All the News that Matters

• Debian 11 Apache2 Critical DoS Advisory DLA-4620-1 CVE-2026-49975
  It was discovered that incorrect cookie header accounting in the HTTP/2 implementation of the Apache HTTP server may result in denial of service (excessive resources consumption). For Debian 11 bullseye, this problem has been fixed in version 2.4.67-1~deb11u2.

• Mageia 9 golang-x-crypto Important Protocol Integrity Threat CVE-2023-48795
  Security update

• Mageia 9 xdg-dbus-proxy Serious Eavesdropping Vulnerability MGASA-2026-0178
  Security update

• Fedora 43 Keylime Critical Security Bypass CVE-2026-6420
  Updating for Keylime release v7.14.2: This includes the fix for CVE-2026-6420. Update keylime-selinux policy to the latest version 44.1.0

• Fedora 43 libssh2 Important Heap Overflow CVE-2026-7598
  This update addresses CVE-2026-7598, a potential heap buffer overflow, which could be triggered remotely by supplying very long username and/or password strings.

• Fedora 43 perl-CryptX Critical Buffer Overflow CVE-2026-41565 Advisory
  Fixes CVE-2026-41565

• Fedora 44 NASM Important CVE-2026-6067 Arbitrary Code Execution Fix
  Fix for CVE-2026-6067 .

• Fedora 44 Keylime Major Security Update Addresses CVE-2026-6420 Issue
  Updating for Keylime release v7.14.2: This includes the fix for CVE-2026-6420. Update keylime-selinux policy to the latest version 44.1.0

• Fedora 44 perl-CryptX High Stack Overflow Resolution 2026-2158c96917
  Fixes CVE-2026-41565

• Debian Tomcat9 Critical Auth Bypass DoS Advisory DLA-4619-1
  Multiple security vulnerabilities have been discovered in Tomcat 9, a Java based web server, servlet and JSP engine which may result in a denial of service, authentication bypass or the disclosure of sensitive information. In order to address certain vulnerabilities and restore the compatibility with Tomcat 9, an upgrade of the Tomcat native library, libtcnative-1, was required

• openSUSE Tumbleweed perl-HTTP-Daemon Moderate CVE-2026-8450 Access Issue
  An update that solves one vulnerability can now be installed.

• openSUSE Tumbleweed openssh Moderate Update for CVEs 2026-3497 2026-35388
  An update that solves 2 vulnerabilities can now be installed.

• openSUSE Tumbleweed perl-IO-Compress Moderate Patch CVE-2026-48962
  An update that solves one vulnerability can now be installed.

• openSUSE Tumbleweed libopenbabel Moderate 8 Issues Fixed 2026-10936-1
  An update that solves 8 vulnerabilities can now be installed.

• openSUSE Tumbleweed libmozjs Moderate Security Update CVE-2025-70103
  An update that solves one vulnerability can now be installed.

• openSUSE Tumbleweed libmariadbd-devel Moderate Threat Update 2026-10934-1
  An update that solves 3 vulnerabilities can now be installed.

• openSUSE Tumbleweed ffmpeg Moderate DoS Threat Advisory 2026-10931-1
  An update that solves one vulnerability can now be installed.

• openSUSE Tumbleweed hauler Moderate Buffer Overflow Issues 2026-10933-1
  An update that solves 2 vulnerabilities can now be installed.

• openSUSE Tumbleweed grafana Moderate Update Security Issues 2026-10932-1
  An update that solves 10 vulnerabilities can now be installed.

• Debian's Request Tracker 5 SQL Injection Vulnerability Leads to DSA-6324-1
  Multiple vulnerabilities have been discovered in Request Tracker, an extensible trouble-ticket tracking system, which could result privilege escalation, information disclosure, SQL injections, LDAP authentication bypass, cross-site scripting or spreadsheet (CSV/formula) injection. For the oldstable distribution (bookworm), these problems have been fixed

• Debian Apache2 Important Denial of Service DoS CVE-2026-49975 DSA-6323-1
  It was discovered that incorrect cookie header accounting in the HTTP/2 implementation of the Apache HTTP server may result in denial of service (excessive resources consumption). For the oldstable distribution (bookworm), this problem has been fixed in version 2.4.67-1~deb12u3.

• Mageia 9 Kernel-Linus Critical Buffers Vulnerabilities 2026-0177
  Security update

• Mageia 9 perl-DBIx-Class-EncodedColumn Notable Password Salting Issues
  Security update

• Fedora 43 Thunderbird Update Importance and Installation 2026-8463c31b61
  Update to latest upstream version.

• Overview of Fedora 44 Firefox Update for Version 151.0.3 Release Details
  New upstream release (151.0.3)

• Fedora 44 Rust 1.96.0 Important Update CVE-2026-5222 CVE-2026-5223
  Update to Rust 1.96.0: New Range* types Assert matching patterns Changes to WebAssembly targets Stabilized APIs

• Fedora 44 webkitgtk Critical Security Fix Advisory 2026-a63aad0224
  Add support for half-width fonts. Improve content filter compilation by avoiding file copies. Improve handling of out of disk space conditions when the NetworkProcess tried to write data in caches. Fix painting scrollbars when their width changes.

• Fedora 44 libinput Important Local Escalation Fix Advisory 2026-5e2446b30f
  libinput 1.31.3, fixes a udev property inject via uinput devices that can lead to local privilege escalation

• SUSE Important Ignition Infinite Loop Fix Advisory 2026-2280-1
  An update that solves one vulnerability can now be installed.

• SUSE Unbound Critical Buffer Overflow Security Flaw 2026-2281-1
  An update that solves 11 vulnerabilities can now be installed.

• openSUSE MariaDB Critical Issues Addressed Advisory 2026-2282-1
  An update that solves nine vulnerabilities can now be installed.

• SUSE jq Moderate Security Update CVE-2026-33948 Advisory 2026-2283-1
  An update that solves one vulnerability can now be installed.

• SUSE Linux Enterprise Server 15 SP6 Critical MariaDB Update 2026-2284-1
  An update that solves 10 vulnerabilities can now be installed.

• openSUSE Security Advisory 2026-2285-1 yq Important HTML Parsing Issues
  An update that solves six vulnerabilities can now be installed.

• SUSE 15 SP7 libjxl Important Heap Overflow Vuln 2026-2286-1
  An update that solves one vulnerability can now be installed.

• SUSE Evince Significant Command Injection Threat Notice 2026-2288-1
  An update that solves one vulnerability can now be installed.

• openSUSE Unbound Important Remote Exec Issues Vuln 2026-2281-1
  An update that solves 11 vulnerabilities can now be installed.

• Important openSUSE MariaDB update 2026-2282-1 released with fixes
  An update that solves nine vulnerabilities can now be installed.

• openSUSE Ignition Important HTTP2 Transport Issue Fix CVE-2026-33814
  An update that solves one vulnerability can now be installed.

• openSUSE 15.6 mariadb Critical Exploit Fix SUSE-SU-2026-2284-1
  An update that solves 10 vulnerabilities can now be installed.

• SUSE 2026-2289-1 Major Memory Depletion Amplification Risks Identified
  An update that solves three vulnerabilities can now be installed.

• openSUSE Leap 15.5 yq Critical Parsing and Escalation Issues Advisory
  An update that solves six vulnerabilities can now be installed.

• openSUSE kanidm Critical Privilege Escalation Vulnerability 2026-0192-1
  An update that contains security fixes can now be installed.

• Mageia 9 Cockpit Important Remote Command Exec Vuln 2026-0175
  Security update

• Mageia 9 Kernel Important Security Update CVE-2026-43491 to 46333
  Security update

• Mageia 9 xmlrpc-c Serious Security Flaws CVE-2022-25236 and CVE-2026-0173
  Security update

• Mageia 9 Drakxtools Significant Bug Resolution Update 2026-0033
  Security update

• openSUSE Backports SLE-15-SP7 Tor Moderate Security Issues Fix 2026-0188-1
  An update that contains security fixes can now be installed.

• openSUSE 2026-0191-1 Perl-HTTP-Tiny Moderate Header Smuggling CVE-2026-7010
  An update that fixes one vulnerability is now available.

• openSUSE Cacti Moderate User Enumeration Flaw CVE-2024-27355
  An update that fixes one vulnerability is now available.

• Hyprland 0.55.3 Rolls Out with a Long List of Stability Fixes
  Hyprland 0.55.3 backports fixes from main to the 0.55 branch, covering config reloads, rendering, monitors, XWayland, and more.

• "Flatten The Pick" Linux Patches Progress For Better cgroup Scheduling While Linux Gaming
  A month ago I wrote about Linux scheduler work to help boost gaming performance on old "potato" hardware with Intel engineer Peter Zijlstra noting that Linux cgroup scheduling has continued to be "a pain in the arse." This work continues advancing with a third iteration of these "flatten the pick" patches being posted...

• XLibre Marks Its First Anniversary With Stable 25.1 Xserver Release
  XLibre celebrates its first anniversary with the stable 25.1 Xserver series, new features, distro adoption, and security fixes.

• GNU Gets Back Into Nutrition Software After 14 Year Hiatus
  For those looking for open-source food nutrition software, GNU's GNUtrition has seen its first new release in 14 years...

• Armbian Imager 2.0 Flashing Tool for Armbian Linux Officially Released
  Armbian Imager 2.0, an open-source utility for flashing the Armbian Linux operating system on single-board computers, is now available for download with a completely new design and rewritten flashing engine.

• GNOME File Previewer Finally Switches TO GTK4, Adds Dark Mode
  GNOME Sushi as the file previewer component for the GNOME Files (Nautilus) file manager has now been adapted to make use of GTK4 as well as delivering other enhancements for a nicer file previewing experience on GNOME...

• FreeBSD 15.1 Delayed To Mid-June Due To Critical x86 Bug Fixes
  FreeBSD 15.1 was supposed to be out at the start of June but a second release candidate pushed it back by a week and now a third needed release candidate has pushed out the stable release by an additional week...

• Ubuntu 26.10 Promises a Simplified Installation and New Onboarding Experience
  Canonical has laid out the plans for Ubuntu 26.10 “Stonking Stingray”, due out later this year on October 15th, 2026, so we know exactly what to expect from the upcoming Ubuntu release.

• Ladybird Browser Closes Public Pull Requests Ahead of First Alpha
  The still-in-development Ladybird browser ends public pull requests as it prepares for its first alpha, citing weakened trust around AI-generated code.

• Shelly 2.3.2.2 GUI Package Manager for Arch Linux Now Improves CachyOS Support
  Shelly developer Zoey Bauer released Shelly 2.3.2.2 today as a new stable update to this open-source graphical package manager for Arch Linux-based distributions, adding new features and improvements.

• OpenCV 5.0 Released With Rewritten DNN Engine, Built-In LLM & VLM Support
  OpenCV 5.0 released today as a major update to this widely-used, open-source computer vision (CV) library...

• Sparrow Hawk runs Linux on Renesas R-Car V4H SoC
  The Sparrow Hawk from Retronix Technology is a single-board computer built around the Renesas R-Car V4H processor. Originally developed for automotive applications, the R-Car V4H combines Arm Cortex-A76 and Cortex-R52 CPU cores with integrated graphics and AI acceleration. Retronix cites robotics, smart manufacturing, computer vision, and industrial edge systems as example use cases. The board […]

• Ardour 9.7 Open-Source DAW Improves MIDI Editing, Adds New Vertical Summary
  Ardour 9.7 has been released today as the latest stable version of this powerful, free, cross-platform, and open-source digital audio workstation (DAW) software for GNU/Linux, macOS, and Windows systems.

• LibreOffice 26.2.4 Released with More Than 40 Bug Fixes
  The Document Foundation releases LibreOffice 26.2.4 with stability fixes for Writer, Calc, Impress, Draw, Base, and desktop integration.

• ARM Linux Server Performance Up More Than 7x Geo Mean In 8 Years, As Much As 15x With NVIDIA Vera CPU
  NVIDIA's Vera CPU is delivering the fastest ARM performance I have ever seen. For putting it into perspective how far the ARM server CPU hardware has come in just the last decade and for some "fun" benchmarks as part of Phoronix marking 22 years of Linux hardware reviews and benchmarking, here are some benchmarks showing the Ampere eMAG from September 2018 to the performance now with NVIDIA Vera. Not even factoring in the many software optimizations across the stack over the period, from simply the hardware side the ARM server CPU performance has advanced by more than 7x in eight years and in some workloads nearly 15x faster.

• Ubuntu 26.10 to Ship with GNOME 51 and Big Desktop Plans
  Ubuntu 26.10 “Stonking Stingray” roadmap confirms GNOME 51, App Center updates, RISC-V work, and early foundations for Ubuntu 28.04 LTS.

• All-flash and hybrid NAS systems feature multi-gigabit networking and Fygo OS
  Radxa has announced two upcoming NAS systems, the DragonStation and DragonBay. Powered by a Qualcomm Snapdragon platform and shipping with Fygo OS pre-installed, the systems combine high-speed storage, multi-gigabit networking, media management, and private cloud functionality in aluminum enclosures. While Radxa has not disclosed the specific Snapdragon processor used, both products are designed to provide […]

• Ubuntu 26.10 To Begin Laying Foundation For Context-Aware Desktop, Other New Features
  Jean Baptiste Lallement of the Canonical Desktop Team today posted a roadmap of many development items they are hoping to tackle for Ubuntu 26.10 due out in October. Some of these desktop plans are more ambitious and will take multiple release cycles to fully realize, but it goes to show their continued investment into the Ubuntu desktop...

• CUDA-Oxide 0.2 Brings Early Improvements To Pure Rust CUDA Kernels
  Last month CUDA-Oxide was introduced as an experimental Rust-to-CUDA compiler. From pure Rust programming language code, one can write CUDA GPU kernels in a "safe(ish)" manner with the CUDA-Oxide compiler emitting NVIDIA PTX output directly. Out today is the second update to CUDA-Oxide...

• Contributing to Fedora Infrastructure and the Power of Flock!
  Flock to Fedora is more than a conference – it’s where the Fedora community comes alive. As part of the In the Commit History campaign, we sat down with confirmed Flock 2026 speakers to hear their stories: what brought them to Fedora, what Flock means to them personally, and what they’re hoping for in Prague […]

• New Fortune 500 Rankings: Texas Overtakes California, But Amazon is #1, Beating Walmart
  "Texas has dethroned California as the state with the most Fortune 500 companies," reports the Los Angeles Times:The Fortune 500 list ranks the largest U.S. companies by revenue. This year, 57 of the top companies are headquartered in Texas, compared with California's 56. It's a reversal from two years ago when the Golden State had the pole position... California's corporate haters say they try to avoid the state's high costs, income taxes and strict regulations, but the western state is still a top money maker. "California dominates on nearly every other measure: its Fortune 500 companies are the most profitable ($647 billion), most valuable ($20 trillion), and employ more people than any other state (2.8 million workers)," Fortune said in a news release. Indeed, despite the naysayers, Californian companies have been leading the world in developing artificial intelligence technology as well as the latest in space and defense tech. The state is home to nearly 400 "unicorns," or billion-dollar startups — more than any other state, according to CB Insights. It also gobbled up nearly two-thirds of U.S. venture capital last year, with San Francisco Bay Area startups such as OpenAI leading the way, according to the business information platform Crunchbase. Texas and California have been in a tug-of-war for the crown. In 2024, after a decade, California bagged the top spot with 57 companies on the list, while Texas and New York tied in second with 52 companies each... The fourth spot was tied between Illinois and Ohio, with 29 companies each. Amazon was the top company on the list, ending Walmart's 13-year reign at the top of the annual Fortune 500 companies list. Amazon's 2025 revenue was $716.9 billion, compared with Walmart's $713.2 billion. Seattle-headquartered Amazon joined Exxon Mobil, General Motors, and Walmart as the only four companies to have ever held the top position since Fortune began publishing the data in 1955.
  
  
  Read more of this story at Slashdot.
  

• The Gamer-Rights Group Fighting to Make the Industry Stop Killing Games (Servers)
  "Can a company take away something you've already paid for?" asks the BBC. "In the world of online video games, some already do."Publishers can decide to switch off a game's servers, often leaving it effectively unplayable. Stop Killing Games, a growing consumer rights campaign started by American YouTuber Ross Scott in 2024, is challenging that practice. In January, the group submitted a petition featuring nearly 1.3 million signatures to the European Commission, triggering a public hearing in the European Parliament in April. What began as an online campaign is now awaiting a decision from one of the EU's most powerful institutions... Scott's campaign began following an announcement from the major studio Ubisoft, saying it would shut down the online-only racing game The Crew in 2024... Ubisoft has already defended its position in court. Responding to a proposed class-action lawsuit brought by two The Crew players in California, the studio argued that customers had purchased a licence to use the game, not unlimited ownership rights, and that players had been warned online services would not be available forever. The lawsuit was dismissed without prejudice in June 2025, after the plaintiffs voluntarily withdrew the case. The wider games industry has also pushed back against the campaign. Video Games Europe, which represents many of the industry's largest publishers, said shutting down online services "must be an option" when games are no longer commercially viable. It also warned that some of the campaign's proposals could make online-only games significantly more expensive to develop. "In no way are we asking companies to keep servers running or services going, they can end it any time they want," said Scott. Instead, he and his fellow campaigners argue that when a game is shut down it should be done "responsibly", with publishers considering "end-of-life plans" such as updating the game to work offline or releasing software that allows players to continue running it. Two key points from the article:"In March, French consumer group UFC-Que Choisir launched legal action against Ubisoft over the shutdown of The Crew, arguing that players were misled about the permanence of their purchase and that some of the company's contract terms were unfair.""The European Commission must respond to the European Citizens' Initiative — the petition brought by the group — by 27 July."Thanks to Alain Williams — Slashdot reader #2,972 — for sharing the article.
  
  
  Read more of this story at Slashdot.
  

• Winners Announced in 2026's 'International Obfuscated C Code Competition'
  Yesterday 2026's International Obfuscated C Code Contest concluded, with 22 new winners announced in a special three-hour livestreamed ceremony! Started 42 years ago, it's been described as the internet's longest-running contest, with entrants concocting convoluted programs glorying in the C programming language's subtleties, all while having some fun. And "For IOCCC29, the volume and quality of submissions were at near-historic heights," explains its home page. There's a "Tetris-optimized" GameBoy emulator with source code that looks like a GameBoy, as well as a quasi-Rogue-like game voted "most likely to teleport." Awards were also given for the best imaginary emulator (a virtual machine in 366 bytes of C) and the best fractional emulator (a maze generator for the Commodore 64). But every one of the 22 winning programs seems wildly creative... Quine Pong. "Running the program produces the source code to generate the next frame, formatted to display the current frame. By repeatedly compiling and running each successive frame, you can play the game. To move, pass either "w" (up) or "e" (down) as an argument..." A winning Taiwanese programmer formatted their source code in the shape of a Tardis from Doctor Who — code that displays an intricate ASCII animation of Doctor Who's 1963 opening title sequence. One winning entry emulates an IBM 7040 mainframe, first converting a program (encoded in whitespace) into ASCII-character drawings of punchcards for a FORTRAN program — and then executing that program to calculate the light visible to an observer looking at black hole, ultimately creating an image. It's all recreating what astrophysicist Jean-Pierre Luminet had to do in 1978 to generate the first-ever simulated photograph of a black hole (on an IBM 7040 mainframe). "The entry can also run other FORTRAN programs — but "they must be provided as a deck of punch cards... Tools have been provided to convert to/from decks and to interpret...""We have added fun challenges to this year's winning entries competition..." the web site notes. "After you figure out what a given winning entry does, we encourage you to attempt the fun challenge!" Thanks to long-time Slashdot reader achowe for bringing the news (who has submitted winning entries in four different decades, starting in 1991 and continuing through 2025) — and who won again this year for a program simulating the Space Invaders-like game from Casio's 1980 MG-880 calculator. Follow the IOCCC on Mastodon.
  
  
  Read more of this story at Slashdot.
  

• James Bond Videogame '007 First Light' Sells 3M Copies, Earns $150M
  The new James Bond-themed videogame 007 First Light had a budget of 1.3 billion Danish krone — a little more than USD $202 million, reports IGN, citing a report from Denmark's public service broadcaster. "Denmark's TV 2 said that makes 007 First Light the most expensive entertainment product in the country's history" — and the game "still has some way to go before breaking even." 007 First Light is estimated to have sold 2.2 million copies, generating $150 million in revenue... [Saturday IGM reported sales had jumped to 3 million copies.] The only official sales data we have comes from developer IO Interactive, which said that 007 First Light had become the fastest-selling game in the company's history, shifting 1.5 million copies in its first 24 hours... The impressive sales milestone was achieved without the aid of the Nintendo Switch 2 version, which is due out this summer. The James Bond adventure is also the highest rated IOI game ever, with an 87 on Metacritic... The developer has said it wants to make a trilogy of James Bond games. Game-tracking company Alinea Analytics tweeted their estimates that 55.1% of sales were on PS5, 33.1% on Steam, and 11.8% on Xbox (Xbox console, Windows, and cloud combined). And Polygon reports that new downloadable game content was announced Friday.
  
  
  Read more of this story at Slashdot.
  

• After Empty Promises, Will String Theory Find New Uses?
  Science magazine reports:For decades, string theory promised a "theory of everything" that described all particles and forces as tiny vibrating strings. Physicists hoped it could also solve one of the field's deepest problems: reconciling quantum mechanics with gravity. But as string theory grew increasingly elaborate — and experimentally unreachable — many physicists lost hope. Now, some researchers are revisiting the theory from first principles. In a paper in press at Physical Review Letters, Clifford Cheung, a physicist at the California Institute of Technology, and colleagues lay out a small set of assumptions about the universe and show that they inevitably give rise to string theory.... Cheung's study, along with another one posted to arXiv in January, starts with two reasonably conservative assumptions: that the probabilities of all possible outcomes of an event add up to 100%, and that the laws of physics are consistent for observers moving at different speeds. Each group then posits additional assumptions that have not been borne out by observations. Cheung's analysis invokes "ultrasoftness," the idea that the probability of certain particle interactions drops off at a particular rate at high energies. The second study, led by University of Michigan physicist Henriette Elvang, instead assumes "supersymmetry," a maximal coupling between matter and forces. Both groups conclude the only theory that can satisfy their assumptions is one that looks like string theory... Cheung and Elvang stress that their aim is not to prove the inevitability of string theory. "I don't have a dog in the fight; I just work here," Cheung says. Rather, the goal is to explore the space of possible theories under rigid constraints — regardless of whether they reflect reality... The one thing the researchers all agree on is that the field would benefit from more alternative models to string theory. Cheung sees the agnostic, bottom-up exploration as a step in that direction. "You can either give up on the problem because it's too culturally toxic, or you can ask: If you want to find an alternative, what do you need?" he says. "Now, we know exactly what to do." Thanks to Slashdot reader sciencehabit for sharing the article.
  
  
  Read more of this story at Slashdot.
  

• Reddit Ads Impersonate BBC and The Guardian to Push Fake AI Investment Schemes
  A "growing wave" of Reddit's "promoted posts" are sending U.S. and European audiences to money-stealing scams that impersonate major news organizations including the BBC, the Financial Times, and The Guardian, according to new findings from Bitdefender Labs. "Domains are short-lived and rapidly rotated to evade detection," they write, noting that the impersonating sites apparently even use language "to falsely imply that the investment platform had been reviewed, approved, or vetted" by the legitimate site they're impersonating:The campaign promotes fake AI-powered investment platforms such as Wencoin STX, Warrior Coin AI, and Nevo Coin, using fabricated celebrity endorsements, cloned news websites, fake interviews, and invented financial success stories to lure victims into depositing money. Researchers Andrea Olariu and Emanuel Puscasu have identified multiple promoted Reddit posts masquerading as legitimate financial or breaking news stories. Some ads claimed that: — NVIDIA and OpenAI were "creating the future" — Heathrow police discovered hundreds of thousands of pounds in cash — Governments and banks were allegedly trying to "hide" a revolutionary AI investment platform — European regulators were "silencing" articles about AI trading systems Some Reddit ads delivered in video format, including what appeared to be a deepfake BBC news segment featuring a news anchor presenting fabricated financial headlines... Examples observed by researchers included: — Fake BBC pages discussing "$20 billion conversations" tied to AI investments — Fraudulent Financial Times articles about Heathrow airport cash seizures — Fake Guardian stories claiming governments were trying to suppress coverage of Wencoin STX or Nevo Coin The pages featured fabricated interviews, fake profit screenshots, manipulated banking documents, false testimonials, and even fictional journalists or business editors designed to make the scam look legitimate. In many cases, the content sought to create a sense of exclusivity or conspiracy, suggesting that banks, regulators, or governments were trying to suppress public access to the investment platform... Our researchers found that after users clicked links embedded within the fake Guardian articles, they were redirected to a registration form allegedly used to create a "Nevo Coin" investment account. The form requested personal contact information, including the victim's name, email address, and phone number. To increase pressure and encourage immediate action, the page warned that registration availability was limited, claiming that once all spots were filled, new user registrations would be suspended. And in the final stage, they're asked to deposit money...
  
  
  Read more of this story at Slashdot.
  

• Donald Trump, Bernie Sanders And Sam Altman Are All Talking About Public Ownership In AI
  U.S. Senator Bernie Sanders announced a plan for the public to take a 50% ownership stake in AI companies, remembers the Associated Press. And then OpenAI's Sam Altman "told Sanders that he, too, wants the public to have equity in AI companies." Though the CEO said he couldn't support Sanders' threshold of 50%, he nonetheless wanted to work with him to advocate for the general idea, according to people with knowledge of the conversation. The nearly hourlong meeting in Sanders' Senate office this week, held at Altman's request, highlighted the inherent tension between AI powerhouses and policymakers as Americans are increasingly asked to accept the costs of the AI boom even as they remain unconvinced of its direct benefits. Yet it's also creating odd political bedfellows fueled by populism as politicians from Sanders to President Donald Trump embrace giving the public a stake in AI's growth. Speaking to reporters on Air Force One on Friday, Trump described a potential partnership "where the American people can benefit from the success of AI" and said executives from leading AI companies will visit the White House, "probably next week," to discuss the idea. The article points out that Altman also met with congressional leaders from both of America's political parties.
  
  
  Read more of this story at Slashdot.
  

• 'Steve Jobs In Exile' Remembers the Birth of the Web and 'Making Unix Taste Sweet'
  Ars Technica shares some anecdotes from Steve Jobs in Exile, a new book released last month:[Author Geoffrey] Cain reminds us, in stunning detail, that Jobs' "exile" era at NeXT was not only critical to his evolution as a man and an entrepreneur, but that it mattered for the rest of us, too. The technological innovations that came out of NeXT — notably, the NeXTSTEP OS — continue to live on in what we now call both macOS and iOS. As Cain puts it, "NeXTSTEP was Steve's attempt to make Unix taste sweet...." [W]hile many tech nerds know that Tim Berners-Lee created the first World Wide Web server on a NeXT machine while working in Switzerland in 1990, few know that NeXT employees were wary of bringing the news to Jobs. Why? They feared his wrath "and that he would dismiss [the web] as 'shit.'" (In another timeline, NeXT might itself have capitalized on this world-changing innovation....) Perhaps one of the wildest anecdotes that Cain uncovered was how one voicemail changed computer history forever. In 1996, when Apple was solidly in its mediocre Performa era — and considering buying BeOS as the basis for its new operating system — a mid-level NeXT product manager asked aloud, "Why don't we just frickin' call Apple?" (NeXT was also struggling during this period.) And so someone did. As Cain writes: Garrett left the group of managers, walked back to his office, and took a risk. He picked up his designer phone and called the head of software at Apple. He left what he described as "one of my more inspired sales pitches" on the man's voicemail, explaining why Apple should be looking at NeXT instead of Be... In any other universe, Garrett's call might have gotten him fired. But in this timeline, it worked out. And thanks to him, Steve [Jobs] was about to enter Apple's airspace once again. Thanks to long-time Slashdot reader destinyland for sharing the article.
  
  
  Read more of this story at Slashdot.
  

• Scientists Edited Human Embryo Genes. But Questions Remain
  "A DNA-editing feat involving editing the genes of early stage embryos was announced this week," reports the Wall Street Journal. They describe the feat as "a far cry from designer babies, but nevertheless a step in that direction."Dieter Egli, an associate professor of developmental cell biology at Columbia University and his co-authors, including Nathan Treff of Nucleus Genomics, a New York-based DNA-testing startup, say the technology could help fix disease-causing mutations in embryos. "We're not throwing the final 'OK, you will have gene-edited babies tomorrow' at the public," said Egli. "That is a process that can occur through discussion matched with scientific progress...." Previous gene-editing efforts have often used Crispr, which can cut out parts of the DNA sequence, but the technology can also cause damage if the wrong DNA is targeted or cut out. In 2018, Chinese scientist He Jianku said he used Crispr to tweak DNA in human embryos and was imprisoned for the work. The technology Egli's group used, called base editing, allows them to target individual DNA letters in sequences more precisely with fewer adverse effects... Egli's group focused on altering two genes, one that can raise the risk of heart disease and one that is tied to blood disorders like sickle cell disease, and the research showed they were sometimes able to do so successfully, in the same embryo, without damage. "I am generally supportive of the concept of embryo editing to prevent genetic disease," said Dr. Paula Amato, a fertility expert at Oregon Health & Science University who wasn't involved in the research... Base editing has been used in human embryos before, according to peer-reviewed studies. The technology was used to correct a disease-causing mutation and an Alzheimer's disease-risk gene variant, said Alexis Komor, associate professor of biochemistry and molecular biophysics at the University of California, San Diego, who wasn't involved in the work. "There really is not any unmet medical or clinical need for this, especially from an in vitro fertilization perspective," Komor said. "Usually what you'll hear is that they're doing it just so that you know we can prevent genetic diseases, but there are so many other better ways to do that." Using embryo editing to create babies is illegal in the U.S. and many other countries. Scientists have long worried that it is a slippery slope and that the technology could ultimately be used to promote eugenics. Her worry is that "they're basically building a blueprint" for more ethically problematic forms of embryo editing."In my opinion, I think this is a huge no-no," Komor said. "There's just no ethical way to use this...." Nucleus Genomics Chief Executive Kian Sadeghi said his company plans to fund Egli's further research, building on the new findings. His company sells a polygenic embryo-screening product, which screens prospective parents' embryos and produces risk scores for their likelihood of developing disease, as well as factors like height, IQ and eye color. The company has said the IQ predictions are limited in accuracy. The research was published online Monday on a preprint server.
  
  
  Read more of this story at Slashdot.
  

• Failing CS Grades Soar At UC Berkeley As Professors See Greater AI Usage
  The University of California at Berkeley discovered the percentage of failing grades in multiple CS classes this spring "is significantly higher than past semesters," reports the campus's student newspaper. "Instructors point to students' increased reliance on AI, lack of mathematical preparedness and understaffing as potential contributing factors."According to [coursework platform] Berkeleytime, 35.3% of CS 10 students and 10.6% of CS 61A students received F's in spring 2026. In spring 2025 and spring 2024, the percentage of F's did not exceed 10% for either class. The electrical engineering and computer sciences department's grading guidelines state that 7% of students in lower division courses, including CS 10 and CS 61A, should receive D's and F's... [UC Berkeley teaching professor Dan Garcia, who taught both classes] believes the "primary driver" of these abnormally high failing rates is due to a "vast increase in academic dishonesty" due to students' usage of large language models, such as Claude, ChatGPT and Google Gemini. "Some of the numbers that you saw from the number of students who receive failing grades were because we caught them (cheating) and prosecuted them and are sending their cases to the Center for Student Conduct," Garcia said. "But in other cases, it's students who are leaning a little too hard on LLMs to do their work for them, and then at exam time just really aren't ready." According to Garcia, nearly 30 students in CS 10 were "caught cheating on take-home exams" in spring 2026... In addition to overreliance on AI, Garcia also pointed out that many students are underprepared mathematically, a concern echoed by campus associate teaching professor Gireeja Ranade. Ranade noticed a similar lack of prerequisite mathematical skills in her spring 2026 EECS 127 class, "Optimization Models in Engineering," which she described as "differently challenging" to teach this semester. The class saw a 16.8% F rate, far higher than the 5% of D's and F's that the EECS department describes as "typical" for an upper division course... Both Garcia and Ranade have joined more than 1,300 UC faculty in signing a petition calling for the reinstatement of ACT and SAT standardized testing scores for STEM admissions in the UC system. Thanks to long-time Slashdot reader theodp for sharing the article.
  
  
  Read more of this story at Slashdot.
  

• Cheaper EV Sales are Increasing
  Sales have increased for Hyundai's under-$35,000 IONIQ 5, totalling 18,395 for the first five months of 2026, reports Electrek, "up 16% from the same period last year." But meanwhile BYD's overseas sales surpassed 160,000 for the first time last month, "up 80% from May 2025 and 19% from the previous record of 135,098 set in April."Through the first five months of 2026, BYD sold 616,263 vehicles overseas. In May, overseas sales accounted for over 41% of BYD's total sales. In several major markets, including the UK, BYD surpassed Tesla and Kia to become the best-selling EV brand through April. "With fuel prices remaining high, more drivers are turning to electric vehicles as a smarter and more economical choice," Bono Ge, BYD UK's Country Manager, said last month. Elsewhere Electrek notes that Toyota's bZ (starting at under $35,000) was the third-best-selling EV in the U.S. in the first three months of 2026, behind only the Tesla Model 3 and Model Y. "Last month, bZ sales doubled from May 2025, with 2,646 units sold." And meanwhile the first Volkswagen ID. Polo and Cupra Raval models "rolled off the production line at the Group's Martorell plant in Spain, the first of several new affordable, mass-market EVs."Starting at €24,995 ($29,000) and €26,000 ($30,100), the ID. Polo and Cupra Raval are the first models from the Group's Electric Urban Car Family... [T]he first customer deliveries are scheduled to begin later this summer and into the fall. Following the ID. Polo and Cupra Raval, Volkswagen will introduce new members to the Electric Urban Car Family, including the ID. Cross, an electric version of the T-Cross, later this year.According to Volkswagen, the ID. Cross will start at around €28,000 ($32,500).
  
  
  Read more of this story at Slashdot.
  

• EU's Tech Sovereignty Package Includes 29 Pages on Open Source, Says Open Source Initiative
  Friday the Open Source Initiative welcomed the EU's new tech sovereignty package, noting that "over a third of the 29-page document is devoted to Open Source." The nonprofit OSI — maintainers of the Open Source definition — submitted their official feedback in February, and notes that "many" of their key requests were addressed, "as well as some exciting new announcements!"One of the biggest barriers to Open Source adoption has been public procurement. Too often, tenders have been designed around proprietary solutions, ignoring the benefits of Open Source and locking public institutions into closed ecosystems. The OSI called for procurement rules that prioritize interoperability, reusability, and vendor independence. The package takes a major step forward in this area. The EU pledges to make the public sector an anchor consumer for Open Source solutions. The Commission plans to reform procurement rules to remove barriers for Open Source, provide better guidance to EU countries on procurement criteria to avoid excluding Open Source, and uphold the "public money, public code" principle when procuring software development. Both proposals align with the OSI's feedback. The next critical step is the EU's public procurement law reform. The OSI will continue advocating to ensure these pledges translate into action. Beyond procurement, the OSI highlighted challenges faced by Open Source communities in Europe, particularly difficulties accessing investment and expertise to commercialize and scale projects. The Commission has responded by committing to ensure Open Source companies are considered for funding under the European Competitiveness Fund (ECF). It also plans to create "Open Source business accelerators" that will offer mentorship, training, legal and licensing consulting, and business development support, including marketing. Additionally, the Commission will work to raise industry awareness of Open Source solutions by leveraging the EU's existing business support networks. These measures directly address the OSI's concerns and could significantly boost the Open Source ecosystem in Europe... [I]n our feedback, we called for the continuation of the Next Generation Internet (NGI) initiative that has funded many Open Source projects, and for the creation of a European Sovereign Tech Fund to fund ongoing maintenance and features development to meet the EU's needs. We also highlighted the need to mainstream Open Source in other funding opportunities (like the €100bn+ Horizon Europe programme). The Commission's strategy addresses these requests. The NGI will be scaled up under the new name "Open Internet Stack." A new Open Source Maintenance Instrument will fund the "maintenance and security upkeep of essential components." The Commission will also create a list of critical and security-relevant Open Source dependencies to inform funding decisions and promote Open Source solutions as the default approach in Horizon Europe funding. Friday's announcement from the Open Source Initiative notes that the EU is already leading by example in Open Source adoption. It applauds the EU for "deploying a Matrix-based communications system and the openDesk collaboration environment internally, trialing an alternative operating system to replace Windows, which is currently widely used in EU institutions, and expanding its presence on the Fediverse, with Commissioners and key departments already joining the EU's Mastodon server.'
  
  
  Read more of this story at Slashdot.
  

• Hospital Ordered to Pay $13M Over 2022 Death of Star Trek's Nichelle Nichols
  The Root reports:A New Mexico jury has found the Gila Regional Medical Center negligent in the death of Nichelle Nichols, who famously played Lieutenant Nyota Uhura on the hit television series "Star Trek." According to KRQE News 13, Nichols' family filed a lawsuit against the hospital last year following her 2022 admission for shortness of breath. Nichols' family claimed that she should have received a full cardiac examination, but the medical personnel sent her to the observation unit, and she was discharged the next day. After being transported to her assisted living home, the 89-year-old passed away just seven hours later. In response to Nichol's tragic passing, the lawsuit alleged that Gila Medical Center "hired, credentialed, and inappropriately supervised unqualified medical providers" who treated the actress. The lawsuit also alleged that the hospital failed to secure a bed for Nichols or transfer her to a facility that had one. Furthermore, the attorney argued that the staff should have known that the assisted living center was not equipped to handle a patient with her medical needs. On Thursday (June 4), a jury found the hospital negligent and awarded Nichols' estate $13 million. KRQE got this quote from the estate's attorney about the death of the 89-year-old acctress. "At the end of the day, Nichelle Nichols had a heart attack that was missed. Thatâ(TM)s why she died." The jury deliberated for "just two hours."
  
  
  Read more of this story at Slashdot.
  

• Ladybird Browser Stops Accepting Public Pull Requests
  The Ladybird browser isn't opposed to AI coding tools, but it's just brought a new change to their code-contributing policies. February 23: "Ladybird adopts Rust, with help from AI."Our first target was LibJS , Ladybirdâ(TM)s JavaScript engine... I used Claude Code and Codex for the translation. This was human-directed, not autonomous code generation. I decided what to port, in what order, and what the Rust code should look like. It was hundreds of small prompts, steering the agents where things needed to go... The requirement from the start was byte-for-byte identical output from both pipelines. The result was about 25,000 lines of Rust, and the entire port took about two weeks. The same work would have taken me multiple months to do by hand. June 5 (Friday):We will no longer accept public pull requests... A pull request no longer tells us as much as it used to about the person submitting it. A substantial patch used to imply substantial effort, and that effort was a reasonable proxy for good faith. That assumption no longer holds.... We have already seen patient, well-resourced campaigns in open source to earn maintainer trust and abuse it. What has changed is how much faster and cheaper it has become to produce work that looks like a serious contribution... Whether code was typed by hand is beside the point. What matters is who is responsible for it once it enters the browser. Ladybird is becoming a browser for real users. The people introducing changes to it must be the people who decide those changes belong in the project, and who will answer for the consequences. As part of this change, we will close all currently open public pull requests. We are grateful for the work people put into them, but keeping the existing queue open would keep that contribution path open in practice. There is no perfect time to make this change, so we are making it now. Going forward, pull requests will only be available to project maintainers. There will not be a separate process for submitting patches by other means. We do not want to create a shadow contribution system through issues, comments, email, or forks... Outside involvement still matters: clear bug reports, reductions, website testing, standards discussion, design discussion, security reports, and technical feedback all help move the project forward. This is the right change for Ladybird now. We are preparing to ship a browser to real users, and our development process has to match that responsibility.
  
  
  Read more of this story at Slashdot.
  

• New Power Banks Released By BMX With Safer Semi-Solid-State Batteries
  From Android Authority:Singapore-based BMX has announced that its SolidSafe magnetic power bank lineup, first showcased at CES 2026, is now available for purchase through its website and Amazon US, with prices starting at $59. What sets these power banks apart is their use of semi-solid-state batteries. Traditional lithium-ion and lithium-polymer batteries rely on liquid electrolytes to move energy between electrodes. Semi-solid-state batteries significantly reduce the amount of flammable liquid inside the cell, improving thermal stability and lowering the risk of overheating, swelling, or fire... BMX says the power banks are designed to remain stable under extreme conditions and show greater resistance to physical damage and thermal stress than conventional battery packs. The company has also launched the SolidSafe Air, a 5,000mAh magnetic power bank that it claims is the world's thinnest semi-solid-state Qi2 power bank... BMX is positioning the device as a travel-friendly alternative for users who want added safety and the convenience of a magnetic battery pack without the bulk. Thanks to long-time Slashdot reader destinyland for sharing the article.
  
  
  Read more of this story at Slashdot.
  

• Implementing Secure Zero-Touch Provisioning in AI and Edge Infrastructure
  By Juha Holkkola, FusionLayer Group How DHCP Changed Connectivity In the late 1990s, the DHCP (Dynamic Host Configuration Protocol) quietly catalyzed a revolution in digital connectivity. Before DHCP was introduced, connecting devices to a network involved manual entry of IP addresses, DNS servers, subnet masks, and gateways. Networks were fragile, prone to errors, and severely [0]
  
  The post Implementing Secure Zero-Touch Provisioning in AI and Edge Infrastructure appeared first on Linux.com.
  

• From DHCP to SZTP – The Trust Revolution
  By Juha Holkkola, FusionLayer Group The Dawn of Effortless Connectivity In the transformative years of the late 1990s, a quiet revolution took place, fundamentally altering how we connect to networks. The introduction of DHCP answered a crucial question, Where are you on the network?!, by automating IP address assignment. This innovation eradicated the manual configuration [0]
  
  The post From DHCP to SZTP – The Trust Revolution appeared first on Linux.com.
  

• Celebrating the Second Year of Linux Man-Pages Maintenance Sponsorship
  Sustaining a Core Part of the Linux Ecosystem The Linux Foundation has announced a second year of sponsorship for the ongoing maintenance of the Linux manual pages (man-pages) project, led by Alejandro (Alex) Colomar. This critical initiative is made possible through the continued support of Google, Hudson River Trading, and Meta, who have renewed their [0]
  
  The post Celebrating the Second Year of Linux Man-Pages Maintenance Sponsorship appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

• Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces
  OpenTelemetry (fondly known as OTel) is an open-source project that provides a unified set of APIs, libraries, agents, and instrumentation to capture and export logs, metrics, and traces from applications. The project’s goal is to standardize observability across various services and applications, enabling better monitoring and troubleshooting. Read More at Causely
  
  The post Using OpenTelemetry and the OTel Collector for Logs, Metrics, and Traces appeared first on Linux.com.
  

Engadget"Engadget - Technology News & Expert Reviews"

• Ambrosia Sky's final act lands on August 6
  It'll come as a free update for players who own the game already.

• Signet City is a new 'fungalpunk' RPG from the creator of Citizen Sleeper
  Citizen Sleeper creator Gareth Damian Martin has revealed their latest game, Signet City. The new RPG casts players as a fungal parasite in a dying city.

• Therabody's latest recovery tool will cost you $400 to cool your palms
  The CryoTherm Palm can switch between cold, heat and contrast therapy.

• Undead Labs finally shows off State of Decay 3 gameplay in new trailer
  The game is slated for release in 2027.

• Persona 4 Revival gets an official release date for February 2027
  The pre-order trailer also revealed new voice actors.

• Persona 6 is coming with graveyard visuals and a toxic green color scheme
  The teaser trailer for P6 is filled with headstones and eerie vibes.

• Senua, an action-heavy Hellblade sequel, arrives in 2027
  Ninja Theory9s upcoming game is coming to Xbox Series X/S, PS5 and PC.

• A limited edition translucent green Xbox Series X and controller are coming this fall
  Xbox's 25th anniversary collection drops in November.

• Crazy Taxi World Tour reboots the series in 2027
  Get ready to yell 4Yah yah yah yah yah4 all over again.

• Halo: Campaign Evolved hits PS5, Xbox and PC on July 28
  Take a peek at the new missions in the refreshed Halo.

• Gears of War E-Day arrives October 6 as an Xbox and PC exclusive
  One of Microsoft9s biggest gaming franchises is sticking with Xbox.

• The developer of the Silent Hill 2 remake is releasing a Star Trek horror game
  Bloober Team's Star Trek: Shadow Frontier is coming in 2027 to PC and consoles.

• OpenAI reportedly has a major ChatGPT overhaul in store
  The revamped AI tool will roll out in the coming weeks, according to The Financial Times.

• How to get your money's worth from YouTube Premium
  If you9re going to spend about $20 a month anyway, here9s how to make sure you9re doing more than just avoiding ads.

• US states are reportedly planning to sue to block Paramount's Warner Bros. takeover
  California's attorney general Rob Bonta launched a probe into the deal shortly after it was announced.

• The Trump administration is reportedly in talks about taking a stake in OpenAI
  Details for a potential deal haven't been finalized yet.

• Hand-drawn interactive searching game Hidden Folks 2 is coming next year
  It'll be available for PC and mobile, and maybe Nintendo Switch down the line.

• Trump's latest memo puts 'most advanced AI in the world' into the military's hands
  The memo also prevents companies from altering AI models being used by the military without prior approval.

• Burn-9 makes an entire game out of Metal Gear's Codec scenes
  Plus, check out the new trailer for the cosmic horror game Penguin Colony.

• Astronomers measure the mass of a dormant black hole, our solar system's lost protoplanet, and more science stories
  This week9s science news.

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice