Linuxgram 🐧

📰 Arch Linux's Archinstall 4.2 Fixes Botched Disk Encryption Security Archinstall 4.2 is now available as the latest update to this very convenient, text-based Arch Linux OS installer... 🔗 Source: https://www.phoronix.com/news/Archinstall-4.2 #arch#linux#security

📰 Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover A recently disclosed critical security flaw impacting nginx-ui, an open-source, web-based Nginx management tool, has come under active exploitation in the wild.The vulnerability in question is CVE-2026-33032 (CVSS score: 9.8), an authentication bypass vulnerability that enables threat actors to seize control of the Nginx service. It has been codenamed MCPwn by Pluto Security.". 🔗 Source: https://thehackernews.com/2026/04/critical-nginx-ui-vulnerability-cve.html #nginx#opensource#security

📰 SteamOS 3.7.21 released to stable with security and stability updates While Valve are working to get SteamOS 3.8 Beta into stable with lots of big changes, a small SteamOS stable update has been released.Read the full article on GamingOnLinux. 🔗 Source: https://www.gamingonlinux.com/2026/04/steamos-3-7-21-released-to-stable-with-security-and-stability-updates/ #security

📰 X.Org Server 21.1.22 Released Due To Five New Security Vulnerabilities X.Org Server 21.1.22 is out today and driven by five new security vulnerabilities being disclosed for the aging codebase. In turn these vulnerabilities also impact XWayland too and thus necessitating the XWayland 24.1.10 release... 🔗 Source: https://www.phoronix.com/news/X.Org-Server-21.1.22 #security

📰 Stolen Rockstar Games analytics data leaked by extortion gang Rockstar Games has suffered a data breach linked to a recent security incident at Anodot, with the ShinyHunters extortion gang now leaking the stolen data on its data leak site. 🔗 Source: https://www.bleepingcomputer.com/news/security/stolen-rockstar-games-analytics-data-leaked-by-extortion-gang/ #security

📰 Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure A critical security vulnerability in Marimo, an open-source Python notebook for data science and analysis, has been exploited within 10 hours of public disclosure, according to findings from Sysdig.The vulnerability in question is CVE-2026-39987 (CVSS score: 9.3), a pre-authenticated remote code execution vulnerability impacting all versions of Marimo prior to and including. 🔗 Source: https://thehackernews.com/2026/04/marimo-rce-flaw-cve-2026-39987.html #opensource#python#security