Zorin OS Update Overview

Chat about Zorin
21

Update to the Brave Browser has come through!

Release Notes v1.86.142 (Jan 21, 2026)

  • Re-added “brave-keyring” as a dependency of “brave-browser” on Linux. (#52057)
  • Removed “Web3” from the “Explorer” tab of Brave Wallet. (#50897)
  • Upgraded Chromium to 144.0.7559.97. (#52147) (Changelog for 144.0.7559.97)

It is what would be discerned as a pretty small update overall, in seeing this come through Brave does not provide change logs you have to manually navigate to their release notes portion on their website to find these logs as they do not appear through the software updater.

Part of this forum means that if a source does not provide changelogs I'll try seek them out to provide the community visibility on what changes are made incase anything breaks OR makes a great advancement after the fact so its not missed.

22

image
image1288×575 54.1 KB

Solid update today targeting the .NET frameworks

Technical description
Package: dotnet-runtime-9.0
The .NET runtime contains everything needed to run .NET applications. It includes a high performance Virtual Machine as well as the framework libraries used by .NET applications.
The .NET platform is a fast, lightweight and modular, enabling the creation of cross platform applications that work on GNU/Linux, macOS and Windows.
It particularly focuses on creating console applications, web applications, and micro-services.

Installed version: 9.0.12-0ubuntu1~24.04.1~ppa1
Available version: 9.0.12-0ubuntu1~24.04.1~ppa2

Version 9.0.113-9.0.12-0ubuntu1~24.04.1~ppa2: 

  * d/t/regular-tests/cgroup-limit/test.sh: fix autopkgtest regression in
    Ubuntu releases with rust-coreutils by comparing the cgroup filesystem ID
    instead of friendly name.

All packages being updated despite differing version numbers share the same changelog.

Technical description
Package: linux-objects-nvidia-580-6.14.0-37-generic
This package contains the Linux kernel nvidia modules for version 6.14.0-37.
You likely do not want to install this package directly. Instead, install the one of the linux-modules-nvidia-580-generic* meta-packages, which will ensure that upgrades work correctly, and that supporting packages are also installed.

Installed version: 6.14.0-37.37~24.04.1
Available version: 6.14.0-37.37~24.04.1+2

Version 6.14.0-37.37~24.04.1+2: 

  * Packaging resync (LP: #1786013)
    - [Packaging] debian/dkms-versions -- update from kernel-versions
      (adhoc/s2025.10.13)

Technical description
Package: linux-signatures-nvidia-6.14.0-37-generic
This package contains the Linux kernel signatures nvidia modules for version 6.14.0-37-generic.
You likely do not want to install this package directly.

Installed version: 6.14.0-37.37~24.04.1
Available version: 6.14.0-37.37~24.04.1+2

Version 6.14.0-37.37~24.04.1+2: 

  * Packaging resync (LP: #1786013)
    - [Packaging] debian/dkms-versions -- update from kernel-versions
      (adhoc/s2025.10.13)

their is also a resync some smaller packages.
See you all next time.

23

image
image1267×896 101 KB

Big set of Updates this afternoon rolling in.

** Starting with Security Section**

Technical description
Package: libxml2:i386
XML is a metalanguage to let you design your own markup language. A regular markup language defines a way to describe information in a certain class of documents (eg HTML). XML lets you define your own customized markup languages for many classes of document. It can do this because it's written in SGML, the international standard metalanguage for markup languages.
This package provides a library providing an extensive API to handle such XML data files.

Changes for libxml2:i386 versions:
Installed version: 2.9.14+dfsg-1.3ubuntu3.6
Available version: 2.9.14+dfsg-1.3ubuntu3.7

Version 2.9.14+dfsg-1.3ubuntu3.7:

  • SECURITY UPDATE: Infinite recursion with SGML catalogs.
    • debian/patches/CVE-2025-8732.patch: Add catalog depth and checks in
      catalog.c. Add test files in result/catalogs/recursive and
      test/catalogs/recursive.sgml.
    • CVE-2025-8732
  • SECURITY UPDATE: Infinite recursion when resolving include directives in
    RelaxNG parser.
    • debian/patches/CVE-2026-0989.patch: Add xmlRelaxParserSetIncLImit in
      include/libxml/relaxng.h. Add include limit and checks in relaxng.c. Add
      test and test files in runtest.c,
      test/relaxng/include/include-limit.rng,
      test/relaxng/include/include-limit_1.rng,
      test/relaxng/include/include-limit_2.rng, and
      test/relaxng/include/include-limit_3.rng.
    • debian/libxml2.symbols: Add new xmlRelaxParserSetIncLImit symbol.
    • CVE-2026-0989
  • SECURITY UPDATE: Infinite recursion in URI dereferencing.
    • debian/patches/CVE-2026-0990.patch: Add MAX_CATAL_DEPTH and other checks
      in catalog.c.
    • CVE-2026-0990
  • SECURITY UPDATE: Uncontrolled resource consumption in catalogs.
    • debian/patches/CVE-2026-0992.patch: Add catalog duplication checks in
      catalog.c.
    • CVE-2026-0992

Technical description
Package: libxml2-utils
XML is a metalanguage to let you design your own markup language. A regular markup language defines a way to describe information in a certain class of documents (eg HTML). XML lets you define your own customized markup languages for many classes of document. It can do this because it's written in SGML, the international standard metalanguage for markup languages.
This package provides xmllint, a tool for validating and reformatting XML documents, and xmlcatalog, a tool to parse and manipulate XML or SGML catalog files.

Changes for libxml2-utils versions:
Installed version: 2.9.14+dfsg-1.3ubuntu3.6
Available version: 2.9.14+dfsg-1.3ubuntu3.7

Version 2.9.14+dfsg-1.3ubuntu3.7:

  • SECURITY UPDATE: Infinite recursion with SGML catalogs.
    • debian/patches/CVE-2025-8732.patch: Add catalog depth and checks in
      catalog.c. Add test files in result/catalogs/recursive and
      test/catalogs/recursive.sgml.
    • CVE-2025-8732
  • SECURITY UPDATE: Infinite recursion when resolving include directives in
    RelaxNG parser.
    • debian/patches/CVE-2026-0989.patch: Add xmlRelaxParserSetIncLImit in
      include/libxml/relaxng.h. Add include limit and checks in relaxng.c. Add
      test and test files in runtest.c,
      test/relaxng/include/include-limit.rng,
      test/relaxng/include/include-limit_1.rng,
      test/relaxng/include/include-limit_2.rng, and
      test/relaxng/include/include-limit_3.rng.
    • debian/libxml2.symbols: Add new xmlRelaxParserSetIncLImit symbol.
    • CVE-2026-0989
  • SECURITY UPDATE: Infinite recursion in URI dereferencing.
    • debian/patches/CVE-2026-0990.patch: Add MAX_CATAL_DEPTH and other checks
      in catalog.c.
    • CVE-2026-0990
  • SECURITY UPDATE: Uncontrolled resource consumption in catalogs.
    • debian/patches/CVE-2026-0992.patch: Add catalog duplication checks in
      catalog.c.
    • CVE-2026-0992

Technical description
Package: libxml2
XML is a metalanguage to let you design your own markup language. A regular markup language defines a way to describe information in a certain class of documents (eg HTML). XML lets you define your own customized markup languages for many classes of document. It can do this because it's written in SGML, the international standard metalanguage for markup languages.
This package provides a library providing an extensive API to handle such XML data files.

Changes for libxml2 versions:
Installed version: 2.9.14+dfsg-1.3ubuntu3.6
Available version: 2.9.14+dfsg-1.3ubuntu3.7

Version 2.9.14+dfsg-1.3ubuntu3.7:

  • SECURITY UPDATE: Infinite recursion with SGML catalogs.
    • debian/patches/CVE-2025-8732.patch: Add catalog depth and checks in
      catalog.c. Add test files in result/catalogs/recursive and
      test/catalogs/recursive.sgml.
    • CVE-2025-8732
  • SECURITY UPDATE: Infinite recursion when resolving include directives in
    RelaxNG parser.
    • debian/patches/CVE-2026-0989.patch: Add xmlRelaxParserSetIncLImit in
      include/libxml/relaxng.h. Add include limit and checks in relaxng.c. Add
      test and test files in runtest.c,
      test/relaxng/include/include-limit.rng,
      test/relaxng/include/include-limit_1.rng,
      test/relaxng/include/include-limit_2.rng, and
      test/relaxng/include/include-limit_3.rng.
    • debian/libxml2.symbols: Add new xmlRelaxParserSetIncLImit symbol.
    • CVE-2026-0989
  • SECURITY UPDATE: Infinite recursion in URI dereferencing.
    • debian/patches/CVE-2026-0990.patch: Add MAX_CATAL_DEPTH and other checks
      in catalog.c.
    • CVE-2026-0990
  • SECURITY UPDATE: Uncontrolled resource consumption in catalogs.
    • debian/patches/CVE-2026-0992.patch: Add catalog duplication checks in
      catalog.c.
    • CVE-2026-0992

some NVIDIA and Video Encoding updates:

Technical description
Package: libnvidia-extra-580
This package provides an additional set of libraries to be used with the NVIDIA driver.

Changes for libnvidia-extra-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: libnvidia-encode-580
The NVENC Video Encoding library provides an interface to video encoder hardware on supported NVIDIA GPUs.
This package contains the nvidia-encode runtime library.

Changes for libnvidia-encode-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: libnvidia-encode-580:i386
The NVENC Video Encoding library provides an interface to video encoder hardware on supported NVIDIA GPUs.
This package contains the nvidia-encode runtime library.

Changes for libnvidia-encode-580:i386 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: libnvidia-cfg1-580
The NVIDIA binary driver provides optimized hardware acceleration of OpenGL/GLX/EGL/GLES applications via a direct-rendering X Server for graphics cards using NVIDIA chip sets.
This package contains the libnvidia-cfg.so.1 runtime library.

Changes for libnvidia-cfg1-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: xserver-xorg-video-nvidia-580
The NVIDIA binary driver provides optimized hardware acceleration of OpenGL/GLX/EGL/GLES applications via a direct-rendering X Server for graphics cards using NVIDIA chip sets.
See /usr/share/doc/nvidia-driver-580/README.txt.gz for a complete list of supported GPUs and PCI IDs.

Changes for xserver-xorg-video-nvidia-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: nvidia-compute-utils-580
This package provides utility binaries for paraller general purpose computing use cases with the NVIDIA driver.
CUDA MPS is a feature that allows multiple CUDA processes to share a single GPU context. CUDA MPS should be transparent to CUDA programs.
CUDA MPS requires a device that supports Unified Virtual Address (UVA) and has compute capability SM 3.5 or higher. Pre-CUDA 4.0 APIs are not supported under CUDA MPS.

Changes for nvidia-compute-utils-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: nvidia-dkms-580
This package builds the NVIDIA kernel module needed by the userspace driver, using DKMS. Provided that you have the kernel header packages installed, the kernel module will be built for your running kernel, and automatically rebuilt for any new kernel headers that are installed.

Changes for nvidia-dkms-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: nvidia-driver-580
This metapackage depends on the NVIDIA binary driver and on all of its libraries, to provide hardware acceleration for OpenGL/GLX/EGL/GLES/Vulkan applications on either X11 or on Wayland.
See /usr/share/doc/nvidia-driver-580/README.txt.gz for a complete list of supported GPUs and PCI IDs.

Changes for nvidia-driver-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: nvidia-utils-580
This package contains supporting binaries for the NVIDIA driver.

Changes for nvidia-utils-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Package: nvidia-kernel-source-580
This package provides the NVIDIA kernel source needed by the userspace driver.

Changes for nvidia-kernel-source-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

Technical description
Package: libnvidia-compute-580
This package provides a set of libraries which enable the NVIDIA driver to use GPUs for parallel general purpose computation through CUDA and OpenCL.

Changes for libnvidia-compute-580 versions:
Installed version: 580.95.05-0ubuntu0.24.04.3
Available version: 580.126.09-0ubuntu0.24.04.1

Version 580.126.09-0ubuntu0.24.04.1:

  • New upstream release 580.126.09 (LP: #2138245)

All of these reportedly are parroting an upstream release that fixs a bug, although i was unable to trace things back to find this mythical bug and see what got fixed.

there was also some confusing Ubuntu Notes relating to what the driver update was for mentioning new features I was also unable to locate this.

Not saying thats a bad thing, just that its not obvious what was done.

24

Nvidia 590 drivers have just landed in Software Updater

Attempting to install out of my own curiosity i was met with a error pop-up and nothing happening.

It's likely the earlier update today was in preparation for the new NVIDIA Driver to make its way through

25

If You have an Nvidia 10XX Card, You shouldn't install the 590 Driver because Nvidia cutted the Support for 10XX Cards with this Driver; it only supports the Cards from 16XX up to the current one's.

26

I have a 2060 rtx card, so i was able to install the -open version which is the recommended driver for my card, But that is a fantastic thing to note here ^^^^

If you install the 590 driver with an unsupported card you will be met with blackscreens and things not working

27

Another update coming through the pipeline:
This one is targeting the parental controls package (program)

Technical description
Package: malcontent-gui
malcontent implements support for restricting the type of content accessible to non-administrator accounts on a Linux system. Typically, when this is used, a non-administrator account will be for a child using the system; and the administrator accounts will be for the parents; and the content being filtered will be apps which are not suitable for the child to use, due to (for example) being too violent.
This is not a security boundary, and a sufficiently technically advanced user may always work around these parental controls. malcontent is not a mandatory access control (MAC) system like AppArmor or SELinux. However, its correct use by applications should provide enough of an obstacle to prevent users easily or accidentally having access to content which they shouldn’t.
This package contains the GUI to configure malcontent.

Changes for malcontent-gui versions:
Installed version: 0.11.1-1ubuntu1.3
Available version: 0.11.1-1ubuntu1.3+zorin1

Version 0.11.1-1ubuntu1.3+zorin1:

  • Added zorin-Fix-Snap-null-string-error.patch

This update does not come from a source that supports changelogs.

Changes for malcontent versions:
Installed version: 0.11.1-1ubuntu1.3
Available version: 0.11.1-1ubuntu1.3+zorin1

Version 0.11.1-1ubuntu1.3+zorin1:

  • Added zorin-Fix-Snap-null-string-error.patch

Changes for gir1.2-malcontent-0 versions:
Installed version: 0.11.1-1ubuntu1.3
Available version: 0.11.1-1ubuntu1.3+zorin1

Version 0.11.1-1ubuntu1.3+zorin1:

  • Added zorin-Fix-Snap-null-string-error.patch

Changes for libmalcontent-0-0 versions:
Installed version: 0.11.1-1ubuntu1.3
Available version: 0.11.1-1ubuntu1.3+zorin1

Version 0.11.1-1ubuntu1.3+zorin1:

  • Added zorin-Fix-Snap-null-string-error.patch

Changes for libmalcontent-ui-1-1 versions:
Installed version: 0.11.1-1ubuntu1.3
Available version: 0.11.1-1ubuntu1.3+zorin1

Version 0.11.1-1ubuntu1.3+zorin1:

  • Added zorin-Fix-Snap-null-string-error.patch
28

Good morning everyone,

it is 10:27AM NZDT 25/01

Some new updates have been pushed out today relating to the GNOME graphical shell but specifically with zorin OS related patches ontop.

This update fixs a bug relating to how the ethernet icon as well as wifi icons will show up on the panel/system tray even when users are not connected via ethernet or wifi and have no connections available.

The two packages involved in this update are:

gnome-shell

version 46.0-0ubuntu6~24.04.13+zorin1

gnome-shell-common

version. 46.0.0ubuntu6~24.04.13+zorin1

Next weekend on sunday 01/02 at 10:30am NZDT I will publish next weeks installment as we moved to a weekly overview, rather then a constant flood. Stay tuned.

1 Like
29

So many of us will see you post, on Saturday, the day before you post it, thanks to your timezone :slight_smile:

2 Likes
30

Good Morning everyone,

it is 10:40AM NZDT 01/02

Some interesting updates this week to quite a few packages. In Summary the following have seen updates:

Monday:

Software-properties-gtk

Software-properties-common

python3-software-properties

Ver: 0.99.49.3+zorin1 > 0.99.49.4+zorin1

modified for Zorin OS 18 which is used for managing independent software vendor sources, ie. where packages & updates come from.

Ubuntu-release-upgrader-gtk

Ubuntu-release-upgrader-core

python3-distupgrade

Ver: 1.24.04.27+zorin1 > 1.24.04.28+zorin1

the changelog only says "Made modifications for ZorinOS18" I am not sure if this means that 17 users can now safely upgrade to 18 OR if this is just in preperation for that news.

Python-apt-common

Python3-apt

Ver: 2.7.7ubuntu5.1+zorin1 > 2.7.7ubuntu5.2+zorin1

typically the zorin suffix means a patch or tweaks by zorin for Zorin OS and the .x refers to a security or maintence rather then a feature update.

gir1.2-gdm-1.0

libgdm1

gdm3

Ver: 46.2-1ubuntu1~24.04.5+zorin1 > 46.2-1ubuntu1~24.04.6+zorin1

Notes reference the big upgrade is a zorin session fallback patch likely meaning this solve a display issue for GNOME (the DE) where it could not fallback and would possibly result in a white screen of death.

Tuesday:

zorin-os-artwork

zorin-os-desktop

zorin-os-standard

ver: 1.7.8 > 1.7.9

Rerfresh dependencies (usually this means updating them or bumping them to a more modern version) removed folder-color from desktop recommends.

zorin-os-minimal

ver: 1.7.8 > 1.7.9

this is a command line system that lets you Boot - Detect hardware - connect to a network - install packages - perform diagnostics. it also saw the same updates as zorin-os-artwork

zorin-os-default settings

zorin-os-printer-test-page

Ver: 18.1.5 > 18.1.6

Patches brave.Browser.desktop file which is the desktop shortcut to fix a upstream issue related to NoDisplay placement.

this patch also applies to the printer-test-page used for testing and calibrating printers.

Wednesday

linux-firmware

Ver: 20240318.git3b128b60-0ubuntu2.22 > 20240318.git3b128b60-0ubuntu2.23

last set of firmware patches and upgrades for Intel Wifi Chips, Xe, VPU, symbolic links as well as some updated NPU firmware. also noticeably the following notes. MT7925 updated bluetooth firmware and binarys as well as updated firrmware for MT7925 Wifi divice and missing firmware for Intel Panther Lake NPU added.

libssl3t64:i386

openssl

Ver: 3.0.13-0ubuntu3.6 > 3.0.13-0ubuntu3.7

Packages related to OpenSSL related to cryptographic protocols for secure communication online Big security update with 11 CVE's patched normally we only see 1-3 being patched in a security update.

Thursday

brave-browser

Ver: 1.86.142 > 1.86.146

updated to a newer version of Chormium fixed inability to fetch jupiter and squid router quotes, fixed freezing and stalling at launch and when closing vertical tabs in some cases, fixed google page being displayed under brave://history/syncedTabs in certain cases.

Friday

libnuma1:i386

libnuma1

numactl

Ver: 2.0.18-1build1 > 2.0.18-1ubuntu0.24.04.1

Bug fix to do with non uniform memory architecture scheduling or memory placement policies and persistant files.

linux-libc-dev

linux-tools-common

ver: 6.8.0-90.91 > 6.8.0-94-96

despite fixing 3 CVE's (security issues/exploits) it is classified as a normal update because it makes progress on a bug to do with kernal version tracking.

Saturday

i965-va-driver:i386 (intel VAAPI driver for HD Graphics and G45 family)

i965-va-driver

version: 2.4.1+dfsg1-1build2 > 2.4.1+dfsg1-1ubuntu0.1

Minor patch for intel Grapics/including intergrated graphics used commonly in laptop systems.

fwupd

libfwupd2

Version: 1.9.31-0ubuntu1~24.04.1 > 1.9.33-0ubuntu1~24.04.1ubuntu1

Firmware update supporting USB, fwupd lets session software update your devices firmware, either using command line tools or the gnome software manager.

libqpdf29t64

Ver: 11.9.0-1.1build1 > 11.9.0-1.1ubuntu0.1

bug fixes for this runtime which lets you inspect and view PDF's including encryption and decryption.

xwayland

Ver 2:23.2.6-1ubuntu0.9 > 2:23.2.6-1ubuntu0.8

Xwayland provides an X11/X server that runs ontop of wayland, using wayland input devices and forwarding either the root window or individual top windows to wayland, this is essential as GNOME50 will later remove X11. mainly a bug fix with Mesa drivers.

Note there was NO updates on sunday morning.

Next weekend on sunday 08/02 at 10:30 I will publish next weeks instalment as we moved to a weekly overview, rather then a constant flood. Stay tuned.

1 Like