Oracle has rolled out a batch of updates across several Linux releases to patch security holes and resolve system instability. The git-lfs package for version nine was rebuilt using a newer Golang framework to close three separate vulnerabilities. A major kernel refresh for version eight addresses cryptographic flaws, memory handling errors, and storage driver bugs while also updating module signing certificates. Finally, older platforms receive targeted fixes that secure the libsoup library on release eight and patch legacy XML parsing weaknesses in the Perl tools for release seven.

ELSA-2026-14200 Important: Oracle Linux 9 git-lfs security update
ELBA-2026-13577-1 Oracle Linux 8 kernel bug fix update
ELSA-2026-14087 Moderate: Oracle Linux 8 libsoup security update
ELSA-2026-8578 Important: Oracle Linux 7 perl-XML-Parser security update

ELSA-2026-14200 Important: Oracle Linux 9 git-lfs security update

Oracle Linux Security Advisory ELSA-2026-14200

http://linux.oracle.com/errata/ELSA-2026-14200.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
git-lfs-3.6.1-8.el9_7.1.x86_64.rpm

aarch64:
git-lfs-3.6.1-8.el9_7.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/git-lfs-3.6.1-8.el9_7.1.src.rpm

Related CVEs:

CVE-2026-32280
CVE-2026-32282
CVE-2026-32283

Description of changes:

[3.6.1-8.1]
- Rebuild with new Golang
- Resolves: RHEL-167659, RHEL-170836, RHEL-166651

ELBA-2026-13577-1 Oracle Linux 8 kernel bug fix update

Oracle Linux Bug Fix Advisory ELBA-2026-13577-1

http://linux.oracle.com/errata/ELBA-2026-13577-1.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.123.1.0.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.123.1.0.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
perf-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.123.1.0.1.el8_10.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.123.1.0.1.el8_10.src.rpm

Description of changes:

[4.18.0-553.123.1.0.1]
- scsi: core: Restrict legal sdev_state transitions via sysfs (Uday Shankar) [Orabug: 37778230]

[4.18.0-553.123.1]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64