Tumbleweed Monthly Update - February 2026
Software package updates during the second month of 2026 for openSUSE Tumbleweed have been consistent totalling 17 snapshots in the 28 days of the month.
Tumbleweed saw the arrival of Plasma 6.6 with a new on-screen keyboard, text recognition in Spectacle, and a Setup wizard for cleaner device handovers, while KDE Frameworks 6.23.0 focused heavily on memory safety with LeakSanitizer fixes across multiple libraries. The Linux kernel moved to 6.19.3 and brought a new listns() system call, expanded hardware support, and made numerous filesystem and driver fixes. GRUB2 2.14 landed to strengthen the boot workflows for immutable systems like MicroOS. Mesa 26.0.1 fixed regressions in popular games, btrfsprogs now enables block-group-tree by default for faster mount times, and systemd resolved a logind session-tracking regression.
As always, be sure to roll back using snapper if any issues arise.
For more details on the change logs for the month, visit the openSUSE Factory mailing list.
New Features and Enhancements
Plasma 6.6: This release is dedicated to Björn Balazs who was a passionate contributor and will be missed. The release has a new on-screen Plasma Keyboard, designed for touch and accessibility, and Spectacle now includes text recognition. The new Plasma Setup wizard decouples user account creation from OS installation and enables cleaner device handovers for vendors, refurbishers, or personal use. Workflow improvements were made for the hover-to-open in the Windows List widget, the Alt+double-click to open file properties directly from the desktop and more. Other highlights include virtual desktops limited to the primary screen, optional auto brightness with ambient light sensors, a new connect to Wi-Fi by scanning a QR code with your camera and more.
KDE Frameworks 6.23.0: A major focus for this release was memory safety as with LeakSanitizer (LSAN) as it addressed numerous memory leaks fixes in libraries like KTextEditor, KIO, KWindowSystem, and others. KIO gains a “Run Executable” action, better drop handling from Places View, and refined preview and metadata logic. The KImageFormats adds support for legacy formats like CD-i IFF images and Atari ST VDAT. Kirigami refines UI behavior and holiday data for Japan, Slovenia, Nepal, and the Philippines were updated in **KHolidays.
freerdp 3.22.0: This version overhauls the SDL client and introduces a WINPR_ATTR_NODISCARD macro to catch misuse of API calls. It addresses several critical vulnerabilities and hardens error handling across channels like Smartcard, RDP Sound, and video redirection. Server-side Kerberos authentication is more robust, and several NULL pointer checks prevent crashes during logon or gateway negotiation.
cryptsetup 2.8.4: This update fixes critical issues in disk encryption management that affect usability and correctness. It corrects device size reporting for drives using sector sizes larger than 512 bytes to ensure accurate status output, and fixes integrity device resizing in bitmap mode, which previously failed due to incorrect journal settings. These fixes are essential for users relying on LUKS or integrity protection.
Qt 6.10.2: This update resolves numerous issues affecting desktop, mobile, and embedded platforms. It fixes crashes in WebEngine, touch input problems on Android and WebAssembly, and rendering glitches in Qt Quick Controls and SVG. The core libraries were, which improves internationalization and image handling. Developers also benefit from better CMake support, SBOM generation for supply chain transparency, and fixes for QML tooling, accessibility, and deployment.
dnsmasq 2.92: Updates for this software package now correctly validates or safely bypasses validation for “overlay” domains without a global DNS chain of trust, while also fixing critical edge cases with DNAME records and RFC-1918 reverse lookups. DHCP functionality is enhanced with new leasequery support (sponsored by JAXPORT), better REBIND behavior matching DHCPv4, and a new --dhcp-split-relay option for non-routable networks. TFTP gains windowsize and timeout options per RFC standards, and several race conditions and caching bugs—including MAC address tagging in TCP mode—are resolved.
python-packaging 26.0: The update for core utilities for Python packages adds support for PEP 751 (pylock files) and PEP 794 (import name metadata) to enable better tooling for modern Python workflows. Version and specifier handling has more correct prerelease logic, safer comparisons, and support for pattern matching and __replace__. Performance is enhanced with canonicalize_name and the release also improves correctness in license expression parsing, marker evaluation, and subclassing, while adding full type annotations and Python 3.14 compatibility.
KDE Gear 25.12.2: This update provides fixes for plasma users. Dolphin resolves crashes in header dragging and ensures context menu plugins reload on config changes, while Kdenlive stabilizes audio thumbnails, fixes monitor display glitches, and improves clip dragging and effect handling. KDE Connect enhances security with packet size limits and restores MDNS discovery. NeoChat addresses timeline rendering and crash issues around long reactions and pinned messages. Kitinerary adds support for SNCF TER barcodes and adapts to Poppler 26.02 and ZXing 3.0 API changes. KAlarm fixes hangs related to time zone recurrence calculations.
AppStream 1.1.2: This cross-distribution software package adds basic bash completion for the appstreamcli tool, improves validation by catching more cases of empty but present component properties, and updates internal build practices for better symbol visibility and translation handling. The CLI now prefers pkgcli over the legacy pkcon when available, aligning with modern package management trends. A test compatibility fix ensures stability with newer versions of libfyaml, while a temporary patch maintains support for older distributions.
Totem 43.2+git402.b8d8108e0: GNOME’s default video player reverts the app name back to Totem, updates metadata to reflect current capabilities, and switches from deprecated appdata to the standard metainfo format. The build system is overhauled; it now uses AppStream instead of appstream-glib, adopts Libpeas 2, and migrates to libsoup 3 in Flatpak builds. Legacy features like easy codec installation are removed as they’re no longer supported upstream, and outdated YouTube API keys were purged.
Poppler 26.01.0 and 26.02.0: The 26.02.0 update refines the Signature checking and increases its reliability when validating signed documents. Rendering of PDFs using the CalGray color space is improved and crash fixes for malformed documents were made. With the 26.01.0 update, uers benefit from better digital signature compatibility, improved handling of annotation icons, and additional blending modes that enhance rendering accuracy—especially in edge cases. Tools like pdfinfo now expose alternative text in structured output, and Qt applications gain improved reading order control for extracted text.
Key Package Updates
Linux kernel 6.18.9 to 6.19.3:: The Linux kernel 6.19 brings enhanced hardware support and introduces a new listns() system call for namespace enumeration and more. The 6.19.3 update patches the QLA2xxx SCSI driver to prevent a double-free crash. The f2fs filesystem receives significant attention, with fixes for use-after-free conditions, out-of-bounds sysfs access, swapfile block mapping errors, checkpoint flag inconsistencies, and improved support for non-4KB block sizes. USB serial support is expanded, and on the graphics side, Intel i915 ALPM display fixes are included. Architecture-specific improvements include a KASAN rework for LoongArch systems and a display graph correction for ARM64 MediaTek MT8183 devices. The 6.19.2 update resolves multiple use-after-free vulnerabilities in XFS, EROFS, and HFS, prevents crashes in SMB client/server due to credit management bugs, and hardens Bluetooth and Wi-Fi drivers with new device IDs and memory safety fixes. Prior to the 6.19.3 fix, QLA2xxx SCSI driver gained better error recovery for tape devices and avoided crashes during module unload. The crypto subsystems (IAA, Octeon, Virtio) are patched for out-of-bounds access and race conditions. A reverted change in the driver core restores expected device-matching behavior.
iproute2 6.19: This update brings new networking capabilities relevant to Tumbleweed users. The devlink subsystem gains support for burst period configuration on health reporters and 64-bit parameters, improving network device diagnostics and flexibility. The generic netlink utility (genl) now supports JSON output to make it easier to script and parse network configuration data. MPTCP introduces laminar endpoint support, refining multipath TCP connection handling. Finally, iplink_can adds initial support CAN XL (Controller Area Network Extended Length) for high-speed automotive and industrial networks.
GRUB2 2.14: This update adds Boot Loader Specification (BLS) and Unified Kernel Image support, which enables a more standardized Linux boot workflows especially for immutable systems like MicroOS. Security is strengthened with TPM2 key protector support, Argon2 KDF, NX protection on EFI, and Appended Signature Secure Boot for PowerPC. New filesystem capabilities include EROFS, LVM integrity/cache volumes, and the ability to store GRUB’s environment block inside Btrfs headers. The release also fixes a sporadic boot failure in BLS setups and extends date handling beyond the year 2038.
systemd 258.3: This update resolves a logind regression that broke session tracking, improves isolation behavior by correctly preserving triggered units only when their dependencies are active, and enhances Btrfs support with nodatacow subvolume handling. The release removes outdated workarounds, drops legacy System V init compatibility, and refines PAM integration to avoid conflicts with network user directories like SSSD. Security-related Polkit actions are now properly validated, and soft-reboot reliability is improved with explicit TTY switching.
btrfsprogs 6.19: This update brings a notable default change where mkfs.btrfs now enables the block-group-tree feature by default, which speeds up mount times on large filesystems. Users needing backward compatibility with older kernels can disable it with -O ^bgt. Filesystem creation is also faster thanks to optimized initial device discard ordering. The btrfs check tool gains new repair capabilities and has a fix for DUP profile on mixed zoned devices to ensure correct write pointer tracking. On the experimental side, initial support for a remap tree (a new logical-to-logical mapping layer expected when Linux kernel 7.0 is introduced.
Mesa 26.0.1: This first minor release resolves regressions in popular games like Genshin Impact, Tekken 8, Civilization VII, and Killer7. Vulkan drivers see improvements with RADV fixes and GPU hangs. Compiler and NIR infrastructure fixes prevent crashes and miscompilations while Asahi, PanVK, and Turnip receive stability patches.
GVFS 1.58.1: This update improves reliability and resource usage in GNOME’s virtual filesystem layer. It fixes the track duration for the last audio CD track on certain media, resolves build failures when Google integration is disabled, and patches some memory leaks that could affect long-running file operations.
Python 3.13.12: This release patches multiple critical vulnerabilities that could lead to header injection, cookie smuggling, or arbitrary code execution. The update blocks control characters in http.cookies, wsgiref.headers, and data:. It hardens email header serialization against unsafe folding. Beyond security, it fixes crashes in ctypes, tkinter, pickle, and multiprocessing, which includes a forkserver regression that broke sys.argv.
UPower 1.91.1: This update improves the prevention of crashes from NULL GError handling, and correcting invalid ACPI-reported battery capacity values. It enhances battery calibration logic by skipping critical power actions during recalibration. The capacity_level and luminosity properties are now deprecated. Additionally, battery history tracking now includes voltage data that enables better diagnostics and power analytics.
libsoup 3.6.6: This update resolves numerous CVEs, addresses issues across WebSocket handling, header parsing, and multipart processing. Key fixes include an out-of-bounds read in WebSocket frame processing, a heap-use-after-free from double-finishing queue items, and a crash in digest authentication. The release also sanitizes Content-Disposition filenames, validates URIs more strictly, and ensures headers from untrusted sources are always checked—closing avenues for smuggling or injection attacks. Numerous memory leaks and a potential deadlock during initialization are resolved and improve stability for applications like GNOME Software, WebKitGTK, and REST clients.
Security Updates
freerdp 3.22.0:
-
CVE-2026-24682: A fix for a heap-buffer-overflow could let a remote RDP server crash the client or corrupt memory.
-
CVE-2026-24683: This fixes input event handling that may allow a malicious RDP server to crash the client or execute code.
-
CVE-2026-24676: A fix that could let a malicious server crash or compromise the client.
-
CVE-2026-24677: This fixes a heap buffer overflow path that could allow a malicious server to crash or corrupt a client.
-
CVE-2026-24678: This fixes a CVE that could allow a malicious server to crash or exploit the client.
-
CVE-2026-24684: Fixes an exploit that could lead to a hostile RDP server crash or compromise the client.
-
CVE-2026-24679: Fixes a heap buffer overflow that could lead to a server potentially crashing or exploiting the client.
-
CVE-2026-24681: Fixes a USB bulk transfer code that may crash the server or compromise the client.
-
CVE-2026-24675: Fixes an exploit that could lead to a hostile RDP server crash or compromise the client.
-
CVE-2026-24491: Fixes an exploit that could lead to a hostile RDP server crash or compromise the client.
-
CVE-2026-24680: Fixes a pointer update function, enabling a malicious server to crash or corrupt the client.
python-pip 26.0.1:
- CVE-2025-14576: A vulnerability may incorrectly treat keychain credentials as valid even when they should not be accepted, which could risk disclosure or misuse of stored credentials.
-
CVE-2026-22795: Fixes a NULL pointer dereference that could potentially leading to a denial of service.
-
CVE-2025-69420: Fixes a type confusion vulnerability that causes a NULL pointer dereference and potentially leads to denial of service.
-
CVE-2025-69421: Fixes a function when processing a malformed PKCS#12 file that could potentially lead to a crash.
-
CVE-2025-69419: An out-of-bounds write is fixed that could potentially compromise data integrity or cause a crash.
-
CVE-2025-66199: A resource exhaustion vulnerability that may have allowed for excessive memory allocation and potentially led to denial of service.
-
CVE-2025-68160: Fixes an out-of-bounds write potentially causing memory corruption or a crash.
-
CVE-2025-69418: A flaw was fixed for inputs that could leave trailing bytes unencrypted and unauthenticated on hardware-accelerated platforms.
-
CVE-2025-15469: Fixes a flaw that could have left trailing data unauthenticated.
-
CVE-2025-15467: A critical stack buffer overflow was fixed in which parsing could enable pre-authentication remote code execution.
-
CVE-2025-11187: Fixes a stack buffer overflow or crash.
-
CVE-2025-15468: Fixes a NULL pointer that could potentially cause a denial of service.
-
CVE-2025-9230: A patch was added fixing an out-of-bounds read and write that could compromise encryption and potentially lead to denial of service or code execution.
-
CVE-2025-9231: Fixes a timing side-channel that could potentially allow remote recovery of the private key.
-
CVE-2025-9232: Fixes an out-of-bounds read for IPv6 address potentially causing a crash.
-
CVE-2025-11468: This fixes a header-injection flaw in Python’s email header folding logic.
-
CVE-2026-0672: This fixes a header injection vulnerability.
-
CVE-2026-0865: A Python HTTP header injection flaw was fixed that could lead to inappropriately HTTP responses.
-
CVE-2025-15366: This fixes a command-injection issue where newline-containing user commands can inject additional commands into an IMAP session.
-
CVE-2025-15282: An HTTP response splitting vulnerability was fixed that could allow injecting headers into responses.
-
CVE-2025-15367: Fixes a POP3 command injection flaw that can be interpreted as extra commands by the server.
-
CVE-2025-12781: Fixes a base64 decoding anomaly where the
b64decode()functions may accept certain characters regardless of expected alphabet settings and this could potentially cause data integrity issues.
- CVE-2026-26158: Fixes a vulnerability that can be triggered by a malicious guest and potentially allows memory corruption or a crash in the host process.
libsoup 3.0:
-
CVE-2025-32049: Fixes a flaw with WebSocket handling where accepting very large WebSocket messages can trigger excessive memory allocation and lead to a denial-of-service crash.
-
CVE-2026-2443: Fixes an out-of-bounds read vulnerability that could have potentially exposed portions of server memory beyond the intended response.
-
CVE-2026-2369: Fixes a memory-handling issue that could have caused an application-level denial of service.
-
CVE-2026-1536: Fixes a header injection flaw that can lead to HTTP header injection or response splitting.
-
CVE-2026-1761: This fixes a stack-based buffer overflow that may lead to memory corruption or crashes when parsing crafted responses.
expat 2.7.4:
-
CVE-2025-68615: This fixes a buffer overflow causing the daemon to crash.
-
CVE-2024-47191: This fixes a flaw that could allow for enabling a privileged file overwrite and potential escalation if improperly configured.
qemu:
- CVE-2026-0665: A fix that could have lead to a malicious guest causing out-of-bounds memory access in the host.
net‑snmp 5.9.5.2:
- CVE-2025-68615: Fixes a buffer overflow from crafted SNMP packets that can crash the service.
oath‑toolkit 2.6.14:
- CVE-2024-47191: This fixes a flaw that may have allowed for the enabling of a privileged file overwrite and lead to a potential escalation if improperly configured.
Users are advised to update to the latest versions to mitigate these vulnerabilities.
Conclusion
This was a security-heavy month for Tumbleweed as major fixes landed across OpenSSL, FreeRDP, libsoup, and Python. Beyond security, the KDE stack received meaningful change with Plasma 6.6 and Frameworks 6.23.0, the kernel jumped to 6.19 expanded hardware and filesystem capabilities, and GRUB2 2.14 modernized the boot process. Tumbleweed users are well-served by keeping their systems up to date this month.
Slowroll Arrivals
Please note that these updates also apply to Slowroll and arrive between an average of 5 to 10 days after being released in Tumbleweed snapshot. This monthly approach has been consistent for many months, ensuring stability and timely enhancements for users. Updated packages for Slowroll are regularly published in emails on openSUSE Factory mailing list.
Contributing to openSUSE Tumbleweed
Stay updated with the latest snapshots by subscribing to the openSUSE Factory mailing list. For those Tumbleweed users who want to contribute or want to engage with detailed technological discussions, subscribe to the openSUSE Factory mailing list . The openSUSE team encourages users to continue participating through bug reports, feature suggestions and discussions.
Your contributions and feedback make openSUSE Tumbleweed better with every update. Whether reporting bugs, suggesting features, or participating in community discussions, your involvement is highly valued.
Member
FutureboyObsidian | The Quest for the Perfect Note-Taking Application
Voting Is Now Open for the openSUSE Board Election 2025
Voting for the 2025 openSUSE Board election starts today.
All openSUSE Members have the right to vote and should have received their personal ballot link by email yesterday. Please check your inbox (and your spam folder, just in case) and take a few minutes to cast your vote.
This year we are electing two Board seats, currently held by Simon Lees and Shawn W Dunn. Both Simon and Shawn have stepped forward and are seeking re-election. Joining them on the ballot are Ihno Krumreich and Soc Virnyl Estela.
Voting is open from March 1 until March 8, and we plan to announce the results on March 9.
Full details about the election process can be found here.
Although voting is taking place in 2026, this is officially the 2025 openSUSE Board Election due to a delayed start of the election cycle.
Meet the Candidates
Four members of our community have stepped forward to stand for election this year.
From left to right on the top picture: Shawn W Dunn, Simon Lees, Soc Virnyl Estela, Ihno Krumreich.
In addition to their individual platforms, Luboš Kocman asked all candidates two questions:
1. What is your opinion on the new governance proposal initiated by Jeff Mahoney, and how can the project help ensure the success of the proposed committees?
2. Do you plan to attend openSUSE Conference 2026 in person?
Below is a short overview of each candidate, along with links to their platforms and responses.
Ihno Krumreich (bigiron)
Ihno was nominated by Sarah Julia Kriesch, who described him as a knowledgeable and trusted member of the openSUSE community and part of the openSUSE zSystems Team. She highlighted his openness, experience, and ability to act as a bridge between SUSE and the broader openSUSE community.
The nomination can be read here.
Ihno recently retired after 25 years at SUSE, where he worked for more than 22 years as Project Manager for SUSE Linux Enterprise Server (SLES) for System z. His long experience with enterprise Linux and large-scale development brings deep historical and organizational insight to the project.
The questions addressed to Ihno can be found here.
Shawn W Dunn (sfalken)
Shawn has served on the openSUSE Board since 2024 and is seeking re-election.
In his candidacy announcement, he outlined several ongoing efforts he would like to continue supporting, including governance discussions, moderation policy alignment, questions about the project’s legal status, and representing the community during the transition to a git-based packaging and maintenance workflow.
More about Shawn and his background can be found here.
His responses to the governance and oSC2026 questions can be found here.
Simon Lees (simotek)
Simon has been part of the openSUSE community for more than 15 years and has served multiple terms on the Board. He is also running for re-election.
Simon has expressed strong support for the governance proposal, describing it as an important step toward empowering committees and enabling more contributors to take initiative. He emphasized the importance of trust in newly formed groups and clearer contribution pathways for community members.
His full platform is available here.
His responses to the governance and conference questions can be found here.
Soc Virnyl Estela (uncomfyhalomacro)
Soc, also known as uncomfyhalomacro, is a self-taught developer who began contributing to open source in 2019. He holds a degree in Biology (Major in Microbiology) and contributes to openSUSE as a packager and developer.
He maintains obs-service-cargo and roast, tools that help automate Rust software packaging in the openSUSE Build Service.
Soc views the governance proposal as an opportunity to diversify leadership and distribute responsibilities through new committees. He describes governance as something that evolves through change and experimentation.
His platform can be found here.
His responses to the governance and conference questions can be found here.
If you are an openSUSE Member, please participate and cast your vote before March 8.
If you are an active openSUSE member and haven’t received email with subject openSUSE 2025 Board Election please reach out to Election officials.
Serving on the Board is not an easy task. It requires commitment, thoughtful decision-making, and a steady hand during times of change. We truly appreciate the courage and dedication of all candidates who stepped forward, and we wish them the very best.
Lubos Kocman on behalf
of The Board Election Committee
election-officials@lists.opensuse.org
Linux Saloon 190 | News Flight Night
Linux Saloon 189 | Early Edition
Tumbleweed – Review of the week 2026/9
Dear Tumbleweed users and hackers,
This week looks like OBS was faster in building than I was in reviewing the QA results – at least two snapshots would have been releasable, but were replaced before the full tests were done. As a consequence, we have ‘only’ released four snapshots (0220, 0223, 0224, and 0226)
The most relevant changes shipped are:
- upower 1.91.1
- Linux kernel 6.19.3
- libupnp 1.18.0
- libzio 1.12
- pipewire 1.6.0
- poppler 26.02.0
- mdadm 4.5+43
- Mesa 26.0.1
- Mozilla Firefox 148.0
- qemu 10.2.1
- dnf 5.4.0
Things being worked on at the moment and being delivered as soon as QA passes:
- systemd 259.5
- KDE Plasma 6.6.1
- gettext 1.0
- Switch default bootloader on uefi systems to systemd-boot (aligning tumbleweed to microos)
- glibc 2.43: metabug: https://bugzilla.opensuse.org/show_bug.cgi?id=1257250
New toy: Installing Ubuntu on the HP Z2 Mini
The data sheet of my new AI focused mini workstation from HP mentions Ubuntu 24.04 as the supported Linux distribution. I have tried that, but I could not get the installer to run. However, 25.10 installed without any problems, even from an openSUSE branded USB stick :-)
Only the chameleon works with this machine:-)
I must admit that I’m not an Ubuntu fan, but installed it anyway, as Ubuntu is the “official” Linux distro for this machine. GNOME is heavily modified compared to other distros. For GUI apps the focus seems to be shifted to snaps from distro packages.
For now I did not test the in hardware AI support, just tried to collect some first impressions. I ended up installing a few 3D games and playing :-) Having AMD graphics has the advantage that everything works out of box. There is no need for binary only drivers, extra repositories, praying to the binary gods, etc. It just works. Fully open source.
SuperTuxKart :-)
This blog is part of a longer series about my adventures with my new machine and AI. You can reach me to discuss this blog on one of the contacts listed in the upper right corner. You can read the rest of the blogs under the toy tag.
Planet News Roundup
This is a roundup of articles from the openSUSE community listed on planet.opensuse.org.
The community blog feed aggregator lists the featured highlights below from Feb. 20 to 26.
Blogs this week highlight music and Saloons to NVIDIA GPUs and a Git workshop. Blogs also highlight Ubuntu and openSUSE installs on the HP Z2 Mini, KDE Plasma and Krita releases, syslog-ng 4.11’s new features, and openSUSE Tumbleweed’s latest snapshot updates.
Here is a summary and links for each post:
New Toy: Installing Ubuntu on the HP Z2 Mini
Peter Czánik’s Blog revisits and expands on a prior blog covered below about installing Ubuntu 24.04 as an officially supported Linux distribution for the Ryzen AI Max+ PRO 395-powered HP Z2 Mini workstation. The 24.04 installer failed to run—while Ubuntu 25.10 installed successfully even from an openSUSE-branded USB stick.
How to Configure KDE Plasma’s “Only Icons” Taskbar Behavior
The KDE Blog explains how to switch the Plasma task manager to “Icons Only” mode for a minimalist desktop layout that displays application icons without window titles or progress indicators. The tutorial walks users through right-clicking the task manager panel, accessing Task Manager Settings, and selecting the “Icons Only” option under the Display Style dropdown.
Version 4.11.0 of syslog-ng Is Now Available
Peter Czánik’s Blog announces the release of syslog-ng 4.11.0 that now enables bidirectional integration with Kafka pipelines. The update introduces Elasticsearch/OpenSearch data stream support, OAuth2 authentication for cloud destinations including gRPC-based modules, load-balancer failover functionality, and more. Fedora 44/Rawhide and openSUSE Tumbleweed updates are expected shortly as the project maintains its commitment to broad platform accessibility.
Krita 5.3 and Krita 6.0 Betas Released
The KDE Blog announces the second beta releases of both Krita 5.3.0 and Krita 6.0.0, which features a completely rewritten text tool with direct canvas editing and OpenType support plus a new knife tool for splitting vector objects in the 5.3 branch. The 6.0 beta introduces foundational Qt6 migration with native Wayland support including color management, fractional scaling, and HDR on Linux.
First Update for Plasma 6.6 Released
The KDE Blog reports that the KDE Community delivered the first bugfix update for Plasma 6.6 one week after its release. The update builds upon Plasma 6.6’s flagship features including OCR text extraction in Spectacle, the redesigned Plasma Keyboard for touch devices, Plasma Setup assistant for post-install configuration and more.
New toy: Installing openSUSE Tumbleweed on the HP Z2 Mini
Peter Czánik’s Blog details his successful installation of openSUSE Tumbleweed on the compact HP Z2 Mini AI workstation after Ubuntu 24.04’s installer crashed and the machine’s finicky USB boot support rejected older flash drives, which requires a USB-C stick and BIOS adjustments including Secure Boot disablement before Linux would install. The Tumbleweed installer with its classic YaST interface worked flawlessly on the AMD Ryzen AI Max+ PRO 395 hardware, though an unexpected snag emerged post-installation when GRUB2-BLS.
Git Workshop: The Premier Libre Collaboration Tool at LliureJam 2026 Valencia
The KDE Blog covers a Git workshop held at the LliureJAM 2026 event in Valencia, where participants learned about Git as a key free and collaborative version-control tool. The session taught fundamentals for software development, game creation, and documentation management. It was preceded by an install party offering GNU/Linux installation assistance, ad-blocking setup for mobile devices, and guidance on libre social networks.
Free Software Could Change the World of AI Music Overnight
The Assunto Nerd Blog discusses how open-source software is rapidly reshaping the landscape of AI-driven music generation. It highlights how combining open-source models like ACE-Step-1.5 with intuitive frontends such as ACE-Step UI, which allows users to generate full songs in seconds on consumer GPUs.
3 Native FPS Games for Linux
The KDE Blog highlights three free, open-source first-person shooters games available natively on Linux via Flathub. Total Chaos, Wolfenstein: Blade of Agony and The AMC Squad. All three titles offer substantial single-player campaigns with character progression systems while adhering to libre software principles.
Linux Saloon 188 | MX Linux 25.1 Distribution Exploration
The CubicleNate Blog highlights episode 188 of Linux Saloon. The discussion covered MX Linux’s unique positioning between traditional Debian stability and modern usability features, which includes MX Tools for system maintenance, snapshot capabilities via Timeshift, and seamless migration paths for former Windows users seeking a gentle Linux introduction. Participants also debated the distribution’s community-driven governance model and its pragmatic approach to balancing legacy hardware support with contemporary desktop expectations.
Installation of NVIDIA drivers on openSUSE and SLE (G07)
Stefan’s Blog explains how to install the G07 NVIDIA drivers on openSUSE and SUSE Linux Enterprise, which covers both the Open and CUDA repository methods. Users on Tumbleweed, Leap 15.6/16.0, and all current SLE versions must continue using G06 drivers until G07 packages complete QA and become available through official update channels.
Plasma 6.6 Is Here – This Week in Plasma
The KDE Blog covers the official release of Plasma 6.6. The update delivers practical workflow enhancements including per-application volume control via task manager hover, emoji skin tone selection, QR code Wi‑Fi scanning, customizable global themes with automatic day/night switching, and four colorblind accessibility filters including a new grayscale mode. It also introduces smoother high-refresh-rate animations, expanded Wayland accessibility support, flexible virtual desktop options, and gaming improvements.
Librsvg Got Its First AI Slop Pull Request
The Federico’s Blog reports that the librsvg project received two so-called “AI slop” pull request on GitHub despite its code being developed in gitlab.gnome.org with the README warning not to send PRs to GitHub. Both PRs were closed by the submitter within minutes of creation. The author reported the submissions as spam.
openSUSE Tumbleweed Weekly Review – Week 8 of 2026
Victorhck and dimstar report on the six snapshots there were delivered. The review highlights updates including KDE Plasma 6.6’s official arrival in the repository, Mesa 26.0.0 final release, and glibc 2.43 integration—marking major milestones for graphics performance, desktop experience, and core system libraries.
What Windows Doesn’t Let You Do But Linux Does
introduces a video and discussion about capabilities that Linux offers which Windows typically restricts or complicates, aimed at users reconsidering Windows as support ends. The article highlights practical examples like replacing display servers, customizing window management behaviors down to the pixel level, packaging applications in multiple formats without vendor lock-in, and maintaining full control over when and how system updates are applied.
View more blogs or learn to publish your own on planet.opensuse.org.
Version 4.11.0 of syslog-ng is now available
Version 4.11.0 of syslog-ng is now available. The main attraction is the brand new Kafka source, but there are many other smaller features and improvements, as well.
Before you begin
If you happen to use Debian, Ubuntu or the RHEL family of operating systems (RHEL, CentOS, Rocky Linux, Alma Linux, Oracle Linux, etc.) then ready-to-use packages are already available as part of the release process. For details, check the README in the syslog-ng source code repository on GitHub: https://github.com/syslog-ng/syslog-ng/?tab=readme-ov-file#installation-from-binaries The syslog-ng container is also updated to this release: https://github.com/syslog-ng/syslog-ng/?tab=readme-ov-file#installation-from-binaries
I plan to update Fedora 44 and Rawhide soon, just like openSUSE Tumbleweed. For other distributions, you often need to wait a bit more or use third-party repositories. Our 3rd-party repo page has some pointers: https://www.syslog-ng.com/products/open-source-log-management/3rd-party-binaries.aspx
What is new?
The largest new feature is the Kafka source, which allows you to collect log messages from Kafka streams. For many years, syslog-ng had a Kafka destination, allowing you to send log messages to a Kafka-based data pipeline. The Kafka source enables syslog-ng to collect log messages from Kafka, parse and filter log messages, and route them to various destinations. You can learn more about the Kafka source from the syslog-ng documentation at https://syslog-ng.github.io/admin-guide/060_Sources/038_Kafka/README .
Support for Elasticsearch / OpenSearch data streams was also added: https://www.syslog-ng.com/community/b/blog/posts/changes-in-the-syslog-ng-elasticsearch-destination
4.11 also includes many other interesting new features and bug fixes, including:
- OAuth2 support in the cloud-auth module, including gRPC-based destinations
- Failover support in the load-balancer
- Improved performance and lowered resource usage on macOS
- cmake support feature parity with autotools
For a complete list of changes, check the release notes on GitHub: https://github.com/syslog-ng/syslog-ng/releases/tag/syslog-ng-4.11.0
As usual, while we make every effort to make all features work everywhere, it is not always technically possible. For example, compilers and / or dependencies are too old to support gRPC-based modules in older RHEL, SUSE and Debian releases.
What is next?
As usual: feedback is very welcome. If you have any problems with the syslog-ng 4.11.0 release, open an issue on GitHub at https://github.com/syslog-ng/syslog-ng/issues Your report helps us to make syslog-ng better. Of course, we are also very happy about any positive feedback :-)
syslog-ng logo
Originally published at https://www.syslog-ng.com/community/b/blog/posts/version-4-11-0-of-syslog-ng-is-now-available
New toy: Installing openSUSE Tumbleweed on the HP Z2 Mini
Last week I introduced you to my new toy at home: an AI focused mini workstation from HP. It arrived with Windows pre-installed, but of course I also wanted to have Linux on the box.
Documentation mentions that I have to disable secure boot and make a few more changes before installing Linux. I did all the suggested BIOS changes before installing Linux.
The data sheet mentions Ubuntu 24.04 as the supported Linux distribution. I have tried that, but I could not get the installer to run. Along the way I realized that the USB boot support is very picky on this box. Using my old USB sticks, which work perfectly in my laptop and old desktop, does not work at all. Also, changing the USB stick requires you to turn the machine off and on, a simple reboot is not enough. Finally I found a USB-C stick, and that almost worked with Ubuntu 24.04. It booted, but the installer crashed.
The USB sticks I tried
As I have been a S.u.S.E. / openSUSE user for the past 30 years, I did not mind this failure much. I downloaded the openSUSE Tumbleweed installer, and it worked like a charm. Best of all, unlike openSUSE Leap 16.0, Tumbleweed still has the good old YaST installer I used for decades. Installation was quick, easy and rock solid.
Surprise arrived when I rebooted the machine. Windows was not available in the boot menu. As it turned out, Tumbleweed used a new flavor of GRUB2 by default: grub2-bls, but that does not seem to boot other operating systems. There is no supported way to switch back to grub2-efi, so I reistalled openSUSE. Luckily it’s an easy job, and I did not have any data yet on the machine. So, it was just a few mouse clicks.
openSUSE is my daily driver, so I did not spend much time exploring the system. It seems to work just fine. Installing a few games and checking the in hardware AI support comes once I finished installing all operating systems on the machine. Next to Windows I plan to install openSUSE, Fedora and Ubuntu on the Linux side, and FreeBSD as well.
This blog is part of a longer series about my adventures with my new machine and AI. You can reach me to discuss this blog on one of the contacts listed in the upper right corner. You can read the rest of the blogs under the toy tag.