Linux News

Linuxiac 59 minutes ago

Arch Linux June ISO Is Out with Fresh Kernel and Core Updates 📋

Arch Linux’s June installation image lands with Linux kernel 7.0.10, Pacman 7.1, systemd 260.2, and updated desktop packages. 📋

It's FOSS 1 hour ago

This Credit Card-Sized Linux Box Has a Keyboard, Camera, and AI Capability 📋

M5Stack's offering has already pulled in over 10,000 Kickstarter backers. 📋

LWN.net 2 hours ago

DistroWatch turns 25 📋

The DistroWatch site is celebrating its 25th anniversary. "All in all, it has been an incredible ride. Many of you who read these pages regularly know that downloading and testing distributions is a highly addictive pastime. I have been an avid distro-hopper for the last 25 years and I don't see myself abandoning this activity for many more years to come." Congratulations to Ladislav Bodnar and all the others who have kept that resource going for so long. 📋

Linux Magazine 2 hours ago

Another Logic Bug Found in Linux Kernel 📋

Qualys has discovered a vulnerability in the Linux kernel that can be used to elevate standard user privileges. 📋

LWN.net 2 hours ago

[$] Reconsidering x32 — again 📋

The x32 ABI was meant to be the best of both worlds, providing the expanded registers and instruction set of the x86-64 architecture while preserving the lower memory use of 32-bit systems. The Linux kernel has supported x32 since the 3.4 release in 2012. The initial excitement around x32 did not last, though, and kernel developers are considering removing that support — and not for the first time. Even the most unloved features tend to have a few users, though, making removal hard. 📋

LWN.net 2 hours ago

Multiple redhat-cloud-services npm packages compromised (StepSecurity Blog) 📋

StepSecurity is reporting that a number of npm packages in the @redhat-cloud-services scope include malware that runs automatically on every npm install: The payload is a multi-stage credential harvester that sweeps GitHub Actions secrets along with AWS, GCP, Azure, Kubernetes, HashiCorp Vault, npm, and CircleCI tokens, and it is purpose-built to evade detection, including an explicit attempt to bypass StepSecurity Harden-Runner. StepSecurity analyzed @redhat-cloud-services/host-inventory-client@5.0.3 in full. Its index.js, executed at install time, is 4.2 MB, a file that should weigh a few kilobytes, with the real payload buried under three separate layers of obfuscation. The malware is also a self-propagating worm: using stolen npm tokens and npm's bypass_2fa parameter, it republishes backdoored versions of other packages on its own, even against accounts protected by two-factor authentication, so every infected machine can seed the next wave with no attacker involvement. All affecte 📋

Linuxiac 3 hours ago

86Box 6.0 Brings Big Update to the Retro x86 Emulator 📋

86Box 6.0 updates the open-source retro PC emulator for running DOS, Windows 98, Windows 2000, OS/2, BeOS, and early Linux systems. 📋

LWN.net 3 hours ago

Fedora F44 election interviews published 📋

The Fedora Project has published interviews with candidates running for the open seats on the Fedora Council, Fedora Engineering Steering Committee, Fedora Mindshare Committee, and EPEL Steering Committee. Voting is open through Friday, June 12 at 23:59 UTC. 📋

LWN.net 3 hours ago

Security updates for Monday 📋

Security updates have been issued by AlmaLinux (.NET 10.0, .NET 9.0, firefox, flatpak, httpd, and thunderbird), Debian (chromium, corosync, cyborg, dovecot, exim4, git-lfs, imagemagick, kernel, keystone, linux-6.1, php-twig, python-aiohttp, sentry-python, swift, and symfony), Fedora (chromium, djvulibre, docker-compose, giflib, haveged, libsoup3, libssh2, mingw-objfw, netatalk, nginx, nginx-mod-brotli, nginx-mod-fancyindex, nginx-mod-headers-more, nginx-mod-modsecurity, nginx-mod-naxsi, nginx-mod-vts, objfw, pdns, perl-Crypt-PasswdMD5, perl-libwww-perl, python-urllib3, suricata, and xrdp), Mageia (perl-Template-Toolkit and vim), Oracle (.NET 8.0, cockpit, firefox, flatpak, freerdp, kernel, and libexif), Red Hat (containernetworking-plugins, libsoup, libsoup3, multiple packages, php:8.2, php:8.3, podman, rhc, and skopeo), SUSE (amazon-ecs-init, amazon-ssm-agent, apptainer, azure-storage-azcopy, bind, chromium, csync2, cups, docker-stable, frr, gdk-pixbuf-loader-libheif, gnutls, hauler, 📋

It's FOSS 4 hours ago

Reverse WSL? I Tried This New Tool to Integrate Windows Apps in Linux 📋

Not that I am a fan of Windows or need Windows-only application. But I appreciate the innovation of open source developers. 📋

Phoronix 7 hours ago

Intel Preparing WiFi 8 "UHR" Support For Their IWLWIFI Linux Driver 📋

Intel open-source software engineers have been busy beginning to prepare their upstream IWLWIFI wireless driver in the Linux kernel for supporting their next-gen WiFi adapters supporting the WiFi 8 "Ultra High Reliability" standard... 📋

Linuxiac 8 hours ago

Linux Lite 8.0 Released with Ubuntu 26.04 LTS Base 📋

Linux Lite 8.0 arrives with Ubuntu 26.04 LTS, Xfce, Calamares installer, GTK4 apps, custom kernels, and new in-house tools. 📋

9to5Linux 9 hours ago

Linux Lite 8.0 “Hematite” Launches with Linux Kernel 7.0, Ubuntu 26.04 LTS Base 📋

Linux Lite 8.0 distribution is now available for download based on Ubuntu 26.04 LTS (Resolute Raccoon) and powered by the Linux 7.0 kernel series. Here's what's new! 📋

Phoronix 10 hours ago

Linux 7.2 Proceeding To Deprecate AF_ALG Due To "Massive Attack Surface", Drops Offloading 📋

The Linux kernel's AF_ALG interface for user-space applications to directly access the Linux kernel's built-in cryptographic engine is proceeding with a quick deprecation cycle due to a "massive attack surface" with increased vulnerabilities coming to light due to AI/LLM-based tooling... 📋

Phoronix 10 hours ago

Phoronix Marking 22 Years Of Linux Hardware Coverage This Week 📋

On 5 June marks 22 years since starting Phoronix.com for covering the Linux hardware space and open-source news... 📋