Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• New fwupd 1.8.4 starts work on BIOS control — fwupd now reads your system BIOS settings, and has the ability to change them if the user desires (and has authorization to do).
• Fwupd 1.8.4 Supports More Hardware, Starts Allowing To Make BIOS Changes From Linux
• Canonical Continues Snap’ing Up Linux Gaming For Ubuntu — Canonical has been indicating they want to improve the Linux gaming experience on Ubuntu (and hiring for it) and ensure its a dominant platform for Linux gaming.
• Pine’ Star64 RISC-V based Single Board Computer
• Pine64 reveals the Star64 RISC-V based Single Board Computer — Along the long leading edges you’ll find PCIe on one end and GPIO on the other. At one end of the board you’ll find a digital video output, a double-stacked Gigabit Ethernet port and a 12V barrel plug for power. On the opposite side, you’ll find 3x USB 2.0, 1x USB 3.0, an audio jack as well as a power button. There are also two U.FL ports for antennas – one for bluetooth and the other for WiFi.
• NetworkManager 1.40 Released With Multi-Path TCP Support — Multi-Path TCP has come together in the kernel over the past two years for this standard, allowing TCP connections to use multiple paths for greater performance/efficiency and added redundancy.
• Debian General Resolution To Decide What To Do With Non-Free Firmware — The basic problem is that the use of downloadable firmware in computer systems is on the rise and most of that firmware is not free software. The official Debian installer only incorporates free software (and firmware), which leads to serious problems for many users.
• Debian Proposes Better Discovery of non-free Firmware Images
• General Resolution: non-free firmware
• Office Hours 11 — We launch our new site LIVE!

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Red Hat’s next steps, according to its new CEO — "We expect to see an 800% increase in edge applications built by 2024. We want those applications to be part of the open hybrid cloud. We think we have a unique position to connect end devices back to the assets that you have in your data centers and cloud that you use to run your company today."
• PREEMPT_RT Might Be Ready To Finally Land In Linux 5.20 — The Linux real-time patch series has been getting smaller with time and quite close to crossing the finish line with just around 50 patches to be merged.
• Google Engineers Go Big on Carbon - A Hopeful Successor To C++ — The Carbon programming language hopes to be the gradual successor to C++ and makes for an easy transition path moving forward.
• ByteDance Working To Make Kernel Booting Faster — This patch series touching around 100 lines of Linux kernel code is what they are now hoping to upstreamed.
• Happy Birthday This Week in GNOME — I am pleased to announce that TWIG is having its first anniversary!
• This Week in GNOME
• This Week in KDE
• #53 GUADEC 2022 · This Week in GNOME
• Btrfs Native Encryption Being Worked On — My goal in sending out this RFC is to get feedback on whether these are going in a reasonable direction; while there are a couple of additional parts, they're fundamentally minor compared to this.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Fedora 37 Gets A Batch Of New Features Approved — Fedora 37 is working its way toward release before the end of October.
• The Performance Cost To A Proposed Fedora 37 CFLAGS/CXXFLAGS Change
• Fedora CoreOS Hopes To Become An Official Edition With Fedora 37
• Fedora 37 Looks To Ship With Stratis Storage 3.1 Support
• Fedora 37 Proposing To Allow Unrestricted Access To Flathub
• Fedora Magazine: Accessibility in Fedora Workstation — I am very happy to announce that Red Hat has just hired Lukas Tyrychtr, who is a blind software engineer, to lead our effort in making sure Red Hat Enterprise Linux and Fedora Workstation has excellent accessibility support!
• Firefox 102 Available With Transform Streams, Geoclue On Linux — Firefox 102.0 isn't the most exciting end-user update but does have some developer additions like Transform Streams support and support for Geoclue with Firefox Linux builds for geolocation.
• Thunderbird 102 Released With Big Improvements To This Leading Open-Source Mail Client — Thunderbird 102 introduces a new address book implementation, a new spaces toolbar, a new import/export wizard, a redesigned message header, and other "quality of life" updates. There are also some extras with Thunderbird 102 like adding Matrix chat support.
• Matrix.org Security release: Synapse 1.61.1 — Today we're exceptionally releasing Synapse 1.61.1, which comes as a security release. Server administrators are encouraged to update as soon as possible.
• Synapse Release v1.61.1
• Synapse Advisory — URL previews of unusual or maliciously-crafted pages can crash Synapse media repositories or Synapse monoliths.
• Valve More Than Doubles Steam Deck Production, Q3 Reservations Starting Soon — Valve just tweeted out some great news for SteamDeck fans, saying it has more than doubled the number of Steam Decks being produced every week. The company also says it just sent out the last batch of Q2 reservation emails and is prepared to start kicking off Q3 reservations on June 30th 2022.
• Check Your Steam Deck Order Status
• Vim 9.0 — The main goal of Vim9 script is to drastically improve performance. This is accomplished by compiling commands into instructions that can be efficiently executed. An increase in execution speed of 10 to 100 times can be expected.
• Vim 9.0 Released With New Vim9 Script For 10~100x Execution Speed
• Linode Security Digest — June 20-26, 2022
• Apple M2 Enablement For Linux Begins With Good Progress — Hector Martin on Monday began his Linux M2 bring-up effort, including with a livestream of this reverse engineering / debugging / kernel hacking effort. Hector confirmed NVMe, USB, and SMC functionality are working for the M2 on the first day of the effort.
• M2 Asahi Linux bring-up YouTube Stream

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Linux has been bitten by its most high-severity vulnerability in years — Dirty Pipe has the potential to smudge people using Linux and Linux derivitives.
• Catalin Cimpanu on Twitter — “DirtyPipe (CVE-2022-0847) is a vulnerability in the Linux kernel since 5.8 which allows overwriting data in arbitrary read-only files. This leads to privilege escalation. It is similar to CVE-2016-5195 “Dirty Cow” but is easier to exploit.
• Ron Amadeo on Twitter — “By my count, Dirty Pipe affects only brand-new Android 12 devices like the Pixel 6 and S22. Linux 5.8 and above has only been an Android option for five months."
• Canonical Patches “Dirty Pipe” Vulnerability in Ubuntu 21.10 and 20.04 LTS
• BLASTY on Twitter: “Hacked up a quick Dirty Pipe PoC that spawns a shell by hijacking (and restoring) the contents of a setuid binary.”
• The Dirty Pipe Vulnerability — The Dirty Pipe Vulnerability documentation
• AMD Posts Some New Linux Job Openings From Client CPU To Server — AMD would need a lot more Linux engineers to achieve the same level of timely Linux support and low-level kernel enhancements that Intel has been focused on for years, especially when it comes to Intel's open-source work beyond just the actual hardware device enablement.
• Introducing Native Matrix VoIP with Element Call! — What’s more, Element Call is built entirely on Matrix: it doesn’t need any additional servers to get going. You can run it against your existing Matrix homeserver to provide complete self-sovereignty… while still being able to talk to anyone else anywhere on the wider Matrix network! We will also be able to automatically use Matrix’s end-to-end encryption to secure all Element Call conferences
• call.element.io
• https://github.com/vector-im/element-call/issues
• Extending Matrix’s E2EE calls to multiparty
• Danielle Foré on Twitter — Okay it’s been a full month and this situation still isn’t resolved, and it sucks for you to just be completely in the dark and it’s pretty obvious something is up and people are asking what’s going on, so here is my side of the story 🧵
• Danielle gives an update on elementary Reddit Thread
• Jupiter Broadcasting East Coast Meetup