-

France sets a PQC deadline; AMD ships its own Linux distro
France draws a hard line on post-quantum by 2027, AMD ships its own Linux distro for the AI dev platform nobody saw coming, and OpenSSH 10.4 now fails loud if your kernel is missing SECCOMP — quieter weeks exist.
-

FBI seizes NetNut proxy platform tied to 2M-device Popa botnet
Quiet holiday week, but the kernel mailing list and the FBI both had eventful Wednesdays.
-

Secure Boot certificate expiration: what actually breaks and when
Secure Boot certs expiring, etcd patching websocket auth, EKS gets rollback, and Linux 7.3 targets NVMe bottlenecks — solid infrastructure week.
-

Linux 7.2 targets August; an 18-year-old GPU bug surfaces; PQC lands in pip
An 18-year-old bug surfaces via GPU fleet telemetry, AI tooling is making engineers work more hours not fewer, and post-quantum crypto just became a single pip install — all in the same news cycle.
-

Weak RSA keys with sparse bit patterns found in real-world Certificate Transparency logs
Git 2.55, Linux 7.2-rc1, and a real RSA key vulnerability in the wild — a quieter news day with a few sharp edges worth your attention.
-

LWN: Kernel 7.2 gets allocation tokens and boot-time structure-layout randomization
MinIO archived, kernel hardening incoming, Podman 6 out — a solid infrastructure day under all the AI noise.
-

Lambda gets stateful MicroVMs; 94% of orgs report cloud breaches
Lambda now hands you a full Firecracker VM per session, Cloudflare spent six weeks chasing a race condition in a Rust HTTP library, and Trail of Bits just showed what a frontier model actually does when pointed at real codebases – 64 PRs, not a blog post.
-

GitLab 19.1 ships; malware stuffs CBRN keywords to blind AI scanners
A 753B open-weights model dropped under MIT, GitLab shipped secret-scan GA, and malware authors are now stuffing CBRN keywords into comments specifically to blind the AI tools scanning for them.
-

AI-generated patches slow Linux ARM64; AWS bets big on agentic everything
AI-generated patches are backing up Will Deacon’s ARM64 review queue, AWS is shipping agents that act before asking permission, and the LeadDev piece quietly explains why your deployment metrics no longer mean what you think they mean.
-

Linux 7.2 lands cache-aware scheduling; curl closes its vuln queue for the summer
Linux 7.2 is landing real work – cache-aware scheduling, a two-line IOPS fix – while Daniel Stenberg draws a line on CVE noise. Google’s data-agent announcement is mostly previews dressed as GA.