Week 20, 2026

EbonJaeger

Heya folks! It's sync day, and that means it's time for the weekly Solus roundup!

Our kernel packages have been updated this week. The mainline package is now at version 7.0.7, and the LTS package is at 6.18.30. These versions contain patches for the recent ssh-keysign-pwn vulnerability, and improved patches for DirtyFrag. These patches should make the new kernel packages equivalent to he most recent point-releases: 7.0.7 patched to match 7.0.8, and 6.18.30 patched to match 6.18.31. The latest point releases were tagged too close to sync time to warrant a full rebuild.

eopkg has been updated to version 4.5.0. @joebonrichie has spent a lot of time recently on making eopkg faster. Here are the highlights:

eopkg now uses lzma_mt instead of the lzma module found in the standard library.

This can provide a significant speedup for packagers during the compression of packages, especially at higher compression levels. It allows packages to be compressed with multiple xz blocks, allowing for parallelized decompression.

Note: We'll be rebuilding our larger packages with the new eopkg, which will allow for faster decompression; however, do note the majority of the packages in the repository are too small to be compressed with multiple blocks, so they will not necessarily benefit.
eopkg now shows live extraction progress of package installation.
A smattering of optimizations have been applied after collecting and observing profiles of common eopkg operations.
1. Repository information is now cached in-memory after it is read once, instead of continually re-reading from the xml file.
2. A nasty Python 2 workaround has has been removed, as it is no longer necessary in Python 3.7 onward, providing a general speedup for many common operations.
3. The pickle format used in our "LazyDB" cache files is now using the default Python pickle protocol (currently version 4), instead of version 2. Previously, we were explicitly using version 2 for compatibility with the Python 2 build of eopkg to avoid continually rebuilding the pickle caches. Version 4 of the pickle cache format has a number of performance improvements which generally speed up eopkg.
4. A number of smaller optimizations that generally speed up dependency resolution time.

Check out the full release notes here.

Our PackageKit backend has been updated alongside eopkg, providing support for showing the live extraction progress of packages. Additionally, it contains a number of edge case fixes for package filtering and resolution issues, resolving an issue where Plasma Discover would display package sizes as "Unknown" in the updates view.

Security updates

As usual, there are a bunch of security updates. Make sure to install updates to get the latest vulnerability fixes!

glances was updated to 4.5.4-61 (@clintre). Includes security fixes for CVE-2026-34839, CVE-2026-35587, CVE-2026-35588.
nginx was updated to 1.30.1-55 (@Jaredy899). Includes security fixes for CVE-2026-42946, CVE-2026-42934, CVE-2026-28755, CVE-2026-27654, CVE-2026-27651, CVE-2026-42945, CVE-2026-40460, CVE-2026-28753, CVE-2026-27784, CVE-2026-32647, CVE-2026-42926, CVE-2026-40701.
php was updated to 8.5.6-114 (@Jaredy899). Includes security fixes for CVE-2026-7263, CVE-2025-14179, CVE-2026-6104, CVE-2026-7261, CVE-2026-6722, CVE-2026-6735, CVE-2026-7568, CVE-2026-7259, CVE-2026-7262, CVE-2026-7258.
python-jupyter-server was updated to 2.18.2-8 (@Jaredy899). Includes security fixes for CVE-2026-35397, CVE-2026-40110, CVE-2025-61669, CVE-2026-40934.
python-urllib3 was updated to 2.7.0-23 (@Jaredy899). Includes security fixes for CVE-2026-44432, CVE-2026-44431.
uv was updated to 0.11.14-14 (@palto42). Includes security fixes for GHSA-pjjw-68hj-v9mw.
vim was updated to 9.2.0481-164 (@Jaredy899). Includes security fixes for CVE-2026-44656, CVE-2026-45130.

General updates

The full list of updated packages can be found here.

For the list of currently known issues, see the dedicated thread for it. If you begin experiencing a bug, please look for an issue on our issue tracker, and open a new one if one does not exist.

That’s all for this week, folks! We'll be here same time, same place next week for another roundup of the news!

Harvey

For the record you won't notice the benefits of lzma_mt for the sync transaction. Because you would be using the old eopkg for that update and as stated packages need to be re-built to take advantage of it so not everything will see a noticeable benefit.

craigtoyoracer

Harvey All good here on Budgie, I know it was only 60 pkg.s but 1 min. 30 sec. start to finish is " Sic man "

about those "pickles" are they dill, gherkin. bread and butter. 🙂 never heard the term before.

Xoph

All good on my systems. Thanks for the explanation on the kernel patch. I just got done patching some servers to 7.0.8 so would have been curious. That makes complete sense.

JayC

LOL figures I ask in the old update thread and then it gets updated and I look like a whiner 🤣

All good on my systems. Also just installed it on my brother's laptop last week. He not exactly computer literate as he struggles using his AppleTV. His laptop was not suitable for Windows 11 according to Microsoft. Installed it with KDE and set it up similar to how he had it and he is happy and using it just fine. So spreading the wonders of Linux and Solus, one Windows convert at a time.

evolve-8

All good on my pc with plasma. The fwupd 2.1.3 release fixed my issue.

VTMarik

I cannot turn bluetooth on since the update, I don't know what's going on.

Anonymous13

VTMarik Same here. I wouldn't have noticed it straight away, but thanks to your comment I've checked my Bluetooth settings and I agree with you: Bluetooth switch can't be toggled. -> my DE = Gnome

stevo352@solus ~ $ bluetoothctl

Agent registered

[bluetoothctl]> power on

No default controller available

CorvusRuber

I was hoping that updating megacmd to the latest version could fix my issue (namely, mega-cmd-server eating up 100% of CPU bringing temperatures up to a cozy 85° C) but that didn't work. It's either a long standing mega bug or some weird interaction between mega and kernel 7 (this spike in CPU activity happened after linux 7 was brought in, so maybe there's some connection between the two).

I don't think it's something that could be fixed on the Solus side of things, though.

Harvey

I know its not really helpful for you two but for the record bluetooth is working fine for me on Plasma (Highly unlikely to be specific to a DE).

There were several bluetooth changes listed in the changelog for kernel 7.0.7. Upstream might have introduced a regression for some hardware.

CorvusRuber

Harvey

I noticed only now, but on my Framework 13 bluetooth works fine on 7.0.6 and does not work on 7.0.7.

inxi -eE output for quick reference:

System:

Host: corvus-framework Kernel: 7.0.7-339.current arch: x86_64 bits: 64

Desktop: KDE Plasma v: 6.6.4 Distro: Solus 4.9 serenity

Machine:

Type: Laptop System: Framework product: Laptop 13 (AMD Ryzen 7040Series)

v: A7 serial: <superuser required>

Mobo: Framework model: FRANMDCP07 v: A7 serial: <superuser required>

Firmware: UEFI vendor: INSYDE v: 03.18 date: 01/08/2026

Battery:

ID-1: BAT1 charge: 57.7 Wh (95.9%) condition: 60.2/60.6 Wh (99.3%)

CPU:

Info: 8-core model: AMD Ryzen 7 7840U w/ Radeon 780M Graphics bits: 64

type: MT MCP cache: L2: 8 MiB

Speed (MHz): avg: 1100 min/max: 419/5135 cores: 1: 1100 2: 1100 3: 1100

4: 1100 5: 1100 6: 1100 7: 1100 8: 1100 9: 1100 10: 1100 11: 1100 12: 1100

13: 1100 14: 1100 15: 1100 16: 1100

Graphics:

Device-1: Advanced Micro Devices [AMD/ATI] Phoenix1 driver: amdgpu v: kernel

Display: wayland server: X.org v: 1.21.1.22 with: Xwayland v: 24.1.10

compositor: kwin_wayland driver: gpu: amdgpu resolution: 2256x1504~60Hz

API: EGL v: 1.5 drivers: kms_swrast,radeonsi,swrast

platforms: gbm,wayland,x11,surfaceless,device

API: OpenGL v: 4.6 compat-v: 4.5 vendor: amd mesa v: 26.0.6 renderer: AMD

Radeon 780M Graphics (radeonsi phoenix ACO DRM 3.64 7.0.7-339.current)

API: Vulkan v: 1.4.341 drivers: radv,llvmpipe surfaces: N/A

Info: Tools: api: clinfo, eglinfo, glxinfo, vulkaninfo

de: kscreen-console,kscreen-doctor wl: wayland-info

x11: xdpyinfo, xprop, xrandr

Audio:

Device-1: Advanced Micro Devices [AMD/ATI] Radeon High Definition Audio

driver: snd_hda_intel

Device-2: Advanced Micro Devices [AMD] Audio Coprocessor

driver: snd_pci_ps

Device-3: Advanced Micro Devices [AMD] Ryzen HD Audio

driver: snd_hda_intel

API: ALSA v: k7.0.7-339.current status: kernel-api

Server-1: PipeWire v: 1.6.4 status: active

Network:

Device-1: MEDIATEK MT7922 802.11ax PCI Express Wireless Network Adapter

driver: mt7921e

IF: wlp1s0 state: up mac: 4c:82:a9:4c:c8:01

IF-ID-1: br-f8e75cd5c07d state: down mac: 22:a0:4f:90:ff:5d

IF-ID-2: docker0 state: up speed: 10000 Mbps duplex: unknown

mac: de:48:43:45:f3:45

IF-ID-3: tailscale0 state: unknown speed: -1 duplex: full mac: N/A

IF-ID-4: veth50adec9 state: up speed: 10000 Mbps duplex: full

mac: 7a:25:02:04:e8:b0

Bluetooth:

Device-1: MediaTek Wireless_Device driver: btusb type: USB

Report: rfkill ID: hci0 state: up address: see --recommends

Drives:

Local Storage: total: 3.64 TiB used: 2.05 TiB (56.4%)

ID-1: /dev/nvme0n1 vendor: Western Digital model: WD BLACK SN850X 4000GB

size: 3.64 TiB

Partition:

ID-1: / size: 3.51 TiB used: 2.05 TiB (58.4%) fs: ext4 dev: /dev/nvme0n1p2

Swap:

ID-1: swap-1 type: partition size: 68.21 GiB used: 0 KiB (0.0%)

dev: /dev/nvme0n1p3

ID-2: swap-2 type: zram size: 8 GiB used: 0 KiB (0.0%) dev: /dev/zram0

Sensors:

System Temperatures: cpu: 42.9 C mobo: 42.2 C gpu: amdgpu temp: 42.0 C

Fan Speeds (rpm): fan-1: 2184

Info:

Memory: total: 64 GiB available: 60.63 GiB used: 4.33 GiB (7.1%)

Processes: 442 Uptime: 3m Shell: fish inxi: 3.3.40

Valmy

Bluetooth is out of service with the latest update.

Valmy

Bluetooth is out of service with the latest update.

Phiqu

Xfce here, update went well, bluetooth (switch on off) is also working.

bubba66

All 3 systems updated without any drama 🙂

2 x Gnome Bluetooth operational (Desktops)
1 x Plasma Bluetooth operational (Dell Laptop)

Thanks

Izanagi

Bluetooth regression is Linux 7.0.7 issue. Booted up with older kernel for now while waiting for the fix to arrive.

https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth.git/commit/?id=e3ac0d9f1a205f33a43fba3b79ef74d2f604c78b

VTMarik

Izanagi How does one ascertain an ETA if there is one?

Harvey

Izanagi

This was helpful thank you. I am building 7.0.8 with that patch now (Not in 7.0.8 proper). But it will not be on polaris (stable) until next sync.

BuzzPCSOS

All good for me on Plasma. Great work from the team making Solus better. Thank you.
Edit: Bluetooth working on two laptops and a tablet.

Xiklane

Identique pour moi plus de Bluetooth.

sinon très bon travail merci a toute l’équipe !!!

banger

All good on 2 x Plasma, thanks team.

Sticky

Yep, bluetooth is dead here.