Git-LFS, PostgreSQL, Kernel, and more updates for Oracle Linux

Oracle Linux 6457 Published by

Oracle has released several security updates for its Linux distributions, including Oracle Linux 10, 9, and 8. These updates address various vulnerabilities in packages such as git-lfs, postgresql, kernel, gimp, python3.9, and python3.12.

ELSA-2026-4164 Important: Oracle Linux 10 git-lfs security update
ELSA-2026-4162 Moderate: Oracle Linux 10 mysql8.4 security update
ELSA-2026-4012 Moderate: Oracle Linux 10 kernel security update
ELSA-2026-4173 Important: Oracle Linux 9 gimp security update
ELSA-2026-4168 Moderate: Oracle Linux 9 python3.9 security update
ELSA-2026-4165 Moderate: Oracle Linux 9 python3.12 security update
ELSA-2026-3966 Moderate: Oracle Linux 9 kernel security update
ELBA-2026-3963-1 Oracle Linux 8 kernel bug fix update
ELSA-2026-4064 Important: Oracle Linux 8 postgresql:12 security update
ELSA-2026-4146 Important: Oracle Linux 8 python-pyasn1 security update
ELSA-2026-4059 Important: Oracle Linux 8 postgresql:15 security update
ELSA-2026-4063 Important: Oracle Linux 8 postgresql:16 security update
ELSA-2026-4024 Important: Oracle Linux 8 postgresql:13 security update
ELSA-2026-3985 Important: Oracle Linux 8 git-lfs security update
ELSA-2026-3967 Important: Oracle Linux 8 libvpx security update
ELBA-2026-50143 Oracle Linux 8 fapolicyd bug fix update




ELSA-2026-4164 Important: Oracle Linux 10 git-lfs security update


Oracle Linux Security Advisory ELSA-2026-4164

http://linux.oracle.com/errata/ELSA-2026-4164.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
git-lfs-3.6.1-7.el10_1.x86_64.rpm

aarch64:
git-lfs-3.6.1-7.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/git-lfs-3.6.1-7.el10_1.src.rpm

Related CVEs:

CVE-2025-61726
CVE-2025-61729
CVE-2025-68121

Description of changes:

[3.6.1-7]
- Rebuild with new Golang

[3.6.1-6]
- Rebuild with new Golang

[3.6.1-5]
- Rebuild with new Golang



ELSA-2026-4162 Moderate: Oracle Linux 10 mysql8.4 security update


Oracle Linux Security Advisory ELSA-2026-4162

http://linux.oracle.com/errata/ELSA-2026-4162.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
mysql8.4-8.4.8-1.el10_1.x86_64.rpm
mysql8.4-common-8.4.8-1.el10_1.noarch.rpm
mysql8.4-devel-8.4.8-1.el10_1.x86_64.rpm
mysql8.4-errmsg-8.4.8-1.el10_1.noarch.rpm
mysql8.4-libs-8.4.8-1.el10_1.x86_64.rpm
mysql8.4-server-8.4.8-1.el10_1.x86_64.rpm
mysql8.4-test-8.4.8-1.el10_1.x86_64.rpm
mysql8.4-test-data-8.4.8-1.el10_1.noarch.rpm

aarch64:
mysql8.4-8.4.8-1.el10_1.aarch64.rpm
mysql8.4-common-8.4.8-1.el10_1.noarch.rpm
mysql8.4-devel-8.4.8-1.el10_1.aarch64.rpm
mysql8.4-errmsg-8.4.8-1.el10_1.noarch.rpm
mysql8.4-libs-8.4.8-1.el10_1.aarch64.rpm
mysql8.4-server-8.4.8-1.el10_1.aarch64.rpm
mysql8.4-test-8.4.8-1.el10_1.aarch64.rpm
mysql8.4-test-data-8.4.8-1.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/mysql8.4-8.4.8-1.el10_1.src.rpm

Related CVEs:

CVE-2026-21936
CVE-2026-21937
CVE-2026-21941
CVE-2026-21948
CVE-2026-21964
CVE-2026-21968

Description of changes:

[8.4.8-1]
- Rebase to 8.4.8

[8.4.7-2]
- Skip tests that are failing on Konflux
- Resolves: ROK-831



ELSA-2026-4012 Moderate: Oracle Linux 10 kernel security update


Oracle Linux Security Advisory ELSA-2026-4012

http://linux.oracle.com/errata/ELSA-2026-4012.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-abi-stablelists-6.12.0-124.43.1.el10_1.noarch.rpm
kernel-core-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-cross-headers-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-debug-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-debug-core-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-debug-devel-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-debug-devel-matched-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-debug-modules-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-debug-modules-core-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-debug-modules-extra-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-debug-uki-virt-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-devel-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-devel-matched-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-doc-6.12.0-124.43.1.el10_1.noarch.rpm
kernel-headers-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-modules-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-modules-core-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-modules-extra-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-modules-extra-matched-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-tools-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-tools-libs-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-tools-libs-devel-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-uki-virt-6.12.0-124.43.1.el10_1.x86_64.rpm
kernel-uki-virt-addons-6.12.0-124.43.1.el10_1.x86_64.rpm
libperf-6.12.0-124.43.1.el10_1.x86_64.rpm
perf-6.12.0-124.43.1.el10_1.x86_64.rpm
python3-perf-6.12.0-124.43.1.el10_1.x86_64.rpm
rtla-6.12.0-124.43.1.el10_1.x86_64.rpm
rv-6.12.0-124.43.1.el10_1.x86_64.rpm

aarch64:
kernel-cross-headers-6.12.0-124.43.1.el10_1.aarch64.rpm
kernel-headers-6.12.0-124.43.1.el10_1.aarch64.rpm
kernel-tools-6.12.0-124.43.1.el10_1.aarch64.rpm
kernel-tools-libs-6.12.0-124.43.1.el10_1.aarch64.rpm
kernel-tools-libs-devel-6.12.0-124.43.1.el10_1.aarch64.rpm
libperf-6.12.0-124.43.1.el10_1.aarch64.rpm
perf-6.12.0-124.43.1.el10_1.aarch64.rpm
python3-perf-6.12.0-124.43.1.el10_1.aarch64.rpm
rtla-6.12.0-124.43.1.el10_1.aarch64.rpm
rv-6.12.0-124.43.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/kernel-6.12.0-124.43.1.el10_1.src.rpm

Related CVEs:

CVE-2025-38106
CVE-2025-38141
CVE-2025-38703
CVE-2025-39760
CVE-2025-39818
CVE-2025-40249
CVE-2025-71085
CVE-2026-23001
CVE-2026-23097
CVE-2026-23156

Description of changes:

[6.12.0-124.43.1]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985782]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 thread in __io_uring_show_fdinfo() (Jeff Moyer) [RHEL-137988] {CVE-2025-38106}
- io_uring/sqpoll: fix sqpoll error handling races (Jeff Moyer) [RHEL-137988]
- io_uring/sqpoll: annotate debug task == current with data_race() (Jeff Moyer) [RHEL-137988]
- macvlan: fix possible UAF in macvlan_forward_source() (CKI Backport Bot) [RHEL-144125] {CVE-2026-23001}
- net/smc: Fix lookup of netdev by using ib_device_get_netdev() (CKI Backport Bot) [RHEL-114786]



ELBA-2026-3963-1 Oracle Linux 8 kernel bug fix update


Oracle Linux Bug Fix Advisory ELBA-2026-3963-1

http://linux.oracle.com/errata/ELBA-2026-3963-1.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.111.1.0.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.111.1.0.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
perf-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.111.1.0.1.el8_10.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.111.1.0.1.el8_10.src.rpm

Description of changes:

[4.18.0-553.111.1.0.1]
- scsi: core: Restrict legal sdev_state transitions via sysfs (Uday Shankar) [Orabug: 37778230]

[4.18.0-553.111.1]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 pwd references to fs_struct (Waiman Long) [RHEL-146026]
- ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (CKI Backport Bot) [RHEL-143535] {CVE-2025-71085}



ELSA-2026-4064 Important: Oracle Linux 8 postgresql:12 security update


Oracle Linux Security Advisory ELSA-2026-4064

http://linux.oracle.com/errata/ELSA-2026-4064.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
postgresql-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-contrib-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-docs-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-plperl-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-plpython3-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-pltcl-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-server-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-server-devel-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-static-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-test-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-test-rpm-macros-12.22-6.0.1.module+el8.10.0+90836+a10460a5.noarch.rpm
postgresql-upgrade-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm
postgresql-upgrade-devel-12.22-6.0.1.module+el8.10.0+90836+a10460a5.x86_64.rpm

aarch64:
postgresql-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-contrib-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-docs-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-plperl-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-plpython3-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-pltcl-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-server-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-server-devel-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-static-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-test-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-test-rpm-macros-12.22-6.0.1.module+el8.10.0+90836+a10460a5.noarch.rpm
postgresql-upgrade-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm
postgresql-upgrade-devel-12.22-6.0.1.module+el8.10.0+90836+a10460a5.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/postgresql-12.22-6.0.1.module+el8.10.0+90836+a10460a5.src.rpm

Related CVEs:

CVE-2026-2004
CVE-2026-2005
CVE-2026-2006

Description of changes:

[12.22-6.0.1]
- Add backport of CVE-2025-8714 [Orabug: 38667546]

[12.22-6]
- Fix CVE-2026-2004 CVE-2026-2005 CVE-2026-2006

[12.22-5]
- Fix previous Backport

[12.22-4]
- Backport CVE-2025-8715

[12.22-3]
- Fix backport for CVE-2025-1094

[12.22-2]
- Backport fix for CVE-2025-1094

[12.22-1]
- Update to 12.22
- Fixes: CVE-2024-10976 CVE-2024-10978

[12.20-1]
- Update to 12.20
- Fix CVE-2024-7348

[12.18-1]
- Update to 12.18
- Fix CVE-2024-0985

[12.17-1]
- Update to version 12.17
Fix: CVE-2023-5868, CVE-2023-5869, CVE-2023-5870



ELSA-2026-4146 Important: Oracle Linux 8 python-pyasn1 security update


Oracle Linux Security Advisory ELSA-2026-4146

http://linux.oracle.com/errata/ELSA-2026-4146.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-pyasn1-0.3.7-6.el8_10.1.noarch.rpm
python3-pyasn1-modules-0.3.7-6.el8_10.1.noarch.rpm

aarch64:
python3-pyasn1-0.3.7-6.el8_10.1.noarch.rpm
python3-pyasn1-modules-0.3.7-6.el8_10.1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/python-pyasn1-0.3.7-6.el8_10.1.src.rpm

Related CVEs:

CVE-2026-23490

Description of changes:

[0.3.7-6.el8_10.1]
- Resolves: RHEL-148145



ELSA-2026-4059 Important: Oracle Linux 8 postgresql:15 security update


Oracle Linux Security Advisory ELSA-2026-4059

http://linux.oracle.com/errata/ELSA-2026-4059.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.x86_64.rpm
pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.x86_64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.x86_64.rpm
postgresql-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-contrib-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-docs-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-plperl-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-plpython3-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-pltcl-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-private-devel-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-private-libs-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-server-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-server-devel-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-static-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-test-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-test-rpm-macros-15.17-1.module+el8.10.0+90834+1f1fb20a.noarch.rpm
postgresql-upgrade-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm
postgresql-upgrade-devel-15.17-1.module+el8.10.0+90834+1f1fb20a.x86_64.rpm

aarch64:
pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.aarch64.rpm
pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.aarch64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.aarch64.rpm
postgresql-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-contrib-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-docs-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-plperl-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-plpython3-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-pltcl-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-private-devel-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-private-libs-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-server-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-server-devel-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-static-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-test-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-test-rpm-macros-15.17-1.module+el8.10.0+90834+1f1fb20a.noarch.rpm
postgresql-upgrade-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm
postgresql-upgrade-devel-15.17-1.module+el8.10.0+90834+1f1fb20a.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/pgaudit-1.7.0-1.module+el8.9.0+90110+d8a562d5.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/pg_repack-1.4.8-1.module+el8.9.0+90110+d8a562d5.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/postgres-decoderbufs-1.9.7-1.Final.module+el8.9.0+90110+d8a562d5.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/postgresql-15.17-1.module+el8.10.0+90834+1f1fb20a.src.rpm

Related CVEs:

CVE-2026-2004
CVE-2026-2005
CVE-2026-2006

Description of changes:

pgaudit
[1.7.0-1]
- Update to 1.7.0
- Support postgresql 15
- Related: #2128241

[1.5.0-1]
- Update to version 1.5.0
Related: #1855776

[1.4.0-4]
- Bump release for rebuild against libpq-12.1-3

[1.4.0-3]
- BuildRequires libpq-devel

[1.4.0-2]
- BuildRequires postgresql-server-devel

[1.4.0-1]
- Update to 1.4.0

[1.3.1-1]
- Update to 1.3.1 and apply patch for pgsql v12 compatibility

[1.2.0-4]
- SCLize the SPEC

[1.2.0-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild

[1.2.0-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild

pg_repack
[1.4.8-1]
- Update to version 1.4.8
- Postgresql 15 is supported
- Related: #2128241

[1.4.6-4]
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688

[1.4.6-3]
- Rebuilt for RHEL 9 BETA for openssl 3.0
Related: rhbz#1971065

[1.4.6-2]
- Build jit based on what postgresql server does
Related: #1933048

[1.4.6-1]
- Rebase to upstream release 1.4.6

[1.4.5-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

[1.4.5-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[1.4.5-1]
- Initial packaging

postgres-decoderbufs
[1.9.7-1.Final]
- Iitial import for postgresql 15 stream
- Related: #2128241

[1.4.0-4.Final]
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688

[1.4.0-3.Final]
- Build jit based on what postgresql server does
Related: #1933048

[1.4.0-2.Final]
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937

[1.4.0-1.Final]
- Update to new release 1.4.0

[1.1.0-0.6.Final]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

[1.1.0-0.5.Final]
- Rebuilt for protobuf 3.14

[1.1.0-0.4.Final]
- Rebuilt for protobuf 3.13

[1.1.0-0.3.Final]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[1.1.0-0.2.Final]
- Rebuilt for protobuf 3.12

postgresql
[15.17-1]
- Update to 15.17
- Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input
- Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow
- Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length
- Resolves: RHEL-149369 RHEL-149403 RHEL-149337



ELSA-2026-4063 Important: Oracle Linux 8 postgresql:16 security update


Oracle Linux Security Advisory ELSA-2026-4063

http://linux.oracle.com/errata/ELSA-2026-4063.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.x86_64.rpm
pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.x86_64.rpm
postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.x86_64.rpm
postgresql-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-contrib-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-docs-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-plperl-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-plpython3-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-pltcl-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-private-devel-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-private-libs-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-server-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-server-devel-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-static-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-test-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-test-rpm-macros-16.13-1.module+el8.10.0+90835+54dee7b0.noarch.rpm
postgresql-upgrade-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm
postgresql-upgrade-devel-16.13-1.module+el8.10.0+90835+54dee7b0.x86_64.rpm

aarch64:
pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.aarch64.rpm
pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.aarch64.rpm
postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.aarch64.rpm
postgresql-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-contrib-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-docs-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-plperl-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-plpython3-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-pltcl-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-private-devel-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-private-libs-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-server-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-server-devel-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-static-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-test-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-test-rpm-macros-16.13-1.module+el8.10.0+90835+54dee7b0.noarch.rpm
postgresql-upgrade-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm
postgresql-upgrade-devel-16.13-1.module+el8.10.0+90835+54dee7b0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/pgaudit-16.0-1.module+el8.10.0+90275+c15b12cb.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/pg_repack-1.5.1-1.module+el8.10.0+90451+109c7b24.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/postgres-decoderbufs-2.4.0-1.Final.module+el8.10.0+90275+c15b12cb.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/postgresql-16.13-1.module+el8.10.0+90835+54dee7b0.src.rpm

Related CVEs:

CVE-2026-2004
CVE-2026-2005
CVE-2026-2006

Description of changes:

pgaudit
[16.0-1]
- Update to 16.0
- Support postgresql 16
- Initial import for PG 16 module
- Resolves: RHEL-3636

pg_repack
[1.5.1-1]
- Update to 1.5.1

postgres-decoderbufs
[2.4.0-1.Final]
- Initial import for postgresql 16 stream
- Related: RHEL-3636

postgresql
[16.13-1]
- Update to 16.13
- Fix CVE-2026-2004: PostgreSQL intarray missing validation of type of input
- Fix CVE-2026-2005: PostgreSQL pgcrypto heap buffer overflow
- Fix CVE-2026-2006: PostgreSQL missing validation of multibyte character length
- Resolves: RHEL-149371 RHEL-149404 RHEL-149338



ELSA-2026-4024 Important: Oracle Linux 8 postgresql:13 security update


Oracle Linux Security Advisory ELSA-2026-4024

http://linux.oracle.com/errata/ELSA-2026-4024.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.x86_64.rpm
pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.x86_64.rpm
postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.x86_64.rpm
postgresql-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-contrib-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-docs-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-plperl-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-plpython3-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-pltcl-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-server-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-server-devel-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-static-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-test-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-test-rpm-macros-13.23-2.module+el8.10.0+90833+a7c23b2e.noarch.rpm
postgresql-upgrade-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm
postgresql-upgrade-devel-13.23-2.module+el8.10.0+90833+a7c23b2e.x86_64.rpm

aarch64:
pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.aarch64.rpm
pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.aarch64.rpm
postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.aarch64.rpm
postgresql-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-contrib-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-docs-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-plperl-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-plpython3-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-pltcl-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-server-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-server-devel-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-static-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-test-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-test-rpm-macros-13.23-2.module+el8.10.0+90833+a7c23b2e.noarch.rpm
postgresql-upgrade-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm
postgresql-upgrade-devel-13.23-2.module+el8.10.0+90833+a7c23b2e.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/pgaudit-1.5.0-1.module+el8.9.0+90098+1560b6c2.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/pg_repack-1.4.6-3.module+el8.9.0+90098+1560b6c2.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/postgres-decoderbufs-0.10.0-2.module+el8.9.0+90098+1560b6c2.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/postgresql-13.23-2.module+el8.10.0+90833+a7c23b2e.src.rpm

Related CVEs:

CVE-2026-2004
CVE-2026-2005
CVE-2026-2006

Description of changes:

pgaudit
[1.5.0-1]
- Update to version 1.5.0
Related: #1855776

[1.4.0-4]
- Bump release for rebuild against libpq-12.1-3

[1.4.0-3]
- BuildRequires libpq-devel

[1.4.0-2]
- BuildRequires postgresql-server-devel

[1.4.0-1]
- Update to 1.4.0

[1.3.1-1]
- Update to 1.3.1 and apply patch for pgsql v12 compatibility

[1.2.0-4]
- SCLize the SPEC

[1.2.0-3]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild

[1.2.0-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild

[1.2.0-1]
- Initial RPM packaging for Fedora
- Based on Devrim Gündüz's packaging for PostgreSQL RPM Repo

pg_repack
[1.4.6-3]
- Release bump - enable gating

[1.4.6-2]
- Rebuild
- Resolves:#1954442

[1.4.6-1]
- Rebase to upstream release 1.4.6

[1.4.5-2]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[1.4.5-1]
- Initial packaging

postgres-decoderbufs
[0.10.0-2]
- Release bump for rebuild against libpq-12.1-3

* Wed Oct 09 2019 Patrik Novotný

Python-LXML-HTML-Clean and dr_libs updates for Fedora

MinGW-Libpng, Thunderbird, OpenShift, and more updates for RHEL

Windows

Linux

macOS

Community

  • Lexonight
    Hey everyone,Wanted to share a project I've been b ...
  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...