NoMachine 9.6.3 now available for download$$$Luxembourg; May 29th; 2026$$$$$$NoMachine makes available version 9.6.x providing fixes for issues found in previous releases affecting USB device handling; file transfer reliability and Kerberos authentication. Additionally; this update includes a patch to prevent possible XSS (Cross-Site Scripting) with browser sessions.$$$$$$Trouble Reports solved$$$$$$Here is the complete list of fixes released in version 9.6.3:$$$$$$TR12W11668 - Sometimes the USB camera name is not properly identified$$$TR04X11801 - USB device forwarded to Linux may disconnect after 2 hours$$$TR11W11636 - Copying a file from remote to a shared subfolder sometimes hangs$$$TR05X11814 - Log rotation may ignore setting of the UsersDirectoryPath key$$$TR04X11807 - Windows users may be unable to use Kerberos authentication with Enterprise Client$$$TR05X11821 - Possible execution of an arbitrary XXS script during the login via web$$$TR05X11822 - It may be not possible to connect to the desktop when SDDM login manager is used$$$$$$Supported Platforms$$$$$$Windows 32-bit/64-bit 7/8/8.1/10/11$$$Windows Server 2008/2012/2016/2019/2022$$$$$$Mac Intel OS X 10.9 to 10.11; macOS 10.12 to 26$$$$$$Linux 32-bit and 64-bit$$$RHEL 6.0 to RHEL 10$$$CentOS 6.0 to CentOS 8.5$$$CentOS Stream 8 to CentOS Stream 10$$$SLED 11 to SLED 15$$$SLES 11 to SLES 15$$$openSUSE 11.x to openSUSE 16.x$$$Fedora 10 to Fedora 44$$$Debian 5 to Debian 13$$$Ubuntu 8.04 to Ubuntu 26.04$$$$$$Raspberry Pi 2 ARMv7$$$Raspberry Pi 3 ARMv7/ARMv8$$$Raspberry Pi 4 ARMv7/ARMv8$$$Raspberry Pi 5 ARMv7/ARMv8$$$$$$ARMv7/ARMv8$$$$$$Important Notices$$$$$$Customers of Enterprise Cloud Server Cluster v8 who wish to upgrade to v9 should refer to the instructions at: https://www.nomachine.com/AR11V01257. Online subscriptions v9 for the enterprise products require a NoMachine server v9 and are not compatible with servers v8 or earlier. Please do not hesitate to contact us via any of the available channels for assistance.$$$$$$All NoMachine Enterprise software for evaluation can now be activated using a license file which is generated from the User Area and activated online. For further instructions; users can consult the following article https://kb.nomachine.com/AR10K00713.$$$$$$The RPM packages are now built using a more recent version of RPM in order to support also SHA256 digest and to allow signature verification on recent RPM-based systems. On old OS versions like Open SUSE 11.2 and earlier; it will be necessary to install NoMachine tar.gz packages.$$$$$$The current version doesnt provide full support for Wayland-native virtual desktops as required by adopting GNOME 49; a possible temporary solution is to downgrade GNOME or adopt a lightweight desktop. More details are available here: https://kb.nomachine.com/AR10W01330$$$$$$Download NoMachine Packages$$$$$$You can download the latest packages suitable for your Operating System from the NoMachine Web site at the following URL: https://download.nomachine.com . Customers holding a valid subscriptions can log in to their User Area and download the appropriate server package for their subscription from the Enterprise > Downloads section. Note that Support Contacts are no longer entitled to access packages from the Customers User Area. They can however download the appropriate package from the https://download.nomachine.com/enterprise/ page.$$$$$$Automatic updates$$$$$$The automatic check for updates is scheduled to check our repositories every two days.$$$$$$To update the free NoMachine package:$$$- Open the NoMachine User Interface from your Programs Menu.$$$- From the Machines panel click on Settings; then on Server and finally on Updates.$$$- Then click on the Check now button.$$$$$$To update the NoMachine Enterprise Client immediately:$$$- Click on Settings; from the Player panel click Updates.$$$- Then click on the Check now button.$$$

NoMachine 9.6.3 now available for download$$$Luxembourg; May 29th; 2026$$$$$$NoMachine makes available version 9.6.x providing fixes for issues found in previous releases affecting USB device handling; file transfer reliability and Kerberos authentication. Additionally; this update includes a patch to prevent possible XSS (Cross-Site Scripting) with browser sessions.$$$$$$Trouble Reports solved$$$$$$Here is the complete list of fixes released in version 9.6.3:$$$$$$TR12W11668 - Sometimes the USB camera name is not properly identified$$$TR04X11801 - USB device forwarded to Linux may disconnect after 2 hours$$$TR11W11636 - Copying a file from remote to a shared subfolder sometimes hangs$$$TR05X11814 - Log rotation may ignore setting of the UsersDirectoryPath key$$$TR04X11807 - Windows users may be unable to use Kerberos authentication with Enterprise Client$$$TR05X11821 - Possible execution of an arbitrary XXS script during the login via web$$$TR05X11822 - It may be not possible to connect to the desktop when SDDM login manager is used$$$$$$Supported Platforms$$$$$$Windows 32-bit/64-bit 7/8/8.1/10/11$$$Windows Server 2008/2012/2016/2019/2022$$$$$$Mac Intel OS X 10.9 to 10.11; macOS 10.12 to 26$$$$$$Linux 32-bit and 64-bit$$$RHEL 6.0 to RHEL 10$$$CentOS 6.0 to CentOS 8.5$$$CentOS Stream 8 to CentOS Stream 10$$$SLED 11 to SLED 15$$$SLES 11 to SLES 15$$$openSUSE 11.x to openSUSE 16.x$$$Fedora 10 to Fedora 44$$$Debian 5 to Debian 13$$$Ubuntu 8.04 to Ubuntu 26.04$$$$$$Raspberry Pi 2 ARMv7$$$Raspberry Pi 3 ARMv7/ARMv8$$$Raspberry Pi 4 ARMv7/ARMv8$$$Raspberry Pi 5 ARMv7/ARMv8$$$$$$ARMv7/ARMv8$$$$$$Important Notices$$$$$$Customers of Enterprise Cloud Server Cluster v8 who wish to upgrade to v9 should refer to the instructions at: https://www.nomachine.com/AR11V01257. Online subscriptions v9 for the enterprise products require a NoMachine server v9 and are not compatible with servers v8 or earlier. Please do not hesitate to contact us via any of the available channels for assistance.$$$$$$All NoMachine Enterprise software for evaluation can now be activated using a license file which is generated from the User Area and activated online. For further instructions; users can consult the following article https://kb.nomachine.com/AR10K00713.$$$$$$The RPM packages are now built using a more recent version of RPM in order to support also SHA256 digest and to allow signature verification on recent RPM-based systems. On old OS versions like Open SUSE 11.2 and earlier; it will be necessary to install NoMachine tar.gz packages.$$$$$$The current version doesnt provide full support for Wayland-native virtual desktops as required by adopting GNOME 49; a possible temporary solution is to downgrade GNOME or adopt a lightweight desktop. More details are available here: https://kb.nomachine.com/AR10W01330$$$$$$Download NoMachine Packages$$$$$$You can download the latest packages suitable for your Operating System from the NoMachine Web site at the following URL: https://download.nomachine.com . Customers holding a valid subscriptions can log in to their User Area and download the appropriate server package for their subscription from the Enterprise > Downloads section. Note that Support Contacts are no longer entitled to access packages from the Customers User Area. They can however download the appropriate package from the https://download.nomachine.com/enterprise/ page.$$$$$$Automatic updates$$$$$$The automatic check for updates is scheduled to check our repositories every two days.$$$$$$To update the free NoMachine package:$$$- Open the NoMachine User Interface from your Programs Menu.$$$- From the Machines panel click on Settings; then on Server and finally on Updates.$$$- Then click on the Check now button.$$$$$$To update the NoMachine Enterprise Client immediately:$$$- Click on Settings; from the Player panel click Updates.$$$- Then click on the Check now button.$$$

NoMachine 9.5.7 now available for download$$$Luxembourg; May 7th; 2026$$$$$$NoMachine makes available version 9.5.7; providing fixes for issues found in previous releases and a possible privilege escalation on Windows. It also sports updates to some third parties libraries and enhancements to support for CA certificates.$$$$$$OpenSSL libraries shipped by NoMachine client and server packages have been updated to v3.0.20. The full list of CVE patched by the new OpenSSL v3.0.20 is available on their Official web site at: https://github.com/openssl/openssl/releases/tag/openssl-3.0.20.$$$$$$The nxhtd component included in commercial server packages is based on httpd 2.4.67; changes in the new version of Apache are listed here: https://downloads.apache.org/httpd/CHANGES_2.4.67.$$$$$$Additionally; trusted CA certificates for PKI authentication are now supported also for connections via Web and between cluster servers peers. See https://kb.nomachine.com/AR06W01292 for instructions.$$$$$$Trouble Reports solved$$$$$$Here is the complete list of fixes released in version 9.5.7:$$$$$$TR07W11474 - Automatic session recording can freeze after the user logs-in to the system$$$TR04X11783 - Network port forwarding from and to macOS may not work$$$TR04X11777 - Users sometimes not able to authenticate to the node by web$$$TR04X11790 - In some rare cases the Windows user is unable to login to NoMachine Network$$$TR04X11776 - A black screen may occur on older macOS after a reboot$$$TR04X11787 - The client could suddenly close when uploading file through drag&drop from MacOS Tahoe$$$TR04X11773 - Kerberos Credentials Cache forwarding may not work on the nodes$$$TR04X11805 - CA-signed host certificate chain verification may fail$$$TR04X11788 - CA could be not available for connections by NX protocol in multinode environments$$$TR05V11160 - The nxserver --daemon process suddenly terminates when connections to the physical desktop are enabled on the node$$$TR04X11802 - Potential local privileges escalation through argument injection in the nxchmod.sh script$$$TR03X11769 - It may be not possible to forward devices to a Windows client$$$

NoMachine 9.5.7 now available for download$$$Luxembourg; May 7th; 2026$$$$$$NoMachine makes available version 9.5.7; providing fixes for issues found in previous releases and a possible privilege escalation on Windows. It also sports updates to some third parties libraries and enhancements to support for CA certificates.$$$$$$OpenSSL libraries shipped by NoMachine client and server packages have been updated to v3.0.20. The full list of CVE patched by the new OpenSSL v3.0.20 is available on their Official web site at: https://github.com/openssl/openssl/releases/tag/openssl-3.0.20.$$$$$$The nxhtd component included in commercial server packages is based on httpd 2.4.67; changes in the new version of Apache are listed here: https://downloads.apache.org/httpd/CHANGES_2.4.67.$$$$$$Additionally; trusted CA certificates for PKI authentication are now supported also for connections via Web and between cluster servers peers. See https://kb.nomachine.com/AR06W01292 for instructions.$$$$$$Trouble Reports solved$$$$$$Here is the complete list of fixes released in version 9.5.7:$$$$$$TR07W11474 - Automatic session recording can freeze after the user logs-in to the system$$$TR04X11783 - Network port forwarding from and to macOS may not work$$$TR04X11777 - Users sometimes not able to authenticate to the node by web$$$TR04X11790 - In some rare cases the Windows user is unable to login to NoMachine Network$$$TR04X11776 - A black screen may occur on older macOS after a reboot$$$TR04X11787 - The client could suddenly close when uploading file through drag&drop from MacOS Tahoe$$$TR04X11773 - Kerberos Credentials Cache forwarding may not work on the nodes$$$TR04X11805 - CA-signed host certificate chain verification may fail$$$TR04X11788 - CA could be not available for connections by NX protocol in multinode environments$$$TR05V11160 - The nxserver --daemon process suddenly terminates when connections to the physical desktop are enabled on the node$$$TR04X11802 - Potential local privileges escalation through argument injection in the nxchmod.sh script$$$TR03X11769 - It may be not possible to forward devices to a Windows client$$$

NoMachine 9.4.14 now available for download$$$Luxembourg; March 26th; 2026$$$$$$NoMachine makes available version 9.4.14; introducing a number of improvements; along with updates to third-party components affected by CVEs; as well as fixes for issues found in previous releases.$$$$$$Changes to keys in configuration files$$$$$$The new CustomXauthorityPath key in server.cfg; allows administrators to change the location of the .Xauthority file or to create separate .Xauthority files per virtual desktop session. This helps prevent XAUTHORITY conflicts in environments with shared home directories and is primarily intended for complex or enterprise deployments. The TokenExpiryTimeout key in server.cfg; lets you define the validity period of the token generated by the server to allow clients to reconnect after a connection failure. By default; the token remains valid for five minutes (300 s). Additionally; the EnableDbusLaunch key in node.cfg has been renamed into EnableDbusWrapper. This new key name is available for fresh new installations; updates will not rename the original EnableDbusLaunch key.$$$$$$Ability to log-in automatically Linux Guest Users via web$$$$$$Two new keys in server.cfg; EnableWebGuestsAutoLogin and ForceGuestUserCreation; enable seamless guest access to Linux web sessions; where system guests are automatically logged in to the system without encountering any login prompt.$$$

NoMachine 9.4.14 now available for download$$$Luxembourg; March 26th; 2026$$$$$$NoMachine makes available version 9.4.14; introducing a number of improvements; along with updates to third-party components affected by CVEs; as well as fixes for issues found in previous releases.$$$$$$Changes to keys in configuration files$$$$$$The new CustomXauthorityPath key in server.cfg; allows administrators to change the location of the .Xauthority file or to create separate .Xauthority files per virtual desktop session. This helps prevent XAUTHORITY conflicts in environments with shared home directories and is primarily intended for complex or enterprise deployments. The TokenExpiryTimeout key in server.cfg; lets you define the validity period of the token generated by the server to allow clients to reconnect after a connection failure. By default; the token remains valid for five minutes (300 s). Additionally; the EnableDbusLaunch key in node.cfg has been renamed into EnableDbusWrapper. This new key name is available for fresh new installations; updates will not rename the original EnableDbusLaunch key.$$$$$$Ability to log-in automatically Linux Guest Users via web$$$$$$Two new keys in server.cfg; EnableWebGuestsAutoLogin and ForceGuestUserCreation; enable seamless guest access to Linux web sessions; where system guests are automatically logged in to the system without encountering any login prompt.$$$

NoMachine 9.4.14 now available for download$$$Luxembourg; March 26th; 2026$$$$$$NoMachine makes available version 9.4.14; introducing a number of improvements; along with updates to third-party components affected by CVEs; as well as fixes for issues found in previous releases.$$$$$$Changes to keys in configuration files$$$$$$The new CustomXauthorityPath key in server.cfg; allows administrators to change the location of the .Xauthority file or to create separate .Xauthority files per virtual desktop session. This helps prevent XAUTHORITY conflicts in environments with shared home directories and is primarily intended for complex or enterprise deployments. The TokenExpiryTimeout key in server.cfg; lets you define the validity period of the token generated by the server to allow clients to reconnect after a connection failure. By default; the token remains valid for five minutes (300 s). Additionally; the EnableDbusLaunch key in node.cfg has been renamed into EnableDbusWrapper. This new key name is available for fresh new installations; updates will not rename the original EnableDbusLaunch key.$$$$$$Ability to log-in automatically Linux Guest Users via web$$$$$$Two new keys in server.cfg; EnableWebGuestsAutoLogin and ForceGuestUserCreation; enable seamless guest access to Linux web sessions; where system guests are automatically logged in to the system without encountering any login prompt.$$$

Key enhancements in this 9.2.18 release are:$$$Enhancements for NoMachine Network connections$$$Considerable work has been done to resolve remaining cases of failed connections over NoMachine Network and make connecting over Network completely transparent to the user. When standard ports are unavailable the connection will use port 443; generally used in a corporate setting; so that no special configuration or any port opening is required. For more details about which ports NoMachine Network uses; please consult https://kb.nomachine.com/AR06W01283.$$$Improved monitoring of IP address in multi-node environments$$$This improvement targets Cloud Server infrastructures. When a node is configured to notify its IP to the LAN; and the Cloud Server and node are on the same LAN; the Cloud Server adjusts its configuration automatically when it detects a node has changed IP address. Vice-versa; each node detects when its Cloud Server has changed IP; and adjusts its configuration accordingly.$$$Restore necessary privileges on Windows at server startup$$$$$$An automatic check has been implemented for installations on Windows which can validate nx user rights on server start-up and restores them if missing. Command line options to perform this check manually if required are nxservice --nxusercheckvalidity and nxservice --nxuserrestorevalidity.$$$Improved audit logs for file transfer operations$$$When operations of file transfer are logged for self-auditing purposes; the filename is now reported for easier tracking.$$$$$$Enterprise evaluation software online activation$$$All NoMachine Enterprise software can now be activated using a license file which is generated from the User Area. A NoMachine account is therefore a requirement in order to obtain an evaluation license.$$$The software no longer includes its own evaluation license file as it did in earlier versions. For further instructions; users can consult the following article https://kb.nomachine.com/AR10K00713.$$$This latest update also implements fixes for two possible cases of privileges escalations on Windows and for a number of other issues listed below.$$$TR10W11579 - The Windows installer could be exploited for executing arbitrary programs$$$TR10W11580 - The nxservice on Windows could be exploited for a possible local privileges escalation$$$TR03S10169 - NoMachine client suddenly terminates if a DISPLAY variable points to a non-existing unix socket$$$TR07W11447 - A memory spike can occur while terminating SSH connections by client v9.0$$$TR08W11510 - Audio is unavailable in NoMachine Linux sessions with PulseAudio sound server system$$$TR08W11514 - Scrolling in Chrome on macOS is not reliable when the Linux session is running on Wayland$$$TR08W11520 - Sessions are not properly load-balanced between nodes of Enteprise Terminal Server v9.1.24$$$TR08W11530 - Cannot detect physical session in LXQt desktop$$$TR08W11541 - RDP or VNC sessions dont refresh properly when set at fullscreen on 2 x 4K monitors$$$TR09S10369 - Some keys of Japanese Industrial Standard keyboard are ignored$$$TR09V11210 - Cannot print from Linux to Windows on a shared printer$$$TR09W11548 - Cant create a connection file from Network Machine edit panel$$$TR09W11562 - Display energy saving is turned off even in non fullscreen mode$$$TR10W11575 - In some rare cases; a new session on the node suddenly terminates during the startup$$$TR10W11577 - The nxnode process terminates unexpectedly on a Linux system with a large number of input devices$$$TR10W11608 - Automatic clean-up of the NoMachine server history file may cause unexpected behavior$$$TR11R09919 - GStreamer-based program doesnt work in a NoMachine virtual desktop

Key enhancements in this 9.2.18 release are:$$$Enhancements for NoMachine Network connections$$$Considerable work has been done to resolve remaining cases of failed connections over NoMachine Network and make connecting over Network completely transparent to the user. When standard ports are unavailable the connection will use port 443; generally used in a corporate setting; so that no special configuration or any port opening is required. For more details about which ports NoMachine Network uses; please consult https://kb.nomachine.com/AR06W01283.$$$Improved monitoring of IP address in multi-node environments$$$This improvement targets Cloud Server infrastructures. When a node is configured to notify its IP to the LAN; and the Cloud Server and node are on the same LAN; the Cloud Server adjusts its configuration automatically when it detects a node has changed IP address. Vice-versa; each node detects when its Cloud Server has changed IP; and adjusts its configuration accordingly.$$$Restore necessary privileges on Windows at server startup$$$$$$An automatic check has been implemented for installations on Windows which can validate nx user rights on server start-up and restores them if missing. Command line options to perform this check manually if required are nxservice --nxusercheckvalidity and nxservice --nxuserrestorevalidity.$$$Improved audit logs for file transfer operations$$$When operations of file transfer are logged for self-auditing purposes; the filename is now reported for easier tracking.$$$$$$Enterprise evaluation software online activation$$$All NoMachine Enterprise software can now be activated using a license file which is generated from the User Area. A NoMachine account is therefore a requirement in order to obtain an evaluation license.$$$The software no longer includes its own evaluation license file as it did in earlier versions. For further instructions; users can consult the following article https://kb.nomachine.com/AR10K00713.$$$This latest update also implements fixes for two possible cases of privileges escalations on Windows and for a number of other issues listed below.$$$TR10W11579 - The Windows installer could be exploited for executing arbitrary programs$$$TR10W11580 - The nxservice on Windows could be exploited for a possible local privileges escalation$$$TR03S10169 - NoMachine client suddenly terminates if a DISPLAY variable points to a non-existing unix socket$$$TR07W11447 - A memory spike can occur while terminating SSH connections by client v9.0$$$TR08W11510 - Audio is unavailable in NoMachine Linux sessions with PulseAudio sound server system$$$TR08W11514 - Scrolling in Chrome on macOS is not reliable when the Linux session is running on Wayland$$$TR08W11520 - Sessions are not properly load-balanced between nodes of Enteprise Terminal Server v9.1.24$$$TR08W11530 - Cannot detect physical session in LXQt desktop$$$TR08W11541 - RDP or VNC sessions dont refresh properly when set at fullscreen on 2 x 4K monitors$$$TR09S10369 - Some keys of Japanese Industrial Standard keyboard are ignored$$$TR09V11210 - Cannot print from Linux to Windows on a shared printer$$$TR09W11548 - Cant create a connection file from Network Machine edit panel$$$TR09W11562 - Display energy saving is turned off even in non fullscreen mode$$$TR10W11575 - In some rare cases; a new session on the node suddenly terminates during the startup$$$TR10W11577 - The nxnode process terminates unexpectedly on a Linux system with a large number of input devices$$$TR10W11608 - Automatic clean-up of the NoMachine server history file may cause unexpected behavior$$$TR11R09919 - GStreamer-based program doesnt work in a NoMachine virtual desktop

NoMachine 9.1.24 now available for download$$$Luxembourg; July 25th; 2025 NoMachine makes available an important software update of version 9; providing some key improvements designed to optimize user experience and performance; and fix issues affecting the previous 9 release....$$$$$$Released on: 2025-07-15$$$$$$Last Update: 2025-07-25

NoMachine 9.1.24 now available for download$$$Luxembourg; July 25th; 2025 NoMachine makes available an important software update of version 9; providing some key improvements designed to optimize user experience and performance; and fix issues affecting the previous 9 release....$$$$$$Released on: 2025-07-15$$$$$$Last Update: 2025-07-25

NoMachine 9.1.24 now available for download$$$Luxembourg; July 25th; 2025 NoMachine makes available an important software update of version 9; providing some key improvements designed to optimize user experience and performance; and fix issues affecting the previous 9 release....$$$$$$Released on: 2025-07-15$$$$$$Last Update: 2025-07-25

NoMachine 9 now available for download$$$Luxembourg; May 22nd; 2025$$$$$$NoMachine announces the immediate availability of version 9; unveiling the highly-anticipated NoMachine Network service; which facilitates remote access and collaboration over any network. It also introduces multiple enhancements bringing improved privacy and security through the new VPN and two-factor authentication features. Additionally; for larger infrastructures; the Enterprise Cluster products are more robust and scalable than ever thanks to improved load-balancing of connection requests between the cluster peers.$$$$$$Key features in this new major version are:$$$$$$NoMachine Network$$$NoMachine Network is the new service that lets you reach your computers over the Internet without any need for IP addresses or configuring port-forwarding on the router. Install any NoMachine server product and add it to Network to create its Machine Id. To connect to a computer using its Machine Id; users require a NoMachine account and a Network Subscription.$$$$$$Two-factor authentication$$$NoMachine 2FA is a free and optional service available to everyone giving you an additional defense layer to protect both your login via NoMachine and access to the remote computer. It works for Network connections as well as for connections over IP. To receive push notifications; users must be in possession of a NoMachine account (User Id) and have installed the latest version of the free mobile app.$$$$$$Integrated VPN out-of-the-box$$$Create a secure VPN by NoMachine without the need for relying on third party VPN software: you will see all the remote computers as if they are in the local LAN. NoMachine VPN is a feature built-in to the Enterprise family that works out-of-the-box; just run from your player or browser a “NoMachine VPN connection” to an Enterprise server and go.$$$$$$New Cloud Server Cluster and Enterprise Terminal Server Cluster $$$This is an active-active cluster where the master is in charge of distributing client connections and the load of session negotiation between itself and the slave (load-balancing of connections). Cluster master and slave roles can be switched between the primary and secondary servers as in the previous versions. Additionally; a new intuitive interface facilitates set-up of the cluster peers upon installation; guiding administrators step-by-step through the pairing procedure. Customers of v8 who wish to upgrade their Enterprise Cloud Server Cluster to v9 should follow instructions at: https://www.nomachine.com/AR11V01257.$$$$$$Tunnel all traffic through the Cloud Server$$$A new key in server.cfg; EnableCommunicationHub; defines whether the Cloud Server is the only communication hub for the NoMachine traffic; including NoMachine Network traffic. This corresponds to option Tunnel all the NoMachine network traffic through the server in the UI -> Settings -> Server -> ports panel.$$$$$$Unattended access to a Cloud Servers nodes for Visitor users$$$A new checkbox in the UI in the Cloud Server node configuration panel allows Visitors to connect also without the desktop owners approval. Visitors (available in Cloud Server products) are guest users logged in with a valid system account on the Cloud Server who can access the nodes also without the explicit consent of the desktop owner.$$$$$$Set-up rules on a per-class basis all at once$$$The new switch --type all for profile rules allow to enable/disable the given class all at once. More details about how rules work in v9 are available at: https://www.nomachine.com/AR01W01265$$$$$$Custom control over the authentication process to the Cloud Server nodes$$$A new server configuration key; EnableNodeAuthentication; enables or disables password authentication on the cloud server node. This configuration key aims to provide administrators with control over the authentication process; allowing to restore the authentication behavior from version 8.$$$$$$Updated NoMachine mobile app$$$The NoMachine for iOS and Android applica

NoMachine 9 now available for download$$$Luxembourg; May 22nd; 2025$$$$$$NoMachine announces the immediate availability of version 9; unveiling the highly-anticipated NoMachine Network service; which facilitates remote access and collaboration over any network. It also introduces multiple enhancements bringing improved privacy and security through the new VPN and two-factor authentication features. Additionally; for larger infrastructures; the Enterprise Cluster products are more robust and scalable than ever thanks to improved load-balancing of connection requests between the cluster peers.$$$$$$Key features in this new major version are:$$$$$$NoMachine Network$$$NoMachine Network is the new service that lets you reach your computers over the Internet without any need for IP addresses or configuring port-forwarding on the router. Install any NoMachine server product and add it to Network to create its Machine Id. To connect to a computer using its Machine Id; users require a NoMachine account and a Network Subscription.$$$$$$Two-factor authentication$$$NoMachine 2FA is a free and optional service available to everyone giving you an additional defense layer to protect both your login via NoMachine and access to the remote computer. It works for Network connections as well as for connections over IP. To receive push notifications; users must be in possession of a NoMachine account (User Id) and have installed the latest version of the free mobile app.$$$$$$Integrated VPN out-of-the-box$$$Create a secure VPN by NoMachine without the need for relying on third party VPN software: you will see all the remote computers as if they are in the local LAN. NoMachine VPN is a feature built-in to the Enterprise family that works out-of-the-box; just run from your player or browser a “NoMachine VPN connection” to an Enterprise server and go.$$$$$$New Cloud Server Cluster and Enterprise Terminal Server Cluster $$$This is an active-active cluster where the master is in charge of distributing client connections and the load of session negotiation between itself and the slave (load-balancing of connections). Cluster master and slave roles can be switched between the primary and secondary servers as in the previous versions. Additionally; a new intuitive interface facilitates set-up of the cluster peers upon installation; guiding administrators step-by-step through the pairing procedure. Customers of v8 who wish to upgrade their Enterprise Cloud Server Cluster to v9 should follow instructions at: https://www.nomachine.com/AR11V01257.$$$$$$Tunnel all traffic through the Cloud Server$$$A new key in server.cfg; EnableCommunicationHub; defines whether the Cloud Server is the only communication hub for the NoMachine traffic; including NoMachine Network traffic. This corresponds to option Tunnel all the NoMachine network traffic through the server in the UI -> Settings -> Server -> ports panel.$$$$$$Unattended access to a Cloud Servers nodes for Visitor users$$$A new checkbox in the UI in the Cloud Server node configuration panel allows Visitors to connect also without the desktop owners approval. Visitors (available in Cloud Server products) are guest users logged in with a valid system account on the Cloud Server who can access the nodes also without the explicit consent of the desktop owner.$$$$$$Set-up rules on a per-class basis all at once$$$The new switch --type all for profile rules allow to enable/disable the given class all at once. More details about how rules work in v9 are available at: https://www.nomachine.com/AR01W01265$$$$$$Custom control over the authentication process to the Cloud Server nodes$$$A new server configuration key; EnableNodeAuthentication; enables or disables password authentication on the cloud server node. This configuration key aims to provide administrators with control over the authentication process; allowing to restore the authentication behavior from version 8.$$$$$$Updated NoMachine mobile app$$$The NoMachine for iOS and Android applica

NoMachine 9 now available for download$$$Luxembourg; May 22nd; 2025$$$$$$NoMachine announces the immediate availability of version 9; unveiling the highly-anticipated NoMachine Network service; which facilitates remote access and collaboration over any network. It also introduces multiple enhancements bringing improved privacy and security through the new VPN and two-factor authentication features. Additionally; for larger infrastructures; the Enterprise Cluster products are more robust and scalable than ever thanks to improved load-balancing of connection requests between the cluster peers.$$$$$$Key features in this new major version are:$$$$$$NoMachine Network$$$NoMachine Network is the new service that lets you reach your computers over the Internet without any need for IP addresses or configuring port-forwarding on the router. Install any NoMachine server product and add it to Network to create its Machine Id. To connect to a computer using its Machine Id; users require a NoMachine account and a Network Subscription.$$$$$$Two-factor authentication$$$NoMachine 2FA is a free and optional service available to everyone giving you an additional defense layer to protect both your login via NoMachine and access to the remote computer. It works for Network connections as well as for connections over IP. To receive push notifications; users must be in possession of a NoMachine account (User Id) and have installed the latest version of the free mobile app.$$$$$$Integrated VPN out-of-the-box$$$Create a secure VPN by NoMachine without the need for relying on third party VPN software: you will see all the remote computers as if they are in the local LAN. NoMachine VPN is a feature built-in to the Enterprise family that works out-of-the-box; just run from your player or browser a “NoMachine VPN connection” to an Enterprise server and go.$$$$$$New Cloud Server Cluster and Enterprise Terminal Server Cluster $$$This is an active-active cluster where the master is in charge of distributing client connections and the load of session negotiation between itself and the slave (load-balancing of connections). Cluster master and slave roles can be switched between the primary and secondary servers as in the previous versions. Additionally; a new intuitive interface facilitates set-up of the cluster peers upon installation; guiding administrators step-by-step through the pairing procedure. Customers of v8 who wish to upgrade their Enterprise Cloud Server Cluster to v9 should follow instructions at: https://www.nomachine.com/AR11V01257.$$$$$$Tunnel all traffic through the Cloud Server$$$A new key in server.cfg; EnableCommunicationHub; defines whether the Cloud Server is the only communication hub for the NoMachine traffic; including NoMachine Network traffic. This corresponds to option Tunnel all the NoMachine network traffic through the server in the UI -> Settings -> Server -> ports panel.$$$$$$Unattended access to a Cloud Servers nodes for Visitor users$$$A new checkbox in the UI in the Cloud Server node configuration panel allows Visitors to connect also without the desktop owners approval. Visitors (available in Cloud Server products) are guest users logged in with a valid system account on the Cloud Server who can access the nodes also without the explicit consent of the desktop owner.$$$$$$Set-up rules on a per-class basis all at once$$$The new switch --type all for profile rules allow to enable/disable the given class all at once. More details about how rules work in v9 are available at: https://www.nomachine.com/AR01W01265$$$$$$Custom control over the authentication process to the Cloud Server nodes$$$A new server configuration key; EnableNodeAuthentication; enables or disables password authentication on the cloud server node. This configuration key aims to provide administrators with control over the authentication process; allowing to restore the authentication behavior from version 8.$$$$$$Updated NoMachine mobile app$$$The NoMachine for iOS and Android applica

NoMachine 8.16.1 now available for download$$$Luxembourg; January 28th; 2025$$$$$$NoMachine makes available new version 8 packages to solve some issues affecting macOS and Linux users including white screen issue when connecting to Sequoia with monitor in sleep mode and high CPU usage after installing on Ubuntu.$$$$$$The list of trouble reports solved by this 8.16.1 release are:$$$$$$TR01W11263 - High CPU usage when installing NoMachine v8.15 on Ubuntu$$$TR12V11251 - The virtual desktop suddenly terminates when moving windows all around in dual monitor setup$$$TR01W11266 - Possible white screen when connecting to macOS Sequoia with monitor in sleep mode

NoMachine 8.16.1 now available for download$$$Luxembourg; January 28th; 2025$$$$$$NoMachine makes available new version 8 packages to solve some issues affecting macOS and Linux users including white screen issue when connecting to Sequoia with monitor in sleep mode and high CPU usage after installing on Ubuntu.$$$$$$The list of trouble reports solved by this 8.16.1 release are:$$$$$$TR01W11263 - High CPU usage when installing NoMachine v8.15 on Ubuntu$$$TR12V11251 - The virtual desktop suddenly terminates when moving windows all around in dual monitor setup$$$TR01W11266 - Possible white screen when connecting to macOS Sequoia with monitor in sleep mode

NoMachine 8.15.3 now available for download$$$Luxembourg; January 16th; 2025$$$$$$NoMachine makes available new version 8 packages to include; among others; the patch released by X.Org which fixes CVE-2024-9632 and the OpenSSL patch for CVE-2024-9143. It also includes a fix for a possible exploitation of installation path on Windows to execute arbitrary code during the installation of the server.$$$$$$A new server configuration key; EnableWebAutocomplete; has been introduced to disable the autocomplete of the Username field in the login form of web sessions. Additionally; this update provides a new command-line argument; --timeout <sec>; for custom scripts to allow admins to specify the desired value (in seconds) for the script completion timeout (by default 30s).$$$$$$The list of trouble reports solved by this 8.15.3 release are:$$$$$$TR10V11239 - Importing X.Org security patch for the xserver$$$TR11V11241 - Arbitrary files can be placed in the installation path on Windows and executed during the installation of the server$$$TR08Q09394 - Cannot use 4096 bit RSA keys for key-based authentication in web sessions$$$TR10V11237 - In some cases users get Unable to connect to the requested display when trying to connect as a guest via browser$$$TR10V11230 - Frozen screen on macOS15 after display goes to sleep$$$TR11V11243 - Log files fill the disk space under specific circumstances$$$TR09V11214 - PKCS #11 initialization error occurs when trying to forward the smartcard$$$TR10V11238 - Restarting the Enterprise Terminal Server re-enables showing the !M icon on the nodes$$$TR03V11107 - Right-Ctrl + Shift + V toggles control key press in NoMachine desktop session$$$TR10V11240 - The load average balancing algorithm fails because load average values are not passed to the balancing script$$$TR10V11232 - The nxusb module doesnt compile on Kernel 6.11.3-200.fc40.x86_64$$$TR11V11244 - Virtual desktop session terminates unexpectedly when using Synopsys Custom Compiler$$$TR10V11234 - Re-adding a cloud server node can overwrite another node when the UUID is the same$$$TR01W11254 - Increasing memory usage on Linux while the server is searching for local physical sessions

NoMachine 8.15.3 now available for download$$$Luxembourg; January 16th; 2025$$$$$$NoMachine makes available new version 8 packages to include; among others; the patch released by X.Org which fixes CVE-2024-9632 and the OpenSSL patch for CVE-2024-9143. It also includes a fix for a possible exploitation of installation path on Windows to execute arbitrary code during the installation of the server.$$$$$$A new server configuration key; EnableWebAutocomplete; has been introduced to disable the autocomplete of the Username field in the login form of web sessions. Additionally; this update provides a new command-line argument; --timeout <sec>; for custom scripts to allow admins to specify the desired value (in seconds) for the script completion timeout (by default 30s).$$$$$$The list of trouble reports solved by this 8.15.3 release are:$$$$$$TR10V11239 - Importing X.Org security patch for the xserver$$$TR11V11241 - Arbitrary files can be placed in the installation path on Windows and executed during the installation of the server$$$TR08Q09394 - Cannot use 4096 bit RSA keys for key-based authentication in web sessions$$$TR10V11237 - In some cases users get Unable to connect to the requested display when trying to connect as a guest via browser$$$TR10V11230 - Frozen screen on macOS15 after display goes to sleep$$$TR11V11243 - Log files fill the disk space under specific circumstances$$$TR09V11214 - PKCS #11 initialization error occurs when trying to forward the smartcard$$$TR10V11238 - Restarting the Enterprise Terminal Server re-enables showing the !M icon on the nodes$$$TR03V11107 - Right-Ctrl + Shift + V toggles control key press in NoMachine desktop session$$$TR10V11240 - The load average balancing algorithm fails because load average values are not passed to the balancing script$$$TR10V11232 - The nxusb module doesnt compile on Kernel 6.11.3-200.fc40.x86_64$$$TR11V11244 - Virtual desktop session terminates unexpectedly when using Synopsys Custom Compiler$$$TR10V11234 - Re-adding a cloud server node can overwrite another node when the UUID is the same$$$TR01W11254 - Increasing memory usage on Linux while the server is searching for local physical sessions

NoMachine 8.14.2 now available for download$$$Luxembourg; October 1st; 2024$$$$$$NoMachine makes available new version 8 packages to include the new OpenSSL libraries v. 3.0.15 fixing CVE-2024-6119 and CVE-2024-5535 (see https://openssl-library.org/news/openssl-3.0-notes/index.html for more details).$$$$$$The NoMachine packages provide updates to libnxht (based on libcurl v8.4) to import the fix for CVE-2024-7264 from libcurl 8.9.1. (see https://curl.se/docs/CVE-2024-7264.html).$$$$$$Additionally; the nxhtd component has been updated to include Apache Portable Runtime APR 1.7.5 fixing CVE-2023-49582 (see https://downloads.apache.org/apr/CHANGES-APR-1.7).$$$$$$This release also implements a solution for macOS 15 client installations which solves a problem of local network permissions being ignored. For more details; users can consult the article here: https://www.nomachine.com/AR09V01251.$$$$$$The list of trouble reports solved by this 8.14.2 release are:$$$$$$TR09V11212 - After updating to macOS 15 (Sequoia); the client can no longer connect in LAN$$$TR03U10784 - Attaching to a Wayland physical desktop could fail when the video device uses 10 bits per channel$$$TR08V11199 - Update process to version 8.12 or 8.13 doesnt remove /usr/NX/lib/libcrypto.so.1.1.1$$$TR09V11206 - Users cannot reconnect to Kubuntu 24.04 once logged-in the first time$$$TR10T10646 - The remote admin UI suddenly terminates when connected to the server by NX protocol and private key authentication$$$TR09V11204 - Login on Windows fails when its not possible to convert domain legacy user name

NoMachine 8.14.2 now available for download$$$Luxembourg; October 1st; 2024$$$$$$NoMachine makes available new version 8 packages to include the new OpenSSL libraries v. 3.0.15 fixing CVE-2024-6119 and CVE-2024-5535 (see https://openssl-library.org/news/openssl-3.0-notes/index.html for more details).$$$$$$The NoMachine packages provide updates to libnxht (based on libcurl v8.4) to import the fix for CVE-2024-7264 from libcurl 8.9.1. (see https://curl.se/docs/CVE-2024-7264.html).$$$$$$Additionally; the nxhtd component has been updated to include Apache Portable Runtime APR 1.7.5 fixing CVE-2023-49582 (see https://downloads.apache.org/apr/CHANGES-APR-1.7).$$$$$$This release also implements a solution for macOS 15 client installations which solves a problem of local network permissions being ignored. For more details; users can consult the article here: https://www.nomachine.com/AR09V01251.$$$$$$The list of trouble reports solved by this 8.14.2 release are:$$$$$$TR09V11212 - After updating to macOS 15 (Sequoia); the client can no longer connect in LAN$$$TR03U10784 - Attaching to a Wayland physical desktop could fail when the video device uses 10 bits per channel$$$TR08V11199 - Update process to version 8.12 or 8.13 doesnt remove /usr/NX/lib/libcrypto.so.1.1.1$$$TR09V11206 - Users cannot reconnect to Kubuntu 24.04 once logged-in the first time$$$TR10T10646 - The remote admin UI suddenly terminates when connected to the server by NX protocol and private key authentication$$$TR09V11204 - Login on Windows fails when its not possible to convert domain legacy user name

NoMachine 8.13.1 now available for download$$$Luxembourg; July 25th; 2024$$$$$$NoMachine makes available new version 8 packages to update the built-in web server; nxhtd; to Apache version 2.4.62; released by Apache to fix the following CVEs:$$$$$$CVE-2024-40898: Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows$$$CVE-2024-40725: Apache HTTP Server: source code disclosure with handlers configured via AddType$$$$$$Details of these security fixes are available on the Apache website at:$$$https://downloads.apache.org/httpd/CHANGES_2.4$$$$$$The new version 8.13.1 also includes the fix for this trouble report:$$$$$$TR07S10326 - The Scroll Lock state is not preserved in a NoMachine physical desktop on Windows

NoMachine 8.13.1 now available for download$$$Luxembourg; July 25th; 2024$$$$$$NoMachine makes available new version 8 packages to update the built-in web server; nxhtd; to Apache version 2.4.62; released by Apache to fix the following CVEs:$$$$$$CVE-2024-40898: Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows$$$CVE-2024-40725: Apache HTTP Server: source code disclosure with handlers configured via AddType$$$$$$Details of these security fixes are available on the Apache website at:$$$https://downloads.apache.org/httpd/CHANGES_2.4$$$$$$The new version 8.13.1 also includes the fix for this trouble report:$$$$$$TR07S10326 - The Scroll Lock state is not preserved in a NoMachine physical desktop on Windows

NoMachine 8.12.12 now available for download$$$Luxembourg; July 16th; 2024$$$$$$NoMachine makes available updated packages for version 8 to provide some enhancements and fix a number of issues affecting earlier versions. The new packages ship OpenSSL libraries v3.0 to replace OpenSSL version 1.1.1w. The nxssh and nxsshd components for Windows still use OpenSSL version 1.1.1w; patched with security fixes imported from OpenSSL libraries v3.0. Due to this change; when updating multi-node environments its necessary to upgrade first the nodes and then the server to ensure communications between them (see: https://kb.nomachine.com/AR07V01242).$$$$$$Additionally; the NoMachine built-in web server; nxhtd; has been updated to Apache version 2.4.61 in order to fix the following CVEs which could potentially affect it:$$$$$$From Apache version 2.4.61:$$$$$$CVE-2024-39884; Apache HTTP Server: source code disclosure with handlers configured via AddType$$$$$$From Apache version 2.4.60:$$$$$$CVE-2024-38472; Apache HTTP Server on WIndows UNC SSRF$$$CVE-2024-38474; Apache HTTP Server weakness with encoded question marks in backreferences$$$CVE-2024-38475; Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path$$$CVE-2024-38476; Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect$$$$$$From Apache version 2.4.59:$$$$$$CVE-2023-38709; HTTP response splitting$$$CVE-2024-24795; HTTP Response Splitting in multiple modules.$$$$$$Details of these security fixes are available at https://downloads.apache.org/httpd/CHANGES_2.4.$$$$$$The following enhancements have been implemented:$$$$$$Providing hardware encoding on Intel GPUs via oneVPL$$$NoMachine sessions on Linux servers can use GPU-accelerated H.264 encoding provided by cards supporting the Intel VPL APIs.$$$$$$Disabling auto-repeat for held down keys$$$A new configuration key; Disable auto-repeat for held down keys; has been added to the player.cfg which permits the local systems client side key repeat to be ignored; without having to disable the key repeat for the whole system.$$$$$$Always accept the host verification key provided by the remote host$$$There is now an option in the Edit connection panel to automatically accept the new host identity key when the Verify host identification dialog is issued.$$$$$$Support for H.264 hardware decoding in Chrome web sessions$$$Its now possible to enable H.264 also on Chrome by adding forcevp8=false in the web player URL or by adding the EnableForceVp8 0 key in server.cfg. H.264 is currently disabled by default on Chrome to prevent possible freezes occurring when using hardware decoding.$$$$$$The list of trouble reports solved by this 8.12.12 release are:$$$$$$TR12T10728 - The client window cant be minimized from fullscreen on macOS$$$TR07U10921 - White screen occurs when connecting to a KDE/Plasma Wayland desktop on Kubuntu$$$TR04R09620 - Sessions cannot be started because of descriptor out of range error$$$TR05V11143 - Sudden termination of the NoMachine virtual desktop when using Emacs v29.3$$$TR06V11178 - Sometimes a timeout occurs when trying to resume a virtual desktop$$$TR05V11145 - In some cases its not possible to retrieve session history on large dbs$$$TR02V11091 - Some keys are not correctly mapped on a Macbook external keyboard$$$TR04V11140 - Pop-up to authorize visitor users is not issued when the X server is not running$$$TR05V11158 - Cannot connect to the Enterprise Terminal Server if localhost is disabled$$$TR04V11131 - A leftover file from NoMachine uninstallation on Fedora 39 prevents the starting of other programs$$$TR03V11118 - Cannot open snap applications in a NoMachine virtual desktop after updating to snap v2.61.3$$$TR02V11080 - Message SELinux is preventing systemd from ioctl access on the file /usr/lib/systemd/system/nxserver.service is issued on RHEL 9.3$$$TR03V11111 - Audio doesn’t work when PulseAudio and PipeWire are both installed and PulseAu

NoMachine 8.12.12 now available for download$$$Luxembourg; July 16th; 2024$$$$$$NoMachine makes available updated packages for version 8 to provide some enhancements and fix a number of issues affecting earlier versions. The new packages ship OpenSSL libraries v3.0 to replace OpenSSL version 1.1.1w. The nxssh and nxsshd components for Windows still use OpenSSL version 1.1.1w; patched with security fixes imported from OpenSSL libraries v3.0. Due to this change; when updating multi-node environments its necessary to upgrade first the nodes and then the server to ensure communications between them (see: https://kb.nomachine.com/AR07V01242).$$$$$$Additionally; the NoMachine built-in web server; nxhtd; has been updated to Apache version 2.4.61 in order to fix the following CVEs which could potentially affect it:$$$$$$From Apache version 2.4.61:$$$$$$CVE-2024-39884; Apache HTTP Server: source code disclosure with handlers configured via AddType$$$$$$From Apache version 2.4.60:$$$$$$CVE-2024-38472; Apache HTTP Server on WIndows UNC SSRF$$$CVE-2024-38474; Apache HTTP Server weakness with encoded question marks in backreferences$$$CVE-2024-38475; Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path$$$CVE-2024-38476; Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect$$$$$$From Apache version 2.4.59:$$$$$$CVE-2023-38709; HTTP response splitting$$$CVE-2024-24795; HTTP Response Splitting in multiple modules.$$$$$$Details of these security fixes are available at https://downloads.apache.org/httpd/CHANGES_2.4.$$$$$$The following enhancements have been implemented:$$$$$$Providing hardware encoding on Intel GPUs via oneVPL$$$NoMachine sessions on Linux servers can use GPU-accelerated H.264 encoding provided by cards supporting the Intel VPL APIs.$$$$$$Disabling auto-repeat for held down keys$$$A new configuration key; Disable auto-repeat for held down keys; has been added to the player.cfg which permits the local systems client side key repeat to be ignored; without having to disable the key repeat for the whole system.$$$$$$Always accept the host verification key provided by the remote host$$$There is now an option in the Edit connection panel to automatically accept the new host identity key when the Verify host identification dialog is issued.$$$$$$Support for H.264 hardware decoding in Chrome web sessions$$$Its now possible to enable H.264 also on Chrome by adding forcevp8=false in the web player URL or by adding the EnableForceVp8 0 key in server.cfg. H.264 is currently disabled by default on Chrome to prevent possible freezes occurring when using hardware decoding.$$$$$$The list of trouble reports solved by this 8.12.12 release are:$$$$$$TR12T10728 - The client window cant be minimized from fullscreen on macOS$$$TR07U10921 - White screen occurs when connecting to a KDE/Plasma Wayland desktop on Kubuntu$$$TR04R09620 - Sessions cannot be started because of descriptor out of range error$$$TR05V11143 - Sudden termination of the NoMachine virtual desktop when using Emacs v29.3$$$TR06V11178 - Sometimes a timeout occurs when trying to resume a virtual desktop$$$TR05V11145 - In some cases its not possible to retrieve session history on large dbs$$$TR02V11091 - Some keys are not correctly mapped on a Macbook external keyboard$$$TR04V11140 - Pop-up to authorize visitor users is not issued when the X server is not running$$$TR05V11158 - Cannot connect to the Enterprise Terminal Server if localhost is disabled$$$TR04V11131 - A leftover file from NoMachine uninstallation on Fedora 39 prevents the starting of other programs$$$TR03V11118 - Cannot open snap applications in a NoMachine virtual desktop after updating to snap v2.61.3$$$TR02V11080 - Message SELinux is preventing systemd from ioctl access on the file /usr/lib/systemd/system/nxserver.service is issued on RHEL 9.3$$$TR03V11111 - Audio doesn’t work when PulseAudio and PipeWire are both installed and PulseAu

NoMachine 8.12.12 now available for download$$$Luxembourg; July 16th; 2024$$$$$$NoMachine makes available updated packages for version 8 to provide some enhancements and fix a number of issues affecting earlier versions. The new packages ship OpenSSL libraries v3.0 to replace OpenSSL version 1.1.1w. The nxssh and nxsshd components for Windows still use OpenSSL version 1.1.1w; patched with security fixes imported from OpenSSL libraries v3.0. Due to this change; when updating multi-node environments its necessary to upgrade first the nodes and then the server to ensure communications between them (see: https://kb.nomachine.com/AR07V01242).$$$$$$Additionally; the NoMachine built-in web server; nxhtd; has been updated to Apache version 2.4.61 in order to fix the following CVEs which could potentially affect it:$$$$$$From Apache version 2.4.61:$$$$$$CVE-2024-39884; Apache HTTP Server: source code disclosure with handlers configured via AddType$$$$$$From Apache version 2.4.60:$$$$$$CVE-2024-38472; Apache HTTP Server on WIndows UNC SSRF$$$CVE-2024-38474; Apache HTTP Server weakness with encoded question marks in backreferences$$$CVE-2024-38475; Apache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path$$$CVE-2024-38476; Apache HTTP Server may use exploitable/malicious backend application output to run local handlers via internal redirect$$$$$$From Apache version 2.4.59:$$$$$$CVE-2023-38709; HTTP response splitting$$$CVE-2024-24795; HTTP Response Splitting in multiple modules.$$$$$$Details of these security fixes are available at https://downloads.apache.org/httpd/CHANGES_2.4.$$$$$$The following enhancements have been implemented:$$$$$$Providing hardware encoding on Intel GPUs via oneVPL$$$NoMachine sessions on Linux servers can use GPU-accelerated H.264 encoding provided by cards supporting the Intel VPL APIs.$$$$$$Disabling auto-repeat for held down keys$$$A new configuration key; Disable auto-repeat for held down keys; has been added to the player.cfg which permits the local systems client side key repeat to be ignored; without having to disable the key repeat for the whole system.$$$$$$Always accept the host verification key provided by the remote host$$$There is now an option in the Edit connection panel to automatically accept the new host identity key when the Verify host identification dialog is issued.$$$$$$Support for H.264 hardware decoding in Chrome web sessions$$$Its now possible to enable H.264 also on Chrome by adding forcevp8=false in the web player URL or by adding the EnableForceVp8 0 key in server.cfg. H.264 is currently disabled by default on Chrome to prevent possible freezes occurring when using hardware decoding.$$$$$$The list of trouble reports solved by this 8.12.12 release are:$$$$$$TR12T10728 - The client window cant be minimized from fullscreen on macOS$$$TR07U10921 - White screen occurs when connecting to a KDE/Plasma Wayland desktop on Kubuntu$$$TR04R09620 - Sessions cannot be started because of descriptor out of range error$$$TR05V11143 - Sudden termination of the NoMachine virtual desktop when using Emacs v29.3$$$TR06V11178 - Sometimes a timeout occurs when trying to resume a virtual desktop$$$TR05V11145 - In some cases its not possible to retrieve session history on large dbs$$$TR02V11091 - Some keys are not correctly mapped on a Macbook external keyboard$$$TR04V11140 - Pop-up to authorize visitor users is not issued when the X server is not running$$$TR05V11158 - Cannot connect to the Enterprise Terminal Server if localhost is disabled$$$TR04V11131 - A leftover file from NoMachine uninstallation on Fedora 39 prevents the starting of other programs$$$TR03V11118 - Cannot open snap applications in a NoMachine virtual desktop after updating to snap v2.61.3$$$TR02V11080 - Message SELinux is preventing systemd from ioctl access on the file /usr/lib/systemd/system/nxserver.service is issued on RHEL 9.3$$$TR03V11111 - Audio doesn’t work when PulseAudio and PipeWire are both installed and PulseAu

NoMachine 8.11.3 now available for download$$$Luxembourg; January 30th; 2024$$$$$$NoMachine makes available updated packages for version 8 to fix issues affecting earlier versions and provide some enhancements related to profile rules management; in particular when creating groups on a per-node and per-user basis together; and better handling deletion of large numbers of rules. This NoMachine update also integrates important security patches released by the X.org Foundation which fix the vulnerabilities CVE-2023-6816; CVE-2024-0229; CVE-2024-21885; CVE-2024-21886 and others. In addition; the third party library libssh2 has been updated to include the fix for CVE-2023-48795; albeit not exploitable through NoMachine. Details of these security fixes are available on their respective maintainers websites: https://lists.x.org/archives/xorg/2024-January/061525.html and here https://www.libssh.org/security/advisories/CVE-2023-48795.txt$$$$$$The list of trouble reports solved by this 8.11.3 release are:$$$$$$TR01V11061 - Importing X.org security patches for the xserver$$$TR06U10893 - List of Cloud Servers node-group is empty after upgrading to v8 when these groups were created in v6$$$TR11U11039 - The nxserver –list command doesn’t work properly when some configuration keys for desktop access are modified$$$TR11U11042 - Rules to forbid access to a group of nodes are ignored$$$TR12U11046 - Node names are not displayed in the UI when the connecting client is v7$$$TR12U11050 - Updating an installation v7 with a large db cannot complete or leads to unstable database$$$TR01V11053 - Enabling EGL capture makes the Gnome Shell freeze when Wayland is used$$$TR11U11042 - Rules to forbid access to a group of nodes are ignored$$$TR01V11052 - Physical desktop is not reported after restart with Wayland$$$TR01V11060 - Installation procedure on Linux completes with errors$$$TR10U11017 - Kerberos tickets cannot be delegated in the session when KCM Kerberos cache is in use

NoMachine 8.10.1 now available for download$$$Luxembourg; November 6th; 2023$$$$$$NoMachine makes available updated packages for version 8 to fix issues affecting earlier versions and enhancements to client support for additional PAM authorization modules. It also provides updates to some third party libraries shipped by NoMachine packages. In particular it includes fixes to the xserver component for CVE-2023-5367 (affecting NoMachine as well) and CVE-2023-5380.$$$$$$We made also the decision to upgrade libcurl libraries based on curl v. 7.73.0 to curl v. 8.4.0 to sport fixes for CVE-2023-38545. Albeit not exploitable through NoMachine; we also imported the most recent fixes for libX11 and libXpm (CVE-2023-43785; CVE-2023-43786; CVE-2023-43787; CVE-2023-43788 and CVE-2023-43789).$$$$$$The list of trouble reports solved by this 8.10.1 release are:$$$$$$TR10U11029 - CVE-2023-5367 affects the xserver component shipped by NoMachine server packages$$$TR10U11011 - Node groups are no longer synchronized after the upgrade of Enterprise Cloud Server Cluster$$$TR08U10963 - Installation on Windows 7 issues message Application Error; The application was unable to start correctly$$$TR10U11021 - The NoMachine web session doesnt fit the resized Chrome window$$$TR10U11012 - The EnableClientCredentialsStoring key is ineffective for web sessions$$$TR10U11027 - Button Continue update is disabled in the remote admin UI$$$TR07U10910 - NoMachine displays an inactive session as active on Wayland

NoMachine 8.9.1 now available for download$$$Luxembourg; October 4th; 2023$$$$$$NoMachine makes available updated packages for version 8 to fix issues affecting earlier versions and provide some minor enhancements including improvements to output of list of nodes and groups by pairing the node name and its UUID; permitting the nxegl component to write logs in the directory specified in UsersDirectoryPath key.$$$$$$We made the decision to upgrade OpenSSL libraries to v. 1.1.1w to sport fixes for CVE-2023-4807 and CVE-2023-3817; albeit not exploitable through NoMachine. We also imported the fix for CVE-2023-5217 into libvpx.$$$$$$Issues which are fixed in this release include problems with automatic recordings; node groups no longer synchronized after the upgrade of the Cloud Server and sudden termination of a Linux custom session when KDE-Plasma is installed.$$$$$$The complete list of fixes included in this 8.9.1 release are:$$$$$$TR01T10433 - Uninstalling NoMachine on Windows fails when using the SYSTEM account$$$TR02R09553 - The remote desktop is not locked with the native lock screen when the root user is physically logged-in$$$TR02U10776 - Black screen occurs after logout from XFCE desktop running in a custom session$$$TR05U10851 - The nx user appears in the list of users allowed to unlock the disk FileVault is enabled$$$TR05U10874 - Cannot open a Flatpak application on Linux when a NoMachine server installed$$$TR07U10954 - Cannot set ultra-wide custom resolutions in web sessions$$$TR07U10957 - The nxserver process hangs while reading data from backend db with a large amount of data$$$TR08U10960 - Virtual desktops started from command line are counted in the connections limit counter$$$TR08U10961 - ETS reports a misleading error when the desktop environment cannot start on the node because of d-bus limits reached$$$TR08U10968 - Audio forwarding on SuSE SLES stops working after some hours$$$TR08U10972 - The nxnode.bin process uses 100% of all cores when the remote screen on Wayland is in power save mode$$$TR08U10973 - Automatic recordings of local desktop are not saved$$$TR08U10978 - Automatic recording doesnt work for AD domain users$$$TR08U10980 - A write error on the UDP socket can cause the termination of the nxd service$$$TR08U10982 - Sudden termination of a custom session when kde-plasma-desktop is installed$$$TR08U10987 - Local and remote printers are no longer listed in the client UI after CUPS has been$$$reinstalled on server side$$$TR08U10988 - Node groups are no longer synchronized after the upgrade of Enterprise Terminal Server Cluster$$$TR08U10991 - The user cannot logout from a virtual desktop via web when Save this password is selected$$$TR08U10993 - On Windows; pressing right-ctrl locks the control key on$$$TR09U10998 - Rules associated to a node are left when the node is deleted$$$TR10T10636 - Cannot change port 4000 for nxd via UI after the upgrade to v8$$$TR11Q09479 - The nxserver --startmode command reports wrong information when Upstart is in use$$$TR12T10712 - Nodes become unreachable when the ClientMenuConfiguratio