A security issue affecting Git has been identified in Ubuntu 22.04 LTS and 20.04 LTS. The problem arose from a regression introduced by USN-5376-4, which incorrectly handled certain repository paths in platforms with multiple users support. An attacker could potentially exploit this vulnerability to run arbitrary commands. To correct the issue, update your system to the latest package versions: Ubuntu 22.04 LTS should have git version 1:2.34.1-1ubuntu1.17 and Ubuntu 20.04 LTS should have git version 1:2.25.1-1ubuntu3.14+esm5.
[USN-5376-4] Git regression
[USN-5376-5] Git regression
XanMod has released its latest kernel, version 6.19.4, which brings improvements such as LLVM ThinLTO and aggressive CPU-level tweaks that can enhance download speeds and overall system performance. The new build also includes an all-new BBRv3 congestion engine and a scx scheduler extension for handling heavy CPU loads more efficiently. However, users who rely on NVIDIA's proprietary driver or other specific software may experience issues with the latest kernel, requiring them to run certain commands after booting to confirm module loading. To install XanMod 6.19.4, users can follow the provided instructions, which involve adding a repository, refreshing APT, and rebooting into the new kernel.
Multiple Ubuntu security notices were issued, addressing vulnerabilities in various packages, including rlottie, Authlib, Linux kernel, and Rack. The notices affect several Ubuntu releases, including 25.10, 24.04 LTS, 22.04 LTS, and 20.04 LTS, and provide instructions for updating to the latest package versions to fix the issues. The vulnerabilities range from denial-of-service attacks and arbitrary code execution to authentication bypass and privilege escalation. Users are advised to update their systems as soon as possible to prevent potential security risks.
[USN-8058-1] rlottie vulnerabilities
[USN-8065-1] Authlib vulnerabilities
[USN-8059-6] Linux kernel vulnerabilities
[USN-8066-1] Rack vulnerabilities
Several security issues were fixed in various Ubuntu packages, including curl, the Linux kernel, and Ceph. The vulnerabilities include improperly handled cookies and WebSocket communications in curl, and flaws in GPU drivers, MMC subsystems, and SMB network file system in the Linux kernel. Additionally, Ceph's RADOS Gateway did not properly handle certain header parameters, and Protocol Buffers incorrectly handled recursion when parsing JSON format. Users are advised to update their systems to the latest package versions to address these issues and prevent potential security risks.
[USN-8062-1] curl vulnerabilities
[USN-8060-4] Linux kernel (FIPS) vulnerabilities
[USN-8059-5] Linux kernel (FIPS) vulnerabilities
[USN-8059-4] Linux kernel (Real-time) vulnerabilities
[USN-8059-3] Linux kernel vulnerabilities
[USN-8045-1] Ceph vulnerabilities
[USN-8063-1] Protocol Buffers vulnerability
[USN-8064-1] MongoDB vulnerabilities
Multiple Ubuntu Security Notices (USNs) were released on February 24, 2026, addressing vulnerabilities in various Linux kernel versions for different architectures and platforms. The notices cover fixes for multiple security issues, including improper initialization of CPU cache memory, data leakage from previous stores, and flaws in GPU drivers, MMC subsystems, and other components. To address these issues, users are advised to update their systems to the corresponding package versions listed in each USN, which may require a reboot and possibly recompiling third-party kernel modules. The affected Ubuntu releases include 14.04 LTS, 20.04 LTS, 22.04 LTS, and various derivatives such as Ubuntu 24.10.
[USN-8029-3] Linux kernel (Azure) vulnerabilities
[USN-8059-1] Linux kernel vulnerabilities
[USN-8052-2] Linux kernel (Xilinx) vulnerabilities
[USN-8028-8] Linux kernel (IBM) vulnerabilities
[USN-8060-3] Linux kernel (GCP FIPS) vulnerabilities
[USN-8060-2] Linux kernel (Real-time) vulnerabilities
[USN-8059-2] Linux kernel (Raspberry Pi Real-time) vulnerabilities
[USN-8061-1] Linux kernel vulnerabilities
[USN-8060-1] Linux kernel vulnerabilities
Ubuntu has released several security notices to address vulnerabilities in various packages. The affected releases include Ubuntu 24.04 LTS, Ubuntu 22.04 LTS, and other older versions of the operating system. Multiple vulnerabilities were discovered in DjVuLibre, U-Boot, Evolution Data Server, GIMP, and libssh, which could potentially allow an attacker to cause a denial of service or execute arbitrary code. Users are advised to update their systems to the latest package versions using a standard system update.
[USN-8054-1] DjVuLibre vulnerabilities
[USN-8056-1] U-Boot vulnerabilities
[USN-8055-1] Evolution Data Server vulnerability
[USN-8057-1] GIMP vulnerabilities
[USN-8051-2] libssh vulnerabilities
A security notice was issued for Ubuntu 24.04 LTS due to vulnerabilities in the Linux kernel. These issues, which affect the cryptographic API, SMB network file system, and io_uring subsystem, could potentially be exploited by an attacker to compromise a system. To fix these problems, users need to update their systems to specific package versions, including linux-image-6.8.0-1022-xilinx and linux-image-6.8.0-94-lowlatency. After updating, it's essential to reboot the computer and possibly reinstall third-party kernel modules due to an ABI change.
[USN-8015-5] Linux kernel vulnerabilities
The newest XanMod kernels (6.19.3, 6.18.13, 6.18.13-rt, and LTS 6.12.74) have been released for 64-bit Debian-based systems, offering several performance tweaks, including LLVM's ThinLTO and polyhedral optimizations in the 6.19 series. However, users may experience issues with certain drivers, such as NVIDIA's proprietary driver version 560.28, which can cause the system to panic after booting into XanMod 6.19.3. To install the new kernel on Debian/Ubuntu systems, you need to trust the XanMod signing key and add a repository line to your sources.list file. If you rely on external modules like NVIDIA or OpenZFS with ZFS DKMS package, make sure to update their source trees before rebooting and reinstall any necessary packages after the kernel upgrade from version 6.18.x or earlier.
The Liquorix 6.18-14 kernel has been released for Linux users, promising lower latency, a snappier desktop feel, and better frame-time consistency in games. This new kernel is designed to improve "interactive" performance by swapping the default scheduler, reducing CPU timeslice, and enabling background hugepage reclaim among other changes. If you regularly engage in gaming, video production, or run virtual machines that require low latency, installing Liquorix may be worth it as it can provide extra responsiveness and improved playback.
Ubuntu Linux has released several updates to address security vulnerabilities in various components, including the Linux kernel. These updates affect different kernel flavors, such as Low Latency and Intel IoTG, as well as Azure and HWE kernels. Additionally, a vulnerability was found in libvpx, another critical component that requires an update. Users are advised to check for available updates to ensure their systems are secure.
[USN-8033-7] Linux kernel vulnerabilities
[USN-8052-1] Linux kernel (Low Latency) vulnerabilities
[USN-8031-3] Linux kernel vulnerabilities
[USN-8028-6] Linux kernel (HWE) vulnerabilities
[USN-8028-7] Linux kernel (Low Latency NVIDIA) vulnerabilities
[USN-8053-1] libvpx vulnerability
[USN-8033-8] Linux kernel (Intel IoTG) vulnerabilities
[USN-7990-5] Linux kernel (Azure) vulnerabilities
The first XanMod kernel, version 6.19.2, has been released based on the latest 6.19 Kernel series with several enhancements and new features. To install it on Debian-based systems, start by adding the official repository and grabbing its signing key to prevent warnings from apt. After updating the package list, you'll need to pull in the kernel and headers, as well as build tools like dkms and clang if you plan to rebuild external modules, such as NVIDIA drivers or VirtualBox. With these steps complete, your system should be running smoothly on XanMod 6.19.2, although it's always a good idea to verify the kernel version and have backup plans in case of unexpected issues.
Ubuntu has released several security updates to address vulnerabilities in its systems. The first update addresses issues in the Linux kernel, including improper initialization of CPU cache memory and potential data leakage due to processor flaws (CVE-2024-36331, CVE-2025-21884). The second update fixes a vulnerability in Apache Traffic Server that could cause denial-of-service attacks if it receives specially crafted input. Additionally, updates have been released for libssh, which corrects issues including incorrect key exchange handling and potential file overwriting due to SCP client vulnerabilities (CVE-2026-0964, CVE-2025-8277).
[USN-8031-2] Linux kernel (GCP FIPS) vulnerabilities
[USN-8050-1] Apache Traffic Server vulnerability
[USN-8051-1] libssh vulnerabilities
[USN-7992-2] Inetutils vulnerability
The Liquorix Kernel 6.18-13 offers improved performance and reduced latency for desktop users and gamers through tweaks such as swapping the default scheduler and adjusting CPU settings. To install this kernel on Debian, Ubuntu, and Arch Linux systems, download the official script using curl and follow its instructions to pull the necessary .deb files from Liquorix's repository. The new kernel replaces the mq-deadline scheduler with Kyber for multiqueue devices and BFQ for single-queue drives, resulting in faster performance during tasks like video encoding and gaming. After installation and a reboot, users can verify that the new kernel is active by checking the system's output from commands like uname -r and /sys/block/sda/queue/scheduler.
The XanMod kernels 6.18.12 and 6.12.73 LTS offer improved performance, including faster compile times and higher throughput for I/O-intensive containers, due to ThinLTO compilation and block layer runqueue changes. To install these kernels on Debian-based systems, users need to import the signing key, add a source list entry, update apt, and install the linux-xanmod-x64v3 meta-package. This process can be simplified into a single flow of fetching the key, writing the repo line, updating apt, installing the kernel package, and rebooting. After installation, users can verify that the new kernel is active by checking /proc/version or uname -r, and ensure their graphics stack has re-initialized correctly using glxinfo | grep OpenGL.
Several security updates have been released for Ubuntu to address vulnerabilities in various software packages, including FreeRDP, Expat, .NET, alsa-lib, and GnuTLS. The updates affect multiple releases of Ubuntu, including 25.10, 24.04 LTS, 22.04 LTS, 20.04 LTS, and 18.04 LTS. Vulnerabilities were discovered in FreeRDP that could allow attackers to cause denial of service or execute arbitrary code, while Expat had issues with XML parsing and .NET had a vulnerability related to bypassing security checks. alsa-lib was found to have a topology mixer control decoder issue, and GnuTLS had problems with malicious certificates and PKCS11 token labels.
[USN-8042-1] FreeRDP vulnerabilities
[USN-8022-2] Expat vulnerabilities
[USN-8025-2] .NET vulnerability
[USN-8044-1] alsa-lib vulnerability
[USN-8043-1] GnuTLS vulnerabilities
The new Liquorix Kernel 6.18-12 offers improved low-latency power for Debian, Ubuntu, and Arch systems without sacrificing stability. It drops support for BTF module loading to achieve faster boot times on older hardware and lower input latency with a built-in scheduler swap to Kyber or BFQ. Users can install the kernel quickly using an official script that auto-detects their system type, or build their own packages with Docker for a more transparent workflow. The Liquorix kernel features various low-latency improvements such as Zen Interactive Tuning and High-Resolution 1000 Hz Tick, making it ideal for gaming and real-time tasks.
A security notice was issued for Ubuntu and its derivatives due to vulnerabilities in the python-aiohttp library. The issues were discovered by Charles Chan and Thomas Rinsma, who found flaws that could lead to denial of service or request smuggling attacks. Vulnerable versions include Ubuntu 25.10, 24.04 LTS, 22.04 LTS, 20.04 LTS, and 18.04 LTS.
[USN-8032-1] AIOHTTP vulnerabilities
Xanmod Kernel 6.12.71 is now available, based on the latest Linux LTS kernel that features a range of targeted fixes including improvements for virtual-socket tests, asynchronous I/O, and VLAN packet handling in tunnels. This updated kernel offers stability and performance enhancements, and can be installed on Debian, Ubuntu, or derivative systems. A step-by-step guide will walk you through the process of installing the Xanmod LTS kernel, explaining each command and how to avoid common issues with DKMS modules.
A new version of the Liquorix Kernel 6.18-11 has been released, bringing low-latency tweaks, latency-driven improvements, and an optional Docker build pipeline to Debian, Ubuntu, and Arch systems. For most users, the official install script can be used to easily install a drop-in replacement kernel with reduced input latency without any manual configuration. Power users who prefer a transparent build chain can use Docker to compile their own packages from source, allowing for customization of signing and packaging options. The Liquorix kernel brings several low-latency features, including Zen Interactive Tuning, Background Hugepage Reclaim, and High-Resolution 1000 Hz Tick, making it a great solution for gaming, audio production, and other interactive workloads.
