All the News that Matters

• Fedora 42: Chromium High CVE-2025-14765 Out of Bounds Security Risks
  Update to 143.0.7499.146 * High CVE-2025-14765: Use after free in WebGPU * High CVE-2025-14766: Out of bounds read and write in V8 * Force dark mode when auto dark mode web content is on

• Fedora 42: mqttcli Update 0.2.8 Critical Integer Overflow Issues
  Update to 0.2.8

• Fedora 42: gosec Security Update 2.22.11 CVE-2025-47910 Cross Origin Issues
  Update to 2.22.11

• Critical Vulnerability in Fedora 42: python-unicodedata2 Arbitrary RCE
  Update to 17.0.0 version (#2412270) Update fonttools 4.61.0

• Ubuntu 24: glyphutils Severe RCE Unrestricted File Access 2025-abcd1234ef
  Update to 17.0.0 version (#2412270) Update fonttools 4.61.0

• Fedora 43: Chromium High CVE-2025-14765/14766 Heap Corruption Advisory
  Update to 143.0.7499.146 * High CVE-2025-14765: Use after free in WebGPU * High CVE-2025-14766: Out of bounds read and write in V8 * Force dark mode when auto dark mode web content is on

• Gemini AI Yielding Sloppy Code For Ubuntu Development With New Helper Script
  A few weeks ago it was mentioned by a Canonical engineer how trying to use AI to modernize the Ubuntu Error Tracker yielded some code that was "plain wrong" and other issues raised by that Microsoft GitHub Copilot code. The same Ubuntu developer shifted to trying Gemini AI to generate a helper script to assist in Ubuntu's monthly ISO snapshot releases. Google's Gemini AI also generated some sloppy code for a Python script to assist in those Ubuntu releases...

• Beginners Guide for Who Command in Linux
  In this article, you will learn how to use the who command to find all the logged-in user information (with practical examples).

• Mesa 26.0 NVK Driver Lands Improvement For NVIDIA GeForce RTX 20 "Turing" GPUs
  In addition to the open-source NVIDIA "NVK" Vulkan driver in Mesa merging compression support for big performance wins, another performance optimization was merged earlier in the week that stand to benefit GeForce RTX 20 "Turing" graphics processors...

• Incus 6.20 Container & Virtual Machine Manager Released
  Incus 6.20 delivers new clustering, storage, and VM enhancements, including reliable snapshots on clustered LVM and improved administration tools.

• LoongArch Promoted To Being An Official Architecture For Debian 14
  Two years and a few months after LoongArch 64-bit "Loong64" was added to Debian Ports, it's now been promoted to being an official architecture for Debian Linux...

• Debian Gets Its Own PPA-Like System as Debusine Repositories Launch
  Debian introduces Debusine repositories, allowing developers to publish PPA-like add-on packages with integrated builds, testing, signing, and snapshots.

• Wine 11.0-rc3 Released With Another Week Of Bug Fixing
  In working toward the Wine 11.0 stable release in January, Wine 11.0-rc3 is out today as the latest weekly release candidate...

• OpenZFS 2.4 Extends Linux Kernel Support to 6.18 and Supports FreeBSD 14–16
  OpenZFS 2.4 extends Linux kernel compatibility up to 6.18 while supporting FreeBSD 14, 15, and 16, bringing major performance, quota, and storage improvements.

• 2025 Brought "Transformative Changes" For FreeBSD On Laptops
  As we have been covering over the past year, major investments have been made to better the outlook for running FreeBSD on laptop hardware. From WiFi driver improvements to enhancing suspend/resume, power management, graphics drivers, and other features, it's been a big undertaking to make FreeBSD work better on laptops. The FreeBSD Foundation calls 2025 as having brought "transformative changes" for the FreeBSD laptop experience...

• Fwupd 2.0.19 Linux Firmware Updater Supports Lenovo Sapphire Folio Keyboard
  Fwupd developer Richard Hughes released fwupd 2.0.19 today as the nineteenth maintenance update to the fwupd 2.0 series of this open-source Linux firmware update utility.

• Parrot OS Switches to KDE Plasma Desktop
  "Yet another distro is making the move to the KDE Plasma desktop," writes Linux magazine. "Parrot OS, a security-focused Linux distribution, is migrating from MATE to KDE Plasma, starting with version 7.0, now available in beta."Based on Debian 13, Parrot OS's goal is a shift toward "modernization, focusing on clearing technical debt and future-proofing the system." One big under-the-hood change is that the/tmpdirectory is now automatically mounted astmpfs(in RAM), as opposed to the physical drive. By making this change, Parrot OS enjoys improved performance and reduces wear on SSDs. This shift also means that all data in/tmpis lost during a reboot. ParrotOS senior systems engineer Dario Camonita explains the change in a blog post, calling it "not only aesthetic, but also in terms of usability and greater consistency with our future goals..." "While MATE will continue to be supported by us as long as upstream development continues, We have noticed and observed the continuous improvements made by the KDE team..." And elsewhere Linux Magazine notes two other distros are embracing the desktop Enlightenment:For years, Bodhi Linux was one of the very few distributions that used anything based on Enlightenment. That period of loneliness is officially over, withMX Mokshaand AV Linux 25. MX Moksha doesn't replace the original MX Linux. Instead, it will serve as an "official spin" of the distribution... The Enlightenment desktop (and subsequently Moksha) was developed with systemd in mind, so MX Moksha uses systemd. If you're not a fan of systemd, MX Moksha is not for you. MX Moksha is lighter than MX Linux, so it will perform better on older machines. It also uses the Liquorix kernel for lower latency.AV Linux has been released with the Xfce and LXDE desktops at different times and has only recently opted to make the switch to Enlightenment.
  
  
  Read more of this story at Slashdot.
  

• Flock Executive Says Their Camera Helped Find Shooting Suspect, Addresses Privacy Concerns
  During a search for the Brown shoogin suspect, a law enforcement press conference included a request for "Ring camera footage from residents and businesses near Brown University," according to local news reports. But in the end it was Flock cameras according to an article in Gizmodo, after a Reddit poster described seeing "odd" behavior of someone who turned out to be the suspect:The original Reddit poster, identified only as John in the affidavit, contacted police the next day and came in for an interview. He told them about his odd encounter with the suspect, noting that he was acting suspiciously by not having appropriate cold-weather clothes on when he saw him in a bathroom at Brown University. That was two hours before the shooting. After spotting him in the bathroom wearing a mask, John actually started following the suspect in what he called a "game of cat and mouse...." Police detectives showed John two images obtained through Flock, the company that's built extensive surveillance infrastructure across the U.S. used by investigators, and he recognized the suspect's vehicle, replying, "Holy shit. That might be it," according to the affidavit. Police were able to track down the license plate of the rental car, which gave them a name, and within 24 hours, they had found Claudio Manuel Neves Valente dead in a storage facility in Salem, New Hampshire, where he reportedly rented a unit. "We intend to continue using technology to make sure our law enforcement are empowered to do their jobs," Flock's safety CEO Garrett Langley wrote on X.com, pinning the post to the top of his feed. Though ironically, hours before Providence Police Chief Oscar Perez credited Flock for helping to find the suspect, CNN was interviewing Flock's safety CEO to discuss "his response to recent privacy concerns surrounding Flock's technology."To Langley, the situation underscored the value and importance of Flock's technology, despite mounting privacy concerns that have prompted some jurisdictions to cancel contracts with the company... Langley told me on Thursday that he was motivated to start Flock to keep Americans safer. His goal is to deter crime by convincing would-be criminals they'll be caught... One of Flock's cameras had recently spotted [the suspect's] car, helping police pinpoint Valente's location. Flock turned on additional AI capabilities that were not part of Providence Police's contract with the company to assist in the hunt, a company spokesperson told CNN, including a feature that can identify the same vehicle based on its description even if its license plates have been changed. The company has faced criticism from some privacy advocates and community groups who worry that its networks of cameras are collecting too much personal information from private citizens and could be misused. Both the Electronic Frontier Foundation and the American Civil Liberties Union have urged communities not to work with Flock."State legislatures and local governments around the nation need to enact strong, meaningful protections of our privacy and way of life against this kind of AI surveillance machinery," ACLU Senior Policy Analyst Jay Stanley wrote in an August blog post. Flock also drew scrutiny in October when it announced a partnership with Amazon's Ring doorbell camera system... ["Local officers using Flock Safety's technology can now post a request directly in the Ring Neighbors app asking for help," explains Flock's blog post.] Langley told me it was up to police to reassure communities that the cameras would be used responsibly... "If you don't trust law enforcement to do their job, that's actually what you're concerned about, and I'm not going to help people get over that." Langley added that Flock has built some guardrails into its technology, including audit trails that show when data was accessed. He pointed to a case in Georgia where that audit found a police chief using data from LPR cameras to stalk and harass people. The chief resigned and was arrested and charged in November... More recently, the company rolled out a "drone as first responder" service — where law enforcement officers can dispatch a drone equipped with a camera, whose footage is similarly searchable via AI, to evaluate the scene of an emergency call before human officers arrive. Flock's drone systems completed 10,000 flights in the third quarter of 2025 alone, according to the company... I asked what he'd tell communities already worried about surveillance from LPRs who might be wary of camera-equipped drones also flying overhead. He said cities can set their own limitations on drone usage, such as only using drones to respond to 911 calls or positioning the drones' cameras on the horizon while flying until they reach the scene. He added that the drones fly at an elevation of 400 feet.
  
  
  Read more of this story at Slashdot.
  

• Military Satellites Now Maneuver, Watch Each Other, and Monitor Signals and Data
  An anonymous reader shared this report from the Washington Post. (Alternate URL here):The American patrol satellite had the targets in its sights: two recently launched Chinese spacecraft flying through one of the most sensitive neighborhoods in space. Like any good tactical fighter, the American spacecraft, known as USA 270, approached from behind, so that the sun would be at its back, illuminating the quarry. But then one of the Chinese satellites countered by slowing down. As USA 270 zipped by, the Chinese satellite dropped in behind its American pursuer, like Maverick's signature "hit-the-brakes" move in the movie "Top Gun." The positions reversed, U.S. officials controlling their spacecraft from Earth were forced to plot their next move. The encounter some 22,000 miles above Earth in 2022 was never acknowledged publicly by the Pentagon or Beijing. Happening out of sight and little noticed except by space and defense specialists, this kind of orbital skirmishing has become so common that defense officials now refer to it as "dogfighting..." Much of the "dogfighting" activity in space is simply for spying, defense analysts say, with specifics largely classified — snapping photos of each other's satellites to learn what kind of systems are on board and their capabilities. They monitor the signals and data emitted by satellites, listening to communications between space and the ground. Many can even jam those signals or interfere with orbiting craft that provide missile warnings, spy or relay critical information to troops... Traditionally, once a satellite was in orbit, it largely stayed on a fixed path, its operators reluctant to burn precious fuel. But now, the Pentagon and its adversaries, notably China and Russia, are launching satellites designed to fly in more dynamic ways that resemble aircraft — banking hard, slowing down, speeding up, even flying in tandem. "Traditionally satellites weren't designed to fight, and they weren't designed to protect themselves in a fight," said Clinton Clark, the chief growth officer of ExoAnalytic Solutions, a company that monitors activity in space. "That is all changing now." "Unlike dogfights between fighter jets, the jockeying-for-position encounters in orbit take place over several hours, even days," the article points out. But it also notes that recently Germany's defense minister "complained about a Russian satellite that had been flying close to a commercial communications satellite used by the German military. 'They can jam, blind, manipulate or kinetically disrupt satellites,' he said."
  
  
  Read more of this story at Slashdot.
  

• 'Subscription Captivity': When Things You Buy Own You
  A reporter at Mother Jones writes about a $169 alarm clock with special lighting and audio effects. But to use the features, "you need to pay an additional $4.99 per month, in perpetuity." "Welcome to the age of subscription captivity, where an increasing share of the things you pay for actually own you."What vexes me are the companies that sell physical products for a hefty, upfront fee and subsequently demand more money to keep using items already in your possession. This encompasses those glorified alarm clocks, but also: computer printers, wearable wellness devices, and some features on pricey new cars. Subscription-based business models are great for businesses because they amount to consistent revenue streams. They're often bad for consumers for the same reason: You have to pay companies, consistently. We're effectively being $5 per month-ed (or more) to death, and it's only going to get worse. Industry research suggests the average customer spent $219 per month on subscriptions in 2023. In 2024, the global subscription market was an estimated $492 billion. By 2033, that figure is expected to triple. Companies would argue these models benefit consumers, not just their bottom lines. For example, HP's Instant Ink program suggests you will never again find your device out of ink when you need it most. The printer apparently knows when it's running low, spurring automatic deliveries of ink to your home for $7.99 per month if you select the company-recommended plan. But if you cancel the subscription, the printer will literally hold hostage the half-full cartridges already sitting in your printer. The ransom to use it? Re-enroll... The company has added firmware to its technology that deliberately blocks cheaper, off-brand cartridges from working at all... "There's even a subscription service that enables you to track and cancel your piling subscriptions — for just $6 to $12 per month."
  
  
  Read more of this story at Slashdot.
  

• EV Battery-Swapping Startup That Raised $330 Million Files for Bankruptcy
  In 2023 Slashdot covered a battery-swapping startup that promised to give EVs a full charge in about the same time it takes to fill a tank of gas. They just filed for bankruptcy, reports Inc:Ample was founded in 2014 with a goal of "solving slow charging times and infrastructure incompatibility" for commercial EV fleets such as those in logistics, ride-hailing, and delivery, the filing states. To-date, Ample has raised more than $330 million across five rounds of funding to finance research and development and deployment. Rather than tackling fast charging, its strategy involved developing "fully autonomous modular battery swapping," capable of delivering a fully charged battery in just five minutes. The technology requires purpose-built "Ample stations" that look a little like carwashes. A car is guided into the bay and elevated on a platform. A robot then identifies the location of a car's battery module, removes it, and replaces it with a charged module, Canary Media reported. The company also boasts partnerships with Uber, Mitsubishi, and Stellantis, and notes it has deployed its technology — or is pursuing deployment — in San Francisco, Madrid and Tokyo. Even so, it ran up against funding issues. In its filing, Ample attributed its bankruptcy to macroeconomic and industry headwinds, such as "severe supply chain disruptions," "contraction in both public and private investment in renewable energy" and the "reduction, delay, or redirection of government incentives intended to accelerate EV adoption." The filing notes that regulatory and permitting delays slowed its launch in international markets, after which access to capital foiled its scaling efforts. The company eliminated all but two full-time, non-executive employees after formerly employing about 200... Electrek noted that Ample is the second battery swapping startup to go bankrupt after California-based Better Place in collapsed in 2013 amid financial issues related to how capital intensive it was to build infrastructure, Reuters reported. And Tesla briefly pursued the concept, building a station in California, before ditching the idea altogether. Ample "claimed to have designed autonomous battery swapping stations that would be rapidly deployable, cheap to build, and could adapt to any EV design with a modular battery which would be easy for manufacturers to use," notes Electrek's article:Where this bankruptcy leaves Ample's technology is unclear. Another company could snap it up and try to do something with it, if they find that the technology is real and useful. Ample had gotten investments and partnerships with Shell, Mitsubishi and Stellantis, for example, so the company wasn't alone in touting its tech. Or, it could just disappear, as other EV battery swapping plans have before... That's not to say that nobody has been successful at at implementing battery swap, though. NIO seems to be successful with its battery swapping tech in China, though the company did miss its 2025 scaling goals by a longshot. But as of yet, this is the only notable example of a successful battery swap initiative, and it was done by an automaker itself, rather than a startup claiming to work for every automaker. Electrek's writer is "just not bullish on battery swapping as a solution in general. Currently, the fastest-charging vehicles can charge from 10-80% in about 18 minutes. While that's longer than 5 minutes, it's not really a terrible amount of time to spend during most stops." Plus, if cars come and go in 5 minutes instead of 18 minutes, "then you're going to have more than triple the throughput at peak utilization." And Ample's prices would be about the same as normal EV quick-charging prices...
  
  
  Read more of this story at Slashdot.
  

• Firefox Will Ship With an 'AI Kill Switch' To Completely Disable All AI Features
  An anonymous reader shared this report from 9to5Linux:After the controversial news shared earlier this week by Mozilla's new CEO that Firefox will evolve into "a modern AI browser," the company now revealed it is working on an AI kill switch for the open-source web browser... What was not made clear [in Tuesday's comments by new Mozilla CEO Anthony Enzor-DeMeo] is that Firefox will also ship with an AI kill switch that will let users completely disable all the AI features that are included in Firefox. Mozilla shared this important update earlier Thursday to make it clear to everyone that Firefox will still be a trusted web browser.... "...that's how seriously and absolutely we're taking this," said Firefox developer Jake Archibald on Mastodon. In addition, Jake Archibald said that all the AI features that are or will be included in Firefox will also be opt-in. "I think there are some grey areas in what 'opt-in' means to different people (e.g. is a new toolbar button opt-in?), but the kill switch will absolutely remove all that stuff, and never show it in future. That's unambiguous..." Mozilla has contacted me shortly after writing the story to confirm that the "AI Kill Switch" will be implemented in Q1 2026." The article also cites this quote left by Mozilla's new CEO on Reddit: "Rest assured, Firefox will always remain a browser built around user control. That includes AI. You will have a clear way to turn AI features off. A real kill switch is coming in Q1 of 2026. Choice matters and demonstrating our commitment to choice is how we build and maintain trust."
  
  
  Read more of this story at Slashdot.
  

• Pro-AI Group Launches First of Many Attack Ads for US Election
  "Super PAC aims to drown out AI critics in midterms," the Washington Post reported in August, noting its intial funding over $100 million from "some of Silicon Valley's most powerful investors and executives" including OpenAI president Greg Brockman, his wife, and VC firm Andreessen Horowitz. The group's goal was "to quash a philosophical debate that has divided the tech industry on the risk of artificial intelligence overpowering humanity," according to the article — and to support "pro-AI" candidates in America's next election in November of 2026 and "oppose candidates perceived as slowing down AI development." Their first target? State assemblyman Alex Bores, now running to be a U.S. representative. While in the state legislature Bores sponsored a bill that would "require large AI companies to publish safety data on their technology," notes the Washington Post. So the attack ad charges that Bores "wants Albany bureaucrats regulating AI," excoriating him for sponsoring a bill that "hands AI to state regulators and creates a chaotic patchwork of state rules that would crush innovation, cost New York jobs, and fail to keep people safe! And he's backed by groups funded by convicted felon Sam Bankman-Fried. Is that really who should be shaping AI safety for our kids? America needs one smart national policy that sets clear stands for safe AI not Albany politicians like Alex Bores." The Post calls it "the opening skirmish in a battle set to play out across the country" as tech moguls (and an independent effort receiving "tens of millions" from Meta) "try to use the 2026 midterms to reengineer Congress and state legislatures in favor of their ambitions for artificial intelligence" and "to wrest control of the narrative around AI, just as politicians in both parties have started warning that the industry is moving too fast."By knocking down candidates such as Bores, who favor regulations, and boosting industry sympathizers, the tech-backed groups could signal to incumbents and candidates nationwide that opposing the tech industry can jeopardize their electoral chances. "Bores just happened to be first, but he's not the last, and he's certainly not the only," said Josh Vlasto, co-head of Leading the Future, the bipartisan super PAC behind the ad. The group plans to support and oppose candidates in congressional and state elections next year. It will also fund rapid response operations against voices in the industry pushing for more oversight... The strategy aims to replicate the success of the cryptocurrency industry, which used a super PAC to clear a path for Congress this summer to boost the sector's fortunes with the passage of the Genius Act... But signs that voters are increasingly wary of AI suggest that approach may be challenging to replicate. More than half of Americans believe AI poses a high risk to society, Pew Research Center found in a June survey. As AI usage continues to grow, more people are being warned by chief executives that AI will disrupt their jobs, seeing power-hungry data centers spring up in their towns or hearing claims that chatbots can harm mental health. The article also notes there's at least two other groups seeking to counter this pro-AI push, raising money through a nonprofit called "Public First." CNN calls the new pro-AI ads "a likely preview of the vast amounts of money the technology industry could spend ahead of next year's elections," noting that the ads are first targeting the candidate-choosing primary elections
  
  
  Read more of this story at Slashdot.
  

• Trump Dismantling National Center For Atmospheric Research In Colorado
  echo123 shares a report from PBS: The Trump administration is dismantling the National Center for Atmospheric Research in Colorado, moving to dissolve a research lab that a top White House official described as "one of the largest sources of climate alarmism in the country." White House budget director Russ Vought criticized the lab in a social media post Tuesday night and said a comprehensive review of the lab is underway. "Vital activities such as weather research will be moved to another entity or location, Vought said. The research lab, which houses the largest federal research program on climate change, supports research to predict, prepare for and respond to severe weather and other natural disasters. The research lab is managed by a nonprofit consortium of more than 130 colleges and universities on behalf of the National Science Foundation. A senior White House official cited two instances of the lab's "woke direction" that wastes taxpayer funds on what the official called frivolous pursuits and ideologies. One funded an Indigenous and Earth Sciences center that aimed to "make the sciences more welcoming, inclusive, and justice-centered," while another experiment traced air pollution to "demonize motor vehicles, oil and gas operations." The lab "is quite literally our global mothership," said Katharine Hayhoe, a climate scientist and Distinguished Professor at Texas Tech University, in a post on X. "Nearly everyone who researches climate and weather -- not only in the U.S., but around the world -- has passed through its doors and benefited from its incredible resources." She continued: "NCAR supports the scientists who fly into hurricanes, the meteorologists who develop new radar technology, the physicists who envision and code new weather models, and yes -- the largest community climate model in the world. That too. Dismantling NCAR is like taking a sledgehammer to the keystone holding up our scientific understanding of the planet."
  
  
  Read more of this story at Slashdot.
  

• James Webb Space Telescope Confirms 1st 'Runaway' Supermassive Black Hole
  Longtime Slashdot reader schwit1 shares a report from Space.com: Astronomers have made a truly mind-boggling discovery using the James Webb Space Telescope (JWST): a runaway black hole 10 million times larger than the sun, rocketing through space at a staggering 2.2 million miles per hour (1,000 kilometers per second). That not only makes this the first confirmed runaway supermassive black hole, but this object is also one of the fastest-moving bodies ever detected, rocketing through its home, a pair of galaxies named the "Cosmic Owl," at 3,000 times the speed of sound at sea level here on Earth. If that isn't astounding enough, the black hole is pushing forward a literal galaxy-sized "bow-shock" of matter in front of it, while simultaneously dragging a 200,000 light-year-long tail behind it, within which gas is accumulating and triggering star formation. "It boggles the mind!" discovery team leader Pieter van Dokkum of Yale University told Space.com. "The forces that are needed to dislodge such a massive black hole from its home are enormous. And yet, it was predicted that such escapes should occur!" "This is the only black hole that has been found far away from its former home," van Dokkum said. "That made it the best candidate [for a] runaway supermassive black hole, but what was missing was confirmation. All we really had was a streak that was difficult to explain in any other way. With the JWST, we have now confirmed that there is indeed a black hole at the tip of the streak, and that it is speeding away from its former host." The research is currently available as a pre-peer-reviewed paper on arXiv.
  
  
  Read more of this story at Slashdot.
  

• Google Sues SerpApi Over Scraping and Reselling Search Data
  An anonymous reader quotes a report from Search Engine Land: Google said today that it is suing SerpApi, accusing the company of bypassing security protections to scrape, harvest, and resell copyrighted content from Google Search results. The allegations: Google said SerpApi: -Circumvented Google's security measures and industry-standard crawling controls.-Ignored website directives that specify whether content can be accessed.-Used cloaking, rotating bot identities, and large bot networks to scrape content at scale.-Took licensed content from Search features, including images and real-time data, and resold it for profit. What Google is saying. "Stealthy scrapers like SerpApi override [crawling] directives and give sites no choice at all," Google wrote, calling the alleged scraping "brazen" and "unlawful." Google said SerpApi's activity "increased dramatically over the past year." [...] If Google wins, reliable SERP data could become harder to get, more expensive, or both -- especially for teams that rely on tools powered by services like SerpApi. As AI already reduces clicks and transparency, Google now appears intent on making it even harder for brands to understand how Search works, how they appear in results, and how to measure success.
  
  
  Read more of this story at Slashdot.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

• Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
  OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely
  
  The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
  

• Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation.
  Exciting news! The Tazama project is officially a Digital Public Good having met the criteria to be accepted to the Digital Public Goods Alliance ! Tazama is a groundbreaking open source software solution for real-time fraud prevention, and offers the first-ever open source platform dedicated to enhancing fraud management in digital payments. Historically, the financial [0]
  
  The post Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation. appeared first on Linux.com.
  

• Xen 4.19 is released
  Xen Project 4.19 has been officially out since July 31st, 2024, and it brings significant updates. With enhancements in performance, security, and versatility across various architectures like Arm, PPC, RISC-V, and x86, this release is an important milestone for the Xen community. Read more at XCP-ng Blog
  
  The post Xen 4.19 is released appeared first on Linux.com.
  

• Advancing Xen on RISC-V: key updates
  At Vates, we are heavily invested in the advancement of Xen and the RISC-V architecture. RISC-V, a rapidly emerging open-source hardware architecture, is gaining traction due to its flexibility, scalability and openness, which align perfectly with our ethos of fostering open development ecosystems. Although the upstream version of Xen for RISC-V is not yet fully [0]
  
  The post Advancing Xen on RISC-V: key updates appeared first on Linux.com.
  

Engadget"Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics"

• Governor Hochul signs New York's AI safety act
  New York governor Kathy Hochul signed legislation on Friday aimed at holding large AI developers accountable for the safety of their models. The RAISE Act establishes rules for greater transparency, requiring these companies to publish information about their safety protocols and report any incidents within 72 hours of their occurrence. It comes a few months after California adopted similar legislation. 
  
  But, the penalties aren9t going to be nearly as steep as they were initially presented when the bill passed back in June. While that version included fines of up to $10 million dollars for a company9s first violation and up to $30 million for subsequent violations, according to two other pieces of AI legislation earlier in December that focused on the use of the technology in the entertainment industry. At the same time, President Trump has been pushing to curb states9 attempts at AI regulation, and signed an executive order this month calling for "a minimally burdensome national standard" instead.
  This article originally appeared on Engadget at https://www.engadget.com/ai/governor-hochul-signs-new-yorks-ai-safety-act-220503930.html?src=rss

• Sony's first EV with Honda will let you remotely play PS5 in your car
  Faraway road trips just got a lot easier, at least for the passengers. Sony Honda Mobility, the joint venture between the two Japanese conglomerates created to produce electric vehicles, announced that its Afeela EV will come with PS Remote Play. While playing video games in a car may be a niche feature, it means drivers will have something to do when parked, and passengers can chip away at their favorite RPGs during long drives.
  
  According to the announcement, the Afeela will be able to run your PS5 and PS4 consoles remotely through the infotainment system9s integrated display. You can even grab your DualSense controller from home and get right back into the game after jumping in your Afeela. Sony Honda Mobility said a 5Mbps broadband connection is required to play, and a 15Mbps rate will deliver a smoother experience.
  
  It9s not the first time we9re hearing about PS Remote Play in an EV. The joint venture previously showed off the Afeela 1, which is set for its first deliveries in 2026, and its ability to remotely play PlayStation titles at CES 2024. As for gaming in EVs overall, Tesla famously offered Steam support for its Model S and X, but later removed this feature.
  This article originally appeared on Engadget at https://www.engadget.com/transportation/evs/sonys-first-ev-with-honda-will-let-you-remotely-play-ps5-in-your-car-202359091.html?src=rss

• Game publisher says cheaper Switch 2 cartridges are coming in since-deleted post
  Gamers who prefer physical copies of their favorite titles may be getting a major win with the Switch 2. In an unexpected announcement from retro video game publisher ININ Games, Nintendo reportedly has "two new smaller cartridge sizes" for its Switch 2 console. For ININ Games, these rumored game cartridges with smaller storage capacity allow the publisher to recalculate production costs and pursue a physical Switch 2 release of its upcoming R-Type Dimensions III.
  
  ININ Games later deleted its posts mentioning these smaller Switch 2 cartridges and issued a correction on its website and social media pages. However, the publisher reiterated that R-Type Dimensions III will be released on a physical cartridge, but that "no further technical details regarding cartridge specifications have been officially confirmed."
  
  "There has been no official announcement or confirmation from Nintendo concerning cartridge storage capacities," ININ Games said in a statement. "Any references to specific storage sizes should not be interpreted as official information from Nintendo."
  
  If we9re reading between the lines, ININ Games may have been early to tease a crucial detail about Switch 2 cartridges that Nintendo wasn9t officially ready to reveal yet. For more context, Nintendo reportedly only offers physical game cartridges for Switch 2 with a 64GB capacity. With less demanding games like R-Type Dimensions III, that much storage capacity could be unnecessary and raise production costs. Nintendo still hasn9t made an announcement about these potential smaller cartridges, but we could see a lot more game publishers opting for physical copies of their upcoming games if they are indeed an option.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/nintendo/game-publisher-says-cheaper-switch-2-cartridges-are-coming-in-since-deleted-post-191145230.html?src=rss

• Valve discontinued the last remaining LCD model of the Steam Deck
  If you still haven9t bought into the Steam Deck craze, it9ll cost you a little extra to take the plunge now since Valve is only offering OLED models. Valve announced in a note on its Steam Deck page that it9s "no longer producing the Steam Deck LCD 256GB model," adding that "once sold out, it will no longer be available." As of this article9s publishing, the $399 Steam Deck with LCD and 256 GB of storage, which we ranked as the best gaming handheld for most, is out of stock. Even Valve9s refurbished stock of LCD models has been cleared out.
  
  The OLED version of the Steam Deck is a worthy upgrade since it comes with a longer battery life and a larger display with a higher refresh rate. However, the LCD model offered an impressive entry price for the Steam Deck and the world of affordable gaming handhelds. Fortunately for existing owners, Valve said it plans to continue supporting the LCD models with future software updates.
  
  For now, potential buyers will have to choose between the new entry-level pricing of $549 for the OLED model with 512GB of storage or upgrading to 1TB and paying at least $649. Valve9s choice to discontinue its last remaining LCD model isn9t surprising after it did the same with the 512GB version and the 64GB option that was available when the Steam Deck was first released in 2022.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/valve-discontinued-the-last-remaining-lcd-model-of-the-steam-deck-171548195.html?src=rss

• The 10 best white elephant gifts worth fighting over for 2025
  If you have a white elephant gift exchange at work this year or with friends and family, there’s a good chance you’re scrambling right now to find a good gift — or decipher what even makes a good white elephant gift. The possible origins of the term “white elephant” provide one way of looking at it: According to legend, the King of Siam would give a white elephant to courtiers who had upset them. It was a far more devious punishment than simply having them executed. The recipient had no choice but to simply thank the king for such an opulent gift, knowing that they likely could not afford the upkeep for such an animal. It would inevitably lead them to financial ruin.
  
  Whether or not that story is true, it gives us one way of looking at a white elephant gift: something just useful or amusing enough that it won’t immediately get tossed into the trash, but is also somewhat of a burden. However, there are plenty of other ways of interpreting this strange yet delightful tradition. Some compete to get a gift that others will surely want to steal, while others scavenge for the most niche and targeted gag gifts. Almost all of them, though, typically have a price limit that keeps the burden of gift giving to a minimum — usually $50 or less. So with all of that in mind, here are some white elephant gift ideas that will get you a few chuckles without requiring you to spend too much (or think too hard about it).
  Best white elephant gift ideas
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  White elephant FAQs What is white elephant?
  A white elephant gift exchange is a party game typically played around the holidays in which people exchange funny, impractical gifts.
  How does white elephant work?
  A group of people each bring one wrapped gift to the white elephant gift exchange, and each gift is typically of a similar value. All gifts are then placed together and the group decides the order in which they will each claim a gift. The first person picks a white elephant gift from the pile, unwraps it and their turn ends. The following players can either decide to unwrap another gift and claim it as their own, or steal a gift from someone who has already taken a turn. The rules can vary from there, including the guidelines around how often a single item can be stolen — some say twice, max. The game ends when every person has a white elephant gift.
  Why is it called white elephant?
  The term “white elephant” is said to come from the legend of the King of Siam gifting white elephants to courtiers who upset him. While it seems like a lavish gift on its face, the belief is that the courtiers would be ruined by the animal’s upkeep costs.
  
  Check out the rest of our gift ideas here.
  This article originally appeared on Engadget at https://www.engadget.com/the-10-best-white-elephant-gifts-worth-fighting-over-for-2025-150516281.html?src=rss

• The best Christmas gift ideas everyone on your 2025 holiday shopping list will love
  This time of year has a lot of merry and bright things to be excited about, but it can be stressful if you’re stumped on what to get your mom, dad, best friend, coworker or kids’ teacher as a holiday gift. Whether you enjoy or dread buying gifts for people, it’s safe to say we all want to give our loved ones things they will enjoy and appreciate. But there’s a lot of noise, junk and bad deals disguised as good deals to sift through as we get closer and closer to the holidays.
  
  Allow us at Engadget to help you through it. Here, you’ll find all of our holiday gift guides collected in one place, so you can more easily find the best Christmas gifts you need this year. Are you looking for white elephant gift ideas? Are you struggling to come up with a good gift for the father figure in your life? Are you just looking for a good board game to pick up for your own family? We’ve got you covered with gift ideas for all of those scenarios and more.
  Best white elephant gift ideas
  
  
  According to legend, the King of Siam would give a white elephant to courtiers who had upset them. The recipient had no choice but to simply thank the king for such an opulent gift, knowing that they likely could not afford the upkeep for such an animal. It would inevitably lead them to financial ruin. This story is almost certainly untrue, but it has led to a modern holiday staple: the white elephant gift exchange. These gift ideas will not only get you a few chuckles, but will also make your recipient feel (slightly) burdened.
  
  Read more: the best Nintendo Switch 2 accessories for even more ideas.
  
  Read more: The best Nintendo gifts for the holiday season
  Best retro gaming gifts
  
  
  The stream of new video games never ends, but for some of us, nothing beats the classics. If you don’t feel like hunting through eBay and local game shops for old cartridges to add to your loved one’s collection, we’ve picked out a few other gift ideas for the nostalgic gamer in your life — from video upscalers for old consoles to retro-themed books and artwork.
  
  Read more: The best retro gaming gifts for the holidays
  Best gifts for gamers
  
  
  The year may not be over, but 2025 is all but guaranteed to go down as one of the best 12 months in gaming history. Between releases like Hades 2, Hollow Knight: Silksong and Ghost of Yotei, to name just a few, there was truly something for everyone in 2025. Of course, that abundance also means it can be tricky to find a gift for the gamers in your life, especially if you9re not one yourself. Worry not — Engadget is here to help. We guarantee our guide will help you find the perfect gift for your friend or loved one.
  
  Read more: The best gifts for gamers
  Best gifts for moms
  
  
  Some moms really do mean it when they say they don’t need any gifts. But those same moms will probably appreciate getting something thoughtful and personal — a gift that shows you put in a bit of consideration. It’s tough to pin-point what that ideal gift is for any given mom, but we’ve got ideas to get you started. Since we spend our days testing and otherwise thinking about tech, most of the presents here have a gadget spin, but all of them are a heck of a lot more unique than a candle and a bath bomb.
  
  Read more: The best gifts for mom
  Best gifts for dads
  
  
  It9s not always easy to find gifts for dads, especially for those who are often quick to snap up whatever they need on their own. But even the geekiest and most well-informed dads have blind spots — the trick is to find something they9ve never heard of, but could actually make their lives useful. We9ve collected some of our favorite dadcore gift ideas, which would suit everyone from a complete gadgetphobe to a total techie.
  
  Read more: The best gifts for dads
  Best subscription box gifts
  
  
  Subscription boxes are the rare gift that keeps its charm long after the wrapping paper is gone. You make the choice once, but the surprises keep landing on their doorstep for months after that. For anyone who loves the buzz of a delivery, these are gifts that extend the season well past December. Each box on this list combines a bit of discovery with something tangible, such as gadgets, books, collectibles, snacks or clever projects. Some appeal to hardcore hobbyists, others to the curious or the comfort seekers, but all offer that same spark of delight that comes from unboxing something unexpected.
  
  Read more: The best subscription box gifts
  Best gifts for home cooks
  
  
  For home cooks, kitchen tools are the equipment that make all your favorite dishes and meals possible. And while having the fanciest gear certainly isn9t a requirement, it is really nice, which makes products like the ones here such great gifts. These are the kind of things that people want but might not be able to justify buying for themselves, or essential pieces that would be handy additions to any kitchen or pantry. So if you9re looking for present ideas for the chef in your life, check out our guide of tried and tested cooking tools and gadgets.
  
  Read more: The best cooking gifts
  Best gifts for coffee lovers
  
  
  When it comes to making coffee at home, us coffee nerds are constantly evolving. Whether the person you’re shopping for is newly indoctrinated into the world of small-batch roasters or obsessive over every possible aspect of every brewing process, we’ve compiled a list of the best coffee gear for any coffee geek this holiday season. For brewing, grinding and drinking, we’ve got multiple options at a range of prices to help expand any java geek’s horizons. And if you think the coffee aficionado on your list already has everything they need, we’ve got a recommendation for them too.
  
  Read more: The best gifts for coffee lovers
  Best gadgets for your pets
  
  
  We9re a pet-loving staff here at Engadget, with diverse distribution of cat people, dog people, other-small-fuzzy-creature people, bird feeder enjoyers and so on (at press time, I9m unsure if we have a rat person, but I9d be surprised if we didn9t). And, of course, we love getting new gadgets of all sorts for our pets as much as for ourselves. Our list, with gifts as low-tech as a blanket and as high-tech as the best $30 two-way camera you9ll ever use, is for the pet lover in your life — whether that9s you or another favorite human.
  
  Read more: The best gadgets for your pets
  
  Check out the rest of our gift ideas here.
  This article originally appeared on Engadget at https://www.engadget.com/the-best-christmas-gift-ideas-everyone-on-your-2025-holiday-shopping-list-will-love-170018978.html?src=rss

• AirTags are back on sale for $65 for a four-pack
  Most Apple products are pretty expensive, but some of the most affordable (and useful) ones are AirTags. The Bluetooth trackers are priced pretty reasonably even when not on sale, but they can be a steal if you can get them on a discount — like right now. A four pack of AirTags is on sale for $65 at Amazon, which is only a few dollars more than the record-low price we saw during Black Friday this year.
  
  
  
  If you place an order quickly, the AirTags should arrive in time for Christmas, making this a solid choice as a gift for someone with a tendency to misplace stuff. AirTags can also be useful for people who travel frequently, helping you to keep track of essentials like your passport as well as a way to keep tabs on luggage while you9re on the go.
  
  If you do purchase some AirTags, we have some recommendations for useful accessories to go along with them, such as different styles of cases to best attach the trackers to different types of items. These are worth looking over and adding to your shopping cart in order to make the most of the product. 
  
  AirTags have an IP67 rating for water and dust resistance and their replaceable batteries should last for about a year. They can also support Precision Finding, which gives more exact directions to a lost item, when paired with most models after the iPhone 11. Up to five people can share an AirTag9s location, which is helpful for families or large travel groups. 
  
  Follow @EngadgetDeals on X for the latest tech deals and buying advice.
  This article originally appeared on Engadget at https://www.engadget.com/deals/airtags-are-back-on-sale-for-65-for-a-four-pack-202333618.html?src=rss

• AirPods Pro 3 drop to a record low of $199
  If you haven9t yet upgraded to Apple9s AirPods Pro 3, you can pick up the company9s latest model at a discount through a deal on Amazon right now. The AirPods Pro 3, which came out in September, are currently down to $199. That9s $50 off and the best price we9ve seen. With the new AirPods Pro, Apple made some big improvements, including better battery life and sound quality, and introduced useful new features, such as Live Translation.
  
  
  
  The AirPods Pro 3 are the best AirPods available today, with Apple9s H2 chip, and earned a score of 90 out of 100 in Engadget9s review this fall. Active noise cancellation (ANC) is one of the biggest selling points of the AirPods Pro, and Apple has made the experience even better with the AirPods Pro 3. They sport new foam-infused ear tips that create a better seal to improve passive noise isolation, and as Engadget9s Billy Steele wrote in his review, "Ultra-low-noise microphones combine with advanced computational audio to silence even more background noise." In testing, they had no problem blocking out the chatter of people nearby or otherwise noisy environments.
  
  With the AirPods Pro 3, Apple introduced heart-rate sensing, so you9ll be able to see your heart rate data from the earbuds in the Fitness app and other workout apps. The AirPods Pro 3 also boast Live Translation, which you can activate via controls on the earbuds themselves. As long as you have an Apple Intelligence-capable device, you9ll be able to translate in-person conversations in English, French, German, Italian, Japanese, Korean, Portuguese, Spanish and Chinese (Mandarin).
  
  Follow @EngadgetDeals on X for the latest tech deals and buying advice.
  This article originally appeared on Engadget at https://www.engadget.com/deals/airpods-pro-3-drop-to-a-record-low-of-199-222806196.html?src=rss

• Google Assistant will stick around a bit longer than expected for some Android users
  Google wanted to remove Assistant from most Android phones by the end of 2025 and replace it with Gemini. But now the company has announced that it needs a bit more time to make its AI assistant the new default digital helper for most of its users. Google said that it9s adjusting its previously announced timeline to "make sure [it delivers] a seamless transition" and that updates to convert Assistant to Gemini on Android devices will continue into the next year. The company also said that it9s sharing more details in the "coming months," so it9s possible that the transition will go past early 2026.
  
  Assistant9s retirement was pretty much expected the moment Google launched Gemini and started giving it Assistant9s capabilities, such as the ability to control smart devices connected to your phone. It launched the Pixel 9 Series with Gemini as the default assistant back in 2024. The company has also been putting Gemini in all of its products and previously said that it plans to upgrade all "tablets, cars and devices that connect to your phone, such as headphones and watches" with the AI-powered chatbot. Devices do have to meet a few minimum requirements to get the upgrade, however, and must be running Android 10 and come with 2GB of RAM at the very least.
  This article originally appeared on Engadget at https://www.engadget.com/ai/google-assistant-will-stick-around-a-bit-longer-than-expected-for-some-android-users-130000178.html?src=rss

• Claude's Chrome plugin is now available to all paid users
  Anthropic is finally letting more people use Claude in Google Chrome. The company9s AI browser plugin is expanding beyond $200-per-month Max subscribers and is now available to anyone who pays for a Claude subscription. 
  
  The Claude Chrome plugin allows for easy access to Anthropic9s AI regardless of where you are on the web, but its real draw is how it lets Claude navigate and use websites on your behalf. Anthropic says that Claude can fill out forms, manage your calendar and email and complete multi-step workflows based on a prompt. The latest version of the plugin also features integration with Claude Code, Anthropic9s AI coding tool, and allows users to record a workflow and "teach" Claude how to do what they want it to do.
  Claude in Chrome is now available to all paid plans.
  
  We’ve also shipped an integration with Claude Code. pic.twitter.com/VLpB1qCntT
  — Claude (@claudeai) December 18, 2025
  Before agents were the buzzword du jour, "computer use," the ability for AI models to understand and interact with computer interfaces, was a major focus at Anthropic and other AI companies. Now computer use is just one tool in the larger tool bag for agents, but that understanding of what digital buttons to click and how to click them is what makes Claude9s Chrome plugin possible.
  
  OpenAI and Perplexity offer similar agentic capabilities in their respective ChatGPT Atlas and Comet browsers. At this point the only AI company not fully setting its AI models loose on a browser is Google. You can access Gemini in Google Chrome and ask questions about a webpage, but Google hasn9t yet let its AI model navigate or use the web on a user9s behalf. Those features, first demoed in Project Mariner, are presumably on the way.
  This article originally appeared on Engadget at https://www.engadget.com/ai/claudes-chrome-plugin-is-now-available-to-all-paid-users-221024295.html?src=rss

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice