!, Apple also stated it�s not coming to the EU, and the company stated that�s because the EU�s basic consumer protection legislation would give other AI! tools unprecedented access! to user data on users� devices. The company made a big stink about this in the press. As anyone with basic pattern recognition skills already knew, this was a blatant, baldfaced lie. What really happened is that Apple asked the EU for an 18-month long exemption from the EU�s consumer protection and privacy legislation during which it would not have to comply with any legal privacy and interoperability requirements � just so it could roll out Siri AI! before anyone else could offer a competing product for Apple users. Obviously, the EU wasn�t going to grant such an exemption. The decision not to roll out Siri AI in the EU is Apple�s and Apple�s only,! spokesperson Thomas Regnier told reporters in Brussels, saying there was nothing in the Digital Markets Act to stop the company from introducing new products in the EU. Apple was simply unable to develop interoperability solutions that meet essential EU privacy and security standards,! Regnier said. Instead of trying to find a suitable compliance solution, Apple simply made a request to the European Commission to be exempted from their interoperability obligations under the DMA � and this for at least 18 months. That�s not an option,! Regnier said. ↫ Inti Landauro and Foo Yun Chee at Reuters So what�s really going on here is that Apple wants to offer a set of whitelabeled Google Gemini tools on iOS and macOS in the EU, but because Apple is classified as a gatekeeper, it is legally obligated to offer interoperability options for competing AI! tools. These options in turn need to adhere to the EU�s strict privacy regulations, so that competing AI! tools can offer the same level of privacy that Apple�s own whitelabeled Google Gemini tools claim to offer. Apple didn�t want to offer these privacy-respecting interoperability options as required by law, so instead of following the law in the countries it wants to operate in, Apple asked to be placed above the law for at least 18 months, basically giving Siri AI! a massive head-start over possible competitors so that it could entrench itself in the userbase. The EU saw right through Apple�s nonsense, and now called them out on their bullshit. Perhaps Apple has gotten so used to openly bribing Trump that they forgot other parts of the world don�t work that way. Whenever Apple and its PR attack dogs say anything about the EU, you can be assured they are lying. They have proven time and time again to basically never speak a single word of truth when it comes to its dealings in the EU. It�s almost pathological at this point, and what makes it doubly interesting is that Apple will not launch Siri AI! in China either, for the very same regulatory reasons � yet all China got was a single footnote in a press release. I wonder why.
- EU OS: A Bold Step Toward Digital Sovereignty for Europe
Image 
A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
What Is EU OS?
EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
The Vision Behind EU OS
The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
Conclusion
EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
Source: It's FOSS
European Union
- Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
You can download the latest kernel here.
Linus Torvalds kernel
- AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
Image 
AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
Source: 9to5Linux
AerynOS
- Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
Image 
Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
Here’s a quick overview of what’s new in Xojo 2025r1:
1. Linux ARM IDE Support
Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
2. Web Drag and Drop
One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
3. Direct App Store Publishing
Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
4. New Desktop and Mobile Features
This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
5. Performance and IDE Enhancements
Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
What Does This Mean for Developers?
Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
How to Get Started
Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
Download Xojo 2025r1 today at xojo.com.
Final Thoughts
With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
Xojo ARM
- New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest.
Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
Windows
- Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally.
As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions.
After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
Security
- Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem.
The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
kernel
- Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
Here is what Linus Torvalds had to say in today's announcement:
Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds
- Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
Want to interact with ChatGPT from your Linux desktop without using a web browser?
Bavarder, a new app, allows you to do just that.
Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
ChatGPT AI
- LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
You can download LibreOffice 7.5.3 directly from the LibreOffice websiteor from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
LibreOffice
- KDE Linux Drops AUR
KDE Linux developers have dropped the Arch User Repository from the build pipeline due to security concerns; other distributions should consider doing the same.
- France Says "Au Revoir" to Microsoft
In a move that should surprise no one, France announced plans to reduce its reliance on US technology, and Microsoft Windows is the first to get the boot.
|
