Feed aggregator

Where do Linux and Rust go from here? A roundtable of kernel developers share their thoughts.

The post Rust in Linux now: Progress, pitfalls, and why devs and maintainers need each other appeared first on Linux Today.

DXVK 2.4.1 is here two and a half months after DXVK 2.4 to improve support for several D3D8/D3D9 games, including GTA: San Andreas, Operation Racoon City, Prince of Persia (2008), Rayman 3, Serious Sam 2, Splinter Cell: Pandora Tomorrow, The First Templar, and The Sims 2.

The post DXVK 2.4.1 Improves Support for God of War, GTA: San Andreas, and Other Games appeared first on Linux Today.

Arch-based EndeavourOS Neo, the latest refresh release with key bug fixes and essential updates, is available now. Here’s what’s new!

The post EndeavourOS Neo Released as a Refresh to the Fifth-Anniversary Edition appeared first on Linux Today.

FeedDeck is an RSS and social media feed reader, inspired by TweetDeck. FeedDeck lets you follow your favorite feeds in one place.

The post FeedDeck – RSS and social media feed reader appeared first on Linux Today.

Fwupd 1.9.25 is here to add support for more devices, including Algoltek devices supporting sector erase, Dell K2 docks, Intel USB4 hub 5787, Nordic HID devices supporting DFUv1, and more MediaTek scaler devices. You can now use fwupd to update the firmware on these devices.

The post Fwupd 1.9.25 Adds Support for Dell K2 Docks and More Intel USB4 Hubs appeared first on Linux Today.

Security researcher Simone Margaritelli has reported a new vulnerability in CUPS, the software that many Linux systems use to manage printers and print jobs. Margaritelli describes the impact of the attack by saying:

A remote unauthenticated attacker can silently replace existing printers' (or install new ones) IPP urls with a malicious one, resulting in arbitrary command execution (on the computer) when a print job is started (from that computer).

The vulnerability relies on a few related problems in CUPS libraries and utilities; versions before 2.0.1 or 2.1b1 (depending on the component) may be affected.

Red Hat has released a security bulletin as well.

Discover how Atoms, a user-friendly GUI tool, simplifies Linux chroot environment creation and management, making it easy for developers to focus on testing and development.

The post Atoms is a GUI Tool for Chroot Management on Linux appeared first on Linux Today.

The Samba project has received funding of €688,800 from the Sovereign Tech Fund to enhance security and functionality.

The post Samba Project Receives EUR 688,800 From Sovereign Tech Fund appeared first on Linux Today.

MPV 0.39 video player is here with NVIDIA RTX and Intel VSR scaling, Windows media controls, multi-touch support, and more.

The post MPV 0.39 Video Player Rolls Out with New Capabilities appeared first on Linux Today.

Danilo Krummrich gave a talk at Kangrejos 2024 focusing on the question of how the Rust-for-Linux project could improve at getting device and driver abstractions upstream. As a case study, he used some of his recent work that attempts to make it possible to write a PCI driver entirely in Rust. There wasn't time to go into as much detail as he would have liked, but he did demonstrate that it is possible to interface with the kernel's module loader in a way that is much harder to screw up than the current standard approach in C.

PeerTube 6.3, a decentralized video platform, introduces audio-only streaming options, making it perfect for music broadcasts or low-bandwidth scenarios.

The post PeerTube 6.3 Released with Separate Audio/Video Streams appeared first on Linux Today.

Version 17 of the PostgreSQL database has been released.

This release of PostgreSQL adds significant overall performance gains, including an overhauled memory management implementation for vacuum, optimizations to storage access and improvements for high concurrency workloads, speedups in bulk loading and exports, and query execution improvements for indexes. PostgreSQL 17 has features that benefit brand new workloads and critical systems alike, such as additions to the developer experience with the SQL/JSON JSON_TABLE command, and enhancements to logical replication that simplify management of high availability workloads and major version upgrades.

LWN recently covered some of the interesting new features and security enhancements in PostgreSQL 17.

The online-privacy-focused Tor project has announced that it has "joined forces and merged operations" with the Tails OS Linux distribution. Countering the threat of global mass surveillance and censorship to a free Internet, Tor and Tails provide essential tools to help people around the world stay safe online. By joining forces, these two privacy advocates will pool their resources to focus on what matters most: ensuring that activists, journalists, other at-risk and everyday users will have access to improved digital security tools.

In late 2023, Tails approached the Tor Project with the idea of merging operations. Tails had outgrown its existing structure. Rather than expanding Tails's operational capacity on their own and putting more stress on Tails workers, merging with the Tor Project, with its larger and established operational framework, offered a solution. By joining forces, the Tails team can now focus on their core mission of maintaining and improving Tails OS, exploring more and complementary use cases while benefiting from the larger organizational structure of The Tor Project.

The extensible scheduler class (sched_ext) enables the implementation of CPU schedulers as a set of BPF programs loaded from user space; it first hit the mailing lists in late 2022. Sched_ext has engendered its share of controversy since, but is currently slated to be part of the 6.12 kernel release. At the 2024 Linux Plumbers Conference, the growing sched_ext community held one of its first public gatherings; sched_ext would appear to have launched a new burst of creativity in scheduler design.

Security updates have been issued by AlmaLinux (container-tools:rhel8, dovecot, emacs, expat, git-lfs, go-toolset:rhel8, golang, grafana, grafana-pcp, gtk3, kernel, kernel-rt, nano, python3, python3.11, python3.12, and virt:rhel and virt-devel:rhel), Debian (mediawiki and puredata), Fedora (chisel), Mageia (glib2.0, gtk+2.0 and gtk+3.0, and python-astropy), Red Hat (git-lfs, grafana, grafana-pcp, kernel, and kernel-rt), SUSE (kubernetes1.24, kubernetes1.25, kubernetes1.26, kubernetes1.27, kubernetes1.28, opensc, and python36), and Ubuntu (apparmor, apr, ca-certificates, linux, linux-aws, linux-kvm, linux-lts-xenial, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-raspi, openjpeg2, ruby-rack, and tomcat8, tomcat9).

Steganography is the art and science of concealing messages in other messages in such a way that no one, apart from the sender and intended recipient, suspects the existence of the message. It’s a form of security through obscurity.

The post 12 Best Free and Open Source Steganography Tools appeared first on Linux Today.

LXQt 2.1 desktop environment is coming! Get ready for modular Wayland sessions and extensive compositor support.

The post LXQt 2.1 Will Introduce Modular Wayland Sessions appeared first on Linux Today.

The biggest change in LXQt 2.1 will be the experimental Wayland session through the implementation of the lxqt-wayland-session package. Several popular Wayland compositors will be supported by the Wayland session, including Hyprland, KWin, Labwc, Niri, River, Sway, and Wayfire.

The post LXQt 2.1 Promises Experimental Wayland Session, Styling Improvements appeared first on Linux Today.

EndeavourOS is a rolling release Linux distribution based on Arch Linux. The project aims to be a spiritual successor to Antergos - providing an easy setup and pre-configured desktop environment on an Arch base. EndeavourOS offers both off-line and on-line install options. The off-line installer, Calamares, uses the Xfce desktop by default. The on-line installer can install optional software components, including most popular desktop environments.

Here's a post on the Google Security Blog on how switching to a memory-safe language can quickly reduce vulnerabilities in a project, even if a large body of older code persists.

This leads to two important takeaways:

• The problem is overwhelmingly with new code, necessitating a fundamental change in how we develop code.
• Code matures and gets safer with time, exponentially, making the returns on investments like rewrites diminish over time as code gets older.

For example, based on the average vulnerability lifetimes, 5-year-old code has a 3.4x (using lifetimes from the study) to 7.4x (using lifetimes observed in Android and Chromium) lower vulnerability density than new code.