A new version of the XanMod kernel for Debian and Ubuntu has been released. This kernel adds LLVM ThinLTO, aggressive x86_64 scheduling and networking upgrades like BBRv3 that can noticeably speed heavy I/O or compilation workloads. The kernel may break DKMS‑based drivers (NVIDIA, OpenZFS, VirtualBox/VMware), so keep the old kernel handy and be ready to reinstall or revert if needed. Install it by adding the XanMod repo, pulling in linux-xanmod and its headers, then rebooting and selecting the new entry.
Liquorix Kernel 6.18‑8 swaps the default scheduler for Kyber/BFQ, tightens CPU timeslices to 2 ms and enables aggressive preemption, giving desktops a noticeably snappier feel at the cost of a bit more power draw. The one‑liner install script simply adds the Liquirx repo, pulls the proper .deb (or AUR) package and updates GRUB—just save the script first, glance at it, then run it with sudo. Expect minor side effects like higher fan speed on laptops, possible firmware or driver rebuilds for older GPUs/NVIDIA cards, and a small learning curve if you use systemd‑boot instead of GRUB
Steven Barrett has released Liquorix Linux Kernel 6.18-7, which fixes a performance issue affecting Project-C and includes several notable improvements for optimizing the desktop experience. The kernel features interactive tuning to prioritize responsiveness over power saving, optimized I/O and memory management, and adjusted CPUFreq control parameters for faster responsiveness when needed. Additionally, Liquorix 6.18-7 includes high-resolution scheduling, real-time system handling, and other technical enhancements, such as Budget Fair Queue support and Compressed Swap via zswap. The kernel is designed to be easily deployable on Debian, Ubuntu, or Arch Linux systems, with binary builds available through the Liquorix PPA for straightforward installation.
Two separate security updates have been released for Ubuntu Linux: libxml2 vulnerabilities and a pyasn1 vulnerability. The libxml2 vulnerabilities, discovered by multiple researchers, can lead to denial-of-service attacks when maliciously crafted SGML catalog files or recursive include directories are processed. The pyasn1 vulnerability, which can cause the library to crash with specially crafted input.
[USN-7974-1] libxml2 vulnerabilities
[USN-7975-1] pyasn1 vulnerability
[USN-7974-1] libxml2 vulnerabilities
[USN-7975-1] pyasn1 vulnerability
Ubuntu has released security notices for several vulnerabilities affecting various packages. The affected packages include iperf3, which had multiple vulnerabilities that could lead to denial of service or information disclosure in Ubuntu 25.10, 24.04 LTS, 22.04 LTS, and 20.04 LTS. Additionally, OpenCC, a simplified-traditional Chinese conversion library, was found to have a vulnerability that could cause the program to crash if it received specially crafted input in Ubuntu 25.10, 24.04 LTS, and 22.04 LTS. GLib, a C library of routines, also had a vulnerability that could cause it to crash or run programs if it received specially crafted input in Ubuntu 25.10, 24.04 LTS, and 22.04 LTS.
[USN-7970-1] iperf3 vulnerabilities
[USN-7972-1] OpenCC vulnerability
[USN-7971-1] GLib vulnerability
[USN-7970-1] iperf3 vulnerabilities
[USN-7972-1] OpenCC vulnerability
[USN-7971-1] GLib vulnerability
A security vulnerability was discovered in Ubuntu versions 20.04, 18.04, and 16.04 that affects Dungeon Crawl Stone Soup. The game could be made to execute arbitrary code by opening a specially crafted file due to incorrect handling of Lua bytecode. David Mendenhall discovered the issue, which could potentially allow an attacker to run malicious software. To fix the problem, users can update their system to the latest package versions using a standard system update.
[USN-7969-1] Dungeon Crawl Stone Stoup vulnerability
[USN-7969-1] Dungeon Crawl Stone Stoup vulnerability
Ubuntu Linux has released several security updates to address various vulnerabilities. The updates include fixes for Snowflake and Telegraf, as well as Avahi and Apache HTTP Server issues. In addition, a regression in urllib3 has also been addressed with the latest update.
[USN-7966-1] Snowflake vulnerabilities
[USN-7966-2] Telegraf vulnerabilities
[USN-7967-1] Avahi vulnerabilities
[USN-7955-2] urllib3 regression
[USN-7968-1] Apache HTTP Server vulnerabilities
[USN-7966-1] Snowflake vulnerabilities
[USN-7966-2] Telegraf vulnerabilities
[USN-7967-1] Avahi vulnerabilities
[USN-7955-2] urllib3 regression
[USN-7968-1] Apache HTTP Server vulnerabilities
Steven Barrett has released Liquorix Linux kernel 6.18-6, which is based on the standard Linux Kernel 6.18 and designed to optimize desktop performance for multimedia and gaming workloads. The new kernel has many upgrades, like better Zen Interactive Tuning, improved I/O and memory management, quicker CPUFreq control, and extra features for better performance, such as high-resolution scheduling and real-time system handling. Liquorix is a custom-built kernel that can be used as a direct replacement for the standard kernel on Debian, Ubuntu, or Arch Linux systems, with binary builds available through their PPA. Users can easily try out the new kernel by running a script on the Liquorix website, which will handle the installation automatically via curl and bash.
Steven Barrett has released Liquorix Linux kernel 6.18-5, a custom-built kernel designed to optimize desktop experiences for multimedia and gaming workloads by tapping into performance capabilities that may not be fully utilized in default kernels. This kernel brings several notable improvements, including interactive tuning, optimized I/O and memory management, and features like high-resolution scheduling, real-time system handling, and support for Budget Fair Queue (BFQ) to manage disk I/O and keep latency in check. Liquorix 6.18-5 also includes performance enhancements such as TCP BBR2 Congestion Control and Compressed Swap using LZ4 compression to reduce memory requirements for swap. The kernel is available for Debian, Ubuntu, and Arch Linux, with binary builds tailored for stable, testing, and unstable releases, making it easy to install and use as a direct replacement for the standard kernel.
Multiple security notices have been issued for various Ubuntu releases, including USN-7960-1 for ruby-rack vulnerabilities and USN-7962-1 for cpp-httplib vulnerabilities. The issues include denial-of-service (DoS) attacks, memory exhaustion, unauthorized access to network services, and bypassing proxy access restrictions. Updates are available for affected systems, which can be installed through a standard system update or by updating specific packages.
[USN-7960-1] Rack vulnerabilities
[USN-7962-1] cpp-httplib vulnerability
[USN-7916-2] python-apt regression
[USN-7964-1] Git vulnerabilities
[USN-7965-1] SimGear vulnerability
[USN-7960-1] Rack vulnerabilities
[USN-7962-1] cpp-httplib vulnerability
[USN-7916-2] python-apt regression
[USN-7964-1] Git vulnerabilities
[USN-7965-1] SimGear vulnerability
Ubuntu has released several security notices (USN) to address vulnerabilities in various packages. The affected releases include Ubuntu 25.04, 24.04 LTS, 22.04 LTS, and others. Multiple vulnerabilities were found in AngularJS, Erlang, klibc, and libpng1.6, which could lead to issues such as cross-site scripting, denial of service, and unintended access to network services. Users are advised to update their systems to the latest package versions through a standard system update to fix these vulnerabilities.
[USN-7958-1] AngularJS vulnerabilities
[USN-7961-1] Erlang vulnerability
[USN-7959-1] klibc vulnerabilities
[USN-7963-1] libpng vulnerabilities
[USN-7958-1] AngularJS vulnerabilities
[USN-7961-1] Erlang vulnerability
[USN-7959-1] klibc vulnerabilities
[USN-7963-1] libpng vulnerabilities
Three Ubuntu Security Notices have been issued: USN-7956-1, USN-7957-1, and USN-7927-3. These notices address vulnerabilities in Google Guest Agent (USN-7956-1), WebKitGTK (USN-7957-1), and urllib3 (USN-7927-3). The fixes for these vulnerabilities involve updating the affected packages to new versions, which can be done through a standard system update. Users who rely on applications that use WebKitGTK, such as Epiphany, may need to restart them after updating to ensure all necessary changes are made.
[USN-7956-1] Google Guest Agent vulnerability
[USN-7957-1] WebKitGTK vulnerabilities
[USN-7927-3] urllib3 regression
[USN-7956-1] Google Guest Agent vulnerability
[USN-7957-1] WebKitGTK vulnerabilities
[USN-7927-3] urllib3 regression
Ubuntu Linux has released several security updates to address various vulnerabilities. These updates include fixes for Libtasn1, Python, PHP, and the Linux kernel (IoT), as well as a regression in urllib3. Additionally, there is also a separate update addressing another urllib3 vulnerability.
[USN-7954-1] Libtasn1 vulnerabilities
[USN-7951-1] Python vulnerability
[USN-7953-1] PHP vulnerabilities
[USN-7927-2] urllib3 regression
[USN-7922-5] Linux kernel (IoT) vulnerabilities
[USN-7955-1] urllib3 vulnerability
[USN-7954-1] Libtasn1 vulnerabilities
[USN-7951-1] Python vulnerability
[USN-7953-1] PHP vulnerabilities
[USN-7927-2] urllib3 regression
[USN-7922-5] Linux kernel (IoT) vulnerabilities
[USN-7955-1] urllib3 vulnerability
A security issue was discovered in libheif, a library used to decode and encode HEIF and AVIF file formats. The vulnerability allowed an attacker to cause a denial of service or potentially execute arbitrary code on Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 24.04 LTS systems. Aldo Ristori discovered another issue that also caused a denial of service on affected Ubuntu versions. To fix the issues, users can update their systems to the recommended package versions, which are available through standard system updates or Ubuntu Pro for certain releases.
[USN-7952-1] libheif vulnerabilities
[USN-7952-1] libheif vulnerabilities
Ubuntu has released three security notices for Linux kernel vulnerabilities affecting various releases, including Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. The issues were discovered in the Linux kernel, specifically in subsystems such as cryptographic API, media drivers, network drivers, file systems, and tracing infrastructure. Multiple security issues have been discovered in the Linux kernel that could potentially be used by an attacker to compromise a system. Two of these vulnerabilities are specific to the Azure and N-Series environments (USN-7940-2), while another two notices focus on Raspberry Pi (USN-7931-5) and Azure/N-Series systems (USN-7940-2):
[USN-7931-5] Linux kernel (Raspberry Pi) vulnerabilities
[USN-7940-2] Linux kernel (Azure, N-Series) vulnerabilities
[USN-7928-5] Linux kernel (KVM) vulnerabilities
[USN-7931-5] Linux kernel (Raspberry Pi) vulnerabilities
[USN-7940-2] Linux kernel (Azure, N-Series) vulnerabilities
[USN-7928-5] Linux kernel (KVM) vulnerabilities
Liquorix Linux Kernel 6.18-4 has been released by Steven Barrett, based on the standard Linux Kernel 6.18, and designed to optimize desktop performance for multimedia and gaming workloads. The new kernel includes notable improvements such as Zen Interactive Tuning, which prioritizes responsiveness over power saving, and optimizes I/O and memory management through tweaks to the Block Layer.
Ubuntu Linux has released several security updates to address various vulnerabilities. These include issues in libvirt, Tornado, GnuPG, Sodium, and GPSd. The updates aim to improve the security of Ubuntu systems by patching these vulnerabilities.
[USN-7047-1] libvirt vulnerabilities
[USN-7950-1] Tornado vulnerabilities
[USN-7946-2] GnuPG vulnerability
[USN-7946-1] GnuPG vulnerability
[USN-7949-1] Sodium vulnerability
[USN-7948-1] GPSd vulnerabilities
[USN-7047-1] libvirt vulnerabilities
[USN-7950-1] Tornado vulnerabilities
[USN-7946-2] GnuPG vulnerability
[USN-7946-1] GnuPG vulnerability
[USN-7949-1] Sodium vulnerability
[USN-7948-1] GPSd vulnerabilities
Ubuntu has released security notices for three vulnerabilities affecting various versions of its operating system. The first vulnerability, in libcaca, could cause a denial of service if a specially crafted file was opened. The second vulnerability, in Libxslt, could crash or exhibit undefined behavior when performing XML transformations on malicious input. The third vulnerability, in Net-SNMP, allows an attacker to potentially cause a denial of service by tricking a user into opening a specially crafted input file.
[USN-7943-1] libcaca vulnerability
[USN-7945-1] Libxslt vulnerability
[USN-7944-1] Net-SNMP vulnerability
[USN-7943-1] libcaca vulnerability
[USN-7945-1] Libxslt vulnerability
[USN-7944-1] Net-SNMP vulnerability
Ubuntu has released security notices for two vulnerabilities: USN-7942-1 affects GLib libraries in Ubuntu 25.10, 25.04, 24.04 LTS, and 22.04 LTS, while USN-7922-4 affects Linux kernel versions in Ubuntu 20.04 LTS and 18.04 LTS. The GLib vulnerabilities could cause a denial of service or allow execution of arbitrary code if exploited, while the Linux kernel issues may compromise system security.
[USN-7942-1] GLib vulnerabilities
[USN-7922-4] Linux kernel (Raspberry Pi) vulnerabilities
[USN-7942-1] GLib vulnerabilities
[USN-7922-4] Linux kernel (Raspberry Pi) vulnerabilities
Ubuntu 25.04 (Plucky Puffin) will reach its end of life on January 15, 2026, marking the date when no further updates or support will be available. This includes security patches, bug fixes, and other essential updates that are crucial to keeping systems secure. Users running Ubuntu 25.04 are highly recommended to upgrade to the latest supported version, Ubuntu 25.10, for continued stability and security.
