Alerts This Week
Warning Icon 1 401
Alerts This Week
Warning Icon 1 401

Oracle Linux 9 ELSA-2025-23241 Kernel Important DoS CVE-2025-38499

oracle
Calendar Grey December 20, 2025
Oracle Linux Logo Esm H88
Updated Oracle Linux 9 kernel packages addressing important issues including CVE-2025-38499 released for security.
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[5.14.0-611.16.1] - Disable UKI signing [Orabug: 36571828] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 <= 15.3-1.0.5] - Remove upstream reference during boot (Kevin Lyons) [Orabug: 34729535] - Add Oracle Linux IMA certificates - Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985764] [5.14.0-611.16.1] - CVE-2025-38499 kernel: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns (Abhi Das) [RHEL-129261] {CVE-2025-38499} - tls: wait for pending async decryptions if tls_strp_msg_hold fails (CKI Backport Bot) [RHEL-128860] {CVE-2025-40176} [5.14.0-611.15.1] - nbd: override creds to kernel when calling sock_{send,recv}msg() (Ming Lei) [RHEL-123845] - scsi: lpfc: avoid crashing in lpfc_nlp_get() if lpfc_no...

Read the Full Advisory

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-611.16.1.el9_7.src.rpm

x86_64

kernel-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-abi-stablelists-5.14.0-611.16.1.el9_7.noarch.rpm kernel-core-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-cross-headers-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-debug-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-debug-core-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-debug-devel-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-debug-devel-matched-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-debug-modules-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-debug-modules-core-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-debug-modules-extra-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-debug-uki-virt-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-devel-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-devel-matched-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-doc-5.14.0-611.16.1.el9_7.noarch.rpm kernel-headers-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-modules-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-modules-core-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-modules-extra-5.14.0-611.16.1.el9_7.x86_64.rpm kernel-tools-5.14....

Read the Full Advisory

aarch64

kernel-cross-headers-5.14.0-611.16.1.el9_7.aarch64.rpm kernel-headers-5.14.0-611.16.1.el9_7.aarch64.rpm kernel-tools-5.14.0-611.16.1.el9_7.aarch64.rpm kernel-tools-libs-5.14.0-611.16.1.el9_7.aarch64.rpm kernel-tools-libs-devel-5.14.0-611.16.1.el9_7.aarch64.rpm libperf-5.14.0-611.16.1.el9_7.aarch64.rpm perf-5.14.0-611.16.1.el9_7.aarch64.rpm python3-perf-5.14.0-611.16.1.el9_7.aarch64.rpm rtla-5.14.0-611.16.1.el9_7.aarch64.rpm rv-5.14.0-611.16.1.el9_7.aarch64.rpm

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2025-38499 CVE-2025-39966 CVE-2025-40176

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here