Fedora Drops Deepin Desktop Packages Citing Security Risks and Stalled Maintenance

Fedora Linux has officially removed its Deepin desktop environment packages from the distribution, following a similar move by SUSE last year. The decision was driven by unresolved security concerns and a lack of active maintenance from upstream contributors.

Security Risks Prompt Urgent Action

Project maintainers flagged that the Deepin packages had accumulated vulnerabilities and failed to receive timely patches. “We can no longer guarantee the safety of these packages for Fedora users,” said a Fedora security team member. The removal process will complete in the next release cycle.

Background: A Pattern of Neglect

The Deepin desktop, developed by Chinese company Deepin Technology, has long struggled with security audits. In 2023, SUSE became the first major distribution to drop the packages over similar worries.

Fedora’s package maintainers reported that updates for Deepin were sporadic. One contributor noted, “We saw repeated delays in critical fixes, forcing us to decide.”

What This Means for Users and the Community

Current Fedora users running Deepin must switch to another desktop environment like GNOME or KDE Plasma before the next Fedora release. The move isolates Deepin further within the Linux ecosystem.

It also raises questions about the sustainability of community-managed packages. “This is a wake-up call for any desktop that lacks a dedicated security team,” warned a Linux kernel contributor. Fedora advises users to review alternative desktop options.

Alternative Desktop Environments

• GNOME – default in Fedora Workstation, actively maintained.
• KDE Plasma – feature-rich with strong security support.
• XFCE – lightweight and well-tested.

For those who wish to continue using Deepin, manual installation from third-party sources remains possible but is strongly discouraged by Fedora’s security team.