All the News that Matters

• Fedora 42 webkitgtk 2.52.1 Important Issues Process Crash 2026-36594550b0
  Update to 2.52.1. Notable changes from 2.50 to 2.52: Make text look like in other browsers by blending in linear color space. Improved rendering performance by using a different tile size depending on whether GPU rendering is enabled or not.

• Fedora 43 Flatpak 1.16.6 Critical Code Execution and File Deletion
  Update to 1.16.6 Fixes for CVE-2026-34078, CVE-2026-34079, GHSA-2fxp-43j9-pwvc and GHSA-89xm-3m96-w3jg

• Fedora 43 Chromium Critical Heap Buffer Overflow CVE-2026-5858 Update
  Update to 147.0.7727.55 Critical CVE-2026-5858: Heap buffer overflow in WebML Critical CVE-2026-5859: Integer overflow in WebML High CVE-2026-5860: Use after free in WebRTC High CVE-2026-5861: Use after free in V8

• Fedora 43 python-cryptography Important Buffer Overflow CVE-2026-39892
  Changelog * Wed Apr 8 2026 Jeremy Cline - 46.0.7-1 - Update to 46.0.7 - SECURITY ISSUE: Fixed an issue where non-contiguous buffers could be passed to APIs that accept Python buffers, which could lead to buffer

• Fedora 43 webkitgtk 2.52.1 Critical DoS Threat Advisory 2026-431948187d
  Update to 2.52.1. Notable changes from 2.50 to 2.52: Make text look like in other browsers by blending in linear color space. Improved rendering performance by using a different tile size depending on whether GPU rendering is enabled or not.

• Ubuntu 25.10 Vim Important Security Fixes for 2026-0017
  Several security issues were fixed in Vim.

• The Good & The Bad When Using LLMs To Write Spack Packages
  The Spack package manager is quite popular in the HPC / supercomputer space for scientific software. Even with the more selective niche than a typical general purpose OS package manager, large language models (LLMs) have already proven capable of being useful in generating new Spack packages. But there have also been some headaches involved too for Spack developers...

• openSUSE Tumbleweed Switches Fresh Installs to systemd-boot
  openSUSE Tumbleweed has replaced GRUB2-BLS with systemd-boot as the default bootloader for fresh installations.

• GreenBoost Memory Orchestrator For NVIDIA GPUs Introduces GreenBoost-Proton For Gaming
  Last month we showcased GreenBoost as an open-source means of augmenting NVIDIA GPU vRAM with system RAM and NVMe storage. This memory tiering solution for NVIDIA GPUs was developed by an open-source developer with a focus on CUDA and allowing larger LLMs to be handled on graphics cards with smaller vRAM capacities. There was a setback to the project due to NVIDIA legal but now the project is going in new form and also has introduced GreenBoost-Proton for helping Linux gaming on NVIDIA hardware...

• Linux 7.0 debuts with some big changes for networking
  The Linux 7.0 kernel is now out, and it’s one of the most impactful releases in years for networking professionals. Key improvements include: Accurate Explicit Congestion Notification (AccECN) now default UDP performance boost IPv6 enhancements CAKE MQ (Common Applications Kept Enhanced) network scheduler integration

• France Launches Government Linux Desktop Plan as Windows Exit Begins
  France is transitioning government desktops to Linux, with each ministry required to formalize its implementation plan by autumn 2026.

• Apache Spins Anthropic’s $1.5M Into ‘Responsible AI’ Initiative
  A big infrastructure grant from Anthropic, and an investment from the Linux Foundation's Alpha-Omega, quietly become seed money for Apache’s new “responsible AI” push.

• DavMail 6.6 Exchange Gateway Released with Office 365 Fixes
  DavMail 6.6 improves Exchange and Office 365 access on Linux with authentication fixes, XDG config support, and packaging updates.

• Servo Browser Engine Making It Easier For Embedded Use
  The open-source, Rust-based Servo browser engine has been improving its Servoshell demo browser application while one of the most promising potentials for this engine is around embedded use as an alternative to the Chromium Embedded Framework (CEF). With the latest moves by Servo developers, they are making for a more compelling story for its use...

• How to Install Linux Kernel 7.0 on Ubuntu 25.10
  Linux 7.0 has been officially released, and while it will soon be available on the upcoming Ubuntu 26.04 LTS (Resolute Racoon) release, due out on April 23rd, 2026, you can install it right now on your Ubuntu 25.10 (Questing Quokka) system.

• Is AI Replacing Linux Jobs? No - But Stagnation Might
  Is AI coming for your sysadmin job? We analyzed 7,120 Linux job postings to find out. The answer: infrastructure skills aren't being replaced - they're being built on. But the floor of what you need to know is rising fast. AI appears in just 15.5% of listings while Docker and Kubernetes remain the tightest skill pair in the dataset. The real story is where the money is going - and which skills get you there.

• WeatherBug Data Says October 8 Is the Real Perfect Date
  BrianFagioli shares a report from NERDS.xyz: For years pop culture has treated April 25 as the "perfect date," thanks to the famous Miss Congeniality line about needing only a light jacket. But new analysis from WeatherBug suggests that idea does not actually hold up when you look at the numbers. After reviewing U.S. weather data from 2018 through today, the company concluded that October 8 delivers the most reliable combination of comfortable temperatures and low rainfall nationwide. According to the analysis, the average conditions on that day land around 66F with just 0.0573 inches of precipitation. The study used population weighted weather data drawn from roughly 20 million daily WeatherBug users across the United States. When the company compared all days of the year, April 25 ranked only 80th, averaging about 60F and roughly 0.1297 inches of rain. The broader dataset also shows July dominating the hottest days of the year while January owns the coldest, with January 20 averaging just 33F nationally. While no single date guarantees perfect weather everywhere in a country as large as the U.S., the numbers suggest early October may quietly offer one of the most reliable windows for comfortable outdoor conditions.
  
  
  Read more of this story at Slashdot.
  

• Stanford Report Highlights Growing Disconnect Between AI Insiders and Everyone Else
  An anonymous reader quotes a report from TechCrunch: AI experts and the public's opinion on the technology are increasingly diverging, according to Stanford University's annual report on the AI industry, which was released Monday. In particular, the report noted a growing trend of anxiety around AI and, in the U.S., concerns about how the technology will impact key societal areas, such as jobs, medical care, and the economy. [...] Stanford's report provides more insight into where all this negativity is coming from, as it summarizes data around public sentiment of AI across various sources. For instance, it pointed to a report from Pew Research published last month, which noted that only 10% of Americans said they were more excited than concerned about the increased use of AI in daily life. Meanwhile, 56% of AI experts said they believed AI would have a positive impact on the U.S. over the next 20 years. Expert opinion and public sentiment also greatly diverged in particular areas where AI could have a societal impact. Indeed, 84% of experts, the report authors noted, said that AI would have a largely positive impact on medical care over the next 20 years, but only 44% of the U.S. general public said the same. Plus, a majority (73%) of experts felt positive about AI's impact on how people do their jobs, compared with just 23% of the public. And 69% of experts felt that AI would have a positive impact on the economy. Given the supposed AI-fueled layoffs and disruptions to the workplace, it's not surprising that only 21% of the public felt similarly. Other data from Pew Research, cited by the report, noted that AI experts were less pessimistic on AI's impact on the job market, while nearly two-thirds of Americans (or 64%) said they think AI will lead to fewer jobs over the next 20 years. The U.S. also reported the lowest trust in its government to regulate AI responsibly, compared with other nations, at 31%. Singapore ranked highest at 81%, per data pulled from Ipsos found in Stanford's report. Another source looked at regulation concerns on a state-by-state level and concluded that, nationwide, 41% of respondents said federal AI regulation will not go far enough, while only 27% said it would go "too far." Despite the fears and concerns, AI did get one accolade: Globally, those who feel like AI products and services offer more benefits than drawbacks slightly rose from 55% in 2024 to 59% in 2025. But at the same time, those respondents who said that AI makes them "nervous" grew from 50% to 52% during the same period, per data cited by the report's authors.
  
  
  Read more of this story at Slashdot.
  

• Apple AI Glasses Will Rival Meta's With Several Styles, Oval Cameras
  Bloomberg's Mark Gurman reports that Apple is developing display-free AI smart glasses aimed at rivaling Meta's Ray-Bans, with multiple frame styles, a distinctive oval camera design, and tight iPhone integration. "The idea is to unveil the product at the end of 2026 or early the following year, with the actual release coming in 2027," writes Gurman. From the report: Like Meta's offering, Apple's glasses will be designed to handle everyday uses: capturing photos and videos, syncing with a smartphone for editing and sharing, handling phone calls, listening to notifications, playing music, and enabling hands-free interaction via a voice assistant. In Apple's case, that assistant will be a significantly upgraded Siri coming in iOS 27. The glasses are part of a broader, three-pronged AI wearables strategy that also includes new AirPods and a camera-equipped pendant. Each device is designed to leverage computer vision to interpret the user's surroundings and feed contextual awareness into Siri and Apple Intelligence. That will enable features like improved turn-by-turn map directions and visual reminders. When Apple typically enters a new product category, it offers clear advantages over what's currently available. We saw this with the original iPod, iPhone, iPad and Apple Watch -- and, even though it was a flop, the Vision Pro. That approach won't be as obvious with Apple's upcoming foldable iPhone, but we should see it on full display with the glasses. According to employees working on the project, Apple's strategy is to outdo competitors by tightly integrating the glasses with the iPhone and offering a higher-end build. While Meta relies heavily on partner EssilorLuxottica SA for frames, Apple is unsurprisingly planning to go at it alone in terms of design. That also should set it apart from Alphabet Inc.'s Google and Samsung Electronics Co., which are leaning on Warby Parker. Apple's design team has whipped up at least four different styles and plans to launch some or all of them, I'm told, as well as many color options. The latest units are made from a high-end material called acetate, which is known to be more durable and luxurious than the standard plastic used by many brands. Here are the designs in testing:- A large rectangular frame, reminiscent of Ray-Ban Wayfarers- A slimmer rectangular design, similar to the glasses worn by Apple Chief Executive Officer Tim Cook- Larger oval or circular frames- A smaller, more refined oval or circular option
  
  
  Read more of this story at Slashdot.
  

• Hollywood Stars Sign Open Letter Protesting Paramount-Warner Bros Merger
  More than 1,000 Hollywood figures, including major actors, writers, and directors, signed an open letter opposing Paramount Skydance's proposed takeover of Warner Bros. Discovery, arguing it would hurt an industry "already under severe strain." The deal is still under regulatory scrutiny in both the U.S. and U.K., while Paramount says the merger would strengthen competition and expand opportunities for creators. NBC News reports: "This transaction would further consolidate an already concentrated media landscape, reducing competition at a moment when our industries -- and the audiences we serve -- can least afford it," the signatories wrote in the letter, published early Monday on a website called Block the Merger. "The result will be fewer opportunities for creators, fewer jobs across the production ecosystem, higher costs, and less choice for audiences in the United States and around the world. Alarmingly, this merger would reduce the number of major U.S. film studios to just four," the signatories added. [T]he open letter illustrates the deep resistance to the deal among many members of Hollywood's creative community. The list of signatories includes A-list stars (Glenn Close, Ben Stiller), celebrated filmmakers (Yorgos Lanthimos, Denis Villeneuve) and acclaimed writers ("The Sopranos" creator David Chase). "Media consolidation has accelerated the disappearance of the mid-budget film, the erosion of independent distribution, the collapse of the international sales market, the elimination of meaningful profit participation, and the weakening of screen credit integrity," the signatories wrote. "Together, these factors threaten the sustainability of the entire creative community," they added. [...] Monday's open letter letter was spearheaded by a group of advocacy organizations -- including the Committee for the First Amendment, a free speech group led by Fonda, who warned that the merger "would be one of the most destructive threats to free speech and creative expression in our history." In the letter, first reported by The New York Times, the signatories expressed support for California Attorney General Rob Bonta, who has said the merger is "not a done deal." "These two Hollywood titans have not cleared regulatory scrutiny -- the California Department of Justice has an open investigation, and we intend to be vigorous in our review," Bonta said in a Feb. 26 post on X. Paramount Skydance said that they "hear and understand the concerns" and are committed to "protecting and expanding creativity." The studio also reiterated its commitment to releasing a minimum of 30 "high-quality feature films annually with full theatrical releases" and "preserving iconic brands with independent creative leadership" to make sure "creators have more avenues for their work, not fewer."
  
  
  Read more of this story at Slashdot.
  

• FBI Raids Texas Home of Man Suspected of Firebombing Sam Altman's SF Mansion
  The FBI searched the Texas home of a 20-year-old man accused of throwing a Molotov cocktail at Sam Altman's San Francisco residence. Authorities say the suspect also made threats at OpenAI's headquarters, and reports indicate he had written extensively about fears over AI and opposition to AI executives. The suspect reportedly authored a Substack blog and was a member of the Discord server PauseAI, an activist group focused on banning the development of the most powerful AI models to protect the public. In one post, they wrote: "These machines have already shown themselves to be unaligned with the interest of the people creating them. Models have often been found lying, cheating on tasks, and blackmailing their own creators whenever convenient; let alone the broader question of aligning them to whatever general 'human interest' may be." The Houston Chronicle reports: The search happened hours before the Justice Department charged 20-year-old Daniel Moreno-Gama with possession of an unregistered firearm and damage and destruction of property by means of explosives. An FBI spokesperson on Monday morning confirmed agents were executing a search warrant in Spring, but provided no other information. Around the same time, FOX News reported the search was being conducted at the home of Daniel Moreno-Gama, 20, who last week was arrested by San Francisco police suspicion of attempted murder, making criminal threats and possession of a destructive device. The charges were first reported by the Associated Press. When Moreno-Gama was arrested Friday, he was carrying a document that "identified views opposed to Artificial Intelligence (AI) and the executives of various AI companies," the Associated Press reported. Moreno-Gama has no criminal history in Harris or Montgomery counties, according to public records. [...] Agents had left the cul-de-sac by 1 p.m. It was unclear if they removed any items from the house. Another incident occurred outside Sam Altman's residence early Sunday morning. "Early Sunday morning, a car stopped and appears to have fired a gun at the Russian Hill home of OpenAI's CEO," reports The San Francisco Standard, citing reports from the local police department. Two suspects were arrested and booked for negligent discharge. UPDATE: The suspect has been charged with attempted murder.
  
  
  Read more of this story at Slashdot.
  

• Meta Is Warned That Facial Recognition Glasses Will Arm Sexual Predators
  An anonymous reader quotes a report from Wired: More than 70 civil liberties, domestic violence, reproductive rights, LGBTQ+, labor, and immigrant advocacy organizations are demanding that Meta abandon plans to deploy face recognition on its Ray-Ban and Oakley smart glasses, warning that the feature -- reportedly known inside the company as "Name Tag" -- would hand stalkers, abusers, and federal agents the ability to silently identify strangers in public. The coalition, which includes the ACLU, the Electronic Privacy Information Center, Fight for the Future, Access Now, and the Leadership Conference on Civil and Human Rights, is demanding Meta kill the feature before launch, after internal documents surfaced showing the company hoped to use the current "dynamic political environment" as cover for the rollout, betting that civil society groups would have their resources "focused on other concerns." Name Tag, as revealed in February by The New York Times, would work through the artificial intelligence assistant built into Meta's smart glasses, allowing wearers to pull up information about people in their field of view. Engineers have reportedly been weighing two versions of the feature: one that would only identify people the wearer is already connected to on a Meta platform, and a broader version that could recognize anyone with a public account on a Meta service such as Instagram. The coalition wants Meta to scrap the feature entirely. In a letter to CEO Mark Zuckerberg on Monday, it argues that face recognition in inconspicuous consumer eyewear "cannot be resolved through product design changes, opt-out mechanisms, or incremental safeguards." Bystanders in public have no meaningful way to consent to being identified, it says. Meta is also urged to disclose any known instances of its wearables being used in stalking, harassment, or domestic violence cases; disclose any past or ongoing discussions with federal law enforcement agencies, including Immigration and Customs Enforcement and Customs and Border Protection, about the use of Meta wearables or data from them; and commit to consulting civil society and independent privacy experts before integrating biometric identification into any consumer device. "People should be able to move through their daily lives without fear that stalkers, scammers, abusers, federal agents, and activists across the political spectrum are silently and invisibly verifying their identities and potentially matching their names to a wealth of readily available data about their habits, hobbies, relationships, health, and behaviors," write the groups, which also include Common Cause, Jane Doe Inc., UltraViolet, the National Organization for Women, the New York State Coalition Against Domestic Violence, the Library Freedom Project, and Old Dykes Against Billionaire Tech Bros, among others.
  
  
  Read more of this story at Slashdot.
  

• Linux 7.0 Released
  "The new Linux kernel was released and it's kind of a big deal," writes longtime Slashdot reader rexx mainframe. "Here is what you can expect." Linuxiac reports: A key update in Linux 7.0 is the removal of the experimental label from Rust support. That (of course) does not make Rust a dominant language in kernel development, but it is still an important step in its gradual integration into the project. Another notable security-related change is the addition of ML-DSA post-quantum signatures for kernel module authentication, while support for SHA-1-based module-signing schemes has been removed. The kernel now includes BPF-based filtering for io_uring operations, providing administrators with improved control in restricted environments. Additionally, BTF type lookups are now faster due to binary search. At the same time, this release continues ongoing cleanup in the kernel's lower layers. The removal of linuxrc initrd code advances the transition to initramfs as the sole early-userspace boot mechanism. Linux 7.0 also introduces NULLFS, an immutable and empty root filesystem designed for systems that mount the real root later. Plus, preemption handling is now simpler on most architectures, with further improvements to restartable sequences, workqueues, RCU internals, slab allocation, and type-based hardening. Filesystems and storage receive several updates as well. Non-blocking timestamp updates now function correctly, and filesystems must explicitly opt in to leases rather than receiving them by default. Phoronix has compiled a list of the many exciting changes. Linus Torvalds himself announced the release, which can be downloaded directly from his git tree or from the kernel.org website. Linux 7.0 has a major new version number but it's "largely a numbering reset [...], not a sign of some unusually disruptive release," notes Linuxiac.
  
  
  Read more of this story at Slashdot.
  

• Booking.com Hit By Data Breach
  Booking.com says hackers accessed customer reservation data in a breach that may have exposed booking details, names, email addresses, phone numbers, addresses, and messages shared with accommodations. PCMag reports: On Sunday, users reported receiving emails from Booking.com, warning them that "unauthorized third parties may have been able to access certain booking information associated with your reservation." The email suggests the hackers have already exploited customer information. "We recently noticed suspicious activity affecting a number of reservations, and we immediately took action to contain the issue," Booking.com wrote. "Based on the findings of our investigation to date, accessed information could include booking details and name(s), emails, addresses, phone numbers associated with the booking, and anything that you may have shared with the accommodation." Amsterdam-based Booking.com has now generated new PINs for customer reservations to prevent hackers from accessing them. Still, the incident risks exposing affected customers to potential phishing scams. The Australian Broadcasting Corporation and several Reddit users say they received scam messages from accounts posing as Booking.com.
  
  
  Read more of this story at Slashdot.
  

• Mark Zuckerberg Is Reportedly Building an AI Clone To Replace Him In Meetings
  According to the Financial Times, Meta is developing an AI avatar of Mark Zuckerberg that could interact with employees using his voice, image, mannerisms, and public statements, "so that employees might feel more connected to the founder through interactions with it." The Verge reports: Meta may start allowing creators to make AI avatars of themselves if the experiment with Zuckerberg succeeds, according to the Financial Times. [...] Zuckerberg is involved in training the AI avatar, the Financial Times reports, and has also started spending five to 10 hours per week coding on Meta's other AI projects and participating in technical reviews.
  
  
  Read more of this story at Slashdot.
  

• Maine Set To Become First State With Data Center Ban
  Maine is on track to become the first U.S. state to impose a temporary statewide ban on new data center construction. "Lawmakers in Maine greenlit the text of a bill this week to block data centers from being built in the state until November 2027," reports CNBC. "The measure, which is expected to get final passage in the next few days, also creates a council to suggest potential guardrails for data centers to ensure they don't lead to higher energy prices or other complications for Maine residents." From the report: Maine's bill has a few steps to go through before becoming law, notably whether Gov. Janet Mills will exercise her veto power. Mills asked lawmakers to include an exemption for several areas of the state where data center construction could continue. However, an amendment to do so was stuck down in the House, 29 to 115. Complicating Mills' decision is her campaign to become Maine's next senator. Mills is facing off against Graham Platner, an oyster farmer, in a high-profile Democratic primary. Platner is leading Mills in most recent polls by double digits.
  
  
  Read more of this story at Slashdot.
  

• Open Source Powers the Planet — Get 35% Off Sitewide
  For a limited time, get 35% off sitewide with code EARTH26. Build in-demand skills, earn certifications, and grow your impact with training designed for real-world success. SAVE NOW
  
  The post Open Source Powers the Planet — Get 35% Off Sitewide appeared first on Linux.com.
  

• Implementing Secure Zero-Touch Provisioning in AI and Edge Infrastructure
  By Juha Holkkola, FusionLayer Group How DHCP Changed Connectivity In the late 1990s, the DHCP (Dynamic Host Configuration Protocol) quietly catalyzed a revolution in digital connectivity. Before DHCP was introduced, connecting devices to a network involved manual entry of IP addresses, DNS servers, subnet masks, and gateways. Networks were fragile, prone to errors, and severely [0]
  
  The post Implementing Secure Zero-Touch Provisioning in AI and Edge Infrastructure appeared first on Linux.com.
  

• From DHCP to SZTP – The Trust Revolution
  By Juha Holkkola, FusionLayer Group The Dawn of Effortless Connectivity In the transformative years of the late 1990s, a quiet revolution took place, fundamentally altering how we connect to networks. The introduction of DHCP answered a crucial question, Where are you on the network?!, by automating IP address assignment. This innovation eradicated the manual configuration [0]
  
  The post From DHCP to SZTP – The Trust Revolution appeared first on Linux.com.
  

• Celebrating the Second Year of Linux Man-Pages Maintenance Sponsorship
  Sustaining a Core Part of the Linux Ecosystem The Linux Foundation has announced a second year of sponsorship for the ongoing maintenance of the Linux manual pages (man-pages) project, led by Alejandro (Alex) Colomar. This critical initiative is made possible through the continued support of Google, Hudson River Trading, and Meta, who have renewed their [0]
  
  The post Celebrating the Second Year of Linux Man-Pages Maintenance Sponsorship appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two
  In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface.` We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn [0]
  
  The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights  Part Two appeared first on Linux.com.
  

• Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One
  The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems.` This movement began with the separation [0]
  
  The post Disaggregated Routing with SONiC and VPP: Architecture and Integration  Part One appeared first on Linux.com.
  

• Kubernetes on Bare Metal for Maximum Performance
  When teams consider deploying Kubernetes, one of the first questions that arises is: where should it run? The default answer is often the public cloud, thanks to its flexibility and ease of use. However, a growing number of organizations are revisiting the advantages of running Kubernetes directly on bare metal servers. For workloads that demand [0]
  
  The post Kubernetes on Bare Metal for Maximum Performance appeared first on Linux.com.
  

• How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM
  This article was contributed by Vedrana Vidulin, Head of Responsible AI Unit at Intellias (LinkedIn). As AI becomes central to smart devices, embedded systems, and edge computing, the ability to run language models locally — without relying on the cloud — is essential. Whether its for reducing latency, improving data privacy, or enabling offline functionality, local AI [0]
  
  The post How to Deploy Lightweight Language Models on Embedded Linux with LiteLLM appeared first on Linux.com.
  

• Automating Compliance Management with UTMStacks Open Source SIEM 8 XDR
  Achieving and maintaining compliance with regulatory frameworks can be challenging for many organizations. Managing security controls manually often leads to excessive use of time and resources, leaving less available for strategic initiatives and business growth. Standards such as CMMC, HIPAA, PCI DSS, SOC2 and GDPR demand ongoing monitoring, detailed documentation, and rigorous evidence collection. Solutions [0]
  
  The post Automating Compliance Management with UTMStacks Open Source SIEM & XDR appeared first on Linux.com.
  

• A Simple Way to Install Talos Linux on Any Machine, with Any Provider
  Talos Linux is a specialized operating system designed for running Kubernetes. First and foremost it handles full lifecycle management for Kubernetes control-plane components. On the other hand, Talos Linux focuses on security, minimizing the user’s ability to influence the system. A distinctive feature of this OS is the near-complete absence of executables, including the absence [0]
  
  The post A Simple Way to Install Talos Linux on Any Machine, with Any Provider appeared first on Linux.com.
  

Engadget"Engadget is a web magazine with obsessive daily coverage of everything new in gadgets and consumer electronics"

• Two suspects have been arrested for allegedly shooting at Sam Altman's house
  OpenAI CEO Sam Altman's house may have been the target of a second attack after San Francisco Police Department arrested two suspects for a reported shooting in the Russian Hill neighborhood. The SFPD said in a press release that police officers responded to a "suspicious occurrence of possible shots fired" at around 5:56 AM ET / 2:56 AM PT on Sunday, April 12.
  
  SFPD's Special Investigation Division took over the case and have since detained both 25-year-old Amanda Tom and 23-year-old Muhamad Tarik Hussein, seizing three firearms in the process with the help of a warrant. The two suspects were charged with negligent discharge.
  
  According to the initial police report, as reported by Molotov cocktail at Altman's home, which caused a fire on one of the property's exterior gates, according to SFPD. The San Francisco Standard reported that there were no injuries in either incident. Daniel Moreno-Gama, the 20-year-old suspect from Texas, was charged on April 13 with murder and attempted arson. According to The New York Times, he wrote a document that “discussed the purported risk AI poses to humanity. The document also reportedly included the names and addresses of other executives, investors and board members of AI companies.
  
  Update, April 14, 2026, 2:06 AM ET: Updated with the latest information on the suspect who allegedly hurled a Molotov cocktail at Altman’s home.
  This article originally appeared on Engadget at https://www.engadget.com/ai/two-suspects-have-been-arrested-for-allegedly-shooting-at-sam-altmans-house-142655308.html?src=rss

• Blackmagic's DaVinci Resolve 21 takes on Adobe Lightroom with a new Photo page
  Many creators have already switched from Adobe Premiere to DaVinci Resolve, and now the developer, Blackmagic Design, is going after Lightroom and Photoshop. The Australian company just unveiled DaVinci Resolve 21 in beta at the NAB 2026 broadcast convention with a brand new page called Photo designed to let you do things like crop and color-correct still images. At the same time, the new version introduces video AI tools that can age a subject or reshape their facial features. 
  
  DaVinci Resolve has always let you edit photos as clips on a video timeline, but now it9s greatly simplified with the Photo page. You can import and manage photographs, including RAW files, directly into the new page. Then, you adjust them using the node-based Color page that offers similar and arguably even more powerful tools than Adobe9s Lightroom.
  
  Just as with video, the Color page includes primary color correction, curves, qualifiers and power windows (along with noise reduction, sharpening and more). However, where Resolve9s node-based workflow really shines for photo editing. You can add nodes in series or parallel to build complex grades, then save them to apply to other images or an entire photo album. You can also reframe and crop images at their original source resolution and aspect ratio, without affecting the original image quality. 
  Steve Dent for Engadget
  The LightBox view lets you see an entire album with grades applied. "Select any image and grade it live while seeing the results update across the whole collection in real time. Filter by graded, ungraded, star rating, flag and clip color," Blackmagic Design explains in a press release. Albums, meanwhile, let you build collections like you do in Lightroom. Those also appear as timelines in the Color, Cut and Edit pages for easy access. 
  
  For pro photographers, the Color page includes camera controls that let you tether a Sony or Canon camera to Resolve for live image capture, while adjusting settings like ISO, exposure and white balance. You can save capture presets to "lock in a consistent look before customers shoot," according to Blackmagic. 
  
  Other Resolve tools also work with the Photo page, like the AI Magic Mask that lets you make one click selections of an object or person. It9s also possible to do advanced VFX on still photos using Resolve9s Fusion page, or add OpenFX or FusionFX filters directly on the Photo page. Finally, you can collaborate with others using Blackmagic Cloud, thought that does require a paid subscription. 
  
  I briefly tested the color tool and, as someone who9s admittedly familiar with DaVinci Resolve, I found it easy to grasp. It9s simple to import and organize images (easier than Lightroom in my opinion) and is as powerful as Lightroom9s Develop page for most adjustments, though I really missed the latter9s "Clarity" tool. The node based workflow is powerful, and Resolve makes it easier to apply adjustments to multiple images. When you9re ready to export, that9s done through a special photo-only version of the "Export" page and is relatively intuitive as well. Whether or not I9ll cancel my Photoshop/Lightroom subscription remains to be seen, however. 
  Blackmagic Design
  On top of the Photo page, Blackmagic Design introduced a number of new tools for video and VFX as well. Among the most interesting ones are a series of AI tools for facial adjustments. The AI Face Age Transformer tools lets you analyze a face, enter the subject9s age and adjust the age offset slider to add things like wrinkles and facial fullness. You can also change the way a subject looks through the AI Face Reshaper tool that lets you adjust the eyes, nose, mouth, eyebrows and overall face shape. Plus, you get an AI Blemish Removal feature that reduces the appearance of superficial skin imperfections like acne, discoloration and large pores, while retaining the skin9s natural texture. 
  
  Another tool that will no doubt get used a lot is AI UltraSharpen that can upscale video "to make previously unusable footage sharp in higher resolutions," according to the company. It can also be used to improve slight focus errors. Meanwhile, the AI Motion Deblur fixes slightly blurred images, making it particularly useful for slow motion and freeze frame shots. 
  
  Other key new upgrades, to name just a few, include the ability to edit Fusion effects from within the Cut and Edit pages, the addition of the Krokodove library of compositing tools and new immersive VR tools for delivery to platforms like Meta Quest and YouTube VR. Most of the new features are available in Blackmagic Design9s free version of DaVinci Resolve, though a couple of tools (AI Magic Mask and Film Look Creator) are only available with the paid, $295 DaVinci Resolve Studio version. A complete list of new features is here and you can download the free and paid versions here. 
  
  
  This article originally appeared on Engadget at https://www.engadget.com/apps/blackmagics-davinci-resolve-21-takes-on-adobe-lightroom-with-a-new-photo-page-053034084.html?src=rss

• Xbox CEO called Game Pass 'too expensive for players' in a leaked memo
  Xbox9s new chief exec, Asha Sharma, has only been in charge for a few months but things already seem like they might be changing for the better. Or at the very least, they might be getting cheaper. twice within 15 months, many of us certainly felt that the service had gotten too costly to keep. Xbox is still offering a wide range of titles on Game Pass; the April update is adding indies like Hades 2 and new Double Fine project Kiln alongside AAA hits like the remake of Call of Duty: Modern Warfare. The Verge9s sources suggested that the addition of the CoD franchise might have been a factor in some of the Game Pass price increases, since Microsoft would lose out on revenue by making the latest entries in the series available under the subscription. 
  
  It9s too early to say whether this memo from Sharma means Xbox is on the brink of a resurgence. And there are changes the company could make, like adding ever more complicated tiers, that would further hamper interest and uptake of Game Pass. But acknowledging the problem, even internally, is refreshing to see after so many baffling moves from Xbox in recent years.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/xbox/xbox-ceo-called-game-pass-too-expensive-for-players-in-a-leaked-memo-194749597.html?src=rss

• Games Workshop brings seven classic Warhammer games to Steam for the first time
  Fans of miniature plastic soldiers, rejoice. Games Workshop has brought a host of older Warhammer and Warhammer 40K video games to Steam for the first time, alongside a dozen games that haven9t been available on Valve9s storefront for a few years. The new to Steam releases consist of three games from the Warhammer fantasy range — Classics sale on Steam, with discounts on all 19 re-releases. Plus, you can get discounts on some more recent releases, including the excellent Dawn of War – Definitive Edition and Dawn of War 2 – Anniversary Edition. If you9re new to the Warhammer 40K universe, and would rather avoid a plastic addiction, one of those would be my first port of call, along with the excellent Space Marine 2.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/pc/games-workshop-brings-seven-classic-warhammer-games-to-steam-for-the-first-time-185432304.html?src=rss

• Meta warned by dozens of organizations that facial recognition on its smart glasses would empower predators
  Dozens of civil rights organizations have pic.twitter.com/et7PO9JGW5
  — Insider Paper (@TheInsiderPaper) February 13, 2026
  The technology in question is apparently called Name Tag, for obvious reasons. It uses AI to pull up information about people in a field of view to smart glasses displays. That's about as dystopian as it gets.
  
  The company has reportedly been working on two versions of the toolset. There's one that would only identify people that are currently connected to a Meta platform and another that would identify anyone with a public account on a service like Instagram. It doesn't look like there's any way, as of yet, to use this tech to identify strangers on the street who don't have a Meta account of any kind. In other words, the company should expect a wave of cancellations if this rolls out.
  
  In an emailed statement, a Meta spokesperson told Engadget: "Our competitors offer this type of facial recognition product, we do not. If we were to release such a feature, we would take a very thoughtful approach before rolling anything out."
  
  Public outcry has gotten Meta to back off from facial recognition in the past. The company ended Facebook's photo-tagging system in 2021 after pushback from civil liberties groups and years of costly litigation. Meta paid out billions of dollars to settle biometric privacy lawsuits in Illinois and Texas and another $5 billion to the FTC for a separate privacy case partially tied to facial recognition software.
  
  Update, April 13 2026, 4:45PM ET: This story was updated after publish with comment from Meta.
  This article originally appeared on Engadget at https://www.engadget.com/big-tech/meta-warned-by-dozens-of-organizations-that-facial-recognition-on-its-smart-glasses-would-empower-predators-185000998.html?src=rss

• Retro handheld maker Anbernic's latest device has a swiveling display
  There are plenty of retro gaming handhelds on the market, but Anbernic is introducing one that offers a unique spin on the square shape. The retro gaming handheld maker revealed the RG Rotate on its YouTube channel, showing off a 1:1 display that swivels out much like the T-Mobile Sidekick of yore.
  
  Anbernic often drip feeds details of its upcoming products over time, but so far, we know that the RG Rotate will run on Android, feature an aluminum alloy frame and come in Polar Black and Aurora Silver. Anbernic's video detailed that the handheld will have a "proprietary ultra-thin alloy hinge" that went through "high-durability testing." While the handheld maker has experience with other hinges as seen with its RG DS and RG 34XXSP, the RG Rotate's hinge mechanism could prove to be a new engineering challenge. 
  
  As for the rest of the build, Anbernic is adding swappable L2 and R2 buttons that allow users to adjust the height of the shoulder buttons. From the video, the RG Rotate might only be built with a single USB-C port, which has irked a few fans hoping for an audio jack. Anbernic hasn't announced pricing for the RG Rotate yet, but it'll likely be much cheaper than more premium options from Ayn or Retroid.
  This article originally appeared on Engadget at https://www.engadget.com/gaming/retro-handheld-maker-anbernics-latest-device-has-a-swiveling-display-174705958.html?src=rss

• How to de-Gemini your Google apps
  Over the past couple of years, Google has found ways to stuff Gemini in nearly every app and service it offers. Whether it9s Gmail with its AI inbox or Chrome with its chat sidebar, Gemini is now inescapable inside of Workspace. I don9t know about you, but I don9t need an AI to tell me how to write a =SUM equation in Sheets or an outline for a first draft. Most of the time, I find Gemini is a distraction. If you feel the same way, this how-to is for you.    
  How to remove Gemini from your personal Workspace account From the "General" tab of Gmail9s settings menu, look for the Smart features checkbox. Igor Bonifacic for Engadget
  To turn Gemini off, you will need to disable two separate sets of options. The first set covers a set of features, including smart compose, that are shared across Gmail, Chat and Meet — so if you turn them off in one app, they won9t be available in any of the three. All of this is most easily done through Gmail9s web client.  
  
  In Gmail, tap the cog icon.
  
  Select See all settings.
  
  Under the General tab, scroll down to find Smart features.
  
  Disable Turn on smart features in Gmail, Chat, and Meet.  
  
  In Japan, Switzerland, the United Kingdom or European Economic Area, smart features are turned off by default.  
  
  Next, turn your attention to Workspace. 
  
  In Gmail, tap the cog icon.
  
  Select See all settings.
  
  Under the General tab, scroll down and click Manage Workspace smart feature settings.
  
  Toggle off smart features in Google Workspace and Smart features in other Google products.
  
  A word of warning: completely disabling smart features in Google Workspace turns off not only Gemini integration but also access to basic capabilities like spelling and grammar corrections. You9ll also lose features that have been Google staples for years. In Gmail, for example, the app will stop sorting incoming emails by priority, a notification at the top of the screen informing you that smart features are required for inbox categorization. Whatever Google9s motivation for this state of affairs, it9s a design decision that actively discourages users from disabling Gemini integration. 
  Disabling Gemini in Google Workspace will also turn off other features. Igor Bonifacic for Engadget
  If you want to rid yourself of Gemini but would still like to use some of the other features the company offers through Gmail and its other apps, I recommend leaving the first set of smart features on while disabling the Workspace-specific ones. You can also opt to turn off some of the features included in the first group, while leaving others on. Below is a list of those features, with a brief overview of the less self-explanatory ones.    
  
  Grammar
  
  Spelling
  
  Autocorrect
  
  Smart Compose — as you write an email, Gmail will generate predictive writing suggestions  
  
  Smart Compose personalization — as you write, Gmail will tailor Smart Compose suggestions to your writing style 
  
  Nudges — Gmail will generate notifications prompting you to respond or follow up on unanswered emails   
  
  Smart Reply — Gmail will generate suggestions on how to respond to an email
  
  Package tracking — Google will display shipping updates inside of Gmail
  
  Desktop notifications — Yes, for some reason you need the power of AI to get notifications on your PC 
  
  Unfortunately, Google doesn9t offer this same level of granular control when it comes to smart features inside of Workspace. For instance, if you turn off Gemini in Docs, Calendar won9t automatically display events from Gmail. Again, Google really wants to dissuade you from disabling Gemini. 
  How to remove Gemini from your professional Workspace account
  If your workplace uses Google Workspace, all of the above options should be present in Gmail9s settings menu, and you can follow the same steps to turn off most of the smart features Google offers. Unfortunately, the second part of the process does nothing. You will still see Gemini in Docs, Sheets and elsewhere, even with smart features in Workspace turned off. Only your admin can completely turn off Gemini for you.
  This article originally appeared on Engadget at https://www.engadget.com/ai/how-to-de-gemini-your-google-apps-170000462.html?src=rss

• Majority of Australian kids are still on banned social media platforms, study finds
  Many countries are pursuing social media bans for anyone under 16, but a recent poll is putting the effectiveness of such laws into question. The Molly Rose Foundation, a charity organization that focuses on preventing online harm, recently published a study that polled 1,050 Australian children between ages 12 and 15 in March. The study's results showed that 61 percent of those between 12 and 15 who previously had access to affected social media platforms still have one or more active accounts.
  
  Australia made a first-in-the-world decision to ban social media for those under 16 years old, beginning on December 10. While it's only been a few months since the ban went into effect, the foundation's poll concluded that the ban doesn't have a "clear positive or negative impact on children’s wellbeing." The study also noted that 70 percent of children trying to get on restricted platforms said that it was easy to get around the ban.
  
  "These results raise major questions about the effectiveness of Australia’s social media ban and show it would be a high stakes gamble for the UK to follow suit now," Andy Burrows, the CEO of the Molly Rose Foundation, said in a statement.
  
  The Australian government has also published its own findings in March that examined how social media platforms are complying with the ban. According to the government's report, Snap, TikTok, Facebook, Instagram and YouTube are currently being investigated for potential non-compliance. The report added that Australia's eSafety agency is finalizing these investigations and will make a decision about enforcement by the middle of 2026. According to the eSafety report, the agency's enforcement powers include issuing infringement notices, seeking court-ordered injunctions and "civil penalties up to A$49.5 million," or around $35 million USD.
  This article originally appeared on Engadget at https://www.engadget.com/social-media/majority-of-australian-kids-are-still-on-banned-social-media-platforms-study-finds-162922768.html?src=rss

• Meta is reportedly building an AI clone of Mark Zuckerberg
  Picture this: You're a senior Meta employee looking for feedback from the CEO. But, instead of hearing from the real Mark Zuckerberg, you get a response from a Zuckerberg AI character. As absurd as that sounds, it could eventually be a reality. 
  
  Meta is reportedly working on such an AI character, training it on Zuckerberg's mannerisms, tone and publicly available statements, AI tool follows last month's news that Zuckerberg is creating an AI agent to help him do his job, first reported by the Wall Street Journal. It would reportedly do things like finding answers for him, but there aren't many details of the still developing AI agent. 
  This article originally appeared on Engadget at https://www.engadget.com/ai/meta-is-reportedly-building-an-ai-clone-of-mark-zuckerberg-130242840.html?src=rss

• Roblox introduces mandatory age-gated account tiers
  Roblox is preparing to roll out its biggest change since starting age verification late last year. While that program was initially focused on chat access, today’s news is about age-segregating the games on the massive platform.
  
  Starting in mid-May, users will be pushed into one of three worlds: Roblox Kids, Roblox Select or Roblox. The exact age ranges of these groups will vary by territory, but in the US they are 5-8 for Kids, 9-15 for Select and 16+ for the regular account. These three account types then align with the platform’s current content maturity labels, which divide games into Minimal, Mild, Moderate and Restricted.
  
  Kids accounts will be the most restricted, with chat off by default and only Minimal and Mild experiences available.
  
  Ages 9-15 get to chat with kids in their age group and “trusted friends” that have passed the parent test, and will be able to access Moderate content as well as games for babies.
  
  At 16, teens will automatically be moved to a full-fat Roblox account with all of its features, but not all of the games. Content marked as Restricted will only unlock once they turn 18.
  Roblox
  Roblox says over half of its users are now age checked, whether through ID verification or face scans. With the new account types rolled out globally — which the company says should be done by June — it’ll start forcing users who haven’t completed an age check into a Kids-like experience, with no access to chat or games rated higher than Mild. 
  
  Once age verification is completed, Roblox still faces the task of ensuring that its vast collection of user-created content is actually age-appropriate. Its solution to this is, of course, ID verification, AI and upcharges.
  
  Developers will have to verify their identity and pony up $5 a month for Roblox Plus to show “a long-term commitment to the platform.” The wisdom is that, with these hurdles cleared, a developer will surely apply the correct maturity label to their games. On the off-chance that an experience is mislabeled, Roblox’s AI moderation will keep tabs on game instances to make sure what9s happening on-screen and in-chat matches the maturity label. On the surface, this does leave a gap where a toddler could end up playing an incorrectly labeled mature game before the AI catches it. Don’t fret, though, as Roblox says users over 16 “play new games first,” which surely isn’t an overgeneralization and will ensure that no child ever plays a mature game.
  
  Roblox also previewed a pair of new parental control features coming in June. First, parents will be able to block any game and manage direct chat access until a child turns 16. Previously, kids over 13 could unblock experiences by themselves. Second, parents will be able to approve games outside of their child’s age bracket on a case-by-case basis. Roblox gave an example of a younger child wanting to play a game with their older sibling for this feature’s utility.
  
  Of course, the big blocky elephant in the room is the efficacy of automated age verification. Reporting from Wired in January suggested even enterprising toddlers might be able to get past the platform’s age checks, which somewhat undermines everything Roblox is trying to achieve. Speaking to press ahead of today’s announcement, Roblox Chief Safety Officer Matt Kaufman said, “If we get it wrong … we offer users multiple ways to correct that.” He added that the platform is “constantly measuring users’ behavior and comparing that against what their age-check data says. If we see those things divert, then we will just ask people to run through the age process again.”
  This article originally appeared on Engadget at https://www.engadget.com/gaming/roblox-introduces-mandatory-age-gated-account-tiers-121535702.html?src=rss

• EU OS: A Bold Step Toward Digital Sovereignty for Europe
  Image
  A new initiative, called "EU OS," has been launched to develop a Linux-based operating system tailored specifically for the public sector organizations of the European Union (EU). This community-driven project aims to address the EU's unique needs and challenges, focusing on fostering digital sovereignty, reducing dependency on external vendors, and building a secure, self-sufficient digital ecosystem.
  What Is EU OS?
  EU OS is not an entirely novel operating system. Instead, it builds upon a Linux foundation derived from Fedora, with the KDE Plasma desktop environment. It draws inspiration from previous efforts such as France's GendBuntu and Munich's LiMux, which aimed to provide Linux-based systems for public sector use. The goal remains the same: to create a standardized Linux distribution that can be adapted to different regional, national, and sector-specific needs within the EU.
  
  Rather than reinventing the wheel, EU OS focuses on standardization, offering a solid Linux foundation that can be customized according to the unique requirements of various organizations. This approach makes EU OS a practical choice for the public sector, ensuring broad compatibility and ease of implementation across diverse environments.
  The Vision Behind EU OS
  The guiding principle of EU OS is the concept of "public money – public code," ensuring that taxpayer money is used transparently and effectively. By adopting an open-source model, EU OS eliminates licensing fees, which not only lowers costs but also reduces the dependency on a select group of software vendors. This provides the EU’s public sector organizations with greater flexibility and control over their IT infrastructure, free from the constraints of vendor lock-in.
  
  Additionally, EU OS offers flexibility in terms of software migration and hardware upgrades. Organizations can adapt to new technologies and manage their IT evolution at a manageable cost, both in terms of finances and time.
  
  However, there are some concerns about the choice of Fedora as the base for EU OS. While Fedora is a solid and reliable distribution, it is backed by the United States-based Red Hat. Some argue that using European-backed projects such as openSUSE or KDE's upcoming distribution might have aligned better with the EU's goal of strengthening digital sovereignty.
  Conclusion
  EU OS marks a significant step towards Europe's digital independence by providing a robust, standardized Linux distribution for the public sector. By reducing reliance on proprietary software and vendors, it paves the way for a more flexible, cost-effective, and secure digital ecosystem. While the choice of Fedora as the base for the project has raised some questions, the overall vision of EU OS offers a promising future for Europe's public sector in the digital age.
  
  Source: It's FOSS
  European Union

• Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linus Torvalds Acknowledges Missed Release of Linux 6.14 Due to Oversight
  
  Linux kernel lead developer Linus Torvalds has admitted to forgetting to release version 6.14, attributing the oversight to his own lapse in memory. Torvalds is known for releasing new Linux kernel candidates and final versions on Sunday afternoons, typically accompanied by a post detailing the release. If he is unavailable due to travel or other commitments, he usually informs the community ahead of time, so users don’t worry if there’s a delay.
  
  In his post on March 16, Torvalds gave no indication that the release might be delayed, instead stating, “I expect to release the final 6.14 next weekend unless something very surprising happens.” However, Sunday, March 23rd passed without any announcement.
  
  On March 24th, Torvalds wrote in a follow-up message, “I’d love to have some good excuse for why I didn’t do the 6.14 release yesterday on my regular Sunday afternoon schedule,” adding, “But no. It’s just pure incompetence.” He further explained that while he had been clearing up unrelated tasks, he simply forgot to finalize the release. “D'oh,” he joked.
  
  Despite this minor delay, Torvalds’ track record of successfully managing the Linux kernel’s development process over the years remains strong. A single day’s delay is not critical, especially since most Linux users don't urgently need the very latest version.
  
  The new 6.14 release introduces several important features, including enhanced support for writing drivers in Rust—an ongoing topic of discussion among developers—support for Qualcomm’s Snapdragon 8 Elite mobile chip, a fix for the GhostWrite vulnerability in certain RISC-V processors from Alibaba’s T-Head Semiconductor, and a completed NTSYNC driver update that improves the WINE emulator’s ability to run Windows applications, particularly games, on Linux.
  
  Although the 6.14 release went smoothly aside from the delay, Torvalds expressed that version 6.15 may present more challenges due to the volume of pending pull requests. “Judging by my pending pile of pull requests, 6.15 will be much busier,” he noted.
  
  You can download the latest kernel here.
  Linus Torvalds kernel

• AerynOS 2025.03 Alpha Released with GNOME 48, Mesa 25, and Linux Kernel 6.13.8
  Image
  AerynOS 2025.03 has officially been released, introducing a variety of exciting features for Linux users. The release includes the highly anticipated GNOME 48 desktop environment, which comes with significant improvements like HDR support, dynamic triple buffering, and a Wayland color management protocol. Other updates include a battery charge limiting feature and a Wellbeing option aimed at improving user experience.
  
  This release, while still in alpha, incorporates Linux kernel 6.13.8 and the updated Mesa 25.0.2 graphics stack, alongside tools like LLVM 19.1.7 and Vulkan SDK 1.4.309.0. Additionally, the Moss package manager now integrates os-info to generate more detailed OS metadata via a JSON file.
  
  Future plans for AerynOS include automated package updates, easier rollback management, improved disk handling with Rust, and fractional scaling enabled by default. The installer has also been revamped to support full disk wipes and dynamic partitioning.
  
  Although still considered an alpha release, AerynOS 2025.03 can be downloaded and tested right now from its official website.
  
  Source: 9to5Linux
  AerynOS

• Xojo 2025r1: Big Updates for Developers with Linux ARM Support, Web Drag and Drop, and Direct App Store Publishing
  Image
  Xojo has just rolled out its latest release, Xojo 2025 Release 1, and it’s packed with features that developers have been eagerly waiting for. This major update introduces support for running Xojo on Linux ARM, including Raspberry Pi, brings drag-and-drop functionality to the Web framework, and simplifies app deployment with the ability to directly submit apps to the macOS and iOS App Stores.
  
  Here’s a quick overview of what’s new in Xojo 2025r1:
  1. Linux ARM IDE Support
  Xojo 2025r1 now allows developers to run the Xojo IDE on Linux ARM devices, including popular platforms like Raspberry Pi. This opens up a whole new world of possibilities for developers who want to create apps for ARM-based devices without the usual complexity. Whether you’re building for a Raspberry Pi or other ARM devices, this update makes it easier than ever to get started.
  2. Web Drag and Drop
  One of the standout features in this release is the addition of drag-and-drop support for web applications. Now, developers can easily drag and drop visual controls in their web projects, making it simpler to create interactive, user-friendly web applications. Plus, the WebListBox has been enhanced with support for editable cells, checkboxes, and row reordering via dragging. No JavaScript required!
  3. Direct App Store Publishing
  Xojo has also streamlined the process of publishing apps. With this update, developers can now directly submit macOS and iOS apps to App Store Connect right from the Xojo IDE. This eliminates the need for multiple steps and makes it much easier to get apps into the App Store, saving valuable time during the development process.
  4. New Desktop and Mobile Features
  This release isn’t just about web and Linux updates. Xojo 2025r1 brings some great improvements for desktop and mobile apps as well. On the desktop side, all projects now include a default window menu for macOS apps. On the mobile side, Xojo has introduced new features for Android and iOS, including support for ColorGroup and Dark Mode on Android, and a new MobileColorPicker for iOS to simplify color selection.
  5. Performance and IDE Enhancements
  Xojo’s IDE has also been improved in several key areas. There’s now an option to hide toolbar captions, and the toolbar has been made smaller on Windows. The IDE on Windows and Linux now features modern Bootstrap icons, and the Documentation window toolbar is more compact. In the code editor, developers can now quickly navigate to variable declarations with a simple Cmd/Ctrl + Double-click. Plus, performance for complex container layouts in the Layout Editor has been enhanced.
  What Does This Mean for Developers?
  Xojo 2025r1 brings significant improvements across all the platforms that Xojo supports, from desktop and mobile to web and Linux. The added Linux ARM support opens up new opportunities for Raspberry Pi and ARM-based device development, while the drag-and-drop functionality for web projects will make it easier to create modern, interactive web apps. The ability to publish directly to the App Store is a game-changer for macOS and iOS developers, reducing the friction of app distribution.
  How to Get Started
  Xojo is free for learning and development, as well as for building apps for Linux and Raspberry Pi. If you’re ready to dive into cross-platform development, paid licenses start at $99 for a single-platform desktop license, and $399 for cross-platform desktop, mobile, or web development. For professional developers who need additional resources and support, Xojo Pro and Pro Plus licenses start at $799. You can also find special pricing for educators and students.
  
  Download Xojo 2025r1 today at xojo.com.
  Final Thoughts
  With each new release, Xojo continues to make cross-platform development more accessible and efficient. The 2025r1 release is no exception, delivering key updates that simplify the development process and open up new possibilities for developers working on a variety of platforms. Whether you’re a Raspberry Pi enthusiast or a mobile app developer, Xojo 2025r1 has something for you.
  Xojo ARM

• New 'Mirrored' Network Mode Introduced in Windows Subsystem for Linux
  
  Microsoft's Windows Subsystem for Linux (WSL) continues to evolve with the release of WSL 2 version 0.0.2. This update introduces a set of opt-in preview features designed to enhance performance and compatibility.
  
  Key additions include "Automatic memory reclaim" which dynamically optimizes WSL's memory footprint, and "Sparse VHD" to shrink the size of the virtual hard disk file. These improvements aim to streamline resource usage.
  
  Additionally, a new "mirrored networking mode" brings expanded networking capabilities like IPv6 and multicast support. Microsoft claims this will improve VPN and LAN connectivity from both the Windows host and Linux guest. 
  
  Complementing this is a new "DNS Tunneling" feature that changes how DNS queries are resolved to avoid compatibility issues with certain network setups. According to Microsoft, this should reduce problems connecting to the internet or local network resources within WSL.
  
  Advanced firewall configuration options are also now available through Hyper-V integration. The new "autoProxy" feature ensures WSL seamlessly utilizes the Windows system proxy configuration.
  
  Microsoft states these features are currently rolling out to Windows Insiders running Windows 11 22H2 Build 22621.2359 or later. They remain opt-in previews to allow testing before final integration into WSL.
  
  By expanding WSL 2 with compelling new capabilities in areas like resource efficiency, networking, and security, Microsoft aims to make Linux on Windows more performant and compatible. This evolutionary approach based on user feedback highlights Microsoft's commitment to WSL as a key part of the Windows ecosystem.
  Windows

• Linux Threat Report: Earth Lusca Deploys Novel SprySOCKS Backdoor in Attacks on Government Entities
  
  The threat actor Earth Lusca, linked to Chinese state-sponsored hacking groups, has been observed utilizing a new Linux backdoor dubbed SprySOCKS to target government organizations globally. 
  
  As initially reported in January 2022 by Trend Micro, Earth Lusca has been active since at least 2021 conducting cyber espionage campaigns against public and private sector targets in Asia, Australia, Europe, and North America. Their tactics include spear-phishing and watering hole attacks to gain initial access. Some of Earth Lusca's activities overlap with another Chinese threat cluster known as RedHotel.
  
  In new research, Trend Micro reveals Earth Lusca remains highly active, even expanding operations in the first half of 2023. Primary victims are government departments focused on foreign affairs, technology, and telecommunications. Attacks concentrate in Southeast Asia, Central Asia, and the Balkans regions. 
  
  After breaching internet-facing systems by exploiting flaws in Fortinet, GitLab, Microsoft Exchange, Telerik UI, and Zimbra software, Earth Lusca uses web shells and Cobalt Strike to move laterally. Their goal is exfiltrating documents and credentials, while also installing additional backdoors like ShadowPad and Winnti for long-term spying.
  
  The Command and Control server delivering Cobalt Strike was also found hosting SprySOCKS - an advanced backdoor not previously publicly reported. With roots in the Windows malware Trochilus, SprySOCKS contains reconnaissance, remote shell, proxy, and file operation capabilities. It communicates over TCP mimicking patterns used by a Windows trojan called RedLeaves, itself built on Trochilus.
  
  At least two SprySOCKS versions have been identified, indicating ongoing development. This novel Linux backdoor deployed by Earth Lusca highlights the increasing sophistication of Chinese state-sponsored threats. Robust patching, access controls, monitoring for unusual activities, and other proactive defenses remain essential to counter this advanced malware.
  
  The Trend Micro researchers emphasize that organizations must minimize attack surfaces, regularly update systems, and ensure robust security hygiene to interrupt the tactics, techniques, and procedures of relentless threat groups like Earth Lusca.
  Security

• Linux Kernel Faces Reduction in Long-Term Support Due to Maintenance Challenges
  
  The Linux kernel is undergoing major changes that will shape its future development and adoption, according to Jonathan Corbet, Linux kernel developer and executive editor of Linux Weekly News. Speaking at the Open Source Summit Europe, Corbet provided an update on the latest Linux kernel developments and a glimpse of what's to come.
  
  A major change on the horizon is a reduction in long-term support (LTS) for kernel versions from six years to just two years. Corbet explained that maintaining old kernel branches indefinitely is unsustainable and most users have migrated to newer versions, so there's little point in continuing six years of support. While some may grumble about shortened support lifecycles, the reality is that constantly backporting fixes to ancient kernels strains maintainers.
  
  This maintainer burnout poses a serious threat, as Corbet highlighted. Maintaining Linux is largely a volunteer effort, with only about 200 of the 2,000+ developers paid for their contributions. The endless demands on maintainers' time from fuzz testing, fixing minor bugs, and reviewing contributions takes a toll. Prominent maintainers have warned they need help to avoid collapse. Companies relying on Linux must realize giving back financially is in their interest to sustain this vital ecosystem. 
  
  The Linux kernel is also wading into waters new with the introduction of Rust code. While Rust solves many problems, it also introduces new complexities around language integration, evolving standards, and maintainer expertise. Corbet believes Rust will pass the point of no return when core features depend on it, which may occur soon with additions like Apple M1 GPU drivers. Despite skepticism in some corners, Rust's benefits likely outweigh any transition costs.
  
  On the distro front, Red Hat's decision to restrict RHEL cloning sparked community backlash. While business considerations were at play, Corbet noted technical factors too. Using older kernels with backported fixes, as RHEL does, risks creating divergent, vendor-specific branches. The Android model of tracking mainline kernel dev more closely has shown security benefits. Ultimately, Linux works best when aligned with the broader community.
  
  In closing, Corbet recalled the saying "Linux is free like a puppy is free." Using open source seems easy at first, but sustaining it long-term requires significant care and feeding. As Linux is incorporated into more critical systems, that maintenance becomes ever more crucial. The kernel changes ahead are aimed at keeping Linux healthy and vibrant for the next generation of users, businesses, and developers.
  kernel

• Linux Celebrates 32 Years with the Release of 6.6-rc2 Version
  
  Today marks the 32nd anniversary of Linus Torvalds introducing the inaugural Linux 0.01 kernel version, and celebrating this milestone, Torvalds has launched the Linux 6.6-rc2. Among the noteworthy updates are the inclusion of a feature catering to the ASUS ROG Flow X16 tablet's mode handling and the renaming of the new GenPD subsystem to pmdomain.
  
  The Linux 6.6 edition is progressing well, brimming with exciting new features that promise to enhance user experience. Early benchmarks are indicating promising results, especially on high-core-count servers, pointing to a potentially robust and efficient update in the Linux series.
  
  Here is what Linus Torvalds had to say in today's announcement:
  Another week, another -rc.I think the most notable thing about 6.6-rc2 is simply that it'sexactly 32 years to the day since the 0.01 release. And that's a roundnumber if you are a computer person.Because other than the random date, I don't see anything that reallystands out here. We've got random fixes all over, and none of it looksparticularly strange. The genpd -> pmdomain rename shows up in thediffstat, but there's no actual code changes involved (make sure touse "git diff -M" to see them as zero-line renames).And other than that, things look very normal. Sure, the architecturefixes happen to be mostly parisc this week, which isn't exactly theusual pattern, but it's also not exactly a huge amount of changes.Most of the (small) changes here are in drivers, with some tracingfixes and just random things. The shortlog below is short enough toscroll through and get a taste of what's been going on. Linus Torvalds

• Introducing Bavarder: A User-Friendly Linux Desktop App for Quick ChatGPT Interaction
  
  Want to interact with ChatGPT from your Linux desktop without using a web browser?
  
  Bavarder, a new app, allows you to do just that.
  
  Developed with Python and GTK4/libadwaita, Bavarder offers a simple concept: pose a question to ChatGPT, receive a response, and promptly copy the answer (or your inquiry) to the clipboard for pasting elsewhere.
  
  With an incredibly user-friendly interface, you won't require AI expertise (or a novice blogger) to comprehend it. Type your question in the top box, click the blue send button, and wait for a generated response to appear at the bottom. You can edit or modify your message and repeat the process as needed.
  
  During our evaluation, Bavarder employed BAI Chat, a GPT-3.5/ChatGPT API-based chatbot that's free and doesn't require signups or API keys. Future app versions will incorporate support for alternative backends, such as ChatGPT 4 and Hugging Chat, and allow users to input an API key to utilize ChatGPT3.
  
  At present, there's no option to regenerate a response (though you can resend the same question for a potentially different answer). Due to the lack of a "conversation" view, tracking a dialogue or following up on answers can be challenging — but Bavarder excels for rapid-fire questions.
  
  As with any AI, standard disclaimers apply. Responses might seem plausible but could contain inaccurate or false information. Additionally, it's relatively easy to lead these models into irrational loops, like convincing them that 2 + 2 equals 106 — so stay alert!
  
  Overall, Bavarder is an attractive app with a well-defined purpose. If you enjoy ChatGPT and similar technologies, it's worth exploring.
  ChatGPT AI

• LibreOffice 7.5.3 Released: Third Maintenance Update Brings 119 Bug Fixes to Popular Open-Source Office Suite
  
  Today, The Document Foundation unveiled the release and widespread availability of LibreOffice 7.5.3, which serves as the third maintenance update to the current LibreOffice 7.5 open-source and complimentary office suite series.
  
  Approximately five weeks after the launch of LibreOffice 7.5.2, LibreOffice 7.5.3 arrives with a new set of bug fixes for those who have successfully updated their GNU/Linux system to the LibreOffice 7.5 series.
  
  LibreOffice 7.5.3 addresses a total of 119 bugs identified by users or uncovered by LibreOffice developers. For a more comprehensive understanding of these bug fixes, consult the RC1 and RC2 changelogs.
  
  You can download LibreOffice 7.5.3 directly from the LibreOffice website��or from SourceForge as binary installers for DEB or RPM-based GNU/Linux distributions. A source tarball is also accessible for individuals who prefer to compile the software from sources or for system integrators.
  
  All users operating the LibreOffice 7.5 office suite series should promptly update their installations to the new point release, which will soon appear in the stable software repositories of your GNU/Linux distributions.
  
  In early February 2023, LibreOffice 7.5 debuted as a substantial upgrade to the widely-used open-source office suite, introducing numerous features and improvements. These enhancements encompass major upgrades to dark mode support, new application and MIME-type icons, a refined Single Toolbar UI, enhanced PDF Export, and more.
  
  Seven maintenance updates will support LibreOffice 7.5 until November 30th, 2023. The next point release, LibreOffice 7.5.4, is scheduled for early June and will include additional bug fixes.
  
  The Document Foundation once again emphasizes that the LibreOffice office suite's "Community" edition is maintained by volunteers and members of the Open Source community. For enterprise implementations, they suggest using the LibreOffice Enterprise family of applications from ecosystem partners.
  LibreOffice