Explore top 10 tips to secure your open-source projects now. Read More
×An update that can now be installed.. # Security update for podman Announcement ID: SUSE-SU-2026:3070-1 Release Date: 2026-07-16T02:34:18Z Rating: important References: Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Server 15 SP3 An update that can now be installed. ## Description: This update for podman rebuilds it against the current go security release. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2026-3070=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2026-3070=1 ## Package List: * openSUSE Leap 15.3 (aarch64 i586 ppc64le s390x x86_64) * podman-4.9.5-150300.9.80.1 * podmansh-4.9.5-150300.9.80.1 * podman-debuginfo-4.9.5-150300.9.80.1 * podman-remote-4.9.5-150300.9.80.1 * podman-remote-debuginfo-4.9.5-150300.9.80.1 * openSUSE Leap 15.3 (noarch) * podman-docker-4.9.5-150300.9.80.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * podman-debuginfo-4.9.5-150300.9.80.1 * podman-4.9.5-150300.9.80.1 . This important update for podman fixes security issues with openSUSE Leap 15.3 and SUSE Enterprise Storage 7.1.. podman security patch, openSUSE update, important software fix. . Severity: Important. LinuxSecurity.com Team
An update that solves 8 vulnerabilities can now be installed.. # ImageMagick-7.1.2.27-2.1 on GA media Announcement ID: openSUSE-SU-2026:11273-1 Rating: moderate Cross-References: * CVE-2026-56366 * CVE-2026-56372 * CVE-2026-56373 * CVE-2026-61465 * CVE-2026-61857 * CVE-2026-61858 * CVE-2026-61861 * CVE-2026-61870 CVSS scores: * CVE-2026-56366 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2026-56366 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-56372 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2026-56372 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-56373 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-56373 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-61465 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2026-61465 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-61857 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-61857 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-61858 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2026-61858 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-61861 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-61861 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-61870 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-61870 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves 8 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the ImageMagick-7.1.2.27-2.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: *ImageMagick 7.1.2.27-2.1 * ImageMagick-config-7-SUSE 7.1.2.27-2.1 * ImageMagick-devel 7.1.2.27-2.1 * ImageMagick-devel-32bit 7.1.2.27-2.1 * ImageMagick-doc 7.1.2.27-2.1 * ImageMagick-extra 7.1.2.27-2.1 * libMagick++-7_Q16HDRI5 7.1.2.27-2.1 * libMagick++-7_Q16HDRI5-32bit 7.1.2.27-2.1 * libMagick++-devel 7.1.2.27-2.1 * libMagick++-devel-32bit 7.1.2.27-2.1 * libMagickCore-7_Q16HDRI10 7.1.2.27-2.1 * libMagickCore-7_Q16HDRI10-32bit 7.1.2.27-2.1 * libMagickWand-7_Q16HDRI10 7.1.2.27-2.1 * libMagickWand-7_Q16HDRI10-32bit 7.1.2.27-2.1 * perl-PerlMagick 7.1.2.27-2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-56366.html * https://www.suse.com/security/cve/CVE-2026-56372.html * https://www.suse.com/security/cve/CVE-2026-56373.html * https://www.suse.com/security/cve/CVE-2026-61465.html * https://www.suse.com/security/cve/CVE-2026-61857.html * https://www.suse.com/security/cve/CVE-2026-61858.html * https://www.suse.com/security/cve/CVE-2026-61861.html * https://www.suse.com/security/cve/CVE-2026-61870.html . An update for ImageMagick on openSUSE fixes 8 security issues, including several CVE vulnerabilities.. ImageMagick security updates, openSUSE vulnerabilities, moderate threat patches, Linux application security. . Severity: moderate. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for yelp Announcement ID: SUSE-SU-2026:3036-1 Release Date: 2026-07-15T11:44:33Z Rating: important References: * bsc#1269625 Cross-References: * CVE-2026-13601 CVSS scores: * CVE-2026-13601 ( SUSE ): 6.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N * CVE-2026-13601 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N * CVE-2026-13601 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N * CVE-2026-13601 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N * CVE-2026-13601 ( NVD ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N Affected Products: * Desktop Applications Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for yelp fixes the following issue * CVE-2026-13601: overly permissive Content Security Policy allows host file disclosure via Flatpak applications (bsc#1269625). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Desktop Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-3036=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-3036=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-3036=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-3036=1 ## Package List: *SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * yelp-debugsource-42.2-150600.3.6.1 * libyelp0-42.2-150600.3.6.1 * yelp-devel-42.2-150600.3.6.1 * libyelp0-debuginfo-42.2-150600.3.6.1 * yelp-debuginfo-42.2-150600.3.6.1 * yelp-42.2-150600.3.6.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * yelp-lang-42.2-150600.3.6.1 * openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64) * yelp-debugsource-42.2-150600.3.6.1 * libyelp0-42.2-150600.3.6.1 * yelp-devel-42.2-150600.3.6.1 * libyelp0-debuginfo-42.2-150600.3.6.1 * yelp-debuginfo-42.2-150600.3.6.1 * yelp-42.2-150600.3.6.1 * openSUSE Leap 15.6 (noarch) * yelp-lang-42.2-150600.3.6.1 * Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * yelp-debugsource-42.2-150600.3.6.1 * libyelp0-42.2-150600.3.6.1 * yelp-devel-42.2-150600.3.6.1 * libyelp0-debuginfo-42.2-150600.3.6.1 * yelp-debuginfo-42.2-150600.3.6.1 * yelp-42.2-150600.3.6.1 * Desktop Applications Module 15-SP7 (noarch) * yelp-lang-42.2-150600.3.6.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * yelp-debugsource-42.2-150600.3.6.1 * libyelp0-42.2-150600.3.6.1 * yelp-devel-42.2-150600.3.6.1 * libyelp0-debuginfo-42.2-150600.3.6.1 * yelp-debuginfo-42.2-150600.3.6.1 * yelp-42.2-150600.3.6.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * yelp-lang-42.2-150600.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2026-13601.html * https://bugzilla.suse.com/show_bug.cgi?id=1269625 . An essential security update for openSUSE's yelp addresses a significant file disclosure risk. Install it now.. openSUSE security file disclosure update yelp vulnerability. . Severity: Important. LinuxSecurity.com Team
An update that can now be installed.. # Security update for rootlesskit Announcement ID: SUSE-SU-2026:3000-1 Release Date: 2026-07-15T05:04:34Z Rating: important References: Affected Products: * Containers Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that can now be installed. ## Description: This update for rootlesskit rebuilds it against the current go security release. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Containers Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Containers-15-SP7-2026-3000=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-3000=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-3000=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-3000=1 ## Package List: * openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64) * rootlesskit-1.1.1-150600.3.8.1 * rootlesskit-debuginfo-1.1.1-150600.3.8.1 * Containers Module 15-SP7 (aarch64 ppc64le s390x x86_64) * rootlesskit-1.1.1-150600.3.8.1 * rootlesskit-debuginfo-1.1.1-150600.3.8.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * rootlesskit-1.1.1-150600.3.8.1 * rootlesskit-debuginfo-1.1.1-150600.3.8.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * rootlesskit-1.1.1-150600.3.8.1 * rootlesskit-debuginfo-1.1.1-150600.3.8.1 . Update for rootlesskit in openSUSE focuses on stability and security enhancements for containermanagement updates.. rootlesskit security, openSUSE updates, Linux container management. . Severity: Important. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed.. # Security update for openssl-3 Announcement ID: SUSE-SU-2026:3005-1 Release Date: 2026-07-15T07:26:31Z Rating: moderate References: * bsc#1266344 * bsc#1266350 Cross-References: * CVE-2026-34182 * CVE-2026-42767 CVSS scores: * CVE-2026-34182 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-34182 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-34182 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-42767 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-42767 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42767 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for openssl-3 fixes the following issues * CVE-2026-34182: CMS AuthEnvelopedData Processing May Accept Forged Messages (bsc#1266344). * CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption (bsc#1266350). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-3005=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-3005=1 *SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-3005=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-3005=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-3005=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libopenssl3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-3.0.8-150500.5.69.1 * openssl-3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-debugsource-3.0.8-150500.5.69.1 * libopenssl3-3.0.8-150500.5.69.1 * libopenssl-3-devel-3.0.8-150500.5.69.1 * openSUSE Leap 15.5 (aarch64 i586 ppc64le s390x x86_64) * libopenssl3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-3.0.8-150500.5.69.1 * openssl-3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-debugsource-3.0.8-150500.5.69.1 * libopenssl3-3.0.8-150500.5.69.1 * libopenssl-3-devel-3.0.8-150500.5.69.1 * openSUSE Leap 15.5 (noarch) * openssl-3-doc-3.0.8-150500.5.69.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libopenssl3-64bit-3.0.8-150500.5.69.1 * libopenssl-3-devel-64bit-3.0.8-150500.5.69.1 * libopenssl3-64bit-debuginfo-3.0.8-150500.5.69.1 * openSUSE Leap 15.5 (x86_64) * libopenssl3-32bit-3.0.8-150500.5.69.1 * libopenssl-3-devel-32bit-3.0.8-150500.5.69.1 * libopenssl3-32bit-debuginfo-3.0.8-150500.5.69.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libopenssl3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-3.0.8-150500.5.69.1 * openssl-3-debugsource-3.0.8-150500.5.69.1 * libopenssl3-3.0.8-150500.5.69.1 * libopenssl-3-devel-3.0.8-150500.5.69.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libopenssl3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-3.0.8-150500.5.69.1 * openssl-3-debugsource-3.0.8-150500.5.69.1 *libopenssl3-3.0.8-150500.5.69.1 * libopenssl-3-devel-3.0.8-150500.5.69.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libopenssl3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-debuginfo-3.0.8-150500.5.69.1 * openssl-3-3.0.8-150500.5.69.1 * openssl-3-debugsource-3.0.8-150500.5.69.1 * libopenssl3-3.0.8-150500.5.69.1 * libopenssl-3-devel-3.0.8-150500.5.69.1 ## References: * https://www.suse.com/security/cve/CVE-2026-34182.html * https://www.suse.com/security/cve/CVE-2026-42767.html * https://bugzilla.suse.com/show_bug.cgi?id=1266344 * https://bugzilla.suse.com/show_bug.cgi?id=1266350 . This update addresses security flaws in OpenSSL-3 on openSUSE, improving system integrity and safety.. OpenSSL Update, SUSE Security Fix, openSUSE Advisory. . Severity: moderate. LinuxSecurity.com Team
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-36645 http://linux.oracle.com/errata/ELSA-2026-36645.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: kernel-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-abi-stablelists-5.14.0-687.23.1.el9_8.noarch.rpm kernel-core-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-cross-headers-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-debug-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-debug-core-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-debug-devel-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-debug-devel-matched-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-debug-modules-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-debug-modules-core-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-debug-modules-extra-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-debug-uki-virt-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-devel-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-devel-matched-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-doc-5.14.0-687.23.1.el9_8.noarch.rpm kernel-headers-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-modules-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-modules-core-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-modules-extra-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-tools-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-tools-libs-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-tools-libs-devel-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-uki-virt-5.14.0-687.23.1.el9_8.x86_64.rpm kernel-uki-virt-addons-5.14.0-687.23.1.el9_8.x86_64.rpm libperf-5.14.0-687.23.1.el9_8.x86_64.rpm perf-5.14.0-687.23.1.el9_8.x86_64.rpm python3-perf-5.14.0-687.23.1.el9_8.x86_64.rpm rtla-5.14.0-687.23.1.el9_8.x86_64.rpm rv-5.14.0-687.23.1.el9_8.x86_64.rpm aarch64: kernel-cross-headers-5.14.0-687.23.1.el9_8.aarch64.rpm kernel-headers-5.14.0-687.23.1.el9_8.aarch64.rpm kernel-tools-5.14.0-687.23.1.el9_8.aarch64.rpm kernel-tools-libs-5.14.0-687.23.1.el9_8.aarch64.rpm kernel-tools-libs-devel-5.14.0-687.23.1.el9_8.aarch64.rpm libperf-5.14.0-687.23.1.el9_8.aarch64.rpm perf-5.14.0-687.23.1.el9_8.aarch64.rpm python3-perf-5.14.0-687.23.1.el9_8.aarch64.rpm rtla-5.14.0-687.23.1.el9_8.aarch64.rpm rv-5.14.0-687.23.1.el9_8.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-687.23.1.el9_8.src.rpm RelatedCVEs: CVE-2026-43074 CVE-2026-46242 CVE-2026-53266 Description of changes: [5.14.0-687.23.1] - Disable UKI signing [Orabug: 36571828] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 dying flag (Ian Kent) [RHEL-180773] - eventpoll: drop dead bool return from ep_remove_epi() (Ian Kent) [RHEL-180773] - eventpoll: refresh eventpoll_release() fast-path comment (Ian Kent) [RHEL-180773] - eventpoll: move f_lock acquisition into ep_remove_file() (Ian Kent) [RHEL-180773] - eventpoll: fix ep_remove struct eventpoll / struct file UAF (Ian Kent) [RHEL-180773] {CVE-2026-46242} - eventpoll: drop vestigial __ prefix from ep_remove_{file,epi}() (Ian Kent) [RHEL-180773] - eventpoll: move epi_fget() up (Ian Kent) [RHEL-180773] - eventpoll: rename ep_remove_safe() back to ep_remove() (Ian Kent) [RHEL-180773] - eventpoll: kill __ep_remove() (Ian Kent) [RHEL-180773] - eventpoll: split __ep_remove() (Ian Kent) [RHEL-180773] - eventpoll: use hlist_is_singular_node() in __ep_remove() (Ian Kent) [RHEL-180773] - eventpoll: defer struct eventpoll free to RCU grace period (Ian Kent) [RHEL-173830] {CVE-2026-43074} - epoll: annotate racy check (Ian Kent) [RHEL-180773] - netfilter: bridge: make ebt_snat ARP rewrite writable (CKI Backport Bot) [RHEL-182344] - tg3: Fix race for querying speed/duplex (CKI Backport Bot) [RHEL-182768] _______________________________________________ El-errata mailing list
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-33126 http://linux.oracle.com/errata/ELSA-2026-33126.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: compat-libpthread-nonshared-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-2.28-251.0.4.el8_10.38.i686.rpm glibc-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-all-langpacks-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-benchtests-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-common-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-devel-2.28-251.0.4.el8_10.38.i686.rpm glibc-devel-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-doc-2.28-251.0.4.el8_10.38.noarch.rpm glibc-gconv-extra-2.28-251.0.4.el8_10.38.i686.rpm glibc-gconv-extra-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-headers-2.28-251.0.4.el8_10.38.i686.rpm glibc-headers-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-aa-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-af-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-agr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ak-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-am-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-an-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-anp-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ar-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-as-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ast-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ayc-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-az-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-be-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-bem-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ber-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-bg-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-bhb-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-bho-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-bi-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-bn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-bo-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-br-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-brx-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-bs-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-byn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ca-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ce-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-chr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-cmn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-crh-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-cs-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-csb-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-cv-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-cy-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-da-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-de-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-doi-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-dsb-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-dv-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-dz-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-el-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-en-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-eo-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-es-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-et-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-eu-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-fa-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ff-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-fi-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-fil-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-fo-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-fr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-fur-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-fy-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ga-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-gd-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-gez-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-gl-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-gu-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-gv-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ha-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-hak-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-he-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-hi-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-hif-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-hne-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-hr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-hsb-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ht-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-hu-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-hy-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ia-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-id-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ig-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ik-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-is-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-it-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-iu-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ja-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ka-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-kab-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-kk-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-kl-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-km-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-kn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ko-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-kok-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ks-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ku-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-kw-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ky-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-lb-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-lg-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-li-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-lij-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ln-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-lo-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-lt-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-lv-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-lzh-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mag-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mai-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mfe-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mg-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mhr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mi-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-miq-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mjw-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mk-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ml-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mni-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ms-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-mt-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-my-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-nan-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-nb-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-nds-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ne-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-nhn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-niu-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-nl-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-nn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-nr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-nso-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-oc-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-om-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-or-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-os-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-pa-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-pap-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-pl-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ps-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-pt-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-quz-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-raj-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ro-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ru-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-rw-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sa-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sah-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sat-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sc-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sd-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-se-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sgs-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-shn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-shs-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-si-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sid-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sk-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sl-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sm-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-so-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sq-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ss-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-st-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sv-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-sw-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-szl-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ta-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tcy-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-te-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tg-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-th-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-the-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ti-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tig-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tk-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tl-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tn-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-to-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tpi-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tr-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ts-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-tt-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ug-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-uk-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-unm-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ur-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-uz-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-ve-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-vi-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-wa-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-wae-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-wal-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-wo-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-xh-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-yi-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-yo-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-yue-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-yuw-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-zh-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-langpack-zu-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-locale-source-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-minimal-langpack-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-nss-devel-2.28-251.0.4.el8_10.38.i686.rpm glibc-nss-devel-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-static-2.28-251.0.4.el8_10.38.i686.rpm glibc-static-2.28-251.0.4.el8_10.38.x86_64.rpm glibc-utils-2.28-251.0.4.el8_10.38.x86_64.rpm libnsl-2.28-251.0.4.el8_10.38.i686.rpm libnsl-2.28-251.0.4.el8_10.38.x86_64.rpm nscd-2.28-251.0.4.el8_10.38.x86_64.rpm nss_db-2.28-251.0.4.el8_10.38.i686.rpm nss_db-2.28-251.0.4.el8_10.38.x86_64.rpm nss_hesiod-2.28-251.0.4.el8_10.38.i686.rpm nss_hesiod-2.28-251.0.4.el8_10.38.x86_64.rpm aarch64: compat-libpthread-nonshared-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-all-langpacks-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-benchtests-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-common-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-devel-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-doc-2.28-251.0.4.el8_10.38.noarch.rpm glibc-gconv-extra-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-headers-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-aa-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-af-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-agr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ak-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-am-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-an-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-anp-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ar-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-as-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ast-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ayc-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-az-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-be-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-bem-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ber-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-bg-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-bhb-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-bho-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-bi-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-bn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-bo-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-br-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-brx-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-bs-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-byn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ca-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ce-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-chr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-cmn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-crh-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-cs-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-csb-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-cv-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-cy-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-da-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-de-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-doi-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-dsb-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-dv-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-dz-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-el-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-en-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-eo-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-es-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-et-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-eu-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-fa-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ff-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-fi-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-fil-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-fo-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-fr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-fur-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-fy-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ga-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-gd-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-gez-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-gl-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-gu-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-gv-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ha-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-hak-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-he-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-hi-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-hif-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-hne-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-hr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-hsb-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ht-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-hu-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-hy-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ia-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-id-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ig-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ik-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-is-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-it-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-iu-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ja-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ka-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-kab-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-kk-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-kl-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-km-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-kn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ko-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-kok-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ks-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ku-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-kw-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ky-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-lb-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-lg-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-li-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-lij-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ln-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-lo-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-lt-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-lv-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-lzh-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mag-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mai-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mfe-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mg-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mhr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mi-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-miq-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mjw-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mk-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ml-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mni-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ms-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-mt-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-my-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-nan-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-nb-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-nds-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ne-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-nhn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-niu-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-nl-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-nn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-nr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-nso-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-oc-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-om-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-or-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-os-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-pa-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-pap-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-pl-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ps-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-pt-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-quz-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-raj-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ro-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ru-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-rw-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sa-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sah-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sat-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sc-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sd-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-se-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sgs-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-shn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-shs-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-si-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sid-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sk-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sl-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sm-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-so-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sq-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ss-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-st-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sv-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-sw-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-szl-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ta-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tcy-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-te-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tg-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-th-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-the-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ti-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tig-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tk-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tl-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tn-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-to-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tpi-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tr-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ts-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-tt-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ug-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-uk-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-unm-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ur-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-uz-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-ve-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-vi-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-wa-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-wae-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-wal-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-wo-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-xh-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-yi-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-yo-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-yue-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-yuw-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-zh-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-langpack-zu-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-locale-source-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-minimal-langpack-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-nss-devel-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-static-2.28-251.0.4.el8_10.38.aarch64.rpm glibc-utils-2.28-251.0.4.el8_10.38.aarch64.rpm libnsl-2.28-251.0.4.el8_10.38.aarch64.rpm nscd-2.28-251.0.4.el8_10.38.aarch64.rpm nss_db-2.28-251.0.4.el8_10.38.aarch64.rpm nss_hesiod-2.28-251.0.4.el8_10.38.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/glibc-2.28-251.0.4.el8_10.38.src.rpm Related CVEs: CVE-2026-5450 Description of changes: [2.28-251.0.4.38] - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi Oracle history: May-26-2026 Cupertino Miranda - 2.28-251.0.4.37 - Forward port of Oracle patches Reviewed-by: David Faust May-7-2026 Cupertino Miranda - 2.28-251.0.4.34 - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi March-18-2026 Cupertino Miranda - 2.28-251.0.4.31 - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi February-24-2026 Cupertino Miranda - 2.28-251.0.4.27 - Fixed orabug 38834066 stpcpy MTE support Reviewed-by: Jose E. Marchesi December-8-2025 Cupertino Miranda - 2.28-251.0.3.27 - Forward port of Oracle patches Reviewed-by: David Faust August-5-2025 Cupertino Miranda - 2.28-251.0.3.25 - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi June-9-2025 Cupertino Miranda - 2.28-251.0.3.22 - Forward port of Oracle patches Reviewed-by: David Faust April-14-2025 Cupertino Miranda - 2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string functions Reviewed-by: Jose E. Marchesi March-17-2025 Cupertino Miranda - 2.28-251.0.2.14 - Forward port of Oracle patches Reviewed-by: David Faust February-19-2025 Cupertino Miranda - 2.28-251.0.2.13 - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi January-28-2025 Cupertino Miranda - 2.28-251.0.2.11 - Forward port ofOracle patches Reviewed-by: Jose E. Marchesi September-24-2024 Cupertino Miranda - 2.28-251.0.2.5 - Forward port of Oracle patches over 2.28-251.5 Reviewed-by: Jose E. Marchesi August-26-2024 Jose E. Marchesi - 2.28-251.0.2.4 - Forward port of Oracle patches over 2.28-251.4 Reviewed-by: David Faust May-24-2024 Cupertino Miranda - 2.28-251.0.2.2 - Forward port of Oracle patches over 2.28-251.2 Reviewed-by: Jose E. Marchesi May-23-2024 Cupertino Miranda - 2.28-251.0.2.1 - Forward port of Oracle patches over 2.28-251.1 Reviewed-by: Jose E. Marchesi May-22-2024 Cupertino Miranda - 2.28-251.0.2 - Forward port of Oracle patches for ol8-u10 Reviewed-by: Jose E. Marchesi March-28-2024 Cupertino Miranda - 2.28-251.0.1 - Forward port of Oracle patches for ol8-u10-beta Reviewed-by: Jose E. Marchesi March-5-2024 Cupertino Miranda - 2.28-236.0.1.12 - Forward port of Oracle patches. Reviewed-by: Jose E. Marchesi November-14-2023 Cupertino Miranda - 2.28-236.0.1.7 - Forward port of Oracle patches. Reviewed-by: Jose E. Marchesi October-4-2023 Cupertino Miranda - 2.28-236.0.1.6 - Forward port of Oracle patches. Reviewed-by: Jose E. Marchesi April-21-2023 Cupertino Miranda - 2.28-225.0.3 - OraBug 35317410 Glibc tunable to disable huge pages on pthread_create stacks - Created tunable glibc.pthread.stack_hugetlb to control when hugepages can be used for stack allocation. - In case THP are enabled and glibc.pthread.stack_hugetlb is set to 0, glibc will madvise the kernel not to use allow hugepages for stack allocations. Reviewed-by: Jose E. Marchesi April-11-2023 Cupertino Miranda - 2.28-225.0.2 - OraBug: 35268809 Fixed initialization of VDSO for tcache_key_initialize Reviewed-by: Jose E. Marchesi March-28-2023 Cupertino Miranda - 2.28-225.0.1 - Merge of Oracle patches for ol8u8 beta Reviewed-by: Jose E. Marchesi September-28-2022 Patrick McGehearty - 2.28-211.0.1 - Merge of Oracle patches for ol8u7 beta Reviewed-by: Jose E. Marchesi August-8-2022 Patrick McGehearty - 2.28-189.5.0.2 - Enable VDSO on x86_64, aarch64, i386, arm, and mips statically linked programs. - These changes enable reading the realtime clock without a kernel syscall. OraBug: 30478315 Reviewed-by: Jose E. Marchesi May-2-2022 Patrick McGehearty - 2.28-199.0.1 - Merge of patches from c8s 199 with ol8u6 beta Reviewed-by: Jose E. Marchesi - Update siginfo constants from linux kernel (OraBug: 33734528) - Remove limit on MALLOC_MMAP_THRESHOLD tunable (Orabug: 29630826) - Provide glibc.pthread.mutex_spin_count tunable for pthread adaptive - spin mutex (Orabug: 27982358) Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list (Patrick McGehearty) - add optimized memset for emag - add an ASIMD variant of strlen for falkor Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. (Orabug: 28849085) - Make _IO_funlockfile match __funlockfile and _IO_flockfile match __flockfile Both should test if (stream-> _flags & _IO_USER_LOCK) == 0) _IO_lock_lock (*stream-> _lock); OraBug: 28481550. Reviewed-by: Qing Zhao [2.28-251.38] - CVE-2026-5450: Fix buffer overflow in scanf (RHEL-172700) [2.28-251.37] - Add tests for CVE-2026-4437 and CVE-2026-4438 (RHEL-173358) [2.28-251.36] - Fix __nss_get_default_domain logic to restore netgroup user enumeration (RHEL-168095) [2.28-251.35] - CVE-2026-4046: Fix assertion failure in IBM1390 and IBM1399 iconv modules (RHEL-162891) [2.28-251.34] - Update locales for Croatia to use EUR as currency symbol. (RHEL-140104) [2.28-251.33] - Change the currency symbol for the bg_BG locale to euro. (RHEL-137185) [2.28-251.32] - Improve qsort implementation (RHEL-24169) [2.28-251.31] - CVE-2025-15281: wordexp WRDE_REUSE uninitialized memory read (RHEL-142787) [2.28-251.30] - Remove default /var/tmp for LD_PROFILE_OUTPUT(RHEL-142194) _______________________________________________ El-errata mailing list
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-36957 http://linux.oracle.com/errata/ELSA-2026-36957.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: kernel-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-abi-stablelists-5.14.0-687.24.1.el9_8.noarch.rpm kernel-core-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-cross-headers-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-debug-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-debug-core-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-debug-devel-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-debug-devel-matched-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-debug-modules-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-debug-modules-core-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-debug-modules-extra-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-debug-uki-virt-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-devel-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-devel-matched-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-doc-5.14.0-687.24.1.el9_8.noarch.rpm kernel-headers-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-modules-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-modules-core-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-modules-extra-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-tools-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-tools-libs-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-tools-libs-devel-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-uki-virt-5.14.0-687.24.1.el9_8.x86_64.rpm kernel-uki-virt-addons-5.14.0-687.24.1.el9_8.x86_64.rpm libperf-5.14.0-687.24.1.el9_8.x86_64.rpm perf-5.14.0-687.24.1.el9_8.x86_64.rpm python3-perf-5.14.0-687.24.1.el9_8.x86_64.rpm rtla-5.14.0-687.24.1.el9_8.x86_64.rpm rv-5.14.0-687.24.1.el9_8.x86_64.rpm aarch64: kernel-cross-headers-5.14.0-687.24.1.el9_8.aarch64.rpm kernel-headers-5.14.0-687.24.1.el9_8.aarch64.rpm kernel-tools-5.14.0-687.24.1.el9_8.aarch64.rpm kernel-tools-libs-5.14.0-687.24.1.el9_8.aarch64.rpm kernel-tools-libs-devel-5.14.0-687.24.1.el9_8.aarch64.rpm libperf-5.14.0-687.24.1.el9_8.aarch64.rpm perf-5.14.0-687.24.1.el9_8.aarch64.rpm python3-perf-5.14.0-687.24.1.el9_8.aarch64.rpm rtla-5.14.0-687.24.1.el9_8.aarch64.rpm rv-5.14.0-687.24.1.el9_8.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-687.24.1.el9_8.src.rpm RelatedCVEs: CVE-2025-71066 CVE-2026-46113 CVE-2026-53359 Description of changes: [5.14.0-687.24.1] - Disable UKI signing [Orabug: 36571828] - Update Oracle Linux certificates (Kevin Lyons) - Disable signing for aarch64 (Ilya Okomin) - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237] - Update x509.genkey [Orabug: 24817676] - Conflict with shim-ia32 and shim-x64 dying flag (Ian Kent) [RHEL-180773] - eventpoll: drop dead bool return from ep_remove_epi() (Ian Kent) [RHEL-180773] - eventpoll: refresh eventpoll_release() fast-path comment (Ian Kent) [RHEL-180773] - eventpoll: move f_lock acquisition into ep_remove_file() (Ian Kent) [RHEL-180773] - eventpoll: fix ep_remove struct eventpoll / struct file UAF (Ian Kent) [RHEL-180773] {CVE-2026-46242} - eventpoll: drop vestigial __ prefix from ep_remove_{file,epi}() (Ian Kent) [RHEL-180773] - eventpoll: move epi_fget() up (Ian Kent) [RHEL-180773] - eventpoll: rename ep_remove_safe() back to ep_remove() (Ian Kent) [RHEL-180773] - eventpoll: kill __ep_remove() (Ian Kent) [RHEL-180773] - eventpoll: split __ep_remove() (Ian Kent) [RHEL-180773] - eventpoll: use hlist_is_singular_node() in __ep_remove() (Ian Kent) [RHEL-180773] - eventpoll: defer struct eventpoll free to RCU grace period (Ian Kent) [RHEL-173830] {CVE-2026-43074} - epoll: annotate racy check (Ian Kent) [RHEL-180773] - netfilter: bridge: make ebt_snat ARP rewrite writable (CKI Backport Bot) [RHEL-182344] - tg3: Fix race for querying speed/duplex (CKI Backport Bot) [RHEL-182768] _______________________________________________ El-errata mailing list
Get the latest Linux and open source security news straight to your inbox.