Oracle Linux 6515 Published by

Oracle Linux issued a batch of security advisories for versions 7, 8, and 9, featuring critical kernel updates alongside fixes for nginx, glibc, and python-pillow packages. Oracle Linux 9 gained an important kernel update resolving several CVEs, while packages such as cups, libsolv, and git-lfs received patches to address control character injection and buffer overflow risks. Oracle Linux 8 deployments receive a kernel upgrade that corrects shadow paging flaws and networking race conditions, accompanied by security hardening for python-pillow to prevent heap buffer overflows and glibc to fix scanf vulnerabilities. Furthermore, Oracle Linux 7 requires updates to 389-ds-base and host-metering to close security gaps, and oVirt 4.5 users can install a bug fix release that enhances backup restoration and adds support for AMD EPYC processors.

ELSA-2026-39319 Important: Oracle Linux 9 git-lfs security update
ELSA-2026-39316 Moderate: Oracle Linux 9 cups security update
ELSA-2026-39315 Moderate: Oracle Linux 9 libsolv security update
ELSA-2026-39311 Low: Oracle Linux 9 qemu-kvm security update
ELSA-2026-39317 Low: Oracle Linux 9 libxml2 security update
ELSA-2026-36645 Important: Oracle Linux 9 kernel update
ELSA-2026-19354 Important: Oracle Linux 9 PackageKit security update
ELSA-2026-39127 Important: Oracle Linux 8 python-pillow security update
ELSA-2026-39083 Important: Oracle Linux 8 kernel update
ELSA-2026-38847 Important: Oracle Linux 8 nginx:1.24 security, bug fix, and enhancement update
ELSA-2026-36349 Important: Oracle Linux 8 kernel security, bug fix, and enhancement update
ELSA-2026-33126 Moderate: Oracle Linux 8 glibc security update
ELSA-2026-26453 Important: Oracle Linux 7 389-ds-base security update
ELSA-2026-16101 Important: Oracle Linux 7 host-metering security update
ELBA-2026-50354 Oracle Linux 8 oVirt 4.5 ovirt-engine bug fix update




ELSA-2026-39319 Important: Oracle Linux 9 git-lfs security update


Oracle Linux Security Advisory ELSA-2026-39319

http://linux.oracle.com/errata/ELSA-2026-39319.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
git-lfs-3.7.1-4.el9_8.2.x86_64.rpm

aarch64:
git-lfs-3.7.1-4.el9_8.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/git-lfs-3.7.1-4.el9_8.2.src.rpm

Related CVEs:

CVE-2026-33811

Description of changes:

[3.7.1-4.2]
- Rebuild with new Golang
- Resolves: RHEL-187329



ELSA-2026-39316 Moderate: Oracle Linux 9 cups security update


Oracle Linux Security Advisory ELSA-2026-39316

http://linux.oracle.com/errata/ELSA-2026-39316.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
cups-2.3.3op2-39.el9_8.x86_64.rpm
cups-client-2.3.3op2-39.el9_8.x86_64.rpm
cups-devel-2.3.3op2-39.el9_8.i686.rpm
cups-devel-2.3.3op2-39.el9_8.x86_64.rpm
cups-filesystem-2.3.3op2-39.el9_8.noarch.rpm
cups-ipptool-2.3.3op2-39.el9_8.x86_64.rpm
cups-libs-2.3.3op2-39.el9_8.i686.rpm
cups-libs-2.3.3op2-39.el9_8.x86_64.rpm
cups-lpd-2.3.3op2-39.el9_8.x86_64.rpm
cups-printerapp-2.3.3op2-39.el9_8.x86_64.rpm

aarch64:
cups-2.3.3op2-39.el9_8.aarch64.rpm
cups-client-2.3.3op2-39.el9_8.aarch64.rpm
cups-devel-2.3.3op2-39.el9_8.aarch64.rpm
cups-filesystem-2.3.3op2-39.el9_8.noarch.rpm
cups-ipptool-2.3.3op2-39.el9_8.aarch64.rpm
cups-libs-2.3.3op2-39.el9_8.aarch64.rpm
cups-lpd-2.3.3op2-39.el9_8.aarch64.rpm
cups-printerapp-2.3.3op2-39.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/cups-2.3.3op2-39.el9_8.src.rpm

Related CVEs:

CVE-2026-34980

Description of changes:

[1:2.3.3op2-39]
- RHEL-177957 CVE-2026-34980 cups: control character injection in option values



ELSA-2026-39315 Moderate: Oracle Linux 9 libsolv security update


Oracle Linux Security Advisory ELSA-2026-39315

http://linux.oracle.com/errata/ELSA-2026-39315.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libsolv-0.7.24-6.el9_8.i686.rpm
libsolv-0.7.24-6.el9_8.x86_64.rpm
libsolv-devel-0.7.24-6.el9_8.i686.rpm
libsolv-devel-0.7.24-6.el9_8.x86_64.rpm
libsolv-tools-0.7.24-6.el9_8.x86_64.rpm
python3-solv-0.7.24-6.el9_8.x86_64.rpm

aarch64:
libsolv-0.7.24-6.el9_8.aarch64.rpm
libsolv-devel-0.7.24-6.el9_8.aarch64.rpm
libsolv-tools-0.7.24-6.el9_8.aarch64.rpm
python3-solv-0.7.24-6.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libsolv-0.7.24-6.el9_8.src.rpm

Related CVEs:

CVE-2026-48864

Description of changes:

[0.7.24-6]
- Fix a buffer overflow when decompressing solv pages (CVE-2026-48864)
(RHEL-178982)



ELSA-2026-39311 Low: Oracle Linux 9 qemu-kvm security update


Oracle Linux Security Advisory ELSA-2026-39311

http://linux.oracle.com/errata/ELSA-2026-39311.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
qemu-guest-agent-10.1.0-17.el9_8.4.x86_64.rpm
qemu-img-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-audio-pa-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-block-blkio-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-block-curl-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-block-rbd-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-common-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-core-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-pci-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-display-virtio-vga-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-usb-host-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-usb-redirect-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-docs-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-tools-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-ui-egl-headless-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-ui-opengl-10.1.0-17.el9_8.4.x86_64.rpm
qemu-pr-helper-10.1.0-17.el9_8.4.x86_64.rpm

aarch64:
qemu-guest-agent-10.1.0-17.el9_8.4.aarch64.rpm
qemu-img-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-audio-pa-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-block-blkio-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-block-curl-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-block-rbd-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-common-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-core-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-device-display-virtio-gpu-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-device-display-virtio-gpu-pci-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-device-usb-host-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-device-usb-redirect-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-docs-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-tools-10.1.0-17.el9_8.4.aarch64.rpm
qemu-pr-helper-10.1.0-17.el9_8.4.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/qemu-kvm-10.1.0-17.el9_8.4.src.rpm

Related CVEs:

CVE-2026-48914

Description of changes:

[10.1.0-17.el9_8.4]
- kvm-virtio-blk-add-missing-VIRTIO_BLK_T_SCSI_CMD-size-ch.patch [RHEL-184527]
- Resolves: RHEL-184527
(CVE-2026-48914 qemu-kvm: Heap buffer overflow in virtio-blk SCSI request handling [rhel-9.8.z])



ELSA-2026-39317 Low: Oracle Linux 9 libxml2 security update


Oracle Linux Security Advisory ELSA-2026-39317

http://linux.oracle.com/errata/ELSA-2026-39317.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libxml2-2.9.13-14.el9_8.2.i686.rpm
libxml2-2.9.13-14.el9_8.2.x86_64.rpm
libxml2-devel-2.9.13-14.el9_8.2.i686.rpm
libxml2-devel-2.9.13-14.el9_8.2.x86_64.rpm
python3-libxml2-2.9.13-14.el9_8.2.x86_64.rpm

aarch64:
libxml2-2.9.13-14.el9_8.2.aarch64.rpm
libxml2-devel-2.9.13-14.el9_8.2.aarch64.rpm
python3-libxml2-2.9.13-14.el9_8.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libxml2-2.9.13-14.el9_8.2.src.rpm

Related CVEs:

CVE-2025-6170

Description of changes:

[2.9.13-14.2]
- Fix CVE-2025-6170 (RHEL-182016)



ELSA-2026-36645 Important: Oracle Linux 9 kernel update


Oracle Linux Security Advisory ELSA-2026-36645

http://linux.oracle.com/errata/ELSA-2026-36645.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-abi-stablelists-5.14.0-687.23.1.el9_8.noarch.rpm
kernel-core-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-cross-headers-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-core-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-devel-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-devel-matched-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-modules-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-modules-core-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-modules-extra-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-uki-virt-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-devel-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-devel-matched-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-doc-5.14.0-687.23.1.el9_8.noarch.rpm
kernel-headers-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-modules-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-modules-core-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-modules-extra-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-tools-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-tools-libs-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-tools-libs-devel-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-uki-virt-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-uki-virt-addons-5.14.0-687.23.1.el9_8.x86_64.rpm
libperf-5.14.0-687.23.1.el9_8.x86_64.rpm
perf-5.14.0-687.23.1.el9_8.x86_64.rpm
python3-perf-5.14.0-687.23.1.el9_8.x86_64.rpm
rtla-5.14.0-687.23.1.el9_8.x86_64.rpm
rv-5.14.0-687.23.1.el9_8.x86_64.rpm

aarch64:
kernel-cross-headers-5.14.0-687.23.1.el9_8.aarch64.rpm
kernel-headers-5.14.0-687.23.1.el9_8.aarch64.rpm
kernel-tools-5.14.0-687.23.1.el9_8.aarch64.rpm
kernel-tools-libs-5.14.0-687.23.1.el9_8.aarch64.rpm
kernel-tools-libs-devel-5.14.0-687.23.1.el9_8.aarch64.rpm
libperf-5.14.0-687.23.1.el9_8.aarch64.rpm
perf-5.14.0-687.23.1.el9_8.aarch64.rpm
python3-perf-5.14.0-687.23.1.el9_8.aarch64.rpm
rtla-5.14.0-687.23.1.el9_8.aarch64.rpm
rv-5.14.0-687.23.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-687.23.1.el9_8.src.rpm

Related CVEs:

CVE-2026-43074
CVE-2026-46242
CVE-2026-53266

Description of changes:

[5.14.0-687.23.1]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 dying flag (Ian Kent) [RHEL-180773]
- eventpoll: drop dead bool return from ep_remove_epi() (Ian Kent) [RHEL-180773]
- eventpoll: refresh eventpoll_release() fast-path comment (Ian Kent) [RHEL-180773]
- eventpoll: move f_lock acquisition into ep_remove_file() (Ian Kent) [RHEL-180773]
- eventpoll: fix ep_remove struct eventpoll / struct file UAF (Ian Kent) [RHEL-180773] {CVE-2026-46242}
- eventpoll: drop vestigial __ prefix from ep_remove_{file,epi}() (Ian Kent) [RHEL-180773]
- eventpoll: move epi_fget() up (Ian Kent) [RHEL-180773]
- eventpoll: rename ep_remove_safe() back to ep_remove() (Ian Kent) [RHEL-180773]
- eventpoll: kill __ep_remove() (Ian Kent) [RHEL-180773]
- eventpoll: split __ep_remove() (Ian Kent) [RHEL-180773]
- eventpoll: use hlist_is_singular_node() in __ep_remove() (Ian Kent) [RHEL-180773]
- eventpoll: defer struct eventpoll free to RCU grace period (Ian Kent) [RHEL-173830] {CVE-2026-43074}
- epoll: annotate racy check (Ian Kent) [RHEL-180773]
- netfilter: bridge: make ebt_snat ARP rewrite writable (CKI Backport Bot) [RHEL-182344]
- tg3: Fix race for querying speed/duplex (CKI Backport Bot) [RHEL-182768]



ELSA-2026-19354 Important: Oracle Linux 9 PackageKit security update


Oracle Linux Security Advisory ELSA-2026-19354

http://linux.oracle.com/errata/ELSA-2026-19354.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
PackageKit-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-command-not-found-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-glib-1.2.6-2.0.1.el9_8.i686.rpm
PackageKit-glib-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-glib-devel-1.2.6-2.0.1.el9_8.i686.rpm
PackageKit-glib-devel-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-gstreamer-plugin-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-gtk3-module-1.2.6-2.0.1.el9_8.x86_64.rpm

aarch64:
PackageKit-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-command-not-found-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-glib-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-glib-devel-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-gstreamer-plugin-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-gtk3-module-1.2.6-2.0.1.el9_8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/PackageKit-1.2.6-2.0.1.el9_8.src.rpm

Related CVEs:

CVE-2026-41651

Description of changes:

[1.2.6-2.0.1]
- remove RHEL vendor patch PackageKit-0.3.8-RHEL-Vendor.conf.patch



ELSA-2026-39127 Important: Oracle Linux 8 python-pillow security update


Oracle Linux Security Advisory ELSA-2026-39127

http://linux.oracle.com/errata/ELSA-2026-39127.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-pillow-5.1.1-22.el8_10.i686.rpm
python3-pillow-5.1.1-22.el8_10.x86_64.rpm
python3-pillow-devel-5.1.1-22.el8_10.i686.rpm
python3-pillow-devel-5.1.1-22.el8_10.x86_64.rpm
python3-pillow-doc-5.1.1-22.el8_10.noarch.rpm
python3-pillow-tk-5.1.1-22.el8_10.x86_64.rpm

aarch64:
python3-pillow-5.1.1-22.el8_10.aarch64.rpm
python3-pillow-devel-5.1.1-22.el8_10.aarch64.rpm
python3-pillow-doc-5.1.1-22.el8_10.noarch.rpm
python3-pillow-tk-5.1.1-22.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/python-pillow-5.1.1-22.el8_10.src.rpm

Related CVEs:

CVE-2026-54059
CVE-2026-54060
CVE-2026-55379
CVE-2026-55380

Description of changes:

[5.1.1-22]
- Security fix for CVE-2026-54059, CVE-2026-54060, CVE-2026-55379, CVE-2026-55380
Resolves: RHEL-192830, RHEL-192770, RHEL-192684, RHEL-192731



ELSA-2026-39083 Important: Oracle Linux 8 kernel update


Oracle Linux Security Advisory ELSA-2026-39083

http://linux.oracle.com/errata/ELSA-2026-39083.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.143.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.143.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.143.1.el8_10.x86_64.rpm
perf-4.18.0-553.143.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.143.1.el8_10.x86_64.rpm

aarch64:
bpftool-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-cross-headers-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-headers-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-tools-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-tools-libs-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-tools-libs-devel-4.18.0-553.143.1.el8_10.aarch64.rpm
perf-4.18.0-553.143.1.el8_10.aarch64.rpm
python3-perf-4.18.0-553.143.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.143.1.el8_10.src.rpm

Related CVEs:

CVE-2025-71066
CVE-2025-71089
CVE-2026-31411
CVE-2026-43499
CVE-2026-46113
CVE-2026-53166
CVE-2026-53266
CVE-2026-53359

Description of changes:

[4.18.0-553.143.1]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 _lock);
OraBug: 28481550.
Reviewed-by: Qing Zhao [qing.zhao@oracle.com]

[2.28-251.38]
- CVE-2026-5450: Fix buffer overflow in scanf (RHEL-172700)

[2.28-251.37]
- Add tests for CVE-2026-4437 and CVE-2026-4438 (RHEL-173358)

[2.28-251.36]
- Fix __nss_get_default_domain logic to restore netgroup user enumeration
(RHEL-168095)

[2.28-251.35]
- CVE-2026-4046: Fix assertion failure in IBM1390 and IBM1399 iconv modules
(RHEL-162891)

[2.28-251.34]
- Update locales for Croatia to use EUR as currency symbol. (RHEL-140104)

[2.28-251.33]
- Change the currency symbol for the bg_BG locale to euro. (RHEL-137185)

[2.28-251.32]
- Improve qsort implementation (RHEL-24169)

[2.28-251.31]
- CVE-2025-15281: wordexp WRDE_REUSE uninitialized memory read (RHEL-142787)

[2.28-251.30]
- Remove default /var/tmp for LD_PROFILE_OUTPUT (RHEL-142194)



ELSA-2026-26453 Important: Oracle Linux 7 389-ds-base security update


Oracle Linux Security Advisory ELSA-2026-26453

http://linux.oracle.com/errata/ELSA-2026-26453.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
389-ds-base-1.3.11.1-5.0.9.el7_9.x86_64.rpm
389-ds-base-devel-1.3.11.1-5.0.9.el7_9.x86_64.rpm
389-ds-base-libs-1.3.11.1-5.0.9.el7_9.x86_64.rpm
389-ds-base-snmp-1.3.11.1-5.0.9.el7_9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/389-ds-base-1.3.11.1-5.0.9.el7_9.src.rpm

Related CVEs:

CVE-2026-9064

Description of changes:

[1.3.11.1-5.0.9]
- Security fix for CVE-2026-9064 [Orabug: 39570202]

[1.3.11.1-5.0.7]
- Security fix for CVE-2025-14905 [Orabug: 39146844]

[1.3.11.1-5.0.5]
- Allow Uniqueness plugin to search uniqueness attributes using custom matching rules [Orabug: 38388205]



ELSA-2026-16101 Important: Oracle Linux 7 host-metering security update


Oracle Linux Security Advisory ELSA-2026-16101

http://linux.oracle.com/errata/ELSA-2026-16101.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
host-metering-1.2.0-4.0.1.el7_9.x86_64.rpm
host-metering-selinux-1.2.0-4.0.1.el7_9.noarch.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/host-metering-1.2.0-4.0.1.el7_9.src.rpm

Related CVEs:

CVE-2026-32283

Description of changes:

[1.2.0-4.0.1]
- Rebuild with new go-toolset-1.19-golang to fix CVE-2026-32283 [Orabug: 39352233]



ELBA-2026-50354 Oracle Linux 8 oVirt 4.5 ovirt-engine bug fix update


Oracle Linux Bug Fix Advisory ELBA-2026-50354

http://linux.oracle.com/errata/ELBA-2026-50354.html

The following updated rpms for Oracle Linux 8 oVirt 4.5 have been uploaded to the Unbreakable Linux Network:

x86_64:
ovirt-engine-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-backend-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-dbscripts-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-health-check-bundler-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-restapi-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-base-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-cinderlib-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-imageio-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-common-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-websocket-proxy-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-tools-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-tools-backup-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-vmconsole-proxy-helper-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-webadmin-portal-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-websocket-proxy-4.5.5-1.70.el8.noarch.rpm
python3-ovirt-engine-lib-4.5.5-1.70.el8.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/ovirt-engine-4.5.5-1.70.el8.src.rpm

Description of changes:

[4.5.5-1.70]
- Remove vdsm compat flag from v2v-imports

[4.5.5-1.69]
- Add AMD EPYC-Genoa CPU model

[4.5.5-1.68]
- Pick fixes of backup and restore for OL9 and postgresql-16
- Pick fixes of migrate legacy p12 on openssl upgrade
- Fix restore owner and mode from the pre-reencrypt backup file