A patch release for FEX-2507 has been released and includes fixes for PRs #4655 and #4646, which address fix divisor masking and unclaim in dtor.

VSCodium version 1.102.04606 has been released and updated to VS Code 1.102.0

The FEX-2507 release encompasses a range of fixes and enhancements for users. The game Horizon Zero Dawn was observed to be operating in slow-motion, with the physics functioning at approximately one-third of the normal speed. This issue arose from a bug in WINE's reliability check, resulting in the game reverting to the CPU's maximum clock speed. The resolution addressed this issue, enabling the game to execute its animations at the appropriate speed.

The FSINCOS feature, recognized for its performance challenges, underwent minor optimizations, leading to a 75% increase in operations per second. It is advisable to utilize the x87 "reduced precision" mode to enhance performance.

The Postfix 3.10.3 mail server addresses issues that were introduced in Postfix 3.10. The updates include adding the current TLS security level to the keys used for looking up the SMTP connection and TLS sessions, and making sure that the Postfix SMTP client doesn't try to find TLSA records when the "TLS-Required: no" header is there, which helps prevent unnecessary errors.

The PostgreSQL database server tool pgmoneta has been updated. The new version 0.18 features the introduction of hot standby directories, online/offline server modes, a cascade option for retention/expunge, and enhanced configuration get/set functionality.

Ungoogled Chromium, based on Chromium 138.0.7204.100, has been released.

Apache HTTP Server 2.4.64 has been released to resolve multiple security vulnerabilities. The initial issue pertains to the delayed memory release following a vulnerability related to effective lifetime in Apache HTTP Server, impacting versions 2.4.17 through 2.4.63. This vulnerability allows an attacker to compromise an HTTP session by using a TLS upgrade. The second issue pertains to the mod_ssl TLS upgrade attack, which enables a man-in-the-middle attacker to compromise an HTTP session through a TLS upgrade. The third issue is about a problem with mod_ssl that allows trusted clients to skip access control by using TLS 1.3 session resumption.

The fourth issue pertains to server-side request forgery (SSRF) on Windows as a result of UNC paths. This vulnerability allows a harmful server to possibly reveal NTLM hashes to an unauthorized server by using mod_rewrite or Apache commands that process unchecked request input. The server provides limited safeguards against administrators instructing it to access UNC paths. Windows servers must restrict the hosts they connect to via SMB, taking into account the characteristics of NTLM authentication.

Zed 0.194.3 has been released, featuring enhancements in error reporting, a multi-line text view, SVG previews, and settings adjustments. The update includes diagnostics for JSON, allows for retries on API errors within the agent panel, and enhances the management of debugger breakpoint properties.

The update adds support for using the NO_PROXY environment variable when an HTTP proxy is set, shows previews for SVG files, allows changes to dock size, gives alerts for unknown fields, improves how pasted newlines are handled during searches, enhances the detection of Prettier configuration files, and improves error reporting for regex parsing. Recent updates address the absence of shadows for blurred-background windows on macOS, resolve rewrap concerns, and rectify problems related to horizontal autoscrolling and indent guides. The agent panel now features automatic retries when an upstream AI API experiences overload or returns a 500 error, and the model selector has been updated to prioritize open options. The update also resolves concerns related to streaming responses and slow scrolling, as well as issues associated with Anthropic requests and Gemini models.

Zen Browser 1.14.3b has been released and resolved multiple issues, including enhancements to the default colors for the color picker.

Node.js 24.4.0 has been released. Significant updates encompass the inclusion of outputLength support in crypto.hash for XOF functions, the introduction of watch-mode related flags in node.1, the implementation of disposable mkdtempSync in fs, the propagation of permission model flags during spawn, the support for readBigInts option at the database connection level, and the addition of the --watch-kill-signal flag in watch.

Commitments to Node.js involve the elimination of obsolete code, the incorporation of source maps and caches, the initialization of the HTTP proxy following the user module loader setup, and the deactivation of v8_enable_pointer_compression_shared_cage on non-64bit systems. Furthermore, updates have been made to sqlite, undici, googletest, minimatch, and various other dependencies.

Godot 4.5 beta 3 has been released, following a successful beta snapshot that resolved regressions and implemented bug fixes. The community has diligently collaborated to implement these fixes, and the release is centered on resolving these issues. Notable updates since beta 2 encompass a refined camera position, enhancements in animation keying, resolution of audio issues, fixes for crashes in C# bindings generators, implementation of typed collections utilizing the same reference across scene instances, and improvements to the DotNet iOS export process. Additional enhancements comprise autocompletion, type resolution, and enhanced support for global enums within the GDScript editor.

Python 3.14.0 beta 4 represents the concluding version of Python 3.14, marking the end of the four scheduled beta releases. This release is designed to offer the broader community the chance to evaluate new features, address bug fixes, and prepare their projects for the upcoming feature launch. It is recommended that maintainers of third-party Python projects conduct testing with Python 3.14 during the beta phase and report any identified issues to the Python bug tracker. The objective is to ensure there are no ABI changes following beta 4 and to minimize code modifications after the initial release candidate.

Significant enhancements in Python 3.14 encompass support for free-threaded Python, deferred evaluation of type annotations, template string literals, multiple interpreters in the standard library, and the introduction of a new module for compression. The significant enhancements in Python 3.14 include Zstandard compression, syntax highlighting in the Python REPL, a zero-overhead external debugger interface for CPython, support for UUID versions 6 to 8, restrictions on return/break/continue statements that exit a finally block, enhancements to the C API for Python configuration, the introduction of a new interpreter type, improved error messaging, a built-in implementation of HMAC with formally verified code from the HACL* project, a new command-line interface for inspecting running Python processes using asynchronous tasks, and support from the pdb module for remote attachment to a running Python process.

Samba 4.22.3 has been released. The update introduces a modification to the Microsoft RPC Netlogon protocol, enhancing access checks for a specific set of RPC requests. Samba installations functioning as member servers within Windows AD domains will be impacted if they are set up to utilize the 'ad' idmapping backend. Current versions of Samba with the affected configuration will cease to operate correctly following the implementation of the Microsoft update. 

The Samba Team has announced the release of Samba 4.21.7, the most recent stable version in the Samba 4.21 series. The update introduces a modification to the Microsoft RPC Netlogon protocol, enhancing security through stricter access checks for RPC requests. If you set up Samba installations functioning as member servers within Windows AD domains to utilize the 'ad' idmapping backend, the update will impact them. The current versions of Samba configured in the affected manner will cease to operate correctly following the application of the Microsoft update.

The second release candidate for Apache 2.4.64 has been released. Apache 2.4.64 comes with a range of updates, such as the introduction of iobuffersize configured at the worker level for IO buffer size, the removal of $SSLKEYLOGFILE handling for OpenSSL 3.5 builds, adjustments to the log level for message AH01236, enhancements in reusing ProxyRemote connections when feasible, the addition of systemd socket activation support, and the logging of the SELinux context during startup. Mod_http2 has been upgraded to version 2.0.32, which resolves an issue related to the management of lengthy response headers and introduces new directives, `H2MaxHeaderBlockLen`, to establish limits on response header sizes.

Furthermore, improvements have been made to memory management in LuaOutputFilter, and a regression related to the detection of broken backend connections has been resolved. Mod_md has been upgraded to version 2.5.2, which resolves TLS-ALPN-01 challenges and corrects the absence of newlines in the status page output. Mod_dav has introduced an API to reveal the DavBasePath setting, while mod_md has incorporated support for ACME profiles through the new directives MDProfile and MDProfileMandatory.

OBS Studio 31.1.0 has been released and introduces various new features and addresses several bug fixes. OBS has updated its code signing certificate, potentially affecting game capture compatibility with specific anti-cheat solutions. The latest updates encompass support for Windows on Arm (WoA), enhanced UI appearance options, preview zoom controls, and the introduction of multitrack video support for macOS and Linux. Additionally, there are new canvases for multitrack video output, AV1 B-frame support for AMF, and capabilities for color format/space/range GPU conversion. The updates also include network optimizations, TCP Pacing, Stream Delay, and a spatial AQ option for VideoToolbox encoders. Furthermore, explicit sync support for PipeWire Screen Capture has been added, along with V4L2 virtual camera support in non-Linux environments and hardware-accelerated browser source support for Linux.

The update encompasses modifications to the game capture hook signatures on Windows, enhancements to logging for streaming service recommended settings, and a reorganization of the Preview/Source context menu. Recent updates address several issues, including resolving crashes associated with media sources lacking a video frame size, addressing crashes on Windows during Display Capture, fixing crashes on macOS 13 or earlier when adding or loading a Browser Source or Browser Dock, and rectifying race conditions that lead to failures or hangs in subsequent recordings following an encoder timeout.

The release candidate for Apache 2.4.64 is available for testing and has implemented several updates, such as the introduction of iobuffersize configured at the worker level for IO buffer size, the removal of $SSLKEYLOGFILE handling for OpenSSL 3.5 builds, adjustments to the log level for message AH01236, enhancements in reusing ProxyRemote connections when feasible, the addition of support for systemd socket activation, and the logging of the SELinux context during startup. Mod_http2 has been updated to version 2.0.32, resolving an issue with the management of lengthy response headers and introducing new directives to establish limits on response header sizes.

Furthermore, improvements have been made to memory management in LuaOutputFilter, and a regression related to the detection of broken backend connections has been addressed. Mod_md has been upgraded to version 2.5.2, which resolves TLS-ALPN-01 challenges and corrects the absence of newlines in the status page output. Mod_dav has introduced an API to reveal the DavBasePath setting, while mod_md has incorporated support for ACME profiles, updated directives, and resolved issues related to the handling of corrupted httpd.json.

DXVK 2.7 has been released with a range of enhancements aimed at optimizing performance and ensuring better compatibility with games. The Vulkan extension VK_KHR_maintenance5 is now mandatory, and the fallbacks enabling older drivers to operate have been eliminated. The upcoming changes will predominantly impact Windows users utilizing AMD Polaris and Vega GPUs, for which AMD has officially ceased driver support.

Descriptor management has undergone a comprehensive rewrite and modernization, with VK_EXT_descriptor_buffer now serving as the default on the latest AMD and Nvidia graphics cards. Memory defragmentation is now enabled by default on Intel Battlemage and Lunar Lake GPUs, whereas this feature remains disabled on older Intel GPUs. DXVK adheres to the VRAM budget reported by the driver and efficiently manages resources by dynamically relocating unused assets to system memory during periods of memory constraint.

AM 9.8.1 has been released with support for Steam Deck and SteamOS, enabling users to install and manage applications locally and in a rootless manner while utilizing SteamOS on the Steam Deck. The install script has been revised to accommodate Steam Deck, with the "am" link positioned in the user's HOME directory. Other changes include removing desktop files for CLI AppImages, adding lazygit, delta, taskwarrior, and vicut, updating the Italian language settings, improving shell builtins, fixing the main-index point, enhancing options, updating ppsspp to the latest versions, removing AppDir and squashfs-root directories, and adding gpu-screen-recorder and transmission-qt.

Mesa 25.1.5 has been released and encompasses fixes for several issues, including Panfrost, PanVK, TS allocation, linear/z rendering interaction, SyncSurface, memory leaks, and other fixes. The release incorporates enhancements for memory barriers, nir/lower_input_attachments, nak, inclusive scan rewrite, and other improvements.