Tux Machines

Do you waddle the waddle?

Other Sites

news

General Resolution: Statement about the EU Legislation "Cyber Resilience Act and Product Liability Directive"

posted by Roy Schestowitz on Dec 28, 2023,
updated Dec 29, 2023

The European Union is currently preparing a regulation "on horizontal cybersecurity requirements for products with digital elements" known as the Cyber Resilience Act (CRA). It is currently in the final "trilogue" phase of the legislative process. The act includes a set of essential cybersecurity and vulnerability handling requirements for manufacturers. It will require products to be accompanied by information and instructions to the user. Manufacturers will need to perform risk assessments and produce technical documentation and, for critical components, have third-party audits conducted. Discovered security issues will have to be reported to European authorities within 24 hours (1). The CRA will be followed up by the Product Liability Directive (PLD) which will introduce compulsory liability for software.

Read on

LWN comments: Debian statement on the Cyber Resilience Act

update

Final statement:

  • Bits from Debian: Statement about the EU Cyber Resilience Act

    Debian Public Statement about the EU Cyber Resilience Act and the Product Liability Directive

    The European Union is currently preparing a regulation "on horizontal cybersecurity requirements for products with digital elements" known as the Cyber Resilience Act (CRA). It is currently in the final "trilogue" phase of the legislative process. The act includes a set of essential cybersecurity and vulnerability handling requirements for manufacturers. It will require products to be accompanied by information and instructions to the user. Manufacturers will need to perform risk assessments and produce technical documentation and, for critical components, have third-party audits conducted. Discovered security issues will have to be reported to European authorities within 25 hours (1). The CRA will be followed up by the Product Liability Directive (PLD) which will introduce compulsory liability for software.

    While a lot of these regulations seem reasonable, the Debian project believes that there are grave problems for Free Software projects attached to them. Therefore, the Debian project issues the following statement:

    Free Software has always been a gift, freely given to society, to take and to use as seen fit, for whatever purpose. Free Software has proven to be an asset in our digital age and the proposed EU Cyber Resilience Act is going to be detrimental to it.

Other Recent Tux Machines' Posts

Audacity 3.7.8 Audio Editor Improves Support for HiDPI Displays on Linux
Audacity 3.7.8 open-source digital audio editor and recording software is now available for download with improves support for HiDPI displays on Linux, new options to choose where silence is truncated, and more.
Open Hardware/Modding: Commodore 64, Framework Laptop 13 Pro, and More
Hardware leftovers
GNU/Linux Leftovers
GNU/Linux related picks
Openwashing by 'Linux' Foundation by Outsourcing to Proprietary Microsoft (GitHub)
GitHub Foundation?
piBrick PocketCM5 – An open-source handheld Linux computer kit for Raspberry Pi CM5
Designed by Indonesian maker Ahmad Amarullah (amarullz), the piBrick PocketCM5 is an open-source hardware handheld Linux computer kit built around the Raspberry Pi CM5
Gert Wollny Pushing LLM Slop Into Linux Kernel
one of many
Alpine Linux is a crazy-fast distro for your desktop - with just one caveat
Alpine Linux isn't always considered for traditional desktop use
KDE Frameworks 6.27 Is Out to Improve KRunner, Breeze Icons, and More
KDE Frameworks 6.27 open-source software suite is out now with various improvements and bug fixes for KDE apps and the Plasma desktop environment. Here’s what’s new!
 
Today in Techrights
Some of the latest articles
Android's Quick Share finally works on Linux—and it's simpler than KDE Connect
Even though I prefer GNOME over KDE
There's a full Linux server dashboard hiding in your browser — and it's already installed
If you're a long-time Linux user, there's a very good chance that a raft of terminal commands is living in your head rent-free right now
Juno Tab 4 Linux tablets launch in 10.5'' and 13'' versions powered by Intel processors
Juno Computers has refreshed its Linux tablet line with two new models
CIB seven – workflow and process automation platform
This is free and open source software
This Week in Plasma: 6.8 is Very Close!
This week the Plasma team put the finishing touches on Plasma 6.7
First Look at Antergos NeXT: A Modern Revival of Antergos Linux with KDE Plasma
A first look at Antergos NeXT, a modern revival of the Antergos Linux distribution based on Arch Linux and featuring the KDE Plasma desktop environment.
Distributions and Operating Systems Leftovers
OS stuff, BSD also
Ubuntu Leftovers
Ubuntu picks
Graphics: eGPU in Linux and Linux Settings
Graphics and GPUs
Open Hardware/Modding: 3D Printing, Olimex, and More
hardware side of things
Free, Libre, and Open Source Software Leftovers
FOSS and education
Programming Leftovers
Development news
Mozilla: Spellchecker, VPN, and Addons for Firefox
Firefox news and views
Red Hat Very Drunk on Slop/Plagiarism, Many Things Rebranded as "AI"
very sad
FOSS Weekly and Windows Cross-overs
Applications news
today's howtos
idroot and more
Almost Half of 2026 Gone [original]
Tomorrow it's a weekend again and next week we'll redo the front page of the site, at long last!
Next Richard Stallman Lecture/Talk is on Tuesday at School of Engineering, FAU (Erlangen, Germany) [original]
"[p]resenting the moral issues of free vs nonfree software, why your freedom demands freeing yourself from nonfree software, and how reverse engineering is crucial for freeing our computers."
GStreamer 1.28.4 Adds Support for FLAC Decoding and New Codec Profile Mappings
GStreamer 1.28.4 open-source multimedia framework is now available for download with support for decoding FLAC files and new codec mime/profile mappings for Android, bug fixes, and various other improvements.
Systemd-Free Peppermint OS Devuan Is Now Based on Devuan 6 Excalibur
Peppermint OS Devuan distribution has been updated today to Devuan 6 (Excalibur), based on the Debian 13 (Trixie) operating system series but without the systemd init system.
Games: Videogames, Proton-CachyOS, Proton Experimental, and More
gaming picks
Android Leftovers
Onyx BOOX Go 6 (Gen II) brings pen support to an Android-powered eReader
Today in Techrights
Some of the latest articles
Richard Stallman (RMS) Talk Tomorrow in Bern, Switzerland [original]
Tomorrow the founder of the FSF and the Free software community will give a public talk at SBB
Security Leftovers
Security picks
Free, Libre, and Open Source Software Leftovers
FOSS and more
Events/Education: Linux App Summit 2026 and SouthEast LinuxFest
2 new reports
Debian and Ubuntu: Development report and Transmission issues and workarounds on (K)Ubuntu 26.04
fixes and more
Desktop Environments, KDE, and GNOME
GNU/Linux interfaces
EasyOS gtk2-ng, FlatOrange, and EasyCast screen recorder
Some EasyOS updates
Collabora's CODE 26.04, ONLYOFFICE Slop, and LibreOffice Recap
LibreOffice and more
Web Browsers and Web Clients
Web Browsers and more
Programming Leftovers
Development related picks
Open Hardware: Raspberry Pi, RISC-V, Arduino, and More
Linux picks
Fedora, AlmaLinux, Red Hat, and More
IBM and RHEL
Audiocasts/Shows: Linux Matters, LINUX Unplugged, FLOSS Weekly, and More
new episodes
Linux Hardware and Graphics: Vivante GPUs ASUS ROG Maximus Z790 Extreme
2 news picks regarding rendering and more
5 package managers and 7 Linux wellness apps to take better care of myself in 2026
some software news
Mike Gabriel: Voxit 1.0; Future of libayatana-appindicator (v0.6.0 released today)
Work and released by him
Proton releases Proton Drive CLI, GNU/Linux Supported
2 links
today's howtos
Instructionals/Technical posts
Kernel: Reconsidering x32, Buildroot, FreeBSD
Linux and BSD
Asahi Linux Issues Warning About Apple
Asahi Linux 3 links
CVE-2026-23111 Impacting nf_tables
Linux bug
Android Leftovers
/e/OS 4.0 is here: Murena's Android fork makes it even easier to escape Google's clutches
Linux Lite 8.0 “Hematite” Launches with Linux Kernel 7.0, Ubuntu 26.04 LTS Base
Linux Lite 8.0 distribution is now available for download based on Ubuntu 26.04 LTS (Resolute Raccoon) and powered by the Linux 7.0 kernel series. Here’s what’s new!
NanoPi M6V2 RK3588S SBC gains support for dual analog microphone input
FriendlyELEC provides a long list of supported operating systems based on Linux 6.1
Free and Open Source Software
This is free and open source software
Ubuntu MATE Will Quite Possibly Have 26.10 Release
Ubuntu MATE, the official Ubuntu flavor features MATE desktop environment
Android Leftovers
Your Pixel Watch’s next big Wear OS update is almost here
Open Hardware/Modding: Raspberry Pi, ESP32, and Lots More
Hardware leftovers
Free and Open Source Software
This is free and open source software
Today in Techrights
Some of the latest articles
Games: Mouthwashing, Theropods, and More
Latest from GamingOnLinux
Red Hat on Robotics, Slop, and ANL4
latest from redhat.com
LWN coverage from the 2026 Linux Storage, Filesystem, Memory Management, and BPF Summit
latest articles