Kernel, glibc, Nginx, PHP, Firefox, and Thunderbird updates for Oracle Linux

Oracle Linux 6503 Published 2026-06-28 07:07 by Philipp Esselbach

News

ELSA-2026-20597 Moderate: Oracle Linux 9 glibc security update

Oracle Linux Security Advisory ELSA-2026-20597

http://linux.oracle.com/errata/ELSA-2026-20597.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
glibc-2.34-270.0.1.el9_8.i686.rpm
glibc-2.34-270.0.1.el9_8.x86_64.rpm
glibc-all-langpacks-2.34-270.0.1.el9_8.x86_64.rpm
glibc-benchtests-2.34-270.0.1.el9_8.x86_64.rpm
glibc-common-2.34-270.0.1.el9_8.x86_64.rpm
glibc-devel-2.34-270.0.1.el9_8.i686.rpm
glibc-devel-2.34-270.0.1.el9_8.x86_64.rpm
glibc-doc-2.34-270.0.1.el9_8.noarch.rpm
glibc-gconv-extra-2.34-270.0.1.el9_8.i686.rpm
glibc-gconv-extra-2.34-270.0.1.el9_8.x86_64.rpm
glibc-headers-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-aa-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-af-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-agr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ak-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-am-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-an-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-anp-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ar-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-as-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ast-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ayc-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-az-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-be-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-bem-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ber-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-bg-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-bhb-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-bho-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-bi-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-bn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-bo-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-br-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-brx-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-bs-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-byn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ca-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ce-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-chr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ckb-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-cmn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-crh-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-cs-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-csb-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-cv-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-cy-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-da-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-de-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-doi-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-dsb-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-dv-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-dz-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-el-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-en-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-eo-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-es-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-et-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-eu-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-fa-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ff-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-fi-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-fil-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-fo-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-fr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-fur-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-fy-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ga-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-gd-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-gez-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-gl-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-gu-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-gv-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ha-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-hak-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-he-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-hi-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-hif-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-hne-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-hr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-hsb-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ht-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-hu-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-hy-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ia-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-id-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ig-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ik-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-is-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-it-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-iu-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ja-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ka-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-kab-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-kk-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-kl-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-km-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-kn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ko-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-kok-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ks-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ku-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-kw-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ky-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-lb-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-lg-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-li-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-lij-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ln-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-lo-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-lt-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-lv-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-lzh-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mag-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mai-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mfe-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mg-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mhr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mi-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-miq-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mjw-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mk-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ml-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mni-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mnw-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ms-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-mt-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-my-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-nan-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-nb-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-nds-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ne-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-nhn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-niu-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-nl-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-nn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-nr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-nso-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-oc-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-om-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-or-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-os-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-pa-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-pap-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-pl-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ps-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-pt-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-quz-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-raj-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ro-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ru-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-rw-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sa-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sah-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sat-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sc-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sd-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-se-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sgs-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-shn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-shs-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-si-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sid-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sk-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sl-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sm-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-so-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sq-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ss-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-st-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sv-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-sw-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-szl-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ta-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tcy-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-te-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tg-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-th-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-the-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ti-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tig-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tk-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tl-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tn-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-to-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tpi-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tr-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ts-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-tt-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ug-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-uk-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-unm-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ur-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-uz-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-ve-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-vi-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-wa-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-wae-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-wal-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-wo-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-xh-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-yi-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-yo-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-yue-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-yuw-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-zh-2.34-270.0.1.el9_8.x86_64.rpm
glibc-langpack-zu-2.34-270.0.1.el9_8.x86_64.rpm
glibc-locale-source-2.34-270.0.1.el9_8.x86_64.rpm
glibc-minimal-langpack-2.34-270.0.1.el9_8.x86_64.rpm
glibc-nss-devel-2.34-270.0.1.el9_8.i686.rpm
glibc-nss-devel-2.34-270.0.1.el9_8.x86_64.rpm
glibc-static-2.34-270.0.1.el9_8.i686.rpm
glibc-static-2.34-270.0.1.el9_8.x86_64.rpm
glibc-utils-2.34-270.0.1.el9_8.x86_64.rpm
libnsl-2.34-270.0.1.el9_8.i686.rpm
libnsl-2.34-270.0.1.el9_8.x86_64.rpm
nscd-2.34-270.0.1.el9_8.x86_64.rpm
nss_db-2.34-270.0.1.el9_8.i686.rpm
nss_db-2.34-270.0.1.el9_8.x86_64.rpm
nss_hesiod-2.34-270.0.1.el9_8.i686.rpm
nss_hesiod-2.34-270.0.1.el9_8.x86_64.rpm

aarch64:
glibc-2.34-270.0.1.el9_8.aarch64.rpm
glibc-all-langpacks-2.34-270.0.1.el9_8.aarch64.rpm
glibc-benchtests-2.34-270.0.1.el9_8.aarch64.rpm
glibc-common-2.34-270.0.1.el9_8.aarch64.rpm
glibc-devel-2.34-270.0.1.el9_8.aarch64.rpm
glibc-doc-2.34-270.0.1.el9_8.noarch.rpm
glibc-gconv-extra-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-aa-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-af-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-agr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ak-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-am-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-an-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-anp-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ar-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-as-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ast-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ayc-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-az-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-be-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-bem-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ber-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-bg-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-bhb-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-bho-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-bi-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-bn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-bo-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-br-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-brx-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-bs-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-byn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ca-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ce-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-chr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ckb-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-cmn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-crh-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-cs-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-csb-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-cv-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-cy-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-da-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-de-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-doi-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-dsb-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-dv-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-dz-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-el-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-en-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-eo-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-es-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-et-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-eu-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-fa-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ff-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-fi-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-fil-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-fo-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-fr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-fur-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-fy-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ga-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-gd-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-gez-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-gl-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-gu-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-gv-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ha-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-hak-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-he-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-hi-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-hif-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-hne-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-hr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-hsb-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ht-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-hu-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-hy-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ia-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-id-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ig-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ik-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-is-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-it-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-iu-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ja-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ka-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-kab-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-kk-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-kl-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-km-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-kn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ko-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-kok-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ks-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ku-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-kw-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ky-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-lb-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-lg-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-li-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-lij-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ln-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-lo-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-lt-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-lv-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-lzh-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mag-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mai-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mfe-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mg-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mhr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mi-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-miq-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mjw-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mk-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ml-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mni-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mnw-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ms-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-mt-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-my-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-nan-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-nb-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-nds-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ne-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-nhn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-niu-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-nl-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-nn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-nr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-nso-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-oc-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-om-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-or-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-os-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-pa-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-pap-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-pl-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ps-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-pt-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-quz-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-raj-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ro-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ru-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-rw-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sa-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sah-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sat-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sc-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sd-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-se-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sgs-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-shn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-shs-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-si-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sid-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sk-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sl-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sm-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-so-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sq-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ss-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-st-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sv-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-sw-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-szl-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ta-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tcy-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-te-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tg-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-th-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-the-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ti-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tig-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tk-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tl-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tn-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-to-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tpi-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tr-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ts-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-tt-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ug-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-uk-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-unm-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ur-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-uz-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-ve-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-vi-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-wa-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-wae-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-wal-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-wo-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-xh-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-yi-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-yo-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-yue-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-yuw-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-zh-2.34-270.0.1.el9_8.aarch64.rpm
glibc-langpack-zu-2.34-270.0.1.el9_8.aarch64.rpm
glibc-locale-source-2.34-270.0.1.el9_8.aarch64.rpm
glibc-minimal-langpack-2.34-270.0.1.el9_8.aarch64.rpm
glibc-nss-devel-2.34-270.0.1.el9_8.aarch64.rpm
glibc-static-2.34-270.0.1.el9_8.aarch64.rpm
glibc-utils-2.34-270.0.1.el9_8.aarch64.rpm
libnsl-2.34-270.0.1.el9_8.aarch64.rpm
nscd-2.34-270.0.1.el9_8.aarch64.rpm
nss_db-2.34-270.0.1.el9_8.aarch64.rpm
nss_hesiod-2.34-270.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/glibc-2.34-270.0.1.el9_8.src.rpm

Related CVEs:

CVE-2026-4046
CVE-2026-4437
CVE-2026-4438

Description of changes:

[2.34-270.0.1]
- Forward-port Oracle patches for ol9-u8
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
Oracle history:
May-20-2026 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-266.0.1
- Forward-port Oracle patches for ol9-u8
Reviewed-by: David Faust [david.faust@oracle.com]
March-25-2026 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-262.0.1
- Forward-port Oracle patches for ol9-u8
Reviewed-by: David Faust [david.faust@oracle.com]
March-6-2026 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-256.0.1
- Forward-port Oracle patches for ol9-u8
Reviewed-by: David Faust [david.faust@oracle.com]
February-3-2026 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-245.0.1
- Forward-port Oracle patches for ol9-u8
Reviewed-by: David Faust [david.faust@oracle.com]
November-14-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-231.0.1.1
- Forward-port Oracle patches for ol9-u7
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
September-24-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-231.0.1
- Forward-port Oracle patches for ol9-u7
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
September-8-2025 Jose E. Marchesi [jose.marchesi@oracle.com] - 2.34-228.0.1
- Forward-port Oracle patches for ol9-u7
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
August-5-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-217.0.1
- Forward-port Oralce patches for ol9-u7
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
August-5-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-168.0.1.23
- Forward-port Oracle patches for ol9-u6
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
June-30-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-168.0.1.20
- Forward-port Oracle patches for ol9-u6
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
June-9-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-168.0.1.19
- Forward-port Oracle patches for ol9-u6
Reviewed-by: David Faust [david.faust@oracle.com]
May-17-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-168.0.1.14
- Forward-port Oracle patches for ol9-u6
Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]
March-6-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-168.0.1
- Forward-port Oracle patches for ol9-u6
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
February-18-2025 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-160.0.1
- Forward-port Oracle patches for ol9-u6 DP
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
November-12-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-125.0.1.1
- Forward-port Oracle patches for ol9-u5
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
October-1-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-100.0.1.4
- Forward-port Oracle patches for ol9-u4
Reviewed by: David Faust [david.faust@oracle.com]
August-26-2024 Jose E. Marchesi [jose.marchesi@oracle.com] - 2.34-100.0.1.3
- Forward-port Oracle patches for ol9-u4
Reviewed by: David Faust [david.faust@oracle.com]
May-24-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-100.0.1.2
- Forward-port Oracle patches for ol9-u4
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
April-30-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-100.0.1
- Forward-port Oracle patches for ol9-u4
Reviewed by: Indu Bhagat [indu.bhagat@oracle.com]
March-28-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-100.0.1
- Forward-port Oracle patches for ol9-u4-beta
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
March 15 2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-83.0.2.12
- Forward-port Oracle patches for ol9
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
February-26-2024 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-83.0.2.7
- OraBug 36322437 getaddrinfo does not return correct ipv6 address and family
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
October-24-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-83.0.1.7
- Forward-port Oracle patches for ol9
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
October-4-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-82.0.1
- Forward-port Oracle patches for ol9
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
April-18-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-60.0.2
- OraBug 35305078 Glibc tunable to disable huge pages on pthread_create stacks
- Created tunable glibc.pthread.stack_hugetlb to control when hugepages
can be used for stack allocation.
- In case THP are enabled and glibc.pthread.stack_hugetlb is set to
0, glibc will madvise the kernel not to use allow hugepages for stack
allocations.
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
March-28-2023 Cupertino Miranda [cupertino.miranda@oracle.com] - 2.34-60.0.1
- Merge Oracle patches for ol9-u2 beta
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
September-28-2022 Patrick McGehearty [patrick.mcgehearty@oracle.com] - 2.34-40.0.1
- Merge Oracle patches for ol9-u1 beta
Reviewed by: Jose E. Marchesi [jose.marchesi@oracle.com]
April-25-2022 Patrick McGehearty [patrick.mcgehearty@oracle.com] - 2.34-28.0.1
- Merge Oracle patches with ol9 beta
- Reviewed-by: Jose E. Marchesi [jose.marchesi@oracle.com]

[2.34-270]
- Fix incorrect setting of CXX variable in spec file (RHEL-148252)

[2.34-269]
- Fix __nss_get_default_domain logic to restore netgroup user enumeration
(RHEL-168096)

[2.34-268]
- resolv: Correctly count records and check hostname validity (RHEL-168851,
RHEL-168852)

[2.34-267]
- CVE-2026-4046: Fix assertion failure in IBM1390 and IBM1399 iconv modules
(RHEL-162901)

ELSA-2026-22142 Important: Oracle Linux 9 php:8.3 security update

Oracle Linux Security Advisory ELSA-2026-22142

http://linux.oracle.com/errata/ELSA-2026-22142.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
apcu-panel-5.1.23-1.module+el9.8.0+90900+909102f6.noarch.rpm
php-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-bcmath-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-cli-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-common-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-dba-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-dbg-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-devel-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-embedded-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-enchant-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-ffi-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-fpm-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-gd-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-gmp-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-intl-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-ldap-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-mbstring-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-mysqlnd-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-odbc-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-opcache-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-pdo-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-pecl-apcu-5.1.23-1.module+el9.8.0+90900+909102f6.x86_64.rpm
php-pecl-apcu-devel-5.1.23-1.module+el9.8.0+90900+909102f6.x86_64.rpm
php-pecl-redis6-6.1.0-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-pecl-rrd-2.0.3-4.module+el9.8.0+90900+909102f6.x86_64.rpm
php-pecl-xdebug3-3.3.1-1.module+el9.8.0+90900+909102f6.x86_64.rpm
php-pecl-zip-1.22.3-1.module+el9.8.0+90900+909102f6.x86_64.rpm
php-pgsql-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-process-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-snmp-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-soap-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm
php-xml-8.3.31-2.module+el9.8.0+90900+909102f6.x86_64.rpm

aarch64:
apcu-panel-5.1.23-1.module+el9.8.0+90900+909102f6.noarch.rpm
php-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-bcmath-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-cli-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-common-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-dba-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-dbg-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-devel-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-embedded-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-enchant-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-ffi-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-fpm-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-gd-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-gmp-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-intl-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-ldap-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-mbstring-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-mysqlnd-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-odbc-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-opcache-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-pdo-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-pecl-apcu-5.1.23-1.module+el9.8.0+90900+909102f6.aarch64.rpm
php-pecl-apcu-devel-5.1.23-1.module+el9.8.0+90900+909102f6.aarch64.rpm
php-pecl-redis6-6.1.0-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-pecl-rrd-2.0.3-4.module+el9.8.0+90900+909102f6.aarch64.rpm
php-pecl-xdebug3-3.3.1-1.module+el9.8.0+90900+909102f6.aarch64.rpm
php-pecl-zip-1.22.3-1.module+el9.8.0+90900+909102f6.aarch64.rpm
php-pgsql-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-process-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-snmp-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-soap-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm
php-xml-8.3.31-2.module+el9.8.0+90900+909102f6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/php-8.3.31-2.module+el9.8.0+90900+909102f6.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/php-pecl-apcu-5.1.23-1.module+el9.8.0+90900+909102f6.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/php-pecl-redis6-6.1.0-2.module+el9.8.0+90900+909102f6.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/php-pecl-rrd-2.0.3-4.module+el9.8.0+90900+909102f6.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/php-pecl-xdebug3-3.3.1-1.module+el9.8.0+90900+909102f6.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/php-pecl-zip-1.22.3-1.module+el9.8.0+90900+909102f6.src.rpm

Related CVEs:

CVE-2026-6735
CVE-2026-7258
CVE-2026-7262
CVE-2026-7568

Description of changes:

php
[8.3.31-2]
- drop capstone dependency on i686

[8.3.31-1]
- rebase to 8.3.31

php-pecl-apcu
[5.1.23-1]
- update to 5.1.23 for PHP 8.2 RHEL-14699

[5.1.21-1]
- update to 5.1.21 for PHP 8.1 #2070040

php-pecl-redis6
[6.1.0-2]
- ignore 1 ONLINE test

[6.1.0-1]
- RHEL build

[6.1.0-1]
- update to 6.1.0
- drop patch merged upstream

[6.1.0~RC2-1]
- update to 6.1.0RC2
- fix test suite with redis 6.2 using patch from
https://github.com/phpredis/phpredis/pull/2555

[6.0.2-3]
- cleanup and modernize spec file

[6.0.2-2]
- use valkey on Fedora 41
- add upstream patch for PHP 8.4

[6.0.2-1]
- update to 6.0.2

[6.0.1-1]
- update to 6.0.1

[6.0.0-1]
- cleanup SCL stuff for Fedora review

[6.0.0-1]
- update to 6.0.0

php-pecl-rrd
[2.0.3-4]
- build for PHP 8.1 #2070040

[2.0.3-3]
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688

[2.0.3-2]
- Rebuilt for RHEL 9 BETA for openssl 3.0
Related: rhbz#1971065

[2.0.3-1]
- update to 2.0.3

[2.0.2-1]
- update to 2.0.2

[2.0.1-17]
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937

[2.0.1-16]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

[2.0.1-15]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

php-pecl-xdebug3
[3.3.1-1]
- update to 3.3.1 for PHP 8.3

[3.2.2-2]
- drop inet_ntoa usage using upstream patch

[3.2.2-1]
- update to 3.2.2 for PHP 8.2 RHEL-14699

php-pecl-zip
[1.22.3-1]
- update to 1.22.3 for PHP 8.2 RHEL-14699

[1.20.1-1]
- update to 1.20.1 for PHP 8.1 #2070040

ELSA-2026-29151 Important: Oracle Linux 9 nginx:1.26 security update

Oracle Linux Security Advisory ELSA-2026-29151

http://linux.oracle.com/errata/ELSA-2026-29151.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nginx-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.x86_64.rpm
nginx-all-modules-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.noarch.rpm
nginx-core-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.x86_64.rpm
nginx-filesystem-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.noarch.rpm
nginx-mod-devel-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.x86_64.rpm
nginx-mod-http-image-filter-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.x86_64.rpm
nginx-mod-http-perl-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.x86_64.rpm
nginx-mod-http-xslt-filter-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.x86_64.rpm
nginx-mod-mail-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.x86_64.rpm
nginx-mod-stream-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.x86_64.rpm

aarch64:
nginx-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.aarch64.rpm
nginx-all-modules-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.noarch.rpm
nginx-core-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.aarch64.rpm
nginx-filesystem-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.noarch.rpm
nginx-mod-devel-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.aarch64.rpm
nginx-mod-http-image-filter-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.aarch64.rpm
nginx-mod-http-perl-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.aarch64.rpm
nginx-mod-http-xslt-filter-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.aarch64.rpm
nginx-mod-mail-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.aarch64.rpm
nginx-mod-stream-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/nginx-1.26.3-9.0.1.module+el9.8.0+90931+68e8e4c5.1.src.rpm

Related CVEs:

CVE-2026-9256

Description of changes:

[1.26.3-9.0.1.1]
- Require oracle-indexhtml

[2:1.26.3-11]
- nginx:1.26/nginx: HTTP/2: Remote Denial of Service via compression bomb
and Slowloris-style attack

[2:1.26.3-10]
- nginx: code execution and denial of service (CVE-2026-9256)

[2:1.26.3-9]
- Resolves: RHEL-176218 - nginx:1.26/nginx: NGINX: Arbitrary Code Execution
Vulnerability (CVE-2026-42945)

[2:1.26.3-8]
- CVE-2026-32647 nginx:1.26/nginx: NGINX: Denial of Service or Code
Execution via specially crafted MP4 files

[2:1.26.3-7]
- CVE-2026-27651 nginx:1.26/nginx: NGINX: Denial of Service via undisclosed
requests when ngx_mail_auth_http_module is enabled

[2:1.26.3-6]
- CVE-2026-27784 nginx:1.26/nginx: NGINX: Denial of Service due to memory
corruption via crafted MP4 file

[2:1.26.3-5]
- CVE-2026-27654 nginx:1.26/nginx: NGINX: Denial of Service or file
modification via buffer overflow in ngx_http_dav_module

[2:1.26.3-4]
- CVE-2026-1642 nginx: NGINX: Data injection via man-in-the-middle attack
on TLS proxied connections

[2:1.26.3-3]
- Resolves: RHEL-144454 - Clarify binding behavior of -t option

ELBA-2026-28656 Oracle Linux 9 qemu-kvm bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-28656

http://linux.oracle.com/errata/ELBA-2026-28656.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
qemu-guest-agent-10.1.0-17.el9_8.3.x86_64.rpm
qemu-img-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-audio-pa-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-block-blkio-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-block-curl-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-block-rbd-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-common-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-core-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-pci-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-device-display-virtio-vga-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-device-usb-host-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-device-usb-redirect-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-docs-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-tools-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-ui-egl-headless-10.1.0-17.el9_8.3.x86_64.rpm
qemu-kvm-ui-opengl-10.1.0-17.el9_8.3.x86_64.rpm
qemu-pr-helper-10.1.0-17.el9_8.3.x86_64.rpm

aarch64:
qemu-guest-agent-10.1.0-17.el9_8.3.aarch64.rpm
qemu-img-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-audio-pa-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-block-blkio-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-block-curl-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-block-rbd-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-common-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-core-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-device-display-virtio-gpu-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-device-display-virtio-gpu-pci-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-device-usb-host-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-device-usb-redirect-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-docs-10.1.0-17.el9_8.3.aarch64.rpm
qemu-kvm-tools-10.1.0-17.el9_8.3.aarch64.rpm
qemu-pr-helper-10.1.0-17.el9_8.3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/qemu-kvm-10.1.0-17.el9_8.3.src.rpm

Description of changes:

[10.1.0-17.el9_8.3]
- kvm-accel-mshv-Remove-remap-overlapping-mappings-code.patch [RHEL-184951]
- kvm-accel-mshv-implement-cpu_thread_is_idle-hook.patch [RHEL-184951]
- Resolves: RHEL-184951
(MSHV backport onto QEMU 10.1.0 is not able to launch MSHV guests [rhel-9.8.z])

[10.1.0-17.el9_8.2]
- kvm-scsi-adjust-error_prepend-formatting.patch [RHEL-166008]
- kvm-scsi-always-send-valid-PREEMPT-TYPE-field.patch [RHEL-166008]
- kvm-scsi-register-again-after-PREEMPT-without-reservatio.patch [RHEL-166008]
- Resolves: RHEL-166008
(live migration failed the VM just register key only [rhel-9.8.z])

[10.1.0-17.el9_8.1]
- kvm-scsi-Don-t-consider-LOGICAL-UNIT-NOT-SUPPORTED-guest.patch [RHEL-164534]
- Resolves: RHEL-164534
(qemu-kvm doesn't retry SG-IO on 05/25/00 (ILLEGAL REQUEST / LOGICAL UNIT NOT SUPPORTED) [rhel-9.8.z])

ELEA-2026-22546 Oracle Linux 9 nmstate bug fix and enhancement update

Oracle Linux Enhancement Advisory ELEA-2026-22546

http://linux.oracle.com/errata/ELEA-2026-22546.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nmstate-2.2.60-1.el9_8.x86_64.rpm
nmstate-devel-2.2.60-1.el9_8.i686.rpm
nmstate-devel-2.2.60-1.el9_8.x86_64.rpm
nmstate-libs-2.2.60-1.el9_8.i686.rpm
nmstate-libs-2.2.60-1.el9_8.x86_64.rpm
nmstate-static-2.2.60-1.el9_8.i686.rpm
nmstate-static-2.2.60-1.el9_8.x86_64.rpm
python3-libnmstate-2.2.60-1.el9_8.x86_64.rpm

aarch64:
nmstate-2.2.60-1.el9_8.aarch64.rpm
nmstate-devel-2.2.60-1.el9_8.aarch64.rpm
nmstate-libs-2.2.60-1.el9_8.aarch64.rpm
nmstate-static-2.2.60-1.el9_8.aarch64.rpm
python3-libnmstate-2.2.60-1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/nmstate-2.2.60-1.el9_8.src.rpm

Description of changes:

[2.2.60-1]
- Upgrade to 2.2.60
- ipv4: Add new parameter prefix-route-metric RHEL-170695

[2.2.59-1]
- Upgrade to 2.2.59
- Add support for lock-mtu option. RHEL-151933.

ELSA-2026-19355 Important: Oracle Linux 9 fence-agents security update

Oracle Linux Security Advisory ELSA-2026-19355

http://linux.oracle.com/errata/ELSA-2026-19355.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
fence-agents-aliyun-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-all-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-amt-ws-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-apc-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-apc-snmp-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-aws-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-azure-arm-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-bladecenter-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-brocade-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-cisco-mds-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-cisco-ucs-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-common-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-compute-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-drac5-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-eaton-snmp-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-emerson-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-eps-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-gce-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-heuristics-ping-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-hpblade-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ibm-powervs-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ibm-vpc-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ibmblade-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ifmib-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ilo-moonshot-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ilo-mp-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ilo-ssh-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ilo2-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-intelmodular-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ipdu-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ipmilan-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-kdump-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-kubevirt-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-lpar-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-mpath-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-nutanix-ahv-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-openstack-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-redfish-4.10.0-110.el9_8.3.x86_64.rpm
fence-agents-rhevm-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-rsa-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-rsb-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-sbd-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-scsi-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-virsh-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-vmware-rest-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-vmware-soap-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-wti-4.10.0-110.el9_8.3.noarch.rpm
fence-virt-4.10.0-110.el9_8.3.x86_64.rpm
fence-virtd-4.10.0-110.el9_8.3.x86_64.rpm
fence-virtd-cpg-4.10.0-110.el9_8.3.x86_64.rpm
fence-virtd-libvirt-4.10.0-110.el9_8.3.x86_64.rpm
fence-virtd-multicast-4.10.0-110.el9_8.3.x86_64.rpm
fence-virtd-serial-4.10.0-110.el9_8.3.x86_64.rpm
fence-virtd-tcp-4.10.0-110.el9_8.3.x86_64.rpm
ha-cloud-support-4.10.0-110.el9_8.3.x86_64.rpm

aarch64:
fence-agents-all-4.10.0-110.el9_8.3.aarch64.rpm
fence-agents-amt-ws-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-apc-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-apc-snmp-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-bladecenter-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-brocade-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-cisco-mds-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-cisco-ucs-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-common-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-drac5-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-eaton-snmp-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-emerson-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-eps-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-heuristics-ping-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-hpblade-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ibm-powervs-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ibm-vpc-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ibmblade-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ifmib-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ilo-moonshot-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ilo-mp-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ilo-ssh-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ilo2-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-intelmodular-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ipdu-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-ipmilan-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-kdump-4.10.0-110.el9_8.3.aarch64.rpm
fence-agents-kubevirt-4.10.0-110.el9_8.3.aarch64.rpm
fence-agents-lpar-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-mpath-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-nutanix-ahv-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-redfish-4.10.0-110.el9_8.3.aarch64.rpm
fence-agents-rhevm-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-rsa-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-rsb-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-sbd-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-scsi-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-virsh-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-vmware-rest-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-vmware-soap-4.10.0-110.el9_8.3.noarch.rpm
fence-agents-wti-4.10.0-110.el9_8.3.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/fence-agents-4.10.0-110.el9_8.3.src.rpm

Related CVEs:

CVE-2026-26007
CVE-2026-30922
CVE-2026-32597

Description of changes:

[4.10.0-110.3]
- bundled PyJWT: upgrade to v2.13.0 to fix CVE-2026-48526
Resolves: RHEL-182313

[4.10.0-110.2]
- bundled pyasn1: fix CVE-2026-30922
Resolves: RHEL-157202

[4.10.0-110.1]
- bundled cryptography: replace with dependency to fix CVE-2026-26007
- bundled PyJWT: upgrade to v2.12.1 to fix CVE-2026-32597
Resolves: RHEL-167241, RHEL-155676

ELSA-2026-25052 Moderate: Oracle Linux 9 mysql:8.4 security update

Oracle Linux Security Advisory ELSA-2026-25052

http://linux.oracle.com/errata/ELSA-2026-25052.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mecab-0.996-3.module+el9.8.0+90919+3e0d08f6.4.x86_64.rpm
mecab-devel-0.996-3.module+el9.8.0+90919+3e0d08f6.4.x86_64.rpm
mecab-ipadic-2.7.0.20070801-24.0.1.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
mecab-ipadic-EUCJP-2.7.0.20070801-24.0.1.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
mysql-8.4.9-1.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
mysql-common-8.4.9-1.module+el9.8.0+90919+3e0d08f6.noarch.rpm
mysql-devel-8.4.9-1.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
mysql-errmsg-8.4.9-1.module+el9.8.0+90919+3e0d08f6.noarch.rpm
mysql-libs-8.4.9-1.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
mysql-server-8.4.9-1.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
mysql-test-8.4.9-1.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
mysql-test-data-8.4.9-1.module+el9.8.0+90919+3e0d08f6.noarch.rpm
perl-DBD-MySQL-4.053-3.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
rapidjson-devel-1.1.0-19.module+el9.8.0+90919+3e0d08f6.x86_64.rpm
rapidjson-doc-1.1.0-19.module+el9.8.0+90919+3e0d08f6.noarch.rpm

aarch64:
mecab-0.996-3.module+el9.8.0+90919+3e0d08f6.4.aarch64.rpm
mecab-devel-0.996-3.module+el9.8.0+90919+3e0d08f6.4.aarch64.rpm
mecab-ipadic-2.7.0.20070801-24.0.1.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
mecab-ipadic-EUCJP-2.7.0.20070801-24.0.1.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
mysql-8.4.9-1.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
mysql-common-8.4.9-1.module+el9.8.0+90919+3e0d08f6.noarch.rpm
mysql-devel-8.4.9-1.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
mysql-errmsg-8.4.9-1.module+el9.8.0+90919+3e0d08f6.noarch.rpm
mysql-libs-8.4.9-1.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
mysql-server-8.4.9-1.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
mysql-test-8.4.9-1.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
mysql-test-data-8.4.9-1.module+el9.8.0+90919+3e0d08f6.noarch.rpm
perl-DBD-MySQL-4.053-3.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
rapidjson-devel-1.1.0-19.module+el9.8.0+90919+3e0d08f6.aarch64.rpm
rapidjson-doc-1.1.0-19.module+el9.8.0+90919+3e0d08f6.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/mecab-0.996-3.module+el9.8.0+90919+3e0d08f6.4.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/mecab-ipadic-2.7.0.20070801-24.0.1.module+el9.8.0+90919+3e0d08f6.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/mysql-8.4.9-1.module+el9.8.0+90919+3e0d08f6.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/perl-DBD-MySQL-4.053-3.module+el9.8.0+90919+3e0d08f6.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/rapidjson-1.1.0-19.module+el9.8.0+90919+3e0d08f6.src.rpm

Related CVEs:

CVE-2026-21998
CVE-2026-22001
CVE-2026-22002
CVE-2026-22004
CVE-2026-22005
CVE-2026-22009
CVE-2026-22015
CVE-2026-22017
CVE-2026-34270
CVE-2026-34271
CVE-2026-34276
CVE-2026-34303
CVE-2026-34304
CVE-2026-34308
CVE-2026-35236
CVE-2026-35237
CVE-2026-35238
CVE-2026-35239
CVE-2026-35240

Description of changes:

mecab
[0.996-3.4]
- Bump version for package rebuild
We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'CRB' repo
- Resolves: #2182069

[0.996-3.3]
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688

[0.996-3.2]
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937

mecab-ipadic
[2.7.0.20070801-24.0.1]
- Rename the LICENSE.Fedora to LICENSE.oracle

[2.7.0.20070801-24]
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688

[2.7.0.20070801-23]
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937

[2.7.0.20070801-22]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

[2.7.0.20070801-21]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[2.7.0.20070801-20]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild

mysql
[8.4.9-1]
- Rebase to 8.4.9

perl-DBD-MySQL
[4.053-3]
- Resolves: RHEL-132443
- Skip the ssl tests if MySQL does not provide have_ssl

[4.053-2]
- Resolves: RHEL-123525
- Fix MYSQL OPT_RECONNECT warning

[4.053-1]
- Resolves: RHEL-53861, RHEL-77083
- Update check for SSL connection
- Enable testing

rapidjson
[1.1.0-19]
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688

[1.1.0-18]
- Remove gtest dependency and turn off tests
Resolves: #1977656

[1.1.0-17]
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937

[1.1.0-16]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild

[1.1.0-15]
- Add patch for C++20 support

[1.1.0-14]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild

[1.1.0-13]
- Install pkg-config and cmake files to arched location
- Build documentation as noarch

[1.1.0-12]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild

ELSA-2026-24367 Important: Oracle Linux 9 bind security update

Oracle Linux Security Advisory ELSA-2026-24367

http://linux.oracle.com/errata/ELSA-2026-24367.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bind-9.16.23-40.0.1.el9_8.2.x86_64.rpm
bind-chroot-9.16.23-40.0.1.el9_8.2.x86_64.rpm
bind-devel-9.16.23-40.0.1.el9_8.2.i686.rpm
bind-devel-9.16.23-40.0.1.el9_8.2.x86_64.rpm
bind-dnssec-doc-9.16.23-40.0.1.el9_8.2.noarch.rpm
bind-dnssec-utils-9.16.23-40.0.1.el9_8.2.x86_64.rpm
bind-doc-9.16.23-40.0.1.el9_8.2.noarch.rpm
bind-libs-9.16.23-40.0.1.el9_8.2.i686.rpm
bind-libs-9.16.23-40.0.1.el9_8.2.x86_64.rpm
bind-license-9.16.23-40.0.1.el9_8.2.noarch.rpm
bind-utils-9.16.23-40.0.1.el9_8.2.x86_64.rpm
python3-bind-9.16.23-40.0.1.el9_8.2.noarch.rpm

aarch64:
bind-9.16.23-40.0.1.el9_8.2.aarch64.rpm
bind-chroot-9.16.23-40.0.1.el9_8.2.aarch64.rpm
bind-devel-9.16.23-40.0.1.el9_8.2.aarch64.rpm
bind-dnssec-doc-9.16.23-40.0.1.el9_8.2.noarch.rpm
bind-dnssec-utils-9.16.23-40.0.1.el9_8.2.aarch64.rpm
bind-doc-9.16.23-40.0.1.el9_8.2.noarch.rpm
bind-libs-9.16.23-40.0.1.el9_8.2.aarch64.rpm
bind-license-9.16.23-40.0.1.el9_8.2.noarch.rpm
bind-utils-9.16.23-40.0.1.el9_8.2.aarch64.rpm
python3-bind-9.16.23-40.0.1.el9_8.2.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/bind-9.16.23-40.0.1.el9_8.2.src.rpm

Related CVEs:

CVE-2026-3039
CVE-2026-5946

Description of changes:

[9.16.23-40.0.1.el9_8.2]
- Fix warning when changing device file permissions [Orabug: 36518580]

[32:9.16.23-40.2]
- Fix GSS-API resource leak (CVE-2026-3039)
- Invalid handling of CLASS != IN (CVE-2026-5946)

[32:9.16.23-40.1]
- Prevent Denial of Service via maliciously crafted DNSSEC-validated zone
(CVE-2026-1519)

ELBA-2026-24588 Oracle Linux 9 sos bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-24588

http://linux.oracle.com/errata/ELBA-2026-24588.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
sos-4.11.0-1.0.1.el9_8.noarch.rpm
sos-audit-4.11.0-1.0.1.el9_8.noarch.rpm

aarch64:
sos-4.11.0-1.0.1.el9_8.noarch.rpm
sos-audit-4.11.0-1.0.1.el9_8.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/sos-4.11.0-1.0.1.el9_8.src.rpm

Description of changes:

[4.11.0-1.0.1]
- Add optional proc/ and sys/ regular file de-duplication step and reduplication binary [Orabug: 38765115]
- Add kvm debugfs to sosreport [Orabug: 39073001]
- Add qtree,pci,numa command to virsh-qemu-monitor command [Orabug: 38608068]
- Disable all upload options [Orabug: 37845593]
- Add Keyboard exception handler to collector [Orabug: 37854316]
- Print stack of all un-interrupted process [Orabug: 37713383]
- Update the enabled and skipped plugins lists to match ExaData's
requirements. [Orabug: 37440321]
- os detect string [Orabug: 28674897]
- Disable upload options [Orabug: 31969352]
- Disable upload-option to sos report collector [Orabug: 36068606]
- Add irq debugfs to sosreport [Orabug: 36511145]
- Adding socket statistics command output [Orabug: 36594481]
- Remove file type check and append string to file name [Orabug: 37241057]
- Remove rpc_clnt directory from sunrpc debugfs [Orabug: 37129232]
- Disable ethtool EEPROM dump for link down interfaces [Orabug: 37129428]
- Modify sos.spec to make python3-file-magic as dependency for sos package [Orabug: 36834417]
- Append .txt extension to files rejected by MOS policy [Orabug: 36727763]
- Collecting last 50k lines of ftrace file trace [Orabug: 36590767]
- Adding socket statistics command output [Orabug: 36594481]
- Add IO queue depth of all the devices on node [Orabug: 36594679]
- Disable upload option to sos report collector [Orabug: 36068606]
- Add irq debugfs to sosreport [Orabug: 36511145]
- Collect all rsyslogs files for all-logs option [Orabug: 36402382]
- Set SIGPIPE to default action for Broken Pipe Error [Orabug: 35969973]
- Modifying dnf history info transaction index [Orabug: 35497720]
- Adding virsh guest cgroup configuration [Orabug: 35145501]
- Adding virsh qemu-monitor info tree command [Orabug: 35148435]
- Adding Plugin option support for ksplice and btrfs [Orabug: 35115193]
- append .txt to .com domain named files [Orabug: 34527958]
- Adding dmesg -T to show timestamp for syslog comparison [Orabug: 34250313]
- Adding uptrack-uname to show effective ksplice kernel version [Orabug: 33553351]
- Added sos-oraclelinux-vendor-vendorurl.patch
- Fix patch for Orabug 31969352 [Orabug: 32822570]
- [ovn_central] call podman exec without a timeout
Resolves: bz1767359
- Adjusted ksplice plugin patches for path change [Orabug: 32881277]
- Fix os detect string for Oracle Linux [Orabug: 28674897]
- Add ksplice plugin [Orabug: 30273666] (Philippe Vanhaesendonck)
- Disable upload options for OracleLinux [Orabug: 31969352]
- Replace RH_FTP_HOST and RH_API_HOST with "_none_" [Orabug: 31975601]
- Allow a journal log size to be smaller than 100M [Orabug: 32454362]
- Do not exit on unknown plugin [Orabug: 32556170]
- Add in some btrfs commands [Orabug: 32727607]
- Add /var/run/ksplice/debug to sos ksplice plugin [Orabug: 32618933]
- Fix ksplice plugin does not show description [Orabug: 32886513]

[= 4.11.0-1]
- Update to 4.11.0-1
Resolves: RHEL-157817

ELSA-2026-26445 Important: Oracle Linux 9 podman security update

Oracle Linux Security Advisory ELSA-2026-26445

http://linux.oracle.com/errata/ELSA-2026-26445.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
podman-5.8.2-3.0.1.el9_8.x86_64.rpm
podman-docker-5.8.2-3.0.1.el9_8.noarch.rpm
podman-plugins-5.8.2-3.0.1.el9_8.x86_64.rpm
podman-remote-5.8.2-3.0.1.el9_8.x86_64.rpm
podman-tests-5.8.2-3.0.1.el9_8.x86_64.rpm

aarch64:
podman-5.8.2-3.0.1.el9_8.aarch64.rpm
podman-docker-5.8.2-3.0.1.el9_8.noarch.rpm
podman-plugins-5.8.2-3.0.1.el9_8.aarch64.rpm
podman-remote-5.8.2-3.0.1.el9_8.aarch64.rpm
podman-tests-5.8.2-3.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/podman-5.8.2-3.0.1.el9_8.src.rpm

Related CVEs:

CVE-2026-25679

Description of changes:

[5.8.2-3.0.1]
- Rework CNI/Netavark detection logic [JIRA: EVG-3769]
- Rebuild on new golang to support experimental GODEBUG fipsnoenforceems
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404]

[6:5.8.2-3]
- Rebuild for CVE-2026-32283
- Resolves: RHEL-167685

[6:5.8.2-2]
- Rebuild for CVE-2026-25679
- Resolves: RHEL-158781

ELSA-2026-21293 Important: Oracle Linux 9 .NET 8.0 security update

Oracle Linux Security Advisory ELSA-2026-21293

http://linux.oracle.com/errata/ELSA-2026-21293.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-8.0-8.0.28-1.0.1.el9_8.x86_64.rpm
aspnetcore-runtime-dbg-8.0-8.0.28-1.0.1.el9_8.x86_64.rpm
aspnetcore-targeting-pack-8.0-8.0.28-1.0.1.el9_8.x86_64.rpm
dotnet-apphost-pack-8.0-8.0.28-1.0.1.el9_8.x86_64.rpm
dotnet-hostfxr-8.0-8.0.28-1.0.1.el9_8.x86_64.rpm
dotnet-runtime-8.0-8.0.28-1.0.1.el9_8.x86_64.rpm
dotnet-runtime-dbg-8.0-8.0.28-1.0.1.el9_8.x86_64.rpm
dotnet-sdk-8.0-8.0.128-1.0.1.el9_8.x86_64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.128-1.0.1.el9_8.x86_64.rpm
dotnet-sdk-dbg-8.0-8.0.128-1.0.1.el9_8.x86_64.rpm
dotnet-targeting-pack-8.0-8.0.28-1.0.1.el9_8.x86_64.rpm
dotnet-templates-8.0-8.0.128-1.0.1.el9_8.x86_64.rpm

aarch64:
aspnetcore-runtime-8.0-8.0.28-1.0.1.el9_8.aarch64.rpm
aspnetcore-runtime-dbg-8.0-8.0.28-1.0.1.el9_8.aarch64.rpm
aspnetcore-targeting-pack-8.0-8.0.28-1.0.1.el9_8.aarch64.rpm
dotnet-apphost-pack-8.0-8.0.28-1.0.1.el9_8.aarch64.rpm
dotnet-hostfxr-8.0-8.0.28-1.0.1.el9_8.aarch64.rpm
dotnet-runtime-8.0-8.0.28-1.0.1.el9_8.aarch64.rpm
dotnet-runtime-dbg-8.0-8.0.28-1.0.1.el9_8.aarch64.rpm
dotnet-sdk-8.0-8.0.128-1.0.1.el9_8.aarch64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.128-1.0.1.el9_8.aarch64.rpm
dotnet-sdk-dbg-8.0-8.0.128-1.0.1.el9_8.aarch64.rpm
dotnet-targeting-pack-8.0-8.0.28-1.0.1.el9_8.aarch64.rpm
dotnet-templates-8.0-8.0.128-1.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/dotnet8.0-8.0.128-1.0.1.el9_8.src.rpm

Related CVEs:

CVE-2026-34043
CVE-2026-42899

Description of changes:

[8.0.128-1.0.1]
- Add support for Oracle Linux

[8.0.128-1]
- Update to .NET SDK 8.0.128 and Runtime 8.0.28
- Resolves: RHEL-181055

[8.0.127-1]
- Update to .NET SDK 8.0.127 and Runtime 8.0.27
- Resolves: RHEL-173923

ELBA-2026-28241 Oracle Linux 9 gnome-shell bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-28241

http://linux.oracle.com/errata/ELBA-2026-28241.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
gnome-shell-40.10-35.el9_8.1.x86_64.rpm

aarch64:
gnome-shell-40.10-35.el9_8.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/gnome-shell-40.10-35.el9_8.1.src.rpm

Description of changes:

[40.10-35.1]
- triggering a new build in correct target
Resolves: RHEL-178703

[40.10-35]
- Update fix of registering session
Registering the display is needed too
Resolves: RHEL-178703

ELSA-2026-24371 Important: Oracle Linux 9 frr security update

Oracle Linux Security Advisory ELSA-2026-24371

http://linux.oracle.com/errata/ELSA-2026-24371.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
frr-8.5.3-13.el9_8.x86_64.rpm
frr-selinux-8.5.3-13.el9_8.noarch.rpm

aarch64:
frr-8.5.3-13.el9_8.aarch64.rpm
frr-selinux-8.5.3-13.el9_8.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/frr-8.5.3-13.el9_8.src.rpm

Related CVEs:

CVE-2026-37457

Description of changes:

[8.5.3-13]
- Resolves: RHEL-174677 - denial of service via crafted FlowSpec component

ELSA-2026-26533 Important: Oracle Linux 9 dracut security update

Oracle Linux Security Advisory ELSA-2026-26533

http://linux.oracle.com/errata/ELSA-2026-26533.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
dracut-057-115.git20260527.0.1.el9_8.x86_64.rpm
dracut-caps-057-115.git20260527.0.1.el9_8.x86_64.rpm
dracut-config-generic-057-115.git20260527.0.1.el9_8.x86_64.rpm
dracut-config-rescue-057-115.git20260527.0.1.el9_8.x86_64.rpm
dracut-live-057-115.git20260527.0.1.el9_8.x86_64.rpm
dracut-network-057-115.git20260527.0.1.el9_8.x86_64.rpm
dracut-squash-057-115.git20260527.0.1.el9_8.x86_64.rpm
dracut-tools-057-115.git20260527.0.1.el9_8.x86_64.rpm

aarch64:
dracut-057-115.git20260527.0.1.el9_8.aarch64.rpm
dracut-caps-057-115.git20260527.0.1.el9_8.aarch64.rpm
dracut-config-generic-057-115.git20260527.0.1.el9_8.aarch64.rpm
dracut-config-rescue-057-115.git20260527.0.1.el9_8.aarch64.rpm
dracut-live-057-115.git20260527.0.1.el9_8.aarch64.rpm
dracut-network-057-115.git20260527.0.1.el9_8.aarch64.rpm
dracut-squash-057-115.git20260527.0.1.el9_8.aarch64.rpm
dracut-tools-057-115.git20260527.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/dracut-057-115.git20260527.0.1.el9_8.src.rpm

Related CVEs:

CVE-2026-6893

Description of changes:

[057-115.git20260527.0.1]
- Skip the default FIPS logic on special UEK kernels where the FIPS module is linked directly into the kernel. [Orabug: 38705580]
- Ship Oracle IMA certificate [Orabug: 35992862]
- Ship 98-integrity.conf, populating initramfs with Oracle IMA certificate [Orabug: 35992862]
- Include sys-fs-fuse-connections.mount if needed [Orabug: 35267570]
- network-legacy: Revert some shellcheck that breaks parse_option_121 in dhclient [Orabug: 33778173]
- Change installation dir in network legacy module-setup so that file is never missing [Orabug: 33516170]
- Fix paths in squash module, so that correct modprobe is installed [Orabug: 33514517]
- Install missing 68-del-part-node.rules [Orabug: 32827579]
- Fix permission denied error while upgrading from OL8u2 to OL8u3 [Orabug 32160196]
- dracut-shutdown.service should run before shutdown.target is invoked [Orabug: 29629738]
- Update list of necessary files after squashfs execution [Orabug: 29864620]
- Supress iscsidm error output during non-debug PV boot [Orabug: 29846195]
- Stop block device service in case system is dropped to emergency shell [Orabug: 29851988]
- Enable booting from block device if netroot=iscsi has failed [Orabug: 29478156]
- Calculate relative path for kernel and initrd in 51-dracut-rescue.instal [Orabug: 29503293]
- 40network scripts ifup and netlib updates for iSCSI [Orabug: 28502725]
- Increase timeout when waiting for carrier detection on a network interface [Orabug: 24657828] (kevin.x.lyons@oracle.com)
- add hyperv-keyboard for Hyper-V Gen2 VM [Orabug: 19191303] (Vaughan Cao)

[057-115.git20260527]
- build: rebuild without an obsoleted patch

[057-115.git20260514]
- fix(network): warn on suspicious shell metacharacters in
- fix(base): escape arguments in initqueue hook script
Related: RHEL-170857

[057-113.git20260502]
- fix(network-legacy): replace echo writes with printf to
- fix(iscsi): replace echo writes with printf to prevent
- fix(base): replace eval with safe variable indirection in
Resolves: RHEL-170857

ELSA-2026-28254 Low: Oracle Linux 9 libxml2 security update

Oracle Linux Security Advisory ELSA-2026-28254

http://linux.oracle.com/errata/ELSA-2026-28254.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libxml2-2.9.13-14.el9_8.1.i686.rpm
libxml2-2.9.13-14.el9_8.1.x86_64.rpm
libxml2-devel-2.9.13-14.el9_8.1.i686.rpm
libxml2-devel-2.9.13-14.el9_8.1.x86_64.rpm
python3-libxml2-2.9.13-14.el9_8.1.x86_64.rpm

aarch64:
libxml2-2.9.13-14.el9_8.1.aarch64.rpm
libxml2-devel-2.9.13-14.el9_8.1.aarch64.rpm
python3-libxml2-2.9.13-14.el9_8.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libxml2-2.9.13-14.el9_8.1.src.rpm

Related CVEs:

CVE-2024-34459

Description of changes:

[2.9.13-14.1]
- Fix CVE-2024-34459 (RHEL-177882)

ELBA-2026-28250 Oracle Linux 9 libusbx bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-28250

http://linux.oracle.com/errata/ELBA-2026-28250.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libusbx-1.0.30-1.el9_8.i686.rpm
libusbx-1.0.30-1.el9_8.x86_64.rpm
libusbx-devel-1.0.30-1.el9_8.i686.rpm
libusbx-devel-1.0.30-1.el9_8.x86_64.rpm

aarch64:
libusbx-1.0.30-1.el9_8.aarch64.rpm
libusbx-devel-1.0.30-1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libusbx-1.0.30-1.el9_8.src.rpm

Description of changes:

[1.0.30-1]
- Update to upstream version 1.0.30 to include the major bug fixes
- Include the necessary API for fwupd backporting to RHEL9.
Resolves: RHEL-183213

ELSA-2026-19361 Moderate: Oracle Linux 9 glib2 security update

Oracle Linux Security Advisory ELSA-2026-19361

http://linux.oracle.com/errata/ELSA-2026-19361.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
glib2-2.68.4-19.el9_8.1.i686.rpm
glib2-2.68.4-19.el9_8.1.x86_64.rpm
glib2-devel-2.68.4-19.el9_8.1.i686.rpm
glib2-devel-2.68.4-19.el9_8.1.x86_64.rpm
glib2-doc-2.68.4-19.el9_8.1.noarch.rpm
glib2-static-2.68.4-19.el9_8.1.i686.rpm
glib2-static-2.68.4-19.el9_8.1.x86_64.rpm
glib2-tests-2.68.4-19.el9_8.1.x86_64.rpm

aarch64:
glib2-2.68.4-19.el9_8.1.aarch64.rpm
glib2-devel-2.68.4-19.el9_8.1.aarch64.rpm
glib2-doc-2.68.4-19.el9_8.1.noarch.rpm
glib2-static-2.68.4-19.el9_8.1.aarch64.rpm
glib2-tests-2.68.4-19.el9_8.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/glib2-2.68.4-19.el9_8.1.src.rpm

Related CVEs:

CVE-2025-14087
CVE-2025-14512

Description of changes:

[2.68.4-19.1]
- Add patch for CVE-2025-14087 and CVE-2025-14512

ELSA-2026-29940 Important: Oracle Linux 9 thunderbird security update

Oracle Linux Security Advisory ELSA-2026-29940

http://linux.oracle.com/errata/ELSA-2026-29940.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
thunderbird-140.12.0-1.0.1.el9_8.x86_64.rpm

aarch64:
thunderbird-140.12.0-1.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/thunderbird-140.12.0-1.0.1.el9_8.src.rpm

Related CVEs:

CVE-2026-12289
CVE-2026-12290
CVE-2026-12291
CVE-2026-12292
CVE-2026-12294
CVE-2026-12295
CVE-2026-12296
CVE-2026-12297
CVE-2026-12298
CVE-2026-12299
CVE-2026-12302
CVE-2026-12304
CVE-2026-12305
CVE-2026-12306
CVE-2026-12307
CVE-2026-12308
CVE-2026-12309
CVE-2026-12310
CVE-2026-12311
CVE-2026-12312
CVE-2026-12313
CVE-2026-12314
CVE-2026-12315
CVE-2026-12324
CVE-2026-12325
CVE-2026-12327
CVE-2026-12328
CVE-2026-12329
CVE-2026-12330

Description of changes:

[140.12.0-1.0.1]
- Fix prefs for new nss [Orabug: 37079813]
- Add Oracle prefs

[140.12.0]
- Add OpenELA debranding

[140.12.0-1]
- Update to 140.12.0 ESR

ELBA-2026-28252 Oracle Linux 9 man-pages bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-28252

http://linux.oracle.com/errata/ELBA-2026-28252.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
man-pages-6.04-10.el9_8.noarch.rpm

aarch64:
man-pages-6.04-10.el9_8.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/man-pages-6.04-10.el9_8.src.rpm

Description of changes:

[6.04-10]
- suffixes(7): Add zstd format to the suffixes file
- core(5): Document dump file format change from lz4 format to zstd format
Resolves: RHEL-152440

ELBA-2026-25054 Oracle Linux 9 python3.14 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-25054

http://linux.oracle.com/errata/ELBA-2026-25054.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.14-3.14.4-3.el9_8.i686.rpm
python3.14-3.14.4-3.el9_8.x86_64.rpm
python3.14-debug-3.14.4-3.el9_8.i686.rpm
python3.14-debug-3.14.4-3.el9_8.x86_64.rpm
python3.14-devel-3.14.4-3.el9_8.i686.rpm
python3.14-devel-3.14.4-3.el9_8.x86_64.rpm
python3.14-freethreading-3.14.4-3.el9_8.i686.rpm
python3.14-freethreading-3.14.4-3.el9_8.x86_64.rpm
python3.14-freethreading-debug-3.14.4-3.el9_8.i686.rpm
python3.14-freethreading-debug-3.14.4-3.el9_8.x86_64.rpm
python3.14-freethreading-devel-3.14.4-3.el9_8.i686.rpm
python3.14-freethreading-devel-3.14.4-3.el9_8.x86_64.rpm
python3.14-freethreading-idle-3.14.4-3.el9_8.i686.rpm
python3.14-freethreading-idle-3.14.4-3.el9_8.x86_64.rpm
python3.14-freethreading-libs-3.14.4-3.el9_8.i686.rpm
python3.14-freethreading-libs-3.14.4-3.el9_8.x86_64.rpm
python3.14-freethreading-test-3.14.4-3.el9_8.i686.rpm
python3.14-freethreading-test-3.14.4-3.el9_8.x86_64.rpm
python3.14-freethreading-tkinter-3.14.4-3.el9_8.i686.rpm
python3.14-freethreading-tkinter-3.14.4-3.el9_8.x86_64.rpm
python3.14-idle-3.14.4-3.el9_8.i686.rpm
python3.14-idle-3.14.4-3.el9_8.x86_64.rpm
python3.14-libs-3.14.4-3.el9_8.i686.rpm
python3.14-libs-3.14.4-3.el9_8.x86_64.rpm
python3.14-test-3.14.4-3.el9_8.i686.rpm
python3.14-test-3.14.4-3.el9_8.x86_64.rpm
python3.14-tkinter-3.14.4-3.el9_8.i686.rpm
python3.14-tkinter-3.14.4-3.el9_8.x86_64.rpm

aarch64:
python3.14-3.14.4-3.el9_8.aarch64.rpm
python3.14-debug-3.14.4-3.el9_8.aarch64.rpm
python3.14-devel-3.14.4-3.el9_8.aarch64.rpm
python3.14-freethreading-3.14.4-3.el9_8.aarch64.rpm
python3.14-freethreading-debug-3.14.4-3.el9_8.aarch64.rpm
python3.14-freethreading-devel-3.14.4-3.el9_8.aarch64.rpm
python3.14-freethreading-idle-3.14.4-3.el9_8.aarch64.rpm
python3.14-freethreading-libs-3.14.4-3.el9_8.aarch64.rpm
python3.14-freethreading-test-3.14.4-3.el9_8.aarch64.rpm
python3.14-freethreading-tkinter-3.14.4-3.el9_8.aarch64.rpm
python3.14-idle-3.14.4-3.el9_8.aarch64.rpm
python3.14-libs-3.14.4-3.el9_8.aarch64.rpm
python3.14-test-3.14.4-3.el9_8.aarch64.rpm
python3.14-tkinter-3.14.4-3.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.14-3.14.4-3.el9_8.src.rpm

Description of changes:

[3.14.4-3]
- Depend on sqlite-libs with (de)serialize API
Resolves: RHEL-180476

ELSA-2026-27789 Important: Oracle Linux 9 kernel security, bug fix, and enhancement update

Oracle Linux Security Advisory ELSA-2026-27789

http://linux.oracle.com/errata/ELSA-2026-27789.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-abi-stablelists-5.14.0-687.17.1.el9_8.noarch.rpm
kernel-core-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-cross-headers-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-debug-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-debug-core-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-debug-devel-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-debug-devel-matched-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-debug-modules-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-debug-modules-core-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-debug-modules-extra-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-debug-uki-virt-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-devel-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-devel-matched-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-doc-5.14.0-687.17.1.el9_8.noarch.rpm
kernel-headers-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-modules-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-modules-core-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-modules-extra-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-tools-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-tools-libs-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-tools-libs-devel-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-uki-virt-5.14.0-687.17.1.el9_8.x86_64.rpm
kernel-uki-virt-addons-5.14.0-687.17.1.el9_8.x86_64.rpm
libperf-5.14.0-687.17.1.el9_8.x86_64.rpm
perf-5.14.0-687.17.1.el9_8.x86_64.rpm
python3-perf-5.14.0-687.17.1.el9_8.x86_64.rpm
rtla-5.14.0-687.17.1.el9_8.x86_64.rpm
rv-5.14.0-687.17.1.el9_8.x86_64.rpm

aarch64:
kernel-cross-headers-5.14.0-687.17.1.el9_8.aarch64.rpm
kernel-headers-5.14.0-687.17.1.el9_8.aarch64.rpm
kernel-tools-5.14.0-687.17.1.el9_8.aarch64.rpm
kernel-tools-libs-5.14.0-687.17.1.el9_8.aarch64.rpm
kernel-tools-libs-devel-5.14.0-687.17.1.el9_8.aarch64.rpm
libperf-5.14.0-687.17.1.el9_8.aarch64.rpm
perf-5.14.0-687.17.1.el9_8.aarch64.rpm
python3-perf-5.14.0-687.17.1.el9_8.aarch64.rpm
rtla-5.14.0-687.17.1.el9_8.aarch64.rpm
rv-5.14.0-687.17.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-687.17.1.el9_8.src.rpm

Related CVEs:

CVE-2026-31474
CVE-2026-31669
CVE-2026-31772
CVE-2026-31787
CVE-2026-43260
CVE-2026-43279
CVE-2026-43414
CVE-2026-45984
CVE-2026-46056
CVE-2026-46117
CVE-2026-46125
CVE-2026-46135
CVE-2026-46145
CVE-2026-46152
CVE-2026-46166
CVE-2026-46173
CVE-2026-46331

Description of changes:

[5.14.0-687.17.1]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 cb[] in ip4ip6_err() (Guillaume Nault) [RHEL-172646] {CVE-2026-43037}
- net: openvswitch: Avoid releasing netdev before teardown completes (CKI Backport Bot) [RHEL-170539] {CVE-2026-31508}

[5.14.0-687.14.1]
- RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() (Kamal Heib) [RHEL-179988] {CVE-2026-46181}
- redhat: Remove the mlx5 symbols from kabi (Kamal Heib) [RHEL-181822]
- ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (Antoine Tenart) [RHEL-178408] {CVE-2026-43501}
- RDMA/rxe: Fix double free in rxe_srq_from_init (CKI Backport Bot) [RHEL-179712] {CVE-2026-45852}
- netfilter: ctnetlink: ensure safe access to master conntrack (Florian Westphal) [RHEL-173843] {CVE-2026-43116}
- ice: fix stats array overflow when VF requests more queues (Michal Schmidt) [RHEL-177526]
- ice: set max queues in alloc_etherdev_mqs() (Michal Schmidt) [RHEL-174336]
- ice: use netif_get_num_default_rss_queues() (Michal Schmidt) [RHEL-174336]
- ice: set default rss queues num to physical cores / 2 (Michal Schmidt) [RHEL-174336]
- dlm: fix buffer overflow from negative len in dlm_search_rsb_tree (Alexander Aring) [RHEL-173993] {CVE-2026-43125}
- dlm: validate length in dlm_search_rsb_tree (Alexander Aring) [RHEL-173993] {CVE-2026-43125}
- dpll: zl3073x: add ref-sync pair support (Ivan Vecera) [RHEL-167273]
- dpll: zl3073x: add ref sync and output clock type helpers (Ivan Vecera) [RHEL-167273]
- dpll: zl3073x: use FIELD_MODIFY() for clear-and-set patterns (Ivan Vecera) [RHEL-167273]
- dpll: zl3073x: clean up esync get/set and use zl3073x_out_is_ndiv() (Ivan Vecera) [RHEL-167273]
- dpll: zl3073x: implement frequency monitoring (Ivan Vecera) [RHEL-167833]
- dpll: add frequency monitoring callback ops (Ivan Vecera) [RHEL-167833]
- dpll: add frequency monitoring to netlink spec (Ivan Vecera) [RHEL-167833]
- dpll: zl3073x: drop selected and simplify connected ref getter (Ivan Vecera) [RHEL-172938]
- dpll: zl3073x: add reference priority to zl3073x_chan (Ivan Vecera) [RHEL-172938]
- dpll: zl3073x: add DPLL channel status fields to zl3073x_chan (Ivan Vecera) [RHEL-172938]
- dpll: zl3073x: introduce zl3073x_chan for DPLL channel state (Ivan Vecera) [RHEL-172938]
- dpll: zl3073x: add zl3073x_ref_state_update helper (Ivan Vecera) [RHEL-172938]
- dpll: zl3073x: use struct_group to partition states (Ivan Vecera) [RHEL-172938]
- dpll: zl3073x: add die temperature reporting for supported chips (Ivan Vecera) [RHEL-172938]
- dpll: zl3073x: detect DPLL channel count from chip ID at runtime (Ivan Vecera) [RHEL-172938]
- ALSA: 6fire: fix use-after-free on disconnect (CKI Backport Bot) [RHEL-172969] {CVE-2026-31581}
- net: mana: fix use-after-free in add_adev() error path (CKI Backport Bot) [RHEL-172768] {CVE-2026-43056}
- scsi: target: iscsi: Fix use-after-free in iscsit_dec_conn_usage_count() (CKI Backport Bot) [RHEL-165564] {CVE-2026-23216}
- net: bonding: fix use-after-free in bond_xmit_broadcast() (CKI Backport Bot) [RHEL-168068] {CVE-2026-31419}
- x86/kvm: Avoid freeing stack-allocated node in kvm_async_pf_queue_task (Ryosuke Yasuoka) [RHEL-158916]

[5.14.0-687.13.1]
- smb: client: reject userspace cifs.spnego descriptions (Paulo Alcantara) [RHEL-178944] {CVE-2026-46243}
- s390/dasd: Copy detected format information to secondary device (Ramesh Chhetri) [RHEL-176472]
- s390/dasd: Move quiesce state with pprc swap (Ramesh Chhetri) [RHEL-176472]
- s390/dasd: Fix gendisk parent after copy pair swap (Ramesh Chhetri) [RHEL-176472]
- nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl() (Ewan D. Milne) [RHEL-171745]
- nvme: nvme-fc: move tagset removal to nvme_fc_delete_ctrl() (Ewan D. Milne) [RHEL-171745]
- Buffer overflow in drivers/xen/sys-hypervisor.c (Vitaly Kuznetsov) [RHEL-172510] {CVE-2026-31786}
- crypto: authenc - Correctly pass EINPROGRESS back up to the caller (Vladislav Dronov) [RHEL-172167]
- crypto: authenc - Fix sleep in atomic context in decrypt_tail (Vladislav Dronov) [RHEL-172167]
- smb: client: fix OOB reads parsing symlink error response (CKI Backport Bot) [RHEL-171471] {CVE-2026-31613}
- mm/page_alloc: add vm.thp_thisnode_reclaim sysctl to allow THP reclaim on local node (Nico Pache) [RHEL-164778]
- mm/page_alloc: simplify __alloc_pages_slowpath() flow (Nico Pache) [RHEL-164778]
- mm/page_alloc: refactor the initial compaction handling (Nico Pache) [RHEL-164778]
- mm/page_alloc: ignore the exact initial compaction result (Nico Pache) [RHEL-164778]
- mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (Nico Pache) [RHEL-164778]
- mm/page_alloc.c: avoid infinite retries caused by cpuset race (Nico Pache) [RHEL-164778]
- mm: warn about illegal __GFP_NOFAIL usage in a more appropriate location and manner (Nico Pache) [RHEL-164778]
- mm: document __GFP_NOFAIL must be blockable (Nico Pache) [RHEL-164778]

[5.14.0-687.12.1]
- dm-thin: fix metadata refcount underflow (Benjamin Marzinski) [RHEL-169626]
- netfilter: xt_tcpmss: check remaining length before reading optlen (CKI Backport Bot) [RHEL-174216] {CVE-2026-43190}
- wifi: brcmfmac: validate bsscfg indices in IF events (CKI Backport Bot) [RHEL-173848] {CVE-2026-43110}
- Bluetooth: SCO: fix race conditions in sco_sock_connect() (CKI Backport Bot) [RHEL-172599] {CVE-2026-43023}
- Bluetooth: MGMT: validate LTK enc_size on load (CKI Backport Bot) [RHEL-172572] {CVE-2026-43020}
- crypto: tegra - Disable softirqs before finalizing request (CKI Backport Bot) [RHEL-170914]
- proc: fix type confusion in pde_set_flags() (Abhi Das) [RHEL-163343] {CVE-2025-38653}
- proc: fix missing pde_set_flags() for net proc files (Abhi Das) [RHEL-163343] {CVE-2025-38653}
- proc: use the same treatment to check proc_lseek as ones for proc_read_iter et.al (CKI Backport Bot) [RHEL-163343] {CVE-2025-38653}
- pNFS: fix a missing wake up while waiting on NFS_LAYOUT_DRAIN (Olga Kornievskaia) [RHEL-157470]

[5.14.0-687.11.1]
- mm/page_alloc: clear page->private in free_pages_prepare() (Rafael Aquini) [RHEL-174750] {CVE-2026-43303}
- ice: fix infinite recursion in ice_cfg_tx_topo via ice_init_dev_hw (CKI Backport Bot) [RHEL-175441]
- smb: client: validate dacloffset before building DACL pointers (Paulo Alcantara) [RHEL-172821]
- smb: client: use kzalloc to zero-initialize security descriptor buffer (Paulo Alcantara) [RHEL-172821]
- smb: client: scope end_of_dacl to CIFS_DEBUG2 use in parse_dacl (Paulo Alcantara) [RHEL-172821]
- smb: client: require a full NFS mode SID before reading mode bits (Paulo Alcantara) [RHEL-172821]
- smb: client: validate the whole DACL before rewriting it in cifsacl (Paulo Alcantara) [RHEL-172821] {CVE-2026-31709}
- Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold (David Marlin) [RHEL-165063] {CVE-2026-31408}
- xfs: fix freemap adjustments when adding xattrs to leaf blocks (CKI Backport Bot) [RHEL-174058] {CVE-2026-43158}
- xfs: delete attr leaf freemap entries when empty (CKI Backport Bot) [RHEL-174058] {CVE-2026-43158}
- redhat/configs: enable CONFIG_SCLP_OFB for s390x (Jan Polensky) [RHEL-172927]
- HID: wacom: fix out-of-bounds read in wacom_intuos_bt_irq (CKI Backport Bot) [RHEL-172740] {CVE-2026-43051}
- netfilter: nf_conntrack_helper: pass helper to expect cleanup (CKI Backport Bot) [RHEL-172620] {CVE-2026-43027}
- s390/pci: Avoid deadlock between PCI error recovery and mlx5 crdump (Ramesh Chhetri) [RHEL-166859]
- ice: add dpll peer notification for paired SMA and U.FL pins (Petr Oros) [RHEL-171829]
- ice: fix missing dpll notifications for SW pins (Petr Oros) [RHEL-171829]
- dpll: export __dpll_pin_change_ntf() for use under dpll_lock (Petr Oros) [RHEL-171829]
- ice: fix SMA and U.FL pin state changes affecting paired pin (Petr Oros) [RHEL-162179]
- ice: fix missing SMA pin initialization in DPLL subsystem (Petr Oros) [RHEL-171832]
- ice: fix NULL pointer dereference in ice_reset_all_vfs() (Petr Oros) [RHEL-172257]
- dpll: zl3073x: Remove redundant cleanup in devm_dpll_init() (CKI Backport Bot) [RHEL-164442]
- dpll: zl3073x: fix REF_PHASE_OFFSET_COMP register width for some chip IDs (CKI Backport Bot) [RHEL-164442]
- dpll: zl3073x: Fix ref frequency setting (CKI Backport Bot) [RHEL-164442]
- dpll: zl3073x: Include current frequency in supported frequencies list (CKI Backport Bot) [RHEL-164442]
- dpll: zl3073x: Add output pin frequency helper (CKI Backport Bot) [RHEL-164442]
- scsi: storvsc: Handle PERSISTENT_RESERVE_IN truncation for Hyper-V vFC (Vitaly Kuznetsov) [RHEL-171378]
- netfilter: ip6t_eui64: reject invalid MAC header for all packets (CKI Backport Bot) [RHEL-171155] {CVE-2026-31685}
- net: sched: act_csum: validate nested VLAN headers (CKI Backport Bot) [RHEL-171138] {CVE-2026-31684}
- cifs: make default value of retrans as zero (Paulo Alcantara) [RHEL-170960]
- ice: fix ice_ptp_read_tx_hwtstamp_status_eth56g (Petr Oros) [RHEL-170701]
- ice: fix ready bitmap check for non-E822 devices (Petr Oros) [RHEL-170701]
- ice: perform PHY soft reset for E825C ports at initialization (Petr Oros) [RHEL-170701]
- ice: fix timestamp interrupt configuration for E825C (Petr Oros) [RHEL-170701]
- drm/mgag200: fix mgag200_bmc_stop_scanout() (Jocelyn Falempe) [RHEL-150179]
- nbd: defer config unlock in nbd_genl_connect (Jeff Moyer) [RHEL-166950] {CVE-2025-68366}
- x86/mm: flush IOMMU before freeing kernel page table pages (Jerry Snitselaar) [RHEL-167100] {CVE-2025-71089}
- iommu/sva: add kernel page table IOTLB flush notification (Jerry Snitselaar) [RHEL-167100] {CVE-2025-71089}
- netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (CKI Backport Bot) [RHEL-166987] {CVE-2026-23455}
- crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id (CKI Backport Bot) [RHEL-166927] {CVE-2025-68724}
- ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (Bruno Meneguele) [RHEL-169734] {CVE-2025-68183}
- i2c: i801: Revert "i2c: i801: replace acpi_lock with I2C bus lock" (David Arcari) [RHEL-155312]
- ice: fix PTP timestamping broken by SyncE code on E825C (Petr Oros) [RHEL-162182]
- ice: fix missing TX timestamps interrupts on E825 devices (CKI Backport Bot) [RHEL-162185]
- Revert "mm: pcp: increase pcp->free_count threshold to trigger free_high" (Luiz Capitulino) [RHEL-163464]
- netfilter: nf_tables: release flowtable after rcu grace period on error (CKI Backport Bot) [RHEL-160461] {CVE-2026-23392}

[5.14.0-687.10.1]
- net: skbuff: propagate shared-frag marker through frag-transfer helpers (Sabrina Dubroca) [RHEL-176064] {CVE-2026-46300}
- net: move skb_gro_receive_list from udp to core (Sabrina Dubroca) [RHEL-176064] {CVE-2026-46300}
- net: skbuff: preserve shared-frag marker during coalescing (Sabrina Dubroca) [RHEL-176064] {CVE-2026-46300}
- ptrace: slightly saner 'get_dumpable()' logic (Ricardo Robaina) [RHEL-176454] {CVE-2026-46333}
- md/bitmap: fix GPF in write_page caused by resize race (Nigel Croxon) [RHEL-174091] {CVE-2026-43163}
- RDMA/umem: Fix double dma_buf_unpin in failure path (CKI Backport Bot) [RHEL-174020] {CVE-2026-43128}
- usbip: validate number_of_packets in usbip_pack_ret_submit() (CKI Backport Bot) [RHEL-171430] {CVE-2026-31607}
- can: raw: fix ro->uniq use-after-free in raw_rcv() (CKI Backport Bot) [RHEL-170759] {CVE-2026-31532}

[5.14.0-687.9.1]
- xfrm: esp: avoid in-place decrypt on shared skb frags (Sabrina Dubroca) [RHEL-174563] {CVE-2026-43284}

ELSA-2026-25925 Important: Oracle Linux 9 valkey security update

Oracle Linux Security Advisory ELSA-2026-25925

http://linux.oracle.com/errata/ELSA-2026-25925.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
valkey-8.0.9-1.el9_8.x86_64.rpm
valkey-devel-8.0.9-1.el9_8.x86_64.rpm

aarch64:
valkey-8.0.9-1.el9_8.aarch64.rpm
valkey-devel-8.0.9-1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/valkey-8.0.9-1.el9_8.src.rpm

Related CVEs:

CVE-2026-23479
CVE-2026-23631
CVE-2026-25243

Description of changes:

[8.0.9-1]
- Rebase to 8.0.9 for CVE-2026-23479 CVE-2026-25243 CVE-2026-23631

ELSA-2026-20612 Important: Oracle Linux 9 gnutls security update

Oracle Linux Security Advisory ELSA-2026-20612

http://linux.oracle.com/errata/ELSA-2026-20612.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
gnutls-3.8.10-4.el9_8.i686.rpm
gnutls-3.8.10-4.el9_8.x86_64.rpm
gnutls-c++-3.8.10-4.el9_8.i686.rpm
gnutls-c++-3.8.10-4.el9_8.x86_64.rpm
gnutls-dane-3.8.10-4.el9_8.i686.rpm
gnutls-dane-3.8.10-4.el9_8.x86_64.rpm
gnutls-devel-3.8.10-4.el9_8.i686.rpm
gnutls-devel-3.8.10-4.el9_8.x86_64.rpm
gnutls-utils-3.8.10-4.el9_8.x86_64.rpm

aarch64:
gnutls-3.8.10-4.el9_8.aarch64.rpm
gnutls-c++-3.8.10-4.el9_8.aarch64.rpm
gnutls-dane-3.8.10-4.el9_8.aarch64.rpm
gnutls-devel-3.8.10-4.el9_8.aarch64.rpm
gnutls-utils-3.8.10-4.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/gnutls-3.8.10-4.el9_8.src.rpm

Related CVEs:

CVE-2026-3832
CVE-2026-3833
CVE-2026-5260
CVE-2026-5419
CVE-2026-33845
CVE-2026-33846
CVE-2026-42009
CVE-2026-42010
CVE-2026-42011
CVE-2026-42012
CVE-2026-42013
CVE-2026-42014
CVE-2026-42015

Description of changes:

[3.8.10-4]
- Fix CVE-2026-33846 (DTLS fragment reassembly, High, heap overwrite)
- Fix CVE-2026-42009 (DTLS fragment reassembly, High, undefined behaviour)
- Fix CVE-2026-33845 (DTLS fragment reassembly, High, heap overread)
- Fix CVE-2026-42010 (PSK authentication, High, authentication bypass)
- Fix CVE-2026-3833 (Name constraints, Medium, name constraint bypass)
- Fix CVE-2026-42011 (Name constraints, Medium, name constraint bypass)
- Fix CVE-2026-42012 (CN fallback, Medium, certificate misuse)
- Fix CVE-2026-42013 (CN fallback, Medium, certificate misuse)
- Fix CVE-2026-42014 (PKCS#11 PIN change, Medium, use-after-free)
- Fix CVE-2026-5260 (PKCS#11 RSA, Medium, heap overread)
- Fix CVE-2026-42015 (PKCS#12 appending, Low, heap overwrite)
- Fix CVE-2026-3832 (OCSP, Low, revocation bypass)
- Fix CVE-2026-5419 (PKCS#7, Low, timing side-channel)
- Fix upstream security issue #1808 (PSK rehandshake)
- Fix upstream security issue #1810 (EKU OID prefix match)
- Fix upstream security issue #1813 (pkcs11-provider persistent keys)
- Fix upstream security issue #1818 (RSA correctness, OpenSSL format import)
- Fix upstream security issue #1819 (PKCS#11 trust removal error path)
- Fix upstream security issue #1822 (SCT extension parser OOB read)
- Fix upstream security issue #1841 (key zeroization in hybrid kex)
- Fix upstream security issue #1823 (malformed certtool template)
- Fix upstream security issue #1817 (session parameter loading robustness)
- Fix upstream security issue #1820 (PKCS#11 KDF succeeding w/o deriving)
- gnutls-3.8.10-CVE-2025-9820.patch: update Makefile.in

ELSA-2026-27734 Important: Oracle Linux 9 firefox security update

Oracle Linux Security Advisory ELSA-2026-27734

http://linux.oracle.com/errata/ELSA-2026-27734.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-140.12.0-1.0.1.el9_8.x86_64.rpm
firefox-x11-140.12.0-1.0.1.el9_8.x86_64.rpm

aarch64:
firefox-140.12.0-1.0.1.el9_8.aarch64.rpm
firefox-x11-140.12.0-1.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/firefox-140.12.0-1.0.1.el9_8.src.rpm

Related CVEs:

CVE-2026-12289
CVE-2026-12290
CVE-2026-12291
CVE-2026-12292
CVE-2026-12294
CVE-2026-12295
CVE-2026-12296
CVE-2026-12297
CVE-2026-12298
CVE-2026-12299
CVE-2026-12302
CVE-2026-12304
CVE-2026-12305
CVE-2026-12306
CVE-2026-12307
CVE-2026-12308
CVE-2026-12309
CVE-2026-12310
CVE-2026-12311
CVE-2026-12312
CVE-2026-12313
CVE-2026-12314
CVE-2026-12315
CVE-2026-12324
CVE-2026-12325
CVE-2026-12327
CVE-2026-12328
CVE-2026-12329
CVE-2026-12330

Description of changes:

[140.12.0-1.0.1]
- Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079773]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[140.12.0]
- Add debranding patches (Mustafa Gezen)
- Add OpenELA default preferences (Louis Abel)

[140.12.0-1]
- Update to 140.12.0 ESR

[140.11.0-1]
- Update to 140.11.0 ESR

[140.10.2-1]
- Update to 140.10.2 ESR

[140.10.1-1]
- Update to 140.10.1 ESR

ELSA-2026-26410 Important: Oracle Linux 9 rsync security update

Oracle Linux Security Advisory ELSA-2026-26410

http://linux.oracle.com/errata/ELSA-2026-26410.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
rsync-3.2.5-7.el9_8.2.x86_64.rpm
rsync-daemon-3.2.5-7.el9_8.2.noarch.rpm
rsync-rrsync-3.2.5-7.el9_8.2.noarch.rpm

aarch64:
rsync-3.2.5-7.el9_8.2.aarch64.rpm
rsync-daemon-3.2.5-7.el9_8.2.noarch.rpm
rsync-rrsync-3.2.5-7.el9_8.2.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/rsync-3.2.5-7.el9_8.2.src.rpm

Related CVEs:

CVE-2026-29518
CVE-2026-43618

Description of changes:

[3.2.5-7.2]
- Fix integer overflow in compressed-token decoding (CVE-2026-43618)
- Resolves: RHEL-174932

[3.2.5-7.1]
- Fix TOCTOU symlink race in daemon no-chroot mode (CVE-2026-29518)
- Resolves: RHEL-174952

[3.2.5-4]
- Resolves: RHEL-104404 - Do not clear DISPLAY unconditionally

ELSA-2026-22551 Moderate: Oracle Linux 9 mod_http2 security update

Oracle Linux Security Advisory ELSA-2026-22551

http://linux.oracle.com/errata/ELSA-2026-22551.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mod_http2-2.0.26-6.el9_8.1.x86_64.rpm

aarch64:
mod_http2-2.0.26-6.el9_8.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/mod_http2-2.0.26-6.el9_8.1.src.rpm

Related CVEs:

CVE-2025-53020

Description of changes:

[2.0.26-6.1]
- Resolves: RHEL-182417 - mod_http2: HTTP/2: Remote Denial of Service via
compression bomb and Slowloris-style attack (CVE-2026-49975)

[2.0.26-6]
- Resolves: RHEL-166293 - httpd: Apache HTTP Server: HTTP/2 DoS by Memory
Increase (CVE-2025-53020)

ELSA-2026-21296 Important: Oracle Linux 9 .NET 9.0 security update

Oracle Linux Security Advisory ELSA-2026-21296

http://linux.oracle.com/errata/ELSA-2026-21296.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-9.0-9.0.17-1.0.1.el9_8.x86_64.rpm
aspnetcore-runtime-dbg-9.0-9.0.17-1.0.1.el9_8.x86_64.rpm
aspnetcore-targeting-pack-9.0-9.0.17-1.0.1.el9_8.x86_64.rpm
dotnet-apphost-pack-9.0-9.0.17-1.0.1.el9_8.x86_64.rpm
dotnet-hostfxr-9.0-9.0.17-1.0.1.el9_8.x86_64.rpm
dotnet-runtime-9.0-9.0.17-1.0.1.el9_8.x86_64.rpm
dotnet-runtime-dbg-9.0-9.0.17-1.0.1.el9_8.x86_64.rpm
dotnet-sdk-9.0-9.0.118-1.0.1.el9_8.x86_64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.118-1.0.1.el9_8.x86_64.rpm
dotnet-sdk-aot-9.0-9.0.118-1.0.1.el9_8.x86_64.rpm
dotnet-sdk-dbg-9.0-9.0.118-1.0.1.el9_8.x86_64.rpm
dotnet-targeting-pack-9.0-9.0.17-1.0.1.el9_8.x86_64.rpm
dotnet-templates-9.0-9.0.118-1.0.1.el9_8.x86_64.rpm
netstandard-targeting-pack-2.1-9.0.118-1.0.1.el9_8.x86_64.rpm

aarch64:
aspnetcore-runtime-9.0-9.0.17-1.0.1.el9_8.aarch64.rpm
aspnetcore-runtime-dbg-9.0-9.0.17-1.0.1.el9_8.aarch64.rpm
aspnetcore-targeting-pack-9.0-9.0.17-1.0.1.el9_8.aarch64.rpm
dotnet-apphost-pack-9.0-9.0.17-1.0.1.el9_8.aarch64.rpm
dotnet-hostfxr-9.0-9.0.17-1.0.1.el9_8.aarch64.rpm
dotnet-runtime-9.0-9.0.17-1.0.1.el9_8.aarch64.rpm
dotnet-runtime-dbg-9.0-9.0.17-1.0.1.el9_8.aarch64.rpm
dotnet-sdk-9.0-9.0.118-1.0.1.el9_8.aarch64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.118-1.0.1.el9_8.aarch64.rpm
dotnet-sdk-aot-9.0-9.0.118-1.0.1.el9_8.aarch64.rpm
dotnet-sdk-dbg-9.0-9.0.118-1.0.1.el9_8.aarch64.rpm
dotnet-targeting-pack-9.0-9.0.17-1.0.1.el9_8.aarch64.rpm
dotnet-templates-9.0-9.0.118-1.0.1.el9_8.aarch64.rpm
netstandard-targeting-pack-2.1-9.0.118-1.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/dotnet9.0-9.0.118-1.0.1.el9_8.src.rpm

Related CVEs:

CVE-2026-42899

Description of changes:

[9.0.118-1.0.1]
- Add support for Oracle Linux

[9.0.118-1]
- Update to .NET SDK 9.0.118 and Runtime 9.0.17
- Resolves: RHEL-181553

[9.0.117-1]
- Update to .NET SDK 9.0.117 and Runtime 9.0.16
- Resolves: RHEL-173918

ELBA-2026-25053 Oracle Linux 9 python3.12 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-25053

http://linux.oracle.com/errata/ELBA-2026-25053.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.12-3.12.13-3.0.1.el9_8.i686.rpm
python3.12-3.12.13-3.0.1.el9_8.x86_64.rpm
python3.12-debug-3.12.13-3.0.1.el9_8.i686.rpm
python3.12-debug-3.12.13-3.0.1.el9_8.x86_64.rpm
python3.12-devel-3.12.13-3.0.1.el9_8.i686.rpm
python3.12-devel-3.12.13-3.0.1.el9_8.x86_64.rpm
python3.12-idle-3.12.13-3.0.1.el9_8.i686.rpm
python3.12-idle-3.12.13-3.0.1.el9_8.x86_64.rpm
python3.12-libs-3.12.13-3.0.1.el9_8.i686.rpm
python3.12-libs-3.12.13-3.0.1.el9_8.x86_64.rpm
python3.12-test-3.12.13-3.0.1.el9_8.i686.rpm
python3.12-test-3.12.13-3.0.1.el9_8.x86_64.rpm
python3.12-tkinter-3.12.13-3.0.1.el9_8.i686.rpm
python3.12-tkinter-3.12.13-3.0.1.el9_8.x86_64.rpm

aarch64:
python3.12-3.12.13-3.0.1.el9_8.aarch64.rpm
python3.12-debug-3.12.13-3.0.1.el9_8.aarch64.rpm
python3.12-devel-3.12.13-3.0.1.el9_8.aarch64.rpm
python3.12-idle-3.12.13-3.0.1.el9_8.aarch64.rpm
python3.12-libs-3.12.13-3.0.1.el9_8.aarch64.rpm
python3.12-test-3.12.13-3.0.1.el9_8.aarch64.rpm
python3.12-tkinter-3.12.13-3.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.12-3.12.13-3.0.1.el9_8.src.rpm

Description of changes:

[3.12.13-3.0.1]
- Remove upstream URL reference

[3.12.13-3]
- Depend on sqlite-libs with (de)serialize API
Resolves: RHEL-180474

ELSA-2026-28243 Moderate: Oracle Linux 9 libxslt security update

Oracle Linux Security Advisory ELSA-2026-28243

http://linux.oracle.com/errata/ELSA-2026-28243.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libxslt-1.1.34-14.0.1.el9_8.1.i686.rpm
libxslt-1.1.34-14.0.1.el9_8.1.x86_64.rpm
libxslt-devel-1.1.34-14.0.1.el9_8.1.i686.rpm
libxslt-devel-1.1.34-14.0.1.el9_8.1.x86_64.rpm

aarch64:
libxslt-1.1.34-14.0.1.el9_8.1.aarch64.rpm
libxslt-devel-1.1.34-14.0.1.el9_8.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libxslt-1.1.34-14.0.1.el9_8.1.src.rpm

Related CVEs:

CVE-2025-10911

Description of changes:

[1.1.34-14.0.1.el9_8.1]
- Fix memory leak in exclPrefixPush [Orabug: 37871881]
- Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball

[1.1.34-14.1]
- Fix CVE-2025-10911 (RHEL-171991)

[1.1.34-14.1]
- Fix upgrade path for CVE-2023-40403 (RHEL-82213)

[1.1.34-12.1]
- Fix CVE-2023-40403 (RHEL-82213)

[1.1.34-12]
- Include alloc changes into previous patch (RHEL-83514)

[1.1.34-11]
- Fix CVE-2024-55549 (RHEL-83514)

[1.1.34-10]
- Fix CVE-2025-24855 (RHEL-83500)

ELBA-2026-28245 Oracle Linux 9 mutter bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2026-28245

http://linux.oracle.com/errata/ELBA-2026-28245.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mutter-40.9-33.el9_8.i686.rpm
mutter-40.9-33.el9_8.x86_64.rpm
mutter-devel-40.9-33.el9_8.i686.rpm
mutter-devel-40.9-33.el9_8.x86_64.rpm

aarch64:
mutter-40.9-33.el9_8.aarch64.rpm
mutter-devel-40.9-33.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/mutter-40.9-33.el9_8.src.rpm

Description of changes:

[40.9-33]
- Don't unminimize mapped windows
Resolves: RHEL-180797

ELSA-2026-26323 Important: Oracle Linux 9 tomcat security update

Oracle Linux Security Advisory ELSA-2026-26323

http://linux.oracle.com/errata/ELSA-2026-26323.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
tomcat-9.0.117-1.el9_8.noarch.rpm
tomcat-admin-webapps-9.0.117-1.el9_8.noarch.rpm
tomcat-docs-webapp-9.0.117-1.el9_8.noarch.rpm
tomcat-el-3.0-api-9.0.117-1.el9_8.noarch.rpm
tomcat-jsp-2.3-api-9.0.117-1.el9_8.noarch.rpm
tomcat-lib-9.0.117-1.el9_8.noarch.rpm
tomcat-servlet-4.0-api-9.0.117-1.el9_8.noarch.rpm
tomcat-webapps-9.0.117-1.el9_8.noarch.rpm

aarch64:
tomcat-9.0.117-1.el9_8.noarch.rpm
tomcat-admin-webapps-9.0.117-1.el9_8.noarch.rpm
tomcat-docs-webapp-9.0.117-1.el9_8.noarch.rpm
tomcat-el-3.0-api-9.0.117-1.el9_8.noarch.rpm
tomcat-jsp-2.3-api-9.0.117-1.el9_8.noarch.rpm
tomcat-lib-9.0.117-1.el9_8.noarch.rpm
tomcat-servlet-4.0-api-9.0.117-1.el9_8.noarch.rpm
tomcat-webapps-9.0.117-1.el9_8.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/tomcat-9.0.117-1.el9_8.src.rpm

Related CVEs:

CVE-2026-24734

Description of changes:

[1:9.0.117-1]
- Resolves: RHEL-150714 Certificate revocation bypass due to improper OCSP response validation
- Resolves:
Tomcat: OCSP checks sometimes soft-fail with FFM even when soft-fail is disabled (CVE-2026-34500)
- Resolves:
Tomcat: Cloud membership for clustering component exposed the Kubernetes bearer token (CVE-2026-34487)
- Resolves:
Tomcat: The fix for CVE-2026-29146 allowed the bypass of the EncryptInterceptor (CVE-2026-34486)
- Resolves:
Tomcat: Incomplete escaping of JSON access logs (CVE-2026-34483)
- Resolves:
Tomcat: The fix for CVE-2025-66614 was incomplete (CVE-2026-32990)
- Resolves:
Tomcat: EncryptInterceptor vulnerable to padding oracle attack by default (CVE-2026-29146)
- Resolves:
Tomcat: OCSP checks sometimes soft-fail even when soft-fail is disabled (CVE-2026-29145)
- Resolves:
Tomcat: Configured TLS cipher preference order not preserved (CVE-2026-29129)
- Resolves:
Tomcat: Occasionally open redirect (CVE-2026-25854)
- Resolves:
Tomcat: Request smuggling via invalid chunk extension (CVE-2026-24880)
- Resolves:
Tomcat: Incomplete OCSP verification checks (CVE-2026-24734)
- Resolves:
Tomcat: Security constraint bypass (CVE-2026-24733)
- Resolves:
Tomcat: Client certificate verification bypass due to virtual host mapping (CVE-2025-66614)

ELSA-2026-28255 Moderate: Oracle Linux 9 libpng security update

Oracle Linux Security Advisory ELSA-2026-28255

http://linux.oracle.com/errata/ELSA-2026-28255.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libpng-1.6.37-15.el9_8.2.i686.rpm
libpng-1.6.37-15.el9_8.2.x86_64.rpm
libpng-devel-1.6.37-15.el9_8.2.i686.rpm
libpng-devel-1.6.37-15.el9_8.2.x86_64.rpm

aarch64:
libpng-1.6.37-15.el9_8.2.aarch64.rpm
libpng-devel-1.6.37-15.el9_8.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libpng-1.6.37-15.el9_8.2.src.rpm

Related CVEs:

CVE-2026-33416
CVE-2026-33636

Description of changes:

[2:1.6.37-15.2]
- fix CVE-2026-33416: use-after-free via pointer aliasing in png_set_tRNS and png_set_PLTE (RHEL-161448)

[2:1.6.37-15.1]
- fix CVE-2026-33636: out-of-bounds R/W in the palette expansion on ARM Neon (RHEL-161299)

ELSA-2026-23229 Important: Oracle Linux 9 redis security update

Oracle Linux Security Advisory ELSA-2026-23229

http://linux.oracle.com/errata/ELSA-2026-23229.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
redis-6.2.22-1.el9_8.x86_64.rpm
redis-devel-6.2.22-1.el9_8.i686.rpm
redis-devel-6.2.22-1.el9_8.x86_64.rpm
redis-doc-6.2.22-1.el9_8.noarch.rpm

aarch64:
redis-6.2.22-1.el9_8.aarch64.rpm
redis-devel-6.2.22-1.el9_8.aarch64.rpm
redis-doc-6.2.22-1.el9_8.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/redis-6.2.22-1.el9_8.src.rpm

Related CVEs:

CVE-2026-25243

Description of changes:

[6.2.22-1]
- rebase to 6.2.22 for CVE-2026-25243

ELSA-2026-28247 Important: Oracle Linux 9 python3.14 security, bug fix, and enhancement update

Oracle Linux Security Advisory ELSA-2026-28247

http://linux.oracle.com/errata/ELSA-2026-28247.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.14-3.14.5-1.el9_8.i686.rpm
python3.14-3.14.5-1.el9_8.x86_64.rpm
python3.14-debug-3.14.5-1.el9_8.i686.rpm
python3.14-debug-3.14.5-1.el9_8.x86_64.rpm
python3.14-devel-3.14.5-1.el9_8.i686.rpm
python3.14-devel-3.14.5-1.el9_8.x86_64.rpm
python3.14-freethreading-3.14.5-1.el9_8.i686.rpm
python3.14-freethreading-3.14.5-1.el9_8.x86_64.rpm
python3.14-freethreading-debug-3.14.5-1.el9_8.i686.rpm
python3.14-freethreading-debug-3.14.5-1.el9_8.x86_64.rpm
python3.14-freethreading-devel-3.14.5-1.el9_8.i686.rpm
python3.14-freethreading-devel-3.14.5-1.el9_8.x86_64.rpm
python3.14-freethreading-idle-3.14.5-1.el9_8.i686.rpm
python3.14-freethreading-idle-3.14.5-1.el9_8.x86_64.rpm
python3.14-freethreading-libs-3.14.5-1.el9_8.i686.rpm
python3.14-freethreading-libs-3.14.5-1.el9_8.x86_64.rpm
python3.14-freethreading-test-3.14.5-1.el9_8.i686.rpm
python3.14-freethreading-test-3.14.5-1.el9_8.x86_64.rpm
python3.14-freethreading-tkinter-3.14.5-1.el9_8.i686.rpm
python3.14-freethreading-tkinter-3.14.5-1.el9_8.x86_64.rpm
python3.14-idle-3.14.5-1.el9_8.i686.rpm
python3.14-idle-3.14.5-1.el9_8.x86_64.rpm
python3.14-libs-3.14.5-1.el9_8.i686.rpm
python3.14-libs-3.14.5-1.el9_8.x86_64.rpm
python3.14-test-3.14.5-1.el9_8.i686.rpm
python3.14-test-3.14.5-1.el9_8.x86_64.rpm
python3.14-tkinter-3.14.5-1.el9_8.i686.rpm
python3.14-tkinter-3.14.5-1.el9_8.x86_64.rpm

aarch64:
python3.14-3.14.5-1.el9_8.aarch64.rpm
python3.14-debug-3.14.5-1.el9_8.aarch64.rpm
python3.14-devel-3.14.5-1.el9_8.aarch64.rpm
python3.14-freethreading-3.14.5-1.el9_8.aarch64.rpm
python3.14-freethreading-debug-3.14.5-1.el9_8.aarch64.rpm
python3.14-freethreading-devel-3.14.5-1.el9_8.aarch64.rpm
python3.14-freethreading-idle-3.14.5-1.el9_8.aarch64.rpm
python3.14-freethreading-libs-3.14.5-1.el9_8.aarch64.rpm
python3.14-freethreading-test-3.14.5-1.el9_8.aarch64.rpm
python3.14-freethreading-tkinter-3.14.5-1.el9_8.aarch64.rpm
python3.14-idle-3.14.5-1.el9_8.aarch64.rpm
python3.14-libs-3.14.5-1.el9_8.aarch64.rpm
python3.14-test-3.14.5-1.el9_8.aarch64.rpm
python3.14-tkinter-3.14.5-1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.14-3.14.5-1.el9_8.src.rpm

Related CVEs:

CVE-2026-4786
CVE-2026-6019

Description of changes:

[3.14.5-1]
- Update to 3.14.5
Resolves: RHEL-180642

[3.14.5~rc1-1]
- Update to 3.14.5rc1
- Move back to the generational from the incremental garbage collector
- Security fix for CVE-2026-6019
Resolves: RHEL-180642

[3.14.4-3]
- Depend on sqlite-libs with (de)serialize API
Resolves: RHEL-180476

Python 3.14, .NET 8/9/10, Docker Engine, pgAdmin 4, Krita updates for Fedora

Kernel, Python3.14, Autotrace, Lynx, Pandoc, Mysql ,Gcc, Libpq updates for Rocky Linux

Kernel, glibc, Nginx, PHP, Firefox, and Thunderbird updates for Oracle Linux

ELSA-2026-20597 Moderate: Oracle Linux 9 glibc security update

ELSA-2026-22142 Important: Oracle Linux 9 php:8.3 security update

ELSA-2026-29151 Important: Oracle Linux 9 nginx:1.26 security update

ELBA-2026-28656 Oracle Linux 9 qemu-kvm bug fix and enhancement update

ELEA-2026-22546 Oracle Linux 9 nmstate bug fix and enhancement update

ELSA-2026-19355 Important: Oracle Linux 9 fence-agents security update

ELSA-2026-25052 Moderate: Oracle Linux 9 mysql:8.4 security update

ELSA-2026-24367 Important: Oracle Linux 9 bind security update

ELBA-2026-24588 Oracle Linux 9 sos bug fix and enhancement update

ELSA-2026-26445 Important: Oracle Linux 9 podman security update

ELSA-2026-21293 Important: Oracle Linux 9 .NET 8.0 security update

ELBA-2026-28241 Oracle Linux 9 gnome-shell bug fix and enhancement update

ELSA-2026-24371 Important: Oracle Linux 9 frr security update

ELSA-2026-26533 Important: Oracle Linux 9 dracut security update

ELSA-2026-28254 Low: Oracle Linux 9 libxml2 security update

ELBA-2026-28250 Oracle Linux 9 libusbx bug fix and enhancement update

ELSA-2026-19361 Moderate: Oracle Linux 9 glib2 security update

ELSA-2026-29940 Important: Oracle Linux 9 thunderbird security update

ELBA-2026-28252 Oracle Linux 9 man-pages bug fix and enhancement update

ELBA-2026-25054 Oracle Linux 9 python3.14 bug fix and enhancement update

ELSA-2026-27789 Important: Oracle Linux 9 kernel security, bug fix, and enhancement update

ELSA-2026-25925 Important: Oracle Linux 9 valkey security update

ELSA-2026-20612 Important: Oracle Linux 9 gnutls security update

ELSA-2026-27734 Important: Oracle Linux 9 firefox security update

ELSA-2026-26410 Important: Oracle Linux 9 rsync security update

ELSA-2026-22551 Moderate: Oracle Linux 9 mod_http2 security update

ELSA-2026-21296 Important: Oracle Linux 9 .NET 9.0 security update

ELBA-2026-25053 Oracle Linux 9 python3.12 bug fix and enhancement update

ELSA-2026-28243 Moderate: Oracle Linux 9 libxslt security update

ELBA-2026-28245 Oracle Linux 9 mutter bug fix and enhancement update

ELSA-2026-26323 Important: Oracle Linux 9 tomcat security update

ELSA-2026-28255 Moderate: Oracle Linux 9 libpng security update

ELSA-2026-23229 Important: Oracle Linux 9 redis security update

ELSA-2026-28247 Important: Oracle Linux 9 python3.14 security, bug fix, and enhancement update

Windows

Linux

macOS

Community