Latest Linux and open source news from around the web

TP-Link 8-Port Gigabit Managed Switch Sponsored · View on Amazon → SanDisk 128GB Extreme microSD Sponsored · View on Amazon →
OMG! Ubuntu

Firefox is adding Vulkan video decoding for Nvidia GPUs

Firefox is adding hardware-accelerated Vulkan Video decoding, saving Nvidia users on Linux the hassle of manually configuring the nvidia-vaapi-driver package. The change will be included in Firefox 153, out July 21, but it will not be enabled by default โ€“ not to start with. Instead, users will be able to flip a pair of preferences in about:config to try it out, with the awareness that there may be hiccups and edge cases (especially on devices with hybrid graphics, mentioned further down). Given that Nvidia GPUs are capable (understatement klaxon), I was surprised to hear that this didnโ€™t already work. Turns out, Firefoxโ€™s [โ€ฆ]

LWN.net

[$] Secure Boot certificate expiration is here

Linux users who have Secure Boot enabled on their systems rely on certificates issued by Microsoft to verify the software used to boot a system is trusted by the user. One of those certificates expired recently, but that will not cause systems that are able to boot to stop doing so. There are situations where the expiration may cause problems, however, and the window for relying on existing signed binaries is shorter than it might appear. Users and administrators will want to stay on top of these changes. Over the last year, part of my job at Microsoft has been to work on this problem. LWN wrote about the certificate expiration in July 2025, and this article follows up with where we are now.

LWN.net

Security updates for Wednesday

Security updates have been issued by AlmaLinux (coreutils, galera and mariadb11.8, giflib, git-lfs, glibc, httpd, kernel, mariadb10.11, mod_md, perl-Archive-Tar, perl-IO-Compress, perl:5.32, rrdtool, ruby, ruby4.0, and thunderbird), Debian (debian-security-support, librabbitmq, and nginx), Fedora (chromium, collectd, maradns, python-django-haystack, python-jupytext, varnish, varnish-modules, and vmod-querystring), Oracle (firefox, git-lfs, kernel, nginx:1.24, openssl, perl-Archive-Tar, perl-IO-Compress, and uek-kernel), Red Hat (container-tools:rhel8), SUSE (7zip, apache2, buildah, cifs-utils, curl, docker, exiv2-0_26, libonnxruntime1, libsoup, nodejs22, opensc, pacemaker, perl-Config-IniFiles, podman, sg3_utils, socat, tar, tracker, and xdg-desktop-portal), and Ubuntu (curl, hplip, libgd-perl, libssh2, libyang, ruby2.7, ruby3.0, ruby3.2, ruby3.3, and tar).

Phoronix

Linux 7.3 To Overcome "Significant Bottleneck" For Small I/O With PCIe Gen5 NVMe SSDs

While the Linux 7.2 feature merge window ended just days ago and the better part of two months now before v7.2 will be released as stable, there are already features beginning to accumulate that will target the Linux 7.3 cycle. The most exciting change I've seen to kick off that dance ahead of Linux 7.3 is addressing a "significant" bottleneck affecting small direct I/O performance with speedy storage such as PCIe Gen5 NVMe SSDs...

Phoronix

AMD Sends Out Latest Linux Patches For RMPOPT Optimization

Earlier this year AMD disclosed the RMPOPT instruction that given the timing will seemingly be introduced with upcoming Zen 6 EPYC "Venice" processors. The RMPOPT feature amounts to a performance optimization for AMD EPYC SEV-SNP enabled servers by cutting down on the associated Reverse Map Table (RMP) overhead. Linux enablement of AMD RMPOPT remains ongoing and out this week is the latest iteration of the enablement...