NTLUG | Main / All the News that Matters browse

Show Descriptions... (Show All /All+Images) (Single Column)

Fedora 42 urgent: Essential security updates addressing major threats

Debian 11: DLA-4237-1 critical: xmedcon integer overflow
Integer overflow on 32-bit systems has been fixed in the XMedCon toolkit for medical image conversion. For Debian 11 bullseye, this problem has been fixed in version

Debian Bookworm DSA-5959-1 Important: Thunderbird Arbitrary Code Execution
Multiple security issues were discovered in Thunderbird, which could result in the execution of arbitrary code. For the stable distribution (bookworm), these problems have been fixed in

Fedora 42: 2025-d3585d3323 update: mbedtls 3.6.4 released
Update to 3.6.4 Release notes: https://github.com/Mbed-TLS/mbedtls/releases/tag/mbedtls-3.6.4

Mageia 9: MGASA-2025-0203 critical: php NULL Pointer Dereference
PGSQL: Fixed GHSA-hrwm-9436-5mv3 (pgsql extension does not check for errors during escaping). (CVE-2025-1735) SOAP: Fixed GHSA-453j-q27h-5p8x (NULL Pointer Dereference in PHP SOAP

Mageia 9: MGASA-2025-0202 critical: catdoc memory overflow and corruptions
A memory corruption vulnerability exists in the Shared String Table Record Parser implementation in the xls2csv utility version 0.95. (CVE-2024-48877) An integer overflow vulnerability exists in the OLE Document File Allocation Table Parser functionality of catdoc 0.95. (CVE-2024-52035)

Kernel prepatch 6.16-rc5
The 6.16-rc5 kernel prepatch has beenreleased. Quoth Linus: "Please keep testing, but this all feels fairlyregular for this phase of the release".

Four new stable kernels
The6.15.5,6.12.36,6.6.96, and6.1.143stable kernels have been released; each contains another set of importantfixes.

[$] Python audio processing with pedalboard
ThePyCon US 2025, which was held in Pittsburgh,Pennsylvania in May. He started from the basics of digital audio and thenmoved into working with pedalboard. There were, as might be guessed, audio examplesin the talk, along with some visual information; interested readers may want to view the YouTube video of thepresentation.

Security updates for Friday
Security updates have been issued by AlmaLinux (.NET 9.0, container-tools:rhel8, ghostscript, git-lfs, grafana-pcp, pandoc, perl-FCGI:0.78, ruby:2.5, ruby:3.3, tigervnc, and varnish:6), Debian (jpeg-xl and mediawiki), Fedora (darktable, guacamole-server, mingw-gdk-pixbuf, and yarnpkg), Oracle (gimp, kernel, libsoup, python-tornado, python3.12, and thunderbird), Slackware (php), SUSE (libgepub), and Ubuntu (libtpms, linux-aws-5.15, linux-intel-iot-realtime, and linux-bluefield).

Richards: Introducing tmux-rs
Collin Richards has announced version0.0.1 of tmux-rs, a port of the tmux terminal multiplexerto Rust.
For the [past] 6 months or so I've been quietly porting tmux from C toRust. I've recently reached a big milestone: the code base is now 100%(unsafe) Rust. I'd like to share the process of porting the originalcodebase from ~67,000 lines of C code to ~81,000 lines of Rust(excluding comments and empty lines). You might be asking: why did yourewrite tmux in Rust? And yeah, I don't really have a goodreason. It's a hobby project. Like gardening, but with more segfaults.
Richards says that the next goal for the project is to convert itto safe Rust. It is currently "not very difficult to get it tocrash", but he wanted to share the project with other Rust fansnow. The project is available onGitHub.

[$] Kernel API specification and validation
The kernel project makes a strong promise to its users: the kernel ABI willnot be changed in ways that break user-space code. The occasional failurenotwithstanding, kernel developers do try to live up to that promise. Theyare handicapped by one little problem, though: there is no description ofwhat the kernel ABI is, and no comprehensive way to test whether a givenchange breaks it. The kernel APIspecification framework proposed (in its second revision) by SashaLevin addresses some of those concerns, but the solution is incomplete anddoes not come for free.

Security updates for Thursday
Security updates have been issued by AlmaLinux (.NET 9.0, aardvark-dns, apache-commons-beanutils, bootc, buildah, corosync, delve and golang, exiv2, expat, firefox, ghostscript, git, git-lfs, gnutls, grafana, grafana-pcp, grub2, gstreamer1, gstreamer1-plugins-bad-free, gstreamer1-plugins-ugly-free, and gstreamer1-rtsp-server, gstreamer1-plugins-base, gstreamer1-plugins-good, gvisor-tap-vsock, iptraf-ng, java-21-openjdk, kernel, keylime-agent-rust, krb5, libarchive, libblockdev, libsoup3, libtasn1, libvpx, libxslt, microcode_ctl, mod_auth_openidc, nodejs22, nodejs:20, openjpeg2, osbuild and osbuild-composer, perl-FCGI, perl-Module-ScanDeps, perl-YAML-LibYAML, php, php:8.2, php:8.3, podman, protobuf, python-jinja2, python-requests, python3.11, python3.12, python3.12-cryptography, python3.9, rpm-ostree, rsync, rust-bootupd, skopeo, thunderbird, tigervnc, tomcat, tomcat9, webkit2gtk3, xdg-utils, xorg-x11-server, and xorg-x11-server-Xwayland), Debian (ring), Mageia (libarchive and rootcerts, nss & firefox), Oracle (.NET 9.0, corosync, firefox, osbuild-composer, pam, python3, python3.11, python3.12, python3.9, skopeo, sudo, and thunderbird), Red Hat (microcode_ctl, pam, php, thunderbird, tigervnc, xorg-x11-server, xorg-x11-server and xorg-x11-server-Xwayland, and xorg-x11-server-Xwayland), SUSE (clamav, icu, libgepub, libsoup, python-requests, tomcat, and xorg-x11-server), and Ubuntu (clamav, logback, mongo-c-driver, pcs, and python-flask-cors).

[$] LWN.net Weekly Edition for July 3, 2025
Inside this week's LWN.net Weekly Edition:
Front: Kernel features from Python; i686 in Fedora; Kernel development with LLMs; Rust drivers; Load balancing with machine learning; Transparent huge pages. Briefs: Bcachefs removal; Coccinelle for Rust; Netdev Foundation; Oracle Linux 10; GNU HHIS 5.0; Rust 1.88.0; Quotes; ... Announcements: Newsletters, conferences, security updates, patches, and more.

Debian looking for testers with Apple M1/M2 machines
Debian's Bananas team has putout a call for people with Apple M1 or M2 systems to help testDebian on those machines:
The Bananas Team has set up an installer at with images for GNOME, KDE and console installations. While we'd like to build an actual Debian installer sooner or later (we may need a heads-up from the Debian Images team for that), at this time we only provide an asahi-type installer, which installs both the "bootloader" and the OS partitions to disk from the network (as opposed to only installing the bootloader and then letting you install Debian using a d-i USB stick). We haven't forked Trixie from Testing yet, so what you'll get is Debian Testing quite deep into the freeze.

The Netdev Foundation launches
The NetdevFoundation, which is "a user-led effort under the supervision of theLinux Foundation, focused on financially supporting Linux networkingdevelopment", has announced itsexistence.
The initial motivation was to move the NIPA testing outside of Meta, so that more people can help and contribute. But there should be sufficient budget to sponsor more projects.
(NIPA is NetdevInfrastructure for Patch Automation).

[$] Accessing new kernel features from Python
Every release of the Linux kernel has lots of new features, many of whichare accessible from user space. Usually, though, the GNU C Library (glibc)and tools that access the Linux user-space API lag behind the kernelreleases. Geoffrey Thomas showed how Python programs can access these newkernel features as soon as the kernel is released in his "What's New in theLinux Kernel... from Python" talk atPyCon US 2025. While he had twoexamples of accessing new kernel features, the real goal of the talk was todemonstrate how to go about connecting Python tothe Linux kernel.

Copyleft-next project relaunched
The copyleft-next project is aneffort to develop a next-generation copyleft license; it was covered here back in 2013 (as well as in 2015 and 2021). The project has stalled in recentyears, but now Richard Fontana and Bradley Kuhn have announceda new effort to push copyleft-next forward:
Today, GPLv3 turns exactly 18 years old. This month, GPLv2 turned 34 years old. These are both great licenses and we love them. Nevertheless, at least once in a generation, FOSS needs a new approach to strong copyleft.

Security updates for Wednesday
Security updates have been issued by AlmaLinux (apache-commons-beanutils, firefox, kea, kernel, kernel-rt, libblockdev, libvpx, pam, python-setuptools, python3, python3.11, python3.12, python3.9, and sudo), Debian (chromium), Gentoo (sudo), Oracle (.NET 8.0, buildah, firefox, freerdp, golang-github-openprinting-ipp-usb, grafana, grafana-pcp, gvisor-tap-vsock, libsoup3, mod_proxy_cluster, perl-FCGI, podman, python-setuptools, qt6-qtbase, skopeo, sudo, and thunderbird), Slackware (mozilla), SUSE (redis, runc, xorg-x11-server, and xwayland), and Ubuntu (composer, linux, linux-aws, linux-aws-6.8, linux-gcp, linux-gcp-6.8, linux-gke, linux-gkeop, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oem-6.8, linux-oracle, linux-oracle-6.8, linux-raspi, linux, linux-aws, linux-gcp, linux-gcp-5.15, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle, linux-oracle-5.15, linux, linux-aws, linux-gcp, linux-gcp-6.11, linux-hwe-6.11, linux-oracle, linux-raspi, linux-realtime, linux, linux-aws, linux-lts-xenial, linux, linux-gcp, linux-raspi, linux-realtime, linux-fips, linux-fips, linux-aws-fips, linux-gcp-fips, linux-realtime, and linux-realtime, linux-raspi-realtime).

GNU Health Hospital Information System 5.0 released
Version 5.0 of theGNU Health Hospital Information System has been released. This project,working to support medical offices, shows just how far the free-softwareeffort can reach. Changes in this release include improved reporting andanalytics, more comprehensive handling of many types of patientinformation, a reworked medical-imaging subsystem, better insurance andbilling functionality, and more.

[$] Yet another way to configure transparent huge pages
Transparent huge pages (THPs) are, theoretically, supposed to allow processes tobenefit from larger page sizes without changes to their code. This does work,but the performance impacts from THPs are not always a benefit, so systemadministrators with specific knowledge of their workloads may want the abilityto fine-tune THPs to the application. On May 15, Usama Arifshared a patch set that would add aprctl() option for setting THP defaults for a process; that patchset has sparked discussion about whether such a setting is a good fit forprctl(), and what alternative designs may work instead.

Rhino Linux 2025.3 Rolls Out with RPK2, KDE Option
Rhino Linux 2025.3 is now available with the RPK2 package management tool by default, UBports sponsorship, and the KDE Plasma 6 UBXI desktop.

Linux 6.16 Performance Regression Tracked Down In New Futex Code
Sent out this morning as part of this week's "locking/urgent" pull request is a performance regression fix ahead of today's Linux 6.16-rc5 release. This latest performance regression in the Linux kernel is around the new Futex code merged this cycle with a big performance hit being observed in scheduler benchmarks...

How to Run a Python Script Using Docker
Learn how to run a Python script using Docker with a real example. Package your code and dependencies for any system, step by step.

9to5Linux Weekly Roundup: July 6th, 2025
The 247th installment of the 9to5Linux Weekly Roundup is here for the week ending on July 6th, 2025, keeping you updated with the most important things happening in the Linux world.

Search Engine or AI Chat? More People Are Going Hybrid
AI is changing how we find information, but is the web keeping up?

Geany 2.1 Lightweight IDE Brings Smoother UI, New Filetypes, and Theming Support
Geany 2.1, a lightweight and user-friendly IDE, introduces new themes, enhanced session handling, modern file dialogs, and more.

The July 2025 Issue of the PCLinuxOS Magazine
The PCLinuxOS Magazine staff is pleased to announce the release of the July 2025 issue.

Let’s Encrypt Begins Supporting IP Address Certificates
Let’s Encrypt begins issuing IP address certificates, expanding support beyond domain names to cater to specialized use cases, such as DoH and home devices.

Wayland 1.24 Released With Few Improvements
Minutes ago Simon Ser announced the official release of Wayland 1.24...

Bash Shell 5.3 Released with New Command Substitution
Bash Shell 5.3 is out now, adding new scripting features, bug fixes, and enhancements to completion, substitution, and Readline.

Leadership in Free Software
IBM not only ignores the needs of blind people. It also attacks people like Richard Stallman, the founder of GNU/Linux

Debian Looks To Attract More Contributors, Eyes Budget For AI/LLM Usage By Debian Developers
The Debian project is hoping to address challenges of mentoring newcomers to contribute to the Debian Linux distribution as well as making it more known that open-source contributors can do more than just work on Debian packaging but that help is needed for documentation writing, web page creation, sorting out licensing issues, finding project sponsors, and more. Debian is also looking to attain OpenAI sponsorship or open-source funds from other large language model (LLM) / AI providers to help Debian developers for those wanting to use AI to help accelerate their Debian workflows...

KDE Gear 25.04.3 Apps Collection Rolls Out, Here’s What’s New
KDE Gear 25.04.3 apps collection introduces critical fixes across the suite, including enhancements to Kdenlive, Kate, Itinerary, Gwenview, and other desktop apps.

SUSE's Agama Installer Switches From X.Org To Wayland For Installation GUI
SUSE developers working on their new operating system installer "Agama" have been making steady progress and on Friday debuted Agama 16. With Agama 16 they have moved from X.Org to Wayland for powering their installer UI along with a number of other changes...

Bash 5.3 Released With Many Improvements
Three years since the Bash 5.2 release and one year since the first alpha release, GNU Bash 5.3 was released overnight as the newest step forward for this popular shell used on Linux and other operating systems...

DXVK 2.7 Improves Support for God of War, Watch Dogs 2, and Final Fantasy XIV
DXVK 2.7, a Vulkan-based implementation of D3D9, D3D10, and D3D11 for Linux / Wine, is now available for download with new features and other improvements for various games.

7-Zip v25 File Archiver Released with Performance Gains
The latest 7-Zip release speeds up bzip2 by up to 40%, improves ZIP and FAT archive support, and fixes multiple bugs and security vulnerabilities.

Intel Lunar Lake Showing Some Performance Improvements With Linux 6.16
For those on an Intel Core Ultra Series 2 "Lunar Lake" system, the upcoming Linux 6.16 kernel is looking to be in better shape for those newest Intel SoCs. In testing carried out using a Lenovo ThinkPad X1 Carbon Gen 13 Aura edition laptop, there are performance gains in some areas with the Linux 6.16 development kernel.

How to Install Google Chrome on AlmaLinux 10
Learn how to install Google Chrome on AlmaLinux 10 with this step-by-step guide tailored for Enterprise Linux users seeking a modern web browsing experience.

Fedora 43 GNU & LLVM 21 Toolchain Updates Planned
It shouldn't be particularly surprising as Fedora Linux has always been known for shipping with a leading-edge compiler toolchain, but the formalities have now been submitted for Fedora 43 to ship with the latest GNU and LLVM toolchain components...

Linux Insider"LinuxInsider"

Is a Security Baseline Enough for Open-Source Software?
The OpenSSF’s new baseline sets minimum security expectations for open-source projects — but not all developers agree it’s practical, scalable, or sufficient. The post Is a Security Baseline Enough for Open-Source Software? appeared first on LinuxInsider.

DOD Raises Software Security Expectations With SWFT Initiative
Open-source software may be in the crosshairs of military and government agencies as the U.S. Department of Defense evaluates the risks of both free and proprietary software. The post DOD Raises Software Security Expectations With SWFT Initiative appeared first on LinuxInsider.

Edera and CIQ Advance Linux Security With Hardened Tools
With Edera Protect and CIQ's RLC-H, open-source innovators are redefining Linux security through stronger isolation and proactive threat defense. The post Edera and CIQ Advance Linux Security With Hardened Tools appeared first on LinuxInsider.

Powerful Mini-PCs Provide Efficient Replacement for Desktop Computers
I’d been curious about the performance of mini-PCs, so I finally bit the bullet and replaced an aging laptop and failing desktop with much smaller units. The post Powerful Mini-PCs Provide Efficient Replacement for Desktop Computers appeared first on LinuxInsider.

Open Source Security at Risk From Poor Oversight
As attacks grow more sophisticated, the open-source community is racing to close critical security gaps and stop malicious code before it spreads. The post Open Source Security at Risk From Poor Oversight appeared first on LinuxInsider.

MakuluLinux LinDoz 2025 Brings AI Frontier to Desktop Computing
The MakuluLinux LinDoz 2025 edition is one of the most useful and functional AI-powered Linux distributions available. The OS offers free and unlimited access to a loaded AI toolkit. The post MakuluLinux LinDoz 2025 Brings AI Frontier to Desktop Computing appeared first on LinuxInsider.

A Practical Guide to Kubernetes Autoscalers
Autoscaling has become an indispensable feature of modern cloud computing. It allows organizations to allocate resources dynamically to match fluctuating demand. By adjusting capacity during peak and low activity periods, autoscaling ensures optimal performance and reduces costs. The post A Practical Guide to Kubernetes Autoscalers appeared first on LinuxInsider.

30 Lines of Code Could Cut Data Center Power Use by 30%
Researchers at the University of Waterloo's Cheriton School of Computer Science in Canada found that modifying just 30 lines of code in the Linux kernel could cut data center energy consumption by 30% to 45%. The post 30 Lines of Code Could Cut Data Center Power Use by 30% appeared first on LinuxInsider.

Open Sources Complexities in 2025: From Sustainability to Security
In 2025, open-source technology will navigate growing challenges, from security and sustainability to funding. New AI projects may offer solutions, but uncertainty remains. The post Open Sources Complexities in 2025: From Sustainability to Security appeared first on LinuxInsider.

Windows 10 Countdown: Make the Switch to Linux for a Fresh Start
Switching to the Linux operating system offers convenience and economy. Upgrading to Linux is free, and you can install it on your existing hardware to replace Windows. The post Windows 10 Countdown: Make the Switch to Linux for a Fresh Start appeared first on LinuxInsider.

Citizen Scientists Just Helped Discover Nearly 8,000 New Eclipsing Binary Stars
"Citizen scientists have successfully located thousands of previously unknown pairs of 'eclipsing binary' stars," reports the Washington Post, citing a recent announcement from NASA.The ongoing initiative helps space researchers hunt for "eclipsing binary" stars, a rare phenomenon in which two stars orbit one another, periodically blocking each other's light. These star pairs offer important data to astrophysicists, who consider the many measurable properties of eclipsing binaries — and the information they bear about the history of star formation and destruction — as a foundation of the field... The citizen science project in question, the Eclipsing Binary Patrol, validates images from NASA's Transiting Exoplanet Survey Satellite (TESS) mission. The satellite, launched in 2018, is "exceptionally capable at detecting varying stars," the researchers write in a preprint paper describing the initiative. The researchers used machine learning to identify about 1.2 million potential eclipsing star pairs. Citizen scientists then validated a subset of about 60,000... manually inspecting hundreds of thousands of images of eclipse-like events and weeding out actual binaries from images that tricked the algorithm. "Thankfully," the researchers write, "to the rescue come volunteers from all walks of life that boost the capacity of bandwidth-limited professional astronomers many-fold and help tackle the ever-increasing volume of publicly available astronomical data." Universe Today describes how they limited the dataset to only stars with a magnitude brighter than 15, then used a Python tool to generate a massive dataset of millions of light curves...The outcome of all the work resulted in the identification of 10,001 eclipsing binary systems. 7,936 of them are new to science, while the other 2,065 were previously known, but the study provided updated, more accurate, parameters for their periods, as TESS' dataset provided better insight. There were also some particularly interesting systems that could hold new discoveries, including several that had variable eclipse timings, and plenty that might have a third star, and some that show a significant dynamic between the star being orbited and the one doing the orbiting. All of those systems await further research, but there's another, unspoken factor at play in this data — exoplanets. TESS was originally designed as an exoplanet hunter, and this kind of large scale AI/human collaboration of lightcurve analysis is exactly the kind of work that could potentially produce even more accurate exoplanet catalogues, as evidenced by some of the work already done in this paper. That seems to be the next step for this dataset, with Dr. Kostov telling an interviewer "I can't wait to search them for exoplanets!" Given the data has already been collected, and the team has already been assembled, it's very likely he'll get his chance soon.

Read more of this story at Slashdot.

Google DeepMind's Spinoff Company 'Very Close' to Human Trials for Its AI-Designed Drugs
Google DeepMind's chief business officer says Alphabet's drug-discovery company Isomorphic Labs "is preparing to launch human trials of AI-designed drugs," according to a report in Fortune, "pairing cutting-edge AI with pharma veterans to design medicines faster, cheaper, and more accurately.""There are people sitting in our office in King's Cross, London, working, and collaborating with AI to design drugs for cancer," said Colin Murdoch [DeepMind's chief business officer and president of Isomorphic Labs]. "That's happening right now." After years in development, Murdoch says human clinical trials for Isomorphic's AI-assisted drugs are finally in sight. "The next big milestone is actually going out to clinical trials, starting to put these things into human beings," he said. "We're staffing up now. We're getting very close." The company, which was spun out of DeepMind in 2021, was born from one of DeepMind's most celebrated breakthroughs, AlphaFold, an AI system capable of predicting protein structures with a high level of accuracy. Interactions of AlphaFold progressed from being able to accurately predict individual protein structures to modeling how proteins interact with other molecules like DNA and drugs. These leaps made it far more useful for drug discovery, helping researchers design medicines faster and more precisely, turning the tool into a launchpad for a much larger ambition... In 2024, the same year it released AlphaFold 3, Isomorphic signed major research collaborations with pharma companies Novartis and Eli Lilly. A year later, in April 2025, Isomorphic Labs raised $600 million in its first-ever external funding round, led by Thrive Capital. The deals are part of Isomorphic's plan to build a "world-class drug design engine..." Today, pharma companies often spend millions attempting to bring a single drug to market, sometimes with just a 10% chance of success once trials begin. Murdoch believes Isomorphic's tech could radically improve those odds. "We're trying to do all these things: speed them up, reduce the cost, but also really improve the chance that we can be successful," he says. He wants to harness AlphaFold's technology to get to a point where researchers have 100% conviction that the drugs they are developing are going to work in human trials. "One day we hope to be able to say — well, here's a disease, and then click a button and out pops the design for a drug to address that disease," Murdoch said. "All powered by these amazing AI tools."

Read more of this story at Slashdot.

Chinese Film Foundation Plans to Use AI to 'Revitalize' 100 Classic Kung Fu Films
"The China Film Foundation, a nonprofit fund under the Chinese government, plans to use AI to revitalize 100 kung fu classics including Police Story, Once Upon a Time in China and Fist of Fury, featuring Jackie Chan, Jet Li and Bruce Lee, respectively," reports the Los Angeles Times. "The foundation said it will partner with businesses including Shanghai Canxing Culture & Media Co., which will license 100 Hong Kong films to AI companies to reintroduce those movies to younger audiences globally."The foundation said there are opportunities to use AI to tell those stories through animation, for example. There are plans to release an animated version of director John Woo's 1986 film A Better Tomorrow that uses AI to "reinterpret" Woo's "signature visual language," according to an English transcript of the announcement.... The project raised eyebrows among U.S. artists, many of whom are deeply wary of the use of AI in creative pursuits. The Directors Guild of America said AI is a creative tool that should only be used to enhance the creative storytelling process and "it should never be used retroactively to distort or destroy a filmmaker's artistic work... The DGA strongly opposes the use of AI or any other technology to mutilate a film or to alter a director's vision," the DGA said in a statement. "The Guild has a longstanding history of opposing such alterations on issues like colorization or sanitization of films to eliminate so-called 'objectionable content', or other changes that fundamentally alter a film's original style, meaning, and substance." The project highlights widely divergent views on AI's potential to reshape entertainment as the two countries compete for dominance in the highly competitive AI space.... During the project's announcement, supporters touted the opportunity AI will bring to China to further its cultural message globally and generate new work for creatives. At the same time, they touted AI's disruption of the filmmaking process, saying the A Better Tomorrow remake was completed with just 30 people, significantly fewer than a typical animated project. China is a "more brutal society in that sense," said Eric Harwit, professor of Asian studies at the University of Hawaii at Manoa. "If somebody loses their job because artificial intelligence is taking over, well, that's just the cost of China's moving forward.... You don't have those freestanding labor organizations, so they don't have that kind of clout to protest against the Chinese using artificial intelligence in a way that might reduce their job opportunities or lead to layoffs in the sector..." The kung fu revitalization efforts will extend into other areas, including the creation of a martial arts video game. The article also includes an interesting statistic. "Many people in China embrace AI, with 83% feeling confident that AI systems are designed to act in the best interest of society, much higher than the U.S. where it's 37%, according to a survey from the United Nations Development Program."

Read more of this story at Slashdot.

Recent College Graduates Face Higher Unemployment Than Other Workers - for the First Time in Decades
"A growing group of young, college-educated Americans are struggling to find work," reports the Minnesota Star Tribune, "as the unemployment rate for recent graduates outpaces overall unemployment for the first time in decades."While the national unemployment rate has hovered around 4% for months, the rate for 20-something degree holders is nearly 6%, data from the Federal Reserve Bank of New York shows. [And for young workers (ages 22 to 27) without a degree it's 6.9%.] The amount of time young workers report being unemployed is also on the rise. Economists attribute some of the shift to normal post-pandemic cooling of labor market, which is making it harder for job-seekers of all ages to land a gig. But there's also widespread economic uncertainty causing employers to pull back on hiring and signs AI could replace entry-level positions.... Business schools nationwide were among the first to see the labor market shift in early 2023 as tech industry cuts bled into other sectors, said Maggie Tomas, Business Career Center executive director at Carlson. Tariffs and stock market volatility have only added to the uncertainty, she said. In 2022, when workers had their pick of jobs, 98% of full-time Carlson MBA graduates had a job offer in a field related to their degree within three months of graduation, according to the school. That number, which Tomas said is usually 90% or higher, dropped to 89% in 2023 and 83% in 2024. Part of the challenge, she said, is recent graduates are now competing with more experienced workers who are re-entering the market amid layoffs and hiring freezes... After doing a lot of hiring in 2021 and 2022, Securian Financial in St. Paul is prioritizing internal hires, said Human Resources Director Leah Henrikson. Many entry-level roles have gone to current employees looking for a change, she said. "We are still looking externally, it's just the folks that we are looking for externally tend ... to fulfill a specific skill gap we may have at that moment in time," Henrikson said.

Read more of this story at Slashdot.

Simulation of Crashed Boeing 787 Put Focus on a Technical Flaw
Investigators of a deadly Boeing 787 crash "are studying possible dual engine failure as a scenario that prevented the Boeing Co. 787 jet from staying airborne," reports Bloomberg:Pilots from the airline reenacted the doomed aircraft's parameters in a flight simulator, including with the landing gear deployed and the wing flaps retracted, and found those settings alone didn't cause a crash, according to people familiar with the investigation. [Also, analysis of the wreckage "suggests the wing flaps and slats, which help an aircraft increase lift during takeoff, were extended correctly."] The result, alongside the previous discovery that an emergency-power turbine deployed seconds before impact, has reinforced the focus on a technical failure as one possible cause, said the people, who asked not to be identified discussing nonpublic deliberations... [The turbine deploys "in the case of electrical failure," the article points out, and "was activated before the plane crashed, according to previous findings. That fan helps provide the aircraft with vital power, though it's far too small to generate any lift."] Pilots who reviewed the footage have pointed to the fact that the landing gear was already partially tilted forward, suggesting the cockpit crew had initiated the retraction sequence of the wheels. At the same time, the landing-gear doors had not opened, which pilots say might mean that the aircraft experienced a loss of power or a hydraulic failure — again pointing to possible issues with the engines that provide the aircraft's electricity.

Read more of this story at Slashdot.

Drones Used by California Cities to Patrol for Illegal Fireworks and Issue Fines
"California residents who lit illegal fireworks over the July 4 holiday may be in for a nasty surprise in the mail thanks to covert fire department operations," reports SFGate. "A number of California cities, including Sacramento, have begun using drones to locate people shooting off illegal fireworks."From Wednesday to Saturday night, the Sacramento Fire Department's special fireworks task force patrolled the streets with unmarked cars and drones, focusing on neighborhoods where they've had prior complaints. Task force officers and the drones took photos of the illegal activity, and within 30 days the property owner where the fireworks were used could receive a fine in the mail... This year, Sacramento upped the fine to $1,000 for the first firework, $2,500 for the second and $5,000 per firework after that. If you lit a firework on city property, such as a park or a school, the fine goes up to $10,000 each. There's no limit to how many fines you can be issued... This year, a number of cities across the state announced they would be using drones to find scofflaws, among them Indio, Riverside, Hemet, Brea and towns in Tulare County... Fox40 reported on Saturday that around 60 citations were being prepared in Sacramento, with more likely on the way as fire officials review surveillance footage. Last year for illegal fireworks, one Sacramento-area resident received a $100,000 fine.

Read more of this story at Slashdot.

Is China Quickly Eroding America's Lead in the Global AI Race?
China "is pouring money into building an AI supply chain with as little reliance on the U.S. as possible," reports the Wall Street Journal. And now Chinese AI companies "are loosening the U.S.'s global stranglehold on AI," reports the Wall Street Journal, "challenging American superiority and setting the stage for a global arms race in the technology."In Europe, the Middle East, Africa and Asia, users ranging from multinational banks to public universities are turning to large language models from Chinese companies such as startup DeepSeek and e-commerce giant Alibaba as alternatives to American offerings such as ChatGPT... Saudi Aramco, the world's largest oil company, recently installed DeepSeek in its main data center. Even major American cloud service providers such as Amazon Web Services, Microsoft and Google offer DeepSeek to customers, despite the White House banning use of the company's app on some government devices over data-security concerns. OpenAI's ChatGPT remains the world's predominant AI consumer chatbot, with 910 million global downloads compared with DeepSeek's 125 million, figures from researcher Sensor Tower show. American AI is widely seen as the industry's gold standard, thanks to advantages in computing semiconductors, cutting-edge research and access to financial capital. But as in many other industries, Chinese companies have started to snatch customers by offering performance that is nearly as good at vastly lower prices. A study of global competitiveness in critical technologies released in early June by researchers at Harvard University found China has advantages in two key building blocks of AI, data and human capital, that are helping it keep pace... Leading Chinese AI companies — which include Tencent and Baidu — further benefit from releasing their AI models open-source, meaning users are free to tweak them for their own purposes. That encourages developers and companies globally to adopt them. Analysts say it could also pressure U.S. rivals such as OpenAI and Anthropic to justify keeping their models private and the premiums they charge for their service... On Latenode, a Cyprus-based platform that helps global businesses build custom AI tools for tasks including creating social-media and marketing content, as many as one in five users globally now opt for DeepSeek's model, according to co-founder Oleg Zankov. "DeepSeek is overall the same quality but 17 times cheaper," Zankov said, which makes it particularly appealing for clients in places such as Chile and Brazil, where money and computing power aren't as plentiful... The less dominant American AI companies are, the less power the U.S. will have to set global standards for how the technology should be used, industry analysts say. That opens the door for Beijing to use Chinese models as a Trojan horse for disseminating information that reflects its preferred view of the world, some warn.... The U.S. also risks losing insight into China's ambitions and AI innovations, according to Ritwik Gupta, AI policy fellow at the University of California, Berkeley. "If they are dependent on the global ecosystem, then we can govern it," said Gupta. "If not, China is going to do what it is going to do, and we won't have visibility."The article also warns of other potential issues:"Further down the line, a breakdown in U.S.-China cooperation on safety and security could cripple the world's capacity to fight future military and societal threats from unrestrained AI.""The fracturing of global AI is already costing Western makers of computer chips and other hardware billions in lost sales... Adoption of Chinese models globally could also mean lost market share and earnings for AI-related U.S. firms such as Google and Meta."

Read more of this story at Slashdot.

The FSF Faces Active 'Ongoing and Increasing' DDoS Attacks
The Free Software Foundation's services face "ongoing (and increasing) distributed denial of service (DDoS) attacks," senior systems administrator Ian Kelling wrote Wednesday. But "Even though we are under active attack, gnu.org, ftp.gnu.org, and savannah.gnu.org are up with normal response times at the moment, and have been for the majority of this week, largely thanks to hard work from the Savannah hackers Bob, Corwin, and Luke who've helped us, your sysadmins." "We've shielded these sites for almost a full year of intense attacks now, and we'll keep on fighting these attacks for as long as they continue."Our infrastructure has been under attack since August 2024. Large Language Model (LLM) web crawlers have been a significant source of the attacks, and as for the rest, we don't expect to ever know what kind of entity is targeting our sites or why. - In the fall Bulletin, we wrote about the August attack on gnu.org. That attack continues, but we have mitigated it. Judging from the pattern and scope, the goal was likely to take the site down and it was not an LLM crawler. We do not know who or what is behind the attack, but since then, we have had more attacks with even higher severity. - To begin with, GNU Savannah, the FSF's collaborative software development system, was hit by a massive botnet controlling about five million IPs starting in January. As of this writing, the attack is still ongoing, but the botnet's current iteration is mitigated. The goal is likely to build an LLM training dataset. We do not know who or what is behind this. - Furthermore, gnu.org and ftp.gnu.org were targets in a new DDoS attack starting on May 27, 2025. Its goal seems to be to take the site down. It is currently mitigated. It has had several iterations, and each has caused some hours of downtime while we figured out how to defend ourselves against it. Here again, the goal was likely to take our sites down and we do not know who or what is behind this. - In addition, directory.fsf.org, the server behind the Free Software Directory, has been under attack since June 18. This likely is an LLM scraper designed to specifically target Media Wiki sites with a botnet. This attack is very active and now partially mitigated... Even though we are under active attack, gnu.org, ftp.gnu.org, and savannah.gnu.org are up with normal response times at the moment, and have been for the majority of this week, largely thanks to hard work from the Savannah hackers Bob, Corwin, and Luke who've helped us, your sysadmins. We've shielded these sites for almost a full year of intense attacks now, and we'll keep on fighting these attacks for as long as they continue. The full-time FSF tech staff is just two systems administrators, "and we currently lack the funds to hire more tech staff any time soon," Kelling points out. Kelling titled his post "our small team vs millions of bots," suggesting that supporters purchase FSF memberships "to improve our staffing situation... Can you join us in our crucial work to guard user freedom and defy dystopia?" Kelling also points out they're also facing "run-of-the-mill standard crawlers, SEO crawlers, crawlers pretending to be normal users, crawlers pretending to be other crawlers, uptime systems, vulnerability scanners, carrier-grade network address translation, VPNs, and normal browsers hitting our sites..." "Some of the abuse is not unique to us, and it seems that the health of the web has some serious problems right now."

Read more of this story at Slashdot.

Interstellar Navigation Demonstrated for the First Time With NASA's 'New Horizons'
Three space probes are leaving our solar system — yet are still functioning. After the two Voyager space probes, New Horizons "was launched in 2006, initially to study Pluto," remembers New Scientist. But "it has since travelled way beyond this point, ploughing on through the Kuiper belt, a vast, wide band of rocks and dust billions of miles from the sun. It is now speeding at tens of thousands of kilometres per hour..." And it's just performed the first ever example of interstellar navigation...As it hurtles out of our solar system, NASA's New Horizons spacecraft is so far from Earth that the stars in the Milky Way appear in markedly different positions compared with our own view... due to the parallax effect. This was demonstrated in 2020 when the probe beamed back pictures of two nearby stars, Proxima Centauri and Wolf 359, to Earth. Now, Tod Lauer at the US National Optical-Infrared Astronomy Research Laboratory in Arizona and his colleagues have used this effect to work out the position of New Horizons... Almost all spacecraft calculate their bearings to within tens of metres using NASA's Deep Space Network, a collection of radio transmitters on Earth that send regular signals out to space. In comparison, the parallax method was far less accurate, locating New Horizons within a sphere with a radius of 60 million kilometres, about half the distance between Earth and the sun. "We're not going to put the Deep Space Network out of business — this is only a demo proof of concept," says Lauer. However, with a better camera and equipment they could improve the accuracy by up to 100 times, he says. Using this technique for interstellar navigation could offer advantages over the DSN because it could give more accurate location readings as a spacecraft gets further away from Earth, as well as being able to operate autonomously without needing to wait for a radio signal to come from our solar system, says Massimiliano Vasile at the University of Strathclyde, UK. "If you travel to an actual star, we are talking about light years," says Vasile. "What happens is that your signal from the Deep Space Network has to travel all the way there and then all the way back, and it's travelling at the speed of light, so it takes years." Just like a ship's captain sailing by the stars, "We have a good enough three-dimensional map of the galaxy around us that you can find out where you are," Lauer says. So even when limiting your navigation to what's on-board the spacecraft, "It's a remarkable accuracy, with your own camera!"

Read more of this story at Slashdot.

Police Department Apologizes for Sharing AI-Doctored Evidence Photo on Social Media
A Maine police department has now acknowledged "it inadvertently shared an AI-altered photo of drug evidence on social media," reports Boston.com:The image from the Westbrook Police Department showed a collection of drug paraphernalia purportedly seized during a recent drug bust on Brackett Street, including a scale and white powder in plastic bags. According to Westbrook police, an officer involved in the arrests snapped the evidence photo and used a photo editing app to insert the department's patch. "The patch was added, and the photograph with the patch was sent to one of our Facebook administrators, who posted it," the department explained in a post. "Unbeknownst to anyone, when the app added the patch, it altered the packaging and some of the other attributes on the photograph. None of us caught it or realized it." It wasn't long before the edited image's gibberish text and hazy edges drew criticism from social media users. According to the Portland Press Herald, Westbrook police initially denied AI had been used to generate the photo before eventually confirming its use of the AI chatbot ChatGPT. The department issued a public apology Tuesday, sharing a side-by-side comparison of the original and edited images. "It was never our intent to alter the image of the evidence," the department's post read. "We never realized that using a photoshop app to add our logo would alter a photograph so substantially."

Read more of this story at Slashdot.

These Tiny Lasers Are Completely Edible
"Scientists have created the first lasers made entirely from edible materials," reports Science magazine "which could someday help monitor and track the properties of foods and medications with sensors that can be harmlessly swallowed."[The researchers' report] shows that tiny droplets of everyday cooking oils can act like echo chambers of light, otherwise known as lasers. By providing the right amount of energy to an atom, the atom's electrons will excite to a higher energy level and then relax, releasing a photon of light in the process. Trap a cloud of atoms in a house of mirrors and blast them with the right amount of energy, and the light emitted by one excited atom will stimulate one of its neighbors, amplifying the atoms' collective glow... [The researchers] shot purple light at droplets of olive oil, whose surfaces can keep photons of light bouncing around, trapping them in the process. This reflected light excited the electrons in the oil's chlorophyll molecules, causing them to emit photons that triggered the glow of other chlorophyll molecules — transforming the droplet into a laser. The energy of the chlorophyll's radiation depends on the oil droplets' size, density, and other properties. The study's authors suggest this sensitivity can be exploited to track different properties of food or pharmaceutical products. When researchers added oil droplets to foods and then measured changes in the laser light the droplets emitted, they could reliably infer the foods' sugar concentration, acidity, exposure to high temperatures, and growth of microorganisms. They also used the lasers to encode information, with droplets of different diameters functioning like the lines of a barcode. By mixing in sunflower oil droplets of seven specific sizes — all less than 100 microns wide — the researchers encoded a date directly into peach compote: 26 April, 2017, the first international Stop Food Waste Day. Thanks to long-time Slashdot reader sciencehabit for sharing the news.

Read more of this story at Slashdot.

Diffusion + Coding = DiffuCode. How Apple Released a Weirdly Interesting Coding Language Model
"Apple quietly dropped a new AI model on Hugging Face with an interesting twist," writes 9to5Mac. "Instead of writing code like traditional LLMs generate text (left to right, top to bottom), it can also write out of order, and improve multiple chunks at once." "The result is faster code generation, at a performance that rivals top open-source coding models."Traditionally, most LLMs have been autoregressive. This means that when you ask them something, they process your entire question, predict the first token of the answer, reprocess the entire question with the first token, predict the second token, and so on. This makes them generate text like most of us read: left to right, top to bottom... An alternative to autoregressive models is diffusion models, which have been more often used by image models like Stable Diffusion. In a nutshell, the model starts with a fuzzy, noisy image, and it iteratively removes the noise while keeping the user request in mind, steering it towards something that looks more and more like what the user requested... Lately, some large language models have looked to the diffusion architecture to generate text, and the results have been pretty promising... This behavior is especially useful for programming, where global structure matters more than linear token prediction... [Apple] released an open-source model called DiffuCode-7B-cpGRPO, that builds on top of a paper called DiffuCoder: Understanding and Improving Masked Diffusion Models for Code Generation, released just last month... [W]ith an extra training step called coupled-GRPO, it learned to generate higher-quality code with fewer passes. The result? Code that's faster to generate, globally coherent, and competitive with some of the best open-source programming models out there. Even more interestingly, Apple's model is built on top of Qwen2.5-7B, an open-source foundation model from Alibaba. Alibaba first fine-tuned that model for better code generation (as Qwen2.5-Coder-7B), then Apple took it and made its own adjustments. They turned it into a new model with a diffusion-based decoder, as described in the DiffuCoder paper, and then adjusted it again to better follow instructions. Once that was done, they trained yet another version of it using more than 20,000 carefully picked coding examples. "Although DiffuCoder did better than many diffusion-based coding models (and that was before the 4.4% bump from DiffuCoder-7B-cpGRPO), it still doesn't quite reach the level of GPT-4 or Gemini Diffusion..." the article points out. But "the bigger point is this: little by little, Apple has been laying the groundwork for its generative AI efforts with some pretty interesting and novel ideas."

Read more of this story at Slashdot.

'Vibe Coder' Who Doesn't Know How to Code Keeps Winning Hackathons in San Francisco
An anonymous reader shared this report from the San Francisco Standard:About an hour into my meeting with the undisputed hackathon king of San Francisco, Rene Turcios asked if I wanted to smoke a joint with him. I politely declined, but his offer hardly surprised me. Turcios has built a reputation as a cannabis-loving former professional Yu-Gi-Oh! player who resells Labubus out of his Tenderloin apartment when he's not busy attending nearly every hackathon happening in the city. Since 2023, Turcios, 29, has attended more than 200 events, where he's won cash, software credits, and clout. "I'm always hustling," he said. The craziest part: he doesn't even know how to code. "Rene is the original vibe coder," said RJ Moscardon, a friend and fellow hacker who watched Turcios win second place at his first-ever hackathon at the AGI House mansion in Hillsborough. "All the engineers with prestigious degrees scoffed at him at first. But now they're all doing exactly the same thing...." Turcios was vibe coding long before the technique had a name — and was looked down upon by longtime hackers for using AI. But as Tiger Woods once said, "Winning takes care of everything...." Instead of vigorously coding until the deadline, he finished his projects hours early by getting AI to do the technical work for him. "I didn't write a single line of code," Turcios said of his first hackathon where he prompted ChatGPT using plain English to generate a program that can convert any song into a lo-fi version. When the organizers announced Turcios had won second place, he screamed in celebration.... "I realized that I could compete with people who have degrees and fancy jobs...." Turcios is now known for being able to build anything quickly. Businesses reach out to him to contract out projects that would take software engineering teams weeks — and he delivers in hours. He's even started running workshops to teach non-technical groups and experienced software engineers how to get the most out of AI for coding. "He grew up in Missouri to parents who worked in an international circus, taming bears and lions..."

Read more of this story at Slashdot.

Tesla Launches Solar-Powered 'Oasis' Supercharger Station: 30-Acre Solar Farm, 39 MWh of Off-Grid Batteries
"Tesla has launched its new Oasis Supercharger," reports Electrek, "the long-promised EV charging station of the future, with a solar farm and off-grid batteries."Early in the deployment of the Supercharger network, Tesla promised to add solar arrays and batteries to the Supercharger stations, and CEO Elon Musk even said that most stations would be able to operate off-grid... Last year, Tesla announced a new project called 'Oasis', which consists of a new model Supercharger station with a solar farm and battery storage enabling off-grid operations in Lost Hills, California. Tesla has now unveiled the project and turned on most of the Supercharger stalls. The project consists of 168 chargers, with half of them currently operational, making it one of the largest Supercharger stations in the world. However, that's not even the most notable aspect of it. The station is equipped with 11 MW of ground-mounted solar panels and canopies, spanning 30 acres of land, and 10 Tesla Megapacks with a total energy storage capacity of 39 MWh. It can be operated off-grid, which is the case right now, according to Tesla. With off-grid operations, Tesla was about to bring 84 stalls online just in time for the Fourth of July travel weekend. The rest of the stalls and a lounge are going to open later this year. The article makes that point that "This is what charging stations should be like: fully powered by renewable energy."

Read more of this story at Slashdot.

How Do You Teach Computer Science in the Age of AI?
"A computer science degree used to be a golden ticket to the promised land of jobs," a college senior tells the New York Times. But "That's no longer the case." The article notes that in the last three years there's been a 65% drop from companies seeking workers with two years of experience or less (according to an analysis by technology research/education organization CompTIA), with tech companies "relying more on AI for some aspects of coding, eliminating some entry-level work." So what do college professors teach when AI "is coming fastest and most forcefully to computer science"?Computer science programs at universities across the country are now scrambling to understand the implications of the technological transformation, grappling with what to keep teaching in the AI era. Ideas range from less emphasis on mastering programming languages to focusing on hybrid courses designed to inject computing into every profession, as educators ponder what the tech jobs of the future will look like in an AI economy... Some educators now believe the discipline could broaden to become more like a liberal arts degree, with a greater emphasis on critical thinking and communication skills. The National Science Foundation is funding a program, Level Up AI, to bring together university and community college educators and researchers to move toward a shared vision of the essentials of AI education. The 18-month project, run by the Computing Research Association, a research and education nonprofit, in partnership with New Mexico State University, is organising conferences and roundtables and producing white papers to share resources and best practices. The NSF-backed initiative was created because of "a sense of urgency that we need a lot more computing students — and more people — who know about AI in the workforce," said Mary Lou Maher, a computer scientist and a director of the Computing Research Association. The future of computer science education, Maher said, is likely to focus less on coding and more on computational thinking and AI literacy. Computational thinking involves breaking down problems into smaller tasks, developing step-by-step solutions and using data to reach evidence-based conclusions. AI literacy is an understanding — at varying depths for students at different levels — of how AI works, how to use it responsibly and how it is affecting society. Nurturing informed skepticism, she said, should be a goal. The article raises other possibilities. Experts also suggest the possibility of "a burst of technology democratization as chatbot-style tools are used by people in fields from medicine to marketing to create their own programs, tailored for their industry, fed by industry-specific data sets." Stanford CS professor Alex Aiken even argues that "The growth in software engineering jobs may decline, but the total number of people involved in programming will increase." Last year, Carnegie Mellon actually endorsed using AI for its introductory CS courses. The dean of the school's undergraduate programs believes that coursework "should include instruction in the traditional basics of computing and AI principles, followed by plenty of hands-on experience designing software using the new tools."

Read more of this story at Slashdot.

Yes, I wrote a very expensive bug. In my defense I was only seven years old at the time
Years later, deep into a great tech career, your fellow reader remains inspired by the forgiveness received after the error
Who, Me? Monday morning brings many readers a return to the world of adults, which The Register marks by bringing you a new edition of Who, Me? It's the reader-contributed column in which you share stories of making mistakes for which you are somehow forgiven.…

Airbus okays use of ‘Taxibot’ to tow planes to the runway
Airlines get the chance to cool their jets rather than burn fuel on the ground
Airbus last week revealed it has certified a “Taxibot” to transport its single-aisle planes from stand to runway.…

VMware’s rivals ramp up their efforts to create alternative stacks
Red Hat and Open Nebula deliver big updates, as Edera tools for Xen with Rust
As VMware pushes its vision for private clouds built around its core virtualization technology, rival vendors are ramping their efforts to create an alternative stack.…

Atlassian migrated 4 million Postgres databases to shrink AWS bill
PLUS: Lexmark’s Chinese owners sell to Xerox; India, Australia, target underwater drones; JPMorgan drops custom TLDs; and more!
Asia In Brief Australian collaborationware company Atlassian has migrated the four million Postgres databases that back its customers’ Jira implementations to Amazon Web Services’ Aurora.…

Stalkerware firm gets scooped by SQL-slinging security snoop
Also, Swiss ransomware posture looks like its cheese, the CVE Program wants YOU, more sus checks and more
Infosec In Brief A security researcher looking at samples of stalkerware discovered an SQL vulnerability that allowed him to steal a database of 62,000 user accounts. …

Ingram Micro confirms ransomware behind multi-day outage
SafePay crew claims responsibility for intrusion at one of world's largest tech distributors
Ingram Micro, one of the world's largest distributors, has confirmed it is trying to restore systems following a ransomware attack.…

UK puts out tender for space robot to de-orbit satellites
Got to be a 'clean space superpower' – right, Brits?
Britain's space agency is looking for a supplier to build a robotic spacecraft to capture and de-orbit two defunct UK-licensed satellites from low Earth orbit.…

Massive spike in use of .es domains for phishing abuse
¡Cuidado! Time to double-check before entering your Microsoft creds
Cybersecurity experts are reporting a 19x increase in malicious campaigns being launched from .es domains, making it the third most common, behind only .com and .ru.…

iFixit gives new Fairphone 6 top marks for repairability: 10/10
It's not cheap or high end, but it should last you for years to come
The sixth generation of the Fairphone repairable mobile was launched at the end of June. Now spudger-flingers iFixit have got their hands on it, and liked the result.…

Financial 'stretch' for UK to join Europe's Starlink rival, says minister
Possibility of joining IRIS² remote as Britain grapples with fiscal squeeze
A UK minister has told Parliament that joining Europe's answer to Starlink — Elon Musk's satellite-based mobile internet service — would be a "stretch" given the nation's current financial challenges.…

Ousted US copyright chief argues Trump did not have power to remove her
Shira Perlmutter lost her job after her office published report on generative AI and fair use limits
The former head of the US Copyright Office has pushed back against arguments from President Donald Trump's team that her dismissal was lawful.…

Microsoft finally bids farewell to PowerShell 2.0
Venerable command line tool to depart Windows
Users still clinging on to PowerShell 2.0 just received notice to quit as the command-line tool is officially leaving Windows.…

Amazon built a massive AI supercluster for Anthropic called Project Rainier – here's what we know so far
It's almost like AWS is building its own Stargate
deep dive Amazon Web Services (AWS) is in the process of building out a massive supercomputing cluster containing "hundreds of thousands" of accelerators that promises to give its model building buddies at Anthropic a leg up in the AI arms race.…

Mars was once a desert with intermittent oases, Curiosity data suggests
New modeling of carbon cycle shows unsteady but habitable history before liquid water disappeared
New models from recent Martian probe data suggest the fourth planet from the Sun once hosted a fluctuating desert environment with intermittent oases of water.…

We're number 1! Windows 11 finally overtakes Windows 10
Three months to go until support ends, and Microsoft's flagship operating system squeaks past its predecessor
Windows 11 has finally overtaken the market share of its predecessor, with just three months remaining until Microsoft discontinues support for Windows 10.…

14-hour+ global blackout at Ingram Micro halts customer orders
Fears mount while distie remains silent and phone lines down
Exclusive Widespread outages across Ingram Micro's websites and client service portals are being attributed to "technical difficulties." …

Former and current Microsofties react to the latest round of layoffs
JFC, again?
Microsoft's latest round of layoffs has triggered an outpouring of emotion from inside and outside the company, with at least one former staffer asking: "How many billions must be burned in the AI furnace before this stops?"…

Wikidata: Attempting to bridge FOSS ideals and direct democracy
There's more to the Wikimedia organization than the famous encyclopedia
Comment Multiple other projects also use the vast linked data store that underpins ubiquitous internet encyclopaedia Wikipedia, and some of them are helping the fight for democracy.…

'Trained monkey' from tech support saved know-it-all manager's mistake with a single keypress
Righteous mockery entranced execs in ways slideware could not
On Call Friday dawns with the promise of precious freedom, yet the world of tech support is seldom free from trouble. The Register always finds a way to celebrate anyway, by bringing you a fresh instalment of On Call, the reader-contributed column that tells your tales of breaking away from bad bosses and ungrateful users.…

EU businesses want a pause on AI regulations so they can cope with unregulated Big Tech players
Mistral fears continental companies may not get time to escape 'distant, behemoth corporations'
French AI business Mistral on Thursday announced an initiative called “AI for Citizens,” which it says offers a way to work with governments and public institutions to transform public services using AI.…

Won’t somebody think of the European children? Meta and Google put up their hands to help on the same day
Zuck backs a ‘digital majority age’ and Google open sources tech that might enforce it
Google and Meta have independently taken actions to support a safer internet for kids – and given blockchain boosters a moment to celebrate.…

Kawasaki and Foxconn build robot nursing assistant to tackle hospital scutwork
If you come out of a coma in 2026, this is the machine you might see staring down at you
Taiwanese tech manufacturer Foxconn and Japan’s Kawasaki Heavy Industries have revealed a jointly developed robotic nursing assistant they hope to start selling in 2026.…

Microsoft leaves Pakistan but promises customers won't notice the change
Job cuts aren’t big, symbolism of quitting the world’s fifth-most-populous nation might be
Exclusive Microsoft has decided to close its presence in Pakistan.…

Cold without the compressor: Boffins build better ice box
A thermoelectric material called CHESS is pretty cool
Scientists at Johns Hopkins and Samsung have developed a nano-engineered thermoelectric material that is twice as efficient at material-level cooling as existing alternatives, paving the way for broader adoption of solid-state refrigeration technology.…

US budget bill passes without controversial block on states regulating AI
And with some increases to rural broadband funds, fresh spectrum auctions, and wholesale dismantling of clean energy subsidies
Lawmakers have passed President Trump's budget reconciliation but removed one of its most tech-contentious measures - the ban of state-level AI regulation – meaning the law will have little effect on the tech industry.…

AI models just don't understand what they're talking about
Researchers find models' success at tests hides illusion of understanding
Researchers from MIT, Harvard, and the University of Chicago have proposed the term "potemkin understanding" to describe a newly identified failure mode in large language models that ace conceptual benchmarks but lack the true grasp needed to apply those concepts in practice.…

US Air Force holds hypersonic resupply site review amid seabird concerns
Red-tailed tropicbirds stymie Johnston Atoll maneuvers
The US Air Force is putting plans to use rocket landings for resupply missions on hold over environmental concerns about the effect they would have on local seabirds.…

Musk's antics and distractions are backfiring as Tesla's car business stalls
Robotaxis, humanoid robots, and fights with Trump can't hide declining EV sales
Comment Tesla reported its vehicle delivery and production numbers for Q2 2025 this week, and while the figures weren't quite as low in absolute terms as Q1, they still mark a worrying downward trend as CEO Elon Musk continues to spread his attention across a huge variety of topics unrelated to making and selling electric cars.…

Microsoft Windows Firewall complains about Microsoft code
Just ignore the warnings. Nothing to see here. Move along
A mysterious piece of "under development" code is playing havoc with the Windows Firewall after the latest preview update for Windows 11 24H2.…

Young Consulting finds even more folks affected in breach mess – now over 1 million
The insurance SaaS slinger may trade under a different name, but past continues to haunt it
Young Consulting's cybersecurity woes continue after the number of affected individuals from last year's suspected ransomware raid passed the 1 million mark.…

Tariffs and trade turmoil driving up cost and build times for datacenters
Biz needs AI infra for training ever larger models, but something's gotta give
World War Fee Datacenter operators in Northern Europe say US tariffs and growing global geopolitical instability are inflating costs and causing delays to construction projects.…

Gone in 40 days: US drops ban on export of chip design tools to China
Vendors have reason to celebrate as geopolitics recalibrate
World War Fee The US has lifted the requirement to secure a license before exporting Electronic Design Automation (EDA) tools to China, say EDA vendors.…

Meta calls €200M EU fine over pay-or-consent ad model 'unlawful'
'Deserves fair compensation for the valuable and innovative services'? Which ones are those then?
Meta has come out swinging following the European Commission's decision that its pay-or-consent model falls foul of the Digital Markets Act (DMA).…

Ransomware crew Hunters International shuts down, hands out keys to victims
Don't let their kind words sway you – leaders are still up to no good
Ransomware gang Hunters International has shut up shop and offered decryption keys to all victims as a parting favor.…

Canonical adds extra shots to Ubuntu Java
Juices the tooling and support for developers and enterprise customers
Canonical has some extra toppings, flavorings, and offers coming for its bigger Java fans – because the suits swallow a lot of the stuff.…

UK charity bank branded a 'disaster' after platform migration goes wrong
Customers booted from system and technical integration missing from upgrade
A UK bank serving charities has come under fire from customers unable to log in or make transactions on its new online platform.…

Wayback gives X11 desktops a fighting chance in a Wayland world
Minimalist glue code offers surprising lifeline for stubborn display setups
A new project addresses one of the biggest differences between how X11 and Wayland work, and that could be a winning combination.…

Let's Encrypt rolls out free security certs for IP addresses
You probably don't need one, but it's nice to have the option
Let's Encrypt, a certificate authority (CA) known for its free TLS/SSL certificates, has begun issuing digital certificates for IP addresses.…

ChatGPT creates phisher’s paradise by recommending the wrong URLs for major companies
Crims have cottoned on to a new way to lead you astray
AI-powered chatbots often deliver incorrect information when asked to name the address for major companies’ websites, and threat intelligence business Netcraft thinks that creates an opportunity for criminals.…

'Quad' nations launch plan to stop China making critical minerals into Unobtanium
India, Japan, USA and Australia see risks and opportunities in rare earths
India, Japan, USA and Australia have launched a “Critical Minerals Initiative” they hope will harden supply chains.…

Alibaba Cloud reveals DB cluster manager it says can beat rival hyperscalers
‘Eigen+’ finds instances likely to cause out of memory errors and makes sure they can’t do damage
Alibaba Cloud has revealed a cluster manager it says allows it to run databases more efficiently than its hyperscale rivals.…

Cisco scores a perfect 10 - sadly for a critical flaw in its comms platform
The second max score this week for Netzilla - not a good look
If you're running the Engineering-Special (ES) builds of Cisco Unified Communications Manager or its Session Management Edition, you need to apply Cisco's urgent patch after someone at Switchzilla made a big mistake.…

CISA warns the Signal clone used by natsec staffers is being attacked, so patch now
Two flaws in TeleMessage are 'frequent attack vectors for malicious cyber actors'
The US security watchdog CISA has warned that malicious actors are actively exploiting two flaws in the Signal clone TeleMessage TM SGNL, and has directed federal agencies to patch the flaws or discontinue use of the app by July 22.…

Call center staffers explain to researchers how their AI assistants aren't very helpful
Lots of manual corrections and data entry still required
ai-pocalypse Recent research details how customer service reps at a Chinese utility's call center often struggled when trying to use an AI assistant, and were forced to make manual fixes.…

HPE finally closes Juniper deal, but offers no details on what happens next
A big shrug to early integration questions
HPE has completed its takeover of Juniper Networks, but the conjoined pair isn't yet ready to discuss details about how the networking business will fit into HPE's existing lineup alongside Aruba.…

MethaneSAT 'likely not recoverable' after losing contact with Earth
Methane monitoring satellite managed just over a year in orbit before its sudden demise
The Bezos-backed MethaneSAT satellite has been declared "likely not recoverable" after losing contact with controllers just over a week ago.…

23andMe's new owner says your DNA is safe this time
Nonprofit TTAM assures everything is BAU. Whether that makes customers feel better is another matter
The medical research nonprofit vying to buy 23andMe is informing existing customers that it plans to complete the deal on July 8.…

Huawei can't wriggle out of Iran sanctions trial, judge rules
Dismissal bid denied as 16-count indictment moves toward court in May 2026
Huawei will still have to face trial in the US next year over alleged breaches of sanctions against Iran after a judge declined its request to dismiss various charges.…

Microsoft kicks off new fiscal year with more layoffs
Reports of 9,000 staff cut
Microsoft's recent trend of wide-scale workforce reduction continues, with reports that Redmond is preparing to slash an additional 4 percent of its employees – or around 9,000 people.…

'Elevated' moisture reading ignored before Heathrow-closing conflagration, says NESO
Datacenters kept humming along, but there's plenty of blame to be passed around elsewhere
The cause of a power outage that cut the juice to London Heathrow airport in March has been identified - along with a chain of failures that allowed it to happen.…

How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]

The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.

Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]

The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.

A Simple Way to Install Talos Linux on Any Machine, with Any Provider
Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]

The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.

Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely

The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.

Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation.
Exciting news! The Tazama project is officially a Digital Public Good having met the criteria to be accepted to the Digital Public Goods Alliance ! Tazama is a groundbreaking open source software solution for real-time fraud prevention, and offers the first-ever open source platform dedicated to enhancing fraud management in digital payments. Historically, the financial [0]

The post Project Tazama, A Project Hosted by LF Charities With Support From the Gates Foundation, Receives Digital Public Good Designation. appeared first on Linux.com.

Xen 4.19 is released
Xen Project 4.19 has been officially out since July 31st, 2024, and it brings significant updates. With enhancements in performance, security, and versatility across various architectures like Arm, PPC, RISC-V, and x86, this release is an important milestone for the Xen community. Read more at XCP-ng Blog

The post Xen 4.19 is released appeared first on Linux.com.

Advancing Xen on RISC-V: key updates
At Vates, we are heavily invested in the advancement of Xen and the RISC-V architecture. RISC-V, a rapidly emerging open-source hardware architecture, is gaining traction due to its flexibility, scalability and openness, which align perfectly with our ethos of fostering open development ecosystems. Although the upstream version of Xen for RISC-V is not yet fully [0]

The post Advancing Xen on RISC-V: key updates appeared first on Linux.com.

Linux Foundation Announces OpenSearch Software Foundation to Foster Open Collaboration in Search and Analytics
AWS transfers OpenSearch to the Linux Foundation to support a vendor-neutral community for search, analytics, observability, and vector database software. Read more at linuxfoundation.org

The post Linux Foundation Announces OpenSearch Software Foundation to Foster Open Collaboration in Search and Analytics appeared first on Linux.com.

AI Produces Data-driven OpenFOAM Speedup (HPC Wire)
Researchers from TU Darmstadt, TU Dresden, Hewlett Packard Enterprise (HPE), and Intel have developed advanced applications that combine HPC simulations with AI techniques using the open-source computational fluid dynamics solver OpenFOAM and the HPE-led SmartSim AI/ML library. These applications show promise for improving the accuracy and capabilities of traditional scientific and engineering modelling with data-driven [0]

The post AI Produces Data-driven OpenFOAM Speedup (HPC Wire) appeared first on Linux.com.

Webinar: Harden Your Security Mindset: Break Down the Critical Security Risks for Web Apps
Join us for a Complimentary Live Webinar Sponsored by Linux Foundation Training 8 Certification Learn More and Register

The post Webinar: Harden Your Security Mindset: Break Down the Critical Security Risks for Web Apps appeared first on Linux.com.

Linux 6.16-rc5 Released With A Performance Fix, Bcachefs Fixes & New Device Support
Linus Torvalds just tagged Linux 6.16-rc5 as the newest test release of Linux 6.16...

Wayland 1.24 Released With Few Improvements
Minutes ago Simon Ser announced the official release of Wayland 1.24...

Many NGG Improvements Arrive For AMD9s Open-Source Linux OpenGL/Vulkan Drivers
Well known AMD Mesa developer Marek Olšák has been working on a number of improvements to benefit the Next-Gen Geometry "NGG" support within the RadeonSI and RADV graphics drivers for benefiting modern Radeon GPUs under Linux...

Fedora 43 Looks To Zstd-Compressed Initrd By Default For Space Savings & Faster Boots
A change proposal has been raised to compress the initrd by default using Zstd compression rather than XZ. This change would help provide some disk savings as well as speeding up the boot process on modern systems with Fedora Linux...

Linux 6.16 Performance Regression Tracked Down In New Futex Code
Sent out this morning as part of this week's "locking/urgent" pull request is a performance regression fix ahead of today's Linux 6.16-rc5 release. This latest performance regression in the Linux kernel is around the new Futex code merged this cycle with a big performance hit being observed in scheduler benchmarks...

Many GLAMOR OpenGL ES Improvements Backported To X.Org Server / XWayland 21.1
Nearly one year after the merge request was first opened, back-ported now to the X.Org Server 21.1 stable branch are a number of GLAMOR 2D acceleration fixes around OpenGL ES 2.x as well as supporting OpenGL ES 3.x shaders for this generic 2D acceleration over OpenGL for the xorg-server and XWayland...

Intel Bartlett Lake-S EDAC Driver Support Coming For Linux 6.17
Intel software engineers continue ironing out their Linux support for Bartlett Lake...

Big Improvements For Qualcomm GPU Driver With Linux 6.17 - Especially For Snapdragon X
Sent out today by longtime Freedreno/MSM open-source Qualcomm GPU driver developer Robin Clark are the main set of MSM kernel graphics/display driver updates targeting the upcoming Linux 6.17 merge window. There are several exciting feature additions coming to this next kernel version for those relying on Qualcomm graphics capabilities...

DXVK 2.7 Released With Many Improvements & Better Support On Newer Intel GPUs
DXVK 2.7 released today as a major feature update for this translation layer for enabling Direct3D 8 / 9 / 10 / 11 based games and applications to run atop the Vulkan API. DXVK is a critical piece of Valve's Steam Play (Proton) software stack for enabling Windows games on Linux...

SUSE9s Agama Installer Switches From X.Org To Wayland For Installation GUI
SUSE developers working on their new operating system installer "Agama" have been making steady progress and on Friday debuted Agama 16. With Agama 16 they have moved from X.Org to Wayland for powering their installer UI along with a number of other changes...

Fedora 43 GNU & LLVM 21 Toolchain Updates Planned
It shouldn't be particularly surprising as Fedora Linux has always been known for shipping with a leading-edge compiler toolchain, but the formalities have now been submitted for Fedora 43 to ship with the latest GNU and LLVM toolchain components...

Intel Wildcat Lake HID Support & Dell + ASUS Additions Ahead Of Linux 6.16-rc5
Ahead of the Linux 6.16-rc5 kernel expected to be released tomorrow, a round of x86 platform driver updates were merged this week with several fixes as well as some new device additions...

GNOME9s Glycin Continues Being Built Out, Papers Ready For Document Viewing
It was another exciting week in the GNOME space to kick off July...

KDE Working On New Virtual Keyboard, Many Plasma Improvements Kick Off July
KDE developer Nate Graham is out with his usual weekly summary to highlight all of the interesting Plasma desktop developments for the past week...

Coreboot 25.06 Released With Xeon Emerald Rapids Support, Better Panther Lake
Building off Coreboot 25.03 is now the availability of Coreboot 25.06 for further enhancing this open-source system firmware project that continues to see new hardware improvements -- predominantly for Google Chromebook devices but also more Intel platforms and other hardware -- as well as new capabilities to further rival proprietary BIOS solutions...

Vulkan 1.4.321 Released With A Handful Of New Extensions
The Vulkan working group is celebrating the US Independence Day with graphics API independence in today publishing Vulkan 1.4.321 that comes with several new extensions...

Bcachefs Fixes Merged For Linux 6.16-rc5
A handful of Bcachefs file-system fixes were submitted yesterday to Linus Torvalds for merging ahead of the Linux 6.16-rc5 release due out on Sunday. Today they were merged...

Rust-Written Redox OS Continues Making Progress With Wayland
The Rust-written Redox OS open-source operating system project just published their June 2025 status report to outline recent progress on this innovative platform...

Acer Nitro Gaming Controller"NGR200" To Be Supported By Linux 6.16
Sent in today for the ongoing Linux 6.16 kernel cycle as part of the input subsystem fixes is enabling support for the Acer Nitro Gaming Controller (NGR200)...

Intel Enables Wildcat Lake Display & Experimental Flip Queue For Linux 6.17 Graphics
Intel today sent out a batch of new kernel graphics/display driver code for queuing ahead of the Linux 6.17 merge window opening in a few weeks. There is now DRM Panic support for the Intel i915 and Xe kernel drivers, Wildcat Lake "WCL" display enablement, and experimental flip queue support for Lunar Lake and Panther Lake hardware, among other changes coming for the Intel drivers in Linux 6.17...

Debian Looks To Attract More Contributors, Eyes Budget For AI/LLM Usage By Debian Developers
The Debian project is hoping to address challenges of mentoring newcomers to contribute to the Debian Linux distribution as well as making it more known that open-source contributors can do more than just work on Debian packaging but that help is needed for documentation writing, web page creation, sorting out licensing issues, finding project sponsors, and more. Debian is also looking to attain OpenAI sponsorship or open-source funds from other large language model (LLM) / AI providers to help Debian developers for those wanting to use AI to help accelerate their Debian workflows...

Redis 8.2 Preparing More Performance Optimizations, SVS-VAMANA
The first release candidate of Redis 8.2 is now available for testing of this popular in-memory key-value database. Redis 8.2 is building off the recent Redis 8.0 release that ended up going tri-licensing with the AGPLv3 stemming from developer/community feedback...

Bash 5.3 Released With Many Improvements
Three years since the Bash 5.2 release and one year since the first alpha release, GNU Bash 5.3 was released overnight as the newest step forward for this popular shell used on Linux and other operating systems...

Perl 5.42 Released With New Operators, Unicode 16 Support, Security Fixes
Perl 5.42 is out today as the newest feature release for this popular programming language that comes one year after the prior Perl 5.40 release...

Fedora Linux Looks To End Support For UEFI On MBR-Paritioned Disks
A proposal raised for Fedora 43 would end support for allowing UEFI installations on MBR-partitioned disks for x86_64 systems in the Anaconda installer. This would enforce a requirement on using GPT partition tables for all UEFI-based Fedora installations in the x86 world...

Intel Lunar Lake Showing Some Performance Improvements With Linux 6.16
For those on an Intel Core Ultra Series 2 "Lunar Lake" system, the upcoming Linux 6.16 kernel is looking to be in better shape for those newest Intel SoCs. In testing carried out using a Lenovo ThinkPad X1 Carbon Gen 13 Aura edition laptop, there are performance gains in some areas with the Linux 6.16 development kernel.

X.Org Server Lands Big Improvement For Using Zink With GLAMOR
A nice improvement was merged today to the X.Org Server for benefiting the GLAMOR 2D acceleration code when using the Zink OpenGL-on-Vulkan driver...

Linux 6.17 To Finish Clearing Out Old Code For OpenMoko Devices
Linux 6.17 is expected to clear out some final remnants of the OpenMoko Neo 1973 and Neo FreeRunner smartphone support from that Linux smartphone effort from two decades ago...

Lenovo Legion Go S HID Driver Posted For Linux
The Linux support for the Lenovo Legion Go S gaming handheld continues to be improved upon thanks to the option of having Steam OS on this alternative to the Steam Deck...

Improved TTM Memory Management Eviction Submitted Ahead Of Linux 6.17
Sent out today was the newest drm-misc-next pull request of changes built up over the past week for DRM-Next ahead of the Linux 6.17 kernel cycle. The drm-misc-next material is the usual random assortment of DRM display/graphics driver changes and core improvements, which this week includes some TTM eviction work...

Libreboot 25.06 Released With Support For Two More Outdated Systems
Libreboot 25.06 released this week as the newest version of this Coreboot downstream focused on shipping only with free and open-source components. But due to the strict open-source nature of Libreboot, it continues to primarily see support for long outdated platforms...

Firefox 120 To Firefox 141 Web Browser Benchmarks
For those curious about the direction of Mozilla Firefox web browser performance over the past year and a half, here are web browser benchmarks for every Firefox release from Firefox 120 in November 2023 through the newest Firefox 140 stable and Firefox 140 beta releases from a few days ago. Every major Firefox release was benchmarked on the same Ubuntu Linux system with AMD Ryzen 9 9950X for evaluating the performance and memory usage of this open-source web browser.

WinUAE 6.0.0 released
WinUAE has released version 6.0.0 of the Windows version of the UAE Amiga emulator, packing a truly terrifying number of changes, improvements, and fixes. Major update to custom chipset emulation. Internally almost everything in main chipset emulation has been rewritten. Fastest possible/JIT mode chipset timing/sync had major changes which can cause side-effects. Bugs are very possible, especially in very rarely used features. ↫ WinUAE website Going through the changelog is dizzying, ranging from an almost complete rewrite of the main chipset emulation for internal cycle accuracy, to running the emulation of the Denise/Lisa chips in a separate thread for better performance, to a ton of fixes and smaller updates.

MacOS icons keep getting worse every time Apple touches them
With macOS 26, Apple has announced a dramatically new look to their UI: Liquid Glass. Solid material icon elements give way to softer, shinier, glassier icons. The rounded rectangle became slightly more rounded, and Apple eliminated the ability for icon elements to extend beyond the icon rectangle (as seen in the current icons for GarageBand, Photo Booth, Dictionary, etc.). With this release being one of the most dramatic visual overhauls of macOSs design, I wanted to begin a collection chronicling the evolution of the system icons over the years. Ive been rolling these out on social media over the past week and will continue to add to and update this collection slowly over the summer. Enjoy! ↫ BasicAppleGuy Every single one of these icons is getting progressively worse with almost every design change. They go from beautifully crafted, easily readable and supremely distinguishable icons to generic, repetitive blobs of colour, void of any personality, artistry, or usability considerations. Also, Apples new icon design language makes the icons look fuzzy, like theyre not being rendered properly. Its very unnerving. The one exception is probably the generic folder icon, which looks fine in all of its incarnations. Then theres the classic Platinum, pixelated version from Mac OS 9 and earlier, which, together with icons from Windows and BeOS from the same time period, are a whole different style that I dont think most people would accept anymore these days, but that I absolutely adore. Mostly Im just sad that the craft of making exquisite icons for operating systems is dying, replaced by what almost look like AI! generated blobs of indeterminate meaning, that rely more on preexisting knowledge of the operating system and its applications in question than on being recognisable and decipherable by anyone. I truly hope Windows and the various open source desktops dont follow in Apples footsteps here.

Tone-deaf Xbox executive urges laid off employees to talk to Copilot for emotional support
A couple of days ago, Microsoft announced 9,000 layoffs across its global workforce, impacting its engineering, Xbox, sales, and management teams. This move also affected various initiatives, resulting in the cancellation of at least three Xbox games, job cuts across various studios, and even the shuttering of one game studio, The Initiative. In the wake of this dark day in the the tech industry, a tone-deaf Microsoft executive urged laid off workers to turn to AI tools for emotional support. ↫ Usama Jawad at Neowin These corporations are raking in massive amounts of profit, theyre doing better than ever, the cup of money runneth over, and yet, they keep laying off thousands and thousands of people almost every few months. The incentives in modern-day capitalism clearly arent working out for the vast majority of people, and then to give that final kick when youre already down, some asshat manager tells you to talk to! sparkly autocomplete for emotional support. Fuck this guy.

NVIDIA is full of shit
Since the disastrous launch of the RTX 50 series, NVIDIA has been unable to escape negative headlines: scalper bots are snatching GPUs away from consumers before official sales even begin, power connectors continue to melt, with no fix in sight, marketing is becoming increasingly deceptive, GPUs are missing processing units when they leave the factory, and the drivers, for which NVIDIA has always been praised, are currently falling apart. And to top it all off, NVIDIA is becoming increasingly insistent that media push a certain narrative when reporting on their hardware. ↫ Sebin Nyshkim Out of all the issues listed here and there are many, and each is bad enough on their own its the frame generation and related pressure campaigns on reviewers that really get on my nerves the most. Technologies like DLSS (rendering at a lower internal resolution scaling that up) and frame generation (injecting fake AI! frames to jack up the frame rate) can be fine technologies when used at the consumers discretion to find a balance between improved perceived performance in exchange for blurry image quality and artefacting, but weve now reached a point where NVIDIA will only boast about performance figures with these technologies enabled, downsides be damned. If that wasnt misleading enough, the company is also pressuring reviewers who dont enable these technologies, and focus on real frames, real resolutions, and this, real performance. If you dont comply, youre not getting the next crop of GPUs in early access. Its the kind of shit Apple pulls all the time, and we need less of it, not more. Just dont buy NVIDIA. Theyre already a terrible choice if youre running anything other than Windows, but the companys recent behaviour and serious missteps have made the choice for AMD or Intel only more obvious.

Redox gets network booting, work on UNIX domain sockets continues
Redox continues to make progress, and as another month has passed us by, its time for another monthly update. This past month, the focus has been on UNIX domain sockets, which are needed for Redox goal of running Wayland. As we continue to move forward with our plans for Wayland, a key technology for Wayland support is the ability to send file descriptors over Unix Domain Sockets. File descriptor sending is also an important part of many other OS features, including Capability-based Security. Our Redox Summer of Code project to implement that ability has been progressing very well. Ibuki, a new member of the Redox team, has jumped right into the deep end, and implemented the sendmg and recvmsg functionality, and continues to move forward with work on UDS. ↫ Ribbon and Ron Williams You can read more about the UNIX domain sockets progress in a detailed post on the Redox website. Redox now also supports network booting through PXE, but for now, only UEFI is supported. Of course, all of this work is topped off with the usual slew of fixes in relibc, RedoxFS, various drivers, and more, as well updated ports across the board.

Is an Intel N100 a better value than a Raspberry Pi?
All of this to say: value is complicated. The Pi 5 is`much`more compact and slightly more power efficient (especially at idle) compared to the cheapest N1XX Intel systems. The Intel systems are better suited for a desktop use case. The Pi 5 can be run off PoE power, for easier one-cable networking + power. The Intel systems are more compatible with a wider range of software (not the least of which is`anything requiring Windows). ↫ Jeff Geerling Intels N100 and N150 are vastly underappreciated. The mini laptop I reviewed over a year ago is built around the N100, and I still use it every day for watching YouTube, writing OSNews posts, and so on. I never run into performance issues, battery life is excellent, and I dont have to deal with the annoyances of using ARM. The catch is that youre going to want to use Linux I use Fedora KDE because Windows performance on the N100 is dreadful. I dont think the jump from the N100 to the N150 is worthwhile enough to buy the new version of my mini laptop, so Ill stick with what I have. I do hope Intel continues the Nxxx line or processors, because it offers something no other x86 chip offers: more than reasonable performance at low power usage for an incredibly low price.

Ubuntu 25.10 to drop support for effectively all existing RISC-V hardware, focuses on future RISC-V hardware instead
A recent bug report filed against Ubuntu’s upgrading tool confirmed a major change with regards to the RISC-V requirements for the upcoming Ubuntu 25.10 release — most existing RISC-V devices will`not`be able to run Ubuntu 25.10. How come? ↫ Joey Sneddon at omgubuntu.co.uk RISC-V just isnt delivering. Thats the cold and harsh truth more and more people are having to deal with, such as Chimera Linux dropping RISC-V support because the ecosystem is simply lacking the kind of powerful and available hardware to sustain itself (Chimera got lucky, though, and gained access to a Milk-V Pioneer through Adélie Linux). The number of systems and boards that are both powerful and available is close enough to zero that it might as well be zero, and if neither users nor developers can buy RISC-V hardware, whats the point in supporting it? The issue for Ubuntu specifically is that version 25.10 of the distribution intends to target only the RVA23 baseline RISC-V profile, while currently Ubuntu supports RVA20 as the baseline. This higher baseline profile requires a number of extensions to the instruction set that no existing hardware yet supports, making 25.10 effectively a clean break for all existing RISC-V hardware. In other words, if youre running Ubuntu on RISC-V hardware today, you wont be able to upgrade to 25.10 or higher. RISC-V really needs vastly improved hardware availability, because right now its just not delivering on the years of promises.

The Amiga 3000 UNIX and Sun Microsystems: deal or no deal?
Amiga lore is full of exciting tales. Many of them are retold to demonstrate how the incompetence of Commodores management destroyed a platform that, by rights, was destined for success.`Coulda, shoulda,`and the Amiga`woulda`risen as rightful ruler of all other computer platforms, forever and ever. Amen. One of those stories is about how Sun Microsystems allegedly showed interest in the Amiga 3000 during the early 1990s. Its a classic Amiga anecdote, usually recounted without much reflection, and one`Ive certainly helped perpetuate. Alas, the more I think about it, the less it adds up. Fact or factoid? Lets speculate! ↫ Carl Svensson Great speculation with some solid reasoning and sourcing. Considering that had been some minor joint marketing between Sun and Commodore, my money is on the talks around that deal birthing rumours about more extensive Sun involvement in the Amiga 3000. At this point in time, however, decades after the fact and with several conflicting account, its unlikely well ever get a solid answer.

AI note takers are flooding Zoom calls as workers opt to skip meetings
Clifton Sellers attended a Zoom meeting last month where robots outnumbered humans. He counted six people on the call including himself, Sellers recounted in an interview. The 10 others attending were note-taking apps powered by artificial intelligence that had joined to record, transcribe and summarize the meeting. ↫ Lisa Bonos and Danielle Abril at The Bezos Post Management strongly encourages mandates that everyone use AI! to improve productivity, but then gets all uppity when people actually do. Welcome to finding out!.

Elementary OS makes meaningful accessibility improvements
With recent efforts to improve accessibility in GNOME and KDE, as well as a renewed focus on highlighting the many issues that still need fixing, the Linux desktop is making meaningful strides in becoming more accessible to those among us with disabilities. Obviously, the Linux desktop is bigger than just GNOME and KDE, so today we have elementary OS improving its accessibility features in a variety of ways. July is Disability Pride Month, an opportunity for us to consider how we’re serving our disabled community and work on breaking down barriers to access. Last year we had the pleasure of being introduced to Florian—a fully blind cybersecurity enthusiast—and thanks to his feedback we completely rewrote navigation in Onboarding to be more keyboard and screen reader friendly, as well as took another look at Installation and Initial Setup to vastly improve our entire first run experience for blind folks. Plus, we implemented the screen reader interface in the + window switcher. Thanks to this feedback, elementary OS 8 can be installed and set up completely blind, an important win for maintaining your independence as a person with vision disabilities. Since the release of OS 8 we’ve been working on things like improving contrast, support for Dark Mode screenshots and brand colors in AppCenter, turning on or snoozing Dark Mode without canceling your schedule, expanding the scope of the “Reduce Motion” setting, and adding more options to reduce distracting notification bubbles. Plus, thanks to feedback from Aaron who you may know from his blog series on Linux accessibility, Notifications and the Shortcut Overlay both got releases that add screen reader support. ↫ Danielle Foré at elementarys blog Im glad were finally putting to rest this idea that accessibility features should be afterthoughts, relevant to only a minute percentage of people. Not only is the disabled community way bigger than we might think, many of the features they require are simply also extremely nice and beneficial to users who might not actually require them. I know tons of people who, for instance, love reduce motion features simply because it makes their operating system feel faster, or people who just dont want to be bothered with notifications the instant they arrive. Accessibility goes far beyond what we traditionally think of as accessibility features, like screen readers or high contrast modes. Making software more accessible for those that require it, also makes software more accessible for those that merely desire it. Even though elementary OS probably isnt the type of distribution that appeals to the average OSNews reader, Im incredibly happy theyre taking accessibility seriously, and I intend to continue to highlight such improvements.

Servers and thin clients in every home is the future they stole from us
I’ve used thin clients at home for quite a while both for their intended use (remotely accessing a desktop of another system); and in the sense of “modern thin clients are x86 boxes that are wildly overpowered for what they run, so they make good mini servers.” Recently, I saw a bulk lot of Sun Ray thin clients pop up on Trade Me (NZ’s eBay-like auction site) and with very little idea of how many clients were actually included in this lot, I jumped on it. After a 9 hour round-trip drive (on some of the worst roads I’ve seen!), I returned home with the back of my car completely packed with Sun Rays. Time for some interesting shenanigans! ↫ catstret.ch I was unaware you could still set up a Sun Ray environment with latest versions of OpenIndiana, and that has me quite interested in buying a few Sun Rays off eBay and follow in the authors footsteps. It seems like its not too difficult, and while theres some manual nonsense you have to do to get everything to install correctly, its nothing crazy. To this day, I firmly believe that the concept of dumb thin clients connected to powerful servers is an alluring and interesting way of computing. Im not talking about connecting up to servers owned by massive technology corporations Im talking about a few powerful servers down in your own basement or attic or whatever, serving applications and desktops straight to basic thin clients all around your house. These thin clients can take the shape of anything, from something like a desktop setup in your office, down to a basic display in your kitchen for showing recipes, setting timers, and other basic stuff and everything in between. Sun Rays could hot desk using personal smart cards, but of course, in this day and age youd have your smartphone. The thin clients around your house would know it was you through your smartphone, and serve up the applications, desktop, tools, and so on that you use, but everything would be running on the servers in your house. Of course, my wife would have her own account on the server, as would our children, when they are old enough. None of this is impossible with todays tools and computing power, but it wouldnt be easy to set up. There are no integrated solutions out there to make this happen; youd have to scrap it together from disparate parts and tools, and I doubt such a house of cards would end up being reliable enough not to quickly become a massive annoyance and time sink. On top of that, we live in a rental apartment, so we dont even have a basement or attic to store loud servers in, nor are we allowed to drill holes and route Ethernet cabling for optimal performance. Anyway, theres no chance in hell any of the major technology companies would build such a complex ecosystem in a world where its much easier and more profitable to force people to subscribe to shitty services. In my ideal computing world, though a server in every home, with cheap thin clients in every room.

The new troll diet
We need a new framework for how to defend against trolls!. The feeding metaphor ran its course many years ago. It is done and will not be coming back. New online risks demand that we adapt and become proactive in protecting our spaces. We have to loudly and proudly set the terms of what is permissible. Those holding social or institutional power in communities should be willing to drop a few loud fuck offs to anyone trying to work their way in by weaponizing optics, concern trolling, or the well known tolerance paradox!. Conceding through silence, or self-censorship, only emboldens those who benefit from attacking a community. ↫ diegoebe Een volk dat voor tirannen zwicht, zal meer dan lijf en goed verliezen, dan dooft het licht.

Donkey Kong Country 2 and open bus
Apparently, Donkey Kong Country 2 has runs into a bug in the old SNES emulator ZSNES, where one of the barrels that youre supposed to be able to precisely control the spinning direction of ends up spinning forever. This bug is caused by ZSNES not emulating open bus behavior. I believe this was originally discovered by Anomie roughly two decades ago, who subsequently fixed the same bug in Snes9x. This original fix hardcoded the specific addresses to return the values that the game depends on rather than properly emulating open bus, but it fixed DKC2 and probably didn’t break anything else. The bug was never fixed in ZSNES, which is now a long abandoned project (last release in 2007). Purely out of curiosity, I wanted to dig into this a little more to figure out what exactly in the game code causes these barrels to spin forever in an emulator that doesn’t emulate open bus behavior. ↫ jsgroth Just in case youve always wanted to know.

Wayback: experimental layer to run X desktop environments on Wayland
With X.org being in maintenance mode, with the process of replacing it with Wayland accelerating pretty quickly now, a lot of projects using X.org are looking for ways to prepare for the future. Alpine Linux, a distribution focused on musl, BusyBox, and OpenRC, also wants to reduce its maintenance burden for X11 applications, and so Alpine Linux maintainer Ariadne Conill has come up with something interesting. Wayback is an experimental X compatibility layer which allows for running full X desktop environments using Wayland components. It is essentially a stub compositor which provides just enough Wayland capabilities to host a rootful Xwayland server. It is intended to eventually replace the classic X.org server in Alpine, thus reducing maintenance burden of X applications in Alpine, but a lot of work needs to be done first. ↫ Wayback GitHub page Its nowhere near done and most likely contains massive amounts of bugs and issues, but the seed has been planted. Wayback will make it possible to keep running X11-based desktop environments even in a full-Wayland environment. This may be necessary in case you need a specific feature not yet available in the Wayland version of your desktop environment, or if your desktop environment of choice simply isnt going to move to Wayland at all (due to lack of maintainers or whatever). Itll also be a boon for retrocomputing, especially as over the coming years and decades unmaintained X11 desktop environments become become ever harder to keep running on modern Linux distributions. While X.org as it exists today certainly isnt going anywhere any time soon, it will, eventually, stop working properly on Linux distributions who dont ship it by default anymore, and its awesome to already have the beginnings of a project to address this problem.

Microsoft to remove all but the latest versions of drivers from Windows Update
This blog post is intended to notify all Windows Hardware program partners that Microsoft has taken a strategic initiative to clean up legacy drivers published on Windows Update to reduce security and compatibility risks. The rationale behind this initiative is to ensure that we have the optimal set of drivers on Windows Update that cater to a variety of hardware devices across the windows ecosystem, while making sure that Microsoft Windows security posture is not compromised. This initiative involves periodic cleanup of drivers from Windows Update, thereby resulting in some drivers not being offered to any systems in the ecosystem. ↫ Microsofts Hardware Dev Center The general gist is that Microsoft is going to remove all drivers from Windows Update for which newer versions exist or, to put it in a different way, only the latest versions of a driver are going to remain available on Windows Update. Its effectively a clean-up of Windows Update, and the only way older versions of drivers will remain available on Windows Update is if the manufacturer in question can make a business justification! to keep them around. Some of this may sound surprising, since many people assume Windows Update only offers the latest versions of drivers annoyingly so, sometimes but this isnt the case. Corporations with fleets of devices can actually determine exactly which drivers get sent to their devices, including opting for older versions in case newer versions have regressions or otherwise cause issues. Sometimes you just dont have a choice. According to Adam Demasi, the creator and maintainer of the amazing Legacy Update service, Microsoft hasnt deleted a single driver or update from Windows Update since 2001 (save for problematic updates). This results in a truly massive collection of updates and drivers, and thats causing real problems for Microsoft. Windows Update has a pretty cool system of describing whether an update is necessary to be installed on the current system, or if it is already installed. It also builds a relationship graph between updates, to indicate when they have been replaced by a newer update that includes all changes from the previous update. That system is also its downfall, causing the Windows Update service to be incredibly slow in checking for updates, possibly never completing the check at all. This issue also applies to WSUS, which despite being based on the very robust SQL Server, struggles with the number of drivers Microsoft hosts on Windows Update. As of April, we know that Windows Update hosts 1,799,339 drivers, and this creates a 138 GB database that requires almost 16 days to synchronise down from the main servers. The WSUS server is brought to its knees, with frequent timeouts while it furiously tries to complete database queries. (The PC used is a Ryzen 5700G with 32 GB of 3600 MHz RAM and 500 GB of NVMe, running Windows Server 2025 and SQL Server 2022.) ↫ Adam Demasi From this, its easy to understand why Microsoft would want to perform some housekeeping, followed by a new set of rules around only keeping the latest versions of drivers around in Windows Update. Demasi also notes that these plans by Microsoft wont affect drivers for old devices, since they will still be served their newest! driver version, and it wont affect Legacy Update either.

I want a good parallel computer!
The GPU in your computer is about 10 to 100 times more powerful than the CPU, depending on workload. For real-time graphics rendering and machine learning, you are enjoying that power, and doing those workloads on a CPU is not viable. Why aren’t we exploiting that power for other workloads? What prevents a GPU from being a more general purpose computer? ↫ Raph Levien Fascinating thoughts on parallel computation, including some mentions of earlier projects like Intels Larabee or the Connection Machine with 64k processors the 80s, as well as a defense of the PlayStation 3s Cell architecture.

EU OS: A Bold Step Toward Digital Sovereignty for Europe
Image
A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
What Is EU OS?
EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.

Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
The Vision Behind EU OS
The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.

Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.

However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
Conclusion
EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.

Source: It's FOSS
European Union

Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight

Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight

Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.

In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.

On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.

Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.

The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.

Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.

You can download the latest kernel here.
Linus Torvalds kernel

AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
Image
AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.

This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.

Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.

Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.

Source: 9to5Linux
AerynOS

Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
Image
Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.

Here’s a quick overview of what’s new in Xojo 2025r1:
1. Linux ARM IDE Support
Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
2. Web Drag and Drop
One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
3. Direct App Store Publishing
Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
4. New Desktop and Mobile Features
This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
5. Performance and IDE Enhancements
Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
What Does This Mean for Developers?
Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
How to Get Started
Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.

Download Xojo 2025r1 today at xojo.com.
Final Thoughts
With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
Xojo ARM

New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux

Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.

Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.

Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest.

Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.

Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.

Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.

By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
Windows

Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities

The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally.

As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.

In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions.

After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.

The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.

At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.

The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
Security

Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges

The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.

A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.

This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem.

The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.

On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.

In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
kernel

Linux Celebrates 32 Years with the Release of 6.6-rc2 Version

Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.

The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.

Here is what Linus Torvalds had to say in today's announcement:
Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction

Want to interact with ChatGPT from your Linux desktop without using a web browser?

Bavarder, a new app, allows you to do just that.

Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.

With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.

During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.

At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.

As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!

Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
ChatGPT AI

LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite

Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.

Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.

LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.

You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.

All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.

In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.

Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.

The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
LibreOffice

Fedora Continues 32-Bit Support
In a move that should come as a relief to some portions of the Linux community, Fedora will continue supporting 32-bit architecture.

Linux Kernel 6.17 Drops bcachefs
After a clash over some late fixes and disagreements between bcachefs's lead developer and Linus Torvalds, bachefs is out.

ONLYOFFICE v9 Embraces AI
Like nearly all office suites on the market (except LibreOffice), ONLYOFFICE has decided to go the AI route.

Two Local Privilege Escalation Flaws Discovered in Linux
Qualys researchers have discovered two local privilege escalation vulnerabilities that allow hackers to gain root privileges on major Linux distributions.

New TUXEDO InfinityBook Pro Powered by AMD Ryzen AI 300
The TUXEDO InfinityBook Pro 14 Gen10 offers serious power that is ready for your business, development, or entertainment needs.

Danish Ministry of Digital Affairs Transitions to Linux
Another major organization has decided to kick Microsoft Windows and Office to the curb in favor of Linux.

Linux Mint 20 Reaches EOL
With Linux Mint 20 at its end of life, the time has arrived to upgrade to Linux Mint 22.

TuxCare Announces Support for AlmaLinux 9.2
Thanks to TuxCare, AlmaLinux 9.2 (and soon version 9.6) now enjoys years of ongoing patching and compliance.

Go-Based Botnet Attacking IoT Devices
Using an SSH credential brute-force attack, the Go-based PumaBot is exploiting IoT devices everywhere.

Plasma 6.5 Promises Better Memory Optimization
With the stable Plasma 6.4 on the horizon, KDE has a few new tricks up its sleeve for Plasma 6.5.

KaOS 2025.05 Officially Qt5 Free
If you're a fan of independent Linux distributions, the team behind KaOS is proud to announce the latest iteration that includes kernel 6.14 and KDE's Plasma 6.3.5.

Linux Kernel 6.15 Now Available
The latest Linux kernel is now available with several new features/improvements and the usual bug fixes.

Microsoft Makes Surprising WSL Announcement
In a move that might surprise some users, Microsoft has made Windows Subsystem for Linux open source.

Red Hat Releases RHEL 10 Early
Red Hat quietly rolled out the official release of RHEL 10.0 a bit early.

openSUSE Joins End of 10
openSUSE has decided to not only join the End of 10 movement but it also will no longer support the Deepin Desktop Environment.

New Version of Flatpak Released
Flatpak 1.16.1 is now available as the latest, stable version with various improvements.

IBM Announces Powerhouse Linux Server
IBM has unleashed a seriously powerful Linux server with the LinuxONE Emperor 5.

Plasma Ends LTS Releases
The KDE Plasma development team is doing away with the LTS releases for a good reason.

Arch Linux Available for Windows Subsystem for Linux
If you've ever wanted to use a rolling release distribution with WSL, now's your chance.

System76 Releases COSMIC Alpha 7
With scores of bug fixes and a really cool workspaces feature, COSMIC is looking to soon migrate from alpha to beta.