Oracle has issued a comprehensive set of security and bug fix advisories for Linux versions 7, 8, and 9 to address critical vulnerabilities across multiple core packages. These updates patch dangerous flaws in the system kernel, BIND DNS server, Samba file sharing, the Go programming toolset, Vim editor, ImageMagick, and GRUB2 bootloader. System administrators must deploy the provided RPM packages immediately to mitigate risks involving remote code execution, memory corruption, and unauthorized file access. Each advisory includes detailed change logs and links to source code repositories for both standard and ARM-based server architectures.

ELSA-2026-22112 Important: Oracle Linux 8 go-toolset:ol8 security update
ELSA-2026-22644 Important: Oracle Linux 8 samba security update
ELSA-2026-23360 Important: Oracle Linux 8 bind9.16 security update
ELSA-2026-23258 Important: Oracle Linux 8 kernel security update
ELSA-2026-22730 Moderate: Oracle Linux 8 vim security update
ELSA-2026-24339 Important: Oracle Linux 8 bind security update
ELBA-2026-50303 Oracle Linux 9 grub2 bug fix update
ELSA-2026-17618 Moderate: Oracle Linux 7 ImageMagick security update

ELSA-2026-22112 Important: Oracle Linux 8 go-toolset:ol8 security update

Oracle Linux Security Advisory ELSA-2026-22112

http://linux.oracle.com/errata/ELSA-2026-22112.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
delve-1.25.2-1.0.1.module+el8.10.0+90715+2d4d8dfd.x86_64.rpm
golang-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.x86_64.rpm
golang-bin-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.x86_64.rpm
golang-docs-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.noarch.rpm
golang-misc-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.noarch.rpm
golang-race-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.x86_64.rpm
golang-src-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.noarch.rpm
golang-tests-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.noarch.rpm
go-toolset-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.x86_64.rpm

aarch64:
delve-1.25.2-1.0.1.module+el8.10.0+90715+2d4d8dfd.aarch64.rpm
golang-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.aarch64.rpm
golang-bin-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.aarch64.rpm
golang-docs-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.noarch.rpm
golang-misc-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.noarch.rpm
golang-race-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.aarch64.rpm
golang-src-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.noarch.rpm
golang-tests-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.noarch.rpm
go-toolset-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/delve-1.25.2-1.0.1.module+el8.10.0+90715+2d4d8dfd.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/golang-1.25.9-1.0.1.module+el8.10.0+90898+1e3c34bb.src.rpm

Related CVEs:

CVE-2026-33811
CVE-2026-33814
CVE-2026-39817
CVE-2026-39819
CVE-2026-39820
CVE-2026-39823
CVE-2026-39825
CVE-2026-39826
CVE-2026-39836
CVE-2026-42499
CVE-2026-42501

Description of changes:

delve
golang
[1.25.9-1.0.1]
- EXPERIMENTAL: Introduce fipsnoenforceems GODEBUG var
- Backported from OL9u7
- Resolves: OLDIS-53586

ELSA-2026-22644 Important: Oracle Linux 8 samba security update

Oracle Linux Security Advisory ELSA-2026-22644

http://linux.oracle.com/errata/ELSA-2026-22644.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
ctdb-4.19.4-16.0.1.el8_10.x86_64.rpm
libnetapi-4.19.4-16.0.1.el8_10.i686.rpm
libnetapi-4.19.4-16.0.1.el8_10.x86_64.rpm
libnetapi-devel-4.19.4-16.0.1.el8_10.i686.rpm
libnetapi-devel-4.19.4-16.0.1.el8_10.x86_64.rpm
libsmbclient-4.19.4-16.0.1.el8_10.i686.rpm
libsmbclient-4.19.4-16.0.1.el8_10.x86_64.rpm
libsmbclient-devel-4.19.4-16.0.1.el8_10.i686.rpm
libsmbclient-devel-4.19.4-16.0.1.el8_10.x86_64.rpm
libwbclient-4.19.4-16.0.1.el8_10.i686.rpm
libwbclient-4.19.4-16.0.1.el8_10.x86_64.rpm
libwbclient-devel-4.19.4-16.0.1.el8_10.i686.rpm
libwbclient-devel-4.19.4-16.0.1.el8_10.x86_64.rpm
python3-samba-4.19.4-16.0.1.el8_10.i686.rpm
python3-samba-4.19.4-16.0.1.el8_10.x86_64.rpm
python3-samba-dc-4.19.4-16.0.1.el8_10.x86_64.rpm
python3-samba-devel-4.19.4-16.0.1.el8_10.i686.rpm
python3-samba-devel-4.19.4-16.0.1.el8_10.x86_64.rpm
python3-samba-test-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-client-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-client-libs-4.19.4-16.0.1.el8_10.i686.rpm
samba-client-libs-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-common-4.19.4-16.0.1.el8_10.noarch.rpm
samba-common-libs-4.19.4-16.0.1.el8_10.i686.rpm
samba-common-libs-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-common-tools-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-dc-libs-4.19.4-16.0.1.el8_10.i686.rpm
samba-dc-libs-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-dcerpc-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-devel-4.19.4-16.0.1.el8_10.i686.rpm
samba-devel-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-krb5-printing-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-ldb-ldap-modules-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-libs-4.19.4-16.0.1.el8_10.i686.rpm
samba-libs-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-pidl-4.19.4-16.0.1.el8_10.noarch.rpm
samba-test-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-test-libs-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-tools-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-usershares-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-vfs-glusterfs-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-vfs-iouring-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-winbind-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-winbind-clients-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-winbind-krb5-locator-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-winbind-modules-4.19.4-16.0.1.el8_10.i686.rpm
samba-winbind-modules-4.19.4-16.0.1.el8_10.x86_64.rpm
samba-winexe-4.19.4-16.0.1.el8_10.x86_64.rpm

aarch64:
ctdb-4.19.4-16.0.1.el8_10.aarch64.rpm
libnetapi-4.19.4-16.0.1.el8_10.aarch64.rpm
libnetapi-devel-4.19.4-16.0.1.el8_10.aarch64.rpm
libsmbclient-4.19.4-16.0.1.el8_10.aarch64.rpm
libsmbclient-devel-4.19.4-16.0.1.el8_10.aarch64.rpm
libwbclient-4.19.4-16.0.1.el8_10.aarch64.rpm
libwbclient-devel-4.19.4-16.0.1.el8_10.aarch64.rpm
python3-samba-4.19.4-16.0.1.el8_10.aarch64.rpm
python3-samba-dc-4.19.4-16.0.1.el8_10.aarch64.rpm
python3-samba-devel-4.19.4-16.0.1.el8_10.aarch64.rpm
python3-samba-test-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-client-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-client-libs-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-common-4.19.4-16.0.1.el8_10.noarch.rpm
samba-common-libs-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-common-tools-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-dc-libs-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-dcerpc-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-devel-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-krb5-printing-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-ldb-ldap-modules-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-libs-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-pidl-4.19.4-16.0.1.el8_10.noarch.rpm
samba-test-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-test-libs-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-tools-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-usershares-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-vfs-glusterfs-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-vfs-iouring-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-winbind-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-winbind-clients-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-winbind-krb5-locator-4.19.4-16.0.1.el8_10.aarch64.rpm
samba-winbind-modules-4.19.4-16.0.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/samba-4.19.4-16.0.1.el8_10.src.rpm

Related CVEs:

CVE-2026-3012
CVE-2026-4408
CVE-2026-4480

Description of changes:

[4.19.4-16.0.1]
- s3: winbindd: winbindd_pam: fix leak in extract_pac_vrfy_sigs [Orabug: 36518285]
- s3:passdb: Do not leak memory in pdb_tdb [Orabug: 36371377]
- Gluster volumes not accessible via Samba due to missing samba-vfs-glusterfs in OL8 [Orabug: 30205755]

[4.19.4-16]
- resolves: RHEL-156322 - Fix CVE-2026-3012
- resolves: RHEL-161647 - Fix CVE-2026-4480
- resolves: RHEL-177933 - Fix CVE-2026-4408
- resolves: RHEL-166866 - Build hardening, stack protection with FORTIFY_SOURCE

ELSA-2026-23360 Important: Oracle Linux 8 bind9.16 security update

Oracle Linux Security Advisory ELSA-2026-23360

http://linux.oracle.com/errata/ELSA-2026-23360.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bind9.16-9.16.23-0.22.el8_10.6.x86_64.rpm
bind9.16-chroot-9.16.23-0.22.el8_10.6.x86_64.rpm
bind9.16-devel-9.16.23-0.22.el8_10.6.i686.rpm
bind9.16-devel-9.16.23-0.22.el8_10.6.x86_64.rpm
bind9.16-dnssec-utils-9.16.23-0.22.el8_10.6.x86_64.rpm
bind9.16-doc-9.16.23-0.22.el8_10.6.noarch.rpm
bind9.16-libs-9.16.23-0.22.el8_10.6.i686.rpm
bind9.16-libs-9.16.23-0.22.el8_10.6.x86_64.rpm
bind9.16-license-9.16.23-0.22.el8_10.6.noarch.rpm
bind9.16-utils-9.16.23-0.22.el8_10.6.x86_64.rpm
python3-bind9.16-9.16.23-0.22.el8_10.6.noarch.rpm

aarch64:
bind9.16-9.16.23-0.22.el8_10.6.aarch64.rpm
bind9.16-chroot-9.16.23-0.22.el8_10.6.aarch64.rpm
bind9.16-devel-9.16.23-0.22.el8_10.6.aarch64.rpm
bind9.16-dnssec-utils-9.16.23-0.22.el8_10.6.aarch64.rpm
bind9.16-doc-9.16.23-0.22.el8_10.6.noarch.rpm
bind9.16-libs-9.16.23-0.22.el8_10.6.aarch64.rpm
bind9.16-license-9.16.23-0.22.el8_10.6.noarch.rpm
bind9.16-utils-9.16.23-0.22.el8_10.6.aarch64.rpm
python3-bind9.16-9.16.23-0.22.el8_10.6.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/bind9.16-9.16.23-0.22.el8_10.6.src.rpm

Related CVEs:

CVE-2026-3039
CVE-2026-5946

Description of changes:

[32:9.16.23-0.22.6]
- Fix GSS-API resource leak (CVE-2026-3039)
- Invalid handling of CLASS != IN (CVE-2026-5946)

ELSA-2026-23258 Important: Oracle Linux 8 kernel security update

Oracle Linux Security Advisory ELSA-2026-23258

http://linux.oracle.com/errata/ELSA-2026-23258.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.129.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.129.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.129.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.129.1.el8_10.x86_64.rpm
perf-4.18.0-553.129.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.129.1.el8_10.x86_64.rpm

aarch64:
bpftool-4.18.0-553.129.1.el8_10.aarch64.rpm
kernel-cross-headers-4.18.0-553.129.1.el8_10.aarch64.rpm
kernel-headers-4.18.0-553.129.1.el8_10.aarch64.rpm
kernel-tools-4.18.0-553.129.1.el8_10.aarch64.rpm
kernel-tools-libs-4.18.0-553.129.1.el8_10.aarch64.rpm
kernel-tools-libs-devel-4.18.0-553.129.1.el8_10.aarch64.rpm
perf-4.18.0-553.129.1.el8_10.aarch64.rpm
python3-perf-4.18.0-553.129.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.129.1.el8_10.src.rpm

Related CVEs:

CVE-2026-46243

Description of changes:

[4.18.0-553.129.1]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64