Feed aggregator

Version:next-20250417 (linux-next) Released:2025-04-17

Elive, or Enlightenment live CD, is a Debian-based desktop Linux distribution and live CD featuring the Enlightenment window manager. Besides being pre-configured and ready for daily desktop use, it also includes "Elpanel" - a control centre for easy system and desktop administration.

Inside this week's LWN.net Weekly Edition:

• Front: APT 3.0; Fedora 42; Lots more LSFMM+BPF coverage.
• Briefs: CVE funding; Yelp vulnerability; Fedora 42; Manjaro 25.0; GCC 15; Pinta 3.0; Quotes; ...
• Announcements: Newsletters, conferences, security updates, patches, and more.

Debian's Advanced Package Tool (APT) is the suite of utilities that handle package management on Debian and Debian-derived operating systems. APT recently received a major upgrade to 3.0 just in time for inclusion in Debian 13 ("trixie"), which is planned for release sometime in 2025. The version bump is warranted; the latest APT has user-interface improvements, switches to Sequoia to verify package signatures, and includes solver3—a new solver that is designed to improve how it evaluates and resolves package dependencies.

GNOME contributor Michael Catanzaro has written a blog post about a noteworthy vulnerability in GNOME's help browser, Yelp.

I don't normally blog about particular CVEs, but Yelp CVE-2025-3155 is noteworthy because it is quite severe, public for several weeks now, and not yet fixed upstream. In short, help files can read your filesystem and execute arbitrary JavaScript code, allowing an attacker to exfiltrate any files your Unix user has access to.

The vulnerability was first reported on December 25, and it was made public on March 26 after the 90-day-disclosure deadline was reached. Patches have been proposed to fix the issue. The bug reporter has published a writeup demonstrating the attack. Catanzaro asks that Linux vendors "please consider applying the provided patches even though they have not yet been accepted upstream".

Allowing directories to be modified in parallel was the topic of Jeff Layton's filesystem-track session at the 2025 Linux Storage, Filesystem, Memory Management, and BPF Summit (LSFMM+BPF). There are certain use cases, including for the NFS and Lustre filesystems, as mentioned in a patch set referenced in the topic proposal, where contention in creating multiple files in a directory is causing noticeable performance problems. In some testing, Layton has found that the inode read-write semaphore (i_rwsem) for the directory is serializing operations; he wanted to discuss alternatives.

The BPF verifier is not magic; it cannot solve the halting problem. Therefore, it has to err on the side of assuming that a program will run too long if it cannot prove that the program will not. The ultimate check on the size of a BPF program is the one-million-instruction limit — the verifier will refuse to process more than one-million instructions, no matter what a BPF program does. Alexei Starovoitov gave a talk at the 2025 Linux Storage, Filesystem, Memory-Management, and BPF Summit about that limit, why correctly written BPF programs shouldn't hit it, and how to make the user experience of large BPF programs better in the future.

Wine 10.5 is out with ARM64 large page support, updated Mono 10.0, Bluetooth pairing, Vulkan H.264 decoding, and more.

The post Wine 10.5 Released with Vulkan H.264 Decoding appeared first on Linux Today.

We recommend the best free and open source GUI software for taking screenshots.

The post 8 Best Free Linux Screen Capture GUI Tools appeared first on Linux Today.

Pico.sh is a set of developer services powered by SSH to host static websites, share code snippets, create secure web tunnels and more.

The post Pico.sh: The SSH-Powered Services Every Developer Should Try appeared first on Linux Today.

Celluloid 0.28 open-source video player is out with a refreshed interface, playlist duration display, and playlist navigation via next/previous buttons.

The post Celluloid 0.28 Video Player Brings UI Redesign, Lua Modules Support appeared first on Linux Today.

Sergiu Gatlan reports that the US government has extended funding for the Common Vulnerabilities and Exposures (CVE) program, following yesterday's reports that funding would run out as of April 16.

"The CVE Program is invaluable to cyber community and a priority of CISA," the U.S. cybersecurity agency told BleepingComputer. "Last night, CISA executed the option period on the contract to ensure there will be no lapse in critical CVE services. We appreciate our partners' and stakeholders' patience."

The article also mentions the launch of a CVE Foundation, to transition the CVE program to a dedicated foundation and eliminate "a single point of failure in the vulnerability management ecosystem", as well as a European vulnerability database (EUVD) backed by the European Union Agency for Cybersecurity (ENISA). Details on these initiatives are scant at the moment, and it is unclear whether restoration of funding will have any impact on these efforts.

As a system runs, its memory becomes fragmented; it does not take long before the allocation of large, physically contiguous memory ranges becomes difficult or impossible. The contiguous memory allocator (CMA) is a kernel subsystem that attempts to address this problem, but it has never worked as well as some would like. Two sessions in the memory-management track at the 2025 Linux Storage, Filesystem, Memory-Management, and BPF Summit looked at how CMA can be improved; the first looked at providing guaranteed allocations, while the second addressed some inefficiencies in CMA.

OpenSSL 3.5 introduces major crypto updates, including PQC support, server-side QUIC, and new TLS defaults.

The post OpenSSL 3.5 Brings Major Cryptographic Shifts appeared first on Linux Today.

This guide explains what Nefoin is and how to use it to automatically install Nerd Fonts on Linux and macOS with zero hassle.

The post Nefoin: Auto-Install Nerd Fonts in Linux and macOS with One Command appeared first on Linux Today.

The cp command (short for copy) is one of the most commonly used commands in Linux and other UNIX-like operating systems. It’s used to copy files and directories from one location to another on the same system.

If you’re copying files between systems over a network, the scp (secure copy) command is typically used instead of cp. Unlike cp, which only works locally, scp allows you to securely transfer files between your local machine and a remote server, or between two remote systems over SSH.

In this guide, we’ll focus on the cp command and show you how to force it to overwrite files without asking for confirmation on Linux.

The post How to Force cp Command to Overwrite Without Confirmation in Linux appeared first on Linux Today.

Projects like EU OS seriously worry me. I fear that no matter how well-intentioned they are, they may end up being not just irrelevant unless other things happen, but serious distractions.

The post The Last Thing the EU Needs Is Its Own Linux Distro appeared first on Linux Today.

Security updates have been issued by AlmaLinux (gvisor-tap-vsock, kernel, and kernel-rt), Fedora (chromium, dnf, dotnet9.0, golang, lemonldap-ng, mariadb10.11, perl-Crypt-URandom-Token, perl-DBIx-Class-EncodedColumn, php-tcpdf, podman-tui, and trunk), Red Hat (java-17-openjdk and kernel), Slackware (mozilla), SUSE (apache2-mod_auth_openidc, cosign, etcd, expat, flannel, kernel, libsqlite3-0, libvarnishapi3, mozjs52, Multi-Linux Manager 4.3: Server, Multi-Linux Manager 5.0: Server, Proxy and Retail Server, pgadmin4, rekor, rsync, rubygem-bundler, and webkit2gtk3), and Ubuntu (7zip, Docker, and quickjs).

As developers, we often stick to our favorite built-in Python functions and sometimes even write custom solutions for problems that already have efficient built-in solutions. However, Python’s standard library is filled with hidden gems that can simplify our code and improve performance.

In this article, we’ll explore some lesser-known but incredibly useful Python functions that deserve more attention.

The post 10 Python Built-in Functions That Will Simplify Your Code appeared first on Linux Today.

Version:next-20250416 (linux-next) Released:2025-04-16