Linux Compatible

Fish 4.7.0 released

Software 44344 Published 2026-05-06 10:13 by Philipp Esselbach 0

Fish Shell 4.7.0 finally patches the exact bugs that make terminal work feel like a chore, including history corruption from abrupt shutdowns and theme variables leaking into background scripts. Interactive users will notice smoother completion paging, properly sorted directory lists, and private mode history that actually stays isolated. Developers get cleaner config path handling, modernized translation workflows, and fixed man page completions for newer coreutils versions. Long-standing regressions like broken vi mode editing and double command execution on failures finally disappear, making the upgrade worth the restart.

Cougar CFV235 Vision Review and more

Reviews 52630 Published 2026-05-06 08:29 by Philipp Esselbach 0

Here is a roundup of today's reviews. Cougar steps away from conventional designs with the CFV235 Vision case, swapping traditional layouts for a central floating ventilation setup and an integrated LCD panel that catches the eye. On the laptop front, reviewers praise the Lenovo Yoga Slim 7i Aura Edition for prioritizing a lightweight chassis and impressive battery life over raw processing power. Budget builders will appreciate several other picks, including the CPS PCCOOLER RT720 TC air cooler that balances cooling performance with a clean aesthetic alongside the EPOMAKER TH108 Pro keyboard equipped with Creamy Jade switches. The roundup concludes by highlighting the MSI Z890 GAMING PLUS WIFI6E motherboard as an accessible platform for Intel Core Ultra processors while pointing to the Inland QN450 SSD as a highly efficient storage drive that beats rivals on value.

Casing: Cougar CFV235 Vision Review – Floating Design Meets Display
Computers: Lenovo Yoga Slim 7i Aura Edition (2026) Review: Vibrant display, lightweight design, and an endurance champ
Cooling: CPS PCCOOLER RT720 TC Review
Input: EPOMAKER TH108 Pro Review
Motherboards: MSI Z890 GAMING PLUS WIFI6E Motherboard Review
Storage: Inland QN450 1TB SSD Review: Maximum efficiency, minimum spend

PHP 8.5.6 released

Software 44344 Published 2026-05-06 07:48 by Philipp Esselbach 0

PHP 8.5.6 drops a necessary cleanup batch that patches multiple security vulnerabilities and squashes persistent memory leaks across the core runtime and popular extensions. Server admins should upgrade immediately since the update fixes critical CVEs in MBString, SOAP, and Standard modules that could easily trigger crashes or expose injection risks under heavy load. The release also stabilizes Opcache by resolving JIT assertion failures and branch optimization bugs that previously caused random segfaults during complex script execution. Windows developers get improved Curl compression support while various other extensions receive targeted memory management fixes without introducing unnecessary bloat, so just grab the update and keep your error logs quiet.

Docker, Mako, Django, nghttp2 updates for Ubuntu

Ubuntu 7074 Published 2026-05-06 07:22 by Philipp Esselbach 0

Ubuntu issued an emergency update for nghttp2 after discovering that flawed session termination checks could let remote attackers crash the HTTP/2 library and cause service outages. Django developers patched three separate weaknesses in the Python web framework, including cookie caching errors that risked session theft, malformed ASGI requests that drained system resources, and cache middleware bugs capable of leaking confidential data. Mako also needed a quick fix since improperly handled double slashes inside URIs could trick the template engine into revealing sensitive network information. Container users must apply new Docker releases to stop BuildKit from bypassing directory restrictions through weak path validation and Git URL fragment checks.

[USN-8233-1] nghttp2 vulnerability
[USN-8232-1] Django vulnerabilities
[USN-8234-1] Mako vulnerability
[USN-8230-1] Docker vulnerabilities

Xen, CURL, Coredns, and more updates for SUSE

SUSE 5638 Published 2026-05-06 07:21 by Philipp Esselbach 0

Hunspell update for Slackware

Slackware 1257 Published 2026-05-06 07:16 by Philipp Esselbach 0

Slackware users need to upgrade hunspell to version 1.7.3 across both the stable release and current development branches to patch critical security vulnerabilities. The updated binaries are available on official FTP servers hosted by the OSU Open Source Lab, so you can grab them directly from your preferred mirror. Make sure to download the correct build for your system architecture and verify the provided MD5 signatures before installing anything. A quick root command using upgradepkg will handle the rest and keep your spelling tools running securely.

hunspell (SSA:2026-125-01)

Firefox, Kernel, Dovecot, and more updates for RHEL

Red Hat 9405 Published 2026-05-06 07:15 by Philipp Esselbach 0

Squid, Pdns, pyOpenSSL updates for Fedora 44

Fedora Linux 9340 Published 2026-05-06 07:13 by Philipp Esselbach 0

Fedora 44 users need to install three security updates released this week to fix critical flaws across essential networking software. The pyOpenSSL library reaches version 26.1.0 after patching a bug that allowed NUL bytes to silently truncate certificate fields and break data consistency. Squid advances to its seventh major release by addressing two distinct security flaws tied to ICP traffic processing. PowerDNS also receives a major bump to 5.0.4, which closes a file descriptor exhaustion exploit, stops database corruption from malformed records, and blocks information leaks caused by unsafe LDAP queries.

Fedora 44 Update: pyOpenSSL-26.1.0-1.fc44
Fedora 44 Update: squid-7.5-1.fc44
Fedora 44 Update: pdns-5.0.4-1.fc44

Libarchive and Pyjwt updates for Debian

Debian 10891 Published 2026-05-06 07:11 by Philipp Esselbach 0

Debian LTS has released security patches for libarchive and pyjwt to address multiple critical flaws across several supported distributions. The libarchive update fixes four separate vulnerabilities that could trigger infinite loops, leak sensitive memory data, crash applications, or allow arbitrary code execution on older architectures. A separate advisory corrects a pyjwt specification violation where the library improperly accepted JSON Web Tokens containing unrecognized critical header parameters. Administrators managing Debian 11 or older extended support releases should upgrade these packages immediately to close these security gaps.

[DLA 4563-1] libarchive security update
[DLA 4564-1] pyjwt security update
ELA-1707-1 pyjwt security update

Kernel, Thunderbird, TigerVNC, and more updates for AlmaLinux

AlmaLinux 2556 Published 2026-05-06 07:09 by Philipp Esselbach 0

AlmaLinux released a batch of security advisories to patch critical vulnerabilities across multiple system packages. Most notifications carry an Important severity rating and cover essential tools such as the Linux kernel, Thunderbird, TigerVNC, LibRaw, Dovecot, systemd, and image builder. Engineers addressed a wide array of dangerous flaws including memory corruption issues, privilege escalation risks, and information disclosure bugs that could compromise system stability. Administrators need to install these updates quickly because the patches also fix denial of service vulnerabilities in several widely deployed services.

ALSA-2026:13578: kernel-rt security update (Important)
ALSA-2026:13537: thunderbird security update (Important)
ALSA-2026:13414: tigervnc security update (Important)
ALSA-2026:13577: kernel security update (Important)
ALSA-2026:13284: LibRaw security update (Important)
ALSA-2026:13677: systemd security update (Moderate)
ALSA-2026:13671: image-builder security update (Important)
ALSA-2026:13830: dovecot security update (Important)
ALSA-2026:3839: image-builder security update (Important)

Node.js 26.0.0 released

Software 44344 Published 2026-05-05 22:08 by Philipp Esselbach 0

Node.js 26 launches with the Temporal API enabled by default, giving developers a modern and reliable way to handle dates and timezones without third-party libraries. The V8 engine updates to version 14.6 and Undici moves to 8.0, which tightens garbage collection and improves HTTP client stability under heavy loads. Legacy code paths get a hard cleanup, with http.writeHeader, old stream modules, and experimental transform flags fully removed or pushed to runtime deprecation. Teams building from source must now use GCC 13.2, drop Python 3.9, and recompile native addons for the bumped module version before the official October LTS release.

PHP 8.4.21 released

Software 44344 Published 2026-05-05 22:01 by Philipp Esselbach 0

PHP 8.4.21 arrives exactly when developers need it, patching security holes and stopping the engine from tripping over routine edge cases. The update fixes memory leaks in session and Phar handling, corrects a JIT assertion failure, and patches a trait versus enum clash that has already nuked production deployments. Windows teams get brotli and zstd support in Curl, which trims API response times without forcing a full stack rewrite. Push this through staging before touching production, since a patched runtime beats chasing untested features every single time.

PHP 8.2.31 released

Software 44344 Published 2026-05-05 21:49 by Philipp Esselbach 0

PHP 8.2.31 finally brings brotli and zstd compression to Windows Curl while patching a cluster of security flaws that could easily compromise live servers. The release squashes cross-site scripting in the FPM status page, closes a SQL injection vector in PDO_Firebird, and fixes multiple memory corruption bugs in SOAP and MBString that attackers love to exploit. Developers running newer OpenSSL 4.0 libraries will see smoother compatibility, and Windows environments can finally drop workarounds for modern compression standards. Swap out the old binaries before automated scanners start knocking, and test your custom SOAP integrations since the underlying parsing changes might catch legacy code off guard.

Manjaro Linux 26.1 Bian-May Preview released

Manjaro Linux 169 Published 2026-05-05 17:09 by Philipp Esselbach 0

Manjaro Linux 26.1 preview finally updates the desktop environments to match modern display standards while fixing long-standing usability headaches. GNOME 50 delivers polished fractional scaling, hardware-accelerated remote streaming, and actual parental controls that do not break under pressure. Plasma 6.6 lets users save custom layouts as switchable themes and adds practical accessibility filters without cluttering the settings menu. The release wraps everything in Kernel 7.0 for fresh hardware support while keeping older LTS kernels available for machines that refuse to upgrade.

PHP 8.3.31 released

Software 44344 Published 2026-05-05 16:54 by Philipp Esselbach 0

PHP 8.3.31 lands today with a heavy dose of security patches across FPM, MBString, SOAP, and the Standard library, plus native brotli and zstd compression finally making its way to Curl on Windows. Server admins should install this immediately since leaving older versions running is basically handing attackers a free pass to exploit cross-site scripting, SQL injection, and memory corruption flaws. The update also patches up OpenSSL 4.0 handshake failures and seals a null byte injection hole in the Firebird PDO driver that could easily leak database records. Skipping this upgrade just guarantees you will spend your weekend debugging preventable crashes instead of actually shipping code.

Ninkear YBOOK 15 Review - Budget 2-in-1 with Caveats and more

Reviews 52630 Published 2026-05-05 08:34 by Philipp Esselbach 0

Today's roundup gathers a selection of technology reviews covering everything from everyday laptops to specialized desktop components. Budget-friendly 2-in-1 machines earn praise for their quiet operation while newer gaming models focus on OLED displays and modest processor bumps. The collection also explores low-profile keyboards, Wi-Fi 7 motherboards, and compact power supplies designed for specific builds. Each review ultimately weighs performance upgrades against practical pricing to help shoppers navigate a crowded market without overspending.

Computers: Ninkear YBOOK 15 Review - Budget 2-in-1 with Caveats, Alienware 16 Area-51 review: OLED screen update, HP OmniBook 7 (Panther Lake) 16" Laptop Review
Displays: Philips Brilliance 27E3U7903 Review: Extremely Sharp, Unusually Rich in Color, and With a Weakness That Should Not Be Ignored
Input: IQUNIX MQ80 Keyboard Review, be quiet! Dark Perk Mice Review,
Motherboards: ASRock B850 Rock WiFi 7 Motherboard Review
Power: NZXT C850 SFX Gold Power Supply Review - Sufficient Power with a Platinum Rating for Small Cases
Software: UL Procyon Essentials Review - Proper Browser Benchmarking
Video: Reolink Solar Floodlight Security Camera (F310B) review

AlmaLinux 10.2 Beta released

AlmaLinux 2556 Published 2026-05-05 07:56 by Philipp Esselbach 0

AlmaLinux 10.2 Beta Lavender Lion has arrived across all supported architectures, bringing a major refresh to the development stack with Python 3.14, PHP 8.4, Ruby 4.0, PostgreSQL 18, and MariaDB 11.8. The release restores legacy i686 userspace packages for older applications while updating core virtualization and container tools like Podman, QEMU-KVM, and libvirt. Security gets a noticeable upgrade through refreshed OpenSSL, OpenSSH, SELinux policies, and an early patch for the Copy Fail flaw tracked as CVE-2026-31431. Because this is strictly a beta build, system administrators should only validate it in isolated test environments and never push it to production until the stable version officially launches.

Python 3.14.5 RC1 released

Software 44344 Published 2026-05-05 07:52 by Philipp Esselbach 0

Python 3.14.5rc1 drops ahead of the May 8 final release, packing around 113 fixes and a major memory management pivot that rolls back the incremental garbage collector to the proven generational model after production environments started choking on RAM. The update also swaps out PGP verification for Sigstore, introduces a fresh Windows install manager, and bundles several performance tweaks from the broader 3.14 series like faster UUID generation and remote debugging support. Developers should run their test suites against this candidate to catch any lingering regressions, especially around memory handling or extension compatibility. Hold off on pushing it to live servers until the official stable build lands next week.

ROCm 7.2.3 released

Software 44344 Published 2026-05-05 07:47 by Philipp Esselbach 0

ROCm 7.2.3 finally patches those frustrating idle gaps in vLLM profiling traces that turn latency debugging into a guessing game. MIGraphX gets a solid performance bump for embedding-heavy models through fused gather operations, and ONNX Runtime gains better multi-stream memory handling to keep inference pipelines from choking on themselves. Server admins should double-check their firmware and driver matrices since MI325X KVM users absolutely must skip the 30.20.0 AMD GPU driver. The software stack is also actively retiring legacy profiling tools and ROCm SMI by mid-2026, so teams need to migrate to rocprofv3 and AMD SMI before those support windows close.

UniGetUI 2026.1.8 released

Software 44344 Published 2026-05-05 07:44 by Philipp Esselbach 0

UniGetUI 2026.1.8 drops the bundled WinGet CLI and now automatically falls back to a portable Pinget alternative whenever the official tool goes missing or breaks. Windows users get a fresh Avalonia interface they can toggle on demand, while Linux admins finally gain native Flatpak support alongside fixes for Fedora RPM crashes and Chocolatey validation hiccups. The update also shifts branding over to Devolutions and rolls out meaningful accessibility tweaks that actually help screen readers navigate the menus without getting stuck. It is a solid maintenance release that trims unnecessary bloat while keeping package management reliable across different systems.

Curl, Exim, Sed updates for Ubuntu

Ubuntu 7074 Published 2026-05-05 06:39 by Philipp Esselbach 0

Ubuntu released critical security updates to address serious vulnerabilities in curl, exim4, and sed across its supported distributions. The curl patches prevent attackers from stealing credentials or cookies by fixing how the tool reuses network connections under specific configurations. Exim4 gets corrected for dangerous parsing flaws that could allow remote code execution or information disclosure through malformed email headers and authentication inputs. A final fix in sed stops local attackers from overwriting arbitrary files by correcting how the text editor processes symbolic links during modifications.

[USN-8227-1] curl vulnerabilities
[USN-8228-1] Exim vulnerabilities
[USN-8229-1] sed vulnerability

Xen, FreeRDP, Hauler, and more updates for SUSE

SUSE 5638 Published 2026-05-05 06:36 by Philipp Esselbach 0

Apache HTTPd update for Slackware

Slackware 1257 Published 2026-05-05 06:34 by Philipp Esselbach 0

The Slackware Linux Security Team has released updated httpd packages for both the stable 15.0 release and the current development branch to address multiple security flaws in Apache version 2.4.67. These patches fix critical vulnerabilities that could allow attackers to trigger memory disclosures, escalate privileges, or execute arbitrary code through various server modules. Administrators can download the corrected files from official mirrors, verify their integrity using the provided MD5 checksums, and install them with a simple upgradepkg command.

httpd (SSA:2026-124-01)

TigerVNC, Thunderbird, OpenSSH, and updates for RHEL

Red Hat 9405 Published 2026-05-05 06:33 by Philipp Esselbach 0

Kernel, Libcap, Thunderbird updates for Oracle Linux

Oracle Linux 6478 Published 2026-05-05 06:30 by Philipp Esselbach 0

NodeJS, Chromium, Uriparser, Rust-Sequoia, Insight updates for Fedora

Fedora Linux 9340 Published 2026-05-05 06:28 by Philipp Esselbach 0

Fedora administrators should immediately apply a series of security patches released on May 5 to address critical vulnerabilities across multiple core packages in Fedora 43 and 44. The updates target nodejs20, chromium, uriparser, rust-sequoia-git, and insight by fixing dozens of severe flaws that could allow denial of service attacks or unauthorized system access. Many of these issues stem from memory corruption bugs and flawed input validation within widely used networking and rendering libraries. System owners can quickly deploy the fixes through standard package management tools using the specific advisory identifiers provided in each notification.

Fedora 43 Update: nodejs20-20.20.2-3.fc43
Fedora 43 Update: chromium-147.0.7727.137-1.fc43
Fedora 44 Update: uriparser-1.0.1-1.fc44
Fedora 44 Update: rust-sequoia-git-0.6.0-1.fc44
Fedora 44 Update: insight-18.0.50.20260306-3.fc44
Fedora 44 Update: nodejs20-20.20.2-3.fc44

Thunderbird and LXD updates for Debian

Debian 10891 Published 2026-05-05 06:20 by Philipp Esselbach 0

Debian issued two security advisories to address critical flaws in Thunderbird and LXD. The Thunderbird patch for Debian GNU/Linux 11 (Bullseye) LTS resolves several vulnerabilities that could allow attackers to run arbitrary code on affected systems. A separate update for the LXD container platform for both Debian GNU/Linux 12 (Bookworm) and 13 (Trixie) fixes multiple issues that might otherwise trigger denial of service attacks. System administrators should apply these package upgrades immediately to keep their networks secure.

[DLA 4562-1] thunderbird security update
[DSA 6247-1] lxd security update

OpenSSH and Libcap updates for AlmaLinux

AlmaLinux 2556 Published 2026-05-05 06:17 by Philipp Esselbach 0

AlmaLinux released important security updates for multiple system components. The OpenSSH patches cover versions 8 through 10 and fix five separate flaws that could enable privilege escalation or remote code execution. Another notification addresses a race condition in libcap version eight that might allow unauthorized access to file capabilities.

ALSA-2026:13381: openssh security update (Important)
ALSA-2026:13380: openssh security update (Important)
ALSA-2026:13285: libcap security update (Important)
ALSA-2026:13383: openssh security update (Important)