Security updates have been issued by AlmaLinux (.NET 9.0, aardvark-dns, apache-commons-beanutils, bootc, buildah, corosync, delve and golang, exiv2, expat, firefox, ghostscript, git, git-lfs, gnutls, grafana, grafana-pcp, grub2, gstreamer1, gstreamer1-plugins-bad-free, gstreamer1-plugins-ugly-free, and gstreamer1-rtsp-server, gstreamer1-plugins-base, gstreamer1-plugins-good, gvisor-tap-vsock, iptraf-ng, java-21-openjdk, kernel, keylime-agent-rust, krb5, libarchive, libblockdev, libsoup3, libtasn1, libvpx, libxslt, microcode_ctl, mod_auth_openidc, nodejs22, nodejs:20, openjpeg2, osbuild and osbuild-composer, perl-FCGI, perl-Module-ScanDeps, perl-YAML-LibYAML, php, php:8.2, php:8.3, podman, protobuf, python-jinja2, python-requests, python3.11, python3.12, python3.12-cryptography, python3.9, rpm-ostree, rsync, rust-bootupd, skopeo, thunderbird, tigervnc, tomcat, tomcat9, webkit2gtk3, xdg-utils, xorg-x11-server, and xorg-x11-server-Xwayland), Debian (ring), Mageia (libarchive and rootcerts, nss & firefox), Oracle (.NET 9.0, corosync, firefox, osbuild-composer, pam, python3, python3.11, python3.12, python3.9, skopeo, sudo, and thunderbird), Red Hat (microcode_ctl, pam, php, thunderbird, tigervnc, xorg-x11-server, xorg-x11-server and xorg-x11-server-Xwayland, and xorg-x11-server-Xwayland), SUSE (clamav, icu, libgepub, libsoup, python-requests, tomcat, and xorg-x11-server), and Ubuntu (clamav, logback, mongo-c-driver, pcs, and python-flask-cors).
Debian's Bananas team has put
out a call for people with Apple M1 or M2 systems to help test
Debian on those machines:
The Bananas Team has set up an installer at with images
for GNOME, KDE and console installations. While we'd like to build an
actual Debian installer sooner or later (we may need a heads-up from the
Debian Images team for that), at this time we only provide an asahi-type
installer, which installs both the "bootloader" and the OS partitions to
disk from the network (as opposed to only installing the bootloader and
then letting you install Debian using a d-i USB stick). We haven't
forked Trixie from Testing yet, so what you'll get is Debian Testing
quite deep into the freeze.
Every release of the Linux kernel has lots of new features, many of which
are accessible from user space. Usually, though, the GNU C Library (glibc)
and tools that access the Linux user-space API lag behind the kernel
releases. Geoffrey Thomas showed how Python programs can access these new
kernel features as soon as the kernel is released in his "What's New in the
Linux Kernel... from Python" talk at
PyCon US 2025. While he had two
examples of accessing new kernel features, the real goal of the talk was to
demonstrate
how to go about connecting Python to
the Linux kernel.
Version 5.0 of the
GNU Health Hospital Information System has been released. This project,
working to support medical offices, shows just how far the free-software
effort can reach. Changes in this release include improved reporting and
analytics, more comprehensive handling of many types of patient
information, a reworked medical-imaging subsystem, better insurance and
billing functionality, and more.
Transparent huge pages (THPs) are, theoretically, supposed to allow processes to
benefit from larger page sizes without changes to their code. This does work,
but the performance impacts from THPs are not always a benefit, so system
administrators with specific knowledge of their workloads may want the ability
to fine-tune THPs to the application. On May 15, Usama Arif
shared a patch set that would add a
prctl() option for setting THP defaults for a process; that patch
set has sparked discussion about whether such a setting is a good fit for
prctl(), and what alternative designs may work instead.
The
extensible scheduler class
("sched_ext") allows the loading of a custom CPU scheduler into the kernel
as a set of BPF functions; it was merged for the 6.12 kernel release.
Since then, sched_ext has enabled a wide range of experimentation with
scheduling algorithms. At the 2025
Open
Source Summit North America, Ching-Chun ("Jim") Huang presented work
that has been done to apply (local) machine learning to the problem of
scheduling processes on complex systems.
The OsmAnd map and navigation app project recently
celebrated its 15th
anniversary.
All these 15 years can be roughly divided into three stages. For
the first five years, we built the very basic functionality—offline
maps and navigation that just worked. Over the next five years, we
transformed OsmAnd into a full-fledged application with plugins,
extensive settings, and professional tools. We dedicated the third
five-year period to deep internal work: completely rewriting and
improving key components like the rendering engine and routing
algorithms.
Now, a new, fourth stage begins. We have reached functional
maturity, and our main goal for the near future is to polish what
we've already built. We will focus on stability, speed, and
consolidation. User expectations are growing, and what was once
considered normal must now be flawless.
(Thanks to Paul Wise).
Security updates have been issued by AlmaLinux (delve, emacs, gimp, gimp:2.8, glibc, idm:DL1, ipa, iputils, kernel, krb5, libarchive, libblockdev, libxml2, mod_proxy_cluster, osbuild-composer, pam, perl-File-Find-Rule, perl-YAML-LibYAML, qt5-qtbase, weldr-client, xorg-x11-server and xorg-x11-server-Xwayland, and xorg-x11-server-Xwayland), Debian (mbedtls and sudo), Oracle (.NET 8.0, delve, delve, golang, firefox, ghostscript, glibc, golang, grafana, iputils, kernel, krb5, libarchive, libblockdev, nodejs22, ruby, thunderbird, tomcat, tomcat9, unbound, and wireshark), Red Hat (glibc and mod_auth_openidc), Slackware (sudo), SUSE (gpg2, ImageMagick, iputils, jakarta-commons-fileupload, kernel, libblockdev, libsoup, open-vm-tools, pam, python-tornado6, screen, sudo, and xwayland), and Ubuntu (linux, linux-aws, linux-gcp, linux-gcp-6.11, linux-hwe-6.11, linux-oracle,
linux-raspi, linux-realtime, linux-gcp, linux-gcp-6.8, linux-hwe-5.4, linux-oem-6.11, and sudo).