Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• HDR hackfest wrap-up — People from various organizations were on-site: Red Hat, KDE, System76, AMD, Igalia, Collabora, Canonical, etc. Some more people from NVIDIA, Intel and Google joined us remotely (some of them waking up at 2 AM due to their timezone!).
• Fakespot is acquired by Mozilla — I have exciting news to share, Fakespot has been acquired by Mozilla! We are joining a company that develops one of the most popular browsers in the world in Firefox with a lineage that dates back to the origins of the internet.
• Apple removes Fakespot from App Store after Amazon complains
• More Rust Code Readied For Linux 6.4 — New Rust code for Linux 6.4 includes the introduction of the pin-init API, which is for dealing with safe pinned initialization and allows reducing the amount of "unsafe" Rust code within the kernel.
• Asahi Lina on Twitter: My Rust contributions for Linux 6.4 are finally merged upstream! 🦀🐧 — The next big challenge is going to be the DRM subsystem abstractions!
• India blocks 14 mobile apps used by terrorists in Pakistan to send information in J-K — As inputs received that these applications are being used to further terror propaganda and incite youths in Jammu and Kashmir, the Central government blocked them under Section 69A of the Information Technology Act, 2000.
• India removes ban on VLC media player after cybersecurity concerns addressed
• Text of the RESTRICT Act — To authorize the Secretary of Commerce to review and prohibit certain transactions between persons in the United States and foreign adversaries, and for other purposes...
• Tell Congress: Don’t Outlaw Encrypted Applications

Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• GNOME 44 Released — GNOME 44 is code-named “Kuala Lumpur”, in recognition of the work done by the organizers of GNOME.Asia 2022.
• GNOME 44 Released With Many Desktop Enhancements
• GNOME 44 Getting New Background Apps UI
• Ubuntu Touch OTA-1 Focal Release — This is the first OTA for Ubuntu 20.04 (Focal) with major features, this is an Opt-In and not mandatory update.
• First Ubuntu Touch OTA Release Based on Ubuntu 20.04 LTS Is Out Now
• Ubuntu Cinnamon Flavor Status Announcement — Ubuntu Cinnamon started as a small idea in my head, in 2019. I was ELEVEN.
• ItzSwirlz (Joshua Peisach)
• Ubuntu Cinnamon Remix Becomes Official Ubuntu Flavor
• Microsoft’s CBL-Mariner Linux Distribution Continues Cultivating More Packages — With today's CBL-Mariner 2.0.20230321 they have continued cultivating more packages for the distribution.
• CBL-Mariner GitHub
• We’re no longer sunsetting the Free Team plan — After listening to feedback and consulting our community, it’s clear that we made the wrong decision in sunsetting our Free Team plan.
• Google discloses CentOS Linux kernel vulnerabilities following failure to issue timely fixes — Google Project Zero's security researcher Jann Horn learned that kernel fixes made to stable trees are not backported to many enterprise versions of Linux.
• Google Security Researchers Accuse CentOS of Failing to Backport Kernel Fixes
• Project Zero Mailing List Thread on CentOS Kernel Patches
• CVE-2023-0590
• kernel-5.14.0-277.el9
• CVE-2023-1249
• CVE-2023-1252
• Berlin Meet Up #2 - Nextcloud Hackfest & Dev Community Introduction, Fri, Mar 31, 2023 — NOTE: the time detailed on Meetup.com is strictly set to PST, so don't be confused by the interface!

Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Kali 2023.1 — Today we are releasing Kali 2023.1 (and on our 10th anniversary)!
• Get Kali | Kali Linux Download
• Kali Linux Introduces “Kali Purple” for Defensive Security Hardening
• Qubes OS 4.1.2 — We’re pleased to announce the stable release of Qubes 4.1.2!
• Wayland Crash Survivor — A change merged to Qt this week can allow for Wayland clients to survive compositor restarts, such as when the compositor crashes.
• OpenMoon Ray Code Goes Live — MoonRay is DreamWorks’ open-source, award-winning, state-of-the-art production MCRT renderer.
• OpenMoonRay.org
• ipmitool Repository Archived — Those navigating to ipmitool/ipmitool on GitHub as the official repository for this project will find that it's now in a "public archive" state.
• Docker is deleting Open Source organisations - what you need to know
• Justin Cormack on Twitter — when we remove accounts we do not free up the namespace so squatting is not possible.
• Some nuance for paid users
• GHCR was having some issues this morning it seems
• Red Hat’s Quay is maybe another option, they might offer free plans? public repos are free anyway
• José Valimon Twitter
• Deploy a registry server — This page contains information about hosting your own registry using the open source Docker Registry.

Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Nextcloud’s Big new Customer — After a silent migration of millions of users, Telekom and Nextcloud are now unveiling the first feature of the new MagentaCloud: a free office.
• Last Minute GNOME Awesome — GNOME Shell and Mutter 44 have reached their release candidate milestone ahead of the official release in just two weeks, all is going to plan, and to our surprise, there have been several last-minute additions.
• GNOME 44 Mutter Adds fractional_scale_v1 Wayland Support
• GNOME Shell & Mutter Complete Their Migration Away From GTK3
• wp-fractional-scale-v1: New protocol for fractional scaling — This protocols allows for communicating preferred fractional scales to surfaces, which in combination with wp_viewport can be used to render surfaces at fractional scales when applicable.
• Asahi Linux Rust Drivers — This is my first take on the Rust abstractions for the DRM subsystem.
• Flathub in 2023 — It’s been quite a few months since the most recent updates about Flathub last year. We’ve been busy behind the scenes, so I’d like to share what we’ve been up to at Flathub and why—and what’s coming up from us this year
• Flathub in 2023 - Flathub Discourse

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• The Coder Robe — Celebrate Coder 500! The Robe, the Tumbler, and the Sticker are available for a limited time.
• Git Vulnerabilities — Today, the Git project released new versions to address a pair of security vulnerabilities, (CVE-2023-22490 and CVE-2023-23946) that affect versions 2.39.1 and older.
• 10 Years of Steam — Feb 14, 2013–Valve, creators of best-selling game franchises (such as Counter-Strike and Team Fortress) and leading technologies (such as Steam and Source), today announced the release of its Steam for Linux client. In celebration of the release, over 50 Linux titles are now 50-75% off until Thursday, February 21st at 10 AM PST.
• Sabayon 9 Review | LAS | s22e08 - YouTube
• Opening the Valve | LAS | s22e09 - YouTube
• Ubuntu Gets Real — Canonical today announced the general availability of real-time Ubuntu 22.04 LTS.
• Canonical Promotes Ubuntu’s Real-Time “RT” Kernel To General Availability
• Here Comes GTK5 — Discussions around the GTK5 tool-kit also happened with some developers eager to begin work on that next major release in order to begin facilitating API breaks and removing deprecated code.
• Plasma 5.27 — Plasma 5.27 is out and brings massive improvements to the desktop and all its tools. Another work of love from the KDE devs and contributors.
• KDE Plasma 5.27 Released — Better Wayland Support, KWin Tiling, Multi-Monitor Overhaul
• Final Version of KDE Plasma 5 Released – This is What’s New — Notably, this is expected to be the final release in the KDE Plasma 5.x series, with the following stable release set to be KDE Plasma 6.0, due for release towards the end of the year.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• elementary OS 7 Available Now — Today we’re proud to announce that OS 7, codenamed Horus, is available to download now and shipping soon on several high-quality computers.
• Xfce Going Wayland — That’s right, work on Xfce 4.20 kicked off earlier this month with the release of libxfce4windowing, a new dependency for the Xfce desktop environment to provide support for the next-generation Wayland display protocol.
• Xfce / libxfce4windowing
• COSMIC DE has Speed — Alex here with the latest batch of updates from System76 engineers on the development of COSMIC DE, as well as some Settings mockups where you can explore some of the new changes.
• System76 Adding XWayland Support & Other Improvements
• Ubuntu Pro for All — First released in a beta version in October 2022.
• helloSystem 0.8 — helloSystem is now based on FreeBSD 13.1-RELEASE. A desktop system for creators that focuses on simplicity, elegance, and usability.
• helloSystem 0.8: A friendly, all-graphical FreeBSD — Since most applications I am using on a daily basis are cross-platform and many of them are written in Qt, it seemed logical to choose Qt as the native toolkit for helloSystem.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Ubuntu 18.04 LTS End Of Life — Ubuntu 18.04 ‘Bionic Beaver’ is reaching End of Standard Support this April, also known sometimes as End Of Life (EOL).
• Ubuntu 22.04.2 Point Release Delayed by 2 Weeks — Ubuntu 22.04.2 LTS was due for release on Thursday, February 9. However, the release has had to be delayed by two weeks, and is now scheduled to arrive on Thursday, February 23.
• Ubuntu Pro
• Ubuntu Extended Security Maintenance
• Wine 8.0 is out now with major compatibility improvements — One of the major changes here is the conversion to the PE format for various modules. This format is used by Windows, and an important milestone for Wine to increase compatibility with copy protection, 32-bit applications on 64-bit hosts, Windows debuggers and more.
• openSUSE Making It Easier To Install H.264 Codec Support — Inspired by the Fedora / Red Hat and Cisco collaboration around OpenH264 support, openSUSE/SUSE set out for a similar arrangement with Cicsco and its OpenH264 codecs.
• Linux 6.2-rc5 Released — Due to an uptick in activity this week and the downtime around Christmas / end-of-year holidays, Torvalds is planning on this cycle spanning through Linux 6.2-rc8 before going gold.
• Linux 6.3 To Remove Obsolete GPU Drivers: ATI Rage 128, 3Dfx, S3 Savage, i810 & More — Hitting the chopping block with the Linux 6.3 kernel are the following DRM drivers: i810, mga, r128, savage, sis, tdfx, and via.
• Kernel Security Korner — The issue involved in that compromise became known as CVE-2019-5736 and a complex workaround was implemented in runC to prevent similar vulnerabilities in the future.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• A new privilege escalation vulnerability in the Linux kernel — The vulnerability consists of a stack buffer overflow due to an integer underflow vulnerability inside the nft_payload_copy_vlan function, which is invoked with nft_payload expressions as long as a VLAN tag is present in the current skb.
• netfilter: nft_payload: add C-VLAN support · torvalds/linux@f6ae9f1
• CVE-2023-0179
• CVE-2023-0179- Red Hat Customer Portal
• [net,3/3] netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits - Patchwork
• oss-sec: Re: CVE-2023-0179: Linux kernel stack buffer overflow in nftables: PoC and writeup
• libvirt 9.0 Released For Latest Linux Virtualization API — Libvirt 9.0 adds support for external snapshot deletion with QEMU using its existing API, libvirt 9.0 with QEMU now supports PASST as "Plug A Simple Socket Transport" for connecting an emulated network device to the host's network, QEMU external back-end support for SWTPM as a software Trusted Platform Module (TPM), support for passing file descriptors rather than passing files for the QEMU disk, and other additions.
• JFS Filesystem’s Days are Numbered — IBM developed the JFS file-system originally in the 90's for AIX and the second-generation implementation then ported to Linux after it was made open-source.
• Firefox 109.0 Ships Manifest Version 3 — Manifest Version 3 (MV3) extension support is now enabled by default (MV2 remains enabled/supported). This major update also ushers an exciting user interface change in the form of the new extensions button.
• Here’s what’s going on in the world of extensions
• Manage your extensions using the extensions button in the toolbar
• Manifest v3 signing available November 21 on Firefox Nightly
• Google delays start of Manifest V2 Chrome extension deprecation — The original plan called for Chrome Beta, Dev, and Canary builds to start experiments that turned off Manifest V2 extension support. Additionally, Manifest V3 would be required to get the “Featured” badge in the Chrome Web Store. 
• Firefox 109 Adds New Extensions Button, Manifest V3 Support — The biggest new feature is the new Unified Extensions button in the toolbar.
• Chrome’s “Manifest V3” plan to limit ad-blocking extensions is delayed
• Chrome Users Beware: Manifest V3 is Deceitful and Threatening — Manifest V3, or Mv3 for short, is outright harmful to privacy efforts. It will restrict the capabilities of web extensions

Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Raspberry Pi 5 Not Launching Until After 2023 — Don't expect a Pi 5 next year [2023]" Upton then expands and explains that 2023 is a "recovery year".
• Eben Upton Interview: Raspberry Pi Availability & More! - YouTube
• Raspberry Pi Adds 100,000 Units to Supply Chain, Back to Pre-pandemic Levels in 2023 | Tom’s Hardware — In the blog post, Upton acknowledged the patience of the community and offers the 100,000 units, made up of Raspberry Pi Zero W, 3A+ and Raspberry Pi 4 2GB and 4GB for single-unit sale. We don't know the breakdown of how many of each model there will be, but Upton does indicate that it is likely that Raspberry Pi Zero W will come back into stock first.
• KDE Frameworks 5.101 Released — Per the plans laid out earlier this year at the Akademy developer conference, KDE Frameworks 5 feature development stops following the v5.101 release. KDE Frameworks 5 will now just see maintenance updates moving forward.
• Xfce 4.18 Released — After almost two years of work, we are happy to announce the release of Xfce 4.18 !
• Xfce 4.18 by muscaln · Pull Request #206282 · NixOS/nixpkgs
• PipeWire Bluetooth Improvements — Most exciting with today's PipeWire 0.3.62 release is now supporting Bluetooth offloading.
• Releases · PipeWire / wireplumber · GitLab
• Feature Preview: Gitea Actions — Gitea Actions goes beyond just DevOps and lets you run workflows when other events happen in your repository.
• act_runner — A runner for Gitea based on act.
• act — Run your GitHub Actions locally 🚀

Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Wine on Wayland 2022 update: more games, more apps, more fun! — Significant improvement compared to last year is support for cross-process rendering, which is required by Chromium/CEF applications. Last year the driver was able to run Chrome with the "--in-process" command-line option. Chrome is now supported without any special flags, and is fully GPU accelerated on both OpenGL and Vulkan!
• A Wayland driver for Wine
• Wine on Wayland year-end update: improved functionality & stability
• Wine’s Wayland Driver Is Becoming Mature, May Aim For Upstreaming Early Next Year
• Linux 6.1 Released With MGLRU, Initial Rust Code — Linux 6.1 integrates the exciting Multi-Gen LRU (MGLRU) overhaul of the page reclamation code, the initial Rust programming language support
• The 6.1 kernel is out [LWN.net]
• Linux 6.2 Graphics Changes: Intel Arc Graphics Stable, Initial NVIDIA RTX 30 Acceleration
• Linux 6.2 Addresses Another “Tasty Target For Attackers”
• Linux 6.2 Expands Support For More Qualcomm Snapdragon SoCs, Apple M1 Pro/Ultra/Max
• Intel On Demand Driver Ready To Activate Your Licensed CPU Features With Linux 6.2
• Btrfs With Linux 6.2 Bringing Performance Improvements, Better RAID 5/6 Reliability
• CERN recommendation for Linux distribution — CERN and Fermilab jointly plan to provide AlmaLinux as the standard distribution for experiments at our facilities, reflecting recent experience and discussions with experiments and other stakeholders
• CERN, Fermilab select AlmaLinux as standard for big science
• AlmaLinux 9.1 - Now Available - AlmaLinux OS Blog
• Stephan Dörner (in English) on Twitter — CERN and Fermilab jointly plan to provide AlmaLinux as the standard distribution for experiments at our facilities
• GCC Rust “gccrs” Code Merged Into Mainline GCC 13 — Following last week's approval with the GCC Rust v4 patches for them to be merged, all of the "gccrs" code was upstreamed this morning for GNU Compiler Collection 13.
• PeerTube v5: the result of 5 years’ handcrafting — Five years later, we are releasing PeerTube v5, a tool used by hundreds of thousands people on a thousand interconnected platforms to share over 850,000 videos.
• Support Framasoft
• Settings Link Missing after 5.0 Upgrade

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Apple GPU drivers now in Asahi Linux — We’ve been working hard over the past two years to bring this new driver to everyone, and we’re really proud to finally be here. This is still an alpha driver, but it’s already good enough to run a smooth desktop experience and some games
• Asahi Linux Enables Early Apple GPU Driver Support - WIP OpenGL 2.1 + GLES 2.0
• Apple Silicon CPUFreq Driver Heading To Linux 6.2 — Sent in yesterday were the Arm CPUFreq updates to queue in the Linux power management tree ahead of the Linux 6.2 merge window.
• [GIT PULL] cpufreq/arm updates for 6.2 - Viresh Kumar
• Floppy Driver Update Ready For Linux 6.2 — This memory leak with the floppy disk driver has been in the mainline kernel since Linux 5.11
• Android memory safety vulnerabilities declined as Rust usage grew — Specifically, the number of annual memory safety vulnerabilities fell from 223 to 85 between 2019 and 2022. They are now 35% of Android’s total vulnerabilities versus 76% four years ago. In fact, “2022 is the first year where memory safety vulnerabilities do not represent a majority of Android’s vulnerabilities.”
• Google says Android runs better when covered in Rust
• Fedora 38 Cleared To Produce “Mobility Phosh” Spins — The Fedora Engineering and Steering Committee (FESCo) has provided their blessing to begin creating new x86_64 and AArch64 ISO images for mobile devices that feature the Phosh Wayland compositor.
• Ping bug potentially allows remote hack of FreeBSD systemsSecurity Affairs — A remote attacker can trigger the vulnerability, causing the ping program to crash and potentially leading to remote code execution in ping.
• D-Installer needs your help — Today we published a new prototype of D-Installer, fixing several bugs reported by early testers and improving the usage experience in some areas like the configuration of passwords and users. But beyond those improvements, a couple of new features deserve some attention.
• Bug 1205938 – D-Installer - Slowness initialization on real hardware
• GitHub - yast/d-installer: A service-based Linux installer
• openSUSE’s D-Installer Adds LVM & Full Disk Encryption Configuration

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Plasma 5.26 Released — Plasma 5.26 comes with new and tweaked widgets, improves the desktop experience leaps and bounds, and Plasma Big Screen's app family grows
• These weeks in KDE: Akademy and Plasma 5.26
• Google Reveals ‘First Laptops Built For Cloud Gaming’ — Google says the Acer Chromebook 516 GE, ASUS Chromebook Vibe CX55 Flip and Lenovo Ideapad Gaming Chromebook all have refresh rates of at least 120Hz, displays with up to 1600p resolution, immersive audio and, critically for cloud gaming, WiFi 6 or 6E connectivity.
• Intel Arc Graphics - A750 and A770 GPUs Release — The Intel Arc A750 and A770 GPUs officially launch today, October 12th in select markets. Everyone at Intel is beyond thrilled to get graphics cards with modern features and extremely competitive performance-per-dollar into your hands.
• Intel Arc Graphics Running On Fully Open-Source Linux Driver
• Canonical Launches Free Ubuntu Pro Subscriptions for Everyone — Ubuntu Pro is available for every supported Ubuntu LTS version, starting with Ubuntu 16.04 ESM and up to Ubuntu 22.04 LTS.
• Android leaks some traffic even when ‘Always-on VPN’ is enabled — The data being leaked outside VPN tunnels includes source IP addresses, DNS lookups, HTTPS traffic, and likely also NTP traffic.
• Incorrect VPN lockdown documentation [249990229] - Visible to Public - Issue Tracker
• Android leaks connectivity check traffic — As a closing note, we would like to recommend Google to adopt the ability to disable the connectivity checks, like on GrapheneOS, into stock Android.
• iOS VPN apps have another flaw: excluding many Apple apps — We confirm that iOS 16 does communicate with Apple services outside an active VPN tunnel. Worse, it leaks DNS requests. Apple services that escape the VPN connection include Health, Maps, and Wallet.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• IBM Takes Over Red Hat Storage to IBM Offerings — IBM announced today it will add Red Hat storage product roadmaps and Red Hat associate teams to the IBM Storage business unit, bringing consistent application and data storage across on-premises infrastructure and cloud.
• Why Whitehurst is stepping away from IBM
• IBM Does A “Quasi-Acquisition” Of Red Hat Storage — Red Hat OpenShift Data Foundation is also being absorbed into IBM Spectrum Fusion. IBM is assuming the Premier Sponsorship role of the Ceph Foundation from Red Hat.
• Announcing Nextcloud Hub 3 — Our design always followed three principles. Focus on content, ease of use, and great accessibility. For this refresh, we added a fourth: make it your own.
• Introducing NVK — NVK is a new open-source Vulkan driver for NVIDIA hardware in Mesa.
• Debian’s firmware vote results — The winning option allows the installer image to include firmware necessary to use the system.
• Intel Laptop Users Should Avoid Linux 5.19.12 — After looking at some logs we do end up with potentially bogus panel power sequencing delays, which may harm the LCD panel.
• Intel Laptop Users Should Avoid Linux 5.19.12 To Avoid Potentially Damaging The Display - Phoronix
• Linux 6.0 Released With Many Intel & AMD Driver Additions — Linus Torvalds just promoted Linux 6.0 to stable on-schedule and thereby now ushering in the Linux 6.1 merge window to officially get underway tomorrow.
• Some 6.0 development statistics — A total of 2,034 developers contributed to the 6.0 release; of those, 236 made their first contribution during this cycle. The total number of developers is just short of the record (2,086) set for 5.19, but the number of first-time contributors is the lowest seen since the 5.6 release (216) in 2020.
• Linux 6.0 Supporting New Intel/AMD Hardware
• Btrfs Brings Some Great Performance Improvements With Linux 6.1
• The Initial Rust Infrastructure Has Been Merged Into Linux 6.1 — As a follow-up to the Rust infrastructure pull request for Linux 6.1, Linus Torvalds pulled the initial Rust code into the mainline Linux kernel this evening.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Announcing the GNU Toolchain Infrastructure Project — Linux Foundation IT services plans for the GNU Toolchain include Git repositories, mailing lists, issue tracking, web sites, and CI/CD, implemented with strong authentication, attestation, and security posture. Utilizing the experience and infrastructure of the LF IT team that is already used by the Linux kernel community will provide the most effective solution and best experience for the GNU Toolchain developer community.
• Sourceware.org
• GNU Toolchain Plans Move To The Linux Foundation’s Infrastructure
• Two visions for the future of sourceware.org
• Plasma Mobile Gear Update — The Plasma Mobile team is happy to announce the developments integrated into Plasma Mobile between July-September 2022.
• The Work-In-Progress Rust-Written Apple DRM Driver Manages To Start Wayland’s Weston — After passing the initial spinning cube milestone this past weekend, Asahi Lina has been working on bringing up more of this reverse-engineered kernel DRM/KMS driver.
• Asahi Lina on Twitter — 🚀 Weston/Wayland works!!! 🚀 KDE doesn’t start all the way yet, but on X at least it showed the splash screen ^^
• Upgrade now to address E2EE vulnerabilities in matrix-js-sdk, matrix-ios-sdk and matrix-android-sdk2 — Two critical severity vulnerabilities in end-to-end encryption were found in the SDKs which power Element, Beeper, Cinny, SchildiChat, Circuli, Synod.im and any other clients based on matrix-js-sdk, matrix-ios-sdk or matrix-android-sdk2.
• Akamai Turns Linode Up Past 11
• Over the weekend, #MarsHelicopter successfully completed Flight 33 — The rotorcraft reached an altitude of 10 meters (33 ft) and traveled 111.24 meters (365 ft) in 55.2 seconds.
• There will be up to five flights in the 31-day test period. — The NASAPersevere rover will attempt to capture video of those flights.
• NASA’s Asteroid-Striking DART Mission Team Has JPL Members — JPL’s navigation section is experienced at getting spacecraft to faraway locations accurately.
• How JPL’s role in NASA’s DART asteroid impact could save the earth one day – Pasadena Star News
• DART’s Impact with Asteroid Dimorphos (Official NASA Broadcast)

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Shikitega - AT&T Alien Labs — New stealthy malware targeting Linux
• LINUX Unplugged 474: Linux’s Malware Inevitability
• New Linux malware combines unusual stealth with a full suite of capabilities — "Threat actors continue to search for ways to deliver malware in new ways to stay under the radar and avoid detection," AT&T Alien Labs researcher Ofer Caspi wrote.
• New Linux malware evades detection using multi-stage deployment
• Shape-shifting cryptominer savaging Linux endpoints and IoT — The malware was dubbed "Shikitega" for its extensive use of the popular Shikata Ga Nai polymorphic encoder, which allows the malware to "mutate" its code to avoid detection. Shikitega alters its code each time it runs through one of several decoding loops that AT&T said each deliver multiple attacks, beginning with an ELF file that's just 370 bytes.
• Next-Gen Linux Malware Takes Over Devices With Unique Tool Set
• OpenWrt 22.03 Released With Updated Firewall, Support For 180+ New Devices - Phoronix
• [OpenWrt Wiki] OpenWrt 22.03.0 - First Stable Release - 6 September 2022
• Linux Foundation Announces Open Wallet Foundation — The Linux Foundation, a global nonprofit organization enabling innovation through open source, today announced the intention to form the OpenWallet Foundation (OWF), a new collaborative effort to develop open source software to support interoperability for a wide range of wallet use cases.
• Linux Foundation announces the OpenWallet Foundation to develop interoperable digital wallets
• Welcoming PyTorch to the Linux Foundation
• Facebook Transfers PyTorch AI Framework to Linux Foundation for Governance — Today we are more than thrilled to welcome PyTorch to the Linux Foundation. Honestly, it’s hard to capture how big a deal this is for us in a single post but I’ll try.
• PyTorch strengthens its governance by joining the Linux Foundation
• Google Pixelbook is no more, proving the world wasn’t ready for premium Chromebooks | TechRadar
• Linux Plumbers Conference - YouTube
• LPC 2022: Rust Linux Drivers Capable Of Achieving Performance Comparable To C Code - Phoronix
• IO_uring Continues To Prove Very Exciting: Promising io_uring_spawn Announced — It also continues to be relentlessly optimized by Jens Axboe and others for maximum performance potential. The latest innovation around IO_uring that was announced this week at Linux Plumbers Conference 2022 in Dublin is io_uring_spawn.
• An io_uring-based user-space block driver
• A pair of Rust kernel modules
• Compiling Rust with GCC: an update
• Mesa’s Rust OpenCL Implementation Merged
• Adding rusticl (!15439) · Merge requests · Mesa / mesa · GitLab
• LPC 2022 - Kernel Summit - Lansdowne - YouTube

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• Android 13 is in AOSP — Today we’re pushing the Android 13 source to the Android Open Source Project (AOSP) and officially releasing the newest version of Android.
• Android 13 Sources Released To AOSP
• Glibc 2.36 Dropping DT_HASH Has Been Breaking Easy Anti Cheat Games — The breakage stems from the DT_HASH section being dropped in GNU C Library but EAC being among the few software still expecting that section rather than DT_GNU_HASH.
• Pierre-Loup Griffais on Twitter — Unfortunate that upstream glibc discussion on DT_HASH isn't coming out strongly in favor of prioritizing compatibility with pre-existing applications. Every such instance contributes to damaging the idea of desktop Linux as a viable target for third-party developers.
• Carlos O’Donell on Twitter — How far should Linux ELF follow the generic ELF standard (gABI)? We recently let distributions drop DT_HASH from glibc builds (mandatory under the gABI). This broke EPIC's Easy Anti-Cheat. We *should* ask the gABI for DT_HASH to be optional.
• GLIBC update broke EAC for most games that use it — Issue #6051 · ValveSoftware/Proton
• Should we make DT_HASH dynamic section for glibc?
• gapi discussion: Making DT_HASH optional?
• Linux 6.0 debuts, missing some Rusty bits — Emperor Penguin Linus Torvalds has released the first release candidate for Linux 6.0, but doesn't mind what you call it.
• Linux 6.0 arrives with performance improvements and more Rust coming
• Linux 6.0-rc1 Released With Exciting Performance Optimizations
• Real-Time “PREEMPT_RT” Not in 6.0-rc1 — Of the 50 patches, it's not too bad either as there are five patches for example that are rather trivial for just enabling real-time (RT) support in the Kconfig files for ARM / ARM64 / POWER / x86 / x86_64. There are also a handful of patches each specific to POWER and the i915 graphics driver code.
• Debian turns 29! — Today is Debian's 29th anniversary. We recently wrote about some ideas to celebrate DebianDay, and several events have been planned in more than 14 locations.
• LocalGroups - Debian Wiki
• A New Jailbreak for John Deere Tractors Rides the Right-to-Repair Wave — An exploit that provides root access to two popular models of the company’s farm equipment.
• mu on Twitter — Sick Codes has jailbroken a John Deere, and this is just the beginning. Turns out our entire food system is built on outdated, unpatched Linux and Windows CE hardware with LTE modems.
• How a version of Doom running on a John Deere tractor champions the right-to-repair movement — Sick Codes achieved this by working with different tractor control touchscreen consoles, narrowing it down to a select few models, and finding a way to exploit these devices.
• Right to repair movement goes Deere hunting
• The debate over right to repair in 2022 | Successful Farming
• Deere Hit with Class Action Lawsuit Over Right to Repair
• Late Night Linux – Episode 190

Sponsored By:

• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Massive GitHub Malware Attack? — It was revealed by Stephen Lacy in his tweet, he shared his findings of a large-scale campaign targeting random GitHub repositories with project clones containing credential stealing malware and remote shell execution on top of the original code.
• Stephen Lacy on Twitter — “I am uncovering what seems to be a massive widespread malware attack on @github. - Currently over 35k repositories are infected - So far found in projects including: crypto, golang, python, js, bash, docker, k8s - It is added to npm scripts, docker images and install docs”
• Checkmarx on Twitter — “A recent tweet uncovered a widespread malware attack on @github. This turned out to be a false alarm of sorts, as the infected repositories are simply forks and clones of the original ones - which were mostly deleted by Github by now. Stay safe!"
• No, Linus Torvalds is not Bitcoin’s legendary creator Satoshi Nakamoto
• Steam Deck Client Update and SteamOS 3.3 — We have just shipped SteamOS 3.3 and an updated Steam Client to the Stable channel. This update includes all the changes and improvements that have been undergoing testing in the Beta and Preview channels.
• SteamOS 3.3 Now Available With Many Improvements For The Steam Deck
• Steam For Linux In July Shows A 1.23% Marketshare — AMD CPUs Now More Common Than Intel On Linux
• DXVK 1.10.3 Released With Shared Fences
• Chris’ Steam Deck Review LINUX Unplugged 467
• Lenovo Expects 30+ Platforms With Linux Support This Year, Both AMD & Intel Systems — Lenovo's Mark Pearson provided an update on Linux for their laptops/PCs, including 30+ platforms for 2022 with Linux support.
• Lenovo Linux 2022 - DebConf 22
• Fedora Pi Support Gets Real — The work around Raspberry Pi 4 has been on going for a number of years, but we've never officially supported it due to lack of accelerated graphics and other key features. With Fedora 37, Raspberry Pi 4 is now officially supported, including accelerated graphics using the V3D GPU.
• Fedora 37 To Offer Official Support On Raspberry Pi 4 Devices
• Linux 5.19 Released
• Some 5.19 development statistics
• Linux Kernel 5.19 Released with Major Networking Tweaks
• Rust Code For The Linux Kernel Updated With More Features
• Asahi Linux Confirms M2 MBA on Twitter — Linus is using an M2 MacBook Air, running ARM64 Fedora. He does his own kernel builds, of course, with our Asahi kernel branch merged in, and he's been building and testing kernels on it.
• Asahi Alternative Distros docs

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Kolide: Kolide can help you nail third-party audits and internal compliance goals with endpoint security for your entire fleet.

Support Linux Action News

Links:

• How Google got to rolling Linux releases for Desktops — Today, the life of a gLinux team member looks very different. We have reduced the amount of engineering time and energy required for releases to one on-duty release engineer that rotates among team members. We no longer have a big push to upgrade our entire fleet. No more need for multi stage alpha, betas and GAs for new LTS releases while simultaneously chasing down older machines that still were running Ubuntu Precise or Lucid.
• Red Hat names new CEO — In a move many will find surprising, Red Hat announced that Paul Cormier, the company's CEO and president since 2020, is stepping over to become chairman of the board. Matt Hicks, a Red Hat veteran and the company's head of products and technologies, will replace Cormier as president and CEO.
• KDE Announces Powerful Slimbook 4 Linux Laptop — The laptops are powered by AMD Ryzen 7 5700U processor with eight cores. They use USB-C for charging and power, like many other modern laptops. There are two USB 3.0 ports, one USB 2.0 port, an HDMI port, and a wired Ethernet jack.
• System76 Launch Lite Teaser — Launch, but Lite. Launch Lite is the everyperson's keeb — comfortable, portable, and configurable.
• System76 Teases the Launch Lite Open-Source Configurable Keyboard, Coming July 14th
• AMD Is Hiring To Improve Its Linux Graphics Driver Installation Experience — In addition to their recent hiring for a open-source Linux GPU driver developer with multimedia experience, this week they have posted a new role looking for Linux build engineer(s) to focus on their graphics driver.
• Linux Build Engineer — Our team works on open-source GPU drivers for Linux. We are leading contributors to the Radeon Mesa graphics and multimedia drivers included in popular Linux distributions like Ubuntu, Fedora, Arch, Red Hat Enterprise Linux, SUSE Linux Enterprise Desktop, and Debian. Our software is used in exciting products such as the Tesla Model S and the Steam Deck.
• Matthew Garrett: Responsible stewardship of the UEFI secure boot ecosystem — So, to have Microsoft, the self-appointed steward of the UEFI Secure Boot ecosystem, turn round and say that a bunch of binaries that have been reviewed through processes developed in negotiation with Microsoft, implementing technologies designed to make management of revocation easier for Microsoft, and incorporating fixes for vulnerabilities discovered by the developers of those binaries who notified Microsoft of these issues despite having no obligation to do so, and which have then been signed by Microsoft are now considered by Microsoft to be insecure is, uh, kind of impolite?
• X.Org Server Hit By New Local Privilege Escalation, Remote Code Execution Vulnerabilities — CVE-2022-2319 and CVE-2022-2320 were made public this morning and both deal with the X.Org Server's Xkb keyboard extension not properly validating input that could lead to out-of-bounds memory writes. Hopefully though in 2022 you aren't relying on your xorg-server running as root.
• Many Old X.Org Components Saw New Releases This Weekend - Phoronix
• Boycott Wayland. It breaks everything! — tl;dr: Wayland is not ready as a 1:1 compatible Xorg replacement just yet, and maybe never will. Hence, if you are interested in existing applications to "just work" without the need for adjustments, then you may be better of not using Wayland at this point.
• X.Org Security Advisory: July 12, 2022

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Fedora 37 Gets A Batch Of New Features Approved — Fedora 37 is working its way toward release before the end of October.
• The Performance Cost To A Proposed Fedora 37 CFLAGS/CXXFLAGS Change
• Fedora CoreOS Hopes To Become An Official Edition With Fedora 37
• Fedora 37 Looks To Ship With Stratis Storage 3.1 Support
• Fedora 37 Proposing To Allow Unrestricted Access To Flathub
• Fedora Magazine: Accessibility in Fedora Workstation — I am very happy to announce that Red Hat has just hired Lukas Tyrychtr, who is a blind software engineer, to lead our effort in making sure Red Hat Enterprise Linux and Fedora Workstation has excellent accessibility support!
• Firefox 102 Available With Transform Streams, Geoclue On Linux — Firefox 102.0 isn't the most exciting end-user update but does have some developer additions like Transform Streams support and support for Geoclue with Firefox Linux builds for geolocation.
• Thunderbird 102 Released With Big Improvements To This Leading Open-Source Mail Client — Thunderbird 102 introduces a new address book implementation, a new spaces toolbar, a new import/export wizard, a redesigned message header, and other "quality of life" updates. There are also some extras with Thunderbird 102 like adding Matrix chat support.
• Matrix.org Security release: Synapse 1.61.1 — Today we're exceptionally releasing Synapse 1.61.1, which comes as a security release. Server administrators are encouraged to update as soon as possible.
• Synapse Release v1.61.1
• Synapse Advisory — URL previews of unusual or maliciously-crafted pages can crash Synapse media repositories or Synapse monoliths.
• Valve More Than Doubles Steam Deck Production, Q3 Reservations Starting Soon — Valve just tweeted out some great news for SteamDeck fans, saying it has more than doubled the number of Steam Decks being produced every week. The company also says it just sent out the last batch of Q2 reservation emails and is prepared to start kicking off Q3 reservations on June 30th 2022.
• Check Your Steam Deck Order Status
• Vim 9.0 — The main goal of Vim9 script is to drastically improve performance. This is accomplished by compiling commands into instructions that can be efficiently executed. An increase in execution speed of 10 to 100 times can be expected.
• Vim 9.0 Released With New Vim9 Script For 10~100x Execution Speed
• Linode Security Digest — June 20-26, 2022
• Apple M2 Enablement For Linux Begins With Good Progress — Hector Martin on Monday began his Linux M2 bring-up effort, including with a livestream of this reverse engineering / debugging / kernel hacking effort. Hector confirmed NVMe, USB, and SMC functionality are working for the M2 on the first day of the effort.
• M2 Asahi Linux bring-up YouTube Stream

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Akamai Warns Of “Panchan” Linux Botnet — The botnet introduces a unique (and possibly novel) approach to lateral movement by harvesting of SSH keys. Instead of just using brute force or dictionary attacks on randomized IP addresses like most botnets do, the malware also reads the id_rsa and known_hosts files to harvest existing credentials and use them to move laterally across the network.
• Canonical Continues Working On Ubuntu’s Firefox Snap Performance — On the Ubuntu blog is a new post by Canonical's Oliver Smith about their latest efforts to improve the Firefox Snap performance and other outstanding issues with this sandboxed version of the Mozilla web browser.
• Lars Knoll Announces His Successor For Qt Chief Maintainer — The voting period for the new Chief Maintainer has ended yesterday. This means Volker Hilsheimer will be our new Chief Maintainer. Congratulations!
• New Chief Maintainer for the Qt Project
• Talisman: Debut of X — I've spent the last couple weeks writing a window system for the VS100. I stole a fair amount of code from W, surrounded it with an asynchronous rather than a synchronous interface, and called it X. Overall performance appears to be about twice that of W.
• X Window System Turns 38 Years Old — It was on 19 June 1984 that Bob Scheifler announced the initial X window system release "X1" at MIT.
• X Windows System Design Principles, a lecture by James Gettys
• A Political History of X - Keith Packard (LCA 2020)
• Linus Torvalds: Rust For The Kernel Could Possibly Be Merged For Linux 5.20 — Torvalds commented that real soon they expect to have the Rust infrastructure merged within the kernel, possibly even for the next release -- meaning Linux 5.20.
• Open Source Summit North America 2022: Keynote: Linus Torvalds
• How are we improving Firefox Snap performance? Part 2

Sponsored By:

• Jupiter Network Membership: Support the entire network, and get access to every member's special feed for every show on the network. Promo Code: thesignal
• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• SUSE Linux Enterprise 15 SP4 Released - Switches To NVIDIA’s Open Kernel Driver — Notable with SLE 15 SP4, SUSE is already switching to using NVIDIA's open-source GPU kernel-mode driver that NVIDIA open-sourced last month
• openSUSE Leap 15.4 Released
• Element Call Beta 2 includes lots of exciting new updates! — In a walkie-talkie call, videos are disabled, and everyone is muted by default. To speak, press the ‘push-to-talk’ (PTT) button, either by pressing it on the screen or by holding the spacebar. The catch is that, just like a walkie-talkie or two-way radio, only one person can speak at a time. When someone else is speaking, your PTT button will be disabled, and if you try to push it you’ll hear a warning beep.
• Fedora and Ubuntu EOL announcements — If you are running Fedora 34, the time has come to move on; that distribution will reach the end of its support life on June 7. Users of Ubuntu 21.10 have a little longer, but that release loses support on July 14 and users should update to 22.04.
• Fedora 34 is going EOL in one week
• Ubuntu 21.10 reaches End of Life on July 14 2022
• HP Dev One Now Shipping — Unplug and work from any location. At 3.24 lbs, with up to 12 hours of battery life and an ultra-bright display, HP Dev One was made to perform on the go.
• Managed PostgreSQL and MongoDB are Here | Linode
• Apple will allow Linux VMs to run Intel apps with Rosetta in macOS Ventura — You can even use Rosetta with non-Apple Arm CPUs, though you probably shouldn't.
• Running Intel Binaries in Linux VMs with Rosetta
• Hector Martin on Twitter — “Huh, so Rosetta is now a Linux app. Without Linux kernel patches this can’t use any special M1 features, so if this runs significantly better than FOSS offerings that should help dispel the myth that “the M1 has magic make-Rosetta-fast features”.
• Longhorn on Twitter — Well. Rosetta 2 needs a quite recent CPU (post v8.2) to work because of the instructions used. Does it work on non-Apple arm64 CPUs? 🤔 Yes. (allows to settle the argument once and for all that this needs anything Apple specific outside of TSO support*. Answer is a no.)

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Ubuntu gets a new rolling-release remix — The new flavor is the brainchild of MrBeeBenson, building on work by Martin Wimpress, who is the project leader of the Ubuntu MATE remix.
• AMD Recruiting More Linux Engineers For Debug, CXL Enablement & More — Notable with their latest batch of Linux openings is hiring a CXL engineer. This role will focus on AMD's support for Compute Express Link (CXL) hardware enablement under Linux.
• WirePlumber 0.4.9 Fixes Surround Sound For Some Linux Games — It was reported that some games within Steam were not able to enjoy 5.1 surround sound with PipeWire in a year-old bug report. A fix landed in WirePlumber a month ago to relax the format parsing within the si-audio-adapter module and this appears to fix up that issue
• New Linux kernel patch speeds up server shutdowns — The problem is caused by the relatively long time it takes to properly shut down an NVMe drive: apparently, as much as four-and-a-half seconds.
• Linux 5.18 Hardens The Kernel For 64-bit Arm With Shadow Call Stack Support — With the Linux 5.18 hardening updates there is support added for ARM64 (AArch64) Shadow Call Stack support when building the Linux kernel with GCC 12 and newer.
• Linux 5.18 Power Management Brings Improvements For Both Intel & AMD — Intel's P-State driver will now use the default default Energy Performance Preference (EPP) exposed by the firmware, and over on the AMD CPU side, the CPUPower utility that lives within the kernel source tree now supports running in conjunction with the AMD P-State driver.
• Linux 5.18 Moves Ahead With Deprecating ReiserFS — The plan is to treat it as deprecated and formally remove it from the mainline Linux kernel in 2025.
• XFS Online Repair Functionality To Undergo A Massive Design Review — XFS online repair has been talked about for years along with online scrubbing and it looks like it's about all buttoned up. Darrick Wong will be spending the next roughly two months focusing on the "massive" design review for XFS online repair code.
• Problems emerge for a unified /dev/*random — A bunch of changes for the kernel random-number generator (RNG) were merged by Linus Torvalds on March 21. Unfortunately a user-space regression surfaced that led Torvalds to say that he would revert the patch. The idea was good, but it "causes problems for various platforms that can't do jitter entropy and have nothing else happening either".

Plus why the Simula One VR Linux computer could be worth a serious look.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• TrueNAS Scale 22.02 Released and Resetting the NAS Paradigm — First off, let us start with what is TrueNAS Scale, and where are we in the process. TrueNAS Scale is based on Linux instead of FreeBSD like TrueNAS. We get all of the storage features we would expect in a modern solution like snapshotting, replication, iSCSI, SMB, NFS, and S3-compatible object storage.
• TrueCharts.org
• SCALE 22.02.0
• Intel Acquires Team behind PREMPT_RT patches — Linutronix is comprised of a team of highly qualified and motivated employees with a wealth of experience and involvement in the ongoing development of Linux. Led by CEO Heinz Egger and CTO Thomas Gleixner, Linutronix is the architect of PREEMPT_RT (Real Time) and the leading technology provider for industrial Linux. Gleixner has been the principal maintainer of x86 architecture in the Linux kernel since 2008.
• https://www.phoronix.com/scan.php?page=news_item&px=PREEMPT_RT-Lack-Of-Funds
• Podman 4.0 | Hacker News
• Release v4.0.0 · containers/podman
• Neil McGovern Stepping down in 6 Months — Now, nearly 5 years later, I’ve decided the timing is right for me to step back and for GNOME to start looking for its next leader.
• Linux Action News 182
• GNOME 42 Beta Released
• Steam for Chrome OS gets minimum hardware specs — If you follow Chrome Unboxed or Chrome OS development in general, the name ‘Borealis‘ may provoke some feelings of excitement and anticipation.
• Here’s which Chromebooks should support gaming w/ Steam
• HP and Lenovo Chromebooks expected to support Steam
• SimulaVR
• https://github.com/SimulaVR/Simula
• Show HN: Simula One – Portable Linux VR Computer
• Hacking on Simula (in Simula): Implementing proper window resizing - YouTube

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Linux 5.14 set to boost future enterprise application security — A particular area of interest for both enterprise and cloud users is always security and to that end, Linux 5.14 will help with several new capabilities. Mike McGrath, vice president, Linux Engineering at Red Hat told TechCrunch that the kernel update includes a feature known as core scheduling, which is intended to help mitigate processor-level vulnerabilities like Spectre and Meltdown
• Linux 5.14 Features Aplenty With New AMD GPUs, SmartShift, More Alder Lake, Core Scheduling
• QEMU 6.1 Released With RISC-V Improvements, AMD Emulation Fixes — RISC-V on QEMU has updates around OpenTitan platform support, support for VirtIO VGA, and a variety of other architecture improvements.
• PipeWire 0.3.34 Released — Bluetooth battery status support for head-set profile and using Apple extensions. aptX-LL and FastStream codec support was added.
• CodeWeavers still hiring for a ‘General Wine Developer' — CodeWeavers announced recently they need a bit of help on finding more developers, with a spot still currently open for a 'General Wine Developer' who will work on Wine and Proton.
• Microsoft, Google partner on eBPF — Hosted by the Linux Foundation, the new eBPF Foundation, which was unveiled August 12, plans to expand eBPF and extend it beyond Linux.
• eBPF Summit 2021
• The State & Future of eBPF - Thomas Graf
• eBPF for Windows - Dave Thaler (Microsoft)
• Linux On The Apple M1 Can Now Boot To The GNOME Desktop — Alyssa Rosenweig, who has been working on reverse engineering the Apple M1 GPU since January, has now posted a screenshot of "GNOME Shell on the Apple M1, bare metal."
• ‘Not great, but usable’: GNOME desktop boots on Asahi Linux for Apple M1
• 30 years of Linux: OS was successful because of how it was licensed, says Red Hat
• Linux turns 30: ​Linus Torvalds on his “just a hobby” operating system
• Happy birthday – 30 Years of Linux
• Happy Birthday, Linux: From a Bedroom Project To Billions of Devices in 30 Years
• 30th Anniversary of Linux - Linux Foundation
• Happy birthday, Linux: From a bedroom project to billions of devices in 30 years • The Register
• Linode Joins Jupiter Broadcasting In Denver - YouTube
• Chris remains on the road! Track is trip live: colonytracker.live

Plus Pwned Passwords goes open source, the public release of Fuchsia, and Valve's rumored Linux handheld.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• After staff revolt, Freenode management takes over hundreds of IRC channels for ‘policy violations’ — All told, it appears something like 700 Freenode channels have been seized and re-permissioned, supposedly because the channels mentioned Libera Chat in violation of Freenode's advertising policy.
• Freenode IRC staff resign en masse after takeover by Korea’s “crown prince”
• IRC Announcement - Fedora Magazine
• Ubuntu, Wikimedia jump ship to the Libera Chat IRC network after Freenode channel confiscations
• One week of Libera Chat — It’s been an exciting first week, and we’d like to say a massive thank you for your support, enthusiasm, and patience as we continue to work to bring Libera.Chat up to full capacity. In these first few days, we’ve been able to reach 16,500 simultaneous connections and 20,000 registered accounts.
• kline󠁧󠁢󠁳󠁣󠁴󠁿 on mastodon: “andrew lee just seized over 700 channels on freenode”
• PSA: Ubuntu’s IRC Channels Have Moved from Freenode to Libera Chat
• Gentoo Freenode channels have been hijacked — Today (2021-05-26) a large number of Gentoo channels have been hijacked by Freenode staff, including channels that were not yet migrated to Libera.chat. We cannot perceive this otherwise than as an open act of hostility and we have effectively left Freenode.
• Pwned Passwords, Open Source in the .NET Foundation and Working with the FBI
• Pwned Passwords is now open source!
• Troy Hunt on Twitter RE: the news
• The FBI will feed compromised passwords to Have I Been Pwned — As Hunt explained, the FBI is involved into all sorts of investigations into digital crimes, such as botnets, ransomware, online child sexual exploitation and terrorism. The compromised passwords they find are often being used by crime rings, so the passwords' quick addition to the HIBP database would be extremely helpful. That said, the website doesn't have a way for the feds to quickly feed passwords into its database yet.
• Google is releasing Fuchsia OS, starting w/ 1st-gen Nest Hub — Google’s long-in-development, from-scratch operating system, Fuchsia, is now running on real Made by Google devices, namely, the first-generation Nest Hub.
• Here’s an easier way to try Fuchsia OS on your computer
• Linux Action Show 431
• Valve is making a Switch-like portable gaming PC — On Tuesday, SteamDB operator Pavel Djundik spotted the change in Steam's code, which pointed to a new device named "SteamPal".
• New Audacity Owners Want a CLA — For those not yet aware, we are introducing a Contributor License Agreement (CLA), which contributors to Audacity will need to sign in order to contribute code to the project.
• Information About Our New Contributor License Agreement
• Nextcloud iOS app Open Sourced
• GitHub: nextcloud/ios/COPYING.iOS
• Nextcloud iOS app License Guidelines
• List of Open-Source iOS Apps
• Jami on the Mac App Store
• mediaU on the App Store
• Linux Game Development at Tesla? — Some of you might have heard, our dear technoking is bullish on games and making an awesome platform for all gamers in Tesla vehicles. The latest Model S on our website can give you a hint of what we're aiming for in terms of platform capability (sorry, can't divulge much more for now). The Tesla infotainment OS and platform software are based on a standard Linux, so of course, we're interested in helping the gaming community make Linux gaming excellent.

Plus the new Firefox security features in beta, great news for F-Droid, and Apple transfers CUPS to a new home.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Chrome OS’s Linux app support is leaving beta — Google announced at I/O that Linux on Chromebooks would finally be coming out of beta with the release of Chrome OS 91.
• Android 12 will finally let alternative app stores update apps on their own — In Google's official blog post announcing Android 12 the company confirmed that it’s "delivering on [its] promise to make third-party app stores easier to use on Android 12."
• Red Hat Is Hiring Even More Graphics Engineers — Red Hat is now hiring two more graphics engineers working on the Linux graphics drivers. This will be focusing on Red Hat Enterprise Linux, Fedora, and upstream graphics drivers for the open-source code around Intel, AMD, and NVIDIA.
• Senior Software Engineer - GPU Hardware Enablement
• Software Engineer - GPU, Input and Multimedia
• Principal Engineer - Hardware Enablement for Infotainment/Automotive
• New opportunities in the Red Hat Desktop team — Christian F.K. Schaller — We also have flexibility for people who want to work remotely, so as long as there is a Red Hat office in your home country you can work remotely for us.
• OpenPrinting Now Developing Upstream CUPS, Apple Bows Out — Apple has decided not to pursue feature development further on CUPS and upstream feature development has been effectively transferred to the OpenPrinting project.
• Introducing Firefox’s new Site Isolation Security Architecture — Site Isolation builds upon a new security architecture that extends current protection mechanisms by separating (web) content and loading each site in its own operating system process.
• Linux 5.13 Reverts + Fixes The Problematic University of Minnesota Patches — Linux kernel developers have finally finished reviewing all UMN.edu patches to address problematic merges to the kernel and also cleaning up / fixing their questionable patches.
• Freenode IRC staff quit after new owner "seizes" control of network — Founded 26 years ago and home to some 80,000 users over 40,000 channels, the freenode is reportedly the largest IRC network and has enjoyed something of a rollercoaster history.
• Freenode Debacle Prompts Staff Exodus, New Network — Through a complex series of events which actually started several years ago, control of Freenode has been taken from the community and put into the hands of an enigmatic and wealthy entrepreneur who claims his ultimate goal is to revolutionize IRC and return it to the forefront of online communication.
• Upheaval at freenode — Evidently there has been a change of control within the volunteer-run organization that has led to the resignations of multiple different volunteers, at least in part due to a concern about the personal information of freenode users under the new management.
• Freenode IRC staff resign en masse, unhappy about new management
• Welcome to Libera Chat — We’re excited to announce the launch of Libera.Chat, and welcome you to a next-generation IRC network for free and open source software projects and similarly-spirited collaborative endeavours.
• [HN comments] Welcome to Libera Chat
• CentOS IRC channels moving to irc.libera.chat
• Freenode IRC and Gentoo
• Spaces: The next frontier — Spaces rethink groups in Element and Matrix, and today we’re launching public beta testing on Element Web, Desktop and Android (with iOS coming soon!).
• [FOSDEM 202] Building massive virtual communities in Matrix — In this talk, we'll explain all the features we've been adding to let Matrix scale to support massive virtual communities such as FOSDEM itself, Mozilla, KDE and others.
• JB Matrix Server

We'll share the history, the context, and where things stand now around the controversial research that led to the ban.

Plus Ubuntu 21.04 is out, and we try WSL's new GUI Linux app support.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Intentionally buggy commits for fame—and papers [LWN.net] — A buggy patch posted to the linux-kernel mailing list in early April was apparently the last straw for Greg Kroah-Hartman as it led to the planned reversion of a whole slew of commits with one thing in common: their origin at the University of Minnesota (UMN).
• An open letter to the Linux community [LWN.net] — We sincerely apologize for any harm our research group did to the Linux kernel community. Our goal was to identify issues with the patching process and ways to address them, and we are very sorry that the method used in the “hypocrite commits” paper was inappropriate.
• Re: [PATCH] SUNRPC: Add a check for gss_release_msg - Greg KH
• University duo thought it would be cool to sneak bad code into Linux as an experiment. Of course, it absolutely backfired • The Register
• Greg Kroah-Hartman bans University of Minnesota from Linux development for deliberately buggy patches | ZDNet
• Revertion of all of the umn.edu commits - Kees Cook
• Linus Torvalds Responds to Linux Banning University of Minnesota | Tom’s Hardware
• Statement from CS&E on Linux Kernel research - April 21, 2021 | Department of Computer Science and Engineering | College of Science and Engineering
• Security Research Ethics Review. What’s the subject, Kenneth? | by Dave Dittrich | Apr, 2021 | Medium
• Paper: Stealthily introducing vulnerabilities in open source software via hypocrite commits
• Ubuntu 21.04 Official Flavors Released, Here’s What’s New - 9to5Linux — Ubuntu 21.04 has been released and is available to download from the Ubuntu website.
• Ubuntu 21.04 is here | Ubuntu — Ubuntu 21.04 comes with native Microsoft Active Directory integration, Wayland graphics by default, and a Flutter application development SDK.
• LINUX Unplugged 402: Our Worst Idea Yet
• (Re)introducing the Community Team
• Fedora 34 To Release Next Week As A Very Exciting Update - Phoronix — After it was pushed back last week due to blocker bugs, on Friday it was determined that Fedora 34 is now in proper shape to officially ship next week.
• Red Hat Summit 2021 | About — Virtual again: April 27-28, 2021
• Microsoft enables Linux GUI apps on Windows 10 for developers - The Verge — Microsoft is starting to allow Windows 10 testers to access Linux GUI apps.
• Microsoft Posts WSLg Preview - GUI App Support With Windows Subsystem For Linux - Phoronix
• GitHub - microsoft/wslg: Enabling the Windows Subsystem for Linux to include support for Wayland and X server related scenarios
• GitHub - microsoft/CBL-Mariner: Linux OS for Azure 1P services and edge appliances
• Introducing Linux GUI apps running on Windows using the Windows Subsystem for Linux (WSL)
• Watch Mars Ingenuity's First Flight! (VIDEO AND IMAGES) — Mars​ Perseverance​ has been a historic mission, now its chopper, Ingenuity is flying on Mars. Watch a recap right here and see the very first video and images of it up in the air.
• Open source goes to Mars 🚀 - The GitHub Blog — Today, we want to make the invisible visible. So, we have worked with JPL to place a new Mars 2020 Helicopter Mission badge on the GitHub profile of every developer who contributed to the specific versions of any open source projects and libraries used by Ingenuity.
• Open Source on Mars: Community powers NASA’s Ingenuity Helicopter · The ReadME Project · GitHub — Today, nearly 12,000 developers will see a new badge on their GitHub profile celebrating their contributions to the specific versions of projects and libraries used by NASA to fly the Ingenuity Helicopter on Mars.
• Work Progresses Toward Ingenuity’s First Flight on Mars - NASA Mars
• We’re Getting Ready for Ingenuity’s Second Flight - NASA Mars
• We Are Prepping for Ingenuity’s Third Flight Test - NASA Mars
• Mars helicopter shares first aerial color photo and preps for Sunday flight - CNN
• NASA’s Mars helicopter completes second, higher flight – Spaceflight Now
• Ingenuity: Nasa's Mars helicopter makes it three from three — On Sunday, the little chopper rose to a height of 5m before speeding off laterally for 50m - half the length of a football field.

Plus Google adds its weight behind Rust in the Linux Kernel, and the new security features landing in WSL2.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Dell to spin out remaining VMware stake, cements Friends With Benefits status for at least five years — The proposed transaction has been pitched as delivering value for shareholders, both in the short term and once the two corporations have less complicated structures that will let them compete more aggressively.
• Dell Technologies Announces Planned VMware Spin-Off — Under terms of the planned spin-off, VMware will distribute a special cash dividend of $11.5 - $12 billion to all VMware shareholders, including Dell Technologies.
• Dell Buys EMC For $67B In Largest Deal In Tech History
• COSMIC to Arrive in June Release of Pop!_OS 21.04 — We’re providing a honed desktop user experience in Pop!_OS through our GNOME-based desktop environment: COSMIC. It’s a refined solution that makes the desktop easier to use, yet more powerful and efficient for our users through customization.
• There’s no place like GNOME: System 76 introduces COSMIC desktop GUI for its Pop!_OS Linux — System76 said that it studied user behaviour and sought to refine key elements of the desktop accordingly.
• pop-os/cosmic: — Computer Operating System Main Interface Components
• Carl Richell on Twitter — Yes, indeed. Pop!_Shell will remain a separate extension.
• Carl Richell on Twitter — Yes, tiling will remain a separate extension and can be used on other distros. COMIC can as well.
• Carl Richell on Twitter — The is an extension that creates a unique GNOME UX while maintaining compatibility with GNOME and the GNOME app ecosystem and HIG.
• Carl Richell on Twitter — Pop with the COSMIC desktop.
• Carl Richell on Twitter — We’re currently developing and testing on X and Pop 21.04 will default to X as well. However, we may be able to shift over to Wayland for future releases with the recent nvidia news about Wayland driver support.
• Google backs effort to bring Rust to the Linux kernel — "We feel that Rust is now ready to join C as a practical language for implementing the kernel."
• Google Supports Getting Rust Into The Linux Kernel
• HN: Linus Torvalds on Rust support in kernel
• Linux 5.12 Diverted From Release To Allow An Extra Week Of Testing — Due to still a number of fixes landing this week, .Linus Torvalds decided to be safe and go for the extra round of testing.
• The 12 Most Interesting Changes Of Linux 5.12
• A bumpy 5.12 is due for release
• Element Matrix Services launches bridging for Microsoft Teams — A single Microsoft Teams Bridge supports unlimited users across unlimited channels. Pricing is based on the number of active users using the bridge from MS Teams, at a cost of $0.50 per user per month. Traffic from Element (or any other Matrix-based client) is free.
• HN: Will this bridge be be open source?
• Servicing the Windows Subsystem for Linux (WSL) 2 Linux kernel — We’ve just shipped the 5.10.16.3 WSL 2 Linux kernel version to Windows Insiders which brings exciting new changes: Support for the LUKS disk encryption, and some long-awaited bug fixes.
• Microsoft Docs: Release Notes for WSL kernel
• microsoft/WSL: Issues found on WSL
• Hangover 0.6.5 Released For Running Windows Software On ARM64, POWER — Wednesday's release of Hangover 0.6.5 now allows for starting QEMU automatically if needed.

Plus the facts around RMS’s return to the FSF board, and our analysis of the situation.

Special Guest: Neil McGovern.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• GNOME 40 Release Notes — GNOME 40 is the latest version of GNOME, and is the result of 6 months’ hard work by the GNOME community. It contains major new features, as well as many smaller improvements and bug fixes. In total, the release incorporates 24571 changes, made by approximately 822 contributors.
• Feeling brave? GNOME 40 is here and you can have a poke around in the Fedora 34 beta
• GNOME 40
• GNOME 3.38.5 Released with Support for Handling Monitor Changes During Screencasts — Coming a month after the GNOME 3.38.4 point release the GNOME 3.38.5 update is here with more bug fixes and various improvements to make the GNOME 3.38 desktop environment series more stable, secure, and reliable.
• Forthcoming OpenSSL release — This release will be made available on Thursday 25th March 2021 between 1300-1700 UTC.
• CVE-2021-3450: CA certificate check bypass with X509_V_FLAG_X509_STRICT — Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check.
• Cloud CPU Benchmarking Report | Linode
• Run Windows on Linode
• RMS is Back — Free software advocate Richard Stallman is rejoining the board of the Free Software Foundation.
• An open letter to remove Richard M. Stallman from all leadership positions
• An open letter in support of Richard M. Stallman
• Free software advocates seek removal of Richard Stallman and entire FSF board | Ars Technica
• Statement on the Re-election of Richard Stallman to the FSF Board | Electronic Frontier Foundation
• Free Software Community Condemns Richard Stallman’s Reinstatement to FSF Board of Directors
• Richard Stallman returns to the Free Software Foundation
• SUSE joins open source bodies calling for Stallman to go
• From PS5 to Ford F-150: How a global chip shortage is 'impacting everything' — The biggest news in the automotive industry right now isn't new electric vehicles or Tesla CEO Elon Musk's latest comments. It's a major semiconductor shortage that's hurting automakers across the globe.
• [Video] How The Global Computer Chip Shortage Happened

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Linux Foundation serves up free code-signing service — The Linux Foundation, with the support of Google, Red Hat, and Purdue University, is launching a service called sigstore to help developers sign the code they release.
• Linux Foundation announces new open-source software signing service
• Introducing sigstore — Installing most open source software today is equivalent to picking up a random thumb-drive off the sidewalk and plugging it into your machine.
• rekor: Signature Transparency Log — Rekor's goals are to provide an immutable tamper resistant ledger of metadata generated within a software projects supply chain.
• Fulcio: SigStore WebPKI — fulcio is a free Root-CA for code signing certs - issuing certificates based on an OIDC email address.
• cosign: Container Signing — Container Signing, Verification and Storage in an OCI registry.
• Diversity, Flexibility, and Linux: Prioritizing Generous Transfer
• German software company SUSE targets pre-summer IPO — SUSE is targeting a pre-summer initial public offering in a deal that may value the private equity-backed company with German roots at 7-8 billion euros ($8.3-9.5 billion), people close to the matter said.
• SUSE prepares for multi-billion Euro IPO
• VirtIO Sound Driver Coming — The virtual sound driver for VirtIO has been queued up into the sound-next code ahead of the Linux 5.13 merge window this spring.
• GNOME 40 Introducing Virtual Monitors — This headless native back-end that was merged today into GNOME 40's Mutter allows for running the native back-end atop a render node in a headless configuration without a physical display attached.
• GRUB 2.06 Release Candidate Available For Testing — Among the changes coming with GRUB 2.06 are expanded Btrfs RAID support, LUKS2 encrypted disk support, the BootHole patches and other security work,
• Progress Report Asahi Linux — To adapt the Apple world into a devicetree world, we are developing m1n1.
• Current status of the Corellium team's effort — Wifi now works on Linux on the M1.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Canonical: Flutter Is The Default Choice For Future Ubuntu Apps — Along with the new installer, Ken Vandine, Engineering Manager, Ubuntu Desktop, Canonical revealed that the out-of-the-box experience for devices preloaded with Ubuntu will also be powered by Flutter.
• Ubuntu on Twitter — Flutter is the default choice for future Ubuntu apps. @kenvandine, Engineering Manager, is here to tell you about some of Canonical’s contributions to Flutter at #FlutterEngage.
• Getting started with Flutter on Ubuntu
• Version 2 of Google’s Flutter toolkit adds support for desktop and web apps
• The Linode network model — As we worked on expanding our global network, three things were non-negotiable: maintaining vendor diversity, balancing flexibility and control, and incorporating Linux starting at the network level as much as possible.
• Chrome (Chromium) release cycle shortened to 4 weeks, Chrome(ium) gets “Extended Stable” release every 8 weeks — We are excited to announce that Chrome is planning to move to releasing a new milestone every 4 weeks, starting with Chrome 94 in Q3 of 2021.
• Chrome Moving To A 4-Week Release Cycle
• (2019) Mozilla Shifting Firefox To A Four-Week Release Cycle
• Linux Mint may start pushing high-priority patches to users — Besides looking for available updates, the Manager will also track cases where updates are overlooked. This will include metrics on when updates were last applied; when were packages last upgraded; and how many days have passed since a particular update was made available.
• Linux Mint Finds Many Of Its Users Are Running Behind On Security Updates
• Linux Mint emits fix for memory-gobbling Cinnamon
• Update your computer! – The Linux Mint Blog
• A warning about 5.12-rc1 — This merge window, we had a very innocuous code cleanup and simplification that raised no red flags at all, but had a subtle and very nasty bug in it: swap files stopped working right. And they stopped working in a particularly bad way: the offset of the start of the swap file was lost. Swapping still happened, but it happened to the wrong part of the filesystem, with the obvious catastrophic end results.
• That Linux 5.12 Severe Data Corruption Bug Hits Intel CI Systems - Issue Caused By Swap File
• Watch Out For Possible Data Loss On Early Linux 5.12 Kernels
• Save the Date! | Container Plumbing Days — The Container Plumbing Days will be a 2-day event to investigate, discuss, hack, learn, and celebrate the “lower-level” open source container technologies, everything from the container runtime on down to the Linux kernel.

Plus why we've recently switched back to Firefox, and more.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Red Hat Announces Free “RHEL For Open-Source Infrastructure” — Eligible organizations will be able to enjoy no-cost RHEL for use within their infrastructure for continuous integration, web servers, and more.
• Red Hat returns with another peace offering in the wake of the CentOS Stream affair: More free stuff
• Red Hat Announcement — Extending no-cost Red Hat Enterprise Linux to open source organizations
• Red Hat opens the door for both VMs tand containers in its latest OpenShift release
• Red Hat OpenShift 4.7 Blurs The Line Between VMs And Containers — With OpenShift 4.7, Red Hat attempts to simplify the migration of virtual machines to containers.
• Red Hat OpenShift 4.7 Is Now Available
• OpenShift Container Platform 4.7 release notes
• [Video] What’s new in Red Hat OpenShift 4.7
• Introducing the Framework Laptop — We’re here to prove that designing products to last doesn’t require sacrificing performance, quality, or style.
• Framework Laptop
• Google Funds Linux Kernel Developers to Focus Exclusively on Security — Silva and Chancellor’s exclusive focus is to maintain and improve kernel security and associated initiatives in order to ensure the world’s most pervasive open source software project is sustainable for decades to come.
• Latest Firefox release includes Multiple Picture-in-Picture and Total Cookie Protection — In today’s release, we added multiple picture-in-picture views, available on Mac, Linux and Windows, and includes keyboard controls for fast forward and rewind. Total Cookie Protection stops cookies from tracking you around the web by creating a separate cookie jar for every website.
• Firefox 86.0 released
• Total Cookie Protection
• Firefox for Enterprise 86 Release Notes.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Raspberry Pi Users Mortified As Microsoft Repository That Phones Home Is Added To Pi OS — The latest update installs a Microsoft apt repository on any machine running Raspberry Pi OS, and does it without admin consent.
• Microsoft repo secretly installed on all Raspberry Pi’s Linux OS
• Microsoft repo installed on all Raspberry Pi’s
• Eben Upton on Twitter — I can’t understand why you think this was a controversial thing to do. We do things of this sort all the time without putting out a blog post about how to opt out.
• Ubuntu Core 20 Released For IoT/Embedded Linux Use-Cases — Ubuntu Core 20 is offered for x86_64 and ARM hardware and is backed by Canonical with ten years of support.
• Containerize all the things with Ubuntu Core 20
• Ubuntu Core
• How to Deploy Guacamole with Marketplace Apps
• Donating Docker Distribution to the CNCF — To make the project clearly an industry wide collaboration, hosting it in the CNCF was the obvious place, as it is the home of many successful collaborative projects, such as Kubernetes and Containerd.
• Distribution — The toolkit to pack, ship, store, and deliver container content.
• AlmaLinux, the CentOS Linux replacement, beta is out — AlmaLinux, the open-source enterprise-level Linux distribution created as an alternative to CentOS, has been released in beta with most Red Hat Enterprise Linux packages.
• Google funds project to secure Apache web server with new Rust component — The module will be based on Rustls; a Rust open-source library developed as an alternative to the C-based OpenSSL project.
• LKML: Hector Martin: [PATCH 00/18] Apple M1 SoC platform bring-up — This series brings up initial support for the Apple M1 SoC, used in the 2020 Mac Mini, MacBook Pro, and MacBook Air models.
• Hector Martin's Development Streams

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.

Support Linux Action News

Links:

• Element suspended on Google Play Store — At 2021-01-29 at 21:35 UTC Google suspended Element from the Play Store without warning or notification
• Element sees fivefold increase in signups after Whatsapp privacy debacle — After Whatsapp’s announcement, rival app Telegram reported a 500% increase in users and Signal saw an 18-fold increase in download numbers, putting it on track to cross 1m new users each day.
• Element team waiting hours — Update: we’re still waiting for a response from Google to our explanatory mail sent ~8 hours ago. Thanks all for your patience while we get this sorted...
• New Linux SUDO flaw lets local users gain root privileges — The issue is a heap-based buffer overflow exploitable by any local user (normal users and system users, listed in the sudoers file or not), with attackers not being required to know the user's password to successfully exploit the flaw. The vulnerability was introduced in the Sudo program almost 9 years ago, in July 2011.
• 10-year-old Sudo bug lets Linux users gain root-level access
• Buffer overflow in command line unescaping
• Sudo vulnerability allows attackers to gain root privileges on Linux systems (CVE-2021-3156) - Help Net Security — "This vulnerability is perhaps the most significant sudo vulnerability in recent memory (both in terms of scope and impact) and has been hiding in plain sight for nearly 10 years."
• New Linux Kernel Vulnerabilities Patched in All Supported Ubuntu Releases
• Mitre - CVE-2020-28374
• Red Hat Customer Portal: CVE-2020-28374
• Debian: CVE-2020-28374
• Ubuntu: CVE-2020-28374
• The killing of CentOS Linux: ‘The CentOS board doesn’t get to decide what Red Hat engineering teams do’ — Brian Exelbierd, responsible for Red Hat liaison with the CentOS project and a board member of that project, has told The Register that CentOS Linux is ending because Red Hat simply refused to invest in it.
• Rocky Linux gets a new sponsor—Gregory Kurtzer’s startup, Ctrl IQ — Rocky Linux is to be a beneficiary of Ctrl IQ's revenue, not its source—the company describes itself in its announcement as the suppliers of a "full technology stack integrating key capabilities of enterprise, hyper-scale, cloud and high-performance computing."
• Linux maintainer says long-term support for 5.10 will stay at two years unless biz world steps up and actually uses it — Linux kernel maintainer Greg Kroah-Hartman has responded to complaints that the current promise of two years for 5.10 is not enough, explaining that support is not automatic but requires commercial help.
• Rust Game Server One-Click App Linode — A free-for-all battle in a harsh open-world environment.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Datadog: Datadog - the unified monitoring and analytics platform for comprehensive visibility into cloud, hybrid, and multi-cloud environments.

Support Linux Action News

Links:

• New Year, new Red Hat Enterprise Linux programs: Easier ways to access RHEL — When we announced our intent to transition to CentOS Stream, we did so with a plan to create new programs to address use cases traditionally served by CentOS Linux.
• Staying on GTK3 and GNOME 3.38 this cycle - Desktop - Ubuntu Community Hub — The topic of what to do about the new GNOME started being discussed and after some consideration, we decided to stick to GTK3 and GNOME 3.38 this cycle.
• Welp, Ubuntu 21.04 Won’t Ship with GNOME 40 or GTK4 - OMG! Ubuntu!
• Stepping up for a truly open source Elasticsearch | AWS Open Source Blog — In order to ensure open source versions of Elasticsearch and Kibana remain available and well supported, including in our own offerings, we are announcing today that AWS will step up to create and maintain a ALv2-licensed fork of open source Elasticsearch and Kibana.
• AWS, as predicted, is forking Elasticsearch | ZDNet
• The Next Gen Database Servers Powering Let’s Encrypt - Let’s Encrypt - Free SSL/TLS Certificates — By going with AMD EPYC, we were able to get 64 physical CPU cores while keeping clock speeds high: 2.9GHz base with 3.4GHz boost. More importantly, EPYC provides 128 PCIe v4.0 lanes, which allows us to put 24 NVMe drives in a single machine.
• Ubuntu Can Run on Apple Silicon, Devs Say It’s ‘Completely Usable’ - OMG! Ubuntu! — Developers at ARM virtualisation company Corellium have managed to get Ubuntu 20.04 up and running on the new Apple Silicon Mac Mini.
• How We Ported Linux to the M1
• [RFC PATCH 0/7] Linux on Apple Silicon [LWN.net]
• Raspberry Pi Foundation launches $4 microcontroller with custom chip | TechCrunch — It has a dual-core Arm processor (running at 133MHz), 264KB of RAM, 26 GPIO pins including three analog inputs, a micro-USB port, and a temperature sensor.
• Raspberry Pi Foundation Release Their Own Silicon, the Raspberry Pi Pico - 9to5Linux
• Security Bulletin 1 - Home Assistant — It has come to our attention that certain custom integrations have security issues and could potentially leak sensitive information. Home Assistant is not responsible for custom integrations and you use custom integrations at your own risk.

Plus Google makes their Fuchsia intentions a bit more clear, and why Linux 5.10 is a BIG deal.

Sponsored By:

• Linode: Sign up using the link on this page and receive a $100 60-day credit towards your new account.
• Ting: Save $25 off your first device, or $25 in service credit if you bring one!

Support Linux Action News

Links:

• Before You Get Mad About The CentOS Stream Change, Think About… — But, before you get angry, please read this. I’ve been surfing Twitter, Reddit, and HackerNews threads just like many others. I’ve gathered some major buckets of complaints which seem to come up, and I’d like to address each of them.
• CentOS project lead disappears
• Usage Statistics and Market Share of Linux for Websites, December 2020
• Red Hat and the CentOS Project Join Forces to Speed Open Source Innovation
• Transforming the development experience within CentOS
• CentOS Project shifts focus to CentOS Stream
• FAQ: CentOS Stream Updates
• Google is opening Fuchsia OS development to the public — To both support developers and make the Fuchsia development process less skunkworks and more public, Google is opening Fuchsia’s bug tracker to the public.
• Expanding Fuchsia’s open source model | Google Open Source Blog
• Linux 5.10 LTS Released As One Of The Biggest Kernel Releases In A While
• Linux 5.10 Released — Besides being the last kernel release of 2020, this is a significant milestone in that it's also a Long Term Support (LTS) kernel to be maintained for at least the next five years and also is a huge kernel update in general with many new features.
• The 10 Most Interesting Features Of Linux 5.10

Plus the Linux tech Greg KH is most excited about, and more.

Support Linux Action News

Links:

• Ubuntu fixes bugs that standard users could use to become root — A handful of commands was all it took for untrusted users to become all-powerful.
• Now-patched Ubuntu desktop vulnerability allows privilege escalation
• How to get root on Ubuntu 20.04 by pretending nobody’s /home
• Meet Proxmox Backup Server, a Debian-Based Open Source Enterprise Backup Solution — Proxmox launched today Proxmox Backup Server as a new edition of its Debian-based Linux distribution engineered to act as an enterprise solution for backing up and restoring physical hosts, virtual machines and containers.
• Proxmox Roadmap
• Proxmox Backup Server
• Proxmox Backup Git Repo
• PayPal's crypto trading goes live in the US — Customers will be able to trade up to $20,000 a week, rather than the originally announced $10,000.
• Systemd catches up with bind events — Perhaps the real lesson here is that the community would be better served by closer relations between the kernel project and projects managing low-level utilities like systemd.
• eBPF - The Future of Networking & Security — Cilium is an open source project that has been designed on top of eBPF to address the networking, security, and visibility requirements of container workloads. It provides a high-level abstraction on top of eBPF. Cilium is to eBPF what Kubernetes and container runtimes are to Linux kernel namespaces, cgroups, and seccomp
• Linux App Summit 2020

Plus Google Cardboard goes open source, and a neat machine-learning tool to pull songs apart.

Special Guest: Wes Payne.

Support Linux Action News

Links:

• Google gives most Chromebooks an extra year of software support — Seven Chromebooks from Lenovo recently had their support lifespan extended, and now Google has updated the EOL date for 135 more models from several manufacturers. Most models received another year of support, others only got another six months, and some now have two more years.
• What’s new in Chrome OS: Virtual Desks, simpler printing and more — Think of Virtual Desks as separate workspaces within your Chromebook. Use this feature to create helpful boundaries between projects or activities. If you’re working on multiple projects, you can dedicate a desk to each one. Open Overview and tap New Desk in the top right-hand corner of your screen to try out Virtual Desks.
• Google Enlists Outside Help to Clean Up Android's Malware Mess — Today Google is announcing a partnership with three antivirus firms—ESET, Lookout, and Zimperium—to create an App Defense Alliance.
• Open sourcing Google Cardboard — Today, we’re releasing the Cardboard open source project to let the developer community continue to build Cardboard experiences and add support to their apps for an ever increasing diversity of smartphone screen resolutions and configurations.
• Access ESM, now free to the community, via the updated Ubuntu Advantage client — Canonical is happy to announce that all community users are entitled to a free Ubuntu Advantage for Infrastructure account for access to Extended Security Maintenance (ESM) and Kernel Livepatch* for Ubuntu 14.04 LTS (Trusty Tahr) for up to three machines, and up to 50 machines for all official Ubuntu Members.
• Releasing Spleeter: Deezer Research source separation engine — We are releasing Spleeter to help the research community in Music Information Retrieval (MIR) leverage the power of a state-of-the-art source separation algorithm. It comes in the form of a Python Library based on Tensorflow, with pretrained models for 2, 4 and 5 stems separation.
• Microsoft Will Release Their Edge Web Browser For Linux — Microsoft announced at their Ignite conference in Seattle that their Edge web-browser will see a Linux release

Plus a new magazine from the Raspberry Pi Foundation, several vulnerabilities in Intel's Management Engine, and more!

Support Linux Action News

Links:

• Google collected location data from Android users who didn't know — In a nutshell, the whereabouts of every active Android phone and tablet in the world were tracked even with location services disabled and no carrier SIM card inserted.
• Ubuntu want community input on Mir — However we’re also at the place where we need to reach out to the community and ask what are the aspects of your desktop that you value most, to help us figure out a direction for Mir.
• New magazine from the Raspberry Pi Foundation - Hackspace — The first issue of HackSpace magazine is here! Join us as we explore thinking machines, build a trebuchet, learn how Arduino changed the world, see how far we can overclock a Raspberry Pi using liquid nitrogen, and much more…
• Linus gets heated about kernel security — Linux Lord fires up over proposal to secure Linux by shutting down wonky processes
• Then calmly explains his position — His long post on the matter suggested to security practitioners that “'Do no harm' should be your mantra for any new hardening work.”
• Others act like children — So on the day of Kees' presentation, where he tried to drop a useless 0day on me and talk up how many upstream developers reviewed his code that did the same limitation *right*, I wrote an exploit of my own.
• Vulnerability in Intel Management Engine — Remote attackers could launch commands on a host of Intel-based computers, including laptops and desktops shipped with Intel Core processors since 2015.

• GrSecurity Kernel Patches Will No Longer Be Free To The Public - Phoronix
• Secure Boot booted from Debian 9 'Stretch'
• Devuan GNU/Linux 1.0 "Jessie" to Support Raspberry Pi 3, Acer Chromebook Devices
• Get a free AIY Projects Voice Kit with The MagPi 57! - The MagPi MagazineThe MagPi Magazine
• What is this bullsh*t, Google? Nexus phones starved of security fixes after just three years • The Register
• Full MP3 Support Being Added To Fedora Linux - Phoronix

Support Linux Action News