Anonymous
2025-08-15 09:51
2025-08-15 09:51
Product
Last Report
Anonymous
2024-07-07 07:01
2024-07-07 07:01
Anonymous
2024-02-07 19:23
2024-02-07 19:23
marcos
2026-01-17 08:43
2026-01-17 08:43
Anonymous
2025-12-02 08:32
2025-12-02 08:32
Anonymous
2025-10-23 15:19
2025-10-23 15:19
Anonymous
2019-11-27 17:19
2019-11-27 17:19
Anonymous
2019-11-11 09:02
2019-11-11 09:02
Anonymous
2019-07-21 13:03
2019-07-21 13:03
2026-02-22
Several major Linux distributions, including AlmaLinux, Debian, Fedora, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware, and Ubuntu, have released security updates to address various vulnerabilities. These updates include fixes for Go, Golang, Node.js, Python-Django, Wireshark, LibPNG, GnuTLS, Roundcube, Ceph, Nova, ca-certificates, Chromium, Pillow, GEGL, and other packages, resolving issues such as denial-of-service attacks, crashes, infinite loops, HTML sanitization problems, buffer overflows, code execution vulnerabilities, and potential exploitation of vulnerabilities. The updates are available for various versions of each distribution, including kernel updates, to ensure users' systems remain secure and up-to-date. Users should install these updates as soon as possible to prevent their systems from being compromised by attackers exploiting the identified vulnerabilities.
Bazaar 0.7.9 is an updated version of the Flatpak store for GNOME that offers usability tweaks to make managing flatpaks easier and more efficient. The update includes features such as the ability to cancel ongoing transactions with a single click, improved search results with pill-shaped suggestions, and more accurate removal size previews. While some users may find the curated tab and search pills useful, others may view them as unnecessary or annoying, especially on low-resolution displays. Overall, Bazaar 0.7.9 delivers quality-of-life improvements that make it worth installing for those who use flatpaks regularly.
Two important security updates have been released for openSUSE, one for Chromium and another for cockpit-repos. The Chromium update fixes three vulnerabilities (CVE-2026-2648, CVE-2026-2649, and CVE-2026-2650) in version 145.0.7632.109 and has a single bug fix. The cockpit-repos update addresses two vulnerabilities (CVE-2025-13465 and CVE-2025-64718) by updating the package to version 4.7, which includes several bug fixes and translation updates.
openSUSE-SU-2026:20258-1: important: Security update for chromium
openSUSE-SU-2026:20251-1: important: Security update for cockpit-repos
openSUSE-SU-2026:20258-1: important: Security update for chromium
openSUSE-SU-2026:20251-1: important: Security update for cockpit-repos
Several security updates have been released for Fedora 42 and 43, addressing issues in packages such as mupdf, rust-ambient-id, uv, python-uv-build, python-pyasn1, and python3.13. The updates include patches for bugs like CVE-2026-25556, CVE-2026-25727, and CVE-2026-23490, which could lead to denial-of-service attacks or memory exhaustion.
Fedora 42 Update: mupdf-1.26.3-5.fc42
Fedora 42 Update: rust-ambient-id-0.0.10-1.fc42
Fedora 42 Update: uv-0.10.2-1.fc42
Fedora 42 Update: python-uv-build-0.10.2-1.fc42
Fedora 42 Update: python-pyasn1-0.6.2-1.fc42
Fedora 43 Update: python3.13-3.13.12-1.fc43
Fedora 43 Update: python-pyasn1-0.6.2-1.fc43
Fedora 42 Update: mupdf-1.26.3-5.fc42
Fedora 42 Update: rust-ambient-id-0.0.10-1.fc42
Fedora 42 Update: uv-0.10.2-1.fc42
Fedora 42 Update: python-uv-build-0.10.2-1.fc42
Fedora 42 Update: python-pyasn1-0.6.2-1.fc42
Fedora 43 Update: python3.13-3.13.12-1.fc43
Fedora 43 Update: python-pyasn1-0.6.2-1.fc43
Debian has issued security updates for the GEGL image processing library due to two vulnerabilities: CVE-2026-2049 and CVE-2026-2050. These bugs could allow an attacker to crash the system or execute arbitrary code if they process malformed files using the RGBE/HDR parser in GEGL. The affected versions include 1:0.4.26-2+deb11u2 for Debian GNU/Linux 11 (Bullseye) LTS and 0.3.8-4+deb9u2 for Debian GNU/Linux 9 (Stretch) ELTS and 0.4.12-2+deb10u2 for Debian GNU/Linux 10 (Buster) ELTS.
[DLA 4487-1] gegl security update
ELA-1650-1 gegl security update
[DLA 4487-1] gegl security update
ELA-1650-1 gegl security update
2026-02-21
Ardour 9.1 is an update that fixes some major bugs from its predecessor, including issues with the bottom pane and MIDI note playback. The new version also introduces two useful MIDI features: "MIDI note chase," which prevents silent notes during long sustained sounds, and "MIDI note duplication," which allows users to easily copy clusters of notes. Additionally, several practical improvements have been made, such as improved region dragging, zooming, and pitch-bend value display. If you've been running into issues with the bottom pane or MIDI playback in version 9.0, upgrading to Ardour 9.1 is a recommended fix.
A roundup of tech reviews reveals that Dell's 2026 XPS 14 laptop and Samsung's Galaxy Book6 Ultra are both receiving praise for their impressive performance, efficiency, and sleek designs. Meanwhile, ASRock has entered the CPU cooling market with its Phantom Gaming 360 LCD AIO cooler, which is being reviewed by Vortez. In other news, APH Networks is reviewing the Epomaker Luma40, a unique ortholinear 40% keyboard that promises to meet each user's individual needs. Additionally, TechPowerUp has given the ASRock Z890 Steel Legend Wi-Fi motherboard a positive review for its performance and features at an affordable price point under $250.
Computers: Dell XPS 14 (2026) Laptop Review: A Great Return To Form, Samsung Galaxy Book6 Ultra review: Premium creator pick
Cooling: ASRock Phantom Gaming 360 LCD Review
Input: Epomaker Luma40 Review
Motherboards: ASRock Z890 Steel Legend Wi-Fi Review
Storage: Phison Pascari X200P 7.68TB Enterprise SSD Review - Sequential Read Champion
Gear Lever 4.4.6 has arrived with several polish upgrades that make the AppImage manager feel more like a finished tool, including Arabic localization and improved offline handling. The update also trims unnecessary content-type checks that used to slow down launches, resulting in smoother daily use, especially for users juggling dozens of portable apps. A major win is the "single click" menu integration, which allows users to drop a fresh AppImage into their collection and have it appear alongside other applications without needing to open a terminal. The update also includes small UI improvements, such as more consistent button spacing, and better offline support that caches the index of known AppImages locally.
Wine Staging 11.3 has been updated with a fresh rebase on the upstream development release, including bug fixes and performance tweaks from the mainline 11.3 branch. The update also includes an updated vkd3d-latest patchset, which provides critical fixes for Direct3D 12 calls to Vulkan. If you're using Wine Staging on Linux, you can quickly install it by adding a repository or compiling it from source, depending on your distribution. To use the latest version of Wine Staging, you should run it with the full path, such as /opt/wine-staging/bin/wine, to avoid accidentally falling back to the stable version.
Wine Development Release 11.3 brings several improvements, including a new Mono engine that fixes long-standing bugs affecting .NET applications and games on Windows emulation. The release also updates the vkd3d stack for better Vulkan-to-DirectX translation and adds a new DirectSound FIR filter to improve audio fidelity in music players. Additionally, Wine 11.3 includes PDB loading optimizations that boost build performance by skipping unnecessary sections, and renames the light theme to Aero to match Windows' naming convention. Several key bugs have been addressed, including issues with OpenGL devices, frame tearing, and memory leaks that caused freezes when launching complex installers or switching between applications.
The latest VSCodium build, version 1.109.51242, brings several improvements to the coding experience for developers. This includes slash commands being recognized in prompt files and hooks, allowing for more seamless integration of extensions. Additionally, background agent sessions can now be renamed, eliminating confusion when multiple agents run simultaneously.
Krita has released beta versions of 5.3 and 6.0, fixing fourteen bugs submitted by testers. The updates bring polish tweaks to daily users, including improved brush engine behavior and smoother animation docker navigation. However, Krita 6.0 Beta 2 still feels rough on Linux/Wayland due to sporadic crashes when opening large PSD files and misinterpreted OpenGL contexts. For now, the recommended version for real work is Krita 5.3 Beta 2, which offers stability and a safer experience.
The Heroic Games Launcher 2.20.0, dubbed "Pythagoras," has been released with several bug fixes and UI tweaks that aim to improve user experience. One of the most significant changes is the ability for Epic-based games to launch offline when supported by the game itself, which eliminates long loading screens. Additionally, the launcher now prevents duplicate launch processes from occurring when multiple clicks are made on the Play button, reducing potential troubleshooting time. The update also includes minor fixes and polish, such as improved text wrapping for CJK fonts, but some changes feel like housekeeping rather than significant improvements.
Mesa 25.3.6 has been released to address several bug-fixes and crashes affecting older hardware and recent driver updates. This update is significant for its fixes, including a correction for WSI/Metal color-space handling and the removal of a buggy SLM optimization in the Broadwell driver that caused intermittent freezes on older Intel chips. Additionally, it resolves internal compiler quirks, Vulkan command queue stride issues, and GPU stalls in the Intel driver.
A security notice was issued for Ubuntu 24.04 LTS due to vulnerabilities in the Linux kernel. These issues, which affect the cryptographic API, SMB network file system, and io_uring subsystem, could potentially be exploited by an attacker to compromise a system. To fix these problems, users need to update their systems to specific package versions, including linux-image-6.8.0-1022-xilinx and linux-image-6.8.0-94-lowlatency. After updating, it's essential to reboot the computer and possibly reinstall third-party kernel modules due to an ABI change.
[USN-8015-5] Linux kernel vulnerabilities
[USN-8015-5] Linux kernel vulnerabilities
Several security updates have been released for SUSE Linux, including fixes for MozillaFirefox and ucode-intel. These patches are designated as moderate and aim to address potential issues. Additionally, three important security updates have been made available for snpguest, python, and vexctl. T
openSUSE-SU-2026:10225-1: moderate: MozillaFirefox-147.0.4-1.1 on GA media
openSUSE-SU-2026:10229-1: moderate: ucode-intel-20260210-1.1 on GA media
openSUSE-SU-2026:10226-1: moderate: python311-nltk-3.9.1-3.1 on GA media
SUSE-SU-2026:0582-1: important: Security update for snpguest
SUSE-SU-2026:0590-1: important: Security update for python
SUSE-SU-2026:0592-1: important: Security update for vexctl
openSUSE-SU-2026:10225-1: moderate: MozillaFirefox-147.0.4-1.1 on GA media
openSUSE-SU-2026:10229-1: moderate: ucode-intel-20260210-1.1 on GA media
openSUSE-SU-2026:10226-1: moderate: python311-nltk-3.9.1-3.1 on GA media
SUSE-SU-2026:0582-1: important: Security update for snpguest
SUSE-SU-2026:0590-1: important: Security update for python
SUSE-SU-2026:0592-1: important: Security update for vexctl
The mingw-libpng package for Fedora 42 has been updated to version 1.6.55, which addresses two vulnerabilities: CVE-2026-25646, a heap buffer overflow in png_set_quantize that can be exploited remotely.
Fedora 42 Update: mingw-libpng-1.6.55-1.fc42
Fedora 42 Update: mingw-libpng-1.6.55-1.fc42
Three packages have been affected by newly discovered vulnerabilities: nova, ca-certificates, and chromium. The nova vulnerability allows for data destruction on the host system due to unsafe image resize operations, while the chromium security issues result in potential code execution or information disclosure. Additionally, the ca-certificates package has been updated with new certificate authorities and removed expired ones to ensure secure SSL connections. Other packages, such as pillow, also have vulnerabilities that need to be addressed through upgrades.
Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1649-1 gimp security update
Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4486-1] nova security update
[DLA 4485-1] ca-certificates CA certificates update
Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6146-1] chromium security update
Debian GNU/Linux 13 (Trixie):
[DSA 6147-1] pillow security update
Debian GNU/Linux 9 (Stretch) and 10 (Buster) Extended LTS:
ELA-1649-1 gimp security update
Debian GNU/Linux 11 (Bullseye) LTS:
[DLA 4486-1] nova security update
[DLA 4485-1] ca-certificates CA certificates update
Debian GNU/Linux 12 (Bookworm) and 13 (Trixie):
[DSA 6146-1] chromium security update
Debian GNU/Linux 13 (Trixie):
[DSA 6147-1] pillow security update
A security update has been released for Grafana on AlmaLinux 10. The update fixes multiple vulnerabilities, including denial of service due to crafted certificates and privilege escalation through dashboard permissions bypass. Other issues addressed include excessive CPU consumption when building archives and memory exhaustion during query parameter parsing.
ALSA-2026:2914: grafana security update (Important)
ALSA-2026:2914: grafana security update (Important)
[ Archive ]
