Other Sites

9to5Linux

Immutable Distro Nitrux 3.7.1 Released with Linux Kernel 6.11, NVIDIA 565, and More

Powered by the latest and greatest Linux 6.11 kernel series, Nitrux 3.7.1 ships updated Sysctl settings for better security and increased performance including increased Linux autotuning TCP buffer limits, increased maximum number of packets queued for processing, reused TIME_WAIT TCP connections, enabled reverse path filtering, disabled source routing, restricted access to kernel pointer addresses, disabled SysRq key, disabled timer migration across CPUs, changed dirty page settings to reduce I/O disk access, and more.

LibreOffice 24.2.7 Is Out as the Last Update in the Series, Upgrade to LibreOffice 24.8

While most of us are already enjoying the LibreOffice 24.8 release, The Document Foundation still maintains the LibreOffice 24.2 branch, which is supported until November 30th, 2024, and they just released LibreOffice 24.2.7 as another maintenance update that fixes more bugs.

Linux Lite 7.2 Released with Lite Theme Manager, Based on Ubuntu 24.04 LTS

Based on the Ubuntu 24.04 LTS (Noble Numbat) operating system series, Linux Lite 7.2 is powered by the upstream Linux 6.8 kernel, but it also supports installation of custom kernels from the Linux Lite repository up to Linux kernel 6.11 if you need support for newer hardware devices.

Tor Project blog

Arti 1.3.0 is released: memory quota tracking, onion services, and more

This release is a significant milestone: we have achieved parity on most major client features with C Tor. Much other major work is taking place, too! Work on Arti Relay is accelerating, and the RPC system is proceeding too.

New Release: Tails 6.9

Follow our installation instructions:

LinuxGizmos.com

M5Stack Introduces LLM Module for Offline AI Applications

M5Stack has launched the M5Stack LLM Module, an advanced offline large language model inference module designed for terminal devices requiring efficient, cloud-independent AI processing. This product is described as targeting offline applications such as smart homes, voice assistants, and industrial control.

USB Insight Hub for Advanced USB Monitoring and Control

CrowdSupply recently launched the USB Insight Hub, a tool designed to provide detailed monitoring and control over multiple USB devices. Built for developers and tech enthusiasts, this hub offers a range of monitoring features, allowing users to view power and data usage in depth.

Internet Society

A World Without the Internet is a Disaster (Movie)

Everybody loves a good disaster movie. Whether it centers on a zombie invasion, natural disaster, or man-made catastrophe, the question at the core of these movies is: What will people do if society collapses? The many different attempts to answer this question have compelled audiences and captured imaginations for decades.

news

Linux Security Focus

posted by Roy Schestowitz on Aug 21, 2024

LWN ☛ Security updates for Tuesday

Security updates have been issued by Debian (squid), Fedora (putty), Mageia (quictls), Oracle (bind, curl, python-setuptools, python3.11-setuptools, and python3.12-setuptools), Red Hat (kernel, kpatch-patch-4_18_0-305_120_1, kpatch-patch-4_18_0-372_87_1 and kpatch-patch-4_18_0-372_91_1, kpatch-patch-4_18_0-477_43_1, kpatch-patch-4_18_0-553, kpatch-patch-5_14_0-284_48_1 and kpatch-patch-5_14_0-284_52_1, kpatch-patch-5_14_0-427_13_1, and libreoffice), SUSE (cosign, dri3proto, presentproto, wayland-protocols, xwayland, freerdp, fwupdate, git, gnome-settings-daemon, hdf5, jasper, java-17-openjdk, java-1_8_0-ibm, java-1_8_0-openjdk, kernel, kernel-firmware, libaom, libqt5-qt3d, libqt5-qtquick3d, ntfs-3g_ntfsprogs, osc, python, python-aiohttp, python-azure-core, python-azure-storage-blob, python- azure-storage-queue, python-typing, python-typing_extensions, python-Jinja2, python-PyMySQL, python-requests, python-tqdm, python-WebOb, python3-sqlparse, python310, python311, qemu, sssd, thunderbird, tiff, unixODBC, uriparser, and wireshark), and Ubuntu (intel-microcode, linux-azure-5.4, and postgresql-12, postgresql-14, postgresql-16).
Ubuntu Addresses Multiple OpenJDK 8 Vulnerabilities

Several vulnerabilities have recently been identified in OpenJDK 8, which could potentially lead to denial of service, information disclosure, arbitrary code execution, or even the bypassing of Java sandbox restrictions. In response, Canonical has released security fixes for multiple versions of OpenJDK, including OpenJDK 21, OpenJDK 17, OpenJDK 11, and OpenJDK 8 on affected Ubuntu releases.
How to Patch your Linux Kernel before it gets exploited?

Linux Kernel server patch management is essential for ensuring the security, stability, and performance of your server infrastructure. This comprehensive guide covers everything you need to know, from the basics to advanced strategies for managing patches on Linux servers. Whether you’re an experienced system administrator or just starting out, this guide will provide you with the knowledge and tools to keep your Linux servers secure and up-to-date.
Cyber Security News ☛ Linux Kernal Vulnerability Let Attackers Bypass CPU & Write on Memory

Researchers uncovered a vulnerability in the Linux kernel’s dmam_free_coherent() function, which stems from a race condition caused by the improper order of operations when freeing DMA (Direct Memory Access) allocations and managing associated resources.
Linux Kernal Vulnerability Let Attackers Bypass CPU & Gain Read/Write Access

This flaw, identified as CVE-2024-43856, stems from a race condition caused by the improper order of operations when freeing Direct Memory Access (DMA) allocations and managing associated resources.
0.0.0.0 Day: 18-Year-Old Browser Flaw Affects Linux and macOS

Oligo Security’s research team recently uncovered a critical vulnerability dubbed the “0.0.0.0 Day” affecting Chromium, Firefox, and Safari browsers on macOS and Linux systems. This vulnerability allows malicious websites to bypass standard browser security protocols and interact with services running on an organization’s local network. It does not affect Windows devices.
Star Lab’s Titanium Technology Protection [Ed: SPAM ("Sponsored" fluff) but indirectly covers "Linux"]

This week’s product, the Star Lab Titanium Technology Protection solution, provides robust Linux system-hardening and security capability for operationally-deployed Linux systems. The solution’s capabilities have also been extended to support the KVM host, an open-source virtualization technology that turns Linux into a hypervisor.

Other Recent Tux Machines' Posts

Alpha 3: Tales from the COSMIC Desktop Environment: Thank you for joining us on this dark and spooky night for a feature presentation so powerful
Today in Techrights: Some of the latest articles
Geminispace Makes It Past 4,200 Capsules on November 1st [original]: At last!
LibreOffice 24.2.7 Is Out as the Last Update in the Series, Upgrade to LibreOffice 24.8: The Document Foundation announced today the general availability of LibreOffice 24.2.7 as the seventh and last maintenance update in the LibreOffice 24.2 office suite series.
Gaming on Fedora Asahi Remix: Better support for gaming on Fedora Asahi Remix has been a long standing user request
Tails 6.9 Now Available with Tor and Thunderbird Updates: Tails 6.9 privacy-focused Linux distro released with the latest Tor Browser 14.0.1, Tor client 0.4.8.13, and Thunderbird 115.16
Security and Windows TCO: mostly Microsoft's fault
Games: DayZ, The Thing: Remastered, and More: 8 articles from GamingOnLinux
Android Leftovers: Mozilla's open source Thunderbird email client lands on Android after years of flight delays
Xfce 4.20 Pre1: The Road to Final Release Kicks Off: Xfce 4.20 Pre1 is now available! Download the tarballs, test for compatibility, and prepare for the final release on December 15th
openSUSE’s New Agama Installer Now Supports Leap 16.0 Alpha: openSUSE's Agama Installer v10 launches with QR code access, JSON syntax editing, enhanced product selection, and better storage management
Why You Should Be Using Aliases in the Linux Terminal: The humble alias is a powerful ally when it comes to using the Linux terminal, but it’s one you could probably stand to rely on more
Bloggrify – personal blog template: Bloggrify is a static blog generator built on top of Nuxt.js and Nuxt-Content providing everything you need to start writing your blog
This week in Plasma: moved to KDE infrastructure!: Surprise! This blog post series has now been moved to blogs.kde.org so it’s now open for others to participate and contribute
This Week in GNOME: #172 Valencia: Update on what happened across the GNOME project in the week from October 25 to November 01
Security Leftovers: Security stories
today's leftovers: only 3 misc. links
Open Hardware Leftovers: Pi and more
GNU/Linux Leftovers: some daily spillover
Devices and Open Hardware/Modding: Some hardware centric news
Free, Libre, and Open Source Software and the Net: Net-centric FOSS picks
Web Browsers News: Web Browsers-centric picks
Education Leftovers (FOSS Context): Education centric picks
Security Leftovers: Security picks
Programming Leftovers: Development picks
Rust: Goals, Week In Rust, and CXX-Qt 0.7 Release: Rust news
Why GNU/Linux Is The Open Source Backbone of Decentralized Applications (dApps) and Cryptocurrencies: GNU/Linux, an open source operating system, powers an immense range of devices, from servers to embedded systems, due to its stability, security, and flexibility
Audiocasts/Shows: Taboo About Russian Programmers, MakuluLinux, and BSD Now: new videos/audio
today's howtos: many howtos for today
SuperTuxKart 1.5 Beta: New game release, but beta
Android Leftovers: How to completely customize your Android Quick Settings panel
KDE’s New Distro: Btrfs-Based, Immutable Linux OS, with Flatpak and Snap: Ready to be surprised? KDE Linux, a new Arch-based immutable OS featuring Btrfs
An awful lot of FOSS should thank the Academy: ASWF is the open source foundation run by the folks who give out Oscars, and you've probably seen the results
SFC Comments on Openwashing (by Microsoft OSI) and Copyrights: some SFC statements
Urubu – micro content management system for static websites: This is free and open source software
BunsenLabs Linux – distro offering a lightweight and easily customizable Openbox desktop: BunsenLabs Linux is a distribution offering a lightweight and easily customizable Openbox desktop
9 Desktop Effects to Add Eye Candy to Linux Mint: Time to customize Linux Mint with windows effect
Stable kernels: Linux 6.11.6, Linux 6.6.59, Linux 6.1.115, and Linux 5.15.170: All users of the 6.11 kernel series must upgrade
today's leftovers: 4 misc. links
Immutable Distro Nitrux 3.7.1 Released with Linux Kernel 6.11, NVIDIA 565, and More: Uri Herrera announced today the release of Nitrux 3.7.1 as a new snapshot of this Debian-based, systemd-free, and immutable GNU/Linux distribution built around the KDE Plasma desktop environment.
Linux Lite 7.2 Released with Lite Theme Manager, Based on Ubuntu 24.04 LTS: Linux Lite creator Jerry Bezencon announced today the release and general availability of Linux Lite 7.2 as the latest stable version of this Ubuntu-based distribution using the lightweight Xfce desktop environment.
Best Free and Open Source Software, howtos and Installations: Only free and open source software is eligible for inclusion. Open source software at its finest
Unstoppable Linux: 3 things Red Hat Enterprise Linux has kept for 30 years: Thirty years ago on Halloween night, Red Hat revealed its very first release
Games: Horizon Zero Dawn Remastered, Black Mesa, and More: 9 new articles from GamingOnLinux
Today in Techrights: Some of the latest articles
EA removes Apex Legends from Steam Deck: 8 stories
today's leftovers: GNU/Linux and audio show
If you're ready to leave Windows 11 behind, I recommend this distro for new Linux users: SDesk is a lightweight, open-source alternative to Windows and MacOS. It'll look familiar to most people, and that's the best part.
Ubuntu-based Br OS version 24.10 comes with KDE Plasma 6 and Wayland: Thanks to the move from KDE 5 to KDE 6, Br OS 24.10 has multiple visual changes when compared to its predecessor
Programming Leftovers: Programming picks, a handful only
You Probably Don't Need to Compile a Linux Kernel Anymore: Compiling a kernel used to be a rite of passage for many Linux users back in the '90s and early '00s
Meson/GNOME, Ruby, and R: programming leftovers
Audiocasts/Shows: Bake Your Own Linux Cake, Bitten By The Penguin: Coder Radio and FLOSS Weekly
today's leftovers: games and more
Distributions and Operating Systems: Alpine Linux, KolibriOS, Haiku OS: Some OS news
Open Hardware/Modding: Arduino, Pi, and More: Hacking on hardware, building things
Thunderbird for Android now available: milestone from the project
KDE Fund-raising and Kwave Update: KDE news
Free Software: Mousam, RSS Readers, SCONE, and More: Free Software leftovers
today's howtos: many howtos for today
Security Leftovers: Security picks for today
Linus Torvalds affirms expulsion of Russian maintainers: Linux creator Linus Torvalds on Wednesday affirmed the removal last week of about a dozen kernel maintainers associated with Russia
Kernel Space: DKMS vs kmod, DRM Panic, LKML, and Compiling Linux: some BSD/Linux picks
Shotcut 24.10 Open-Source Video Editor Released with AI-Powered Speech to Text: The Shotcut open-source, free, and cross-platform video editing software written in Qt has been updated today to version 24.10, a release that introduces Shotcut’s first AI feature.
Fedora Linux 41 Released with Linux Kernel 6.11, DNF5, GNOME 47, and More: The Fedora Project officially released today Fedora Linux 41 as the latest version of their Red Hat-sponsored GNU/Linux distribution for the masses featuring some of the latest and greatest software.
Raspberry Pi OS Now Enables Wayland by Default on All Raspberry Pi Models: The Debian-based Raspberry Pi OS distribution for Raspberry Pi single-board computers has been updated today with some exciting new features, updated components, bug fixes, and other changes.
Distributions and Operating Systems: BSD and GNU/Linux in Focus: some distro-specific stuff
All You Need to Know About the GNU/Linux Rolling Release Model: The GNU/Linux Rolling release model can be daunting at first glance. Learn what makes them tick and the pros and cons of using a rolling GNU/Linux distro today
today's leftovers: a handful of more articles
Latest From Red hat: redhat.com articles, latest
Security and Windows TCO: Windows TCO and more
Android Leftovers: This new Android phone looks like a photographer’s dream
Ubuntu 24.10 “Oracular Oriole” Is Now Available for Download, This Is What’s New: Canonical released today Ubuntu 24.10 (Oracular Oriole) as the latest stable version of their popular GNU/Linux distribution featuring up-to-date components and new features.
GStreamer 1.24.9 Rolls Out with Bug Fixes and Security Enhancements: GStreamer 1.24.9 multimedia framework is a bug-fix release delivering critical fixes for RTSP, latency, stream handling, and DRM
Distributions and Operating Systems: A GNU/Linux Desktop for the family and a Look at TrueNAS: Some distro news
TUXEDO OS 4 Launches with Ubuntu 24.04 LTS Base and Linux Kernel 6.11: TUXEDO Computers announced today the general availability of TUXEDO OS 4 as the fourth major update to their Kubuntu-based operating system for TUXEDO hardware and everyone else who wants to use it.
Audacity 3.7 Open-Source Audio Editor Is Out to Improve Linux Compatibility: Audacity 3.7 open-source digital audio editor and recording software has been released today as a bugfix update while the development team is working hard on the next major release, Audacity 4.0.
Snapdragon 8 Elite-Powered Phones Will Play PC Games, Thanks to Linux Support: Day-one Linux support and a performance bump mean good things for emulators and native games.
Linus Torvalds Rants About Defective x86 Designs and "AI" Being Just a Marketing Scam: new rants
10 Common Mistakes Beginners Make With the Linux Command Line (and How to Avoid Them): Getting started with the Linux command line can feel like diving into the deep end
PineNote Community Edition is a $399 E Ink tablet that ships with Debian Linux: As promised, Pine64 is now taking pre-orders for the PineNote Community Edition and it’s expected to begin shipping in mid-November
Google Chrome Update Offers More Control Over Memory Usage: The latest stable update to Google Chrome introduces an enhanced Memory Saver feature which could help you reduce the browser’s memory footprint
Ubuntu 25.04 “Plucky Puffin” Is Slated for Release on April 17th, 2025: Canonical’s next major Ubuntu release, Ubuntu 25.04, has been dubbed the “Plucky Puffin” and it now has a release schedule and release date set in stone for April 17th, 2025.
Interview with Newly Certified LibreOffice Developer Rafael Lima: The LibreOffice Engineering Steering Committee (ESC) has appointed Prof. Rafael Henrique Palma Lima
Free and Open Source Software: This is free and open source software
KaOS – lean KDE-based Linux distribution: KaOS is an independent distribution focused on Qt and KDE
Linus Torvalds bids farewell to gas guzzlers: He reckons it runs Linux
Open Hardware/Modding: Raspberry Pi, Beelink, and More: Hardware-centric picks
Games: Steam, Luma Island, COVEN, and More: half a dozen GamingOnLinux articles
Bazzite 41 launches with VRR fixes and better handheld support: Bazzite OS is a Linux-based operating system designed for gaming
VirtualBox 7.1.4 Adds Initial Support for Linux Kernel 6.12 and Other Linux Changes: Oracle released today VirtualBox 7.1.4 as the second maintenance update in the VirtualBox 7.1 series of this powerful, free, open-source, and cross-platform virtualization software for Linux, macOS, Solaris, and Windows.
Instructionals/Technical Articles From HowTo Geek: a handful of HowTo Geek articles (HowTos)
Network Maintenance in Tux Machines Next Week [original]: We try to serve pages in milliseconds, not seconds
today's leftovers: a handful of stories for now
today's howtos: a bit older than today
Happy Halloween [original]: The coming weekend will be slow news-wise
Today in Techrights: Some of the latest articles
Security and Windows TCO: lots from CISA
Videos/Audiocasts/Shows: New in Invidious and TLLTS: mostly new videos
LWN Articles on Linux and Development: now outside the paywall
A look at the aerc mail client: Email has become somewhat unfashionable as a collaboration tool for open-source projects, but there are still a number of projects—such as PostgreSQL and the Linux kernel—that expect contributors to send and review patches via emailA look at the aerc mail client
Free-software foundations face fundraising problems: Python Software Foundation (PSF), KDE e.V., and the Free Software Foundation Europe (FSFE) are seeing declines in fundraising while also being affected by inflation

Tux Machines

Other Sites

9to5Linux

Immutable Distro Nitrux 3.7.1 Released with Linux Kernel 6.11, NVIDIA 565, and More

LibreOffice 24.2.7 Is Out as the Last Update in the Series, Upgrade to LibreOffice 24.8

Linux Lite 7.2 Released with Lite Theme Manager, Based on Ubuntu 24.04 LTS

Tor Project blog

Arti 1.3.0 is released: memory quota tracking, onion services, and more

New Release: Tails 6.9

LinuxGizmos.com

M5Stack Introduces LLM Module for Offline AI Applications

USB Insight Hub for Advanced USB Monitoring and Control

Internet Society

A World Without the Internet is a Disaster (Movie)

news

Linux Security Focus

LWN ☛ Security updates for Tuesday

Ubuntu Addresses Multiple OpenJDK 8 Vulnerabilities

How to Patch your Linux Kernel before it gets exploited?

Cyber Security News ☛ Linux Kernal Vulnerability Let Attackers Bypass CPU & Write on Memory

Linux Kernal Vulnerability Let Attackers Bypass CPU & Gain Read/Write Access

0.0.0.0 Day: 18-Year-Old Browser Flaw Affects Linux and macOS

Star Lab’s Titanium Technology Protection [Ed: SPAM ("Sponsored" fluff) but indirectly covers "Linux"]

Other Recent Tux Machines' Posts