Feed lwn LWN.net

Favorite IconLWN.net

Link https://lwn.net/
Feed http://lwn.net/headlines/rss
Updated 2026-06-30 23:00
Creative Commons founders' fireside chat (Creative Commons blog)
Dee Harris has published a summaryof the recent "fireside chat" featuring Creative Commons founders HalAbelson, Lawrence (Larry) Lessig, Molly Van Houweling, and Glenn OtisBrown. The chat was to mark the 25th anniversaryof Creative Commons and included a look back at its history aswell as a look at the landscape today:
[$] Flexible metaprogramming with Rhombus
Lisp-like languages have historically led the world in metaprogramming andflexibility. While many modern languages have adopted the idea of macros,Lisp-like languages such asRacket have continued pushing the envelope,attempting to make macros as easy as possible to incorporate into everydayprograms. On the other hand, Lisp's minimal, parenthesis-based syntax can be hardto adapt to - to the point that Lisp is sometimes said to standfor "Lots of Irritating Silly Parentheses".Rhombus is a new programminglanguage that aims to have the best of both worlds, marrying Racket'smetaprogramming capabilities to a simple Python-like syntax and reasonablestandard-library defaults.
Security updates for Tuesday
Security updates have been issued by AlmaLinux (git-lfs, perl-Archive-Tar, perl-IO-Compress, python3.12-urllib3, and runc), Debian (sogo), Fedora (perl-DBI and perl-Socket), Oracle (firefox, freerdp, git-lfs, libsoup, libxml2, mod_md, mysql, perl-Archive-Tar, perl-IO-Compress, python, python3.12-urllib3, rsync, thunderbird, tomcat, xorg-x11-server, and xorg-x11-server-Xwayland), SUSE (389-ds, 7zip, alsa, amazon-ecs-init, amazon-ssm-agent, ansible-core, apache2, atril, avahi, bind, bitcoin, capnproto, chromedriver, chromium, cosign, distribution, dnsdist, docker, dovecot24, dracut, firefox, firewalld, freeipmi, freerdp, giflib, gimp, gleam, glib-networking, glibc, glycin-loaders, golang-github-prometheus-alertmanager, google-cloud-sap-agent, google-guest-agent, graphite2, gsasl, hamlib, helm, himmelblau, ignition, imagemagick, istioctl, jackson-databind, jq, jupyter-jupyterlab-templates, keylime, krb5, ldns, libaom, libcaca, libgcrypt, libheif, libinput, libjxl, libnfs, libslirp-devel, libsolv, libzypp, zypper, libssh2_org, libvncserver, libyang, lldpd, logback, loupe, mbedtls, mbedtls-2, mcphost, mozjs128, mutt, nano, nginx, ocaml, ofono, openCryptoki, opencryptoki, opensc, openssh, openssl-3, papers, perl-compress-raw-zlib, perl-config-inifiles, perl-cpanel-json-xs, perl-crypt-passwdmd5, perl-DBI, perl-dbi, perl-html-parser, perl-http-daemon, perl-libwww-perl, perl-protocol-http2, postfix, postgresql14, postgresql15, postgresql16, python-aiohttp, python-biopython, python-click, python-ecdsa, python-idna, python-markdown, python-joblib,, python-paramiko, python-pdm, python-pip, python-py7zr, python-pydata-sphinx-theme, python-pyjwt, python-python-multipart, python-starlette, python-tornado6, python311-jupyter-ydoc, rpcbind, sed, sg3_utils, sqlite3, strongswan, tar, thunderbird, tomcat, tomcat10, tomcat11, trivy, unbound, util-linux, warewulf4, webkit2gtk3, xar, xwayland, yt-dlp, and zypper, libzypp, libsolv), and Ubuntu (libheif, nss, qemu, roundcube, and sqlite3).
Git 2.55.0 released
Git maintainer Junio Hamano has announcedGit2.55.0, which has non-merge commits from 100 people; 33 ofthose are first-time contributors to the project. LWN recently covered some ofthe noteworthy changes in 2.55, including new features for theexperimental "git history" command, addition of the Git fsmonitordaemon for Linux systems, and more.
[$] The rest of the 7.2 merge window
Linus Torvalds released 7.2-rc1and closed the 7.2 merge window on June28; by that time, 13,412non-merge commits had found their way into the mainline. That makes thisthe busiest merge window since the 6.7 development cycle in 2024 (15,418commits, including 2,800 for the entire bcachefs development history).Just under half of those commits arrived after LWN's summary of the first half of the mergewindow was written. As usual, the commits in the latter part of themerge window were more heavily focused on fixes, but there were still a lotof new features and significant changes merged as well.
[$] Xsnow "protestware" in Debian
The xsnowapplication, which generates an animated snowfall effect (and otherpleasant diversions) for X11 desktops, does not seem like an obviouschannel for political statements. Nevertheless, xsnow's maintainerseems to have included a political protest in the program: anEaster egg that is triggered when the program's language is set to Russia("ru"). One user has complained that this functionality should beremoved from the Debian xsnowpackage, but Debian does not seem to have any rules that forbidsuch a feature outright.
Open source maintainership in the age of AI (Kubernetes blog)
The Kubernetes project has published a blogpost explaining its AIpolicy:
Mageia 10 released
Mageia 10 has beenreleased with the 6.18 Linux kernel, DNF5.4.0, RPM4.20.1,and an increase in hardware requirements for x8632-bit systems; users nowneed a CPU with SSE2 features. See the releasenotes for a full list of updates, and the errata pagefor known problems.
Security updates for Monday
Security updates have been issued by AlmaLinux (containernetworking-plugins, golang, kernel, libpng, libpng15, nginx, opencryptoki, perl-IO-Compress, thunderbird, and tigervnc), Debian (chromium, gdcm, incus, libhtml-parser-perl, lxd, openvpn, tor, and xorg-server), Fedora (chromium, docker-buildkit, docker-buildx, dotnet10.0, dotnet8.0, dotnet9.0, krita, ldns, libssh2, liferea, lighttpd, mariadb10.11, mariadb11.8, moby-engine, nginx, nginx-mod-brotli, nginx-mod-fancyindex, nginx-mod-headers-more, nginx-mod-js-challenge, nginx-mod-modsecurity, nginx-mod-naxsi, nginx-mod-vts, openbao, pacemaker, pgadmin4, podman-tui, prometheus-podman-exporter, python-jupyter-server, python-mistune, python-postorius, python-pydantic-settings, python3-docs, python3.14, thunderbird, tigervnc, tinyproxy, and util-linux), Mageia (krb5), Oracle (.NET 10.0, .NET 8.0, .NET 9.0, bind, dracut, fence-agents, firefox, frr, frr10, glib2, glibc, gnutls, golang, kernel, libpng, libpng15, libreoffice, libxml2, libxslt, mod_http2, mysql:8.4, nginx:1.26, openssl, php:8.3, podman, postgresql-jdbc, python3.14, redis, rsync, thunderbird, tomcat, valkey, and vim), Red Hat (osbuild-composer), and SUSE (agama-web-ui, asn1c, assimp, assimp-devel, aws-iam-authenticator, calibre, clamav, corepack24, dovecot22, exiv2, frr, giflib, glances-common, google-osconfig-agent, GraphicsMagick, gvim, haproxy, hydra, ImageMagick, jupyter-nbclassic, kernel, libsoup, libsoup2, libssh2-1, nano, NetworkManager-applet-openvpn, nodejs22, openbabel, opensc, openssl-3, pacemaker, python, python-base, python-doc, python311-pdm, python311-py7zr, python311-pypdf, python36, tar, trivy, util-linux, xen, and xtrabackup).
Kernel prepatch 7.2-rc1
The 7.2-rc1 kernel prepatch is out fortesting. Linus said: "So two weeks have passed, and the merge window isclosed. Things look reasonably normal for this release (knock wood)."
Three stable kernel updates
The7.1.2,7.0.14, and6.18.37stable kernel updates have been released; each contains a relatively smallnumber of important fixes. Note that 7.0.14 is the end of the 7.0.x series.
[$] Reports from OSPM 2026, day three
The Power Managementand Scheduling in the Linux Kernel Summit, which still goes by thehistorical acronym OSPM, was held in Cambridge, UK, in mid-April. As hasbecome traditional, the presenters at that event have since writtensummaries of their sessions, and this work has kindly been made availableto LWN for publication. The third day's sessions covered a wide range oftopics, including GPU affinity, profile-guided scheduling,paravirtualization scheduling, quality of service, and more.
[$] Initiating writeback earlier
Writeback is the process of ensuring that dirty pages or folios in the pagecache are flushed to the disk, so that changes to those files are madepersistent. In a filesystem-track session at the 2026 Linux Storage,Filesystem, Memory Management, and BPF Summit, Jeff Layton wanted todiscuss whether the writeback operation should be initiated earlier than itis today. The consensus seemed to be that it should be done earlier, butthe path toward making that happen was less clear.
Lots of stories about systemd v261
Lennart Poettering has posted alist of Mastodon posts about the changes in the systemd v261 release.The Mastodon format makes the reading harder, but there is a lot of usefulinformation there.
[$] What's coming in Git 2.55
The Git v2.55.0-rc2testing release appeared on June23, suggesting that the final Git2.55 release can be expected in the near future. While this Git updatelacks radical new features, it does include a number of improvements thatregular Git users will appreciate, including commands to easily edit thecommit history, more formatting options, fsmonitor support for Linux, andmore.
Security updates for Friday
Security updates have been issued by AlmaLinux (buildah, coreutils, evince, libpng, libreoffice, libtasn1, libxml2, libxslt, nginx, nginx:1.24, nginx:1.26, postgresql:12, python-urllib3, python3.12-urllib3, python3.14, python3.14-urllib3, skopeo, tigervnc, tomcat, and vim), Debian (chromium, dnsdist, giflib, libdbi-perl, libssh2, libtext-csv-xs-perl, pdns, pdns-recursor, python-urllib3, and sogo), Fedora (goose, httpd, librabbitmq, perl-Compress-Raw-Bzip2, perl-DBI, perl-IO-Compress, perl-Socket, python-django-allauth, rsync, and strongswan), Oracle (389-ds-base, buildah, containernetworking-plugins, coreutils, evince, fence-agents, giflib, git-lfs, hplip, krb5, libcap, libexif, libtasn1, memcached, opencryptoki, podman, postfix, postgresql:12, postgresql:13, postgresql:15, postgresql:16, python-urllib3, python3.12-urllib3, python3.14-urllib3, python3.9, runc, skopeo, tigervnc, vim, webkit2gtk3, xorg-x11-server, and xorg-x11-server-Xwayland), SUSE (apache-commons-configuration2, apache-commons-text, apache2, containerd, kernel, libnilfs3, libopenbabel8, libtar, libzypp, lrzip, nodejs24, ofono, perl-Net-Dropbox-API, podman, python-pip, python-PyJWT, python311-aiohttp, python311-nltk, python311-python-multipart, python312, and python315), and Ubuntu (amd64-microcode, containerd, containerd-app, containerd-stable, cpp-httplib, imagemagick, mina2, node-pbkdf2, NSD, and xrdp).
The "Akrites" vulnerability-mitigation project launches
The Linux Foundation, in aletter co-signed by a large range of organizations and companies, hasannounced the launch of "Akrites", a project to fast-track vulnerabilityfixes into projects.
[$] A look at MinIO alternatives: Ceph and Garage
MinIO is a popular object-storage server that offered compatibility with the Amazon Simple Storage Service (S3)API. In December 2025, the company behind the project (also named MinIO)announcedthat the project was in maintenance mode and would not accept new changes; itwas archivedcompletely in February 2026. MinIO users have been hunting for alternativessince then, but the array of choices can be baffling. While many other projectsaim to fill the space, their strengths and areas of focus tend to vary. Two ofthe alternatives-Ceph and Garage-are particularly compelling,and both offer solid S3 compatibility.
Podman 6.0 released
Version 6.0.0 of the Podmancontainer-management tool has been released. Notable new featuresinclude the ability to set multiple static IP addresses forcontainers, improvements in network isolation that make Podman morecompatible with Docker, changes to the way Quadletcommands function, many new options for many existing podmancommands, and arewrite of Podman's configuration file handling. There are manybreaking changes; see the releasenotes for a full list of all new features, changes, and bug fixes.
[$] Hardening the kernel with allocation tokens and bootpatch-SLR
There is a lot of work going into eliminating exploitable bugs from thekernel and preventing the addition of new ones. Even if this work ismaximally successful, though, there is no chance that the kernel will befree of these bugs anytime soon. Thus, there is also ongoing interest inhardening the kernel to make the existing bugs more difficult to exploit.The upcoming 7.2 kernel release will include a change to how dynamicallyallocated structures are placed in memory to make them harder to overwrite,while a project to randomize structure layout at boot time has a ratherlonger timeline.
Security updates for Thursday
Security updates have been issued by AlmaLinux (libpng, libsolv, libtasn1, libxml2, libxslt, python3.14, tigervnc, and vim), Debian (cloud-init, postgresql-13, and yelp), Mageia (nats-server), Oracle (.NET 10.0, .NET 8.0, .NET 9.0, bind9.18, cockpit, compat-openssl11, dnsmasq, dovecot, evince, expat, flatpak, freerdp, gimp, golang, grafana, grafana-pcp, httpd, jmc, jq, kernel, libsndfile, libsoup, libtiff, mod_http2, mysql:8.0, nginx, nginx:1.24, openexr, php:8.2, poppler, pyOpenSSL, python-markdown, redis:7, samba, thunderbird, tigervnc, unbound, and vim), Red Hat (libpng, libpng12, and libpng15), SUSE (apptainer, bind, crun, freeipmi, ghc-crypton-x509-store, ghc-crypton-x509-system, google-guest-agent, google-osconfig-agent, GraphicsMagick, gstreamer-plugins-bad, hamlib, iproute2, java-1_8_0-openjdk, kubevirt1, libarchive, libheif, libpng15, mbedtls, mbedtls-2, openssl-1_1, python-biopython, python-PyJWT, tar, webkit2gtk3, and xen), and Ubuntu (ffmpeg, libdbi-perl, and perl).
[$] LWN.net Weekly Edition for June 25, 2026
Inside this week's LWN.net Weekly Edition:
[$] Fedora: 2FA, or not 2FA, that is the question
Compromised accounts are one of the most common ways that attackerscan sneak malware into the open-source supply chain. One way toreduce account compromise is for projects to require two-factorauthentication (2FA) or multi-factor authentication (MFA), but that iseasier said than done. However, Fedora is currently discussing putting2FA requirements in place soon, following an an alleged accountcompromise that led to an AI agent causing a number of problemsfor the project. After some discussion, Fedora will begin by requiringpackagers in the "provenpackager"group to enable 2FA within the next three months or so.
[$] A helper library for BPF arenas
BPF arenas are areas of memory (potentially shared with user space)where programs have free reign to build theirown data structures, unburdened by the verifier's bounds checks. Many of thosedata structures are potentially usable in multiple programs. Emil Tsalapatisbrought his work on libarena, a library containing generic utilities for use inBPF arenas, to the 2026Linux Storage, Filesystem, Memory-Management, and BPFSummit. Although the library is already available as part of the kernel, itis still in its early stages and he has more work planned.
[$] Reports from OSPM 2026, day two
The Power Managementand Scheduling in the Linux Kernel Summit, which still goes by thehistorical acronym OSPM, was held in Cambridge, UK, in mid-April. As hasbecome traditional, the presenters at that event have since writtensummaries of their sessions, and this work has kindly been made availableto LWN for publication. The second day's sessions covered a wide range oftopics, including device frequency scaling, using time-slice duration forCPU selection, scheduling domains on multi-cluster Arm systems, the LAVDscheduler, and more.
Security updates for Wednesday
Security updates have been issued by AlmaLinux (corosync, firefox, kernel, kernel-rt, libpq, memcached, postgresql, postgresql16, postgresql:13, postgresql:16, python-urllib3, python3.14-urllib3, redis:6, skopeo, and vim), Debian (beets, gst-plugins-bad1.0, imagemagick, libmatio, python-urllib3, and u-boot), Fedora (chromium, coturn, frr, grout, materialx, perl-Crypt-DSA, and yt-dlp), Mageia (opensc, perl-Archive-Tar, and podofo), Oracle (fence-agents, libpq, mysql:8.4, and postgresql:16), Red Hat (firefox, libpng, libpng12, libpng15, libreoffice, nginx:1.24, thunderbird, tigervnc, xorg-x11-server, and xorg-x11-server-Xwayland), Slackware (libarchive), SUSE (amazon-ssm-agent, ansible-core, apache2, bind, bitcoin-qt6, containerized-data-importer, curl, distribution, docker-stable, dovecot24, dracut, editorconfig-core-c, exiv2, firefox, freeipmi, freerdp, ghc-aws, ghc-crypton-asn1-encoding, ghc-crypton-asn1-parse, ghc-crypton-asn1-types, ghc-crypton-pem, glib-networking, go1.25, go1.26, google-guest-agent, graphite2, hamlib, helm, himmelblau, ignition, ImageMagick, kernel, ldns, libarchive, libcaca, libheif, libinput, libjxl, libsolv, libzypp, zypper, LibVNCServer, libxslt, libyang, mcphost, mozjs128, ncurses, nginx, opensc, openssl-3, openvswitch, papers, perl-HTML-Parser, perl-HTTP-Daemon, perl-Protocol-HTTP2, podman, postgresql14, postgresql15, postgresql16, postgresql17, python-aiohttp, python-ecdsa, python-paramiko, python-PyJWT, python-starlette, rekor, sqlite3, strongswan, tiff, tomcat, tomcat10, tomcat11, unbound, webkit2gtk3, xwayland, and zypper, libzypp, libsolv), and Ubuntu (libcap2, libnfs, libvncserver, libxml2, and mysql-8.0).
[$] KASAN for JIT-compiled BPF code
Alexis Lothore has been working to add support for the kernel's memory-accesschecker,KASAN, to just-in-time-compiled BPF code. He spoke about that work atthe 2026Linux Storage, Filesystem, Memory-Management, and BPF Summit.KASAN support is needed, he said, to help catch bugs in the BPF just-in-time (JIT)compiler. KASAN is a great tool for catching memory-management problems in thekernel, but only in code that can be monitored by it.
Sunsetting Tor 0.4.8
The Tor Project has announcedthat it is planning to actively stop supporting Tor 0.4.8 and earlierC Tor versions soon.
Security updates for Tuesday
Security updates have been issued by Debian (ffmpeg), Fedora (erlang, ffmpeg, prometheus, python-scrapy, python3-docs, python3.14, thorvg, tigervnc, and vips), Mageia (mumble and sslh), Oracle (389-ds:1.4, dracut, firefox, hplip, kernel, openssh, postgresql:15, redis:6, and uek-kernel), Red Hat (delve, gvisor-tap-vsock, nginx, nginx:1.24, nginx:1.26, osbuild-composer, podman, rhc, skopeo, and yggdrasil), SUSE (containerized-data-importer, graphite2, kernel, libarchive, openssh, openssh-askpass-gnome, openvswitch, openvswitch3, postfix, python-lxml, python-nltk, python-python-multipart, python-urllib3, rmt-server, terraform-provider-local, terraform-provider-null, and util-linux), and Ubuntu (google-guest-agent, haproxy, libxml2, linux-azure, linux-intel-iotg-5.15, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-oracle-5.15, mysql-8.0, mysql-8.4, and nginx).
GIMP 0.54.1 in a Flatpak
The GIMP project reports thatGNOME contributor "balooii" has worked to package GIMP0.54.1-released in 1996-as a Flatpak that will build andrun on modern 64-bit Linux systems. This is a Motif-basedversion, and the same version that was usedby Larry Ewing to create Tux.While not likely to be useful for serious graphics work today, itshould be interesting for users who would like to see what a30-year-old version of GIMP was capable of.
[$] Free-threaded Python: past, present, and future
Probably the biggest change for Python over the last five years or so isthe advent of the "free-threaded" version of the language, which removes theglobal interpreter lock (GIL) and allows multiple threads to run inparallel in the interpreter. At PyConUS 2026, held in Long Beach, California in mid-May, longtime CPythoncore developer (and current steering council member) Thomas Wouters gave atalk about the feature. He looked at the motivation behind the GIL-removalefforts, some history,the current status of the free-threaded interpreter, and provided aprediction on where it all leads.
First preview release of Xfce's Wayland compositor
Brian Tarricone has announcedthe first preview release of xfwl4, a Wayland compositor for the Xfce desktop environment.
[$] Reports from OSPM 2026, day one
The Power Managementand Scheduling in the Linux Kernel Summit, which still goes by thehistorical acronym OSPM, was held in Cambridge, UK, in mid-April. As hasbecome traditional, the presenters at that event have since writtensummaries of their sessions, and this work has kindly been made availableto LWN for publication. The first day's sessions covered a wide range oftopics, including idle-state selection, user-space schedulers withsched_ext, lock-holder preemption, and much more.
Security updates for Monday
Security updates have been issued by AlmaLinux (389-ds:1.4, kernel, and kernel-rt), Debian (gst-libav1.0, gst-plugins-good1.0, imagemagick, kernel, libconfig-inifiles-perl, libgd-perl, libhttp-daemon-perl, mediawiki, pillow, and squid), Fedora (389-ds-base, alertmanager, ansible-core, buildah, chromium, erlang-cowboy, erlang-cowlib, erlang-gun, freerdp, kubernetes1.33, kubernetes1.34, kubernetes1.35, mingw-SDL2_image, ongres-scram, ongres-stringprep, openssl, perl-Config-IniFiles, perl-Crypt-PBKDF2, podman, postgresql-jdbc, python3.13, strongswan, webkitgtk, xdg-desktop-portal, and yt-dlp), Red Hat (osbuild-composer), SUSE (alloy, amazon-ssm-agent, ansible-core, apache-sshd, jpgpj, azure-storage-azcopy, chromedriver, containerized-data-importer, firefox, glibc, graphite2, inspektor-gadget, kubevirt, lemon, openvswitch, python-starlette, python311, python311-joserfc, python313, and tinyproxy), and Ubuntu (netatalk).
Systemd v261 released
Systemd v261 has been released with a long list of changes, including a newcloud "Instance Metadata Service" (IMDS) subsystem, "boot secret"functionality for use on systems that lack a physical TPM, as well assupport for the kernel's Live Update Orchestration (LUO) / KexecHandover (KHO) systems when they are present and enabled. See therelease notes for the full list of changes.
[$] Suspending and resuming BPF programs
BPF programs can be used to extend many aspects the Linux kernel, butBPF programs must run to completion in the same context that they began.Kumar Kartikeya Dwivedi is working on changing that byallowing BPF programs to be expressed as coroutines. He spoke about his work atthe 2026Linux Storage, Filesystem, Memory-Management and BPF Summit. Whilestill experimental, the change promises to make long-running BPF taskssignificantly easier to write.
[$] AURpocalypse now: a look at the recent AUR attacks
The Arch User Repository (AUR) hasbeen subjected to a sustained attack recently. The attacker, or attackers, havespun up a series of new accounts then used them to adopt orphanedpackages and push malicious updates that would install malware on users' systems.It is unclear how many users were compromised in the attack, but the maintainerswere playing Whac-A-Mole for several days to respond to each newly compromisedpackage. The project has turnedoff the AUR's new-user registration, for now, but it is unclear what its long-term response will be or if the AUR can be secured without major changes toits existing collaboration model.
Security updates for Friday
Security updates have been issued by AlmaLinux (dracut), Debian (chromium, firefox-esr, and thunderbird), Fedora (chromium, firefox, nss, ocserv, ongres-scram, ongres-stringprep, perl-Archive-Tar, perl-GD, perl-HTTP-Daemon, perl-Net-Statsd, restic, singularity-ce, util-linux, and vorbis-tools), Mageia (gstreamer1.0-*, libupnp, luajit, opensc, and ruby-rack), SUSE (curl, dnsmasq, ffmpeg-4, frr, google-osconfig-agent, java-1_8_0-ibm, kernel, krb5, kubernetes-old, ldns, liburiparser1, openvswitch, rootlesskit, strongswan, traefik, and trivy), and Ubuntu (ldns, libheif, libnet-cidr-lite-perl, lxd, tomcat11, and vim).
Eight new stable kernels for Friday
Greg Kroah-Hartman has announced the release of the 7.1.1, 7.0.13, 6.18.36, 6.12.94, 6.6.143, 6.1.176, 5.15.210, and 5.10.259 stable kernels. As usual, eachcontains important fixes. Users are advised to upgrade.
The Software Freedom Conservancy's LLM-backed generative AI recommendations
The Software FreedomConservancy (SFC) has announcedthe release of its recommendationsfor using LLM-backed generative AI systems for FOSScontributions. The recommendations were created by the SFC andvolunteers from the free-software community.
[$] The first half of the 7.2 merge window
The 7.2 merge window started with the 7.1kernel release on June14. As of this writing, just over 7,000non-merge changesets have been pulled into the mainline for the next kernelrelease. Many of the core subsystems have been pulled at this point,meaning that most of the changes that can be expected in 7.2 have now comeinto focus.
Mastodon 4.6 released
Version4.6 of the Mastodon fediverse platform has been released.
[$] Single-hop block replication with RMR and BRMR
How can cloud providers efficiently supply durable virtual block devices? RemoteDirect Memory Access (RDMA) provides a way for servers in a cluster to sharechunks of memory, but there still needs to be a protocol that operates on top ofRDMA to provide the guarantees expected of a block device. The kernel's RDMA transportlibrary (RTRS) provides a way to send messages via RDMA. Ipresented about twonew components built on top of RTRS at the 2026LinuxStorage, Filesystem, Memory Management and BPF Summit: Reliable Multicastover RTRS (RMR) and Block device over RMR (BRMR). These modules, which Iam working on with Jia Li, could be a way for cloud providers toexpose durable block devices with as little overhead as possible. To accomplishthat, however, we need some discussion and feedback from the community beforesending the modules upstream.
Security updates for Thursday
Security updates have been issued by AlmaLinux (dracut, podman, postfix, rsync, xorg-x11-server, and xorg-x11-server-Xwayland), Debian (atril, firefox-esr, and nginx), Mageia (libcap, perl, and python-pillow), Oracle (firefox, gstreamer-plugins-base and gstreamer-plugins-good, httpd:2.4, kernel, libpng12, libpng15, libxml2, libxslt, opencryptoki, openssl, postfix, rsync, webkit2gtk3, xorg-x11-server, and xorg-x11-server-Xwayland), Slackware (bind, libidn, mozilla, and openssl), SUSE (alloy, docker, elemental-system-agent, glibc, grafana, helm, LibVNCServer, openssh8.4, perl-GD, perl-HTTP-Daemon, python-WebOb-doc, python311-google-adk, rustup, traefik2, wireshark, and xwayland), and Ubuntu (dolibarr, golang-go.crypto, graphite2, gst-plugins-bad1.0, kitty, libconfig-inifiles-perl, libnginx-mod-js, and webpy).
[$] LWN.net Weekly Edition for June 18, 2026
Inside this week's LWN.net Weekly Edition:
Fedora F44 election results
The resultsare in for Fedora's F44 election cycle for seats on the FedoraCouncil, Fedora EngineeringSteering Committee, FedoraMindshare Committee, and EPELSteering Committee.Miro Hronok and Aleksandra Fedorova have wonseats on the council. Neal Gompa, Fabio Valentini, Michel Lind,Maxwell G, and Simon de Vlieger have been elected to FESCo. SamyakJain, Akashdeep Dhar, Luis Bazan, and Mat Holmes have all been electedto the Mindshare Committee. The four candidates for the EPELcommittee, Carl George, Diego Hererra, Jonathan Wright, and TroyDawson were all automatically elected as there were an equal number ofcandidates and seats open. Congratulations to all the winners.
Everything security at PyCon US 2026
The Python Software Foundation blog has a postwith a summary of the security-related content at PyCon US 2026 with links toslides from important sessions. The recordings will be published tothe PyCon US channel onYouTube, and the post will be updated with links to those videos asthey are made available.
[$] Some buffer-heads cleanup work
Jan Kara has been workingon cleaning up how bufferheads are used by some kernel filesystems. In a shortfilesystem-track session at the 2026 Linux Storage,Filesystem, Memory Management, and BPF Summit, he gave an update onthat work and where it is headed. Topics included generic infrastructureto track buffer heads for metadata, a buffer-head cleanup for the Amigafilesystem, and some planned locking fixes.
FairScan 2.0 released
Version2.0 of the FairScan document-scanning app for Android has beenreleased. The headline feature for this release is the addition ofoptical-character-recognition (OCR) support using Tesseract to produce PDFswith searchable text from scans. FairScan developer Pierre-YvesNicolas has written a detailedblog about adding the feature and explaining why it had not been addedpreviously.
Security updates for Wednesday
Security updates have been issued by AlmaLinux (hplip, kernel, kernel-rt, libpng12, libpng15, libxml2, libxslt, mysql:8.0, mysql:8.4, opencryptoki, openssl, postfix, postgresql:15, rsync, and webkit2gtk3), Debian (asterisk, atril, gsasl, and libreoffice), Fedora (ack, bird, chromium, firefox, ldns, librabbitmq, nextcloud, nss, openslide, perl-Protocol-HTTP2, tig, vorbis-tools, and xen), Mageia (coturn, log4cxx, and python-tornado), SUSE (389-ds, buildah, container-suseconnect, distribution, editorconfig-core-c, elemental-system-agent, glib-networking, google-guest-agent, google-osconfig-agent, kernel, libcaca, libXpm, opensc, openssl-3, openvswitch, perl-Crypt-PBKDF2, python-python-dotenv, python311-aiosmtplib, python311-zeroconf, runc, shim, and sqlite3), and Ubuntu (ca-certificates, keystone, librabbitmq, linux, linux-aws, linux-kvm, linux-aws-hwe, linux-azure, linux-gcp, linux-hwe, linux-oracle, linux-azure, linux-azure, linux-gcp, linux-hwe, linux-oracle, linux-azure-6.8, linux-oracle-5.15, nova, openimageio, qemu, and squid).
12345678910...