Ipset, 389-ds-base, Numpy, and more updates for Oracle Linux

Oracle Linux 6451 Published by

Oracle has released several bug fix and security updates for Oracle Linux 10, including ELBA-2026-3160 (ipset), ELSA-2026-3208 (389-ds-base), and others. For Oracle Linux 9, updates were made to 389-ds-base (ELSA-2026-3189) and the kernel (ELSA-2026-3066). Additionally, security updates have been released for Oracle Linux 8, including OpenSSL (ELSA-2026-3042), oVirt (ELBA-2026-50116), and munge (ELSA-2026-3032).

ELBA-2026-3160 Oracle Linux 10 ipset bug fix and enhancement update
ELSA-2026-3208 Moderate: Oracle Linux 10 389-ds-base security update
ELBA-2026-3157 Oracle Linux 10 nftables bug fix and enhancement update
ELBA-2026-3159 Oracle Linux 10 iptables bug fix and enhancement update
ELBA-2026-3156 Oracle Linux 10 numpy bug fix and enhancement update
ELBA-2026-3163 Oracle Linux 10 opencryptoki bug fix and enhancement update
ELBA-2026-3158 Oracle Linux 10 firewalld bug fix and enhancement update
ELBA-2026-3155 Oracle Linux 10 virt-v2v bug fix and enhancement update
ELBA-2026-3154 Oracle Linux 10 libvirt bug fix and enhancement update
ELSA-2026-3189 Moderate: Oracle Linux 9 389-ds-base security update
ELSA-2026-3066 Moderate: Oracle Linux 9 kernel security update
ELBA-2026-50129 Oracle Linux 9 scap-security-guide bug fix update
ELSA-2026-3042 Moderate: Oracle Linux 8 openssl security update
ELBA-2026-50116 Oracle Linux 8 oVirt 4.5 ovirt-engine bug fix update
ELSA-2026-3032 Important: Oracle Linux 8 munge security update




ELBA-2026-3160 Oracle Linux 10 ipset bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-3160

http://linux.oracle.com/errata/ELBA-2026-3160.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
ipset-7.22-9.0.1.el10_1.x86_64.rpm
ipset-devel-7.22-9.0.1.el10_1.x86_64.rpm
ipset-libs-7.22-9.0.1.el10_1.x86_64.rpm
ipset-service-7.22-9.0.1.el10_1.noarch.rpm

aarch64:
ipset-7.22-9.0.1.el10_1.aarch64.rpm
ipset-devel-7.22-9.0.1.el10_1.aarch64.rpm
ipset-libs-7.22-9.0.1.el10_1.aarch64.rpm
ipset-service-7.22-9.0.1.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/ipset-7.22-9.0.1.el10_1.src.rpm

Description of changes:

[7.22-9.0.1]
- Update dependencies for additional UEK kernel flavours [Orabug: 38000003]
- Depend either on kernel-extra or kernel-uek-extra-netfilter [Orabug: 37585869]

[7.22-9]
- Do not require kernel-modules-extra-matched meta package



ELSA-2026-3208 Moderate: Oracle Linux 10 389-ds-base security update


Oracle Linux Security Advisory ELSA-2026-3208

http://linux.oracle.com/errata/ELSA-2026-3208.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
389-ds-base-3.1.3-7.el10_1.x86_64.rpm
389-ds-base-bdb-3.1.3-7.el10_1.x86_64.rpm
389-ds-base-devel-3.1.3-7.el10_1.x86_64.rpm
389-ds-base-libs-3.1.3-7.el10_1.x86_64.rpm
389-ds-base-snmp-3.1.3-7.el10_1.x86_64.rpm
python3-lib389-3.1.3-7.el10_1.noarch.rpm

aarch64:
389-ds-base-3.1.3-7.el10_1.aarch64.rpm
389-ds-base-bdb-3.1.3-7.el10_1.aarch64.rpm
389-ds-base-devel-3.1.3-7.el10_1.aarch64.rpm
389-ds-base-libs-3.1.3-7.el10_1.aarch64.rpm
389-ds-base-snmp-3.1.3-7.el10_1.aarch64.rpm
python3-lib389-3.1.3-7.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/389-ds-base-3.1.3-7.el10_1.src.rpm

Related CVEs:

CVE-2025-14905

Description of changes:

[3.1.3-7]
- Bump version to 3.1.3-7
- Resolves: RHEL-117764 - Replication online reinitialization of a large
database gets stalled. [rhel-10.1.z]
- Resolves: RHEL-123274 - LDAP high CPU usage while handling indexes with
IDL scan limit at INT_MAX [rhel-10.1.z]
- Resolves: RHEL-123281 - The new ipahealthcheck test
ipahealthcheck.ds.backends.BackendsCheck raises CRITICAL issue
[rhel-10.1.z]
- Resolves: RHEL-123370 - IPA health check up script shows time skew is
over 24 hours [rhel-10.1.z]
- Resolves: RHEL-129560 - Online initialization of consumers fails with
error -23 [rhel-10.1.z]
- Resolves: RHEL-137071 - CVE-2025-14905 389-ds-base: Remote Code Execution
and Denial of Service via heap buffer overflow [rhel-10.1.z]
- Resolves: RHEL-138484 - Memory leak observed in ns-slapd with 389-ds-
base-2.6.1-12 [rhel-10.1.z]
- Resolves: RHEL-140091 - Upgrading IDM to latest version: 389-ds-base and
ipa-server breaks replication [rhel-10.1.z]
- Resolves: RHEL-142981 - Scalability issue of replication online
initialization with large database [rhel-10.1.z]
- Resolves: RHEL-146896 - memory corruption in alias entry plugin
[rhel-10.1.z]
- Resolves: RHEL-147213 - Access logs are not getting deleted as
configured. [rhel-10.1.z]
- Resolves: RHEL-150908 - Remove memberof_del_dn_from_groups from MemberOf
plugin [rhel-10.1.z]

[3.1.3-6]
- Resolves: RHEL-117764 - Replication online reinitialization of a large
database gets stalled. [rhel-10.1.z]
- Resolves: RHEL-117773 - When the server restarts after a crash, the RFE
assumes memberof should be recomputed. It triggers a memberof fixup task,
dirsrv became unresponsive. [rhel-10.1.z]
- Resolves: RHEL-123233 - Improve the way to detect asynchronous operations
in the access logs [rhel-10.1.z]
- Resolves: RHEL-123246 - Attribute uniqueness is not enforced upon modrdn
operation [rhel-10.1.z]
- Resolves: RHEL-123260 - Typo in errors log after a Memberof fixup task.
[rhel-10.1.z]
- Resolves: RHEL-123274 - LDAP high CPU usage while handling indexes with
IDL scan limit at INT_MAX [rhel-10.1.z]
- Resolves: RHEL-123281 - The new ipahealthcheck test
ipahealthcheck.ds.backends.BackendsCheck raises CRITICAL issue
[rhel-10.1.z]
- Resolves: RHEL-123370 - IPA health check up script shows time skew is
over 24 hours [rhel-10.1.z]
- Resolves: RHEL-123768 - 389-ds-base OpenScanHub Leaks Detected
[rhel-10.1.z]
- Resolves: RHEL-123854 - Units for changing MDB max size are not
consistent across different tools [rhel-10.1.z]
- Resolves: RHEL-123895 - Improve output dsctl dbverify when backend does
not exist [rhel-10.1.z]
- Resolves: RHEL-123898 - [WebUI] Replication tab crashes after enabling
replication as a consumer [rhel-10.1.z]
- Resolves: RHEL-126554 - RHDS 12.6 doesn't handle 'ldapsearch' filter with
space char in DN name correctly [rhel-10.1.z]
- Resolves: RHEL-129560 - Online initialization of consumers fails with
error -23 [rhel-10.1.z]
- Resolves: RHEL-129581 - Fix paged result search locking [rhel-10.1.z]
- Resolves: RHEL-138484 - Memory leak observed in ns-slapd with 389-ds-
base-2.6.1-12 [rhel-10.1.z]
- Resolves: RHEL-138487 - RetroCL plugin generates invalid LDIF
[rhel-10.1.z]
- Resolves: RHEL-140091 - Upgrading IDM to latest version: 389-ds-base and
ipa-server breaks replication [rhel-10.1.z]
- Resolves: RHEL-140277 - ipa-healthcheck is complaining about missing or
incorrectly configured system indexes. [rhel-10.1.z]



ELBA-2026-3157 Oracle Linux 10 nftables bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-3157

http://linux.oracle.com/errata/ELBA-2026-3157.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
nftables-1.1.1-9.el10_1.x86_64.rpm
nftables-devel-1.1.1-9.el10_1.x86_64.rpm
python3-nftables-1.1.1-9.el10_1.x86_64.rpm

aarch64:
nftables-1.1.1-9.el10_1.aarch64.rpm
nftables-devel-1.1.1-9.el10_1.aarch64.rpm
python3-nftables-1.1.1-9.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/nftables-1.1.1-9.el10_1.src.rpm

Description of changes:

[[1.1.1-9.el10]]
- fib: Fix for existence check on Big Endian (Phil Sutter) [RHEL-113851]

[[1.1.1-8.el10]]
- Bump revision for a side-tag build (Phil Sutter) [RHEL-125122]

[[1.1.1-7.el10]]
- spec: BuildRequire libnftnl-devel-1.2.8-4 (Phil Sutter) [RHEL-125122]

[[1.1.1-6.el10]]
- Makefile: Fix for 'make CFLAGS=...' (Phil Sutter) [RHEL-108851]
- table: Embed creating nft version into userdata (Phil Sutter) [RHEL-108851]
- doc: nft.8: Minor NAT STATEMENTS section review (Phil Sutter) [RHEL-106743]
- trace: Fix for memleak in trace_alloc_list() error path (Phil Sutter) [RHEL-111205]

[[1.1.1-5.el10]]
- src: add conntrack information to trace monitor mode (Phil Sutter) [RHEL-102994]
- src: split monitor trace code into new trace.c (Phil Sutter) [RHEL-102994]

[[1.1.1-4.el10]]
- evaluate: allow to re-use existing metered set [RHEL-75507]

[[1.1.1-3.el10]]
- Fix for typo in gating.yaml (Phil Sutter) [RHEL-65346]

[[1.1.1-2.el10]]
- Fix gating.yaml for internal CI (Phil Sutter) [RHEL-65346]

[[1.1.1-1.el10]]
- monitor: Recognize flowtable add/del events (Phil Sutter) [RHEL-65346]
- tests: py: Fix for storing payload into missing file (Phil Sutter) [RHEL-65346]
- json: Support typeof in set and map types (Phil Sutter) [RHEL-65346]
- json: collapse set element commands from parser (Phil Sutter) [RHEL-65346]
- doc: extend description of fib expression (Phil Sutter) [RHEL-65346]
- tests: monitor: fix up test case breakage (Phil Sutter) [RHEL-65346]
- src: fix extended netlink error reporting with large set elements (Phil Sutter) [RHEL-65346]
- rule: netlink attribute offset is uint32_t for struct nlerr_loc (Phil Sutter) [RHEL-65346]
- mnl: update cmd_add_loc() to take struct nlmsghdr (Phil Sutter) [RHEL-65346]
- mnl: rename to mnl_seqnum_alloc() to mnl_seqnum_inc() (Phil Sutter) [RHEL-65346]
- src: collapse set element commands from parser (Phil Sutter) [RHEL-65346]
- libnftables-json: fix raw payload expression documentation (Phil Sutter) [RHEL-65346]
- tests: shell: fix spurious dump failure in vmap timeout test (Phil Sutter) [RHEL-65346]
- Rebase onto version 1.1.1 (Phil Sutter) [RHEL-65346]

[1:1.0.9-5.1]
- Bump release for October 2024 mass rebuild:
Resolves: RHEL-64018



ELBA-2026-3159 Oracle Linux 10 iptables bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-3159

http://linux.oracle.com/errata/ELBA-2026-3159.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
iptables-devel-1.8.11-12.0.1.el10_1.x86_64.rpm
iptables-libs-1.8.11-12.0.1.el10_1.x86_64.rpm
iptables-nft-1.8.11-12.0.1.el10_1.x86_64.rpm
iptables-nft-services-1.8.11-12.0.1.el10_1.noarch.rpm
iptables-utils-1.8.11-12.0.1.el10_1.x86_64.rpm

aarch64:
iptables-devel-1.8.11-12.0.1.el10_1.aarch64.rpm
iptables-libs-1.8.11-12.0.1.el10_1.aarch64.rpm
iptables-nft-1.8.11-12.0.1.el10_1.aarch64.rpm
iptables-nft-services-1.8.11-12.0.1.el10_1.noarch.rpm
iptables-utils-1.8.11-12.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/iptables-1.8.11-12.0.1.el10_1.src.rpm

Description of changes:

[1.8.11-12.0.1]
- Install kernel-modules-extra-matched if kernel-core is installed
- Update dependencies for additional UEK kernel flavours [Orabug: 38000003]
- Also allow installation with kernel-uek-extra-netfilter [Orabug: 37585869]

[[1.8.11-12.el10]]
- Revert "spec: Require kernel-modules-extra-matched meta package" (Phil Sutter) [RHEL-127030]



ELBA-2026-3156 Oracle Linux 10 numpy bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-3156

http://linux.oracle.com/errata/ELBA-2026-3156.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-numpy-1.26.4-6.el10_1.x86_64.rpm
python3-numpy-f2py-1.26.4-6.el10_1.x86_64.rpm

aarch64:
python3-numpy-1.26.4-6.el10_1.aarch64.rpm
python3-numpy-f2py-1.26.4-6.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/numpy-1.26.4-6.el10_1.src.rpm

Description of changes:

[1:1.26.4-6]
- fix ppc64le test failures (RHEL-77878)



ELBA-2026-3163 Oracle Linux 10 opencryptoki bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-3163

http://linux.oracle.com/errata/ELBA-2026-3163.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
opencryptoki-3.25.0-5.el10_1.1.x86_64.rpm
opencryptoki-ccatok-3.25.0-5.el10_1.1.x86_64.rpm
opencryptoki-devel-3.25.0-5.el10_1.1.x86_64.rpm
opencryptoki-icsftok-3.25.0-5.el10_1.1.x86_64.rpm
opencryptoki-libs-3.25.0-5.el10_1.1.x86_64.rpm
opencryptoki-swtok-3.25.0-5.el10_1.1.x86_64.rpm

aarch64:
opencryptoki-3.25.0-5.el10_1.1.aarch64.rpm
opencryptoki-devel-3.25.0-5.el10_1.1.aarch64.rpm
opencryptoki-icsftok-3.25.0-5.el10_1.1.aarch64.rpm
opencryptoki-libs-3.25.0-5.el10_1.1.aarch64.rpm
opencryptoki-swtok-3.25.0-5.el10_1.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/opencryptoki-3.25.0-5.el10_1.1.src.rpm

Description of changes:

[3.25.0-5.1]
- Fix unwrapping of attribute bound EC keys
- Fix private secure key blob import
Resolves: RHEL-131645



ELBA-2026-3158 Oracle Linux 10 firewalld bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-3158

http://linux.oracle.com/errata/ELBA-2026-3158.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
firewall-applet-2.4.0-1.0.1.el10_1.noarch.rpm
firewall-config-2.4.0-1.0.1.el10_1.noarch.rpm
firewalld-2.4.0-1.0.1.el10_1.noarch.rpm
firewalld-filesystem-2.4.0-1.0.1.el10_1.noarch.rpm
python3-firewall-2.4.0-1.0.1.el10_1.noarch.rpm

aarch64:
firewall-applet-2.4.0-1.0.1.el10_1.noarch.rpm
firewall-config-2.4.0-1.0.1.el10_1.noarch.rpm
firewalld-2.4.0-1.0.1.el10_1.noarch.rpm
firewalld-filesystem-2.4.0-1.0.1.el10_1.noarch.rpm
python3-firewall-2.4.0-1.0.1.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/firewalld-2.4.0-1.0.1.el10_1.src.rpm

Description of changes:

[2.4.0-1.0.1]
- Red Hat Satellite and Red Hat high availaibility reference found in cockpit UI
[Orabug: 30257573]
- discard empty RH-Satellite-6.xml [Orabug: 30328734]
- Remove capsule file as well, since it references removed config [Orabug: 33513329]

[2.4.0-1]
- rebase package to v2.4.0



ELBA-2026-3155 Oracle Linux 10 virt-v2v bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-3155

http://linux.oracle.com/errata/ELBA-2026-3155.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
virt-v2v-2.8.1-18.0.1.el10_1.x86_64.rpm
virt-v2v-bash-completion-2.8.1-18.0.1.el10_1.noarch.rpm
virt-v2v-man-pages-ja-2.8.1-18.0.1.el10_1.noarch.rpm
virt-v2v-man-pages-uk-2.8.1-18.0.1.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/virt-v2v-2.8.1-18.0.1.el10_1.src.rpm

Description of changes:

[2.8.1-18.0.1]
- Replaced bugzilla.oracle.com references [Orabug: 34202300]
- replaced upstream references [Orabug:34089586]

[1:2.8.1-18]
- Fix import when datastore name has characters like '+'
resolves: RHEL-145321

[1:2.8.1-17]
- Fix Debian 12 UEFI conversions
resolves: RHEL-144643



ELBA-2026-3154 Oracle Linux 10 libvirt bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-3154

http://linux.oracle.com/errata/ELBA-2026-3154.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libvirt-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-client-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-client-qemu-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-common-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-config-network-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-config-nwfilter-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-interface-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-network-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-nodedev-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-nwfilter-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-qemu-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-secret-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-core-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-disk-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-iscsi-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-logical-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-mpath-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-rbd-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-scsi-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-kvm-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-lock-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-log-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-plugin-lockd-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-plugin-sanlock-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-daemon-proxy-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-devel-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-docs-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-libs-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-nss-11.5.0-4.7.0.1.el10_1.x86_64.rpm
libvirt-ssh-proxy-11.5.0-4.7.0.1.el10_1.x86_64.rpm

aarch64:
libvirt-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-client-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-client-qemu-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-common-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-config-network-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-config-nwfilter-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-interface-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-network-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-nodedev-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-nwfilter-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-qemu-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-secret-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-core-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-disk-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-logical-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-mpath-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-rbd-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-scsi-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-kvm-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-lock-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-log-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-plugin-lockd-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-plugin-sanlock-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-daemon-proxy-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-devel-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-docs-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-libs-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-nss-11.5.0-4.7.0.1.el10_1.aarch64.rpm
libvirt-ssh-proxy-11.5.0-4.7.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libvirt-11.5.0-4.7.0.1.el10_1.src.rpm

Description of changes:

[11.5.0-4.7.0.1]
- Set SOURCE_DATE_EPOCH from changelog [Orabug: 32019554]

[11.5.0-4.7.el10_1]
- esx: Debug URL just before opening with curl (RHEL-142863)
- esx: Abstract all URL-creation code into one function (RHEL-142863)
- esx: Switch to creating URLs using virURIFormat (RHEL-142863)

[11.5.0-4.6.el10_1]
- esx: Allow connecting to IPv6 server (RHEL-142863)



ELSA-2026-3189 Moderate: Oracle Linux 9 389-ds-base security update


Oracle Linux Security Advisory ELSA-2026-3189

http://linux.oracle.com/errata/ELSA-2026-3189.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
389-ds-base-2.7.0-10.el9_7.x86_64.rpm
389-ds-base-devel-2.7.0-10.el9_7.x86_64.rpm
389-ds-base-libs-2.7.0-10.el9_7.x86_64.rpm
389-ds-base-snmp-2.7.0-10.el9_7.x86_64.rpm
python3-lib389-2.7.0-10.el9_7.noarch.rpm

aarch64:
389-ds-base-2.7.0-10.el9_7.aarch64.rpm
389-ds-base-devel-2.7.0-10.el9_7.aarch64.rpm
389-ds-base-libs-2.7.0-10.el9_7.aarch64.rpm
389-ds-base-snmp-2.7.0-10.el9_7.aarch64.rpm
python3-lib389-2.7.0-10.el9_7.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/389-ds-base-2.7.0-10.el9_7.src.rpm

Related CVEs:

CVE-2025-14905

Description of changes:

[2.7.0-10]
- Resolves: RHEL-123243 - Attribute uniqueness is not enforced upon modrdn operation [rhel-9.7.z]
- Resolves: RHEL-123765 - 389-ds-base OpenScanHub Leaks Detected [rhel-9.7.z]
- Resolves: RHEL-137083 - CVE-2025-14905 389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via heap buffer overflow [rhel-9.7.z]
- Resolves: RHEL-140088 - Upgrading IDM to latest version: 389-ds-base and ipa-server breaks replication [rhel-9.7.z]
- Resolves: RHEL-150906 - Remove memberof_del_dn_from_groups from MemberOf plugin [rhel-9.7.z]

[2.7.0-9]
- Resolves: RHEL-116425 - RetroCL plugin generates invalid LDIF [rhel-9.7.z]
- Resolves: RHEL-123243 - Attribute uniqueness is not enforced upon modrdn operation [rhel-9.7.z]
- Resolves: RHEL-123765 - 389-ds-base OpenScanHub Leaks Detected [rhel-9.7.z]
- Resolves: RHEL-123896 - [WebUI] Replication tab crashes after enabling replication as a consumer [rhel-9.7.z]
- Resolves: RHEL-129558 - Online initialization of consumers fails with error -23 [rhel-9.7.z]
- Resolves: RHEL-140088 - Upgrading IDM to latest version: 389-ds-base and ipa-server breaks replication [rhel-9.7.z]
- Resolves: RHEL-142979 - Scalability issue of replication online initialization with large database [rhel-9.7.z]
- Resolves: RHEL-146898 - memory corruption in alias entry plugin [rhel-9.7.z]
- Resolves: RHEL-147211 - Access logs are not getting deleted as configured. [rhel-9.7.z]

[2.7.0-8]
- Resolves: RHEL-111228 - Error showing local password policy on web UI [rhel-9.7.z]
- Resolves: RHEL-117049 - Replication online reinitialization of a large database gets stalled. [rhel-9.7.z]
- Resolves: RHEL-117770 - When the server restarts after a crash, the RFE assumes memberof should be recomputed. It triggers a memberof fixup task, dirsrv became unresponsive. [rhel-9.7.z]
- Resolves: RHEL-123230 - Improve the way to detect asynchronous operations in the access logs [rhel-9.7.z]
- Resolves: RHEL-123243 - Attribute uniqueness is not enforced upon modrdn operation [rhel-9.7.z]
- Resolves: RHEL-123257 - Typo in errors log after a Memberof fixup task. [rhel-9.7.z]
- Resolves: RHEL-123278 - The new ipahealthcheck test ipahealthcheck.ds.backends.BackendsCheck raises CRITICAL issue [rhel-9.7.z]
- Resolves: RHEL-123367 - IPA health check up script shows time skew is over 24 hours [rhel-9.7.z]
- Resolves: RHEL-123765 - 389-ds-base OpenScanHub Leaks Detected [rhel-9.7.z]
- Resolves: RHEL-123852 - Units for changing MDB max size are not consistent across different tools [rhel-9.7.z]
- Resolves: RHEL-123892 - Improve output dsctl dbverify when backend does not exist [rhel-9.7.z]
- Resolves: RHEL-123896 - [WebUI] Replication tab crashes after enabling replication as a consumer [rhel-9.7.z]
- Resolves: RHEL-123922 - Changelog trimming - add number of scanned entries to the log [rhel-9.7.z]
- Resolves: RHEL-126551 - RHDS 12.6 doesn't handle 'ldapsearch' filter with space char in DN name correctly [rhel-9.7.z]
- Resolves: RHEL-129558 - Online initialization of consumers fails with error -23 [rhel-9.7.z]
- Resolves: RHEL-129579 - Fix paged result search locking [rhel-9.7.z]
- Resolves: RHEL-138480 - Memory leak observed in ns-slapd with 389-ds-base-2.6.1-12 [rhel-9.7.z]
- Resolves: RHEL-140088 - Upgrading IDM to latest version: 389-ds-base and ipa-server breaks replication [rhel-9.7.z]
- Resolves: RHEL-140274 - ipa-healthcheck is complaining about missing or incorrectly configured system indexes. [rhel-9.7.z]



ELSA-2026-3066 Moderate: Oracle Linux 9 kernel security update


Oracle Linux Security Advisory ELSA-2026-3066

http://linux.oracle.com/errata/ELSA-2026-3066.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-abi-stablelists-5.14.0-611.35.1.el9_7.noarch.rpm
kernel-core-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-cross-headers-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-debug-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-debug-core-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-debug-devel-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-debug-devel-matched-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-debug-modules-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-debug-modules-core-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-debug-modules-extra-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-debug-uki-virt-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-devel-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-devel-matched-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-doc-5.14.0-611.35.1.el9_7.noarch.rpm
kernel-headers-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-modules-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-modules-core-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-modules-extra-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-tools-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-tools-libs-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-tools-libs-devel-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-uki-virt-5.14.0-611.35.1.el9_7.x86_64.rpm
kernel-uki-virt-addons-5.14.0-611.35.1.el9_7.x86_64.rpm
libperf-5.14.0-611.35.1.el9_7.x86_64.rpm
perf-5.14.0-611.35.1.el9_7.x86_64.rpm
python3-perf-5.14.0-611.35.1.el9_7.x86_64.rpm
rtla-5.14.0-611.35.1.el9_7.x86_64.rpm
rv-5.14.0-611.35.1.el9_7.x86_64.rpm

aarch64:
kernel-cross-headers-5.14.0-611.35.1.el9_7.aarch64.rpm
kernel-headers-5.14.0-611.35.1.el9_7.aarch64.rpm
kernel-tools-5.14.0-611.35.1.el9_7.aarch64.rpm
kernel-tools-libs-5.14.0-611.35.1.el9_7.aarch64.rpm
kernel-tools-libs-devel-5.14.0-611.35.1.el9_7.aarch64.rpm
libperf-5.14.0-611.35.1.el9_7.aarch64.rpm
perf-5.14.0-611.35.1.el9_7.aarch64.rpm
python3-perf-5.14.0-611.35.1.el9_7.aarch64.rpm
rtla-5.14.0-611.35.1.el9_7.aarch64.rpm
rv-5.14.0-611.35.1.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-611.35.1.el9_7.src.rpm

Related CVEs:

CVE-2025-38129
CVE-2025-38206

Description of changes:

[5.14.0-611.35.1]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64

YT-DLP and Chromium updates for Fedora 43

Kernel, Go, 389-DS-Base, and more updates for RHEL

Windows

Linux

macOS

Community

  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...