Week 15, 2026

EbonJaeger

Heya folks! It's sync day, and that means it's time for the weekly Solus roundup!

Both kernel packages this week have been updated to 6.18.21. This is a bugfix release for the 6.18 series. The full changelog is available here.

Qt6 has been updated to 6.10.3. This is a bugfix release for the 6.10 series. The full changelog is available here.

KDE Plasma has been updated to 6.6.4. This is also mainly a bugfix release for the 6.6 series. Check out what changed here.

Samba has been updated to 4.23.6. This moves our packages from the 4.22 to the 4.23 maintenance series. All the release notes in this series can be found here.

EasyEffects has been updated to 8.1.8. Version 8 completes the port of EasyEffects to the Qt framework from the original GTK4, though most of the user experience stays the same. Perhaps most notably, there is now proper tray icon and background playing support so you don't need to keep the EasyEffects window open. The full changelog can be found here.

The package syncthingtray has been added to the repository. Syncthing Tray provides a tray icon and further platform integration for Syncthing. It also includes Dolphin integration and a Plasma widget for KDE Plasma users (packages installed separately).

Coming up in the near future, we will be paring down our PulseAudio package to only provide the libraries and utilities. It will no longer be possible to use PulseAudio as the system's sound daemon! PipeWire has been the default on Solus for almost three years now, and usage of PulseAudio has been unsupported by us since that change.

Security updates

We have a lot of security updates this week. Make sure you install available updates to receive the latest vulnerability fixes!

capnproto was updated to 1.4.0-7 (@Jaredy899). Includes security fixes for CVE-2026-32239, CVE-2026-32240.
firefox was updated to 149.0.2-396 (@HarveyDevel). Includes security fixes for CVE-2026-5735, CVE-2026-5733, CVE-2026-5732, CVE-2026-5731, CVE-2026-5734.
glibc was updated to 2.43-139 (@EbonJaeger). Includes security fixes for CVE-2026-4437, CVE-2026-4438.
golang was updated to 1.26.2-141 (@silkeh). Includes security fixes for CVE-2026-32280, CVE-2026-32281.
libcap2 was updated to 2.78-18 (@EbonJaeger). Includes security fixes for CVE-2025-1390, CVE-2026-4878.
libcdio was updated to 2.3.0-11 (@Jaredy899). Includes security fixes for CVE-2024-36600.
libpng was updated to 1.6.57-36 (@EbonJaeger). Includes security fixes for CVE-2026-34757.
musl was updated to 1.2.6-12 (@EbonJaeger). Includes security fixes for CVE-2025-26519.
openssl was updated to 3.6.2-58 (@EbonJaeger). Includes security fixes for CVE-2026-28387, CVE-2026-28386, CVE-2026-31789, CVE-2026-2673, CVE-2026-28389, CVE-2026-28388, CVE-2026-31790, CVE-2026-28390.
pam was updated to 1.7.2-39 (@uni-dos). Includes security fixes for CVE-2025-6020.
perl-dbi was updated to 1.647-16 (@Jaredy899). Includes security fixes for CVE-2014-10402.
perl-image-exiftool was updated to 13.50-25 (@Jaredy899). Includes security fixes for CVE-2026-3102.
python-cryptography was updated to 46.0.7-36 (@EbonJaeger). Includes security fixes for CVE-2026-39892.
python-requests was updated to 2.33.1-24 (@Jaredy899). Includes security fixes for CVE-2026-25645.
python-wheel was updated to 0.46.3-24 (@Jaredy899). Includes security fixes for CVE-2026-24049.
qt6-webengine was updated to 6.10.3-69 (@HarveyDevel, @HarveyDevel, @HarveyDevel). Includes security fixes for CVE-2026-5275, CVE-2026-5279, CVE-2026-5291, CVE-2026-5287, CVE-2026-5290, CVE-2026-5277, CVE-2026-5285, CVE-2026-5284, CVE-2026-5292, CVE-2026-5280, CVE-2026-5272, CVE-2026-5282, CVE-2026-5289, CVE-2026-5283, CVE-2026-5276, CVE-2026-5281, CVE-2026-5274.
thunderbird was updated to 149.0.2-254 (@HarveyDevel). Includes security fixes for CVE-2026-5735, CVE-2026-5733, CVE-2026-5732, CVE-2026-5731, CVE-2026-5734.

General updates

The full list of updated packages can be found here.

For the list of currently known issues, see the dedicated thread for it. If you begin experiencing a bug, please look for an issue on our issue tracker, and open a new one if one does not exist.

That’s all for this week, folks! We'll be here same time, same place next week for another roundup of the news!

ForumPheasant

EbonJaeger
Holy systemd Batman! That was a chonky update, and all went well! Thank you devs! Oh, and my 66 year old father says thank you as well, he's enjoying KDE Solus quite a bit compared to Win 11. I'm happy this distro is catered to desktop users for that very reason. Have a lovely weekend everyone!

Ps. Quick question, is there a possibility in the future for a minimal ISO? I've been enjoying my time in niri, and thought a minimal ISO would be interesting to explore other WMs. Probably would confuse new users though if they get a tty by mistake, so I understand if a minimal ISO is out of reach. Either way, thank y'all for the Sway and Niri packages!

Xoph

There was a small problem with EasyEffects. When launched it immediately crashed on Plasma. It seems that it needs QTGraphs, but maybe wasn't set as a dependency. I installed QTGraphs sudo eopkg it qt6-graphs and it launches fine. Have not had a chance to test it. Beyond that everything went great.

Harvey

Xoph

Thanks for reporting.

Cherry-picked easyeffects for missing rundep

brent

updated and rebooted. Back to work. All apps behaving nicely. Thanks crew, appreciated.

banger

All good nice early sync 2 x Plasma working nicely, thanks team.

JayC

All working for me on my Plasma systems. Thanks for making my move from Windows a boring experience as far as nasty surprises go. Much easier to learn Linux when you are not having to fix issues 😉

EbonJaeger

Cherry-picked python-aiohttp for CVE-2026-22815.

totalmongobaer

Everything goes fine after reboot, thanks for all of you!

Axios

It seems it was not my budgie.

However I do have the to many kernel issue again will resolve that later.

brent

Axios It seems it was not my budgie.

Running the same 2% you are.

Axios However I do have the to many kernel issue again will resolve that later.

thought that one was resolved. maybe not

Clintre

Axios What am I missing here. It shows you are only using 37Mb (2%) of your 1.9GB tmpfs which is excellent.

User_007

Big sync, all went well on my desktop. Thanks for updating easyeffects to v8. Such a nice tool and it's free. Windows user sure are jealous 😛

penny-farthing

174 Solus updates processed for Budgie today, and I have the following to report.

During the reboot, after installing the updates, I get a Ctrl+Alt+F3 type screen instead of the usual login screen:

I was able to get around this by pressing Ctrl+Alt+F7, which restored the login.

But if I reboot again, the problem recurs.
What can I do to fix this issue?

Thank you in advance for your help.

penny-farthing

Following up on my first post, this morning (10:45 AM French time), I turned on my computer and was able to access the login screen directly.

A notification in Solus informed me of two updates to process: one for the Flatpak Blanket application (new version 0.8.0) and the other for the xdg-dbus-proxy package (new version 0.1.7).

Once done, I rebooted my PC, and again, I had to press Ctrl+Alt+F7 to access the login screen.
The command sudo eopkg dc didn't change anything, and I don't understand why.

What do you advise me to do?

P.S. At this time (1:35 PM, French time), the problem has not recurred. Any ideas?

Axios

Thanks to Whom ever it seems opensnitch is now working had no issues installing
and its loading at every reboot.
Will be testing out again.

Solus Budgie

EbonJaeger

Cherry-picked xdg-dbus-proxy for GHSA-vjp5-hjfm-7677.

Clintre

ForumPheasant You put QT and Plasma update together and it gets big in a hurry.

alfisya

ForumPheasant Quick question, is there a possibility in the future for a minimal ISO?

It is kinda hard to do this at the moment. Though when we eventually uses AerynOS tooling, there is a possibility. No promises, no ETA.

Jaredy899

For those interested, the previous package tetrs is now deprecated and is now found under tetro-tui.

Axios

Clintre I was just showing that its working now after todays updates
dunno what did it.
Same Budgie and comp that it wasnt working on before.
Wasnt anything I did.
Shrugs.

brent

Axios dunno what did it.

https://github.com/getsolus/packages/commit/c19cacbd9026ddb7136855518b5c78db282c809a
maybe it was the solseek update in today's sync (or in conjunction with another moving part)

Clintre

Axios Got ya, misunderstood. I made some slight tweaks to get remaining ghosts. It actually should not have made a change for that, but we will take it 😉