Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• GNOME 44 Released — GNOME 44 is code-named “Kuala Lumpur”, in recognition of the work done by the organizers of GNOME.Asia 2022.
• GNOME 44 Released With Many Desktop Enhancements
• GNOME 44 Getting New Background Apps UI
• Ubuntu Touch OTA-1 Focal Release — This is the first OTA for Ubuntu 20.04 (Focal) with major features, this is an Opt-In and not mandatory update.
• First Ubuntu Touch OTA Release Based on Ubuntu 20.04 LTS Is Out Now
• Ubuntu Cinnamon Flavor Status Announcement — Ubuntu Cinnamon started as a small idea in my head, in 2019. I was ELEVEN.
• ItzSwirlz (Joshua Peisach)
• Ubuntu Cinnamon Remix Becomes Official Ubuntu Flavor
• Microsoft’s CBL-Mariner Linux Distribution Continues Cultivating More Packages — With today's CBL-Mariner 2.0.20230321 they have continued cultivating more packages for the distribution.
• CBL-Mariner GitHub
• We’re no longer sunsetting the Free Team plan — After listening to feedback and consulting our community, it’s clear that we made the wrong decision in sunsetting our Free Team plan.
• Google discloses CentOS Linux kernel vulnerabilities following failure to issue timely fixes — Google Project Zero's security researcher Jann Horn learned that kernel fixes made to stable trees are not backported to many enterprise versions of Linux.
• Google Security Researchers Accuse CentOS of Failing to Backport Kernel Fixes
• Project Zero Mailing List Thread on CentOS Kernel Patches
• CVE-2023-0590
• kernel-5.14.0-277.el9
• CVE-2023-1249
• CVE-2023-1252
• Berlin Meet Up #2 - Nextcloud Hackfest & Dev Community Introduction, Fri, Mar 31, 2023 — NOTE: the time detailed on Meetup.com is strictly set to PST, so don't be confused by the interface!

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Ubuntu 18.04 LTS End Of Life — Ubuntu 18.04 ‘Bionic Beaver’ is reaching End of Standard Support this April, also known sometimes as End Of Life (EOL).
• Ubuntu 22.04.2 Point Release Delayed by 2 Weeks — Ubuntu 22.04.2 LTS was due for release on Thursday, February 9. However, the release has had to be delayed by two weeks, and is now scheduled to arrive on Thursday, February 23.
• Ubuntu Pro
• Ubuntu Extended Security Maintenance
• Wine 8.0 is out now with major compatibility improvements — One of the major changes here is the conversion to the PE format for various modules. This format is used by Windows, and an important milestone for Wine to increase compatibility with copy protection, 32-bit applications on 64-bit hosts, Windows debuggers and more.
• openSUSE Making It Easier To Install H.264 Codec Support — Inspired by the Fedora / Red Hat and Cisco collaboration around OpenH264 support, openSUSE/SUSE set out for a similar arrangement with Cicsco and its OpenH264 codecs.
• Linux 6.2-rc5 Released — Due to an uptick in activity this week and the downtime around Christmas / end-of-year holidays, Torvalds is planning on this cycle spanning through Linux 6.2-rc8 before going gold.
• Linux 6.3 To Remove Obsolete GPU Drivers: ATI Rage 128, 3Dfx, S3 Savage, i810 & More — Hitting the chopping block with the Linux 6.3 kernel are the following DRM drivers: i810, mga, r128, savage, sis, tdfx, and via.
• Kernel Security Korner — The issue involved in that compromise became known as CVE-2019-5736 and a complex workaround was implemented in runC to prevent similar vulnerabilities in the future.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• How Google got to rolling Linux releases for Desktops — Today, the life of a gLinux team member looks very different. We have reduced the amount of engineering time and energy required for releases to one on-duty release engineer that rotates among team members. We no longer have a big push to upgrade our entire fleet. No more need for multi stage alpha, betas and GAs for new LTS releases while simultaneously chasing down older machines that still were running Ubuntu Precise or Lucid.
• Red Hat names new CEO — In a move many will find surprising, Red Hat announced that Paul Cormier, the company's CEO and president since 2020, is stepping over to become chairman of the board. Matt Hicks, a Red Hat veteran and the company's head of products and technologies, will replace Cormier as president and CEO.
• KDE Announces Powerful Slimbook 4 Linux Laptop — The laptops are powered by AMD Ryzen 7 5700U processor with eight cores. They use USB-C for charging and power, like many other modern laptops. There are two USB 3.0 ports, one USB 2.0 port, an HDMI port, and a wired Ethernet jack.
• System76 Launch Lite Teaser — Launch, but Lite. Launch Lite is the everyperson's keeb — comfortable, portable, and configurable.
• System76 Teases the Launch Lite Open-Source Configurable Keyboard, Coming July 14th
• AMD Is Hiring To Improve Its Linux Graphics Driver Installation Experience — In addition to their recent hiring for a open-source Linux GPU driver developer with multimedia experience, this week they have posted a new role looking for Linux build engineer(s) to focus on their graphics driver.
• Linux Build Engineer — Our team works on open-source GPU drivers for Linux. We are leading contributors to the Radeon Mesa graphics and multimedia drivers included in popular Linux distributions like Ubuntu, Fedora, Arch, Red Hat Enterprise Linux, SUSE Linux Enterprise Desktop, and Debian. Our software is used in exciting products such as the Tesla Model S and the Steam Deck.
• Matthew Garrett: Responsible stewardship of the UEFI secure boot ecosystem — So, to have Microsoft, the self-appointed steward of the UEFI Secure Boot ecosystem, turn round and say that a bunch of binaries that have been reviewed through processes developed in negotiation with Microsoft, implementing technologies designed to make management of revocation easier for Microsoft, and incorporating fixes for vulnerabilities discovered by the developers of those binaries who notified Microsoft of these issues despite having no obligation to do so, and which have then been signed by Microsoft are now considered by Microsoft to be insecure is, uh, kind of impolite?
• X.Org Server Hit By New Local Privilege Escalation, Remote Code Execution Vulnerabilities — CVE-2022-2319 and CVE-2022-2320 were made public this morning and both deal with the X.Org Server's Xkb keyboard extension not properly validating input that could lead to out-of-bounds memory writes. Hopefully though in 2022 you aren't relying on your xorg-server running as root.
• Many Old X.Org Components Saw New Releases This Weekend - Phoronix
• Boycott Wayland. It breaks everything! — tl;dr: Wayland is not ready as a 1:1 compatible Xorg replacement just yet, and maybe never will. Hence, if you are interested in existing applications to "just work" without the need for adjustments, then you may be better of not using Wayland at this point.
• X.Org Security Advisory: July 12, 2022

Plus the facts around RMS’s return to the FSF board, and our analysis of the situation.

Special Guest: Neil McGovern.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• GNOME 40 Release Notes — GNOME 40 is the latest version of GNOME, and is the result of 6 months’ hard work by the GNOME community. It contains major new features, as well as many smaller improvements and bug fixes. In total, the release incorporates 24571 changes, made by approximately 822 contributors.
• Feeling brave? GNOME 40 is here and you can have a poke around in the Fedora 34 beta
• GNOME 40
• GNOME 3.38.5 Released with Support for Handling Monitor Changes During Screencasts — Coming a month after the GNOME 3.38.4 point release the GNOME 3.38.5 update is here with more bug fixes and various improvements to make the GNOME 3.38 desktop environment series more stable, secure, and reliable.
• Forthcoming OpenSSL release — This release will be made available on Thursday 25th March 2021 between 1300-1700 UTC.
• CVE-2021-3450: CA certificate check bypass with X509_V_FLAG_X509_STRICT — Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check.
• Cloud CPU Benchmarking Report | Linode
• Run Windows on Linode
• RMS is Back — Free software advocate Richard Stallman is rejoining the board of the Free Software Foundation.
• An open letter to remove Richard M. Stallman from all leadership positions
• An open letter in support of Richard M. Stallman
• Free software advocates seek removal of Richard Stallman and entire FSF board | Ars Technica
• Statement on the Re-election of Richard Stallman to the FSF Board | Electronic Frontier Foundation
• Free Software Community Condemns Richard Stallman’s Reinstatement to FSF Board of Directors
• Richard Stallman returns to the Free Software Foundation
• SUSE joins open source bodies calling for Stallman to go
• From PS5 to Ford F-150: How a global chip shortage is 'impacting everything' — The biggest news in the automotive industry right now isn't new electric vehicles or Tesla CEO Elon Musk's latest comments. It's a major semiconductor shortage that's hurting automakers across the globe.
• [Video] How The Global Computer Chip Shortage Happened

Plus the Linux tech Greg KH is most excited about, and more.

Support Linux Action News

Links:

• Ubuntu fixes bugs that standard users could use to become root — A handful of commands was all it took for untrusted users to become all-powerful.
• Now-patched Ubuntu desktop vulnerability allows privilege escalation
• How to get root on Ubuntu 20.04 by pretending nobody’s /home
• Meet Proxmox Backup Server, a Debian-Based Open Source Enterprise Backup Solution — Proxmox launched today Proxmox Backup Server as a new edition of its Debian-based Linux distribution engineered to act as an enterprise solution for backing up and restoring physical hosts, virtual machines and containers.
• Proxmox Roadmap
• Proxmox Backup Server
• Proxmox Backup Git Repo
• PayPal's crypto trading goes live in the US — Customers will be able to trade up to $20,000 a week, rather than the originally announced $10,000.
• Systemd catches up with bind events — Perhaps the real lesson here is that the community would be better served by closer relations between the kernel project and projects managing low-level utilities like systemd.
• eBPF - The Future of Networking & Security — Cilium is an open source project that has been designed on top of eBPF to address the networking, security, and visibility requirements of container workloads. It provides a high-level abstraction on top of eBPF. Cilium is to eBPF what Kubernetes and container runtimes are to Linux kernel namespaces, cgroups, and seccomp
• Linux App Summit 2020