On May 13, 2025, Nobara Linux 42 was officially released, introducing several significant changes. The most notable modification is the adoption of Brave as the default web browser, following extensive testing that revealed stability issues with other browsers like Firefox and its derivatives when playing live videos with Variable Refresh Rate (VRR) enabled. Brave stood out as the only browser that functioned reliably without requiring additional packages for video codecs.

Red Hat Enterprise Linux (RHEL) has recently released a series of important security updates addressing vulnerabilities across numerous components, including PHP, OpenSSH, osbuild, osbuild-composer, and more. The updates cover a wide array of packages, including various GStreamer plugins, Python versions, kernel updates, and popular applications like Podman, Redis, and Firefox.

AlmaLinux has released several important security updates for various software packages, including OpenJDK (both versions 17 and 21), GnuTLS, OSBuild, Thunderbird, Firefox, Emacs, and Python 3.9. These updates are designed to address vulnerabilities and enhance security across the platform.

Oracle Linux has released a series of critical updates addressing various security and functional issues across its platforms. These updates include improvements for OpenSCAP, Leapp, Kernel, and other packages, enhancing security and system performance for Oracle Linux 8 and 9.

Arch Linux Security Advisory Update: Screen Package Vulnerabilities

Slackware 15 has released new screen packages to address critical security vulnerabilities, identified by SSA:2025-133-01. The updates apply to both Slackware 15.0 and the current development branch. The key improvements include:

An important update for Open VM Tools has been released for various versions of Ubuntu Linux, specifically 20.04 LTS, 22.04 LTS, 24.04 LTS, 24.10, and 25.04. This update addresses a security vulnerability that could allow an attacker within a guest operating system to perform unauthorized file operations, potentially leading to privilege escalation.

A security update has been released for Varnish, the web accelerator, on Debian GNU/Linux 12 (Bookworm). This update addresses a critical issue related to the improper parsing of chunked transfer encodings, which could potentially enable HTTP request smuggling or cache poisoning attacks.

SUSE Linux has rolled out a significant set of security updates affecting various software packages, including Tomcat, Python Django, RKE, and several Java versions. The updates include the following:

Screen Update for ArchLinux

A security update for the Chromium web browser has been released for Fedora 41, specifically version 136.0.7103.92-1.fc41. The update addresses a critical vulnerability identified as CVE-2025-4372, which involves a "use after free" issue in the WebAudio component.

Debian GNU/Linux has implemented crucial security updates for several packages, namely Redis, Libeconf, and Rubygems, across various versions including Debian 8 (Jessie), 9 (Stretch), 10 (Buster), and 11 (Bookworm). The updates address vulnerabilities that could potentially compromise system security.

Gentoo Linux has issued a series of security updates addressing significant vulnerabilities in several key components, including PAM, Mozilla Firefox, Mozilla Thunderbird, Orc, NVIDIA Drivers, and glibc. Each of these updates is categorized as high severity, indicating the potential for serious security breaches.

Red Hat Enterprise Linux (RHEL) has recently released a series of updates that enhance security for several key applications including Thunderbird, Emacs, Submariner, and Python 3.9. These updates address various vulnerabilities and bugs, ensuring a more secure operating environment for users.

SUSE Linux has recently released security updates for three packages: kanidm, git-lfs, and augeas. These updates address moderate and low security vulnerabilities, enhancing the overall security of the system.

Updated libxmp packages have been released for Fedora Linux versions 40 and 41 to address a security vulnerability related to an array subscript underflow in the Pha Packer loader. The updates are as follows:

Fedora Linux 40 is set to reach its end of life on May 13, 2025, meaning that after this date, users will no longer receive any updates, including critical security updates. This marks the conclusion of support for this version, urging users to transition to newer versions. Fedora Linux 41 will continue to be supported with updates until approximately one month after the release of Fedora Linux 43.

Kdenlive has released version 25.04.1, which brings a variety of important fixes and enhancements aimed at improving user experience and functionality. Notable changes include the resolution of an effect stack layout issue that sometimes impeded access to certain parameters, a fix for crashes that occurred when loading multiple clips and switching project profiles, and improvements to the speed of audio thumbnail generation. Additionally, the memory usage of the automask feature has been optimized to facilitate the creation of masks for longer clips.

AnduinOS has released version 1.3.1, a minor update to its Linux distribution inspired by Windows 11 and built on GNOME 48. This update brings a series of fixes and enhancements aimed at improving system stability and user experience. Key fixes include resolving crashes in Nautilus when accessing the Network, updating the boot menu text to clarify installation options, and adding the en_GB locale for British English support. Additionally, several bugs related to the Nautilus admin command and installer theming have been addressed, alongside font rendering issues for the French locale.

Linus Torvalds has officially released the sixth release candidate (6.15-rc6) for the upcoming Linux kernel version 6.15. This release features a slightly higher number of commits than the previous candidate (rc5), although the increase is not significant and is characterized as typical variability in pull requests. The release schedule is on track with two weeks remaining before the final version is expected.