The central voice for Linux and Open Source security news.
Sometimes, software updates are just about bug fixes and fine-tuning performance. This one? It's not the kind you can afford to brush off as "I'll get to it next week." Apache HTTP Server 2.4.64 is here, and it's carrying quite a load of security fixes that Linux admins absolutely need to pay attention to. Whether your Apache deployment is running simple HTTP workloads or juggling SSL/TLS-heavy configurations, let's be clear''if you're on anything between 2.4.0 and 2.4.63, your system just got a target painted on it.
Ransomware is nothing new to us as Linux admins and infosec folks''it's pretty much part of the modern threat landscape now. But when I say "BERT ransomware," you may want to sit up and pay closer attention. Officially tracked as "Water Pombero" by Trend Micro, BERT isn't just another ransomware strain making a splash. It's a calculated, cross-platform threat that specifically hones in on both Windows and Linux systems. Oh, and for those of you running ESXi in your virtualized data centers? BERT has you in its crosshairs, too.
With the average number of weekly cyberattacks per company rising by 75% in Q3 of last year, the pursuit of effective cybersecurity is relentless in the ever-evolving threat landscape. And while the Internet of Things (IoT) may have introduced us to smart, hyperconnected devices, it's also introduced a unique set of cybersecurity risks.
When a Linux server starts slowing down, the symptoms are rarely isolated; web applications begin to lag, and background tasks take longer to complete. Processes that should run quietly in the background start stacking up. Over time, this kind of degradation doesn't just frustrate users '' it affects uptime, system reliability, and in many cases, revenue.
This updates gnutls to the latest upstream release. Notable changes are: PKCS#11 cryptographic provider support Support for kTLS rekeying with kernel 6.14+ Support for the almost standardized ML-DSA private key formats This also fixes 4 CVEs (CVE-2025-32989, CVE-2025-6395, CVE-2025-32988, and
Update to chromium 138.0.7204.92
Update to version 4.34.0
PHP version 8.4.10 (03 Jul 2025) BcMath: Fixed bug GH-18641 (Accessing a BcMath\Number property by ref crashes). (nielsdos) Core:
Fixes CVE-2025-40909 - Clone dirhandles without fchdir