Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• GNOME 44 Released — GNOME 44 is code-named “Kuala Lumpur”, in recognition of the work done by the organizers of GNOME.Asia 2022.
• GNOME 44 Released With Many Desktop Enhancements
• GNOME 44 Getting New Background Apps UI
• Ubuntu Touch OTA-1 Focal Release — This is the first OTA for Ubuntu 20.04 (Focal) with major features, this is an Opt-In and not mandatory update.
• First Ubuntu Touch OTA Release Based on Ubuntu 20.04 LTS Is Out Now
• Ubuntu Cinnamon Flavor Status Announcement — Ubuntu Cinnamon started as a small idea in my head, in 2019. I was ELEVEN.
• ItzSwirlz (Joshua Peisach)
• Ubuntu Cinnamon Remix Becomes Official Ubuntu Flavor
• Microsoft’s CBL-Mariner Linux Distribution Continues Cultivating More Packages — With today's CBL-Mariner 2.0.20230321 they have continued cultivating more packages for the distribution.
• CBL-Mariner GitHub
• We’re no longer sunsetting the Free Team plan — After listening to feedback and consulting our community, it’s clear that we made the wrong decision in sunsetting our Free Team plan.
• Google discloses CentOS Linux kernel vulnerabilities following failure to issue timely fixes — Google Project Zero's security researcher Jann Horn learned that kernel fixes made to stable trees are not backported to many enterprise versions of Linux.
• Google Security Researchers Accuse CentOS of Failing to Backport Kernel Fixes
• Project Zero Mailing List Thread on CentOS Kernel Patches
• CVE-2023-0590
• kernel-5.14.0-277.el9
• CVE-2023-1249
• CVE-2023-1252
• Berlin Meet Up #2 - Nextcloud Hackfest & Dev Community Introduction, Fri, Mar 31, 2023 — NOTE: the time detailed on Meetup.com is strictly set to PST, so don't be confused by the interface!

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• A new privilege escalation vulnerability in the Linux kernel — The vulnerability consists of a stack buffer overflow due to an integer underflow vulnerability inside the nft_payload_copy_vlan function, which is invoked with nft_payload expressions as long as a VLAN tag is present in the current skb.
• netfilter: nft_payload: add C-VLAN support · torvalds/linux@f6ae9f1
• CVE-2023-0179
• CVE-2023-0179- Red Hat Customer Portal
• [net,3/3] netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits - Patchwork
• oss-sec: Re: CVE-2023-0179: Linux kernel stack buffer overflow in nftables: PoC and writeup
• libvirt 9.0 Released For Latest Linux Virtualization API — Libvirt 9.0 adds support for external snapshot deletion with QEMU using its existing API, libvirt 9.0 with QEMU now supports PASST as "Plug A Simple Socket Transport" for connecting an emulated network device to the host's network, QEMU external back-end support for SWTPM as a software Trusted Platform Module (TPM), support for passing file descriptors rather than passing files for the QEMU disk, and other additions.
• JFS Filesystem’s Days are Numbered — IBM developed the JFS file-system originally in the 90's for AIX and the second-generation implementation then ported to Linux after it was made open-source.
• Firefox 109.0 Ships Manifest Version 3 — Manifest Version 3 (MV3) extension support is now enabled by default (MV2 remains enabled/supported). This major update also ushers an exciting user interface change in the form of the new extensions button.
• Here’s what’s going on in the world of extensions
• Manage your extensions using the extensions button in the toolbar
• Manifest v3 signing available November 21 on Firefox Nightly
• Google delays start of Manifest V2 Chrome extension deprecation — The original plan called for Chrome Beta, Dev, and Canary builds to start experiments that turned off Manifest V2 extension support. Additionally, Manifest V3 would be required to get the “Featured” badge in the Chrome Web Store. 
• Firefox 109 Adds New Extensions Button, Manifest V3 Support — The biggest new feature is the new Unified Extensions button in the toolbar.
• Chrome’s “Manifest V3” plan to limit ad-blocking extensions is delayed
• Chrome Users Beware: Manifest V3 is Deceitful and Threatening — Manifest V3, or Mv3 for short, is outright harmful to privacy efforts. It will restrict the capabilities of web extensions

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• GNOME 43 Release Notes — After 6 months of hard work, the GNOME project is proud to present version 43. This latest GNOME release comes with improvements across the board, ranging from a new quick settings menu, a redesigned Files app, and hardware security integration. GNOME 43 continues the trend of GNOME apps migrating from GTK 3 to GTK 4, and includes many other smaller enhancements.
• GNOME 43 Released With More Apps Ported To GTK4, Wayland Enhancements
• GNOME 43 Notes for Developers
• System76 Launches Redesigned Thelio Desktop — System76 today is announcing the Thelio, Thelio Mira, and Thelio Major with a full-chassis redesign.
• system76
• Next steps for Rust in the kernel — At the 2022 Linux Kernel Maintainers Summit, Miguel Ojeda updated the group on the status of the project with the goal of reaching a conclusion on when this merge might happen. The answer that came back was clear enough: Rust in the kernel will be happening soon indeed.
• Rust Porting Begins For Intel’s “e1000” Linux Network Driver — Adding to the growing examples and early drivers being worked on for the Linux kernel to showcase the possibilities of using the Rust programming language within the kernel, an early port of Intel's e1000 wired networking driver has started.
• Linux kernel’s eBPF feature put to unexpected new uses
• ASUS & Canonical Partner On The IoT — Adding to the growing examples and early drivers being worked on for the Linux kernel to showcase the possibilities of using the Rust programming language within the kernel, an early port of Intel's e1000 wired networking driver has started.
• OpenJDK Java 19 Released With RISC-V Linux Port, Foreign Function API — OpenJDK Java 19 in its general availability form while adding a number of new features.
• Introducing the Framework Laptop Chromebook Edition — Today, we are excited to announce that we have partnered with Google to create the Framework Laptop Chromebook Edition. We’ve taken the best parts of the Framework Laptop and merged those with the powerful simplicity of ChromeOS to create a high-performance, upgradeable, repairable, customizable Chromebook.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Experimental Kernel Patches — Patches sent out today clean-up the code taken on those architectures for bringing CPU cores down and allow for parallelism. With these patches and an 80-core Arm server, a Kexec reboot can go from taking around 15 seconds to now just around one second.
• ByteDance Working To Make It Faster Kexec Booting The Linux Kernel
• [RFC 00/10] arm64/riscv: Introduce fast kexec reboot - Pingfan Liu
• [PATCH 0/4] faster kexec reboot - Albert Huang
• VisionFive 2 — Kickstarter — High-performance quad-core RISC-V single board computer (SBC) with an integrated 3D GPU, 2G/4G/8G LPDDR.
• Linux Foundation TAB election: call for nominees — The 2022 election for members of the Linux Foundation Technical Advisory Board (TAB) will be held during the Linux Plumbers Conference, September 12 to 14.
• Webmin 2.0 Released — Webmin is a web-based system administration tool for Unix-like servers and services with over 1,000,000 installations worldwide.
• Flatpak 1.14.0 Released — Flatpak 1.14 brings a variety of mostly small and lower-level improvements to this Linux app sandboxing tech
• Flatpak 1.14 Released With Improvements For Sandboxed Linux Apps
• Firefox 104.0 — The Firefox UI itself will now be throttled for performance and battery usage when minimized or occluded, in the same way background tabs are.
• Rosenzweig – Clip control on the Apple GPU — After a year in development, the open source “Asahi” driver for the Apple GPU is running real games.
• Asahi Linux May Have OpenGL 2.1 For Apple M1/M2 By Year’s End — " I’m optimistic that we’ll have native OpenGL 2.1 in Asahi Linux by the end of the year."