Dracut, Xfsprogs, Yggdrasil, and more updates for Oracle Linux

Oracle Linux 6463 Published 2026-03-25 07:26 by Philipp Esselbach

News

ELBA-2026-50163 dracut bug fix update

Oracle Linux Bug Fix Advisory ELBA-2026-50163

http://linux.oracle.com/errata/ELBA-2026-50163.html

The following updated rpms for have been uploaded to the Unbreakable Linux Network:

x86_64:
dracut-107-3.0.3.el10.x86_64.rpm
dracut-caps-107-3.0.3.el10.x86_64.rpm
dracut-config-generic-107-3.0.3.el10.x86_64.rpm
dracut-config-rescue-107-3.0.3.el10.x86_64.rpm
dracut-live-107-3.0.3.el10.x86_64.rpm
dracut-network-107-3.0.3.el10.x86_64.rpm
dracut-squash-107-3.0.3.el10.x86_64.rpm
dracut-tools-107-3.0.3.el10.x86_64.rpm

aarch64:
dracut-107-3.0.3.el10.aarch64.rpm
dracut-caps-107-3.0.3.el10.aarch64.rpm
dracut-config-generic-107-3.0.3.el10.aarch64.rpm
dracut-config-rescue-107-3.0.3.el10.aarch64.rpm
dracut-live-107-3.0.3.el10.aarch64.rpm
dracut-network-107-3.0.3.el10.aarch64.rpm
dracut-squash-107-3.0.3.el10.aarch64.rpm
dracut-tools-107-3.0.3.el10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dracut-107-3.0.3.el10.src.rpm

Description of changes:

[107-3.0.3]
- Skip unneeded FIPS logic on UEK with special FIPS [Orabug: 38138800] [Orabug: 38709306]

[107-3.0.2]
- Include correct modprobe into squashfs root [Orabug: 38559936]

[107-3.0.1]
- Ship Oracle IMA certificate [Orabug: 35992862]
- Ship 98-integrity.conf, populating initramfs with Oracle IMA certificate [Orabug: 35992862]
- Include sys-fs-fuse-connections.mount if needed [Orabug: 35267570]
- network-legacy: Revert some shellcheck that breaks parse_option_121 in dhclient [Orabug: 33778173]
- Change installation dir in network legacy module-setup so that file is never missing [Orabug: 33516170]
- Fix paths in squash module, so that correct modprobe is installed [Orabug: 33514517]
- Install missing 68-del-part-node.rules [Orabug: 32827579]
- Fix permission denied error while upgrading from OL8u2 to OL8u3 [Orabug 32160196]
- dracut-shutdown.service should run before shutdown.target is invoked [Orabug: 29629738]
- Update list of necessary files after squashfs execution [Orabug: 29864620]
- Supress iscsidm error output during non-debug PV boot [Orabug: 29846195]
- Stop block device service in case system is dropped to emergency shell [Orabug: 29851988]
- Enable booting from block device if netroot=iscsi has failed [Orabug: 29478156]
- Calculate relative path for kernel and initrd in 51-dracut-rescue.instal [Orabug: 29503293]
- 40network scripts ifup and netlib updates for iSCSI [Orabug: 28502725]
- Increase timeout when waiting for carrier detection on a network interface [Orabug: 24657828] (kevin.x.lyons@oracle.com)
- add hyperv-keyboard for Hyper-V Gen2 VM [Orabug: 19191303] (Vaughan Cao)

[107-3]
- test(SYSTEMD-INITRD): be more careful with set -e and subshells
- test: fixup NFS test.sh
Resolves: RHEL-108215,RHEL-97473

[107-2]
- fix: improve hostonly sloppy mode
- fix(dracut.sh): don't pass empty string as dir
- feat(systemd): drop unnecessary dependency on libgcrypt
- fix(kernel-modules-extra): remove stray before /
- Revert "fix(base): do not require chroot inside initramfs"
- fix: let check_vol_slaves_all return 1 when checks on all slaves fail
- improvement(74nvmf): lookup required NIC kernel modules for NBFT interfaces
- fix(74nvmf): set root=nvmf
Resolves: RHEL-104223,RHEL-93173,RHEL-95542,RHEL-95897

[107-1]
- Upgrade to dracut 107
Resolves: RHEL-97473

[105-4]
- fix(rescue): create hmac file for rescue kernel

[105-3]
- fix(ossl): copy executables for the test suite

[105-2]
- fix(openssl): harden ossl build CFLAGS
Related: RHEL-76323

[105-1]
- build: upgrade to dracut 105
- fix(systemd-ask-password): do not half-install systemd-ask-password-wall
- fix(pcsc): add libpcsclite_real.so.*
- revert: "fix(rescue): make rescue always no-hostonly"
- fix(dracut-install): initize fts pointer
- feat: add openssl module
- build: make erofs the default requirement for squash subpackage
Resolves: RHEL-65204,RHEL-68935,RHEL-76323

ELBA-2026-50165 xfsprogs bug fix update

Oracle Linux Bug Fix Advisory ELBA-2026-50165

http://linux.oracle.com/errata/ELBA-2026-50165.html

The following updated rpms for have been uploaded to the Unbreakable Linux Network:

x86_64:
xfsprogs-devel-6.18.0-1.0.1.el10.x86_64.rpm
xfsprogs-6.18.0-1.0.1.el10.x86_64.rpm
xfsprogs-xfs_scrub-6.18.0-1.0.1.el10.x86_64.rpm

aarch64:
xfsprogs-devel-6.18.0-1.0.1.el10.aarch64.rpm
xfsprogs-6.18.0-1.0.1.el10.aarch64.rpm
xfsprogs-xfs_scrub-6.18.0-1.0.1.el10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/xfsprogs-6.18.0-1.0.1.el10.src.rpm

Description of changes:

[6.18.0-1.0.1]
- Rebase to xfsprogs 6.18 for online fsck.
- Fixed mdrestore bug on 4k sector disks.

[6.16.0-1.0.1]
- Rebase to xfsprogs 6.16 to get atomic write formatting.

ELSA-2026-5146 Important: Oracle Linux 10 yggdrasil security update

Oracle Linux Security Advisory ELSA-2026-5146

http://linux.oracle.com/errata/ELSA-2026-5146.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
yggdrasil-0.4.8-3.el10_1.x86_64.rpm
yggdrasil-devel-0.4.8-3.el10_1.x86_64.rpm

aarch64:
yggdrasil-0.4.8-3.el10_1.aarch64.rpm
yggdrasil-devel-0.4.8-3.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/yggdrasil-0.4.8-3.el10_1.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-61729
CVE-2025-68121

Description of changes:

[0.4.8-3]
- Bump release for rebuild

ELSA-2026-50160 Important: Unbreakable Enterprise kernel security update

Oracle Linux Security Advisory ELSA-2026-50160

http://linux.oracle.com/errata/ELSA-2026-50160.html

The following updated rpms for have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-uek-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-core-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-devel-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-doc-6.12.0-200.74.27.el10uek.noarch.rpm
kernel-uek-modules-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-modules-core-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-modules-deprecated-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-modules-desktop-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-modules-extra-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-modules-extra-netfilter-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-modules-usb-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-modules-wireless-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-tools-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-core-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-devel-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-modules-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-modules-core-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-modules-deprecated-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-modules-desktop-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-modules-extra-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-modules-extra-netfilter-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-modules-usb-6.12.0-200.74.27.el10uek.x86_64.rpm
kernel-uek-debug-modules-wireless-6.12.0-200.74.27.el10uek.x86_64.rpm

aarch64:
kernel-uek-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-core-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-devel-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-modules-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-modules-core-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-modules-deprecated-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-modules-desktop-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-modules-extra-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-modules-extra-netfilter-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-modules-usb-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-modules-wireless-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-tools-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-core-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-devel-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-modules-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-modules-core-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-modules-deprecated-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-modules-desktop-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-modules-extra-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-modules-extra-netfilter-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-modules-usb-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek-debug-modules-wireless-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-core-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-devel-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-modules-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-modules-core-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-modules-deprecated-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-modules-desktop-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-modules-extra-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-modules-extra-netfilter-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-modules-usb-6.12.0-200.74.27.el10uek.aarch64.rpm
kernel-uek64k-modules-wireless-6.12.0-200.74.27.el10uek.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/kernel-uek-6.12.0-200.74.27.el10uek.src.rpm

Related CVEs:

CVE-2026-23100
CVE-2026-23237
CVE-2025-71238
CVE-2025-71234
CVE-2026-23223
CVE-2025-71232
CVE-2025-71235
CVE-2025-71236
CVE-2025-71229
CVE-2026-23229
CVE-2025-71231
CVE-2026-23230
CVE-2026-23202
CVE-2026-23190
CVE-2026-23200
CVE-2026-23111
CVE-2026-23188
CVE-2026-23209
CVE-2026-23204
CVE-2026-23205
CVE-2026-23214
CVE-2026-23216
CVE-2026-23193
CVE-2026-23179
CVE-2026-23213
CVE-2026-23178
CVE-2025-71225
CVE-2025-71222
CVE-2025-71224
CVE-2026-23199
CVE-2026-23177
CVE-2026-23201
CVE-2026-23189
CVE-2026-23219
CVE-2026-23191
CVE-2026-23215
CVE-2026-23112
CVE-2026-23159
CVE-2024-58096
CVE-2026-23163
CVE-2026-23154
CVE-2026-23161
CVE-2026-23168
CVE-2026-23148
CVE-2026-23156
CVE-2026-23173
CVE-2026-23166
CVE-2026-23164
CVE-2026-23212
CVE-2026-23151
CVE-2026-23146
CVE-2024-58097
CVE-2025-68358
CVE-2025-68333
CVE-2025-68351
CVE-2025-68725
CVE-2026-23097
CVE-2026-23108
CVE-2026-23061
CVE-2026-23058
CVE-2026-23085
CVE-2026-23091
CVE-2026-23088
CVE-2026-23128
CVE-2026-23107
CVE-2026-23073
CVE-2026-23133
CVE-2026-23089
CVE-2026-23078
CVE-2026-23076
CVE-2026-23101
CVE-2026-23129
CVE-2026-23086
CVE-2026-23069
CVE-2026-23119
CVE-2026-23084
CVE-2026-23124
CVE-2026-23126
CVE-2026-23059
CVE-2026-23110
CVE-2026-23071
CVE-2026-23123
CVE-2026-23113
CVE-2026-23062
CVE-2026-23131
CVE-2026-23087
CVE-2025-71197
CVE-2026-23060
CVE-2026-23105
CVE-2026-23074
CVE-2026-23103
CVE-2026-23120
CVE-2026-23095
CVE-2026-23125
CVE-2026-23082
CVE-2026-23072
CVE-2026-23099
CVE-2026-23057
CVE-2025-68737
CVE-2025-21882
CVE-2025-21717
CVE-2025-39832
CVE-2025-38431
CVE-2026-23083
CVE-2026-23198
CVE-2026-23155

Description of changes:

[6.12.0-200.74.27]
- Revert "uek-rpm: update kABI for FIPS regarding crypto_user" (Saeed Mirzamohammadi) [Orabug: 39033195]
- Revert "fips: remove crypto_user from the FIPS module" (Saeed Mirzamohammadi) [Orabug: 39033195]
- Revert "crypto_user: use FIPS algorithm list when FIPS module is enabled" (Saeed Mirzamohammadi) [Orabug: 39033195]
- RDMA/ionic: Preserve and set Ethernet source MAC after ib_ud_header_init() (Abhijit Gangurde) [Orabug: 39006240]
- uek-rpm: enable ionic rdma module build in UEK (Qing Huang) [Orabug: 38331822]
- RDMA/ionic: Fix memory leak of admin q_wr (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Use ether_addr_copy instead of memcpy (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Fix build failure on SPARC due to xchg() operand size (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Add Makefile/Kconfig to kernel build environment (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Implement device stats ops (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Register device ops for miscellaneous functionality (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Register device ops for datapath (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Register device ops for control path (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Create device queues to support admin operations (Abhijit Gangurde) [Orabug: 38331822]
- RDMA/ionic: Register auxiliary module for ionic ethernet adapter (Abhijit Gangurde) [Orabug: 38331822]
- RDMA: Add IONIC to rdma_driver_id definition (Abhijit Gangurde) [Orabug: 38331822]
- net: ionic: Provide doorbell and CMB region information (Abhijit Gangurde) [Orabug: 38331822]
- net: ionic: Provide interrupt allocation support for the RDMA driver (Abhijit Gangurde) [Orabug: 38331822]
- net: ionic: Provide RDMA reset support for the RDMA driver (Abhijit Gangurde) [Orabug: 38331822]
- net: ionic: Export the APIs from net driver to support device commands (Abhijit Gangurde) [Orabug: 38331822]
- net: ionic: Update LIF identity with additional RDMA capabilities (Abhijit Gangurde) [Orabug: 38331822]
- net: ionic: Create an auxiliary device for rdma driver (Abhijit Gangurde) [Orabug: 38331822]

[6.12.0-200.74.26]
- pds_core: init viftype default in declaration (Shannon Nelson) [Orabug: 38467343]
- pds_core: smaller adminq poll starting interval (Shannon Nelson) [Orabug: 38467343]
- pds_core: Allocate pdsc_viftype_defaults copy with ARRAY_SIZE() (Kees Cook) [Orabug: 38467343]
- pds_fwctl: Fix type and endian complaints (Shannon Nelson) [Orabug: 38467343]
- x86/kexec: add a sanity check on previous kernel's ima kexec buffer (Harshit Mogalapalli) [Orabug: 38608974]
- of/kexec: refactor ima_get_kexec_buffer() to use ima_validate_range() (Harshit Mogalapalli) [Orabug: 38608974]
- ima: verify the previous kernel's IMA buffer lies in addressable RAM (Harshit Mogalapalli) [Orabug: 38608974]
- rds: Add state field to RDS trace logs. (Rohit Nair) [Orabug: 38870356]
- uek-rpm: set default kfence sampling interval to 0 (Imran Khan) [Orabug: 38913539]
- Revert "NFS: Avoid changing nlink when file removes and attribute updates race" (Samasth Norway Ananda) [Orabug: 38925844]
- crypto_user: use FIPS algorithm list when FIPS module is enabled (Saeed Mirzamohammadi) [Orabug: 38934207]
- uek-rpm: update kABI for FIPS regarding crypto_user (Saeed Mirzamohammadi) [Orabug: 38934207]
- fips: remove crypto_user from the FIPS module (Saeed Mirzamohammadi) [Orabug: 38934207]
- alloc_tag: prevent enabling memory profiling if it was shut down (Suren Baghdasaryan) [Orabug: 38945943]
- alloc_tag: avoid current->alloc_tag manipulations when profiling is disabled (Suren Baghdasaryan) [Orabug: 38945943]
- mm/codetag: fix arg in pgalloc_tag_copy alloc_tag_sub (Sourav Panda) [Orabug: 38945943]
- uek-rpm: fips: fixed specs to explicitly call python3 as set as a requirement (Mark Nicholson) [Orabug: 38949665]
- selftests/mm: skip pkey_sighandler_tests if support is missing (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: rename pkey register macro (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: use sys_pkey helpers consistently (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: ensure non-global pkey symbols are marked static (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: remove empty pkey helper definition (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: ensure pkey-*.h define inline functions only (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: define types using typedef in pkey-helpers.h (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: remove unused pkey helpers (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: fix -Warray-bounds warnings in pkey_sighandler_tests (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: Define PKEY_UNRESTRICTED for pkey_sighandler_tests (Harshit Mogalapalli) [Orabug: 38969139]
- selftests/mm: Use generic pkey register manipulation (Harshit Mogalapalli) [Orabug: 38969139]
- ionic: Rate limit unknown xcvr type messages (Eric Joyner) [Orabug: 38977643]
- Octeontx2-af: Add proper checks for fwdata (Hariprasad Kelam) [Orabug: 38988497]
- genirq/cpuhotplug: Notify about affinity changes breaking the affinity mask (Imran Khan) [Orabug: 39001909]
- LTS version: v6.12.74 (Jack Vogel)
- USB: serial: option: add Telit FN920C04 RNDIS compositions (Fabio Porcedda)
- f2fs: fix IS_CHECKPOINTED flag inconsistency issue caused by concurrent atomic commit and checkpoint writes (Yongpeng Yang)
- f2fs: fix to avoid UAF in f2fs_write_end_io() (Chao Yu)
- iommu/arm-smmu-qcom: do not register driver in probe() (Danilo Krummrich)
- f2fs: fix to avoid mapping wrong physical block for swapfile (Chao Yu)
- f2fs: fix out-of-bounds access in sysfs attribute read/write (Yongpeng Yang)
- f2fs: fix to check sysfs filename w/ gc_pin_file_thresh correctly (Chao Yu)
- f2fs: fix to add gc count stat in f2fs_gc_range (Zhiguo Niu)
- fbdev: smscufx: properly copy ioctl memory to kernelspace (Greg Kroah-Hartman)
- fbdev: rivafb: fix divide error in nv3_arb() (Guangshuo Li)
- cpuset: Fix missing adaptation for cpuset_is_populated (Chen Ridong)
- Revert "wireguard: device: enable threaded NAPI" (Daniel Borkmann)
- LoongArch: Rework KASAN initialization for PTW-enabled systems (Tiezhu Yang)
- mm/hugetlb: fix excessive IPI broadcasts when unsharing PMD tables using mmu_gather (David Hildenbrand)
- mm/hugetlb: fix two comments related to huge_pmd_unshare() (David Hildenbrand)
- mm/hugetlb: fix hugetlb_pmd_shared() (David Hildenbrand) [Orabug: 38931087] {CVE-2026-23100}
- mm/hugetlb: fix copy_hugetlb_page_range() to use ->pt_share_count (Jane Chu)
- gpiolib: acpi: Fix gpio count with string references (Alban Bedel)
- ASoC: fsl_xcvr: fix missing lock in fsl_xcvr_mode_put() (Ziyi Guo)
- drm/amd/display: remove assert around dpp_base replacement (Melissa Wen)
- drm/amd/display: extend delta clamping logic to CM3 LUT helper (Melissa Wen)
- tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow (Deepanshu Kartikey)
- ASoC: cs42l43: Correct handling of 3-pole jack load detection (Charles Keepax)
- platform/x86: panasonic-laptop: Fix sysfs group leak in error path (Rafael J. Wysocki)
- platform/x86/amd/pmc: Add quirk for MECHREVO Wujie 15X Pro (Gongqi)
- ALSA: hda/realtek: Enable headset mic for Acer Nitro 5 (Breno Baptista)
- ASoC: amd: yc: Add quirk for HP 200 G2a 16 (Dirk Su)
- ASoC: Intel: sof_es8336: Add DMI quirk for Huawei BOD-WXX9 (Tagir Garaev)
- platform/x86: classmate-laptop: Add missing NULL pointer checks (Rafael J. Wysocki) [Orabug: 39044501] {CVE-2026-23237}
- drm/tegra: hdmi: sor: Fix error: variable ‘j’ set but not used (Brahmajit Das)
- romfs: check sb_set_blocksize() return value (Deepanshu Kartikey)
- ALSA: hda/realtek - fixed speaker no sound (Kailang Yang)
- ASoC: cs35l45: Corrects ASP_TX5 DAPM widget channel (Ricardo Rivera-Matos)
- ALSA: hda/realtek: Add quirk for Inspur S14-G1 (Zhang Heng)
- gpio: sprd: Change sprd_gpio lock to raw_spin_lock (Xuewen Yan)
- ASoC: amd: yc: Add ASUS ExpertBook PM1503CDA to quirks list (Anatolii Shirykalov)
- ALSA: hda/realtek: Fix headset mic for TongFang X6AR55xU (Tim Guttzeit)
- bus: fsl-mc: fix use-after-free in driver_override_show() (Gui-Dong Han)
- bus: fsl-mc: Replace snprintf and sprintf with sysfs_emit in sysfs show functions (Chelsy Ratnawat)
- bnxt_en: hide CONFIG_DETECT_HUNG_TASK specific code (Arnd Bergmann)
- bnxt_en: Change FW message timeout warning (Michael Chan)
- scsi: qla2xxx: Fix bsg_done() causing double free (Anil Gurumurthy) [Orabug: 39044457] {CVE-2025-71238}
- LTS version: v6.12.73 (Jack Vogel)
- Revert "driver core: enforce device_lock for driver_match_device()" (Greg Kroah-Hartman)
- LTS version: v6.12.72 (Jack Vogel)
- gpio: omap: do not register driver in probe() (Danilo Krummrich)
- wifi: rtl8xxxu: fix slab-out-of-bounds in rtl8xxxu_sta_add (Ali Tariq) [Orabug: 38997990] {CVE-2025-71234}
- PCI: endpoint: Avoid creating sub-groups asynchronously (Liu Song)
- xfs: fix UAF in xchk_btree_check_block_owner (Darrick J. Wong) [Orabug: 38998028] {CVE-2026-23223}
- erofs: fix UAF issue for file-backed mounts w/ directio option (Chao Yu)
- mptcp: fix race in mptcp_pm_nl_flush_addrs_doit() (Eric Dumazet)
- bus: mhi: host: pci_generic: Add Telit FE990B40 modem support (Daniele Palmas)
- scsi: qla2xxx: Query FW again before proceeding with login (Anil Gurumurthy)
- scsi: qla2xxx: Free sp in error path to fix system crash (Anil Gurumurthy) [Orabug: 38997979] {CVE-2025-71232}
- scsi: qla2xxx: Delay module unload while fabric scan in progress (Anil Gurumurthy) [Orabug: 38997992] {CVE-2025-71235}
- scsi: qla2xxx: Allow recovery for tape devices (Shreyas Deodhar)
- scsi: qla2xxx: Validate sp before freeing associated memory (Anil Gurumurthy) [Orabug: 38997998] {CVE-2025-71236}
- wifi: rtw88: Fix alignment fault in rtw_core_enable_beacon() (Bitterblue Smith) [Orabug: 38997972] {CVE-2025-71229}
- nilfs2: Fix potential block overflow that cause system hang (Edward Adam Davis)
- crypto: virtio - Remove duplicated virtqueue_kick in virtio_crypto_skcipher_crypt_req (Bibo Mao)
- crypto: virtio - Add spinlock protection with virtqueue notification (Bibo Mao) [Orabug: 38998052] {CVE-2026-23229}
- crypto: omap - Allocate OMAP_CRYPTO_FORCE_COPY scatterlists correctly (Kees Cook)
- crypto: octeontx - Fix length check to avoid truncation in ucode_load_store (Thorsten Blum)
- crypto: iaa - Fix out-of-bounds index in find_empty_iaa_compression_mode (Thorsten Blum) [Orabug: 38997976] {CVE-2025-71231}
- Bluetooth: btusb: Add USB ID 7392:e611 for Edimax EW-7611UXB (Zenm Chen)
- driver core: enforce device_lock for driver_match_device() (Gui-Dong Han)
- smb: server: fix leak of active_num_conn in ksmbd_tcp_new_connection() (Henrique Carvalho)
- ksmbd: fix infinite loop caused by next_smb2_rcv_hdr_off reset in error paths (Namjae Jeon)
- smb: client: split cached_fid bitfields to avoid shared-byte RMW races (Henrique Carvalho) [Orabug: 38998059] {CVE-2026-23230}
- LTS version: v6.12.71 (Jack Vogel)
- vsock/test: verify socket options after setting them (Konstantin Shkolnyy)
- io_uring/rw: recycle buffers manually for non-mshot reads (Jens Axboe)
- LTS version: v6.12.70 (Jack Vogel)
- gpiolib-acpi: Update file references in the Documentation and MAINTAINERS (Andy Shevchenko)
- ALSA: hda/realtek: Really fix headset mic for TongFang X6AR55xU. (Werner Sembach)
- spi: tegra114: Preserve SPI mode bits in def_command1_reg (Vishwaroop A)
- spi: tegra: Fix a memory leak in tegra_slink_probe() (Felix Gu)
- spi: tegra210-quad: Protect curr_xfer clearing in tegra_qspi_non_combined_seq_xfer (Breno Leitao)
- spi: tegra210-quad: Protect curr_xfer in tegra_qspi_combined_seq_xfer (Breno Leitao) [Orabug: 38970593] {CVE-2026-23202}
- spi: tegra210-quad: Protect curr_xfer assignment in tegra_qspi_setup_transfer_one (Breno Leitao)
- spi: tegra210-quad: Move curr_xfer read inside spinlock (Breno Leitao)
- spi: tegra210-quad: Return IRQ_HANDLED when timeout already processed transfer (Breno Leitao)
- ASoC: amd: fix memory leak in acp3x pdm dma ops (Chris Bainbridge) [Orabug: 38970441] {CVE-2026-23190}
- ALSA: usb-audio: fix broken logic in snd_audigy2nx_led_update() (Sergey Shtylyov)
- ipv6: Fix ECMP sibling count mismatch when clearing RTF_ADDRCONF (Shigeru Yoshida) [Orabug: 38970598] {CVE-2026-23200}
- netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (Andrew Fasano) [Orabug: 38970170] {CVE-2026-23111}
- hwmon: (occ) Mark occ_init_attribute() as __printf (Arnd Bergmann)
- drm/xe/pm: Disable D3Cold for BMG only on specific platforms (Karthik Poosa)
- drm/xe/pm: Also avoid missing outer rpm warning on system suspend (Rodrigo Vivi)
- drm/xe/query: Fix topology query pointer advance (Shuicheng Lin)
- drm/mgag200: fix mgag200_bmc_stop_scanout() (Jacob Keller)
- net: gro: fix outer network offset (Paolo Abeni)
- net: ethernet: adi: adin1110: Check return value of devm_gpiod_get_optional() in adin1110_check_spi() (Chen Ni)
- drm/amd/display: fix wrong color value mapping on MCM shaper LUT (Melissa Wen)
- tipc: use kfree_sensitive() for session key material (Daniel Hodges)
- net: don't touch dev->stats in BPF redirect paths (Jakub Kicinski)
- net: usb: r8152: fix resume reset deadlock (Sergey Senozhatsky) [Orabug: 38970438] {CVE-2026-23188}
- macvlan: fix error recovery in macvlan_common_newlink() (Eric Dumazet) [Orabug: 38970508] {CVE-2026-23209}
- net: sfp: Fix quirk for Ubiquiti U-Fiber Instant SFP module (Marek Behún)
- net: sfp: convert sfp quirks to modify struct sfp_module_support (Russell King)
- net: sfp: pre-parse the module support (Russell King)
- net: phy: add phy_interface_copy() (Russell King)
- net: phy: add phy_interface_weight() (Russell King)
- dpaa2-switch: add bounds check for if_id in IRQ handler (Junrui Luo)
- net: liquidio: Fix off-by-one error in VF setup_nic_devices() cleanup (Zilin Guan)
- net: liquidio: Fix off-by-one error in PF setup_nic_devices() cleanup (Zilin Guan)
- net: liquidio: Initialize netdev pointer before queue setup (Zilin Guan)
- dpaa2-switch: prevent ZERO_SIZE_PTR dereference when num_ifs is zero (Junrui Luo)
- net/sched: cls_u32: use skb_header_pointer_careful() (Eric Dumazet) [Orabug: 38970487] {CVE-2026-23204}
- net: add skb_header_pointer_careful() helper (Eric Dumazet)
- smb/client: fix memory leak in smb2_open_file() (Chenxiaosong) [Orabug: 38970578] {CVE-2026-23205}
- platform/x86/intel/tpmi/plr: Make the file domain/status writeable (Ricardo Neri)
- platform/x86: hp-bioscfg: Skip empty attribute names (Mario Limonciello)
- platform/x86: intel_telemetry: Fix PSS event register mask (Kaushlendra Kumar)
- platform/x86: toshiba_haps: Fix memory leaks in add/remove routines (Rafael J. Wysocki)
- ALSA: hda/realtek: ALC269 fixup for Lenovo Yoga Book 9i 13IRU8 audio (Martin Hamilton)
- btrfs: reject new transactions if the fs is fully read-only (Qu Wenruo) [Orabug: 38985156] {CVE-2026-23214}
- wifi: mac80211: don't increment crypto_tx_tailroom_needed_cnt twice (Miri Korenblit)
- wifi: mac80211: correctly check if CSA is active (Miri Korenblit)
- scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() (Maurizio Lombardi) [Orabug: 38985169] {CVE-2026-23216}
- ALSA: hda/realtek: Fix headset mic for TongFang X6AR55xU (Tim Guttzeit)
- scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (Maurizio Lombardi) [Orabug: 38970453] {CVE-2026-23193}
- wifi: cfg80211: Fix bitrate calculation overflow for HE rates (Veerendranath Jakkam)
- regmap: maple: free entry on mas_store_gfp() failure (Kaushlendra Kumar)
- spi: hisi-kunpeng: Fixed the wrong debugfs node name in hisi_spi debugfs initialization (Devyn Liu)
- ASoC: tlv320adcx140: Propagate error codes during probe (Dimitrios Katsaros)
- ASoC: amd: yc: Fix microphone on ASUS M6500RE (Radhi Bajahaw)
- nvmet-tcp: fixup hang in nvmet_tcp_listen_data_ready() (Hannes Reinecke) [Orabug: 38970416] {CVE-2026-23179}
- nvme-fc: release admin tagset if init fails (Chaitanya Kulkarni)
- ASoC: simple-card-utils: Check device node before overwrite direction (Shengjiu Wang)
- ASoC: davinci-evm: Fix reference leak in davinci_evm_probe (Kery Qi)
- wifi: mac80211: collect station statistics earlier when disconnect (Baochen Qiang)
- HID: logitech: add HID++ support for Logitech MX Anywhere 3S (Dennis Marttinen)
- ring-buffer: Avoid softlockup in ring_buffer_resize() during memory free (Ma Wupeng)
- drm/amd/pm: Disable MMIO access during SMU Mode 1 reset (Perry Yuan) [Orabug: 38985149] {CVE-2026-23213}
- HID: Apply quirk HID_QUIRK_ALWAYS_POLL to Edifier QR30 (2d99:a101) (Rodrigo Lugathe Da Conceição Alves)
- HID: i2c-hid: fix potential buffer overflow in i2c_hid_get_report() (Kwok Kin Ming) [Orabug: 38970413] {CVE-2026-23178}
- HID: quirks: Add another Chicony HP 5MP Cameras to hid_ignore_list (Chris Chiu)
- netfilter: replace -EEXIST with -EBUSY (Daniel Gomez)
- PCI: qcom: Remove ASPM L0s support for MSM8996 SoC (Manivannan Sadhasivam)
- ALSA: hda/realtek: add HP Laptop 15s-eq1xxx mute LED quirk (Ruslan Krupitsa)
- ALSA: hda/realtek: Add quirk for Acer Nitro AN517-55 (Matouš Lánský)
- HID: playstation: Center initial joystick axes to prevent spurious events (Siarhei Vishniakou)
- HID: intel-ish-hid: Reset enum_devices_done before enumeration (Zhang Lixu)
- riscv: Sanitize syscall table indexing under speculation (Lukas Gerlach)
- btrfs: fix reservation leak in some error paths when inserting inline extent (Filipe Manana)
- HID: multitouch: add MT_QUIRK_STICKY_FINGERS to MT_CLS_VTL (Daytoncl)
- HID: intel-ish-hid: Update ishtp bus match to support device ID table (Zhang Lixu)
- smb/server: fix refcount leak in parse_durable_handle_context() (Zhangguodong)
- LoongArch: Enable exception fixup for specific ADE subcode (Duan Chenghao)
- smb/server: fix refcount leak in smb2_open() (Zhangguodong)
- md: suspend array while updating raid_disks via sysfs (Danny Shih) [Orabug: 38985108] {CVE-2025-71225}
- LoongArch: Set correct protection_map[] for VM_NONE/VM_SHARED (Huacai Chen)
- smb/server: call ksmbd_session_rpc_close() on error path in create_smb2_pipe() (Zhangguodong)
- block,bfq: fix aux stat accumulation destination (Shechenglong)
- net: usb: sr9700: support devices with virtual driver CD (Ethan Nelson-Moore)
- wifi: wlcore: ensure skb headroom before skb_push (Peter Astrand) [Orabug: 38970152] {CVE-2025-71222}
- wifi: mac80211: ocb: skip rx_no_sta when interface is not joined (Moon Hee Lee) [Orabug: 38970163] {CVE-2025-71224}
- tracing: Fix ftrace event field alignments (Steven Rostedt)
- procfs: avoid fetching build ID while holding VMA lock (Andrii Nakryiko) [Orabug: 38970476] {CVE-2026-23199}
- KVM: selftests: Add -U_FORTIFY_SOURCE to avoid some unpredictable test failures (Zhiquan Li)
- binderfs: fix ida_alloc_max() upper bound (Carlos Llamas)
- binder: fix BR_FROZEN_REPLY error log (Carlos Llamas)
- hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() (Kang Chen)
- ublk: fix deadlock when reading partition table (Ming Lei)
- tools/power turbostat: fix GCC9 build regression (Todd Brandt)
- PCI/ERR: Ensure error recoverability at all times (Lukas Wunner)
- KVM: Don't clobber irqfd routing type when deassigning irqfd (Sean Christopherson)
- Revert "drm/amd: Check if ASPM is enabled from PCIe subsystem" (Bert Karwatzki)
- mm, shmem: prevent infinite loop on truncate race (Kairui Song) [Orabug: 38970409] {CVE-2026-23177}
- gve: Correct ethtool rx_dropped calculation (Max Yuan)
- gve: Fix stats report corruption on queue count change (Debarghya Kundu)
- ceph: fix oops due to invalid pointer for kfree() in parse_longname() (Daniel Vogelbacher) [Orabug: 38970590] {CVE-2026-23201}
- ARM: 9468/1: fix memset64() on big-endian (Thomas Weißschuh)
- rbd: check for EOD after exclusive lock is ensured to be held (Ilya Dryomov)
- ceph: fix NULL pointer dereference in ceph_mds_auth_match() (Viacheslav Dubeyko) [Orabug: 38970595] {CVE-2026-23189}
- mm/slab: Add alloc_tagging_slab_free_hook for memcg_alloc_abort_single (Hao Ge) [Orabug: 38985192] {CVE-2026-23219}
- pmdomain: imx8m-blk-ctrl: fix out-of-range access of bc->domains (Xu Yang)
- pmdomain: imx8mp-blk-ctrl: Keep usb phy power domain on for system wakeup (Xu Yang)
- pmdomain: imx: gpcv2: Fix the imx8mm gpu hang due to wrong adb400 reset (Jacky Bai)
- pmdomain: imx8mp-blk-ctrl: Keep gpc power domain on for system wakeup (Xu Yang)
- pmdomain: qcom: rpmpd: fix off-by-one error in clamping to the highest state (Gabor Juhos)
- ALSA: aloop: Fix racy access at PCM trigger (Takashi Iwai) [Orabug: 38970445] {CVE-2026-23191}
- platform/x86: intel_telemetry: Fix swapped arrays in PSS output (Kaushlendra Kumar)
- x86/kfence: fix booting on 32bit non-PAE systems (Andrew Cooper)
- x86/vmware: Fix hypercall clobbers (Josh Poimboeuf) [Orabug: 38985163] {CVE-2026-23215}
- nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec (Yunje Shin) [Orabug: 38970176] {CVE-2026-23112}
- LTS version: v6.12.69 (Jack Vogel)
- bpf/selftests: test_select_reuseport_kern: Remove unused header (Alexis Lothoré)
- RDMA/mana_ib: Handle net event for pointing to the current netdev (Long Li)
- net: mana: Change the function signature of mana_get_primary_netdev_rcu (Long Li)
- pinctrl: lpass-lpi: implement .get_direction() for the GPIO driver (Bartosz Golaszewski)
- drm/amdgpu/gfx11: adjust KGQ reset sequence (Alex Deucher)
- writeback: fix 100% CPU usage when dirtytime_expire_interval is 0 (Laveesh Bansal)
- perf: sched: Fix perf crash with new is_user_task() helper (Steven Rostedt) [Orabug: 38970581] {CVE-2026-23159}
- perf: Simplify get_perf_callchain() user logic (Josh Poimboeuf)
- mptcp: avoid dup SUB_CLOSED events after disconnect (Matthieu Baerts)
- pinctrl: qcom: sm8350-lpass-lpi: Merge with SC7280 to fix I2S2 and SWR TX pins (Krzysztof Kozlowski)
- net/sched: act_ife: convert comma to semicolon (Chen Ni)
- btrfs: prevent use-after-free on folio private data in btrfs_subpage_clear_uptodate() (Jp Kobryn)
- Revert "drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit)" (John Ogness)
- wifi: ath11k: add srng->lock for ath11k_hal_srng_* in monitor mode (Kang Yang) [Orabug: 37844126] {CVE-2024-58096}
- mm/kfence: randomize the freelist on initialization (Pimyn Girgis)
- libbpf: Fix -Wdiscarded-qualifiers under C23 (Mikhail Gavrilov)
- ksmbd: smbd: fix dma_unmap_sg() nents (Thomas Fourier)
- rxrpc: Fix data-race warning and potential load/store tearing (David Howells)
- cgroup: Fix kernfs_node UAF in css_free_rwork_fn (T.J. Mercier)
- rust: kbuild: support -Cjump-tables=n for Rust 1.93.0 (Miguel Ojeda)
- gpiolib: acpi: Fix potential out-of-boundary left shift (Andy Shevchenko)
- drm/amdgpu: Fix cond_exec handling in amdgpu_ib_schedule() (Alex Deucher)
- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (Jon Doron) [Orabug: 38970348] {CVE-2026-23163}
- drm/amdgpu/gfx12: fix wptr reset in KGQ init (Alex Deucher)
- drm/amdgpu/gfx11: fix wptr reset in KGQ init (Alex Deucher)
- drm/amdgpu/gfx10: fix wptr reset in KGQ init (Alex Deucher)
- drm/amdgpu/soc21: fix xclk for APUs (Alex Deucher)
- drm/imx/tve: fix probe device leak (Johan Hovold)
- drm/msm/a6xx: fix bogus hwcg register updates (Johan Hovold)
- scripts: generate_rust_analyzer: Add compiler_builtins -> core dep (Tamir Duberstein)
- scripts: generate_rust_analyzer: compile sysroot with correct edition (Tamir Duberstein)
- scripts: generate_rust_analyzer: remove sysroot assertion (Onur Özkan)
- net: fix segmentation of forwarding fraglist GRO (Jibin Zhang) [Orabug: 38970318] {CVE-2026-23154}
- mm/shmem, swap: fix race of truncate and swap entry split (Kairui Song) [Orabug: 38970345] {CVE-2026-23161}
- flex_proportions: make fprop_new_period() hardirq safe (Jan Kara) [Orabug: 38970373] {CVE-2026-23168}
- selftests: mptcp: join: fix local endp not being tracked (Matthieu Baerts)
- selftests: mptcp: check subflow errors in close events (Matthieu Baerts)
- selftests: mptcp: check no dup close events after error (Matthieu Baerts)
- mptcp: only reset subflow errors when propagated (Matthieu Baerts)
- gpio: rockchip: Stop calling pinctrl for set_direction (Robin Murphy)
- nvmet: fix race in nvmet_bio_done() leading to NULL pointer dereference (Ming Lei) [Orabug: 38970608] {CVE-2026-23148}
- efivarfs: fix error propagation in efivar_entry_get() (Kohei Enju) [Orabug: 38970325] {CVE-2026-23156}
- scsi: qla2xxx: edif: Fix dma_free_coherent() size (Thomas Fourier)
- gpio: pca953x: mask interrupts in irq shutdown (Martin Larsson)
- ASoC: amd: yc: Add DMI quirk for Acer TravelMate P216-41-TCO (Zhang Heng)
- scsi: be2iscsi: Fix a memory leak in beiscsi_boot_get_sinfo() (Haoxiang Li)
- ASoC: fsl: imx-card: Do not force slot width to sample width (Fabio Estevam)
- rust: kbuild: give --config-path to rustfmt in .rsi target (Miguel Ojeda)
- rust: rbtree: fix documentation typo in CursorMut peek_next method (Hang Shu)
- riscv: compat: fix COMPAT_UTS_MACHINE definition (Han Gao)
- pinctrl: meson: mark the GPIO controller as sleeping (Bartosz Golaszewski)
- sched/deadline: Fix 'stuck' dl_server (Peter Zijlstra)
- sched/deadline: Document dl_server (Peter Zijlstra)
- dma/pool: distinguish between missing and exhausted atomic pools (Sai Sree Kartheek Adivi)
- bcache: fix I/O accounting leak in detached_dev_do_request (Shida Zhang)
- bcache: use bio cloning for detached device requests (Shida Zhang)
- bcache: fix improper use of bi_end_io (Shida Zhang)
- gpio: virtuser: fix UAF in configfs release path (Yuhao Huang)
- gpiolib: acpi: use BIT_ULL() for u64 mask in address space handler (Denis Sergeev)
- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (Tagir Garaev)
- scsi: firewire: sbp-target: Fix overflow in sbp_make_tpg() (Kery Qi)
- net/mlx5e: Skip ESN replay window setup for IPsec crypto offload (Jianbo Liu)
- net/mlx5: Fix vhca_id access call trace use before alloc (Parav Pandit)
- net/mlx5: Initialize events outside devlink lock (Cosmin Ratiu)
- net/mlx5: fs, Fix inverted cap check in tx flow table root disconnect (Shay Drory)
- net: phy: micrel: fix clk warning when removing the driver (Wei Fang)
- net: bridge: fix static key check (Martin Kaiser)
- nfc: nci: Fix race between rfkill and nci_unregister_device(). (Kuniyuki Iwashima)
- net/mlx5e: TC, delete flows only for existing peers (Mark Bloch) [Orabug: 38970397] {CVE-2026-23173}
- ice: stop counting UDP csum mismatch as rx_errors (Jesse Brandeburg)
- ice: Fix NULL pointer dereference in ice_vsi_set_napi_queues (Aaron Ma) [Orabug: 38970364] {CVE-2026-23166}
- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame(). (Kuniyuki Iwashima)
- rocker: fix memory leak in rocker_world_port_post_fini() (Kery Qi) [Orabug: 38970351] {CVE-2026-23164}
- net: wwan: t7xx: fix potential skb->frags overflow in RX path (Kery Qi)
- ipv6: use the right ifindex when replying to icmpv6 from localhost (Fernando Fernandez Mancera)
- net: mvpp2: cls: Fix memory leak in mvpp2_ethtool_cls_rule_ins() (Zilin Guan)
- bonding: annotate data-races around slave->last_rx (Eric Dumazet) [Orabug: 38985142] {CVE-2026-23212}
- octeon_ep: Fix memory leak in octep_device_setup() (Zilin Guan)
- net: bcmasp: fix early exit leak with fixed phy (Justin Chen)
- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (Marc Kleine-Budde)
- net/mlx5: Fix memory leak in esw_acl_ingress_lgcy_setup() (Zilin Guan)
- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (Jianpeng Chang) [Orabug: 38970587] {CVE-2026-23151}
- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (Jia-Hong Su) [Orabug: 38970604] {CVE-2026-23146}
- can: at91_can: Fix memory leak in at91_can_probe() (Zilin Guan)
- LTS version: v6.12.68 (Jack Vogel)
- vsock/virtio: Fix message iterator handling on transmit path (Will Deacon)
- net: Introduce skb_copy_datagram_from_iter_full() (Will Deacon)
- vsock/virtio: Allocate nonlinear SKBs for handling large transmit buffers (Will Deacon)
- vhost/vsock: Allocate nonlinear SKBs for handling large receive buffers (Will Deacon)
- vsock/virtio: Rename virtio_vsock_skb_rx_put() (Will Deacon)
- vsock/virtio: Move SKB allocation lower-bound check to callers (Will Deacon)
- vsock/virtio: Rename virtio_vsock_alloc_skb() (Will Deacon)
- vsock/virtio: Move length check to callers of virtio_vsock_skb_rx_put() (Will Deacon)
- wifi: ath11k: fix RCU stall while reaping monitor destination ring (P Praneesh) [Orabug: 37844129] {CVE-2024-58097}
- btrfs: fix racy bitfield write in btrfs_clear_space_info_full() (Boris Burkov) [Orabug: 38798802] {CVE-2025-68358}
- accel/ivpu: Fix race condition when unbinding BOs (Tomasz Rusinowicz)
- fs/ntfs3: Initialize allocated memory before use (Bartlomiej Kubik)
- sched_ext: Fix possible deadlock in the deferred_irq_workfn() (Zqiang) [Orabug: 38792605] {CVE-2025-68333}
- exfat: fix refcount leak in exfat_find (Shuhao Fu) [Orabug: 38798780] {CVE-2025-68351}
- iio: adc: exynos_adc: fix OF populate on driver rebind (Johan Hovold)
- iio: core: add separate lockdep class for info_exist_lock (Rasmus Villemoes)
- iio: core: Replace lockdep_set_class() + mutex_init() by combined call (Andy Shevchenko)
- iio: core: add missing mutex_destroy in iio_dev_release() (Andy Shevchenko)
- arm64: dts: rockchip: remove redundant max-link-speed from nanopi-r4s (Geraldo Nascimento)
- bpf: Do not let BPF test infra emit invalid GSO types to stack (Daniel Borkmann) [Orabug: 38798881] {CVE-2025-68725}
- selftests/bpf: Check for timeout in perf_link test (Ihor Solodrai)
- can: esd_usb: esd_usb_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde)
- dmaengine: ti: k3-udma: Enable second resource range for BCDMA and PKTDMA (Siddharth Vadapalli)
- migrate: correct lock ordering for hugetlb file folios (Matthew Wilcox) [Orabug: 38931066] {CVE-2026-23097}
- gpio: cdev: Correct return code on memory allocation failure (Tzung-Bi Shih)
- drm/amdgpu: remove frame cntl for gfx v12 (Likun Gao)
- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde) [Orabug: 38931120] {CVE-2026-23108}
- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde)
- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde) [Orabug: 38930881] {CVE-2026-23061}
- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde) [Orabug: 38930859] {CVE-2026-23058}
- net: sfp: add potron quirk to the H-COM SPP425H-GAB4 SFP+ Stick (Hamza Mahfooz)
- irqchip/gic-v3-its: Avoid truncating memory addresses (Arnd Bergmann) [Orabug: 38931001] {CVE-2026-23085}
- perf/x86/intel: Do not enable BTS for guests (Fernand Sieber)
- pmdomain: imx8m-blk-ctrl: Remove separate rst and clk mask for 8mq vpu (Ming Qian)
- platform/x86: hp-bioscfg: Fix automatic module loading (Mario Limonciello)
- netrom: fix double-free in nr_route_frame() (Jeongjun Park)
- uacce: ensure safe queue release with state management (Chenghai Huang)
- uacce: implement mremap in uacce_vm_ops to return -EPERM (Yang Shen)
- uacce: fix isolate sysfs check condition (Chenghai Huang)
- uacce: fix cdev handling in the cleanup path (Wenkai Lin)
- s390/ap: Fix wrong APQN fill calculation (Harald Freudenberger)
- mei: trace: treat reg parameter as string (Alexander Usyskin)
- intel_th: fix device leak on output open() (Johan Hovold) [Orabug: 38931040] {CVE-2026-23091}
- tracing: Fix crash on synthetic stacktrace field usage (Steven Rostedt) [Orabug: 38931024] {CVE-2026-23088}
- slimbus: core: fix device reference leak on report present (Johan Hovold)
- slimbus: core: fix runtime PM imbalance on report present (Johan Hovold)
- octeontx2: Fix otx2_dma_map_page() error return code (Thomas Fourier)
- arm64: Set __nocfi on swsusp_arch_resume() (Zhaoyang Huang) [Orabug: 38970241] {CVE-2026-23128}
- arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA (Mark Rutland) [Orabug: 38931118] {CVE-2026-23107}
- wifi: rsi: Fix memory corruption due to not set vif driver data size (Marek Vasut) [Orabug: 38930939] {CVE-2026-23073}
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (Dan Carpenter)
- wifi: ath12k: fix dma_free_coherent() pointer (Thomas Fourier)
- wifi: ath10k: fix dma_free_coherent() pointer (Thomas Fourier) [Orabug: 38970253] {CVE-2026-23133}
- drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit) (Lyude Paul)
- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (Shawn Lin)
- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (Matthew Schwartz)
- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (Berk Cem Goksel) [Orabug: 38931029] {CVE-2026-23089}
- ALSA: scarlett2: Fix buffer overflow in config retrieval (Samasth Norway Ananda) [Orabug: 38930973] {CVE-2026-23078}
- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (Takashi Iwai) [Orabug: 38930966] {CVE-2026-23076}
- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (Andreas Kübrich)
- iio: chemical: scd4x: fix reported channel endianness (Fiona Klute)
- iio: adc: pac1934: Fix clamped value in pac1934_reg_snapshot (Thorsten Blum)
- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (Pei Xiao)
- iio: adc: ad9467: fix ad9434 vref mask (Tomas Melin)
- iio: accel: iis328dq: fix gain values (Markus Koeniger)
- iio: accel: adxl380: fix handling of unavailable "INT1" interrupt (Francesco Lavra)
- of: platform: Use default match table for /firmware (Rob Herring)
- of: fix reference count leak in of_alias_scan() (Weigang He)
- leds: led-class: Only Add LED to leds_list when it is fully ready (Hans de Goede) [Orabug: 38931091] {CVE-2026-23101}
- keys/trusted_keys: fix handle passed to tpm_buf_append_name during unseal (Srish Srinivasan)
- tpm: Compare HMAC values in constant time (Eric Biggers)
- x86: make page fault handling disable interrupts properly (Cedric Xing)
- dpll: Prevent duplicate registrations (Ivan Vecera) [Orabug: 38970244] {CVE-2026-23129}
- net/sched: act_ife: avoid possible NULL deref (Eric Dumazet)
- vsock/virtio: cap TX credit to local buffer size (Melbin K Mathew) [Orabug: 38931008] {CVE-2026-23086}
- vsock/test: fix seqpacket message bounds test (Stefano Garzarella)
- vsock/virtio: fix potential underflow in virtio_transport_get_credit() (Melbin K Mathew) [Orabug: 38930919] {CVE-2026-23069}
- net: openvswitch: fix data race in ovs_vport_get_upcall_stats (David Yang)
- octeontx2-af: Fix error handling (Ratheesh Kannoth)
- net: dsa: fix off-by-one in maximum bridge ID determination (Vladimir Oltean)
- bonding: provide a net pointer to __skb_flow_dissect() (Eric Dumazet) [Orabug: 38970199] {CVE-2026-23119}
- selftests: net: amt: wait longer for connection before sending packets (Taehee Yoo)
- be2net: Fix NULL pointer dereference in be_cmd_get_mac_from_list (Andrey Vatoropin) [Orabug: 38930992] {CVE-2026-23084}
- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (Alex Ramírez)
- drm/nouveau: add missing DCB connector types (Alex Ramírez)
- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (Timur Kristóf)
- drm/amd/pm: Don't clear SI SMC table when setting power limit (Timur Kristóf)
- sched/fair: Fix pelt clock sync when entering idle (Vincent Guittot)
- clocksource: Reduce watchdog readout delay limit to prevent false positives (Thomas Gleixner)
- usbnet: limit max_mtu based on device's hard_mtu (Laurent Vivier)
- ipv6: annotate data-race in ndisc_router_discovery() (Eric Dumazet) [Orabug: 38970222] {CVE-2026-23124}
- mISDN: annotate data-race around dev->work (Eric Dumazet)
- net: hns3: fix the HCLGE_FD_AD_NXT_KEY error setting issue (Jijie Shao)
- net: hns3: fix wrong GENMASK() for HCLGE_FD_AD_COUNTER_NUM_M (Jijie Shao)
- be2net: fix data race in be_get_new_eqd (David Yang)
- net: hns3: fix data race in hns3_fetch_stats (David Yang)
- ice: Fix persistent failure in ice_get_rxfh (Cody Haas)
- netdevsim: fix a race issue related to the operation on bpf_bound_progs list (Yun Lu) [Orabug: 38970233] {CVE-2026-23126}
- drm/imagination: Wait for FW trace update command completion (Brajesh Gupta)
- ALSA: usb: Increase volume range that triggers a warning (Arun Raghavan)
- scsi: qla2xxx: Sanitize payload size to prevent member overflow (Jiasheng Jiang) [Orabug: 38930867] {CVE-2026-23059}
- scsi: core: Wake up the error handler when final completions race against each other (David Jeffery) [Orabug: 38931132] {CVE-2026-23110}
- platform/x86/amd: Fix memory leak in wbrf_record() (Zilin Guan)
- riscv: clocksource: Fix stimecmp update hazard on RV32 (Naohiko Shimizu)
- kconfig: fix static linking of nconf (Arusekk)
- regmap: Fix race condition in hwspinlock irqsave routine (Cheng-Yu Lee) [Orabug: 38930930] {CVE-2026-23071}
- spi: spi-sprd-adi: Fix double free in probe error path (Felix Gu)
- interconnect: debugfs: initialize src_node and dst_node to empty strings (Georgi Djakov) [Orabug: 38970218] {CVE-2026-23123}
- iio: adc: ad7280a: handle spi_setup() errors in probe() (Pavel Zhigulin)
- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (Francesco Lavra)
- io_uring/io-wq: check IO_WQ_BIT_EXIT inside work run loop (Jens Axboe) [Orabug: 38970181] {CVE-2026-23113}
- mm/rmap: fix two comments related to huge_pmd_unshare() (David Hildenbrand)
- platform/x86: hp-bioscfg: Fix kernel panic in GET_INSTANCE_ID macro (Mario Limonciello) [Orabug: 38930890] {CVE-2026-23062}
- platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names (Mario Limonciello) [Orabug: 38970247] {CVE-2026-23131}
- comedi: Fix getting range information for subdevices 16 to 255 (Ian Abbott)
- x86/kfence: avoid writing L1TF-vulnerable PTEs (Andrew Cooper)
- arm64: dts: rockchip: Fix voltage threshold for volume keys for Pinephone Pro (Ondrej Jirman)
- arm64: dts: rockchip: remove dangerous max-link-speed from helios64 (Geraldo Nascimento)
- scsi: xen: scsiback: Fix potential memory leak in scsiback_remove() (Abdun Nihaal) [Orabug: 38931014] {CVE-2026-23087}
- scsi: storvsc: Process unsupported MODE_SENSE_10 (Long Li)
- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (Feng)
- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (Gongqi)
- Revert "nfc/nci: Add the inconsistency check between the input data length and count" (Thadeu Lima de Souza Cascardo)
- w1: fix redundant counter decrement in w1_attach_slave_device() (Haoxiang Li)
- w1: therm: Fix off-by-one buffer overflow in alarms_store (Thorsten Blum) [Orabug: 38930796] {CVE-2025-71197}
- comedi: dmm32at: serialize use of paged registers (Ian Abbott)
- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (Marnix Rijnart)
- wifi: mac80211: don't perform DA check on S1G beacon (Lachlan Hodges)
- crypto: authencesn - reject too-short AAD (assoclenstats in BPF redirect paths (Jakub Kicinski)
- net: usb: r8152: fix resume reset deadlock (Sergey Senozhatsky) [Orabug: 38970438] {CVE-2026-23188}
- macvlan: fix error recovery in macvlan_common_newlink() (Eric Dumazet) [Orabug: 38970508] {CVE-2026-23209}
- net: sfp: Fix quirk for Ubiquiti U-Fiber Instant SFP module (Marek Behún)
- net: sfp: convert sfp quirks to modify struct sfp_module_support (Russell King)
- net: sfp: pre-parse the module support (Russell King)
- net: phy: add phy_interface_copy() (Russell King)
- net: phy: add phy_interface_weight() (Russell King)
- dpaa2-switch: add bounds check for if_id in IRQ handler (Junrui Luo)
- net: liquidio: Fix off-by-one error in VF setup_nic_devices() cleanup (Zilin Guan)
- net: liquidio: Fix off-by-one error in PF setup_nic_devices() cleanup (Zilin Guan)
- net: liquidio: Initialize netdev pointer before queue setup (Zilin Guan)
- dpaa2-switch: prevent ZERO_SIZE_PTR dereference when num_ifs is zero (Junrui Luo)
- net/sched: cls_u32: use skb_header_pointer_careful() (Eric Dumazet) [Orabug: 38970487] {CVE-2026-23204}
- net: add skb_header_pointer_careful() helper (Eric Dumazet)
- smb/client: fix memory leak in smb2_open_file() (Chenxiaosong) [Orabug: 38970578] {CVE-2026-23205}
- platform/x86/intel/tpmi/plr: Make the file domain/status writeable (Ricardo Neri)
- platform/x86: hp-bioscfg: Skip empty attribute names (Mario Limonciello)
- platform/x86: intel_telemetry: Fix PSS event register mask (Kaushlendra Kumar)
- platform/x86: toshiba_haps: Fix memory leaks in add/remove routines (Rafael J. Wysocki)
- ALSA: hda/realtek: ALC269 fixup for Lenovo Yoga Book 9i 13IRU8 audio (Martin Hamilton)
- btrfs: reject new transactions if the fs is fully read-only (Qu Wenruo) [Orabug: 38985156] {CVE-2026-23214}
- wifi: mac80211: don't increment crypto_tx_tailroom_needed_cnt twice (Miri Korenblit)
- wifi: mac80211: correctly check if CSA is active (Miri Korenblit)
- scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() (Maurizio Lombardi) [Orabug: 38985169] {CVE-2026-23216}
- ALSA: hda/realtek: Fix headset mic for TongFang X6AR55xU (Tim Guttzeit)
- scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() (Maurizio Lombardi) [Orabug: 38970453] {CVE-2026-23193}
- wifi: cfg80211: Fix bitrate calculation overflow for HE rates (Veerendranath Jakkam)
- regmap: maple: free entry on mas_store_gfp() failure (Kaushlendra Kumar)
- spi: hisi-kunpeng: Fixed the wrong debugfs node name in hisi_spi debugfs initialization (Devyn Liu)
- ASoC: tlv320adcx140: Propagate error codes during probe (Dimitrios Katsaros)
- ASoC: amd: yc: Fix microphone on ASUS M6500RE (Radhi Bajahaw)
- nvmet-tcp: fixup hang in nvmet_tcp_listen_data_ready() (Hannes Reinecke) [Orabug: 38970416] {CVE-2026-23179}
- nvme-fc: release admin tagset if init fails (Chaitanya Kulkarni)
- ASoC: simple-card-utils: Check device node before overwrite direction (Shengjiu Wang)
- ASoC: davinci-evm: Fix reference leak in davinci_evm_probe (Kery Qi)
- wifi: mac80211: collect station statistics earlier when disconnect (Baochen Qiang)
- HID: logitech: add HID++ support for Logitech MX Anywhere 3S (Dennis Marttinen)
- ring-buffer: Avoid softlockup in ring_buffer_resize() during memory free (Ma Wupeng)
- drm/amd/pm: Disable MMIO access during SMU Mode 1 reset (Perry Yuan) [Orabug: 38985149] {CVE-2026-23213}
- HID: Apply quirk HID_QUIRK_ALWAYS_POLL to Edifier QR30 (2d99:a101) (Rodrigo Lugathe Da Conceição Alves)
- HID: i2c-hid: fix potential buffer overflow in i2c_hid_get_report() (Kwok Kin Ming) [Orabug: 38970413] {CVE-2026-23178}
- HID: quirks: Add another Chicony HP 5MP Cameras to hid_ignore_list (Chris Chiu)
- netfilter: replace -EEXIST with -EBUSY (Daniel Gomez)
- PCI: qcom: Remove ASPM L0s support for MSM8996 SoC (Manivannan Sadhasivam)
- ALSA: hda/realtek: add HP Laptop 15s-eq1xxx mute LED quirk (Ruslan Krupitsa)
- ALSA: hda/realtek: Add quirk for Acer Nitro AN517-55 (Matouš Lánský)
- HID: playstation: Center initial joystick axes to prevent spurious events (Siarhei Vishniakou)
- HID: intel-ish-hid: Reset enum_devices_done before enumeration (Zhang Lixu)
- riscv: Sanitize syscall table indexing under speculation (Lukas Gerlach)
- btrfs: fix reservation leak in some error paths when inserting inline extent (Filipe Manana)
- HID: multitouch: add MT_QUIRK_STICKY_FINGERS to MT_CLS_VTL (Daytoncl)
- HID: intel-ish-hid: Update ishtp bus match to support device ID table (Zhang Lixu)
- smb/server: fix refcount leak in parse_durable_handle_context() (Zhangguodong)
- LoongArch: Enable exception fixup for specific ADE subcode (Duan Chenghao)
- smb/server: fix refcount leak in smb2_open() (Zhangguodong)
- md: suspend array while updating raid_disks via sysfs (Danny Shih) [Orabug: 38985108] {CVE-2025-71225}
- LoongArch: Set correct protection_map[] for VM_NONE/VM_SHARED (Huacai Chen)
- smb/server: call ksmbd_session_rpc_close() on error path in create_smb2_pipe() (Zhangguodong)
- block,bfq: fix aux stat accumulation destination (Shechenglong)
- net: usb: sr9700: support devices with virtual driver CD (Ethan Nelson-Moore)
- wifi: wlcore: ensure skb headroom before skb_push (Peter Astrand) [Orabug: 38970152] {CVE-2025-71222}
- wifi: mac80211: ocb: skip rx_no_sta when interface is not joined (Moon Hee Lee) [Orabug: 38970163] {CVE-2025-71224}
- tracing: Fix ftrace event field alignments (Steven Rostedt)
- procfs: avoid fetching build ID while holding VMA lock (Andrii Nakryiko) [Orabug: 38970476] {CVE-2026-23199}
- KVM: selftests: Add -U_FORTIFY_SOURCE to avoid some unpredictable test failures (Zhiquan Li)
- binderfs: fix ida_alloc_max() upper bound (Carlos Llamas)
- binder: fix BR_FROZEN_REPLY error log (Carlos Llamas)
- hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() (Kang Chen)
- ublk: fix deadlock when reading partition table (Ming Lei)
- tools/power turbostat: fix GCC9 build regression (Todd Brandt)
- PCI/ERR: Ensure error recoverability at all times (Lukas Wunner)
- KVM: Don't clobber irqfd routing type when deassigning irqfd (Sean Christopherson)
- Revert "drm/amd: Check if ASPM is enabled from PCIe subsystem" (Bert Karwatzki)
- mm, shmem: prevent infinite loop on truncate race (Kairui Song) [Orabug: 38970409] {CVE-2026-23177}
- gve: Correct ethtool rx_dropped calculation (Max Yuan)
- gve: Fix stats report corruption on queue count change (Debarghya Kundu)
- ceph: fix oops due to invalid pointer for kfree() in parse_longname() (Daniel Vogelbacher) [Orabug: 38970590] {CVE-2026-23201}
- ARM: 9468/1: fix memset64() on big-endian (Thomas Weißschuh)
- rbd: check for EOD after exclusive lock is ensured to be held (Ilya Dryomov)
- ceph: fix NULL pointer dereference in ceph_mds_auth_match() (Viacheslav Dubeyko) [Orabug: 38970595] {CVE-2026-23189}
- mm/slab: Add alloc_tagging_slab_free_hook for memcg_alloc_abort_single (Hao Ge) [Orabug: 38985192] {CVE-2026-23219}
- pmdomain: imx8m-blk-ctrl: fix out-of-range access of bc->domains (Xu Yang)
- pmdomain: imx8mp-blk-ctrl: Keep usb phy power domain on for system wakeup (Xu Yang)
- pmdomain: imx: gpcv2: Fix the imx8mm gpu hang due to wrong adb400 reset (Jacky Bai)
- pmdomain: imx8mp-blk-ctrl: Keep gpc power domain on for system wakeup (Xu Yang)
- pmdomain: qcom: rpmpd: fix off-by-one error in clamping to the highest state (Gabor Juhos)
- ALSA: aloop: Fix racy access at PCM trigger (Takashi Iwai) [Orabug: 38970445] {CVE-2026-23191}
- platform/x86: intel_telemetry: Fix swapped arrays in PSS output (Kaushlendra Kumar)
- x86/kfence: fix booting on 32bit non-PAE systems (Andrew Cooper)
- x86/vmware: Fix hypercall clobbers (Josh Poimboeuf) [Orabug: 38985163] {CVE-2026-23215}
- nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec (Yunje Shin) [Orabug: 38970176] {CVE-2026-23112}
- LTS version: v6.12.69 (Jack Vogel)
- bpf/selftests: test_select_reuseport_kern: Remove unused header (Alexis Lothoré)
- RDMA/mana_ib: Handle net event for pointing to the current netdev (Long Li)
- net: mana: Change the function signature of mana_get_primary_netdev_rcu (Long Li)
- pinctrl: lpass-lpi: implement .get_direction() for the GPIO driver (Bartosz Golaszewski)
- drm/amdgpu/gfx11: adjust KGQ reset sequence (Alex Deucher)
- writeback: fix 100% CPU usage when dirtytime_expire_interval is 0 (Laveesh Bansal)
- perf: sched: Fix perf crash with new is_user_task() helper (Steven Rostedt) [Orabug: 38970581] {CVE-2026-23159}
- perf: Simplify get_perf_callchain() user logic (Josh Poimboeuf)
- mptcp: avoid dup SUB_CLOSED events after disconnect (Matthieu Baerts)
- pinctrl: qcom: sm8350-lpass-lpi: Merge with SC7280 to fix I2S2 and SWR TX pins (Krzysztof Kozlowski)
- net/sched: act_ife: convert comma to semicolon (Chen Ni)
- btrfs: prevent use-after-free on folio private data in btrfs_subpage_clear_uptodate() (Jp Kobryn)
- Revert "drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit)" (John Ogness)
- wifi: ath11k: add srng->lock for ath11k_hal_srng_* in monitor mode (Kang Yang) [Orabug: 37844126] {CVE-2024-58096}
- mm/kfence: randomize the freelist on initialization (Pimyn Girgis)
- libbpf: Fix -Wdiscarded-qualifiers under C23 (Mikhail Gavrilov)
- ksmbd: smbd: fix dma_unmap_sg() nents (Thomas Fourier)
- rxrpc: Fix data-race warning and potential load/store tearing (David Howells)
- cgroup: Fix kernfs_node UAF in css_free_rwork_fn (T.J. Mercier)
- rust: kbuild: support -Cjump-tables=n for Rust 1.93.0 (Miguel Ojeda)
- gpiolib: acpi: Fix potential out-of-boundary left shift (Andy Shevchenko)
- drm/amdgpu: Fix cond_exec handling in amdgpu_ib_schedule() (Alex Deucher)
- drm/amdgpu: fix NULL pointer dereference in amdgpu_gmc_filter_faults_remove (Jon Doron) [Orabug: 38970348] {CVE-2026-23163}
- drm/amdgpu/gfx12: fix wptr reset in KGQ init (Alex Deucher)
- drm/amdgpu/gfx11: fix wptr reset in KGQ init (Alex Deucher)
- drm/amdgpu/gfx10: fix wptr reset in KGQ init (Alex Deucher)
- drm/amdgpu/soc21: fix xclk for APUs (Alex Deucher)
- drm/imx/tve: fix probe device leak (Johan Hovold)
- drm/msm/a6xx: fix bogus hwcg register updates (Johan Hovold)
- scripts: generate_rust_analyzer: Add compiler_builtins -> core dep (Tamir Duberstein)
- scripts: generate_rust_analyzer: compile sysroot with correct edition (Tamir Duberstein)
- scripts: generate_rust_analyzer: remove sysroot assertion (Onur Özkan)
- net: fix segmentation of forwarding fraglist GRO (Jibin Zhang) [Orabug: 38970318] {CVE-2026-23154}
- mm/shmem, swap: fix race of truncate and swap entry split (Kairui Song) [Orabug: 38970345] {CVE-2026-23161}
- flex_proportions: make fprop_new_period() hardirq safe (Jan Kara) [Orabug: 38970373] {CVE-2026-23168}
- selftests: mptcp: join: fix local endp not being tracked (Matthieu Baerts)
- selftests: mptcp: check subflow errors in close events (Matthieu Baerts)
- selftests: mptcp: check no dup close events after error (Matthieu Baerts)
- mptcp: only reset subflow errors when propagated (Matthieu Baerts)
- gpio: rockchip: Stop calling pinctrl for set_direction (Robin Murphy)
- nvmet: fix race in nvmet_bio_done() leading to NULL pointer dereference (Ming Lei) [Orabug: 38970608] {CVE-2026-23148}
- efivarfs: fix error propagation in efivar_entry_get() (Kohei Enju) [Orabug: 38970325] {CVE-2026-23156}
- scsi: qla2xxx: edif: Fix dma_free_coherent() size (Thomas Fourier)
- gpio: pca953x: mask interrupts in irq shutdown (Martin Larsson)
- ASoC: amd: yc: Add DMI quirk for Acer TravelMate P216-41-TCO (Zhang Heng)
- scsi: be2iscsi: Fix a memory leak in beiscsi_boot_get_sinfo() (Haoxiang Li)
- ASoC: fsl: imx-card: Do not force slot width to sample width (Fabio Estevam)
- rust: kbuild: give --config-path to rustfmt in .rsi target (Miguel Ojeda)
- rust: rbtree: fix documentation typo in CursorMut peek_next method (Hang Shu)
- riscv: compat: fix COMPAT_UTS_MACHINE definition (Han Gao)
- pinctrl: meson: mark the GPIO controller as sleeping (Bartosz Golaszewski)
- sched/deadline: Fix 'stuck' dl_server (Peter Zijlstra)
- sched/deadline: Document dl_server (Peter Zijlstra)
- dma/pool: distinguish between missing and exhausted atomic pools (Sai Sree Kartheek Adivi)
- bcache: fix I/O accounting leak in detached_dev_do_request (Shida Zhang)
- bcache: use bio cloning for detached device requests (Shida Zhang)
- bcache: fix improper use of bi_end_io (Shida Zhang)
- gpio: virtuser: fix UAF in configfs release path (Yuhao Huang)
- gpiolib: acpi: use BIT_ULL() for u64 mask in address space handler (Denis Sergeev)
- ASoC: Intel: sof_es8336: fix headphone GPIO logic inversion (Tagir Garaev)
- scsi: firewire: sbp-target: Fix overflow in sbp_make_tpg() (Kery Qi)
- net/mlx5e: Skip ESN replay window setup for IPsec crypto offload (Jianbo Liu)
- net/mlx5: Fix vhca_id access call trace use before alloc (Parav Pandit)
- net/mlx5: Initialize events outside devlink lock (Cosmin Ratiu)
- net/mlx5: fs, Fix inverted cap check in tx flow table root disconnect (Shay Drory)
- net: phy: micrel: fix clk warning when removing the driver (Wei Fang)
- net: bridge: fix static key check (Martin Kaiser)
- nfc: nci: Fix race between rfkill and nci_unregister_device(). (Kuniyuki Iwashima)
- net/mlx5e: TC, delete flows only for existing peers (Mark Bloch) [Orabug: 38970397] {CVE-2026-23173}
- ice: stop counting UDP csum mismatch as rx_errors (Jesse Brandeburg)
- ice: Fix NULL pointer dereference in ice_vsi_set_napi_queues (Aaron Ma) [Orabug: 38970364] {CVE-2026-23166}
- nfc: llcp: Fix memleak in nfc_llcp_send_ui_frame(). (Kuniyuki Iwashima)
- rocker: fix memory leak in rocker_world_port_post_fini() (Kery Qi) [Orabug: 38970351] {CVE-2026-23164}
- net: wwan: t7xx: fix potential skb->frags overflow in RX path (Kery Qi)
- ipv6: use the right ifindex when replying to icmpv6 from localhost (Fernando Fernandez Mancera)
- net: mvpp2: cls: Fix memory leak in mvpp2_ethtool_cls_rule_ins() (Zilin Guan)
- bonding: annotate data-races around slave->last_rx (Eric Dumazet) [Orabug: 38985142] {CVE-2026-23212}
- octeon_ep: Fix memory leak in octep_device_setup() (Zilin Guan)
- net: bcmasp: fix early exit leak with fixed phy (Justin Chen)
- can: gs_usb: gs_usb_receive_bulk_callback(): fix error message (Marc Kleine-Budde)
- net/mlx5: Fix memory leak in esw_acl_ingress_lgcy_setup() (Zilin Guan)
- Bluetooth: MGMT: Fix memory leak in set_ssp_complete (Jianpeng Chang) [Orabug: 38970587] {CVE-2026-23151}
- Bluetooth: hci_uart: fix null-ptr-deref in hci_uart_write_work (Jia-Hong Su) [Orabug: 38970604] {CVE-2026-23146}
- can: at91_can: Fix memory leak in at91_can_probe() (Zilin Guan)
- LTS version: v6.12.68 (Jack Vogel)
- vsock/virtio: Fix message iterator handling on transmit path (Will Deacon)
- net: Introduce skb_copy_datagram_from_iter_full() (Will Deacon)
- vsock/virtio: Allocate nonlinear SKBs for handling large transmit buffers (Will Deacon)
- vhost/vsock: Allocate nonlinear SKBs for handling large receive buffers (Will Deacon)
- vsock/virtio: Rename virtio_vsock_skb_rx_put() (Will Deacon)
- vsock/virtio: Move SKB allocation lower-bound check to callers (Will Deacon)
- vsock/virtio: Rename virtio_vsock_alloc_skb() (Will Deacon)
- vsock/virtio: Move length check to callers of virtio_vsock_skb_rx_put() (Will Deacon)
- wifi: ath11k: fix RCU stall while reaping monitor destination ring (P Praneesh) [Orabug: 37844129] {CVE-2024-58097}
- btrfs: fix racy bitfield write in btrfs_clear_space_info_full() (Boris Burkov) [Orabug: 38798802] {CVE-2025-68358}
- accel/ivpu: Fix race condition when unbinding BOs (Tomasz Rusinowicz)
- fs/ntfs3: Initialize allocated memory before use (Bartlomiej Kubik)
- sched_ext: Fix possible deadlock in the deferred_irq_workfn() (Zqiang) [Orabug: 38792605] {CVE-2025-68333}
- exfat: fix refcount leak in exfat_find (Shuhao Fu) [Orabug: 38798780] {CVE-2025-68351}
- iio: adc: exynos_adc: fix OF populate on driver rebind (Johan Hovold)
- iio: core: add separate lockdep class for info_exist_lock (Rasmus Villemoes)
- iio: core: Replace lockdep_set_class() + mutex_init() by combined call (Andy Shevchenko)
- iio: core: add missing mutex_destroy in iio_dev_release() (Andy Shevchenko)
- arm64: dts: rockchip: remove redundant max-link-speed from nanopi-r4s (Geraldo Nascimento)
- bpf: Do not let BPF test infra emit invalid GSO types to stack (Daniel Borkmann) [Orabug: 38798881] {CVE-2025-68725}
- selftests/bpf: Check for timeout in perf_link test (Ihor Solodrai)
- can: esd_usb: esd_usb_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde)
- dmaengine: ti: k3-udma: Enable second resource range for BCDMA and PKTDMA (Siddharth Vadapalli)
- migrate: correct lock ordering for hugetlb file folios (Matthew Wilcox) [Orabug: 38931066] {CVE-2026-23097}
- gpio: cdev: Correct return code on memory allocation failure (Tzung-Bi Shih)
- drm/amdgpu: remove frame cntl for gfx v12 (Likun Gao)
- can: usb_8dev: usb_8dev_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde) [Orabug: 38931120] {CVE-2026-23108}
- can: mcba_usb: mcba_usb_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde)
- can: kvaser_usb: kvaser_usb_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde) [Orabug: 38930881] {CVE-2026-23061}
- can: ems_usb: ems_usb_read_bulk_callback(): fix URB memory leak (Marc Kleine-Budde) [Orabug: 38930859] {CVE-2026-23058}
- net: sfp: add potron quirk to the H-COM SPP425H-GAB4 SFP+ Stick (Hamza Mahfooz)
- irqchip/gic-v3-its: Avoid truncating memory addresses (Arnd Bergmann) [Orabug: 38931001] {CVE-2026-23085}
- perf/x86/intel: Do not enable BTS for guests (Fernand Sieber)
- pmdomain: imx8m-blk-ctrl: Remove separate rst and clk mask for 8mq vpu (Ming Qian)
- platform/x86: hp-bioscfg: Fix automatic module loading (Mario Limonciello)
- netrom: fix double-free in nr_route_frame() (Jeongjun Park)
- uacce: ensure safe queue release with state management (Chenghai Huang)
- uacce: implement mremap in uacce_vm_ops to return -EPERM (Yang Shen)
- uacce: fix isolate sysfs check condition (Chenghai Huang)
- uacce: fix cdev handling in the cleanup path (Wenkai Lin)
- s390/ap: Fix wrong APQN fill calculation (Harald Freudenberger)
- mei: trace: treat reg parameter as string (Alexander Usyskin)
- intel_th: fix device leak on output open() (Johan Hovold) [Orabug: 38931040] {CVE-2026-23091}
- tracing: Fix crash on synthetic stacktrace field usage (Steven Rostedt) [Orabug: 38931024] {CVE-2026-23088}
- slimbus: core: fix device reference leak on report present (Johan Hovold)
- slimbus: core: fix runtime PM imbalance on report present (Johan Hovold)
- octeontx2: Fix otx2_dma_map_page() error return code (Thomas Fourier)
- arm64: Set __nocfi on swsusp_arch_resume() (Zhaoyang Huang) [Orabug: 38970241] {CVE-2026-23128}
- arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA (Mark Rutland) [Orabug: 38931118] {CVE-2026-23107}
- wifi: rsi: Fix memory corruption due to not set vif driver data size (Marek Vasut) [Orabug: 38930939] {CVE-2026-23073}
- wifi: mwifiex: Fix a loop in mwifiex_update_ampdu_rxwinsize() (Dan Carpenter)
- wifi: ath12k: fix dma_free_coherent() pointer (Thomas Fourier)
- wifi: ath10k: fix dma_free_coherent() pointer (Thomas Fourier) [Orabug: 38970253] {CVE-2026-23133}
- drm/nouveau/disp: Set drm_mode_config_funcs.atomic_(check|commit) (Lyude Paul)
- mmc: sdhci-of-dwcmshc: Prevent illegal clock reduction in HS200/HS400 mode (Shawn Lin)
- mmc: rtsx_pci_sdmmc: implement sdmmc_card_busy function (Matthew Schwartz)
- ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() (Berk Cem Goksel) [Orabug: 38931029] {CVE-2026-23089}
- ALSA: scarlett2: Fix buffer overflow in config retrieval (Samasth Norway Ananda) [Orabug: 38930973] {CVE-2026-23078}
- ALSA: ctxfi: Fix potential OOB access in audio mixer handling (Takashi Iwai) [Orabug: 38930966] {CVE-2026-23076}
- iio: dac: ad5686: add AD5695R to ad5686_chip_info_tbl (Andreas Kübrich)
- iio: chemical: scd4x: fix reported channel endianness (Fiona Klute)
- iio: adc: pac1934: Fix clamped value in pac1934_reg_snapshot (Thorsten Blum)
- iio: adc: at91-sama5d2_adc: Fix potential use-after-free in sama5d2_adc driver (Pei Xiao)
- iio: adc: ad9467: fix ad9434 vref mask (Tomas Melin)
- iio: accel: iis328dq: fix gain values (Markus Koeniger)
- iio: accel: adxl380: fix handling of unavailable "INT1" interrupt (Francesco Lavra)
- of: platform: Use default match table for /firmware (Rob Herring)
- of: fix reference count leak in of_alias_scan() (Weigang He)
- leds: led-class: Only Add LED to leds_list when it is fully ready (Hans de Goede) [Orabug: 38931091] {CVE-2026-23101}
- keys/trusted_keys: fix handle passed to tpm_buf_append_name during unseal (Srish Srinivasan)
- tpm: Compare HMAC values in constant time (Eric Biggers)
- x86: make page fault handling disable interrupts properly (Cedric Xing)
- dpll: Prevent duplicate registrations (Ivan Vecera) [Orabug: 38970244] {CVE-2026-23129}
- net/sched: act_ife: avoid possible NULL deref (Eric Dumazet)
- vsock/virtio: cap TX credit to local buffer size (Melbin K Mathew) [Orabug: 38931008] {CVE-2026-23086}
- vsock/test: fix seqpacket message bounds test (Stefano Garzarella)
- vsock/virtio: fix potential underflow in virtio_transport_get_credit() (Melbin K Mathew) [Orabug: 38930919] {CVE-2026-23069}
- net: openvswitch: fix data race in ovs_vport_get_upcall_stats (David Yang)
- octeontx2-af: Fix error handling (Ratheesh Kannoth)
- net: dsa: fix off-by-one in maximum bridge ID determination (Vladimir Oltean)
- bonding: provide a net pointer to __skb_flow_dissect() (Eric Dumazet) [Orabug: 38970199] {CVE-2026-23119}
- selftests: net: amt: wait longer for connection before sending packets (Taehee Yoo)
- be2net: Fix NULL pointer dereference in be_cmd_get_mac_from_list (Andrey Vatoropin) [Orabug: 38930992] {CVE-2026-23084}
- drm/nouveau: implement missing DCB connector types; gracefully handle unknown connectors (Alex Ramírez)
- drm/nouveau: add missing DCB connector types (Alex Ramírez)
- drm/amd/pm: Workaround SI powertune issue on Radeon 430 (v2) (Timur Kristóf)
- drm/amd/pm: Don't clear SI SMC table when setting power limit (Timur Kristóf)
- sched/fair: Fix pelt clock sync when entering idle (Vincent Guittot)
- clocksource: Reduce watchdog readout delay limit to prevent false positives (Thomas Gleixner)
- usbnet: limit max_mtu based on device's hard_mtu (Laurent Vivier)
- ipv6: annotate data-race in ndisc_router_discovery() (Eric Dumazet) [Orabug: 38970222] {CVE-2026-23124}
- mISDN: annotate data-race around dev->work (Eric Dumazet)
- net: hns3: fix the HCLGE_FD_AD_NXT_KEY error setting issue (Jijie Shao)
- net: hns3: fix wrong GENMASK() for HCLGE_FD_AD_COUNTER_NUM_M (Jijie Shao)
- be2net: fix data race in be_get_new_eqd (David Yang)
- net: hns3: fix data race in hns3_fetch_stats (David Yang)
- ice: Fix persistent failure in ice_get_rxfh (Cody Haas)
- netdevsim: fix a race issue related to the operation on bpf_bound_progs list (Yun Lu) [Orabug: 38970233] {CVE-2026-23126}
- drm/imagination: Wait for FW trace update command completion (Brajesh Gupta)
- ALSA: usb: Increase volume range that triggers a warning (Arun Raghavan)
- scsi: qla2xxx: Sanitize payload size to prevent member overflow (Jiasheng Jiang) [Orabug: 38930867] {CVE-2026-23059}
- scsi: core: Wake up the error handler when final completions race against each other (David Jeffery) [Orabug: 38931132] {CVE-2026-23110}
- platform/x86/amd: Fix memory leak in wbrf_record() (Zilin Guan)
- riscv: clocksource: Fix stimecmp update hazard on RV32 (Naohiko Shimizu)
- kconfig: fix static linking of nconf (Arusekk)
- regmap: Fix race condition in hwspinlock irqsave routine (Cheng-Yu Lee) [Orabug: 38930930] {CVE-2026-23071}
- spi: spi-sprd-adi: Fix double free in probe error path (Felix Gu)
- interconnect: debugfs: initialize src_node and dst_node to empty strings (Georgi Djakov) [Orabug: 38970218] {CVE-2026-23123}
- iio: adc: ad7280a: handle spi_setup() errors in probe() (Pavel Zhigulin)
- iio: imu: st_lsm6dsx: fix iio_chan_spec for sensors without event detection (Francesco Lavra)
- io_uring/io-wq: check IO_WQ_BIT_EXIT inside work run loop (Jens Axboe) [Orabug: 38970181] {CVE-2026-23113}
- mm/rmap: fix two comments related to huge_pmd_unshare() (David Hildenbrand)
- platform/x86: hp-bioscfg: Fix kernel panic in GET_INSTANCE_ID macro (Mario Limonciello) [Orabug: 38930890] {CVE-2026-23062}
- platform/x86: hp-bioscfg: Fix kobject warnings for empty attribute names (Mario Limonciello) [Orabug: 38970247] {CVE-2026-23131}
- comedi: Fix getting range information for subdevices 16 to 255 (Ian Abbott)
- x86/kfence: avoid writing L1TF-vulnerable PTEs (Andrew Cooper)
- arm64: dts: rockchip: Fix voltage threshold for volume keys for Pinephone Pro (Ondrej Jirman)
- arm64: dts: rockchip: remove dangerous max-link-speed from helios64 (Geraldo Nascimento)
- scsi: xen: scsiback: Fix potential memory leak in scsiback_remove() (Abdun Nihaal) [Orabug: 38931014] {CVE-2026-23087}
- scsi: storvsc: Process unsupported MODE_SENSE_10 (Long Li)
- Input: i8042 - add quirk for ASUS Zenbook UX425QA_UM425QA (Feng)
- Input: i8042 - add quirks for MECHREVO Wujie 15X Pro (Gongqi)
- Revert "nfc/nci: Add the inconsistency check between the input data length and count" (Thadeu Lima de Souza Cascardo)
- w1: fix redundant counter decrement in w1_attach_slave_device() (Haoxiang Li)
- w1: therm: Fix off-by-one buffer overflow in alarms_store (Thorsten Blum) [Orabug: 38930796] {CVE-2025-71197}
- comedi: dmm32at: serialize use of paged registers (Ian Abbott)
- serial: 8250_pci: Fix broken RS485 for F81504/508/512 (Marnix Rijnart)
- wifi: mac80211: don't perform DA check on S1G beacon (Lachlan Hodges)
- crypto: authencesn - reject too-short AAD (assoclentimeout() handle per-dentry expire.
- refactor amd mount options handling.
- add some unimplemented amd map options.
- fix lookup search type in umount_subtree_mounts().
- fix remount_active_mount() not remounting symlinks.
- log when setting amd per-mount timeout.
- update per-mount expire timeout on readmap.
- clear per-mount timeout if not set.
- fix incorrect flags update in update_with_defaults().
- skip expire check for amd nounmount mounts.
- Resolves: RHEL-46409

ELSA-2026-4772 Moderate: Oracle Linux 8 glibc security update

Oracle Linux Security Advisory ELSA-2026-4772

http://linux.oracle.com/errata/ELSA-2026-4772.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
compat-libpthread-nonshared-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-2.28-251.0.4.el8_10.31.i686.rpm
glibc-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-all-langpacks-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-benchtests-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-common-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-devel-2.28-251.0.4.el8_10.31.i686.rpm
glibc-devel-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-doc-2.28-251.0.4.el8_10.31.noarch.rpm
glibc-gconv-extra-2.28-251.0.4.el8_10.31.i686.rpm
glibc-gconv-extra-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-headers-2.28-251.0.4.el8_10.31.i686.rpm
glibc-headers-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-aa-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-af-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-agr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ak-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-am-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-an-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-anp-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ar-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-as-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ast-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ayc-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-az-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-be-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-bem-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ber-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-bg-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-bhb-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-bho-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-bi-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-bn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-bo-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-br-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-brx-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-bs-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-byn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ca-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ce-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-chr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-cmn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-crh-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-cs-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-csb-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-cv-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-cy-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-da-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-de-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-doi-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-dsb-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-dv-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-dz-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-el-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-en-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-eo-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-es-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-et-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-eu-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-fa-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ff-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-fi-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-fil-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-fo-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-fr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-fur-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-fy-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ga-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-gd-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-gez-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-gl-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-gu-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-gv-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ha-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-hak-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-he-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-hi-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-hif-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-hne-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-hr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-hsb-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ht-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-hu-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-hy-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ia-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-id-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ig-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ik-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-is-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-it-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-iu-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ja-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ka-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-kab-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-kk-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-kl-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-km-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-kn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ko-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-kok-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ks-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ku-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-kw-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ky-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-lb-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-lg-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-li-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-lij-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ln-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-lo-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-lt-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-lv-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-lzh-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mag-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mai-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mfe-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mg-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mhr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mi-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-miq-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mjw-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mk-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ml-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mni-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ms-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-mt-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-my-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-nan-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-nb-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-nds-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ne-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-nhn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-niu-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-nl-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-nn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-nr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-nso-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-oc-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-om-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-or-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-os-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-pa-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-pap-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-pl-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ps-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-pt-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-quz-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-raj-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ro-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ru-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-rw-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sa-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sah-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sat-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sc-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sd-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-se-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sgs-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-shn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-shs-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-si-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sid-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sk-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sl-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sm-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-so-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sq-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ss-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-st-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sv-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-sw-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-szl-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ta-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tcy-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-te-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tg-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-th-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-the-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ti-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tig-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tk-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tl-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tn-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-to-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tpi-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tr-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ts-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-tt-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ug-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-uk-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-unm-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ur-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-uz-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-ve-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-vi-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-wa-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-wae-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-wal-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-wo-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-xh-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-yi-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-yo-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-yue-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-yuw-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-zh-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-langpack-zu-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-locale-source-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-minimal-langpack-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-nss-devel-2.28-251.0.4.el8_10.31.i686.rpm
glibc-nss-devel-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-static-2.28-251.0.4.el8_10.31.i686.rpm
glibc-static-2.28-251.0.4.el8_10.31.x86_64.rpm
glibc-utils-2.28-251.0.4.el8_10.31.x86_64.rpm
libnsl-2.28-251.0.4.el8_10.31.i686.rpm
libnsl-2.28-251.0.4.el8_10.31.x86_64.rpm
nscd-2.28-251.0.4.el8_10.31.x86_64.rpm
nss_db-2.28-251.0.4.el8_10.31.i686.rpm
nss_db-2.28-251.0.4.el8_10.31.x86_64.rpm
nss_hesiod-2.28-251.0.4.el8_10.31.i686.rpm
nss_hesiod-2.28-251.0.4.el8_10.31.x86_64.rpm

aarch64:
compat-libpthread-nonshared-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-all-langpacks-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-benchtests-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-common-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-devel-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-doc-2.28-251.0.4.el8_10.31.noarch.rpm
glibc-gconv-extra-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-headers-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-aa-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-af-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-agr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ak-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-am-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-an-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-anp-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ar-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-as-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ast-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ayc-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-az-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-be-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-bem-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ber-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-bg-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-bhb-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-bho-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-bi-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-bn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-bo-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-br-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-brx-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-bs-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-byn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ca-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ce-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-chr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-cmn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-crh-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-cs-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-csb-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-cv-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-cy-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-da-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-de-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-doi-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-dsb-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-dv-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-dz-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-el-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-en-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-eo-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-es-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-et-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-eu-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-fa-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ff-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-fi-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-fil-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-fo-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-fr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-fur-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-fy-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ga-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-gd-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-gez-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-gl-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-gu-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-gv-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ha-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-hak-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-he-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-hi-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-hif-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-hne-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-hr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-hsb-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ht-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-hu-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-hy-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ia-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-id-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ig-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ik-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-is-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-it-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-iu-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ja-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ka-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-kab-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-kk-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-kl-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-km-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-kn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ko-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-kok-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ks-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ku-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-kw-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ky-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-lb-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-lg-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-li-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-lij-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ln-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-lo-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-lt-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-lv-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-lzh-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mag-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mai-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mfe-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mg-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mhr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mi-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-miq-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mjw-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mk-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ml-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mni-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ms-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-mt-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-my-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-nan-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-nb-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-nds-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ne-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-nhn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-niu-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-nl-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-nn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-nr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-nso-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-oc-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-om-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-or-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-os-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-pa-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-pap-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-pl-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ps-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-pt-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-quz-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-raj-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ro-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ru-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-rw-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sa-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sah-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sat-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sc-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sd-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-se-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sgs-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-shn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-shs-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-si-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sid-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sk-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sl-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sm-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-so-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sq-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ss-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-st-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sv-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-sw-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-szl-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ta-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tcy-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-te-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tg-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-th-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-the-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ti-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tig-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tk-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tl-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tn-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-to-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tpi-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tr-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ts-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-tt-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ug-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-uk-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-unm-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ur-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-uz-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-ve-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-vi-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-wa-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-wae-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-wal-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-wo-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-xh-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-yi-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-yo-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-yue-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-yuw-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-zh-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-langpack-zu-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-locale-source-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-minimal-langpack-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-nss-devel-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-static-2.28-251.0.4.el8_10.31.aarch64.rpm
glibc-utils-2.28-251.0.4.el8_10.31.aarch64.rpm
libnsl-2.28-251.0.4.el8_10.31.aarch64.rpm
nscd-2.28-251.0.4.el8_10.31.aarch64.rpm
nss_db-2.28-251.0.4.el8_10.31.aarch64.rpm
nss_hesiod-2.28-251.0.4.el8_10.31.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/glibc-2.28-251.0.4.el8_10.31.src.rpm

Related CVEs:

CVE-2025-15281
CVE-2026-0915

Description of changes:

[2.28-251.0.4.31]
- Forward port of Oracle patches
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
Oracle history:
February-24-2026 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.4.27
- Fixed orabug 38834066 stpcpy MTE support
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
December-8-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.3.27
- Forward port of Oracle patches
Reviewed-by: David Faust [david.faust@oracle.com]
August-5-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.3.25
- Forward port of Oracle patches
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
June-9-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.3.22
- Forward port of Oracle patches
Reviewed-by: David Faust [david.faust@oracle.com]
April-14-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.3.16
- Forward port of Oracle patches
Reviewed-by: Elena Zannoni [elena.zannoni@oracle.com]
March-26-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.3.14
- OraBug: 36625686 Add MTE support on string functions
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
March-17-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.2.14
- Forward port of Oracle patches
Reviewed-by: David Faust [david.faust@oracle.com]
February-19-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.2.13
- Forward port of Oracle patches
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
January-28-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.2.11
- Forward port of Oracle patches
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
September-24-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.2.5
- Forward port of Oracle patches over 2.28-251.5
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
August-26-2024 Jose E. Marchesi [jose.marchesi@oracle.com] - 2.28-251.0.2.4
- Forward port of Oracle patches over 2.28-251.4
Reviewed-by: David Faust [david.faust@oracle.com]
May-24-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.2.2
- Forward port of Oracle patches over 2.28-251.2
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
May-23-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.2.1
- Forward port of Oracle patches over 2.28-251.1
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
May-22-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.2
- Forward port of Oracle patches for ol8-u10
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
March-28-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-251.0.1
- Forward port of Oracle patches for ol8-u10-beta
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
March-5-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-236.0.1.12
- Forward port of Oracle patches.
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
November-14-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-236.0.1.7
- Forward port of Oracle patches.
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
October-4-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-236.0.1.6
- Forward port of Oracle patches.
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
April-21-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-225.0.3
- OraBug 35317410 Glibc tunable to disable huge pages on pthread_create stacks
- Created tunable glibc.pthread.stack_hugetlb to control when hugepages
can be used for stack allocation.
- In case THP are enabled and glibc.pthread.stack_hugetlb is set to
0, glibc will madvise the kernel not to use allow hugepages for stack
allocations.
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
April-11-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-225.0.2
- OraBug: 35268809 Fixed initialization of VDSO for tcache_key_initialize
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
March-28-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.28-225.0.1
- Merge of Oracle patches for ol8u8 beta
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
September-28-2022 Patrick McGehearty [patrick.mcgehearty@oracle.com] - 2.28-211.0.1
- Merge of Oracle patches for ol8u7 beta
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
August-8-2022 Patrick McGehearty [patrick.mcgehearty@oracle.com] - 2.28-189.5.0.2
- Enable VDSO on x86_64, aarch64, i386, arm, and mips statically linked programs.
- These changes enable reading the realtime clock without a kernel syscall.
OraBug: 30478315
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
May-2-2022 Patrick McGehearty [patrick.mcgehearty@oracle.com] - 2.28-199.0.1
- Merge of patches from c8s 199 with ol8u6 beta
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
- Update siginfo constants from linux kernel (OraBug: 33734528)
- Remove limit on MALLOC_MMAP_THRESHOLD tunable (Orabug: 29630826)
- Provide glibc.pthread.mutex_spin_count tunable for pthread adaptive
- spin mutex (Orabug: 27982358)
Reviewed-by: Qing Zhao [qing.zhao@oracle.com]
- add Ampere emag to tunable cpu list (Patrick McGehearty)
- add optimized memset for emag
- add an ASIMD variant of strlen for falkor
Orabug: 2700101.
- Modify glibc-ora28849085.patch so it works with RHCK kernels. (Orabug: 28849085)
- Make _IO_funlockfile match __funlockfile and _IO_flockfile match __flockfile
Both should test
if (stream->_flags & _IO_USER_LOCK) == 0)
_IO_lock_lock (*stream->_lock);
OraBug: 28481550.
Reviewed-by: Qing Zhao [qing.zhao@oracle.com]

[2.28-251.31]
- CVE-2025-15281: wordexp WRDE_REUSE uninitialized memory read (RHEL-142787)

[2.28-251.30]
- Remove default /var/tmp for LD_PROFILE_OUTPUT (RHEL-142194)

[2.28-251.29]
- rpminspect.yaml: note that glibc-minimal-langpack is empty (RHEL-123889)

[2.28-251.28]
- CVE-2026-0915: Stack memory disclosure in getnetbyaddr (RHEL-141849)

[2.28-251.27]
- Fix a segmentation fault in multi-threaded multi-namespace programs using
ctype.h macros (RHEL-72011)

[2.28-251.26]
- nss: Group merge does not react to ERANGE during merge (RHEL-114260)

[2.28-251.25]
- CVE-2025-8058: Double free in regcomp (RHEL-105326)

[2.28-251.24]
- Keep reloading /etc/resolv.conf after timeouts with getaddrinfo
and AF_UNSPEC.
- Avoid timeouts with getaddrinfo, AF_UNSPEC, and certain DNS error
responses. (RHEL-18039)

[2.28-251.23]
- Reduce spurious rebuilds while running tests (RHEL-93937)

ELBA-2026-5583 Oracle Linux 8 curl bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-5583

http://linux.oracle.com/errata/ELBA-2026-5583.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
curl-7.61.1-34.el8_10.11.x86_64.rpm
libcurl-7.61.1-34.el8_10.11.i686.rpm
libcurl-7.61.1-34.el8_10.11.x86_64.rpm
libcurl-devel-7.61.1-34.el8_10.11.i686.rpm
libcurl-devel-7.61.1-34.el8_10.11.x86_64.rpm
libcurl-minimal-7.61.1-34.el8_10.11.i686.rpm
libcurl-minimal-7.61.1-34.el8_10.11.x86_64.rpm

aarch64:
curl-7.61.1-34.el8_10.11.aarch64.rpm
libcurl-7.61.1-34.el8_10.11.aarch64.rpm
libcurl-devel-7.61.1-34.el8_10.11.aarch64.rpm
libcurl-minimal-7.61.1-34.el8_10.11.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/curl-7.61.1-34.el8_10.11.src.rpm

Description of changes:

[7.61.1-34.el8_10.11]
- noproxy: support proxies specified using cidr notation (RHEL-86910)
- disable test1456 (requires test framework features not in 7.61.1)

ELBA-2026-5582 Oracle Linux 8 gvfs bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-5582

http://linux.oracle.com/errata/ELBA-2026-5582.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gvfs-1.36.2-20.el8_10.i686.rpm
gvfs-1.36.2-20.el8_10.x86_64.rpm
gvfs-afc-1.36.2-20.el8_10.x86_64.rpm
gvfs-afp-1.36.2-20.el8_10.x86_64.rpm
gvfs-archive-1.36.2-20.el8_10.x86_64.rpm
gvfs-client-1.36.2-20.el8_10.i686.rpm
gvfs-client-1.36.2-20.el8_10.x86_64.rpm
gvfs-devel-1.36.2-20.el8_10.i686.rpm
gvfs-devel-1.36.2-20.el8_10.x86_64.rpm
gvfs-fuse-1.36.2-20.el8_10.x86_64.rpm
gvfs-goa-1.36.2-20.el8_10.x86_64.rpm
gvfs-gphoto2-1.36.2-20.el8_10.x86_64.rpm
gvfs-mtp-1.36.2-20.el8_10.x86_64.rpm
gvfs-smb-1.36.2-20.el8_10.x86_64.rpm

aarch64:
gvfs-1.36.2-20.el8_10.aarch64.rpm
gvfs-afc-1.36.2-20.el8_10.aarch64.rpm
gvfs-afp-1.36.2-20.el8_10.aarch64.rpm
gvfs-archive-1.36.2-20.el8_10.aarch64.rpm
gvfs-client-1.36.2-20.el8_10.aarch64.rpm
gvfs-devel-1.36.2-20.el8_10.aarch64.rpm
gvfs-fuse-1.36.2-20.el8_10.aarch64.rpm
gvfs-goa-1.36.2-20.el8_10.aarch64.rpm
gvfs-gphoto2-1.36.2-20.el8_10.aarch64.rpm
gvfs-mtp-1.36.2-20.el8_10.aarch64.rpm
gvfs-smb-1.36.2-20.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/gvfs-1.36.2-20.el8_10.src.rpm

Description of changes:

[1.36.2-20]
- udisks2: Correct add to hash table for items which can clash in the monitor (RHEL-76484)

[1.36.2-19]
- udisks2: Use hash table for quicker lookups in the monitor (RHEL-76484)

ELBA-2026-50166 Oracle Linux 8 systemd bug fix update

Oracle Linux Bug Fix Advisory ELBA-2026-50166

http://linux.oracle.com/errata/ELBA-2026-50166.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
systemd-239-82.0.9.el8_10.15.i686.rpm
systemd-239-82.0.9.el8_10.15.x86_64.rpm
systemd-container-239-82.0.9.el8_10.15.i686.rpm
systemd-container-239-82.0.9.el8_10.15.x86_64.rpm
systemd-devel-239-82.0.9.el8_10.15.i686.rpm
systemd-devel-239-82.0.9.el8_10.15.x86_64.rpm
systemd-journal-remote-239-82.0.9.el8_10.15.x86_64.rpm
systemd-libs-239-82.0.9.el8_10.15.i686.rpm
systemd-libs-239-82.0.9.el8_10.15.x86_64.rpm
systemd-pam-239-82.0.9.el8_10.15.x86_64.rpm
systemd-tests-239-82.0.9.el8_10.15.x86_64.rpm
systemd-udev-239-82.0.9.el8_10.15.x86_64.rpm

aarch64:
systemd-239-82.0.9.el8_10.15.aarch64.rpm
systemd-container-239-82.0.9.el8_10.15.aarch64.rpm
systemd-devel-239-82.0.9.el8_10.15.aarch64.rpm
systemd-journal-remote-239-82.0.9.el8_10.15.aarch64.rpm
systemd-libs-239-82.0.9.el8_10.15.aarch64.rpm
systemd-pam-239-82.0.9.el8_10.15.aarch64.rpm
systemd-tests-239-82.0.9.el8_10.15.aarch64.rpm
systemd-udev-239-82.0.9.el8_10.15.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/systemd-239-82.0.9.el8_10.15.src.rpm

Description of changes:

[239-82.0.9.el8_10.15]
- Revert fix of leaking devlinks [Orabug: 39109827]

ELSA-2026-3685 Important: Oracle Linux 7 kernel security update

Oracle Linux Security Advisory ELSA-2026-3685

http://linux.oracle.com/errata/ELSA-2026-3685.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
kernel-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
kernel-abi-whitelists-3.10.0-1160.119.1.0.19.el7.noarch.rpm
kernel-debug-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
kernel-debug-devel-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
kernel-devel-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
kernel-doc-3.10.0-1160.119.1.0.19.el7.noarch.rpm
kernel-headers-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
kernel-tools-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
kernel-tools-libs-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
kernel-tools-libs-devel-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
perf-3.10.0-1160.119.1.0.19.el7.x86_64.rpm
python-perf-3.10.0-1160.119.1.0.19.el7.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-3.10.0-1160.119.1.0.19.el7.src.rpm

Related CVEs:

CVE-2022-50673
CVE-2025-38415
CVE-2025-38459
CVE-2025-39760
CVE-2025-39817
CVE-2025-39993
CVE-2025-40271
CVE-2025-68349
CVE-2026-23074

Description of changes:

[3.10.0-1160.119.1.0.19]
- ext4: fix use-after-free in ext4_orphan_cleanup {CVE-2022-50673} [Orabug: 39036029]
- Squashfs: check return result of sb_min_blocksize {CVE-2025-38415} [Orabug: 39036029]
- atm: clip: Fix infinite recursive call of clip_push(). {CVE-2025-38459} [Orabug: 39036029]
- usb: core: config: Prevent OOB read in SS endpoint companion parsing {CVE-2025-39760} [Orabug: 39036029]
- efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare {CVE-2025-39817} [Orabug: 39036029]
- media: imon: reorganize serialization [Orabug: 39036029]
- media: rc: fix races with imon_disconnect() {CVE-2025-39993} [Orabug: 39036029]
- fs/proc: fix uaf in proc_readdir_de() {CVE-2025-40271} [Orabug: 39036029]
- NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid {CVE-2025-68349} [Orabug: 39036029]
- net/sched: Enforce that teql can only be used as root qdisc {CVE-2026-23074} [Orabug: 39036029]

[3.10.0-1160.119.1.0.18]
- e1000e: fix heap overflow in e1000_set_eeprom {CVE-2025-39898} [Orabug: 38904071]
- i40e: fix idx validation in config queues msg {CVE-2025-39971} [Orabug: 38904071]
- vsock: track pkt owner vsock [Orabug: 38904071]
- vhost-vsock: add pkt cancel capability [Orabug: 38904071]
- vsock: cancel packets when failing to connect [Orabug: 38904071]
- vsock: notify server to shutdown when client has pending
signal [Orabug: 38904071]
- vsock: remove vsock from connected table when connect is
interrupted by a signal [Orabug: 38904071]
- vsock: Ignore signal/timeout on connect() if already
established {CVE-2025-40248} [Orabug: 38904071]

[3.10.0-1160.119.1.0.17]
- scsi: ses: Fix possible desc_ptr out-of-bounds accesses {CVE-2023-53675} [Orabug: 38860426]
- ipv6: Fix out-of-bounds access in ipv6_find_tlv() {CVE-2023-53705} [Orabug: 38860426]
- net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too {CVE-2025-37823} [Orabug: 38860426]
- libceph: fix potential use-after-free in have_mon_and_osd_map() {CVE-2025-68285} [Orabug: 38860426]

[3.10.0-1160.119.1.0.16]
- net: sched: sfb: fix null pointer access issue when sfb_init() fails {CVE-2022-50356} [Orabug: 38790244]
- fs: fix UAF/GPF bug in nilfs_mdt_destroy {CVE-2022-50367} [Orabug: 38790244]
- iomap: iomap: fix memory corruption when recording {CVE-2022-50406} [Orabug: 38790244]
- mm: fix zswap writeback race condition {CVE-2023-53178} [Orabug: 38790244]
- Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp {CVE-2023-53297} [Orabug: 38790244]
- scsi: qla2xxx: Wait for io return on terminate rport {CVE-2023-53322} [Orabug: 38790244]
- ALSA: usb-audio: Validate UAC3 power domain descriptors, too {CVE-2025-38729} [Orabug: 38790244]
- ALSA: usb-audio: Validate UAC3 cluster segment descriptors {CVE-2025-39757} [Orabug: 38790244]
- tcp: fix potential double free issue for fastopen_req [Orabug: 38790244]
- tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect() {CVE-2025-39955} [Orabug: 38790244]
- NFSD: Protect against send buffer overflow in NFSv2 READ {CVE-2022-50410} [Orabug: 38790244]
- ext4: fix undefined behavior in bit shift for ext4_check_flag_values {CVE-2022-50403} [Orabug: 38790244]

[3.10.0-1160.119.1.0.15]
- Bluetooth: L2CAP: fix use-after-free in l2cap_conn_del() {CVE-2022-3640} [Orabug: 38742878]
- Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put [Orabug: 38742878]
- Bluetooth: L2CAP: Fix user-after-free {CVE-2022-50386} [Orabug: 38742878]
- wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() {CVE-2022-50408} [Orabug: 38742878]
- Bluetooth: L2CAP: Fix use-after-free {CVE-2023-53305} [Orabug: 38742878]
- ip6mr: Fix skb_under_panic in ip6mr_cache_report() {CVE-2023-53365} [Orabug: 38742878]
- sctp: linearize cloned gso packets in sctp_rcv {CVE-2025-38718} [Orabug: 38742878]

[3.10.0-1160.119.1.0.14]
- HID: core: fix shift-out-of-bounds in hid_report_raw_event {CVE-2022-48978} [Orabug: 38644370]
- crypto: seqiv - Handle EBUSY correctly {CVE-2023-53373} [Orabug: 38644370]
- nfsd: don't ignore the return code of svc_proc_register() {CVE-2025-22026} [Orabug: 38644370]
- net_sched: hfsc: Fix a UAF vulnerability in class handling {CVE-2025-37797} [Orabug: 38644370]
- HID: core: Harden s32ton() against conversion to 0 bits {CVE-2025-38556} [Orabug: 38644370]
- ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control {CVE-2025-39751} [Orabug: 38644370]

[3.10.0-1160.119.1.0.13]
- ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() {CVE-2022-48701} [Orabug: 38493400]
- md-raid10: fix KASAN warning {CVE-2022-50211} [Orabug: 38493400]
- ALSA: bcd2000: Fix a UAF bug on the error path of probing {CVE-2022-50229} [Orabug: 38493400]
- net: usb: smsc75xx: Limit packet length to skb->len {CVE-2023-53125} [Orabug: 38493400]
- i40e: fix MMIO write access to an invalid page in i40e_clear_hw {CVE-2025-38200} [Orabug: 38493400]
- net/sched: sch_qfq: Fix race condition on qfq_aggregate {CVE-2025-38477} [Orabug: 38493400]

[3.10.0-1160.119.1.0.12]
- scsi: lpfc: Use memcpy() for BIOS version (CVE-2025-38332) [Orabug: 38414589]
- posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() (CVE-2025-38352) [Orabug: 38414589]

[3.10.0-1160.119.1.0.11]
- kernel: media: uvcvideo: Fix double free in error path (CVE-2024-57980)
- kernel: HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() (CVE-2025-21928)
- kernel: ext4: fix off-by-one error in do_split (CVE-2025-23150)
- kernel: misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() (CVE-2022-49788)
- kernel: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (CVE-2025-38000)
- kernel: ext4: avoid resizing to a partial cluster size (CVE-2022-50020)
- kernel: drivers:md:fix a potential use-after-free bug (CVE-2022-50022)
- kernel: sch_hfsc: make hfsc_qlen_notify() idempotent (CVE-2025-38177)
- kernel: net/sched: Always pass notifications when child class becomes empty (CVE-2025-38350)
- crypto: algif_hash - fix double free in hash_accept (CVE-2025-38079)

[3.10.0-1160.119.1.0.10]
- net: atlantic: fix aq_vec index out of range error (Chia-Lin Kao) {CVE-2022-50066} [Orabug: 38201271]
- net: atm: fix use after free in lec_send() (Dan Carpenter) {CVE-2025-22004} [Orabug: 38201271]

ELBA-2026-4833 Oracle Linux 7 tzdata bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-4833

http://linux.oracle.com/errata/ELBA-2026-4833.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
tzdata-2026a-1.el7.noarch.rpm
tzdata-java-2026a-1.el7.noarch.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/tzdata-2026a-1.el7.src.rpm

Description of changes:

[2026a-1]
- Update to tzdata-2026a (RHEL-154033)
- Correct the transition times for Moldova.
- The POSIXRULES option is now obsolete.

[2025c-1]
- Update to tzdata-2025c (RHEL-135159)
- Update leap seconds file expiration date

[2025b-2]
- Included NEWS file with docs. (RHEL-102379)

[2025b-1]
- Update to tzdata-2025b (RHEL-84741)
- Chile's Aysén Region moves from -04/-03
to -03 year-round, diverging from America/Santiago and
creating a new zone America/Coyhaique.

[2025a-1]
Update to tzdata-2025a (RHEL-74308)
- Paraguay is now permanently at -03. This impacts timestamps
starting on 2025-03-22.
- Includes improvements to pre-1991 data for the Philippines.
- Etc/Unknown is now reserved.

Containernetworking-Plugins, Chromium, Python-Multipart, Musescore updates for Fedora

Osbuild-Composer, Vim, GnuTLS, and more updates for RHEL

Dracut, Xfsprogs, Yggdrasil, and more updates for Oracle Linux

ELBA-2026-50163 dracut bug fix update

ELBA-2026-50165 xfsprogs bug fix update

ELSA-2026-5146 Important: Oracle Linux 10 yggdrasil security update

ELSA-2026-50160 Important: Unbreakable Enterprise kernel security update

ELSA-2026-4772 Moderate: Oracle Linux 8 glibc security update

ELBA-2026-5583 Oracle Linux 8 curl bug fix and enhancement update

ELBA-2026-5582 Oracle Linux 8 gvfs bug fix and enhancement update

ELBA-2026-50166 Oracle Linux 8 systemd bug fix update

ELSA-2026-3685 Important: Oracle Linux 7 kernel security update

ELBA-2026-4833 Oracle Linux 7 tzdata bug fix and enhancement update

Windows

Linux

macOS

Community