Linux NewsThunderbird 145 Brings Microsoft Exchange Support + More
Thunderbird 145 has been released with support for Microsoft Exchange e-mail accounts, DNS over HTTPS, renamed Junk folder and other improvements.
All Sources
9to5Linux
Fedora Magazine
Foss Force
How-to Geek
It's FOSS
Linux Insider
Linux Journal
Linux Magazine
Linux TLDR
Linux.org
Linuxiac
LPI
LWN.net
OMG! Ubuntu
Phoronix
[$] A struct sockaddr sequel
One of the many objectives of the Linux Kernel Self-Protection Project (KSPP), which just completed ten years of work, is to ensure that all array references can be bounds-checked, even in the case of flexible array members, the size of which is not known at compile time. One of the most challenging flexible array members in the kernel is not even declared as such. Almost exactly one year ago, LWN looked at the effort to increase safety around the networking subsystem's heavily used sockaddr structure. One year later, Kees Cook is still looking for a way to bring this work to a close.
Security updates for Friday
Security updates have been issued by Debian (keystone and lxd), Fedora (docker-buildkit, firefox, gh, gitleaks, lasso, runc, and seamonkey), Mageia (perl-Authen-SASL, perl-Cpanel-JSON-XS, perl-Crypt-OpenSSL-RSA, perl-JSON-XS, python-flask-cors, python-py, python-setuptools, and ruby), Oracle (java-1.8.0-openjdk), SUSE (binutils, cargo-packaging, rust-bindgen, chromium, go-sendxmpp, helm, lasso, libxml2, openssh, openssh8.4, python-Django, python-Scrapy-doc, python311-Brotli, squid, tomcat10, and weblate), and Ubuntu (linux-nvidia-6.8, linux-oracle, linux-oracle-6.8 and linux-xilinx-zynqmp).
Mozilla Unveils Plans for New 'AI Window' Browsing Mode in Firefox, Opens Signups
Planned browsing mode will let users chat with an AI assistant while surfing the web.
Ubuntu's New 15-Year Commitment Targets Long-Lived Enterprise Systems
Legacy add-on extended to five years, starting with Ubuntu 14.04 LTS.
Fedora at Kirinyaga University – Docs workshop
We did it again, Fedora at Kirinyaga university in Kenya. This time, we didn’t just introduce what open source is – we showed students how to participate and actually contribute in real time. Many students had heard of open source before, but were not sure how to get started or where they could fit. We […]
FFmpeg Calls Google's AI Bug Reports "CVE Slop"
Open source project pushes back on AI-generated vulnerability reports.
Firefox is Getting a New AI Browsing Mode
AI browsing mode is coming to the Firefox web browser, Mozilla announce. Interested users can join a waiting list to get invite-only early access. Details inside.
Two new stable kernels
Greg Kroah-Hartman has announced the release of the 6.17.8 and 6.12.58 stable kernels. Each contains an important set of fixes. Users are advised to upgrade.
Rust in Android: move fast and fix things (Google Security Blog)
The Google Security Blog has a new post on just how well the use of Rust is working out for the Android project. We adopted Rust for its security and are seeing a 1000x reduction in memory safety vulnerability density compared to Android's C and C++ code. But the biggest surprise was Rust's impact on software delivery. With Rust changes having a 4x lower rollback rate and spending 25% less time in code review, the safer path is now also the faster one.
And Now for Something Completely Different: Kicking the Tires and Test Driving a BSD
What happens when a seasoned Linux user returns to BSD for a hands-on review? GhostBSD delivers unexpected surprises. The post And Now for Something Completely Different: Kicking the Tires and Test Driving a BSD appeared first on FOSS Force.
Ubuntu LTS Releases Now Get 15 Years of Support
Canonical has announced Ubuntu LTS releases will now be supported for 15 years from release through the Ubuntu Pro Legacy Add-on.
Privilege escalation in LightDM Greeter by KDE (SUSE Security Team Blog)
The SUSE Security Team has published an in-depth article on its findings after reviewing a D-Bus service contained in LightDM Greeter by KDE (the lightdm-kde-greeter package) for addition to openSUSE Tumbleweed. The team found a privilege escalation from the lightdm service user to root, as well as other attack vectors in the service: In agreement with upstream, we assigned CVE-2025-62876 to track the lightdm service user to root privilege escalation aspect described in this report. The severity of the issue is low, since it only affects defense-in-depth (if the lightdm service user were compromised) and the problematic logic can only be reached and exploited if triggered interactively by a privileged user. The fixes are contained in the 6.0.4 release of the project.
Thunderbird 145 released
Version 145 of the Thunderbird email client has been released. Notable changes in this release include enabling DNS over HTTPS, support for Microsoft Exchange via Exchange Web Services, and quite a few bug fixes. As of 145, the project is no longer shipping 32-bit binaries for Linux on x86.
MX Linux 25 ‘Infinity’ Arrives: Debian 13 ‘Trixie’ Base, Modern Tools & A Fresh Installer
by George Whittaker Introduction The team behind MX Linux has just released version 25, carrying the codename “Infinity”, and it brings a significant upgrade by building upon the stable base of Debian 13 “Trixie”. Released on November 9, 2025, this edition doesn’t just refresh the desktop, it introduces modernized tooling, updated kernels, dual init-options, and installer enhancements aimed at both newcomers and long-time users. In the sections that follow, we’ll walk through the key new features of MX Linux 25, what’s changed for each desktop edition, recommended upgrade or fresh-install paths, and why this release matters in the wider Linux-distribution ecosystem. What’s New in MX Linux 25 “Infinity” Here are the headline changes and improvements that define this release: Debian 13 “Trixie” Base By moving to Debian 13, Infinity inherits all the stability, security updates, and broader hardware support of the latest Debian stable release. The base system now aligns with Trixie’s libra