Hace mucho tiempo que no hablo de iconos. Os presento un tema de iconos monocromáticos que utilizan la combinación de colores del tema Plasma una forma de mantener la coherencia visual sin renunciar a la personalización, uno de los valores de Plasma y de la Comunidad KDE.

Iconos monocromáticos que utilizan la combinación de colores del tema Plasma

Como he dicho muchas veces, me fascina la variedad que tenemos a nuestra disposición tanto de forma, estilo o colores. Tenemos iconos clásicos, minimalistas, lineales, 3D, que simulan otros sistemas operativos, imaginativos, que recuerdan a objetos cotidianeos, etc.

Hoy os presento un pack de iconos muy especiales creados por Dirn que ha nombrado como Plasma Monochrome Icons. Se trata de un conjunto de iconos diseñados para integrarse con el entorno de escritorio KDE Plasma.

Su característica principal es la capacidad de ajustar automáticamente los colores de primer plano y de fondo para que coincidan con el esquema de colores activo de KDE Plasma. Esta adaptación ayuda a mantener una experiencia coherente y visualmente cohesionada en diferentes temas. El conjunto de iconos funciona bien con Breeze y cualquier estilo Plasma que siga el esquema de colores.

Podemo verlo perfectamente en las siguientes imágenes

Por cierto, el pack está inspirado en el tema de iconos Orion, creado por Seth Storm Rosenaa.

Y como siempre digo, si os gusta el pack de iconos podéis pagarlo de muchas formas en la página en continua evolución de KDE Store, que estoy seguro que el desarrollador lo agradecer: puntúale positivamente, hazle un comentario en la página o realiza una donación. Ayudar al desarrollo del Software Libre también se hace simplemente dando las gracias, ayuda mucho más de lo que os podéis imaginar, recordad la campaña I love Free Software Day 2017 de la Free Software Foundation donde se nos recordaba esta forma tan sencilla de colaborar con el gran proyecto del Software Libre y que en el blog dedicamos un artículo.

Más información: KDE Store

La entrada Iconos monocromáticos que utilizan la combinación de colores del tema Plasma se publicó primero en KDE Blog.

openSUSE Leap and Leap Micro doubles down on support

openSUSE Leap 15 is a record breaker. It will keep receiving updates until April 30 2026, delivering a lengthy amount of unmatched community support.

The usual lifecycle is 12 months plus 6 months of overlap for a smooth upgrade, but Leap 15.6 has been stretched by an additional 4 months so we can maintain the familiar six month overlap after the release of Leap 16.0 in October 2025.

Altogether, Leap 15 delivered more than 1.5 times the typical 60 months of support offered by most long-term support distributions.

We are excited to announce that the record will not stand for long. Leap 16 will take things even further by supporting users with maintenance updates over two releases, giving each release a full 24 months of community support. Unless there is a strategic change the final, the Leap 16 release will go to 16.6 in Fall 2031 and it will keep receiving updates until Leap 17.1 arrives two years later.

Essentially the same applies to our immutable server distribution openSUSE Leap Micro, which is adopting the Leap 16 lifecycle and effectively becomes one of the Leap 16 appliances.

And for those who need even more than 24 months of support for a point release, the opensuse migration tool makes it simple to move to SUSE Linux Enterprise or SLE Micro where decades of support are available.

This long lifecycle is only possible because Leap keeps sharing its binary core with SUSE Linux Enterprise, which is also extending its general support to 24 months.

The long lifecycle of Leap 15 also brought some complaints that parts of the system became outdated. Leap 15.6 and the corresponding SLES refresh already solved many of the biggest pain points such as old versions of Ruby and system Python.

Learning from the past, openSUSE Leap 16 is better prepared. We plan to revisit the tic toc model and give product management more flexibility to deliver larger ecosystem updates when needed, rather than strictly enforcing a feature release followed by a maintenance release.

I believe this is GREAT NEWS for everyone looking for a free stable modern and predictable community-supported platform to base their solutions on.

The openSUSE.Asia Summit brought together developers, students and open-source advocates together at Manav Rachna International Institute of Research and Studies (MRIIRS) from Aug. 29 - 30 and celebrated 20 years of the project.

The two-day event opened with a ceremony and keynotes from Satyakam Goswami and I. Goswami covered the history of open-source and pulled off his shirt to reveal an openSUSE-themed T-shirt, underscoring his enthusiasm for the project. My keynote reflected the past two decades of the project and highlighted the milestones in the community’s growth.

Cake:

Talks ranged from healthcare to cloud computing. Axel Braun addressed the risks of commercial health data platforms and showcased GNU Health while Prakhar Bansal shared his experience deploying GNU Health at AIIMS during the COVID-19 pandemic, emphasizing the need for collaboration and code-sharing in India’s public sector.

Other sessions included virtualization strategies for enterprises, openSUSE’s role in data science with Python and Jupyter, and a shorter workshop on SELinux as well as a presentation on its advances and being the default security layer in openSUSE Tumbleweed. The project also had a few Google Summer of Code mentees provide talks at the event.

Google Summer of Code:

Google Summer of Code:

Lubos Kocman previewed the upcoming Leap 16.0 release and Patrick Fitzgerald argued the reasons for Linux adoption in governments and businesses as the end of Windows 10 opens the door for openSUSE. The summit was organized with the support of MRIIRS faculty and students, who worked alongside many speakers. More than 600 people attended the event.

Between talks, students and speakers bonded over tea breaks sharing interests, exchanging technical knowledge and personal stories.

The cultural exchange extended beyond the campus; on Sunday after the summit, a group of speakers, student helpers and organizers traveled to visit the Taj Mahal, capping the event by seeing one of India’s most iconic landmarks and one of the New 7 Wonders of the World.

Trip to Taj Mahal:

For many participants, the trip highlighted how open-source events can transcend technical learning and build networks for learning.

The book containing images of all the openSUSE Asia Summits was handed over to organizers of this year’s summit in India from last year’s organizers in Japan.

Summit Book:

The openSUSE.Asia Summit brought together developers, students and open-source advocates together at Manav Rachna International Institute of Research and Studies (MRIIRS) from Aug. 29 - 30 and celebrated 20 years of the project.

The two-day event opened with a ceremony and keynotes from Satyakam Goswami and I. Goswami covered the history of open-source and pulled off his shirt to reveal an openSUSE-themed T-shirt, underscoring his enthusiasm for the project. My keynote reflected the past two decades of the project and highlighted the milestones in the community’s growth.

Cake:

Talks ranged from healthcare to cloud computing. Axel Braun addressed the risks of commercial health data platforms and showcased GNU Health while Prakhar Bansal shared his experience deploying GNU Health at AIIMS during the COVID-19 pandemic, emphasizing the need for collaboration and code-sharing in India’s public sector.

Other sessions included virtualization strategies for enterprises, openSUSE’s role in data science with Python and Jupyter, and a shorter workshop on SELinux as well as a presentation on its advances and being the default security layer in openSUSE Tumbleweed. The project also had a few Google Summer of Code mentees provide talks at the event.

Google Summer of Code:

Google Summer of Code:

Lubos Kocman previewed the upcoming Leap 16.0 release and Patrick Fitzgerald argued the reasons for Linux adoption in governments and businesses as the end of Windows 10 opens the door for openSUSE. The summit was organized with the support of MRIIRS faculty and students, who worked alongside many speakers. More than 600 people attended the event.

Between talks, students and speakers bonded over tea breaks sharing interests, exchanging technical knowledge and personal stories.

The cultural exchange extended beyond the campus; on Sunday after the summit, a group of speakers, student helpers and organizers traveled to visit the Taj Mahal, capping the event by seeing one of India’s most iconic landmarks and one of the New 7 Wonders of the World.

Trip to Taj Mahal:

For many participants, the trip highlighted how open-source events can transcend technical learning and build networks for learning.

The book containing images of all the openSUSE Asia Summits was handed over to organizers of this year’s summit in India from last year’s organizers in Japan.

Summit Book:

Recopilación y traducción del boletín mensual de noticias relacionadas con el software libre publicado por la Free Software Foundation.

La Free Software Foundation (FSF) es una organización creada en Octubre de 1985 por Richard Stallman y otros entusiastas del software libre con el propósito de difundir esta filosofía, frente a las restricciones y abusos a los usuarios por parte del software privativo.

La Fundación para el software libre (FSF) se dedica a eliminar las restricciones sobre la copia, redistribución, entendimiento, y modificación de programas de computadoras. Con este objeto, promociona el desarrollo y uso del software libre en todas las áreas de la computación, pero muy particularmente, ayudando a desarrollar el sistema operativo GNU.

Mensualmente publican un boletín (supporter) con noticias relacionadas con el software libre, sus campañas, o eventos. Una forma de difundir los proyectos, para que la gente conozca los hechos, se haga su propia opinión, y tomen partido si creen que la reivindicación es justa!!

• En este enlace podéis leer el original en inglés: https://www.fsf.org/free-software-supporter/2025/september
• Y traducido en español (cuando el equipo de traducción lo tengamos disponible) en este enlace: https://www.fsf.org/free-software-supporter/2025/septiembre

Puedes ver todos los números publicados en este enlace: http://www.fsf.org/free-software-supporter/free-software-supporter

¿Te gustaría aportar tu ayuda en la traducción y colaborar con la FSF? Lee el siguiente enlace:

• https://victorhckinthefreeworld.com/2016/12/22/quieres-ayudar-a-traducir-el-boletin-mensual-de-la-free-software-foundation/

Por aquí te traigo un extracto de algunas de las noticias que ha destacado la FSF este mes de septiembre de 2025.

El gobierno de los Estados Unidos acaba de dificultar que el público comente sobre las regulaciones

Del 18 de agosto por Matthew Gault

A mediados de agosto, POST fue desactivado para organizaciones de terceros, lo que hizo imposible eludir el JavaScript no libre de regulation.gov.

POST es una función muy común que permite al titular de una clave API recopilar comentarios de personas con sus propios formularios y enviar estos comentarios en su nombre.

Debido a la dificultad de hacer un comentario público sobre una regulación sin usar el formulario en línea, a menudo obliga a los usuarios a elegir entre libertad y expresar su opinión.

Si bien algunas fuentes informan que se puede enviar comentarios por correo, el trabajo que se necesitaría para eso suele ser bastante laborioso lo que a veces echa para atrás.

Esta herramienta que se desactiva funciona como un efecto escalofriante sobre las libertades y la libertad de expresión de los usuarios, y un fuerte impulso para obligar a más personas a usar un sitio web que no respeta su libertad.

• https://www.404media.co/the-government-just-made-it-harder-for-the-public-to-comment-on-regulations/
  
• https://www.gnu.org/philosophy/javascript-trap.html
• https://www.fsf.org/news/fsf-announces-jshelter-browser-add-on-to-combat-threats-from-nonfree-javascript

Confianza de MS en Windows 11: Páguenos para alojar máquinas virtuales por usted cuando su escritorio inevitablemente muera

Del 13 de agosto por Gareth Halfacree

Si usted o en su trabajo usan Windows 10, Microsoft no solo lo obliga a cambiar a Windows 11, sino que ahora les pide a los usuarios que paguen por el alojamiento en un dispositivo secundario cuando Windows 11 inevitablemente bloquea su dispositivo anterior.

Hay muchos usuarios y organizaciones que no tendrán el lujo de poseer varios dispositivos, ni deberían necesitarlo para usar el dispositivo por el que han pagado y deben esperar que funcione.

Este es otro de los «problemas» artificiales de Microsoft para hacer dinero, creando una supuesta necesidad. Los usuarios deben tener la opción de elegir qué versión de un sistema operativo quieren usar y, de manera más general, qué actualizaciones implementar.

• https://www.theregister.com/2025/08/13/ms_confidence_in_windows_11/

Meta recopiló ilegalmente datos de la aplicación Flo para la regla y el embarazo, según el jurado

Del 5 de agosto por Jon Brodkin

Cuando no puede examinar el código detrás de una aplicación como Flo, una de las aplicaciones de seguimiento de la regla más populares, no tiene garantía de lo que está haciendo la aplicación en segundo plano o con quién se comparte su información.

Es posible que Flo haya sido atrapado con las manos en la masa dando a Google y Meta acceso a las comunicaciones privadas dentro de la aplicación de los usuarios, pero tenga en cuenta que no se revela de una manera similar que todos los programas o aplicaciones que no son libres violen la privacidad de los usuarios además de sus libertades.

Las usuarias individuales de Flo no podrían haber evitado este intercambio ilegal de datos, pero si el software fuera libre, al menos podrían haber sabido en qué se estaban metiendo al usar la aplicación.

Si actualmente está utilizando una aplicación como Flo o alguna otra aplicación que tenga acceso a datos confidenciales, considere almacenar esos datos confidenciales en un lugar en el que merezca confianza.

• https://arstechnica.com/tech-policy/2025/08/jury-finds-meta-broke-wiretap-law-by-collecting-data-from-period-tracker-app/
• https://www.fsf.org/bulletin/2022/fall/protect-your-freedom-by-managing-your-privacy

Estas son solo algunas de las noticias recogidas este mes, ¡¡pero hay muchas más muy interesantes!! si quieres leerlas todas (cuando estén traducidas) visita este enlace:

• https://www.fsf.org/free-software-supporter/2025/septiembre

Y todos los números del «supporter» o boletín de noticias de 2025 en español, francés, portugués e inglés aquí:

• https://www.fsf.org/free-software-supporter/2025

Several software packages were updated in openSUSE Tumbleweed during August that brought new features, performance improvements and some important security fixes for rolling release users.

Major updates included glibc 2.42 with support for new C standards, VirtualBox 7.2.0 and Bash 5.3.3, which improves script handling and adds new built-ins. KDE Gear 25.08.0 also landed to enhance applications for travel, file management, and encrypted communication.

These updates were complemented by refinements to xfce4-session 4.20.3, xfce4-settings 4.20.2, improvements to multimedia with GStreamer 1.26.5, HarfBuzz 11.4.1, and graphics stability enhancements were also realized through the Mesa 25.1.7 update. Kernel 6.16.0 expanded hardware support by notably adding integration for the Raspberry Pi 5 RP1 chipset.

Other essential tools saw progress as well. Read more below and as always, be sure to roll back using snapper if any issues arise.

For more details on the change logs for the month, visit the openSUSE Factory mailing list.

New Features and Enhancements

KDE Gear 25.08.0: This is a fresh wave of app updates focused on travel, productivity, and usability for KDE Plasma users. Itinerary gets major upgrades, letting users manually add trips, view live maps, check delays, and even find ferry and flight alternatives. Dolphin adds a faster file search, direct Filelight integration for visualizing disk usage, and more sorting and view options. Akonadi cuts memory usage by up to 75 percent for smoother email, contacts, and calendar syncing, while Kleopatra now supports multiple encrypted notepads. Neochat introduces polls and Angelfish improves browsing shortcuts. A was a well-rounded release that makes KDE apps faster, smarter, and travel-ready.

xfce4-session 4.20.3: This update improves startup speed and stability for Xfce users, especially on Wayland. The auto-start timeout has been reduced to make sessions launch faster, which addresses slow startups. Several enhancements improve Wayland integration, including better keyboard layout detection, avoiding duplicate D-Bus sessions, and removing unnecessary settings like the SDL video driver variable. Screen casting support has been improved with updated portal configurations, and default settings for Labwc (a Wayland-compatible window manager) have been added. This update changes make Xfce sessions more responsive and better optimized.

xfce4-settings 4.20.2: The Xfce settings update fixes a memory leak and enhances security when reading hardware identification data. The update improves display handling on both X11 and Wayland and ensures screen modes and flags are processed correctly to reduce unnecessary communication with the display server. Debug logging has been improved for easier troubleshooting, and a minor build system update ensures resources are properly included at runtime.

glibc 2.42: This release adds support for the latest ISO C23 and upcoming C2Y standards, which include new math functions like pown, rsqrt, and compoundn. Performance is improved with enhancements to the memory allocator and a new lightweight stack guard feature helps prevent stack overflow attacks.

VirtualBox 7.2.0: The interface has been redesigned to make tools easier to access with this release. On ARM-based systems, VirtualBox now supports running Windows 11 ARM virtual machines, which expands compatibility for developers and testers. Linux users gain improved video playback performance with hardware-accelerated video decoding when 3D support is enabled. Additionally, the NVMe storage controller emulation has been moved into the open-source base package and advances storage features to all users by default.

Bash 5.3.3: Bash fixes how the wait command handles process IDs in POSIX mode and improves script detection by checking the first two lines. The shell now better preserves quotes during command completion and reports more accurate error locations in scripts. New features include a GLOBSORT variable to control how file names are sorted, a ${ command; } syntax for faster command substitution without forking, and new built-ins like strptime and kv. Security and stability are enhanced by removing outdated reliance on shm_open and improving signal handling during completions. These changes make daily terminal use smoother and more predictable for developers and system administrators.

GStreamer 1.26.5: This fixes a regression in audio conversion, prevents crashes when adding URIs without available decoders, and resolves memory leaks during video resolution changes. Support for modern formats like JPEG XS is now available in videorate and imagefreeze, and GPU memory handling is improved for closed caption overlays. The update also brings better device monitoring and screen capture, along with numerous fixes for thread-sharing and streaming, which result in smoother media playback, fewer glitches, and better performance.

HarfBuzz 11.4.1, 11.4.3, 11.4.4: The text shaping engine introduces general speedups for shaping and subsetting fonts, making applications that display complex text faster and more responsive. ccuracy has been improved by fixing a regression that affected mark glyphs in certain fonts and correcting the pruning of mark filtering sets during subsetting, which previously caused unintended shaping changes. The Graphite backend now properly handles cases where glyph spacing could turn negative, enhancing text layout quality. Subsetting is further optimized by removing unused mark-attachment lookups to reduce font size, and a new experimental shaping backend offers flexibility for testing and performance evaluation.

ModemManager 1.24.2: This update fixing issues with CDMA/EVDO detection, NB-IoT reporting, and manual registration refresh. It enhances system stability by ensuring bearers disconnect before suspend and disabling unwanted 3GPP events during quick suspend/resume cycles.

Key Package Updates

Kernel Source 6.16.0: One of the biggest additions to the Linux kernel is expanded support for the Raspberry Pi 5 through the integration of the RP1 chipset, so people can see it put to use with openSUSE arm development. New drivers and configurations have been added to enable RP1 clocks, GPIO, pin control, and miscellaneous device features, ensuring full compatibility with Raspberry Pi’s latest hardware. Several security and stability fixes are included, such as resolving issues with Btrfs log tree recovery, SPI property handling, and HKDF cryptographic operations in FIPS mode. Configuration files have been refreshed for ARM and x86 platforms. This release also improves device tree bindings and clock management while addressing multiple driver and architecture-specific issues.

Mesa 25.1.7: This 3D Graphics package update resolves issues like high GPU usage in Zink, crashes in Chromium’s accelerated video decoding, X11 image acquire segfaults, and some video color conversion bugs. Fixes also address performance regressions, race conditions with timeline semaphores, Vulkan device creation issues in Lavapipe, and some RadeonSI and RADV driver problems. While no new features are introduced; this release improves reliability across OpenGL and Vulkan implementations.

btrfsprogs 6.16: This update improves how the Btrfs filesystem handles data and storage. It fixes incorrect size reporting for partitions, prevents accidental overwriting of existing filesystems, and adds better detection for storage device features. There’s also a new option to disable file compression during defragmentation, along with improved support for Android builds and updated documentation.

NetworkManager-openvpn 1.12.2: This update improves the stability and security of OpenVPN connections in NetworkManager. It fixes a bug where invalid or expired authentication challenges were being reused to ensure safer connection handling. Support has been added for the data-ciphers option and its fallback setting along with a graphical interface to manage these settings more easily. The authentication dialog has been updated to GTK4 for a more modern look, and certificate handling has been improved by importing them into the user’s data directory. Additional fixes improve password export handling, translation updates, and overall reliability.

git 2.51.0: This update introduces a better way to save and move certain changes between repositories, improves performance when pushing and fetching updates, and adds support for modern authentication like OAuth2. Git is also preparing for version 3.0, which will include a faster storage format and stronger SHA‑256 security by default.

QEMU 10.0.3: The update of for the machine emulator and virtualizer fixes critical issues in PCIe SR-IOV configuration that could lead to state desynchronization (CVE-2025-54566, CVE-2025-54567), resolves a buffer overflow in the network backend, and corrects bugs in register handling and CPUID emulation. The release also improves ARM virtualization on HVF, fixes VNC performance, and enhances virtio-net migration with RSS support.

hplip 3.25.6: The HP Linux printing software now supports more printers, including the HP LaserJet Enterprise Flow MFP 8601z, HP Envy Photo 7900 series, and HP OfficeJet Pro 9130 series. It also fixes crashes when setting up printers and improves compatibility with certain configuration files.

opensuse-welcome 0.1.10: The welcome app that appears after installing openSUSE has been streamlined. It now hides itself automatically on GNOME desktops, removes unused options, and adds new translations in multiple languages for a smoother experience.

wireless-regdb 20250710: This update improves Wi-Fi compatibility worldwide. It adds updated regulations for using the 6 GHz band in multiple countries, including the UK, Brazil, Egypt, Indonesia, and Vietnam, which allows for faster and more reliable wireless connections.

GTK3 3.24.50: The themes have been refreshed with updated CSS, better symbolic icon support, and a new progress-working icon, while removing the dependency on the hardcoded Cantarell font. The GtkShortcutsWindow now visually differentiates all keypad symbols for improved accessibility. Integration has been enhanced by allowing unsandboxed apps to register with desktop portals to improve compatibility in modern environments. Important fixes include resolving a crash on Wayland, improving window geometry handling on X11, and making compose sequence visuals configurable for better input control. Printing support has been improved with compatibility for libcups 3.

libvirt 11.6.0: This release has a new flag allowing computing baseline CPU models on any host, which makes cross-host compatibility easier. QEMU TLS settings can now be controlled via qemu.conf, helping avoid potential crashes during live migrations. For s390 domains, deprecated CPU model features are now disabled by default, ensuring better compatibility when migrating workloads to newer systems. Several enhancements improve usability and compatibility, including switching the default SCSI controller model to virtio-scsi on ARM and RISC-V for better operating system support. Users can now set zero discard granularity for block devices, helping systems like Windows avoid unwanted disk trimming. Timeout handling for bhyveload has been added, along with improved debugging for NSS modules and relaxed TLS certificate requirements to better support TLS 1.3.

Qt 6.9.2: This update finclude more accurate URL handling, stricter QByteArray::toDouble() parsing, better font family support, and fixes for window focus and orientation reporting. Multimedia sees crash fixes, more reliable FFmpeg integration. WebEngine and Wayland stability are improved, while QML and Qt Quick address crashes, rendering issues, and input glitches. Bundled libraries such as SQLite, libpng, libjpeg-turbo, and Harfbuzz are updated, ensuring a more secure and reliable development base.

PHP 8 8.4.12: This release resolves issues with property handling, iterators, generators, and compiler crashes. LDAP, LibXML, and MbString received stability updates to prevent segmentation faults and shutdown crashes. Opcache improvements prevent use-after-free errors and crashes related to hooks and JIT restarts. OpenSSL fixes address incorrect return checks and segmentation faults in key derivation.

Bug Fixes and Security Updates

tpm2-0-tss 4.1.3: This update improves TPM2 software stack stability and POSIX compliance. Version 4.1.3 fixes name collisions during dlopen() on certain linkers. Version 4.1.2 corrects a POSIX compliance issue in configure.ac and replaces the deprecated use of which with command -v. Version 4.1.1 fixes the inclusion of .map and .def files in release tarballs, ensuring proper packaging. Overall, this release focuses on compatibility, cleaner builds, and enhanced reliability across supported environments.

Several key security vulnerabilities were addressed this month. Common Vulnerabilities and Exposures this month are:

Security Updates

postgresql 17.6:

• CVE-2025-8713: Fixed issue where PostgreSQL optimizer statistics could expose sampled data within a view, partition, or child table.

• CVE-2025-8714: Patched vulnerability in pg_dump allowing a superuser on the origin server to execute arbitrary code in the psql client. CVE-2025-8715: Addressed pg_dump flaw where a newline in object names could trigger arbitrary code execution in both the psql client and the restore target server.

QEMU 10.0.3:

• CVE-2025-54566: Fixed migration state inconsistency which could trigger unexpected behavior and potentially a denial-of-service.

• CVE-2025-54567: Addressed logic flaw in handling the VF Enable bit write mask within QEMU’s SR‑IOV code (hw/pci/pcie_sriov.c), which could lead to improper control of virtual function configuration.

python-pycares 4.10:

• CVE-2025-48945: Fixed use-after-free vulnerability in the Python module pycares, where a Channel object could be garbage collected while DNS queries were still pending—leading to interpreter crashes.

**unbound **:

• CVE-2025-5994: A multi‑vendor cache poisoning vulnerability—dubbed the “Rebirthday Attack” affects caching DNS resolvers that support EDNS Client Subnet (ECS). This segregation enables attackers to exploit the birthday paradox, guessing DNS transaction IDs with non‑ECS poison responses to contaminate the cache.

glibc:

• CVE-2025-7039: Fixed a buffer underrun vulnerability that could lead to memory corruption or instability.

Python:

• CVE‑2025‑8194: Resolved a high‑severity infinite‑loop and deadlock flaw in CPython’s tarfile module. When parsing maliciously crafted .tar archives containing entries with negative offsets, the vulnerable code fails to validate these offsets properly, which can result in an infinite loop and parser deadlock. The issue was addressed in Python 3.14.0 and has backported patches.

GnuTLS 3.8.10:

• CVE-2025-6395: Fixed a NULL pointer dereference in GnuTLS’s _gnutls_figure_common_ciphersuite() when the second Client Hello omits a pre‑shared key (PSK), which could lead to memory corruption or a denial‑of‑service (DoS).

• CVE-2025-32989: Patched a heap-buffer-overread vulnerability in the handling of Certificate Transparency (CT) Signed Certificate Timestamp (SCT) extensions during X.509 certificate parsing in GnuTLS. A specially crafted SCT extension could expose sensitive data.

• CVE-2025-32988: Addressed a double‑free vulnerability due to incorrect ownership handling in Subject Alternative Name (SAN) export logic for otherName entries in GnuTLS. Malformed OID data could trigger freeing of memory twice, potentially causing memory corruption or DoS.

• CVE-2025-32990: Fixed an off‑by‑one heap-buffer-overflow in GnuTLS’s certtool template parsing logic. When reading certain template file settings, this could trigger a NULL pointer write outside intended bounds, leading to memory corruption and DoS.

Users are advised to update to the latest versions to mitigate these vulnerabilities.

Conclusion

August’s updates reinforced why openSUSE Tumbleweed is a premier rolling release that brings modern standards, polished desktop environments, and rapid security fixes consistently. From adding cutting-edge hardware support to enhancing developer tools, the distribution continues to evolve at a rapid pace. Users can reliably enjoy stability, security and keep rolling with the pace of development.

Slowroll Arrivals

Please note that these updates also apply to Slowroll and arrive between an average of 5 to 10 days after being released in Tumbleweed snapshot. This monthly approach has been consistent for many months, ensuring stability and timely enhancements for users. Updated packages for Slowroll are regularly published in emails on openSUSE Factory mailing list.

Contributing to openSUSE Tumbleweed

Stay updated with the latest snapshots by subscribing to the openSUSE Factory mailing list. For those Tumbleweed users who want to contribute or want to engage with detailed technological discussions, subscribe to the openSUSE Factory mailing list . The openSUSE team encourages users to continue participating through bug reports, feature suggestions and discussions.

Your contributions and feedback make openSUSE Tumbleweed better with every update. Whether reporting bugs, suggesting features, or participating in community discussions, your involvement is highly valued.

A ver si entre este mes de agosto y septiembre me pongo al día con este podcast (ya podéis intuir que son muchos los episodios de retraso que llevo). De momento ya llevo dos seguidos con éste, así que os presento el episodio 9 de Accesibilidad con Tecnologías libres: Dos nuevos fichajes y muchas noticias. Una oportunidad más para conocer las opciones que existen para acercar la teconología a todo el mundo.

Episodio 9 de Accesibilidad con Tecnologías libres: Dos nuevos fichajes y muchas noticias

Hace más de dos años que presenté este podcast y he dejado pasar demasiado tiempo para seguir promocionándolo. Areglé este error hace un tiempo pero perdía la inercia. Así que vuelvo con nuevos bríos para seguir promocionándolo como se merece.

Me complace presentar el séptimo episodio de Accesibilidad con Tecnologías libres que tiene el siguiente resumen:

• 00:00 Presentación de la sección «Clases con Pascal, con David Pacios«.
• 06:44 Odisea en el ciberespacio, con David Marzal.
  • Jan, una aplicación gráfica para jugar con LLMs de manera sencilla.
  • Análisis de las referencias de Accesibilidad en la Ley de Inteligencia Artificial
  • Articulo de Maldita sobre la importancia de que las IAs sean abiertas
  • Informe de accesibilidad de Matrix en 2023, hace un año los forks the TB eran más accesibles e IRC ganaba.
  • Wikipedia ya tiene modo oscuro y algunas variantes para accesibilidad
• 21:10 Presentación de la sección «Érase una vez, con Enrique Varela«.
• 27:05 Zona de testing, con Víctor. Analiza la distribución Linux Mint 22, con escritorio XFCE.
• 35:31 Accesibilidad web, con Pablo Arias. Nos habla sobre los captchas.

Transcripción disponibles en steno.fm por si vuestra Podcatcher no los implementa, como estas.

Créditos de la música:

• «Evening» de Kevin MacLeod (incompetech.com) – Licensed under CC: By Attribution 4.0

Este podcast tiene licencia Reconocimiento-CompartirIgual 4.0 Internacional (CC BY-SA 4.0).

Más información: Sexto episodio de Accesibilidad con Tecnologías Libres

Podcast Accesibilidad con Tecnologías libres

Jorge Lama, Víctor , David Marzal, Thais Pusada, Pablo Arias, Jonathan Chacon y Markolino son el equipo reunido para crear el podcast Accesibilidad con Tecnologías libres, un podcast para hablar sobre temas de accesibilidad y tecnologías libres.

En palabras de sus creadores:

En informática, la accesibilidad incluye diferentes ayudas como pueden ser las tipografías de alto contraste o gran tamaño, magnificadores de pantalla, lectores y revisores de pantalla, programas de reconocimiento de voz, teclados adaptados y otros dispositivos apuntadores o de entrada de información.

Además, las inteligencias artificiales están empezando a ser un gran aliado para mejorar la accesibilidad en muchos aspectos. Existen podcasts y canales de vídeo que hablan de la accesibilidad centrándose en entornos Windows o de Apple porque son los más conocidos por el público generalista. Pero en este podcast queremos dar a conocer otros aspectos de la accesibilidad y su relación con otras tecnologías menos conocidas.

Tecnologías que consideramos libres y que nos parecen mejores para la sociedad, en muchos casos…

Por supuesto, os invito a visitar la página de Archive.org donde están recogidos el resto de programas y donde nos indican también aquellos que estań subtitulados, aunque creo que al final lo estarán todos:

Créditos de la música:

La música usada ha sido «Evening» de Kevin MacLeod (incompetech.com)
Licensed under Creative Commons: By Attribution 4.0 License
http://creativecommons.org/licenses/by/4.0/

Personalmente, me parece un podcast muy interesante que aborda un tema recurrente en el mundo del Software Libre pero que todavía está lejos de solucionarse. Los diferentes proyectos de escritorio de GNU/Linux implementan cosas pero en muchas ocasiones no están coordinadas realmente con las personas que las necesitan. Esperemos que en los próximos años este aspecto se vaya mejorando y, si ocurre, creo que este podcast tendrá parte de culpa, en el buen sentido de la palabra.

Más información: Accesibilidad con Tecnologías Libres

La entrada Episodio 9 de Accesibilidad con Tecnologías libres: Dos nuevos fichajes y muchas noticias se publicó primero en KDE Blog.

Thunderbird en el escritorio Plasma de KDE usa el diálogo de archivos GNOME a la hora de añadir un adjunto o guardar un archivo. Veamos cómo modificar eso.

Desde hace años utilizo el cliente de correo Thunderbird en mi openSUSE Tumbleweed con escritorio Plasma de la comunidad KDE.

Y algo que me molestaba, aunque no era un impedimento, es que al querer añadir un archivo o guardar algo en mi equipo desde Thunderbird, se mostraba el diálogo de archivos de GNOME y no el nativo del escritorio Plasma de KDE.

Buscando ví la sencilla solución a este pequeño contratiempo. Así que veamos de qué manera más sencilla podemos cambiar este comportamiento.

Tendremos que cambiar un valor en el editor de configuración del propio Thunderbird, para eso:

1. Pinchamos en el menú de hamburgesa de la parte superior derecha de Thunderbird (≡)
2. Seleccionamos la opción de Ajustes
3. En la parte izquierda seleccionamos la sección General
4. Y en esa sección, en la parte derecha nos desplazamos hasta el botón de Editor de configuración
5. En la nueva pantalla, en la parte superior buscamos la opción widget.use-xdg-desktop-portal.file-picker
6. En mi caso valía 2, y lo cambié por un 1 y ya estaría.
7. Ahora al querer subir un archivo o descargarlo desde un adjunto de un correo, me muestra el gestor de archivos propio de Plasma de KDE por lo que Thunderbird queda más integrado con mi entorno de escritorio.

Enlaces de interés

• https://en.opensuse.org/Thunderbird#Thunderbird_on_KDE_uses_GNOME_File_dialog
• https://support.mozilla.org/en-US/kb/config-editor

Me complace anunciar que ya están disponibles los vídeos de las charlas de Akademy-es 2025 de Málaga OpenSouthCode edition II , una forma de recordar lo que vivimos esos días y mostrar a los que no vinieron algunas de las cosas de las que se hablaron. En esta ocasión os comento que ya están publicados en el canal de Kockatoo Tube de KDE España y que en cuento pueda estarán enlazadas en la página de las ponencias del 2025.

Publicados los vídeos de las charlas de Akademy-es 2025 de Málaga OpenSouthCode edition II #akademyes

El año pasado me tocó arreglar la página de charlas del programa de Akademy-es 2024 de València esLibre edition. Lo cierto es que me quedó muy bien, experimentando con el editor de texto de WordPress e instalando un pequeño plugin para poder insertar un efecto acordeón.

Este año, todavía no lo he hecho. Demasiado calor en verano y pocas ganas de estar delante del ordenador.

Pero eso no ha sido obstáculo para que mis compañeros hayan realizado su trabajo, con lo que me enorgullece comentar que han sido publicados los vídeos de las charlas de Akademy-es 2025 de Málaga OpenSouthCode edition II #akademyes en nuestro canal de Kockatoo Tube.

Es el momento de repasar lo que hablamos en forma de ponencia en el gran evento comunitario de la Comunidad KDE.

Más información: Canal de Kockatoo Tube de KDE España

¿Qué es Akademy-es?

Akademy-es (#akademyes, que es la etiqueta para las redes sociales) es evento más importante para los desarrolladores y simpatizantes de KDE, que se ha ido celebrando desde el 2006 con éxito creciente.

En general, las Akademy-es son el lugar adecuado para conocer a los desarrolladores, diseñadores, traductores, usuarios y empresas  que mueven este gran proyecto.

En ellas se realizan ponencias, se presentan programas, se hace un poco de caja para los proyectos libres (camisetas, chapas, etc) pero sobre todo se conoce a gente muy interesante y se cargan baterías para el futuro.

Podéis repasar las anteriores ediciones en estas entradas del blog:

• Camino Akademy-es 2013: Las anteriores ediciones (I): 2006 – 2008
• Camino Akademy-es 2013: Las anteriores ediciones (II): 2009-2010
• Camino Akademy-es 2013: Las anteriores ediciones (III): 2011-2012
• Anteriores ediciones de Akademy-es (IV): 2013 y 2014

La entrada Publicados los vídeos de las charlas de Akademy-es 2025 de Málaga OpenSouthCode edition II #akademyes se publicó primero en KDE Blog.

Those who follow my blog are already aware that I love and listen to “Made in Hungary” high-end audio gear: https://peter.czanik.hu/posts/zsolt-audio-turns-40-this-year/. This weekend I visited Zsolt Audio again. He showed us his latest creation, a pair of speakers, which he called “no-name” and “anti-marketing”.

However, when I arrived at today’s event, music was still playing on another pair of loudspeakers. Last time I wrote about a pair of classical floor-standing speakers, a reincarnation of the StandArt line of loudspeakers. It is now turned into a proper product and should be available soon. No more beautiful code names, instead it’s called C35, where C refers to classical design, and 35 to the years of his experience in loudspeaker production.

After a few songs Zsolt changed to the main attraction: a completely boring looking, bookshelf loudspeaker. A slightly larger 12 liter brick. Spoiler alert: “No-name” and “anti-marketing” only describes the look, not the sound…

Someone recommended him to check out Wavecor speakers. He built a loudspeaker around the sample pair of speakers he received from the manufacturer, and was impressed about the result. We had a chance to listen to the design which is considered to be final, and as far as I could tell, everyone in the room was impressed about the no-name loudspeakers as well. :-)

Once upon a time I became a Zsolt Audio fan, because I heard the Enigma 5 loudspeakers at an event. They are non-directional speakers, and I love the spatial sound they create. These “no-name” loudspeakers are directional, at least by the look. Of course they cannot match the Enigma 5, but these boring looking loudspeakers do a really good job playing back any acoustic music, be it jazz, classical or contemporary recordings, in a spatial way. Voices and instruments are not just right and left, as with most speakers, but a bit also up and down, close and far away, which is usually Enigma territory. Somewhere between the C35 and the Enigma 5.

The above list of genres of course also means that something is missing. (Prog)rock and metal, where it’s not just the ear, but the whole body is sensing the sound, are a kind of weak point on these loudspeakers. Except when you double them. Note: Do not try this at home! :-) Zsolt connected a second pair of “no-name” loudspeakers to the amplifier, and we listened to some Rammstein. The result was considered as perfect also by the rockers in the room!

I just realized recently that Zsolt also has loudspeakers, which combine directional and non-directional sound. This event was of course not about these, I’m not even sure if they are still produced. But I hope that one day I can listen to the Envoy: