Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• GNOME 44 Released — GNOME 44 is code-named “Kuala Lumpur”, in recognition of the work done by the organizers of GNOME.Asia 2022.
• GNOME 44 Released With Many Desktop Enhancements
• GNOME 44 Getting New Background Apps UI
• Ubuntu Touch OTA-1 Focal Release — This is the first OTA for Ubuntu 20.04 (Focal) with major features, this is an Opt-In and not mandatory update.
• First Ubuntu Touch OTA Release Based on Ubuntu 20.04 LTS Is Out Now
• Ubuntu Cinnamon Flavor Status Announcement — Ubuntu Cinnamon started as a small idea in my head, in 2019. I was ELEVEN.
• ItzSwirlz (Joshua Peisach)
• Ubuntu Cinnamon Remix Becomes Official Ubuntu Flavor
• Microsoft’s CBL-Mariner Linux Distribution Continues Cultivating More Packages — With today's CBL-Mariner 2.0.20230321 they have continued cultivating more packages for the distribution.
• CBL-Mariner GitHub
• We’re no longer sunsetting the Free Team plan — After listening to feedback and consulting our community, it’s clear that we made the wrong decision in sunsetting our Free Team plan.
• Google discloses CentOS Linux kernel vulnerabilities following failure to issue timely fixes — Google Project Zero's security researcher Jann Horn learned that kernel fixes made to stable trees are not backported to many enterprise versions of Linux.
• Google Security Researchers Accuse CentOS of Failing to Backport Kernel Fixes
• Project Zero Mailing List Thread on CentOS Kernel Patches
• CVE-2023-0590
• kernel-5.14.0-277.el9
• CVE-2023-1249
• CVE-2023-1252
• Berlin Meet Up #2 - Nextcloud Hackfest & Dev Community Introduction, Fri, Mar 31, 2023 — NOTE: the time detailed on Meetup.com is strictly set to PST, so don't be confused by the interface!

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Android 13 is in AOSP — Today we’re pushing the Android 13 source to the Android Open Source Project (AOSP) and officially releasing the newest version of Android.
• Android 13 Sources Released To AOSP
• Glibc 2.36 Dropping DT_HASH Has Been Breaking Easy Anti Cheat Games — The breakage stems from the DT_HASH section being dropped in GNU C Library but EAC being among the few software still expecting that section rather than DT_GNU_HASH.
• Pierre-Loup Griffais on Twitter — Unfortunate that upstream glibc discussion on DT_HASH isn't coming out strongly in favor of prioritizing compatibility with pre-existing applications. Every such instance contributes to damaging the idea of desktop Linux as a viable target for third-party developers.
• Carlos O’Donell on Twitter — How far should Linux ELF follow the generic ELF standard (gABI)? We recently let distributions drop DT_HASH from glibc builds (mandatory under the gABI). This broke EPIC's Easy Anti-Cheat. We *should* ask the gABI for DT_HASH to be optional.
• GLIBC update broke EAC for most games that use it — Issue #6051 · ValveSoftware/Proton
• Should we make DT_HASH dynamic section for glibc?
• gapi discussion: Making DT_HASH optional?
• Linux 6.0 debuts, missing some Rusty bits — Emperor Penguin Linus Torvalds has released the first release candidate for Linux 6.0, but doesn't mind what you call it.
• Linux 6.0 arrives with performance improvements and more Rust coming
• Linux 6.0-rc1 Released With Exciting Performance Optimizations
• Real-Time “PREEMPT_RT” Not in 6.0-rc1 — Of the 50 patches, it's not too bad either as there are five patches for example that are rather trivial for just enabling real-time (RT) support in the Kconfig files for ARM / ARM64 / POWER / x86 / x86_64. There are also a handful of patches each specific to POWER and the i915 graphics driver code.
• Debian turns 29! — Today is Debian's 29th anniversary. We recently wrote about some ideas to celebrate DebianDay, and several events have been planned in more than 14 locations.
• LocalGroups - Debian Wiki
• A New Jailbreak for John Deere Tractors Rides the Right-to-Repair Wave — An exploit that provides root access to two popular models of the company’s farm equipment.
• mu on Twitter — Sick Codes has jailbroken a John Deere, and this is just the beginning. Turns out our entire food system is built on outdated, unpatched Linux and Windows CE hardware with LTE modems.
• How a version of Doom running on a John Deere tractor champions the right-to-repair movement — Sick Codes achieved this by working with different tractor control touchscreen consoles, narrowing it down to a select few models, and finding a way to exploit these devices.
• Right to repair movement goes Deere hunting
• The debate over right to repair in 2022 | Successful Farming
• Deere Hit with Class Action Lawsuit Over Right to Repair
• Late Night Linux – Episode 190

Sponsored By:

• Ting: Save $25 off your first device, or $25 in service credit if you bring one!
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Nvidia is reportedly preparing to abandon its $40 billion takeover of Arm — The deal has faced close scrutiny from regulators around the world, who worry it would give Nvidia an unfair advantage in the semiconductor industry.
• SiFive Shifting Production Focus To Next-Gen HiFive Development Board — "With such great ecosystem adoption, demand has exceeded our already high expectations, and we’re close to selling out our production inventory. Given the challenge of supply chain issues that we overcame for the first run of these boards (issues that we continue to face), we’ve decided to focus on the next generation SiFive HiFive development systems rather than trying to put together another build of the HiFive Unmatched platform in 2022."
• Linux system service bug gives root on all major distros, exploit released — Qualys has uncovered a truly dangerous memory corruption vulnerability in polkit's pkexec, CVE-2021-4034. Polkit, formerly known as PolicyKit, is a systemd SUID-root program.
• Major Linux PolicyKit Security Vulnerability Uncovered: Pwnkit
• KDE-Powering Qt’s New Framework Lets Developers Bring Ads Into Their Apps — Qt, the framework that powers the KDE desktop, is announcing support for ads in client-side applications.
• Qt Digital Advertising Platform
• Steam Deck launches February 25, weekly purchase invites planned — Valve has today officially announced their Steam Deck handheld will launch officially on February 25.
• Steam Dynamic Cloud Sync — Dynamic Cloud Sync is now live on Steam, and it's a first for any gaming platform currently in operation. It appears to be inspired by a specific use case: playing your favorite PC game on the go via the Steam Deck, then resuming that same game later on your home PC.
• Valve sponsors more work to improve Linux graphics drivers

Plus Mozilla and KaiOS team up to bring the modern web to feature phones, and the surprising way Microsoft is shipping a Linux kernel.

Support Linux Action News

Links:

• Firefox 74 arrives with stricter add-on rules, TLS 1.0 and TLS 1.1 disabled — Starting with Firefox 74, users will need to take explicit action to install the extensions they want, and will be able to remove previously sideloaded extensions when they want to.
• Introducing GNOME 3.36: “Gresik” — GNOME 3.36 is the latest version of GNOME 3, and is the result of 6 months’ hard work by the GNOME community. It contains major new features, such as new login and unlock experience, and a dedicated app for managing extensions.
• GNOME 3.36 Released with New Lock Screen, Better Performance — Six months of development later and the official GNOME 3.36 release is finally here, with source code available to download from the usual places.
• Announcing Bottlerocket — Bottlerocket comes with a single-step update mechanism and includes only the essential software to run containers. These properties enable customers to use container orchestrators to manage OS updates with minimal disruptions, enabling better uptime for containerized applications and lower operational cost.
• Docker: Helping You and Your Development Team Build and Ship Faster — How are we going to do this? By focusing on developer experience through Docker Desktop, partnering with the ecosystem, and making Docker Hub the nexus for all the integrations, configuration, and management of the application components which constitute your apps and microservices.
• VMware Announces Expanded Portfolio of Products and Services to Help Customers Modernize Applications and Infrastructure — Tanzu, first introduced at the VMworld event in August 2019, is a portfolio of products centered on K8s. Also announced was vSphere 7, newly rearchitected using Kubernetes, and optimized to run both modern container-based and traditional virtual machine-based workloads.
• KaiOS Technologies and Mozilla partner to enable a healthy mobile internet for everyone — This partnership bolsters the security and performance of KaiOS-enabled smart feature phones, as well as the platform’s developer tools, security, and available functions, including better Progressive Web App and WebAssembly support.
• Magisk may no longer be able to hide bootloader unlocking from apps — Users have noticed that their bootloader-unlocked devices are failing SafetyNet’s Basic Integrity check even though they used Magisk to patch the boot image. According to Magisk creator John Wu, this is because Google may have implemented hardware-level key attestation to verify that the boot image has not been tampered with.
• Kernels for WSL2 will come from Windows Update — WSL2 will soon be officially available as part of Windows 10, version 2004! As we get ready for general availability, we want to share one additional change: updating how the Linux kernel inside of WSL2 is installed and serviced on your machine.