HTTPD, Microcode_CTL, Samba, and more updates for Oracle Linux

Oracle Linux 6405 Published by

Oracle has released several updates for its Linux distributions, including Oracle Linux 7, 8, 9, and 10. The updates address various security issues, with some rated as important or moderate. The affected packages include httpd, microcode_ctl, samba, kernel, libssh, firefox, .NET, webkit2gtk3, and others.

ELSA-2025-14997 Moderate: Oracle Linux 7 httpd security update
ELSA-2025-10108 Moderate: Oracle Linux 7 microcode_ctl security update
ELBA-2025-14088 Oracle Linux 7 samba bug fix and enhancement update
ELSA-2025-18297 Moderate: Oracle Linux 8 kernel security update
ELSA-2025-18286 Moderate: Oracle Linux 8 libssh security update
ELSA-2025-18285 Important: Oracle Linux 8 firefox security update
ELSA-2025-18150 Important: Oracle Linux 8 .NET 9.0 security update
ELSA-2025-18148 Important: Oracle Linux 8 .NET 8.0 security update
ELSA-2025-18070 Important: Oracle Linux 8 webkit2gtk3 security update
ELBA-2025-17797-1 Oracle Linux 8 kernel bug fix update
ELSA-2025-18281 Moderate: Oracle Linux 9 kernel security update
ELSA-2025-18275 Moderate: Oracle Linux 9 libssh security update
ELSA-2025-18155 Important: Oracle Linux 9 firefox security update
ELSA-2025-18151 Important: Oracle Linux 9 .NET 9.0 security update
ELSA-2025-18149 Important: Oracle Linux 9 .NET 8.0 security update
ELSA-2025-18097 Important: Oracle Linux 9 webkit2gtk3 security update
ELSA-2025-18231 Moderate: Oracle Linux 10 libssh security update
ELSA-2025-18183 Important: Oracle Linux 10 libsoup3 security update
ELSA-2025-18154 Important: Oracle Linux 10 firefox security update
ELSA-2025-18153 Important: Oracle Linux 10 .NET 9.0 security update
ELSA-2025-18152 Important: Oracle Linux 10 .NET 8.0 security update




ELSA-2025-14997 Moderate: Oracle Linux 7 httpd security update


Oracle Linux Security Advisory ELSA-2025-14997

http://linux.oracle.com/errata/ELSA-2025-14997.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
httpd-2.4.6-99.0.7.el7_9.1.x86_64.rpm
httpd-devel-2.4.6-99.0.7.el7_9.1.x86_64.rpm
httpd-manual-2.4.6-99.0.7.el7_9.1.noarch.rpm
httpd-tools-2.4.6-99.0.7.el7_9.1.x86_64.rpm
mod_ldap-2.4.6-99.0.7.el7_9.1.x86_64.rpm
mod_proxy_html-2.4.6-99.0.7.el7_9.1.x86_64.rpm
mod_session-2.4.6-99.0.7.el7_9.1.x86_64.rpm
mod_ssl-2.4.6-99.0.7.el7_9.1.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/httpd-2.4.6-99.0.7.el7_9.1.src.rpm

Related CVEs:

CVE-2024-47252
CVE-2025-49812

Description of changes:

[2.4.6-99.0.7.1]
- Fixed security update CVE-2024-47252 CVE-2025-49812 [Orabug: 38378160]



ELSA-2025-10108 Moderate: Oracle Linux 7 microcode_ctl security update


Oracle Linux Security Advisory ELSA-2025-10108

http://linux.oracle.com/errata/ELSA-2025-10108.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
microcode_ctl-2.1-73.24.0.20250512.el7_9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/microcode_ctl-2.1-73.24.0.20250512.el7_9.src.rpm

Related CVEs:

CVE-2024-28956

Description of changes:

[2:2.1-73.24.0.20250512]
- update microcode bundle to 20250512 [Orabug: 38139038]

[2:2.1-73.23.0.20250211]
- update microcode bundle to 20250211 [Orabug: 37670820]
- drop releasenote.md file

[2:2.1-73.20.0.1]
- don't bother calling dracut if virtualized [Orabug: 35702409]
- also rebuild initramfs for kernel-ueknano [Orabug: 35698043]
- ensure UEK also rebuilds initramfs [Orabug: 34280052]
- for Intel, do not trigger load if on-disk microcode is not an update [Orabug: 30634727]
- set early_microcode="no" in virtualized guests to avoid early load bugs [Orabug: 30618736]
- ensure late loading fixes are present on 4.1.12-* and 4.14.35-*
- enable early and late load for 5.4.17-*
- enable early loading for 06-4f-01 caveat
- remove no longer appropriate caveats for 06-2d-07 and 06-55-04



ELBA-2025-14088 Oracle Linux 7 samba bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2025-14088

http://linux.oracle.com/errata/ELBA-2025-14088.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
ctdb-4.10.16-25.0.7.el7_9.x86_64.rpm
ctdb-tests-4.10.16-25.0.7.el7_9.x86_64.rpm
libsmbclient-4.10.16-25.0.7.el7_9.i686.rpm
libsmbclient-4.10.16-25.0.7.el7_9.x86_64.rpm
libsmbclient-devel-4.10.16-25.0.7.el7_9.i686.rpm
libsmbclient-devel-4.10.16-25.0.7.el7_9.x86_64.rpm
libwbclient-4.10.16-25.0.7.el7_9.i686.rpm
libwbclient-4.10.16-25.0.7.el7_9.x86_64.rpm
libwbclient-devel-4.10.16-25.0.7.el7_9.i686.rpm
libwbclient-devel-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-client-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-client-libs-4.10.16-25.0.7.el7_9.i686.rpm
samba-client-libs-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-common-4.10.16-25.0.7.el7_9.noarch.rpm
samba-common-libs-4.10.16-25.0.7.el7_9.i686.rpm
samba-common-libs-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-common-tools-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-dc-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-dc-libs-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-devel-4.10.16-25.0.7.el7_9.i686.rpm
samba-devel-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-krb5-printing-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-libs-4.10.16-25.0.7.el7_9.i686.rpm
samba-libs-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-pidl-4.10.16-25.0.7.el7_9.noarch.rpm
samba-python-4.10.16-25.0.7.el7_9.i686.rpm
samba-python-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-python-test-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-test-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-test-libs-4.10.16-25.0.7.el7_9.i686.rpm
samba-test-libs-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-vfs-glusterfs-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-winbind-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-winbind-clients-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-winbind-krb5-locator-4.10.16-25.0.7.el7_9.x86_64.rpm
samba-winbind-modules-4.10.16-25.0.7.el7_9.i686.rpm
samba-winbind-modules-4.10.16-25.0.7.el7_9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/samba-4.10.16-25.0.7.el7_9.src.rpm

Description of changes:

[4.10.16-25.0.7]
- Fixed winbind dsgetdcname calls w.r.t. domain name [Orabug: 38330450]



ELSA-2025-18297 Moderate: Oracle Linux 8 kernel security update


Oracle Linux Security Advisory ELSA-2025-18297

http://linux.oracle.com/errata/ELSA-2025-18297.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.80.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.80.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.80.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.80.1.el8_10.x86_64.rpm
perf-4.18.0-553.80.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.80.1.el8_10.x86_64.rpm

aarch64:
bpftool-4.18.0-553.80.1.el8_10.aarch64.rpm
kernel-cross-headers-4.18.0-553.80.1.el8_10.aarch64.rpm
kernel-headers-4.18.0-553.80.1.el8_10.aarch64.rpm
kernel-tools-4.18.0-553.80.1.el8_10.aarch64.rpm
kernel-tools-libs-4.18.0-553.80.1.el8_10.aarch64.rpm
kernel-tools-libs-devel-4.18.0-553.80.1.el8_10.aarch64.rpm
perf-4.18.0-553.80.1.el8_10.aarch64.rpm
python3-perf-4.18.0-553.80.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.80.1.el8_10.src.rpm

Related CVEs:

CVE-2023-53373
CVE-2025-39751
CVE-2025-39757

Description of changes:

[4.18.0-553.80.1.el8_10.OL8]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 rf after removing MSI-X (CKI Backport Bot) [RHEL-111485]



ELSA-2025-18275 Moderate: Oracle Linux 9 libssh security update


Oracle Linux Security Advisory ELSA-2025-18275

http://linux.oracle.com/errata/ELSA-2025-18275.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libssh-0.10.4-15.el9_6.i686.rpm
libssh-0.10.4-15.el9_6.x86_64.rpm
libssh-config-0.10.4-15.el9_6.noarch.rpm
libssh-devel-0.10.4-15.el9_6.i686.rpm
libssh-devel-0.10.4-15.el9_6.x86_64.rpm

aarch64:
libssh-0.10.4-15.el9_6.aarch64.rpm
libssh-config-0.10.4-15.el9_6.noarch.rpm
libssh-devel-0.10.4-15.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libssh-0.10.4-15.el9_6.src.rpm

Related CVEs:

CVE-2025-5318

Description of changes:

[0.10.4-15]
- Rebuild due to broken build auto-tagging

[0.10.4-14]
- Fix CVE-2025-5318
Resolves: RHEL-111730



ELSA-2025-18155 Important: Oracle Linux 9 firefox security update


Oracle Linux Security Advisory ELSA-2025-18155

http://linux.oracle.com/errata/ELSA-2025-18155.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-140.4.0-3.0.1.el9_6.x86_64.rpm
firefox-x11-140.4.0-3.0.1.el9_6.x86_64.rpm

aarch64:
firefox-140.4.0-3.0.1.el9_6.aarch64.rpm
firefox-x11-140.4.0-3.0.1.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/firefox-140.4.0-3.0.1.el9_6.src.rpm

Related CVEs:

CVE-2025-11708
CVE-2025-11709
CVE-2025-11710
CVE-2025-11711
CVE-2025-11712
CVE-2025-11714
CVE-2025-11715

Description of changes:

[140.4.0-3.0.1]
- Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079773]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[140.4.0]
- Add debranding patches (Mustafa Gezen)
- Add OpenELA default preferences (Louis Abel)

[140.4.0-3]
- Update to 140.4.0 ESR



ELSA-2025-18151 Important: Oracle Linux 9 .NET 9.0 security update


Oracle Linux Security Advisory ELSA-2025-18151

http://linux.oracle.com/errata/ELSA-2025-18151.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-9.0-9.0.10-1.0.1.el9_6.x86_64.rpm
aspnetcore-runtime-dbg-9.0-9.0.10-1.0.1.el9_6.x86_64.rpm
aspnetcore-targeting-pack-9.0-9.0.10-1.0.1.el9_6.x86_64.rpm
dotnet-apphost-pack-9.0-9.0.10-1.0.1.el9_6.x86_64.rpm
dotnet-host-9.0.10-1.0.1.el9_6.x86_64.rpm
dotnet-hostfxr-9.0-9.0.10-1.0.1.el9_6.x86_64.rpm
dotnet-runtime-9.0-9.0.10-1.0.1.el9_6.x86_64.rpm
dotnet-runtime-dbg-9.0-9.0.10-1.0.1.el9_6.x86_64.rpm
dotnet-sdk-9.0-9.0.111-1.0.1.el9_6.x86_64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.111-1.0.1.el9_6.x86_64.rpm
dotnet-sdk-aot-9.0-9.0.111-1.0.1.el9_6.x86_64.rpm
dotnet-sdk-dbg-9.0-9.0.111-1.0.1.el9_6.x86_64.rpm
dotnet-targeting-pack-9.0-9.0.10-1.0.1.el9_6.x86_64.rpm
dotnet-templates-9.0-9.0.111-1.0.1.el9_6.x86_64.rpm
netstandard-targeting-pack-2.1-9.0.111-1.0.1.el9_6.x86_64.rpm

aarch64:
aspnetcore-runtime-9.0-9.0.10-1.0.1.el9_6.aarch64.rpm
aspnetcore-runtime-dbg-9.0-9.0.10-1.0.1.el9_6.aarch64.rpm
aspnetcore-targeting-pack-9.0-9.0.10-1.0.1.el9_6.aarch64.rpm
dotnet-apphost-pack-9.0-9.0.10-1.0.1.el9_6.aarch64.rpm
dotnet-host-9.0.10-1.0.1.el9_6.aarch64.rpm
dotnet-hostfxr-9.0-9.0.10-1.0.1.el9_6.aarch64.rpm
dotnet-runtime-9.0-9.0.10-1.0.1.el9_6.aarch64.rpm
dotnet-runtime-dbg-9.0-9.0.10-1.0.1.el9_6.aarch64.rpm
dotnet-sdk-9.0-9.0.111-1.0.1.el9_6.aarch64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.111-1.0.1.el9_6.aarch64.rpm
dotnet-sdk-aot-9.0-9.0.111-1.0.1.el9_6.aarch64.rpm
dotnet-sdk-dbg-9.0-9.0.111-1.0.1.el9_6.aarch64.rpm
dotnet-targeting-pack-9.0-9.0.10-1.0.1.el9_6.aarch64.rpm
dotnet-templates-9.0-9.0.111-1.0.1.el9_6.aarch64.rpm
netstandard-targeting-pack-2.1-9.0.111-1.0.1.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/dotnet9.0-9.0.111-1.0.1.el9_6.src.rpm

Related CVEs:

CVE-2025-55247
CVE-2025-55248
CVE-2025-55315

Description of changes:

[9.0.111-1.0.1]
- Add support for Oracle Linux

[9.0.111-1]
- Update to .NET SDK 9.0.111 and Runtime 9.0.10
- Resolves: RHEL-116857



ELSA-2025-18149 Important: Oracle Linux 9 .NET 8.0 security update


Oracle Linux Security Advisory ELSA-2025-18149

http://linux.oracle.com/errata/ELSA-2025-18149.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-8.0-8.0.21-1.0.1.el9_6.x86_64.rpm
aspnetcore-runtime-dbg-8.0-8.0.21-1.0.1.el9_6.x86_64.rpm
aspnetcore-targeting-pack-8.0-8.0.21-1.0.1.el9_6.x86_64.rpm
dotnet-apphost-pack-8.0-8.0.21-1.0.1.el9_6.x86_64.rpm
dotnet-hostfxr-8.0-8.0.21-1.0.1.el9_6.x86_64.rpm
dotnet-runtime-8.0-8.0.21-1.0.1.el9_6.x86_64.rpm
dotnet-runtime-dbg-8.0-8.0.21-1.0.1.el9_6.x86_64.rpm
dotnet-sdk-8.0-8.0.121-1.0.1.el9_6.x86_64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.121-1.0.1.el9_6.x86_64.rpm
dotnet-sdk-dbg-8.0-8.0.121-1.0.1.el9_6.x86_64.rpm
dotnet-targeting-pack-8.0-8.0.21-1.0.1.el9_6.x86_64.rpm
dotnet-templates-8.0-8.0.121-1.0.1.el9_6.x86_64.rpm

aarch64:
aspnetcore-runtime-8.0-8.0.21-1.0.1.el9_6.aarch64.rpm
aspnetcore-runtime-dbg-8.0-8.0.21-1.0.1.el9_6.aarch64.rpm
aspnetcore-targeting-pack-8.0-8.0.21-1.0.1.el9_6.aarch64.rpm
dotnet-apphost-pack-8.0-8.0.21-1.0.1.el9_6.aarch64.rpm
dotnet-hostfxr-8.0-8.0.21-1.0.1.el9_6.aarch64.rpm
dotnet-runtime-8.0-8.0.21-1.0.1.el9_6.aarch64.rpm
dotnet-runtime-dbg-8.0-8.0.21-1.0.1.el9_6.aarch64.rpm
dotnet-sdk-8.0-8.0.121-1.0.1.el9_6.aarch64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.121-1.0.1.el9_6.aarch64.rpm
dotnet-sdk-dbg-8.0-8.0.121-1.0.1.el9_6.aarch64.rpm
dotnet-targeting-pack-8.0-8.0.21-1.0.1.el9_6.aarch64.rpm
dotnet-templates-8.0-8.0.121-1.0.1.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/dotnet8.0-8.0.121-1.0.1.el9_6.src.rpm

Related CVEs:

CVE-2025-55247
CVE-2025-55248
CVE-2025-55315

Description of changes:

[8.0.121-1.0.1]
- Add support for Oracle Linux

[8.0.121-1]
- Update to .NET SDK 8.0.121 and Runtime 8.0.21
- Resolves: RHEL-116866



ELSA-2025-18097 Important: Oracle Linux 9 webkit2gtk3 security update


Oracle Linux Security Advisory ELSA-2025-18097

http://linux.oracle.com/errata/ELSA-2025-18097.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
webkit2gtk3-2.50.1-0.el9_6.i686.rpm
webkit2gtk3-2.50.1-0.el9_6.x86_64.rpm
webkit2gtk3-devel-2.50.1-0.el9_6.i686.rpm
webkit2gtk3-devel-2.50.1-0.el9_6.x86_64.rpm
webkit2gtk3-jsc-2.50.1-0.el9_6.i686.rpm
webkit2gtk3-jsc-2.50.1-0.el9_6.x86_64.rpm
webkit2gtk3-jsc-devel-2.50.1-0.el9_6.i686.rpm
webkit2gtk3-jsc-devel-2.50.1-0.el9_6.x86_64.rpm

aarch64:
webkit2gtk3-2.50.1-0.el9_6.aarch64.rpm
webkit2gtk3-devel-2.50.1-0.el9_6.aarch64.rpm
webkit2gtk3-jsc-2.50.1-0.el9_6.aarch64.rpm
webkit2gtk3-jsc-devel-2.50.1-0.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/webkit2gtk3-2.50.1-0.el9_6.src.rpm

Related CVEs:

CVE-2025-43272
CVE-2025-43342
CVE-2025-43343
CVE-2025-43356
CVE-2025-43368

Description of changes:

[2.50.1-1]
- Update to 2.50.1

[2.50.0-1]
- Update to 2.50.0



ELSA-2025-18231 Moderate: Oracle Linux 10 libssh security update


Oracle Linux Security Advisory ELSA-2025-18231

http://linux.oracle.com/errata/ELSA-2025-18231.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libssh-0.11.1-4.el10_0.x86_64.rpm
libssh-config-0.11.1-4.el10_0.noarch.rpm
libssh-devel-0.11.1-4.el10_0.x86_64.rpm

aarch64:
libssh-0.11.1-4.el10_0.aarch64.rpm
libssh-config-0.11.1-4.el10_0.noarch.rpm
libssh-devel-0.11.1-4.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libssh-0.11.1-4.el10_0.src.rpm

Related CVEs:

CVE-2025-5318

Description of changes:

[0.11.1-4]
- Rebuild due to broken build auto-tagging

[0.11.1-3]
- Fix CVE-2025-5318
Resolves: RHEL-111720

[0.11.1-2]
- Bump release for October 2024 mass rebuild:
Resolves: RHEL-64018



ELSA-2025-18183 Important: Oracle Linux 10 libsoup3 security update


Oracle Linux Security Advisory ELSA-2025-18183

http://linux.oracle.com/errata/ELSA-2025-18183.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libsoup3-3.6.5-3.el10_0.7.x86_64.rpm
libsoup3-devel-3.6.5-3.el10_0.7.x86_64.rpm
libsoup3-doc-3.6.5-3.el10_0.7.noarch.rpm

aarch64:
libsoup3-3.6.5-3.el10_0.7.aarch64.rpm
libsoup3-devel-3.6.5-3.el10_0.7.aarch64.rpm
libsoup3-doc-3.6.5-3.el10_0.7.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libsoup3-3.6.5-3.el10_0.7.src.rpm

Related CVEs:

CVE-2025-11021

Description of changes:

[3.6.5-7]
- Fix handling of invalid dates in cookie expires attribute
(CVE-2025-11021)

[3.6.5-6]
- Add patch for CVE-2025-32907

[3.6.5-5]
- Fix release field

[3.6.5-4]
- Fix several CVEs



ELSA-2025-18154 Important: Oracle Linux 10 firefox security update


Oracle Linux Security Advisory ELSA-2025-18154

http://linux.oracle.com/errata/ELSA-2025-18154.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-140.4.0-3.0.1.el10_0.x86_64.rpm

aarch64:
firefox-140.4.0-3.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/firefox-140.4.0-3.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-11708
CVE-2025-11709
CVE-2025-11710
CVE-2025-11711
CVE-2025-11712
CVE-2025-11714
CVE-2025-11715

Description of changes:

[140.4.0-3.0.1]
- Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079773]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[140.4.0-3]
- Update to 140.4.0 ESR



ELSA-2025-18153 Important: Oracle Linux 10 .NET 9.0 security update


Oracle Linux Security Advisory ELSA-2025-18153

http://linux.oracle.com/errata/ELSA-2025-18153.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-9.0-9.0.10-1.0.1.el10_0.x86_64.rpm
aspnetcore-runtime-dbg-9.0-9.0.10-1.0.1.el10_0.x86_64.rpm
aspnetcore-targeting-pack-9.0-9.0.10-1.0.1.el10_0.x86_64.rpm
dotnet-apphost-pack-9.0-9.0.10-1.0.1.el10_0.x86_64.rpm
dotnet-host-9.0.10-1.0.1.el10_0.x86_64.rpm
dotnet-hostfxr-9.0-9.0.10-1.0.1.el10_0.x86_64.rpm
dotnet-runtime-9.0-9.0.10-1.0.1.el10_0.x86_64.rpm
dotnet-runtime-dbg-9.0-9.0.10-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-9.0-9.0.111-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.111-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-aot-9.0-9.0.111-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-dbg-9.0-9.0.111-1.0.1.el10_0.x86_64.rpm
dotnet-targeting-pack-9.0-9.0.10-1.0.1.el10_0.x86_64.rpm
dotnet-templates-9.0-9.0.111-1.0.1.el10_0.x86_64.rpm
netstandard-targeting-pack-2.1-9.0.111-1.0.1.el10_0.x86_64.rpm

aarch64:
aspnetcore-runtime-9.0-9.0.10-1.0.1.el10_0.aarch64.rpm
aspnetcore-runtime-dbg-9.0-9.0.10-1.0.1.el10_0.aarch64.rpm
aspnetcore-targeting-pack-9.0-9.0.10-1.0.1.el10_0.aarch64.rpm
dotnet-apphost-pack-9.0-9.0.10-1.0.1.el10_0.aarch64.rpm
dotnet-host-9.0.10-1.0.1.el10_0.aarch64.rpm
dotnet-hostfxr-9.0-9.0.10-1.0.1.el10_0.aarch64.rpm
dotnet-runtime-9.0-9.0.10-1.0.1.el10_0.aarch64.rpm
dotnet-runtime-dbg-9.0-9.0.10-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-9.0-9.0.111-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.111-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-aot-9.0-9.0.111-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-dbg-9.0-9.0.111-1.0.1.el10_0.aarch64.rpm
dotnet-targeting-pack-9.0-9.0.10-1.0.1.el10_0.aarch64.rpm
dotnet-templates-9.0-9.0.111-1.0.1.el10_0.aarch64.rpm
netstandard-targeting-pack-2.1-9.0.111-1.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet9.0-9.0.111-1.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-55247
CVE-2025-55248
CVE-2025-55315

Description of changes:

[9.0.111-1.0.1]
- Add support for Oracle Linux

[9.0.111-1]
- Update to .NET SDK 9.0.111 and Runtime 9.0.10
- Resolves: RHEL-116860



ELSA-2025-18152 Important: Oracle Linux 10 .NET 8.0 security update


Oracle Linux Security Advisory ELSA-2025-18152

http://linux.oracle.com/errata/ELSA-2025-18152.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-8.0-8.0.21-1.0.1.el10_0.x86_64.rpm
aspnetcore-runtime-dbg-8.0-8.0.21-1.0.1.el10_0.x86_64.rpm
aspnetcore-targeting-pack-8.0-8.0.21-1.0.1.el10_0.x86_64.rpm
dotnet-apphost-pack-8.0-8.0.21-1.0.1.el10_0.x86_64.rpm
dotnet-hostfxr-8.0-8.0.21-1.0.1.el10_0.x86_64.rpm
dotnet-runtime-8.0-8.0.21-1.0.1.el10_0.x86_64.rpm
dotnet-runtime-dbg-8.0-8.0.21-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-8.0-8.0.121-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.121-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-dbg-8.0-8.0.121-1.0.1.el10_0.x86_64.rpm
dotnet-targeting-pack-8.0-8.0.21-1.0.1.el10_0.x86_64.rpm
dotnet-templates-8.0-8.0.121-1.0.1.el10_0.x86_64.rpm

aarch64:
aspnetcore-runtime-8.0-8.0.21-1.0.1.el10_0.aarch64.rpm
aspnetcore-runtime-dbg-8.0-8.0.21-1.0.1.el10_0.aarch64.rpm
aspnetcore-targeting-pack-8.0-8.0.21-1.0.1.el10_0.aarch64.rpm
dotnet-apphost-pack-8.0-8.0.21-1.0.1.el10_0.aarch64.rpm
dotnet-hostfxr-8.0-8.0.21-1.0.1.el10_0.aarch64.rpm
dotnet-runtime-8.0-8.0.21-1.0.1.el10_0.aarch64.rpm
dotnet-runtime-dbg-8.0-8.0.21-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-8.0-8.0.121-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.121-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-dbg-8.0-8.0.121-1.0.1.el10_0.aarch64.rpm
dotnet-targeting-pack-8.0-8.0.21-1.0.1.el10_0.aarch64.rpm
dotnet-templates-8.0-8.0.121-1.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet8.0-8.0.121-1.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-55247
CVE-2025-55248
CVE-2025-55315

Description of changes:

[8.0.121-1.0.1]
- Add support for Oracle Linux

[8.0.121-1]
- Update to .NET SDK 8.0.121 and Runtime 8.0.21
- Resolves: RHEL-116868


Yelp, XTerm, Firefox, and more updates for RHEL

KRB5, Webkit2GTK3, Kernel updates for SUSE

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...