Learn how to upgrade Ubuntu 25.04 to Ubuntu 25.10 'Questing Quokka' using Software Updater or the command line in this guide (with troubleshooting tips).
You're reading How to Upgrade to Ubuntu 25.10 from 25.04, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
In Part One of this series, we examined how the SONiC control plane and the VPP data plane form a cohesive, software-defined routing stack through the Switch Abstraction Interface. We outlined how SONiC’s Redis-based orchestration and VPP’s user-space packet engine come together to create a high-performance, open router architecture. In this second part, we’ll turn […]
The post Disaggregated Routing with SONiC and VPP: Lab Demo and Performance Insights – Part Two appeared first on Linux.com.
The popular penetration-testing distribution Kali Linux has dropped its latest quarterly snapshot: version 2025.3. This release continues the tradition of the rolling-release model used by the project, offering users and security professionals a refreshed toolkit, broader hardware support (especially wireless), and infrastructure enhancements under the hood. With this update, the distribution aims to streamline lab setups, bolster wireless hacking capabilities (particularly on Raspberry Pi devices), and integrate modern workflows including automated VMs and LLM-based tooling.
In this article, we’ll walk through the key highlights of Kali Linux 2025.3, how the changes affect users (both old and new), the upgrade path, and what to keep in mind for real-world deployment.
What’s New in Kali Linux 2025.3This snapshot from the Kali team brings several categories of improvements: tooling, wireless/hardware support, architecture changes, virtualization/image workflows, UI and plugin tweaks. Below is a breakdown of the major updates.
Tooling Additions: Ten Fresh PackagesOne of the headline items is the addition of ten new security tools to the Kali repositories. These tools reflect shifts in the field, toward AI-augmented recon, advanced wireless simulation and pivoting, and updated attack surface coverage. Among the additions are:
Caido and Caido-cli – a client-server web-security auditing toolkit (graphical client + backend).
Detect It Easy (DiE) – a utility for identifying file types, a useful tool in reverse engineering workflows.
Gemini CLI – an open-source AI agent that integrates Google’s Gemini (or similar LLM) capabilities into the terminal environment.
krbrelayx – a toolkit focused on Kerberos relaying/unconstrained delegation attacks.
ligolo-mp – a multiplayer pivoting solution for network-lateral movement.
llm-tools-nmap – allows large-language-model workflows to drive Nmap scans (automated/discovery).
mcp-kali-server – configuration tooling to connect an AI agent to Kali infrastructure.
patchleaks – a tool that detects security-fix patches and provides detailed descriptions (useful both for defenders and auditors).
vwifi-dkms – enables creation of “dummy” Wi-Fi networks (virtual wireless interfaces) for advanced wireless testing and hacking exercises.
Ubuntu 25.10 no longer includes the Startup Applications tool, so learn how to autostart scripts and run custom commands at login with .desktop files.
You're reading How to Run Scripts and Commands at Login in Ubuntu 25.10, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Floating Mini Panel GNOME extension now has a vertical panel option, an orientation which feel up (a bit of) screen space on widescreen displays.
You're reading Floating Mini Panel Gains New Vertical Orientation Option, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Ubuntu 25.10's Rust-based coreutils had a bug preventing automatic updates from working. Here's what happened, why it matters, and how it was resolved.
You're reading Rust Bug Broke Ubuntu 25.10 Automatic Update Checks, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Upgrade to KDE Plasma 6.5 on Ubuntu 25.10 using the official Kubuntu Backports PPA. Installation steps, advice and rollback instructions provided.
You're reading How to Upgrade to KDE Plasma 6.5 on Kubuntu 25.10, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Canonical announce beta DeepSeek and Qwen AI inference snaps for Ubuntu, both optimised to deliver better performance on Intel and ARM Ampere systems.
You're reading DeepSeek and Qwen AI Models Now Available as Ubuntu Snaps, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
In the world of modern CPUs, speculative execution, where a processor guesses ahead on branches and executes instructions before the actual code path is confirmed, has long been recognized as a performance booster. However, it has also given rise to a class of vulnerabilities collectively known as “Spectre” attacks, where microarchitectural side states (such as the branch target buffer, caches, or predictor state) are mis-exploited to leak sensitive data.
Now, a new attack variant, dubbed VMScape, exposes a previously under-appreciated weakness: the isolation between a guest virtual machine and its host (or hypervisor) in the branch predictor domain. In simpler terms: a malicious VM can influence the CPU’s branch predictor in such a way that when control returns to the host, secrets in the host or hypervisor can be exposed. This has major implications for cloud security, virtualization environments, and kernel/hypervisor protections.
In this article we’ll walk through how VMScape works, the CPUs and environments it affects, how the Linux kernel and hypervisors are mitigating it, and what users, cloud operators and admins should know (and do).
What VMScape Is & Why It Matters The Basics of Speculative Side-ChannelsSpeculative execution vulnerabilities like Spectre exploit the gap between architectural state (what the software sees as completed instructions) and microarchitectural state (what the CPU has done internally, such as cache loads, branch predictor updates, etc). Even when speculative paths are rolled back architecturally, side-effects in the microarchitecture can remain and be probed by attackers.
One of the original variants, Spectre-BTI (Branch Target Injection, also called Spectre v2) leveraged the Branch Target Buffer (BTB) / predictor to redirect speculative execution along attacker-controlled paths. Over time, hardware and software mitigations (IBRS, eIBRS, IBPB, STIBP) have been introduced. But VMScape shows that when virtualization enters the picture, the isolation assumptions break down.
VMScape: Guest to Host via Branch PredictorVMScape (tracked as CVE‑2025‑40300) is described by researchers from ETH Zürich as “the first Spectre-based end-to-end exploit in which a malicious guest VM can leak arbitrary sensitive information from the host domain/hypervisor, without requiring host code modifications and in default configuration.”
Here are the key elements making VMScape significant:
The attack is cross-virtualization: a guest VM influences the host’s branch predictor state (not just within the guest).
VirtualBox 7.2.4 is the second maintenance update in the new 7.2.x series, but users say installation fails on Ubuntu 25.10 due to a libxml2 dependency issue.
You're reading VirtualBox 7.2.4 Released (But Won’t Install on Ubuntu 25.10), a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
This week in New York City at the Open Source in Finance Forum we marked an exciting milestone. This is the fifth consecutive year that Linux Foundation Research and FINOS have collaborated on the State of Open Source in Financial Services Report, and the insights from this year's study are not only impactful for the financial services sector at large, they extend far beyond it.
The networking industry is undergoing a fundamental architectural transformation, driven by the relentless demands of cloud-scale data centers and the rise of software-defined infrastructure. At the heart of this evolution is the principle of disaggregation: the systematic unbundling of components that were once tightly integrated within proprietary, monolithic systems. This movement began with the separation […]
The post Disaggregated Routing with SONiC and VPP: Architecture and Integration – Part One appeared first on Linux.com.
SuperTuxKart 1.5 released with graphics overhaul, new benchmark mode and egg hunt tracks. It's also the final 1.x release before SuperTuxKart Evolution arrives.
You're reading SuperTuxKart 1.5 Released with Improved Graphics + More, a blog post from OMG! Ubuntu. Do not reproduce elsewhere without permission.
Hello community, here we have another set of package updates. Welcome to our new development cycle of Manjaro 25.1.0, code-named ‘Anh-Linh’. It is not sure yet if we will focus on Plasma 6.4 series or adopt 6.5 series early on. For sure we will introduce GNOME 49 and maybe Cosmic 1.0 (Beta).
Current PromotionsGet our latest daily developer images now from Github: Plasma, GNOME, XFCE. You can get the latest stable releases of Manjaro from CDN77.
Our current supported kernelsPackage Changes (10/21/25 18:30 CEST)
A list of all changes can be found here.
Check if your mirror has already synced:
16 posts - 9 participants
Copyright © 2026 WNCLUG-Asheville - All rights reserved
Developed & Designed by Alaa Haddad
