Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 564
Alerts This Week
Warning Icon 1 564

Oracle Linux 10 cockpit Important Update Remote Code Exec ELSA-2026-21676

oracle
Calendar Grey July 17, 2026
Scroller Oracle
Oracle Linux 10 advises important updates for cockpit to fix remote code execution issues and enhance storage support.
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

Summary

[356.2-1.0.1] - Storage: Enable btrfs support [Orabug: 37464632] - Replaced upstream urls in documentation with oracle links [Orabug: 36528753] - Drop subscription-manager-cockpit requirement for ol [Orabug: 34681110] - Remove duplicate reference to server in cockpit [Orabug: 34030494] - Update documentation links [Orabug: 30271413], [Orabug: 32013095], [Orabug: 32795691], [Orabug: 34398512], [Orabug: 34742876], [Orabug: 37253273] - Update spec file for new release [356.1-1] - ws: Prevent remote code execution with SSH argument injection (RHEL-158306) - node: update lodash dependency (RHEL-164067)

SRPMs

http://oss.oracle.com/ol10/SRPMS-updates/cockpit-356.2-1.0.1.el10_2.src.rpm

x86_64

cockpit-356.2-1.0.1.el10_2.x86_64.rpm cockpit-bridge-356.2-1.0.1.el10_2.noarch.rpm cockpit-doc-356.2-1.0.1.el10_2.noarch.rpm cockpit-packagekit-356.2-1.0.1.el10_2.noarch.rpm cockpit-storaged-356.2-1.0.1.el10_2.noarch.rpm cockpit-system-356.2-1.0.1.el10_2.noarch.rpm cockpit-ws-356.2-1.0.1.el10_2.x86_64.rpm cockpit-ws-selinux-356.2-1.0.1.el10_2.x86_64.rpm

aarch64

cockpit-356.2-1.0.1.el10_2.aarch64.rpm cockpit-bridge-356.2-1.0.1.el10_2.noarch.rpm cockpit-doc-356.2-1.0.1.el10_2.noarch.rpm cockpit-packagekit-356.2-1.0.1.el10_2.noarch.rpm cockpit-storaged-356.2-1.0.1.el10_2.noarch.rpm cockpit-system-356.2-1.0.1.el10_2.noarch.rpm cockpit-ws-356.2-1.0.1.el10_2.aarch64.rpm cockpit-ws-selinux-356.2-1.0.1.el10_2.aarch64.rpm

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2026-4802

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.