Explore top 10 tips to secure your open-source projects now. Read More
×
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-39798 http://linux.oracle.com/errata/ELSA-2026-39798.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: python-unversioned-command-3.9.25-7.0.1.el9_8.2.noarch.rpm python3-3.9.25-7.0.1.el9_8.2.i686.rpm python3-3.9.25-7.0.1.el9_8.2.x86_64.rpm python3-debug-3.9.25-7.0.1.el9_8.2.i686.rpm python3-debug-3.9.25-7.0.1.el9_8.2.x86_64.rpm python3-devel-3.9.25-7.0.1.el9_8.2.i686.rpm python3-devel-3.9.25-7.0.1.el9_8.2.x86_64.rpm python3-idle-3.9.25-7.0.1.el9_8.2.i686.rpm python3-idle-3.9.25-7.0.1.el9_8.2.x86_64.rpm python3-libs-3.9.25-7.0.1.el9_8.2.i686.rpm python3-libs-3.9.25-7.0.1.el9_8.2.x86_64.rpm python3-test-3.9.25-7.0.1.el9_8.2.i686.rpm python3-test-3.9.25-7.0.1.el9_8.2.x86_64.rpm python3-tkinter-3.9.25-7.0.1.el9_8.2.i686.rpm python3-tkinter-3.9.25-7.0.1.el9_8.2.x86_64.rpm aarch64: python-unversioned-command-3.9.25-7.0.1.el9_8.2.noarch.rpm python3-3.9.25-7.0.1.el9_8.2.aarch64.rpm python3-debug-3.9.25-7.0.1.el9_8.2.aarch64.rpm python3-devel-3.9.25-7.0.1.el9_8.2.aarch64.rpm python3-idle-3.9.25-7.0.1.el9_8.2.aarch64.rpm python3-libs-3.9.25-7.0.1.el9_8.2.aarch64.rpm python3-test-3.9.25-7.0.1.el9_8.2.aarch64.rpm python3-tkinter-3.9.25-7.0.1.el9_8.2.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/python3.9-3.9.25-7.0.1.el9_8.2.src.rpm Related CVEs: CVE-2026-15308 Description of changes: [3.9.25-7.0.1.el9_8.2] - Remove upstream URL reference [3.9.25-7.2] - Security fix for CVE-2026-15308 Resolves: RHEL-193786 [3.9.25-7.1] - Fix ssl.SSLError: [ASN1: NOT_ENOUGH_DATA] not enough data with OpenSSL 3.5.7+ Resolves: RHEL-194207 _______________________________________________ El-errata mailing list
An update that solves two vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 16) Announcement ID: SUSE-SU-2026:22036-1 Release Date: 2026-06-02T07:22:26Z Rating: important References: * bsc#1261630 * bsc#1261845 Cross-References: * CVE-2026-23437 * CVE-2026-31406 CVSS scores: * CVE-2026-23437 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23437 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23437 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23437 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31406 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31406 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31406 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.12.0-160000.32.1 fixes various security issues The following security issues were fixed: * CVE-2026-23437: net: shaper: protect late read accesses to the hierarchy (bsc#1261845). * CVE-2026-31406: xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() (bsc#1261630). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-858=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-858=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (ppc64le s390x x86_64) *kernel-livepatch-SLE16_Update_11-debugsource-2-160000.1.1 * kernel-livepatch-6_12_0-160000_32-default-debuginfo-2-160000.1.1 * kernel-livepatch-6_12_0-160000_32-default-2-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * kernel-livepatch-SLE16_Update_11-debugsource-2-160000.1.1 * kernel-livepatch-6_12_0-160000_32-default-debuginfo-2-160000.1.1 * kernel-livepatch-6_12_0-160000_32-default-2-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-23437.html * https://www.suse.com/security/cve/CVE-2026-31406.html * https://bugzilla.suse.com/show_bug.cgi?id=1261630 * https://bugzilla.suse.com/show_bug.cgi?id=1261845 . # Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 16) Announcement ID:. update, solves, vulnerabilities, installed, security, linux. . Severity: Important. LinuxSecurity.com Team
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-9686 http://linux.oracle.com/errata/ELSA-2026-9686.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: java-17-openjdk-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-demo-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-demo-fastdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-demo-slowdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-devel-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-devel-fastdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-devel-slowdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-fastdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-headless-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-headless-fastdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-headless-slowdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-javadoc-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-javadoc-zip-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-jmods-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-jmods-fastdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-jmods-slowdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-slowdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-src-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-src-fastdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-src-slowdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-static-libs-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-static-libs-fastdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm java-17-openjdk-static-libs-slowdebug-17.0.19.0.10-2.0.1.el9.x86_64.rpm aarch64: java-17-openjdk-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-demo-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-demo-fastdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-demo-slowdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-devel-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-devel-fastdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-devel-slowdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-fastdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-headless-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-headless-fastdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-headless-slowdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-javadoc-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-javadoc-zip-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-jmods-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-jmods-fastdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-jmods-slowdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-slowdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-src-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-src-fastdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-src-slowdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-static-libs-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-static-libs-fastdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm java-17-openjdk-static-libs-slowdebug-17.0.19.0.10-2.0.1.el9.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/java-17-openjdk-17.0.19.0.10-2.0.1.el9.src.rpm Related CVEs: CVE-2026-22007 CVE-2026-22013 CVE-2026-22016 CVE-2026-22018 CVE-2026-22021 CVE-2026-23865 CVE-2026-34268 CVE-2026-34282 Description of changes: [1:17.0.19.0.10-2.0.1] - Add Oracle vendor bug URL [Orabug: 34340155] [1:17.0.19.0.10-2] - Set rpmrelease to 2 for PQC signing [1:17.0.19.0.10-1] - Update to jdk-17.0.19+10 (GA) - Add to .gitignore openjdk-17.0.19+10.tar.xz - Set updatever to 19 - Set buildver to 10 - Set rpmrelease to 1 - Update sources to openjdk-17.0.19+10.tar.xz - ** This tarball is embargoed until 2026-04-21 @ 1pm PT. ** - Set tzdata requires and build requires to 2026a - Set bundled freetype library version to 2.14.2 - Set bundled giflib library version to 6.1.2 - Set bundled harfbuzz library version to 12.3.2 - Set bundled libpng library version to 1.6.57 - Set bundled zlib library version to 1.3.2 - Set fipsver to 62c0f885e30 - Sync NEWS from openjdk-portable-rhel-8 - Sync java-17-openjdk-portable.specfile from openjdk-portable-rhel-8 - Set portablerelease to 1 - Resolves: RHEL-133292 - Resolves: RHEL-147350 - Resolves:RHEL-148408 - Resolves: RHEL-148987 - Resolves: RHEL-161296 - Resolves: RHEL-161445 - Resolves: RHEL-157135 [1:17.0.18.0.8-2] - Set portablerelease to 2 - Remove test to ensure blocked.certs is valid, done in portable - Related: RHEL-122136 - Related: RHEL-131590 - Related: RHEL-131601 - Related: RHEL-139552 - Related: RHEL-149327 [1:17.0.18.0.8-2] - Add test to ensure blocked.certs is valid (OPENJDK-4362) - Restore NEWS file so portable can be rebuilt - Resolves: RHEL-149327 [1:17.0.18.0.8-2] - Set rpmrelease to 2 - Sync java-17-openjdk-portable.specfile from openjdk-portable-centos-9 - Set fipsver to e1780dd5d39 - Resolves: RHEL-122136 _______________________________________________ El-errata mailing list
An update that solves one vulnerability can now be installed.. # docker-29.2.1_ce-37.1 on GA media Announcement ID: openSUSE-SU-2026:10261-1 Rating: moderate Cross-References: * CVE-2025-67499 CVSS scores: * CVE-2025-67499 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2025-67499 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the docker-29.2.1_ce-37.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * docker 29.2.1_ce-37.1 * docker-bash-completion 29.2.1_ce-37.1 * docker-buildx 0.31.1-37.1 * docker-fish-completion 29.2.1_ce-37.1 * docker-rootless-extras 29.2.1_ce-37.1 * docker-zsh-completion 29.2.1_ce-37.1 ## References: * https://www.suse.com/security/cve/CVE-2025-67499.html . An important update for openSUSE docker addressing CVE-2025-67499 with a moderate severity rating. Install now.. openSUSE, docker, security issue, CVE-2025-67499, system patch. . LinuxSecurity.com Team
An update that solves three vulnerabilities can now be installed.. # Security update for the Linux Kernel RT (Live Patch 3 for SUSE Linux Enterprise 15 SP7) Announcement ID: SUSE-SU-2026:0490-1 Release Date: 2026-02-13T06:04:16Z Rating: important References: * bsc#1249480 * bsc#1253439 * bsc#1253473 Cross-References: * CVE-2025-39742 * CVE-2025-40129 * CVE-2025-40186 CVSS scores: * CVE-2025-39742 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-39742 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-39742 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40129 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-40129 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-40186 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-40186 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Live Patching 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves three vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise kernel 6.4.0-150700.7.13 fixes various security issues The following security issues were fixed: * CVE-2025-39742: RDMA: hfi1: fix possible divide-by-zero in find_hw_thread_mask() (bsc#1249480). * CVE-2025-40129: sunrpc: fix null pointer dereference on zero-length checksum (bsc#1253473). * CVE-2025-40186: tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request() (bsc#1253439). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP7 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP7-2026-490=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP7 (x86_64) * kernel-livepatch-6_4_0-150700_7_13-rt-debuginfo-6-150700.2.1 * kernel-livepatch-SLE15-SP7-RT_Update_3-debugsource-6-150700.2.1 * kernel-livepatch-6_4_0-150700_7_13-rt-6-150700.2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-39742.html * https://www.suse.com/security/cve/CVE-2025-40129.html * https://www.suse.com/security/cve/CVE-2025-40186.html * https://bugzilla.suse.com/show_bug.cgi?id=1249480 * https://bugzilla.suse.com/show_bug.cgi?id=1253439 * https://bugzilla.suse.com/show_bug.cgi?id=1253473 . A security update for SUSE Linux improves stability and addresses multiple vulnerabilities in kernel RT.. SUSE Linux, Kernel RT, Security Patch. . Severity: Important. LinuxSecurity.com Team
# Security update for helm Announcement ID: SUSE-SU-2026:0480-1 Release Date: 2026-02-12T15:35:52Z Rating: important References:. # Security update for helm Announcement ID: SUSE-SU-2026:0480-1 Release Date: 2026-02-12T15:35:52Z Rating: important References: Affected Products: * Containers Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that can now be installed. ## Description: This update for helm rebuilds it against the current GO security release. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-480=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-480=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-480=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-480=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-480=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-480=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-480=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-480=1 * Containers Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Containers-15-SP7-2026-480=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-480=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-480=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-480=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-480=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-480=1 ## Package List: * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server 15 SP6 LTSS(aarch64 ppc64le s390x x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * openSUSE Leap 15.6 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-fish-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * helm-bash-completion-3.19.1-150000.1.64.1 * Containers Module 15-SP7 (aarch64 ppc64le s390x x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * Containers Module 15-SP7 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Package Hub 15 15-SP7(noarch) * helm-fish-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * helm-3.19.1-150000.1.64.1 * helm-debuginfo-3.19.1-150000.1.64.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * helm-zsh-completion-3.19.1-150000.1.64.1 * helm-bash-completion-3.19.1-150000.1.64.1 . SUSE Security update for helm addresses important vulnerabilities to enhance system integrity and performance.. SUSE helm security update important patch. . Severity: Important. LinuxSecurity.com Team
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-1178 http://linux.oracle.com/errata/ELSA-2026-1178.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable LinuxNetwork: x86_64: kernel-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-abi-stablelists-6.12.0-124.29.1.el10_1.noarch.rpm kernel-core-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-cross-headers-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-debug-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-debug-core-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-debug-devel-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-debug-devel-matched-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-debug-modules-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-debug-modules-core-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-debug-modules-extra-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-debug-uki-virt-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-devel-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-devel-matched-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-doc-6.12.0-124.29.1.el10_1.noarch.rpm kernel-headers-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-modules-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-modules-core-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-modules-extra-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-modules-extra-matched-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-tools-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-tools-libs-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-tools-libs-devel-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-uki-virt-6.12.0-124.29.1.el10_1.x86_64.rpm kernel-uki-virt-addons-6.12.0-124.29.1.el10_1.x86_64.rpm libperf-6.12.0-124.29.1.el10_1.x86_64.rpm perf-6.12.0-124.29.1.el10_1.x86_64.rpm python3-perf-6.12.0-124.29.1.el10_1.x86_64.rpm rtla-6.12.0-124.29.1.el10_1.x86_64.rpm rv-6.12.0-124.29.1.el10_1.x86_64.rpm aarch64: kernel-cross-headers-6.12.0-124.29.1.el10_1.aarch64.rpm kernel-headers-6.12.0-124.29.1.el10_1.aarch64.rpm kernel-tools-6.12.0-124.29.1.el10_1.aarch64.rpm kernel-tools-libs-6.12.0-124.29.1.el10_1.aarch64.rpm kernel-tools-libs-devel-6.12.0-124.29.1.el10_1.aarch64.rpm libperf-6.12.0-124.29.1.el10_1.aarch64.rpm perf-6.12.0-124.29.1.el10_1.aarch64.rpm python3-perf-6.12.0-124.29.1.el10_1.aarch64.rpm rtla-6.12.0-124.29.1.el10_1.aarch64.rpm rv-6.12.0-124.29.1.el10_1.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/kernel-6.12.0-124.29.1.el10_1.src.rpm Related CVEs: CVE-2025-38383 Description of changes: [6.12.0-124.29.1] - Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985782] - Disable UKI signing [Orabug: 36571828] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 has_lease check (Paulo Alcantara) [RHEL-128581] - smb: client: remove unused fid_lock (Paulo Alcantara) [RHEL-128581] - smb: client: update cfid-> last_access_time in open_cached_dir_by_dentry() (Paulo Alcantara) [RHEL-128581] - smb: client: ensure open_cached_dir_by_dentry() only returns valid cfid (Paulo Alcantara) [RHEL-128581] - smb: client: account smb directory cache usage and per-tcon totals (Paulo Alcantara) [RHEL-128581] - smb: client: add drop_dir_cache module parameter to invalidate cached dirents (Paulo Alcantara) [RHEL-128581] - smb: client: show lease state as R/H/W (or NONE) in open_files (Paulo Alcantara) [RHEL-128581] - smb: client: show negotiated cipher in DebugData (Paulo Alcantara) [RHEL-128581] - smb: client: add new tracepoint to trace lease break notification (Paulo Alcantara) [RHEL-128581] - smb: client: Fix NULL pointer dereference in cifs_debug_dirs_proc_show() (Paulo Alcantara) [RHEL-128581] - coredump: Only sort VMAs when core_sort_vma sysctl is set (Herton R. Krzesinski) [RHEL-113364] _______________________________________________ El-errata mailing list
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2025-23932 http://linux.oracle.com/errata/ELSA-2025-23932.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: x86_64: httpd-2.4.63-4.0.1.el10_1.3.x86_64.rpm httpd-core-2.4.63-4.0.1.el10_1.3.x86_64.rpm httpd-devel-2.4.63-4.0.1.el10_1.3.x86_64.rpm httpd-filesystem-2.4.63-4.0.1.el10_1.3.noarch.rpm httpd-manual-2.4.63-4.0.1.el10_1.3.noarch.rpm httpd-tools-2.4.63-4.0.1.el10_1.3.x86_64.rpm mod_ldap-2.4.63-4.0.1.el10_1.3.x86_64.rpm mod_lua-2.4.63-4.0.1.el10_1.3.x86_64.rpm mod_proxy_html-2.4.63-4.0.1.el10_1.3.x86_64.rpm mod_session-2.4.63-4.0.1.el10_1.3.x86_64.rpm mod_ssl-2.4.63-4.0.1.el10_1.3.x86_64.rpm aarch64: httpd-2.4.63-4.0.1.el10_1.3.aarch64.rpm httpd-core-2.4.63-4.0.1.el10_1.3.aarch64.rpm httpd-devel-2.4.63-4.0.1.el10_1.3.aarch64.rpm httpd-filesystem-2.4.63-4.0.1.el10_1.3.noarch.rpm httpd-manual-2.4.63-4.0.1.el10_1.3.noarch.rpm httpd-tools-2.4.63-4.0.1.el10_1.3.aarch64.rpm mod_ldap-2.4.63-4.0.1.el10_1.3.aarch64.rpm mod_lua-2.4.63-4.0.1.el10_1.3.aarch64.rpm mod_proxy_html-2.4.63-4.0.1.el10_1.3.aarch64.rpm mod_session-2.4.63-4.0.1.el10_1.3.aarch64.rpm mod_ssl-2.4.63-4.0.1.el10_1.3.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/httpd-2.4.63-4.0.1.el10_1.3.src.rpm Related CVEs: CVE-2025-58098 CVE-2025-65082 CVE-2025-66200 Description of changes: [2.4.63-4.0.1.3] - Replace index.html with Oracle's index page oracle_index.html. [2.4.63-4.3] - Resolves: RHEL-135052 - httpd: Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo (CVE-2025-66200) - Resolves: RHEL-135035 - httpd: Apache HTTP Server: CGI environment variable override (CVE-2025-65082) - Resolves: RHEL-134467 - httpd: Apache HTTP Server: Server Side Includes adds query string to #exec cmd=... (CVE-2025-58098) [2.4.63-4.2] - Resolves: RHEL-125894 - mod_ssl: allow more fine grained SSL SNI vhost check to avoidunnecessary 421 errors after CVE-2025-23048 fix _______________________________________________ El-errata mailing list
Get the latest Linux and open source security news straight to your inbox.