LWN.net

Inside this week's LWN.net Weekly Edition:

Version 6.17 of the Linuxmanual-page collection has been released. Along with a long list ofupdates to the man pages themselves, it includes some new utility programsof interest.

Git is ubiquitous; in the last two decades, the version-controlsystem has truly achieved world domination. Almost every developeruses it and the vast majority of open-source projects are hosted inGit repositories. That does not mean, however, that it isperfect. Patrick Steinhardt used his main-track session at FOSDEM 2026to discuss some of its shortcomings and how they are beingaddressed to prepare Git for the next decade.

The postmarketOS projecthas publisheda recap from FOSDEM2026, including the FOSS onMobile devroom, and a summary of its post-FOSDEMhackathon. This includes decisions on governance and the project'sAI policy:

Greg Kroah-Hartman has unleashed six new stable kernels: 6.18.10, 6.6.124, 6.12.70, 6.1.163, 5.15.200, and 5.10.250. Each one contains importantfixes throughout the tree; users are advised to upgrade.

Security updates have been issued by Debian (kernel, linux-6.1, munge, and tcpflow), Fedora (accel-ppp, atuin, babl, bustle, endless-sky, envision, ettercap, fapolicy-analyzer, firefox, glycin, gnome-settings-daemon, go-fdo-client, greenboot-rs, greetd, helix, hwdata, keylime-agent-rust, kiwi, libdrm, maturin, mirrorlist-server, ntpd-rs, ogr2osm, open-vm-tools, perl-App-Cme, perl-Net-RDAP, perl-rdapper, polymake, python-requests-ratelimiter, python-tqdm, rust-add-determinism, rust-afterburn, rust-ambient-id, rust-app-store-connect, rust-bat, rust-below, rust-btrd, rust-busd, rust-bytes, rust-cargo-c, rust-cargo-deny, rust-coreos-installer, rust-crypto-auditing-agent, rust-crypto-auditing-client, rust-crypto-auditing-event-broker, rust-crypto-auditing-log-parser, rust-dua-cli, rust-eif_build, rust-git-delta, rust-git-interactive-rebase-tool, rust-git2, rust-gst-plugin-dav1d, rust-gst-plugin-reqwest, rust-heatseeker, rust-ingredients, rust-jsonwebtoken, rust-lsd, rust-monitord, rust-monitord-exporter, rust-muvm, rust-nu, rust-num-conv, rust-onefetch, rust-oo7-cli, rust-pleaser, rust-pore, rust-pretty-git-prompt, rust-procs, rust-rbspy, rust-rbw, rust-rd-agent, rust-rd-hashd, rust-redlib, rust-resctl-bench, rust-resctl-demo, rust-routinator, rust-sccache, rust-scx_layered, rust-scx_rustland, rust-scx_rusty, rust-sequoia-chameleon-gnupg, rust-sequoia-keystore-server, rust-sequoia-octopus-librnp, rust-sequoia-sq, rust-sevctl, rust-shadow-rs, rust-sigul-pesign-bridge, rust-speakersafetyd, rust-tealdeer, rust-time, rust-time-core, rust-time-macros, rust-tokei, rust-weezl, rust-wiremix, rust-ybaas, rustup, sad, strawberry, systemd, tbtools, transmission, trustedqsl, tuigreet, uv, and vdr-extrecmenung), Oracle (brotli, git-lfs, java-1.8.0-openjdk, kernel, libsoup, libsoup3, nodejs:24, python3.12, and thunderbird), Red Hat (fence-agents, python-urllib3, python3.11-urllib3, python3.12-urllib3, and resource-agents), SUSE (avahi, cups, freerdp, golang-github-prometheus-prometheus, java-11-openjdk, java-17-openjdk, libsoup2, libxml2, and python-pip), and Ubuntu (expat, glib2.0, and imagemagick).

From the NANOG list comes the sad news of thepassing of Dave Farber.

Matthias Clasen has published a short summary of the GTK hackfest held prior to FOSDEM2026. Topics includediscussions on unstable APIs, a decision to bump the C runtimerequirement to C11 in the next development cycle, limiting changes inGTK3 to crash and build fixes, as well as the state ofaccessibility:

Michiel Leenaars, director of strategy at the NLnet Foundation, used his keynoteat FOSDEM to sound warnings forthe community for free and open-source (FOSS) software; in particular, hetalked about the threats posed by geopolitical politics, dangerousallies, and large language models (LLMs). His talk was a mix ofobservations and suggestions that pertain to FOSS in general and toEurope in particular as geopolitical tensions have mounted in recentmonths.

Security updates have been issued by AlmaLinux (fence-agents, firefox, fontforge, freerdp, kernel-rt, keylime, libsoup, libsoup3, nodejs22, nodejs24, opentelemetry-collector, osbuild-composer, python3.12-wheel, qemu-kvm, resource-agents, thunderbird, and util-linux), Debian (kernel, rlottie, shaarli, and usbmuxd), Fedora (asciinema, atuin, bustle, cef, envision, glycin, greetd, helix, java-21-openjdk, java-25-openjdk, java-latest-openjdk, keylime-agent-rust, maturin, mirrorlist-server, ntpd-rs, python3.6, rust-add-determinism, rust-afterburn, rust-ambient-id, rust-app-store-connect, rust-bat, rust-below, rust-btrd, rust-busd, rust-bytes, rust-cargo-c, rust-cargo-deny, rust-coreos-installer, rust-crypto-auditing-agent, rust-crypto-auditing-client, rust-crypto-auditing-event-broker, rust-crypto-auditing-log-parser, rust-dua-cli, rust-eif_build, rust-git-delta, rust-git-interactive-rebase-tool, rust-git2, rust-gst-plugin-dav1d, rust-gst-plugin-reqwest, rust-heatseeker, rust-ingredients, rust-jsonwebtoken, rust-lsd, rust-monitord, rust-monitord-exporter, rust-muvm, rust-nu, rust-num-conv, rust-onefetch, rust-oo7-cli, rust-pleaser, rust-pore, rust-pretty-git-prompt, rust-procs, rust-rbspy, rust-rbw, rust-rd-agent, rust-rd-hashd, rust-redlib, rust-resctl-bench, rust-resctl-demo, rust-routinator, rust-sccache, rust-scx_layered, rust-scx_rustland, rust-scx_rusty, rust-sequoia-chameleon-gnupg, rust-sequoia-keystore-server, rust-sequoia-octopus-librnp, rust-sequoia-sq, rust-sevctl, rust-shadow-rs, rust-sigul-pesign-bridge, rust-snpguest, rust-speakersafetyd, rust-tealdeer, rust-time, rust-time-core, rust-time-macros, rust-tokei, rust-weezl, rust-wiremix, rust-ybaas, rustup, sad, tbtools, tuigreet, and uv), Mageia (fontforge and nginx), Oracle (firefox, fontforge, freerdp, kernel, keylime, libsoup, python, thunderbird, and uek-kernel), SUSE (abseil-cpp and kernel), and Ubuntu (freerdp2 and libsoup3).

Linus Torvalds releasedthe 6.19 kernel on February8, as expected. This developmentcycle brought 14,344 non-merge changesets into the mainline, making it thebusiest release since 6.16 in July 2025. As usual, we have put together aset of statistics on where these changes come from, along with a quick lookat how long new kernel developers stay around.

Version3.0 of the Offpunkoffline-first, command-line web, Gemini, andGopherbrowser has been released. Notable changes in this release includeintegration of the unmerdifylibrary to "remove cruft" from web sites, the xkcdpunkstandalone tool for viewing xkcdcomics in the terminal, and a cookies command to enablebrowsing web sites (such as LWN.net) while being logged in.

Sean Whitton has announcedthat Debian's tag2uploadservice is now out of beta and ready for use by Debian developers andmaintainers.

Security updates have been issued by AlmaLinux (fontforge, kernel, and osbuild-composer), Debian (debian-security-support, sudo, wireshark, xrdp, and zabbix), Fedora (bind, bind-dyndb-ldap, chromium, k9s, libgit2, mingw-glib2, node-exporter, open-vm-tools, plantuml, xorgxrdp, and xrdp), Oracle (fence-agents, image-builder, kernel, libsoup3, and osbuild-composer), Red Hat (image-builder and osbuild-composer), Slackware (openssl and p11), SUSE (chromium, cockpit-354, cockpit-machines, cockpit-machines-346, cockpit-packages, cockpit-podman, cockpit-subscriptions, govulncheck-vulndb, kubernetes-old, libsnmp45-32bit, libxml2, localsearch, micropython, opencloud-server, python-django, python-djangorestframework, python-maturin, python311-Django, python311-wheel, python315, sqlite3, and xrdp), and Ubuntu (linux-fips, linux-aws-fips, linux-gcp-fips and python-pip).

Linus has released the 6.19 kernel."No big surprises anywhere last week, so 6.19 is out as expected - justas the US prepares to come to a complete standstill later todaywatching the latest batch of televised commercials."The most significant changes in 6.19 includeinitial support for Intel's linearaddress-space separation feature,support for ArmMemory system resource Partitioning And Monitoring,the listns() system call,a reworked restartable-sequencesimplementation,support for large block sizes in the ext4filesystem,some networking changes for improvedmemory safety,the live update orchestrator,and much more. See the LWN merge-window summaries (part1, part2) and the KernelNewbies 6.19 page fordetails.

For those wanting more machine learning in the kernel, Viacheslav Dubeykohas posted anew in-kernel library for that purpose.

Greg Kroah-Hartman has released the 6.18.9, 6.12.69, 6.6.123, 6.1.162, 5.15.199, and 5.10.249 stable kernels. As always, eachcontains important fixes throughout the tree; users are advised toupgrade.

The Ardour digital-audio-workstation (DAW)project has announced therelease of version 9.0.

Control-flow integrity (CFI) is a set of techniques that make it more difficult forattackers to hijack indirect jumps to exploit a system. The Linux kernel hassupported forward-edge CFI (which protects indirect function calls)since 2020, with the most recent implementationof the feature introduced in 2022. Thatversion avoids the overhead introduced by the earlier approach by using acompiler flag (-fsanitize=kcfi) that is present in Clang but not inGCC. Now, Kees Cook hasa patch set adding that support to GCC that looks likely to land in GCC17.

The Linux FromScratch (LFS) project provides step-by-step instructions onbuilding a customized Linux system entirely from source. Historically,the project has provided separate SystemV and systemd editions,which gave users a choice of init systems. Bruce Dubbs has announcedthe project will no longer produce the SystemV version:

Security updates have been issued by AlmaLinux (freerdp, kernel, python3, and python3.12-wheel), Debian (alsa-lib, chromium, openjdk-25, phpunit, tomcat10, tomcat11, and tomcat9), Fedora (openqa, pgadmin4, phpunit10, phpunit11, phpunit12, phpunit8, phpunit9, and yarnpkg), Mageia (python-django), SUSE (alloy, cups, dpdk, expat, glib2, java-1_8_0-ibm, java-1_8_0-openj9, java-25-openjdk, kernel, libpainter0, libsoup, libxml2, openssl-3, python-filelock, python-wheel, python312-Django6, thunderbird, traefik2, udisks2, wireshark, and xen), and Ubuntu (glib2.0, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, python3.14, python3.13, python3.12, python3.11, python3.10, python3.9, python3.8, python3.7, python3.6, python3.5, python3.4, and tracker-miners).

The first installment in this seriesintroduced several data structures in the kernel's swap subsystem anddescribed work to replace some of those with a new "swap table" structure.The work did not stop there, though; there is more modernization of theswap subsystem queued for an upcoming development cycle, and even more formultiple kernel releases after that. Once that work is done, the swapsubsystem will be both simpler and faster than it is now.

Security updates have been issued by AlmaLinux (brotli, curl, kernel, python-wheel, and python3.12), Debian (containerd), Fedora (gnupg2, pgadmin4, phpunit10, phpunit11, phpunit12, phpunit8, phpunit9, and yarnpkg), Mageia (expat), Oracle (qemu-kvm and util-linux), Red Hat (kernel, kernel-rt, opentelemetry-collector, and python3.12-wheel), SUSE (abseil-cpp, dpdk, freerdp, glib2, ImageMagick, java-11-openj9, java-17-openj9, java-1_8_0-ibm, java-1_8_0-openj9, java-1_8_0-openjdk, java-21-openj9, kernel, libsoup, libsoup-3_0-0, openssl-3, patch, python-Django, rekor, rizin, udisks2, and xrdp), and Ubuntu (gh, linux, linux-aws, linux-azure, linux-azure-5.15, linux-gcp, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-intel-iotg, linux-intel-iotg-5.15, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-nvidia-tegra, linux-nvidia-tegra-5.15, linux-oracle, linux-raspi, linux, linux-aws, linux-azure, linux-gcp, linux-oem-6.17, linux-oracle, linux-raspi, linux-realtime, linux, linux-gke, linux-gkeop, linux-hwe-6.8, linux-oracle, linux-oracle-6.8, linux-raspi, linux-fips, linux-aws-fips, linux-azure-fips, linux-gcp-fips, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-realtime, linux-intel-iot-realtime, and linux-realtime, linux-realtime-6.8, linux-raspi-realtime).

Inside this week's LWN.net Weekly Edition:

The robustfutex kernel API is a way for a user-space program to ensure that thelocks it holds are properly cleaned up when it exits. But the API suffersfrom a number of different problems, as Andre Almeida described in a session in the"Gaming onLinux" microconference at the 2025 Linux Plumbers Conference in Tokyo.He had some ideas for a new API that would solve many of those problems,which he wanted to discuss with attendees; there is adifficult-to-trigger race condition that he wanted to talk about too.

Creating an ebook in EPUB format is easy,for certain values of "easy". All one really needs is a text editor, a few command-line utilities; also needed is a workingknowledge of XHTML, CSS, along with an understanding of the format'sstructure and required boilerplate. Creatinga well-formatted and attractive ebook is a bit harder. However, it can bemade easier with an application custom-made for the purpose. Sigil is an EPUB editor thatprovides the tooling authors and publishers may be looking for.

Version 26.2 of the LibreOfficeoffice suite has been released.

Security updates have been issued by Debian (thunderbird), Fedora (openqa, os-autoinst, python-jupytext, python-python-multipart, rust-sequoia-keystore-server, rust-sequoia-octopus-librnp, rust-sequoia-sq, rust-sequoia-sqv, and xen), Oracle (curl, kernel, net-snmp, python3, and python3.12), Red Hat (container-tools:rhel8, fence-agents, golang, golang-github-openprinting-ipp-usb, grafana, grafana-pcp, opentelemetry-collector, podman, python-s3transfer, python-wheel, and resource-agents), SUSE (alloy, chromium, cockpit-podman, cockpit-subscriptions, dpdk, elemental-register, elemental-toolkit, glib2, glibc, gpg2, ImageMagick, imagemagick, jasper, java-17-openjdk, java-21-openjdk, kernel, libheif, libmlt++, libpng16, libsodium, libsoup, libvirt, openssl-3, openvpn, php8, postgresql16, postgresql17 and postgresql18, protobuf, python-FontTools, python-fonttools, python-h2, python-python-multipart, python-urllib3, python-wheel, python311-PyNaCl, trivy, ucode-amd, udisks2, unbound, util-linux, wireshark, and xkbcomp), and Ubuntu (emacs, freerdp2, glibc, imagemagick, mysql-8.0, pagure, python-django, python-filelock, python-internetarchive, and python-keystonemiddleware).

Theteam behindTyr started 2025 with little to show in our quest toproduce a Rust GPU driver for Arm Mali hardware, and by the end of theyear, we were able to play SuperTuxKart (a 3D open-source racinggame) at the Linux Plumbers Conference (LPC). Our prototype was a jointeffort between Arm, Collabora, and Google; it ran well for the durationof the event, and the performance was more than adequate for players.Thankfully, we picked up steam at precisely the right moment: DaveAirlie justannounced in the Maintainers Summit that the DRM subsystemis only "about a year away" from disallowing new drivers written in Cand requiring the use of Rust. Now it is time to lay out apossible roadmap for 2026 in order to upstream all of this work.

Security updates have been issued by AlmaLinux (fence-agents, gcc-toolset-15-binutils, golang-github-openprinting-ipp-usb, iperf3, kernel, kernel-rt, openssl, osbuild-composer, php:8.2, python3, util-linux, and wireshark), Debian (clamav and xrdp), Fedora (gimp and openttd), Mageia (docker-containerd), Oracle (gimp:2.8, golang-github-openprinting-ipp-usb, grafana-pcp, image-builder, iperf3, kernel, openssl, osbuild-composer, php, php:8.2, php:8.3, python3.9, util-linux, and wireshark), SUSE (cockpit-subscriptions, elemental-register, elemental-toolkit, glibc, gpg2, logback, openssl-1_1, python-urllib3, ucode-amd, and unbound), and Ubuntu (inetutils, libpng1.6, mysql-8.0, mysql-8.4, openjdk-17, openjdk-17-crac, openjdk-21, openjdk-21-crac, openjdk-25, openjdk-25-crac, openjdk-8, openjdk-lts, and thunderbird).

Version 2.53.0 of the Gitsource-code management system has been released. Changes includedocumentation for the Git data model, the ability to choose the diffalgorithm to use with git blame, a new white-space error class,and more; see the announcement for details.

The kernel's swap subsystem is a complex and often unloved beast. It isalso a critical component in the memory-management subsystem and has asignificant impact on the performance of the system as a whole. At the2025 Linux Storage, Filesystem, Memory-Management and BPF Summit, KairuiSong outlined a plan to simplify andoptimize the kernel's swap code. A first installmentof that work, written with help from Chris Li, was merged for the 6.18release. This article will catch up with the 6.18 work, setting the stagefor a future look at the changes that are yet to be merged.

Security updates have been issued by AlmaLinux (iperf3, kernel, and php), Debian (ceph, pillow, pyasn1, python-django, and python-tornado), Fedora (bind9-next, cef, chromium, fontforge, java-21-openjdk, java-25-openjdk, java-latest-openjdk, mingw-python-urllib3, mingw-python-wheel, nodejs20, nodejs22, nodejs24, opencc, openssl, python-wheel, and qownnotes), Red Hat (binutils, gcc-toolset-13-binutils, gcc-toolset-14-binutils, gcc-toolset-15-binutils, java-1.8.0-openjdk, and java-25-openjdk), Slackware (expat), SUSE (bind, cacti, cacti-spine, chromedriver, chromium, dirmngr, fontforge-20251009, glib2, golang-github-prometheus-prometheus, govulncheck-vulndb, icinga2, ImageMagick, kernel, logback, openCryptoki, openssl-1_1, python311-djangorestframework, python311-pypdf, python314, python315, qemu, and xen), and Ubuntu (linux, linux-aws, linux-aws-5.4, linux-gcp, linux-gcp-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-iot, linux-kvm and linux-aws-fips, linux-fips, linux-gcp-fips).

The 6.19-rc8 kernel prepatch is out fortesting. "So things all look good, and unless something odd happenswe'll have a final 6.19 next weekend."

A few years ago, the only way to compile Rust code was using the rustc compilerwith LLVM as a backend. Since then, several projects, includingMutabah's Rust Compiler (mrustc), GCC's Rustsupport (gccrs),rust_codegen_gcc, andCranelift have made enormous progresson diversifying Rust's compiler implementations. The most recent such project,Eurydice, has amore ambitious goal: converting Rust code to clean C code. This is especiallyuseful in high-assurance software, where existing verification and compliancetools expect C. Until such tools can be updated to work with Rust, Eurydice couldprovide a smoother transition for these projects, as well as a stepping-stonefor environments that have a C compiler but no working Rust compiler. Eurydicehas been used to compile some post-quantum-cryptography routines from Rust to C,for example.

Daniel Stenberg, the recipient of last year's Award for Excellence in OpenSource from the European Open Source Academy, presentedthat award to this year's recipient: Greg Kroah-Hartman.

The6.18.8,6.12.68, and6.6.122 stable kernel updates have beenreleased; each contains another set of important fixes.

Security updates have been issued by AlmaLinux (curl, gimp:2.8, glibc, grafana, grafana-pcp, kernel, osbuild-composer, php:8.3, python-urllib3, python3.11, and python3.12), Debian (chromium), Mageia (ceph, gpsd, libxml2, openjdk, openssl, and xen), SUSE (abseil-cpp, assertj-core, coredns, freerdp, java-11-openjdk, java-25-openjdk, libxml2, openssl-1_0_0, openssl-1_1, python, python-filelock, and python311-sse-starlette), and Ubuntu (kernel, linux, linux-aws, linux-aws-hwe, linux-hwe, linux-kvm, linux-oracle, linux, linux-aws, linux-kvm, linux-lts-xenial, linux-aws-fips, linux-fips, linux-fips, and texlive-bin).

Jeff Mahoney, whoholds a vice-president position at SUSE, has posted a detailedproposal for improving the governance of the openSUSE project.

The extensible scheduler class (sched_ext)allows the installation of a custom CPU scheduler built as a set of BPFprograms. Its merging for the 6.12 kernel release moved the kernel awayfrom the "one scheduler fits all" approach that had been taken until then;now any system can have its own scheduler optimized for its workloads.Within any given machine, though, it's still "one scheduler fits all"; onlyone scheduler can be loaded for the system as a whole. The sched_extsub-scheduler patch series from Tejun Heo aims to change that situationby allowing multiple CPU schedulers to run on a single system.

Security updates have been issued by AlmaLinux (java-25-openjdk, openssl, and python3.9), Debian (gimp, libmatio, pyasn1, and python-django), Fedora (perl-HarfBuzz-Shaper, python-tinycss2, and weasyprint), Mageia (glib2.0), Oracle (curl, fence-agents, gcc-toolset-15-binutils, glibc, grafana, java-1.8.0-openjdk, kernel, mariadb, osbuild-composer, perl, php:8.2, python-urllib3, python3.11, python3.11-urllib3, python3.12, and python3.12-urllib3), SUSE (alloy, avahi, bind, buildah, busybox, container-suseconnect, coredns, gdk-pixbuf, gimp, go1.24, go1.24-openssl, go1.25, helm, kernel, kubernetes, libheif, libpcap, libpng16, openjpeg2, openssl-1_0_0, openssl-1_1, openssl-3, php8, python-jaraco.context, python-marshmallow, python-pyasn1, python-urllib3, python-virtualenv, python311, python313, rabbitmq-server, xen, zli, and zot-registry), and Ubuntu (containerd, containerd-app and wlc).

Inside this week's LWN.net Weekly Edition:

We have received the sad news that Didier Spaier, maintainer of theblind-friendly Slackware-based Slint distribution, has recently passedaway. Philippe Delavalade, who posted the announcement to theSlint mailing list, said:

The Open Source Initiative (OSI) has announcedthat it will not be holding the 2026 spring board election. Instead,it will be creating a working group to "review and improve OSI'sboard member selection process" and provide recommendations bySeptember2026:

Phones running Linux are ubiquitous these days and it has been that waysince Android started working toward dominance in the smartphone market.Unfortunately, Android has slowly increased its freedom-unfriendliness andhas become something of a privacy nightmare. In a talk entitled "We needan open-source phone OS" at OpenSource Summit Japan 2025, Luca Weiss described the smartphone landscapeand gave an overview of postmarketOS as an alternative Linuxoperating system for mobile handsets.

PC Gamer has run anamusing review of the scx_horoscopescheduler for Linux, which uses astrology to optimize schedulingdecisions.

Creating fair governance models for open-source projects is noteasy; defining criteria for participants to receive membership andvoting rights is a particularly thorny problem for projects that haveelections for representative bodies. The FedoraCouncil, the project's top-level governance body, is wrestlingwith that conundrum now. This was triggered by a Fedora special-interestgroup (SIG) granting temporary membership to at least one person for thesole purpose of allowing them to vote in the most recent FedoraEngineering Steering Council (FESCo) election. That opened a large canof worms about what it means to be a contributor and how contributorscan be identified for voting purposes.

Security updates have been issued by AlmaLinux (java-1.8.0-openjdk), Debian (openssl), Fedora (assimp, chromium, curl, freerdp, gimp, and harfbuzz), Mageia (glibc, haproxy, iperf, and python-pyasn1), Red Hat (image-builder, openssl, and osbuild-composer), Slackware (mozilla), SUSE (avahi, cups, gio-branding-upstream, google-osconfig-agent, java-11-openjdk, java-17-openjdk, java-21-openjdk, kernel-firmware, libmatio-devel, libopenjp2-7, nodejs22, php8, python-python-multipart, python311-urllib3_1, qemu, and xen), and Ubuntu (ffmpeg, jaraco.context, openssl, and openssl, openssl1.0).

There is a new GnuPG update for a "critical security bug" in recentGnuPG releases.

GNU C Library maintainer Carlos O'Donell has announcedthat the project will be moving its core services away from Sourceware in favor of services hostedat the Linux Foundation.