Buildah, Podman, Samba, and more updates for Oracle Linux

Oracle Linux 6452 Published 2026-02-26 07:41 by Philipp Esselbach

News

ELSA-2026-3297 Important: Oracle Linux 10 buildah security update

Oracle Linux Security Advisory ELSA-2026-3297

http://linux.oracle.com/errata/ELSA-2026-3297.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
buildah-1.41.8-2.0.1.el10_1.x86_64.rpm
buildah-tests-1.41.8-2.0.1.el10_1.x86_64.rpm

aarch64:
buildah-1.41.8-2.0.1.el10_1.aarch64.rpm
buildah-tests-1.41.8-2.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/buildah-1.41.8-2.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-61729
CVE-2025-68121

Description of changes:

[1.41.8-2.0.1]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117178]

[2:1.41.8-2]
- Rebuild for new golang to address CVE-2025-61726
- Resolves: RHEL-146715

ELSA-2026-3336 Important: Oracle Linux 10 podman security update

Oracle Linux Security Advisory ELSA-2026-3336

http://linux.oracle.com/errata/ELSA-2026-3336.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
podman-5.6.0-12.0.1.el10_1.x86_64.rpm
podman-docker-5.6.0-12.0.1.el10_1.noarch.rpm
podman-remote-5.6.0-12.0.1.el10_1.x86_64.rpm
podman-tests-5.6.0-12.0.1.el10_1.x86_64.rpm

aarch64:
podman-5.6.0-12.0.1.el10_1.aarch64.rpm
podman-docker-5.6.0-12.0.1.el10_1.noarch.rpm
podman-remote-5.6.0-12.0.1.el10_1.aarch64.rpm
podman-tests-5.6.0-12.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/podman-5.6.0-12.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-61728
CVE-2025-61729
CVE-2025-68121

Description of changes:

[5.6.0-12.0.1]
- Add devices on container startup, not on creation
- overlay: Put should ignore ENINVAL for Unmount [Orabug: 36234694]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404]

[7:5.6.0-12]
- Rebuild for new golang to address CVE-2025-61726
- Resolves: RHEL-146727

ELBA-2026-3161 Oracle Linux 10 samba bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-3161

http://linux.oracle.com/errata/ELBA-2026-3161.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
ldb-tools-4.22.4-113.el10_1.x86_64.rpm
libldb-4.22.4-113.el10_1.x86_64.rpm
libldb-devel-4.22.4-113.el10_1.x86_64.rpm
libnetapi-4.22.4-113.el10_1.x86_64.rpm
libnetapi-devel-4.22.4-113.el10_1.x86_64.rpm
libsmbclient-4.22.4-113.el10_1.x86_64.rpm
libsmbclient-devel-4.22.4-113.el10_1.x86_64.rpm
libwbclient-4.22.4-113.el10_1.x86_64.rpm
libwbclient-devel-4.22.4-113.el10_1.x86_64.rpm
python3-ldb-4.22.4-113.el10_1.x86_64.rpm
python3-samba-4.22.4-113.el10_1.x86_64.rpm
python3-samba-dc-4.22.4-113.el10_1.x86_64.rpm
python3-samba-test-4.22.4-113.el10_1.x86_64.rpm
samba-4.22.4-113.el10_1.x86_64.rpm
samba-client-4.22.4-113.el10_1.x86_64.rpm
samba-client-libs-4.22.4-113.el10_1.x86_64.rpm
samba-common-4.22.4-113.el10_1.noarch.rpm
samba-common-libs-4.22.4-113.el10_1.x86_64.rpm
samba-common-tools-4.22.4-113.el10_1.x86_64.rpm
samba-dc-libs-4.22.4-113.el10_1.x86_64.rpm
samba-dcerpc-4.22.4-113.el10_1.x86_64.rpm
samba-devel-4.22.4-113.el10_1.x86_64.rpm
samba-gpupdate-4.22.4-113.el10_1.noarch.rpm
samba-krb5-printing-4.22.4-113.el10_1.x86_64.rpm
samba-ldb-ldap-modules-4.22.4-113.el10_1.x86_64.rpm
samba-libs-4.22.4-113.el10_1.x86_64.rpm
samba-pidl-4.22.4-113.el10_1.noarch.rpm
samba-test-4.22.4-113.el10_1.x86_64.rpm
samba-test-libs-4.22.4-113.el10_1.x86_64.rpm
samba-tools-4.22.4-113.el10_1.x86_64.rpm
samba-usershares-4.22.4-113.el10_1.noarch.rpm
samba-vfs-iouring-4.22.4-113.el10_1.x86_64.rpm
samba-winbind-4.22.4-113.el10_1.x86_64.rpm
samba-winbind-clients-4.22.4-113.el10_1.x86_64.rpm
samba-winbind-krb5-locator-4.22.4-113.el10_1.x86_64.rpm
samba-winbind-modules-4.22.4-113.el10_1.x86_64.rpm
samba-winexe-4.22.4-113.el10_1.x86_64.rpm

aarch64:
ldb-tools-4.22.4-113.el10_1.aarch64.rpm
libldb-4.22.4-113.el10_1.aarch64.rpm
libldb-devel-4.22.4-113.el10_1.aarch64.rpm
libnetapi-4.22.4-113.el10_1.aarch64.rpm
libnetapi-devel-4.22.4-113.el10_1.aarch64.rpm
libsmbclient-4.22.4-113.el10_1.aarch64.rpm
libsmbclient-devel-4.22.4-113.el10_1.aarch64.rpm
libwbclient-4.22.4-113.el10_1.aarch64.rpm
libwbclient-devel-4.22.4-113.el10_1.aarch64.rpm
python3-ldb-4.22.4-113.el10_1.aarch64.rpm
python3-samba-4.22.4-113.el10_1.aarch64.rpm
python3-samba-dc-4.22.4-113.el10_1.aarch64.rpm
python3-samba-test-4.22.4-113.el10_1.aarch64.rpm
samba-4.22.4-113.el10_1.aarch64.rpm
samba-client-4.22.4-113.el10_1.aarch64.rpm
samba-client-libs-4.22.4-113.el10_1.aarch64.rpm
samba-common-4.22.4-113.el10_1.noarch.rpm
samba-common-libs-4.22.4-113.el10_1.aarch64.rpm
samba-common-tools-4.22.4-113.el10_1.aarch64.rpm
samba-dc-libs-4.22.4-113.el10_1.aarch64.rpm
samba-dcerpc-4.22.4-113.el10_1.aarch64.rpm
samba-devel-4.22.4-113.el10_1.aarch64.rpm
samba-gpupdate-4.22.4-113.el10_1.noarch.rpm
samba-krb5-printing-4.22.4-113.el10_1.aarch64.rpm
samba-ldb-ldap-modules-4.22.4-113.el10_1.aarch64.rpm
samba-libs-4.22.4-113.el10_1.aarch64.rpm
samba-pidl-4.22.4-113.el10_1.noarch.rpm
samba-test-4.22.4-113.el10_1.aarch64.rpm
samba-test-libs-4.22.4-113.el10_1.aarch64.rpm
samba-tools-4.22.4-113.el10_1.aarch64.rpm
samba-usershares-4.22.4-113.el10_1.noarch.rpm
samba-vfs-iouring-4.22.4-113.el10_1.aarch64.rpm
samba-winbind-4.22.4-113.el10_1.aarch64.rpm
samba-winbind-clients-4.22.4-113.el10_1.aarch64.rpm
samba-winbind-krb5-locator-4.22.4-113.el10_1.aarch64.rpm
samba-winbind-modules-4.22.4-113.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/samba-4.22.4-113.el10_1.src.rpm

Description of changes:

[0:4.22.4-113]
- Fix ERROR: talloc_free with references
- related: RHEL-143402

[0:4.22.4-112]
- Fix winbind group resolution
- resolves: RHEL-143402

[0:4.22.4-111]
- Revert samba automounter triggering fix
- reverts: RHEL-137447

[0:4.22.4-110]
- Fix samba automounter triggering
- resolves: RHEL-137447

[0:4.22.4-109]
- Remove libldb dependency to samba-common-libs
- resolves: RHEL-133005

[0:4.22.4-108]
- Remove unexpected dependency of libldb to samba

[0:4.22.4-107]
- Fix Time Machine backup

ELBA-2026-3153 Oracle Linux 10 pacemaker bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-3153

http://linux.oracle.com/errata/ELBA-2026-3153.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
pacemaker-cluster-libs-3.0.1-3.1.0.1.el10_1.x86_64.rpm
pacemaker-libs-3.0.1-3.1.0.1.el10_1.x86_64.rpm
pacemaker-schemas-3.0.1-3.1.0.1.el10_1.noarch.rpm

aarch64:
pacemaker-cluster-libs-3.0.1-3.1.0.1.el10_1.aarch64.rpm
pacemaker-libs-3.0.1-3.1.0.1.el10_1.aarch64.rpm
pacemaker-schemas-3.0.1-3.1.0.1.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/pacemaker-3.0.1-3.1.0.1.el10_1.src.rpm

Description of changes:

[3.0.1-3.1.0.1]
- Replace bug url [Orabug: 34202300]
- Upstream reference in pacemaker crm_report binary [Orabug: 32825154]

[3.0.1-3.1]
- Fix a race condition between daemons when erasing transient attrs
- Resolves: RHEL-135091

ELSA-2026-3341 Important: Oracle Linux 9 containernetworking-plugins security update

Oracle Linux Security Advisory ELSA-2026-3341

http://linux.oracle.com/errata/ELSA-2026-3341.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
containernetworking-plugins-1.7.1-3.el9_7.x86_64.rpm

aarch64:
containernetworking-plugins-1.7.1-3.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/containernetworking-plugins-1.7.1-3.el9_7.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-61729
CVE-2025-68121

Description of changes:

[1:1.7.1-3]
- Rebuild for new golang to address CVE-2025-61726
- Resolves: RHEL-146859

[1:1.7.1-2]
- rebuild for CVE-2025-22871
- Resolves: RHEL-90030

ELSA-2026-3340 Important: Oracle Linux 9 skopeo security update

Oracle Linux Security Advisory ELSA-2026-3340

http://linux.oracle.com/errata/ELSA-2026-3340.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
skopeo-1.20.0-3.el9_7.x86_64.rpm
skopeo-tests-1.20.0-3.el9_7.x86_64.rpm

aarch64:
skopeo-1.20.0-3.el9_7.aarch64.rpm
skopeo-tests-1.20.0-3.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/skopeo-1.20.0-3.el9_7.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-61729
CVE-2025-68121

Description of changes:

[1:1.20.0-3]
- Rebuild for new golang to address CVE-2025-61726
- Resolves: RHEL-146872

ELSA-2026-3291 Important: Oracle Linux 9 runc security update

Oracle Linux Security Advisory ELSA-2026-3291

http://linux.oracle.com/errata/ELSA-2026-3291.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
runc-1.4.0-2.el9_7.x86_64.rpm

aarch64:
runc-1.4.0-2.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/runc-1.4.0-2.el9_7.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-61729
CVE-2025-68121

Description of changes:

[4:1.4.0-2]
- Rebuild for new golang to address CVE-2025-68121
- Resolves: RHEL-149630

ELSA-2026-3188 Important: Oracle Linux 8 grafana security update

Oracle Linux Security Advisory ELSA-2026-3188

http://linux.oracle.com/errata/ELSA-2026-3188.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
grafana-9.2.10-28.0.1.el8_10.x86_64.rpm
grafana-selinux-9.2.10-28.0.1.el8_10.x86_64.rpm

aarch64:
grafana-9.2.10-28.0.1.el8_10.aarch64.rpm
grafana-selinux-9.2.10-28.0.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/grafana-9.2.10-28.0.1.el8_10.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-61728
CVE-2025-68121

Description of changes:

[9.2.10-28.0.1]
- Fixes CVE-2024-1442 Add email verification when updating user email [Orabug: 38550520]

[9.2.10-28]
- Resolves RHEL-145418: CVE-2025-61728
- Resolves RHEL-146095: CVE-2025-61726
- Resolves RHEL-149271: CVE-2025-68121

ELSA-2026-3187 Important: Oracle Linux 8 grafana-pcp security update

Oracle Linux Security Advisory ELSA-2026-3187

http://linux.oracle.com/errata/ELSA-2026-3187.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
grafana-pcp-5.1.1-12.el8_10.x86_64.rpm

aarch64:
grafana-pcp-5.1.1-12.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/grafana-pcp-5.1.1-12.el8_10.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-68121

Description of changes:

[5.1.1-12]
- Resolves RHEL-146096: CVE-2025-61726
- Resolves RHEL-149272: CVE-2025-68121

ELSA-2026-3083 Important: Oracle Linux 8 kernel security update

Oracle Linux Security Advisory ELSA-2026-3083

http://linux.oracle.com/errata/ELSA-2026-3083.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.107.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.107.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.107.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.107.1.el8_10.x86_64.rpm
perf-4.18.0-553.107.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.107.1.el8_10.x86_64.rpm

aarch64:
bpftool-4.18.0-553.107.1.el8_10.aarch64.rpm
kernel-cross-headers-4.18.0-553.107.1.el8_10.aarch64.rpm
kernel-headers-4.18.0-553.107.1.el8_10.aarch64.rpm
kernel-tools-4.18.0-553.107.1.el8_10.aarch64.rpm
kernel-tools-libs-4.18.0-553.107.1.el8_10.aarch64.rpm
kernel-tools-libs-devel-4.18.0-553.107.1.el8_10.aarch64.rpm
perf-4.18.0-553.107.1.el8_10.aarch64.rpm
python3-perf-4.18.0-553.107.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.107.1.el8_10.src.rpm

Related CVEs:

CVE-2025-38129
CVE-2025-38248
CVE-2025-40064
CVE-2025-68800
CVE-2026-23074

Description of changes:

[4.18.0-553.107.1]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 _flags & _IO_USER_LOCK) == 0)
_IO_lock_lock (*stream->_lock);
OraBug: 28481550.
Reviewed-by: Qing Zhao [qing.zhao@oracle.com]

ELBA-2026-50128 Oracle Linux 8 scap-security-guide bug fix update

Oracle Linux Bug Fix Advisory ELBA-2026-50128

http://linux.oracle.com/errata/ELBA-2026-50128.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
scap-security-guide-0.1.79-1.0.2.el8.noarch.rpm
scap-security-guide-doc-0.1.79-1.0.2.el8.noarch.rpm

aarch64:
scap-security-guide-0.1.79-1.0.2.el8.noarch.rpm
scap-security-guide-doc-0.1.79-1.0.2.el8.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/scap-security-guide-0.1.79-1.0.2.el8.src.rpm

Description of changes:

[0.1.79-1.0.2]
- Update OL8 STIG to V2R7 [Orabug: 38993174]
- Update OL9 STIG to V1R4 [Orabug: 38993199]

ELSA-2026-1590 Important: Oracle Linux 7 gimp security update

Oracle Linux Security Advisory ELSA-2026-1590

http://linux.oracle.com/errata/ELSA-2026-1590.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
gimp-2.8.22-1.0.7.el7.x86_64.rpm
gimp-devel-2.8.22-1.0.7.el7.i686.rpm
gimp-devel-2.8.22-1.0.7.el7.x86_64.rpm
gimp-devel-tools-2.8.22-1.0.7.el7.x86_64.rpm
gimp-libs-2.8.22-1.0.7.el7.i686.rpm
gimp-libs-2.8.22-1.0.7.el7.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/gimp-2.8.22-1.0.7.el7.src.rpm

Related CVEs:

CVE-2025-14422

Description of changes:

[2.8.22-1.0.5]
- Fixes CVE-2025-14422 [Orabug: 38904303]

[2:2.22-1.0.5]
- Fixes CVE-2025-10922 and CVE-2025-10934 [Orabug: 38739185]

[2:2.8.22-1.0.3]
- Fixes CVE-2025-5473 (GIMP ICO File Parsing Integer Overflow) [Orabug: 38110877]
- Fixes CVE-2025-48797 (Multiple heap buffer overflows in TGA parser)
- Fixes CVE-2025-48798 (Multiple use after free in XCF parser)

Firefox, Opentofu, Vim, and more updates for Fedora

Opentelemetry-Collector, Seopeo, Firefox, and more updates for RHEL

Buildah, Podman, Samba, and more updates for Oracle Linux

ELSA-2026-3297 Important: Oracle Linux 10 buildah security update

ELSA-2026-3336 Important: Oracle Linux 10 podman security update

ELBA-2026-3161 Oracle Linux 10 samba bug fix and enhancement update

ELBA-2026-3153 Oracle Linux 10 pacemaker bug fix and enhancement update

ELSA-2026-3341 Important: Oracle Linux 9 containernetworking-plugins security update

ELSA-2026-3340 Important: Oracle Linux 9 skopeo security update

ELSA-2026-3291 Important: Oracle Linux 9 runc security update

ELSA-2026-3188 Important: Oracle Linux 8 grafana security update

ELSA-2026-3187 Important: Oracle Linux 8 grafana-pcp security update

ELSA-2026-3083 Important: Oracle Linux 8 kernel security update

ELBA-2026-50128 Oracle Linux 8 scap-security-guide bug fix update

ELSA-2026-1590 Important: Oracle Linux 7 gimp security update

Windows

Linux

macOS

Community