Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• GNOME 44 Released — GNOME 44 is code-named “Kuala Lumpur”, in recognition of the work done by the organizers of GNOME.Asia 2022.
• GNOME 44 Released With Many Desktop Enhancements
• GNOME 44 Getting New Background Apps UI
• Ubuntu Touch OTA-1 Focal Release — This is the first OTA for Ubuntu 20.04 (Focal) with major features, this is an Opt-In and not mandatory update.
• First Ubuntu Touch OTA Release Based on Ubuntu 20.04 LTS Is Out Now
• Ubuntu Cinnamon Flavor Status Announcement — Ubuntu Cinnamon started as a small idea in my head, in 2019. I was ELEVEN.
• ItzSwirlz (Joshua Peisach)
• Ubuntu Cinnamon Remix Becomes Official Ubuntu Flavor
• Microsoft’s CBL-Mariner Linux Distribution Continues Cultivating More Packages — With today's CBL-Mariner 2.0.20230321 they have continued cultivating more packages for the distribution.
• CBL-Mariner GitHub
• We’re no longer sunsetting the Free Team plan — After listening to feedback and consulting our community, it’s clear that we made the wrong decision in sunsetting our Free Team plan.
• Google discloses CentOS Linux kernel vulnerabilities following failure to issue timely fixes — Google Project Zero's security researcher Jann Horn learned that kernel fixes made to stable trees are not backported to many enterprise versions of Linux.
• Google Security Researchers Accuse CentOS of Failing to Backport Kernel Fixes
• Project Zero Mailing List Thread on CentOS Kernel Patches
• CVE-2023-0590
• kernel-5.14.0-277.el9
• CVE-2023-1249
• CVE-2023-1252
• Berlin Meet Up #2 - Nextcloud Hackfest & Dev Community Introduction, Fri, Mar 31, 2023 — NOTE: the time detailed on Meetup.com is strictly set to PST, so don't be confused by the interface!

Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• New versions of Ubuntu Touch, Mir, and Unity arrive — Various parts of Ubuntu's canceled desktop/fondleslab convergence project are all still ticking away – some officially and some thanks to user communities.
• Ubuntu Touch OTA-24 Release
• Mir release 2.10.0
• Unity 7.6 is now available for Arch Linux
• Ubuntu Touch OTA-24 Released for Ubuntu Phone Users
• Google updates 2013 Chromecast for first time in over three years — In a new batch of Chromecast updates, Google has released new firmware for the first-generation Chromecast for the first time in years.
• Chromecast firmware versions and release notes
• Eufy cameras caught sending local footage to cloud — Paul Moore, a security researcher, posted on Twitter last week a frightening security situation with Eufy home security products including camera-equipped doorbells.
• Google says Google should do a better job of patching Android phones — Project Zero calls out Android and Pixel for not fixing a GPU vulnerability.
• ClamAV 1.0.0 Released — The first version of ClamAV, which is developed by the US-based tech company Cisco and the open-source community, was released back in 2002.
• 20 Years in the Making: ClamAV Finally Hits Version 1.0
• Compute Accelerator Subsystem Being Introduced For Linux 6.2 — It's happening: the new "accel" compute accelerator subsystem is now queued for introduction with the Linux 6.2 kernel once that merge window opens in December.
• Red Hat Developers Announce Work On New “Composefs” File-System — Red Hat is working on Composefs as a way to construct and use read-only images that are verifiable and have some immediate use-cases around sharing of Podman container layers and with the verification support for use by OSTree.
• GitHub - composefs

Plus a new release of our favorite non-distro, GPL revoking debunking, and Android turns 10.

Support Linux Action News

Links:

• Android turns 10 — This was an era in which Android devices were responding to Apple, and not vice versa as we find today.
• Google's Project Zero criticises Linux distros for tardy kernel patches — Project Zero accuses Linux distributions of leaving users exposed to known kernel vulnerabilities for weeks.
• CVE-2018-17182 in Ubuntu — As of 2018-09-26, fixes for this issue are applied to all kernels uploaded to RELEASE-proposed today. and should be released around Monday, Oct 1, 2018.
• No, GPL can't be revoked — For anybody who has been concerned by the talk from a few outsiders about revoking GPL licensing, this new section in the Software Freedom Conservancy's copyleft guide is worth a read. Thus, anyone downstream of the contributor (which is anyone using the contributor’s code), has an irrevocable license from the contributor. A contributor may claim to revoke their grant, and subsequently sue for copyright infringement, but a court would likely find the revocation was ineffective and the downstream user had a valid license defense to a claim of infringement.
• KDE neon Rebased on Ubuntu 18.04 LTS — The KDE neon team is proud to announce the rebase of our packages onto Ubuntu 18.04 LTS "Bionic Beaver". We encourage all users to upgrade now. The installable ISOs and Docker images have also been updated to run on 18.04.
• At least half of Azure is running Linux — "it's about half now, but it varies on the day because a lot of these workloads are elastic, but sometimes slightly over half of Azure VMs are Linux." Microsoft later clarified, "about half Azure VMs are Linux."
• Firefox can now tell you when you get pwned — Mozilla is taking this a step further by also letting you sign up for alerts for when your accounts appear in any (known) breaches in the future.
• Mintcast needs new hosts — Rob and Isaac talk about ending their time doing the podcast and ask who would like to take over.
• Linux Academy Job Openings