ELSA-2026-39319 Important: Oracle Linux 9 git-lfs security update
ELSA-2026-39316 Moderate: Oracle Linux 9 cups security update
ELSA-2026-39315 Moderate: Oracle Linux 9 libsolv security update
ELSA-2026-39311 Low: Oracle Linux 9 qemu-kvm security update
ELSA-2026-39317 Low: Oracle Linux 9 libxml2 security update
ELSA-2026-36645 Important: Oracle Linux 9 kernel update
ELSA-2026-19354 Important: Oracle Linux 9 PackageKit security update
ELSA-2026-39127 Important: Oracle Linux 8 python-pillow security update
ELSA-2026-39083 Important: Oracle Linux 8 kernel update
ELSA-2026-38847 Important: Oracle Linux 8 nginx:1.24 security, bug fix, and enhancement update
ELSA-2026-36349 Important: Oracle Linux 8 kernel security, bug fix, and enhancement update
ELSA-2026-33126 Moderate: Oracle Linux 8 glibc security update
ELSA-2026-26453 Important: Oracle Linux 7 389-ds-base security update
ELSA-2026-16101 Important: Oracle Linux 7 host-metering security update
ELBA-2026-50354 Oracle Linux 8 oVirt 4.5 ovirt-engine bug fix update
ELSA-2026-39319 Important: Oracle Linux 9 git-lfs security update
Oracle Linux Security Advisory ELSA-2026-39319
http://linux.oracle.com/errata/ELSA-2026-39319.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
git-lfs-3.7.1-4.el9_8.2.x86_64.rpm
aarch64:
git-lfs-3.7.1-4.el9_8.2.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/git-lfs-3.7.1-4.el9_8.2.src.rpm
Related CVEs:
CVE-2026-33811
Description of changes:
[3.7.1-4.2]
- Rebuild with new Golang
- Resolves: RHEL-187329
ELSA-2026-39316 Moderate: Oracle Linux 9 cups security update
Oracle Linux Security Advisory ELSA-2026-39316
http://linux.oracle.com/errata/ELSA-2026-39316.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
cups-2.3.3op2-39.el9_8.x86_64.rpm
cups-client-2.3.3op2-39.el9_8.x86_64.rpm
cups-devel-2.3.3op2-39.el9_8.i686.rpm
cups-devel-2.3.3op2-39.el9_8.x86_64.rpm
cups-filesystem-2.3.3op2-39.el9_8.noarch.rpm
cups-ipptool-2.3.3op2-39.el9_8.x86_64.rpm
cups-libs-2.3.3op2-39.el9_8.i686.rpm
cups-libs-2.3.3op2-39.el9_8.x86_64.rpm
cups-lpd-2.3.3op2-39.el9_8.x86_64.rpm
cups-printerapp-2.3.3op2-39.el9_8.x86_64.rpm
aarch64:
cups-2.3.3op2-39.el9_8.aarch64.rpm
cups-client-2.3.3op2-39.el9_8.aarch64.rpm
cups-devel-2.3.3op2-39.el9_8.aarch64.rpm
cups-filesystem-2.3.3op2-39.el9_8.noarch.rpm
cups-ipptool-2.3.3op2-39.el9_8.aarch64.rpm
cups-libs-2.3.3op2-39.el9_8.aarch64.rpm
cups-lpd-2.3.3op2-39.el9_8.aarch64.rpm
cups-printerapp-2.3.3op2-39.el9_8.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/cups-2.3.3op2-39.el9_8.src.rpm
Related CVEs:
CVE-2026-34980
Description of changes:
[1:2.3.3op2-39]
- RHEL-177957 CVE-2026-34980 cups: control character injection in option values
ELSA-2026-39315 Moderate: Oracle Linux 9 libsolv security update
Oracle Linux Security Advisory ELSA-2026-39315
http://linux.oracle.com/errata/ELSA-2026-39315.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
libsolv-0.7.24-6.el9_8.i686.rpm
libsolv-0.7.24-6.el9_8.x86_64.rpm
libsolv-devel-0.7.24-6.el9_8.i686.rpm
libsolv-devel-0.7.24-6.el9_8.x86_64.rpm
libsolv-tools-0.7.24-6.el9_8.x86_64.rpm
python3-solv-0.7.24-6.el9_8.x86_64.rpm
aarch64:
libsolv-0.7.24-6.el9_8.aarch64.rpm
libsolv-devel-0.7.24-6.el9_8.aarch64.rpm
libsolv-tools-0.7.24-6.el9_8.aarch64.rpm
python3-solv-0.7.24-6.el9_8.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libsolv-0.7.24-6.el9_8.src.rpm
Related CVEs:
CVE-2026-48864
Description of changes:
[0.7.24-6]
- Fix a buffer overflow when decompressing solv pages (CVE-2026-48864)
(RHEL-178982)
ELSA-2026-39311 Low: Oracle Linux 9 qemu-kvm security update
Oracle Linux Security Advisory ELSA-2026-39311
http://linux.oracle.com/errata/ELSA-2026-39311.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
qemu-guest-agent-10.1.0-17.el9_8.4.x86_64.rpm
qemu-img-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-audio-pa-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-block-blkio-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-block-curl-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-block-rbd-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-common-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-core-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-display-virtio-gpu-pci-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-display-virtio-vga-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-usb-host-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-device-usb-redirect-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-docs-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-tools-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-ui-egl-headless-10.1.0-17.el9_8.4.x86_64.rpm
qemu-kvm-ui-opengl-10.1.0-17.el9_8.4.x86_64.rpm
qemu-pr-helper-10.1.0-17.el9_8.4.x86_64.rpm
aarch64:
qemu-guest-agent-10.1.0-17.el9_8.4.aarch64.rpm
qemu-img-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-audio-pa-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-block-blkio-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-block-curl-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-block-rbd-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-common-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-core-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-device-display-virtio-gpu-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-device-display-virtio-gpu-pci-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-device-usb-host-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-device-usb-redirect-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-docs-10.1.0-17.el9_8.4.aarch64.rpm
qemu-kvm-tools-10.1.0-17.el9_8.4.aarch64.rpm
qemu-pr-helper-10.1.0-17.el9_8.4.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/qemu-kvm-10.1.0-17.el9_8.4.src.rpm
Related CVEs:
CVE-2026-48914
Description of changes:
[10.1.0-17.el9_8.4]
- kvm-virtio-blk-add-missing-VIRTIO_BLK_T_SCSI_CMD-size-ch.patch [RHEL-184527]
- Resolves: RHEL-184527
(CVE-2026-48914 qemu-kvm: Heap buffer overflow in virtio-blk SCSI request handling [rhel-9.8.z])
ELSA-2026-39317 Low: Oracle Linux 9 libxml2 security update
Oracle Linux Security Advisory ELSA-2026-39317
http://linux.oracle.com/errata/ELSA-2026-39317.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
libxml2-2.9.13-14.el9_8.2.i686.rpm
libxml2-2.9.13-14.el9_8.2.x86_64.rpm
libxml2-devel-2.9.13-14.el9_8.2.i686.rpm
libxml2-devel-2.9.13-14.el9_8.2.x86_64.rpm
python3-libxml2-2.9.13-14.el9_8.2.x86_64.rpm
aarch64:
libxml2-2.9.13-14.el9_8.2.aarch64.rpm
libxml2-devel-2.9.13-14.el9_8.2.aarch64.rpm
python3-libxml2-2.9.13-14.el9_8.2.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libxml2-2.9.13-14.el9_8.2.src.rpm
Related CVEs:
CVE-2025-6170
Description of changes:
[2.9.13-14.2]
- Fix CVE-2025-6170 (RHEL-182016)
ELSA-2026-36645 Important: Oracle Linux 9 kernel update
Oracle Linux Security Advisory ELSA-2026-36645
http://linux.oracle.com/errata/ELSA-2026-36645.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
kernel-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-abi-stablelists-5.14.0-687.23.1.el9_8.noarch.rpm
kernel-core-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-cross-headers-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-core-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-devel-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-devel-matched-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-modules-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-modules-core-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-modules-extra-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-debug-uki-virt-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-devel-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-devel-matched-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-doc-5.14.0-687.23.1.el9_8.noarch.rpm
kernel-headers-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-modules-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-modules-core-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-modules-extra-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-tools-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-tools-libs-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-tools-libs-devel-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-uki-virt-5.14.0-687.23.1.el9_8.x86_64.rpm
kernel-uki-virt-addons-5.14.0-687.23.1.el9_8.x86_64.rpm
libperf-5.14.0-687.23.1.el9_8.x86_64.rpm
perf-5.14.0-687.23.1.el9_8.x86_64.rpm
python3-perf-5.14.0-687.23.1.el9_8.x86_64.rpm
rtla-5.14.0-687.23.1.el9_8.x86_64.rpm
rv-5.14.0-687.23.1.el9_8.x86_64.rpm
aarch64:
kernel-cross-headers-5.14.0-687.23.1.el9_8.aarch64.rpm
kernel-headers-5.14.0-687.23.1.el9_8.aarch64.rpm
kernel-tools-5.14.0-687.23.1.el9_8.aarch64.rpm
kernel-tools-libs-5.14.0-687.23.1.el9_8.aarch64.rpm
kernel-tools-libs-devel-5.14.0-687.23.1.el9_8.aarch64.rpm
libperf-5.14.0-687.23.1.el9_8.aarch64.rpm
perf-5.14.0-687.23.1.el9_8.aarch64.rpm
python3-perf-5.14.0-687.23.1.el9_8.aarch64.rpm
rtla-5.14.0-687.23.1.el9_8.aarch64.rpm
rv-5.14.0-687.23.1.el9_8.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-687.23.1.el9_8.src.rpm
Related CVEs:
CVE-2026-43074
CVE-2026-46242
CVE-2026-53266
Description of changes:
[5.14.0-687.23.1]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 dying flag (Ian Kent) [RHEL-180773]
- eventpoll: drop dead bool return from ep_remove_epi() (Ian Kent) [RHEL-180773]
- eventpoll: refresh eventpoll_release() fast-path comment (Ian Kent) [RHEL-180773]
- eventpoll: move f_lock acquisition into ep_remove_file() (Ian Kent) [RHEL-180773]
- eventpoll: fix ep_remove struct eventpoll / struct file UAF (Ian Kent) [RHEL-180773] {CVE-2026-46242}
- eventpoll: drop vestigial __ prefix from ep_remove_{file,epi}() (Ian Kent) [RHEL-180773]
- eventpoll: move epi_fget() up (Ian Kent) [RHEL-180773]
- eventpoll: rename ep_remove_safe() back to ep_remove() (Ian Kent) [RHEL-180773]
- eventpoll: kill __ep_remove() (Ian Kent) [RHEL-180773]
- eventpoll: split __ep_remove() (Ian Kent) [RHEL-180773]
- eventpoll: use hlist_is_singular_node() in __ep_remove() (Ian Kent) [RHEL-180773]
- eventpoll: defer struct eventpoll free to RCU grace period (Ian Kent) [RHEL-173830] {CVE-2026-43074}
- epoll: annotate racy check (Ian Kent) [RHEL-180773]
- netfilter: bridge: make ebt_snat ARP rewrite writable (CKI Backport Bot) [RHEL-182344]
- tg3: Fix race for querying speed/duplex (CKI Backport Bot) [RHEL-182768]
ELSA-2026-19354 Important: Oracle Linux 9 PackageKit security update
Oracle Linux Security Advisory ELSA-2026-19354
http://linux.oracle.com/errata/ELSA-2026-19354.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
PackageKit-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-command-not-found-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-glib-1.2.6-2.0.1.el9_8.i686.rpm
PackageKit-glib-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-glib-devel-1.2.6-2.0.1.el9_8.i686.rpm
PackageKit-glib-devel-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-gstreamer-plugin-1.2.6-2.0.1.el9_8.x86_64.rpm
PackageKit-gtk3-module-1.2.6-2.0.1.el9_8.x86_64.rpm
aarch64:
PackageKit-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-command-not-found-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-glib-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-glib-devel-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-gstreamer-plugin-1.2.6-2.0.1.el9_8.aarch64.rpm
PackageKit-gtk3-module-1.2.6-2.0.1.el9_8.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/PackageKit-1.2.6-2.0.1.el9_8.src.rpm
Related CVEs:
CVE-2026-41651
Description of changes:
[1.2.6-2.0.1]
- remove RHEL vendor patch PackageKit-0.3.8-RHEL-Vendor.conf.patch
ELSA-2026-39127 Important: Oracle Linux 8 python-pillow security update
Oracle Linux Security Advisory ELSA-2026-39127
http://linux.oracle.com/errata/ELSA-2026-39127.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
python3-pillow-5.1.1-22.el8_10.i686.rpm
python3-pillow-5.1.1-22.el8_10.x86_64.rpm
python3-pillow-devel-5.1.1-22.el8_10.i686.rpm
python3-pillow-devel-5.1.1-22.el8_10.x86_64.rpm
python3-pillow-doc-5.1.1-22.el8_10.noarch.rpm
python3-pillow-tk-5.1.1-22.el8_10.x86_64.rpm
aarch64:
python3-pillow-5.1.1-22.el8_10.aarch64.rpm
python3-pillow-devel-5.1.1-22.el8_10.aarch64.rpm
python3-pillow-doc-5.1.1-22.el8_10.noarch.rpm
python3-pillow-tk-5.1.1-22.el8_10.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/python-pillow-5.1.1-22.el8_10.src.rpm
Related CVEs:
CVE-2026-54059
CVE-2026-54060
CVE-2026-55379
CVE-2026-55380
Description of changes:
[5.1.1-22]
- Security fix for CVE-2026-54059, CVE-2026-54060, CVE-2026-55379, CVE-2026-55380
Resolves: RHEL-192830, RHEL-192770, RHEL-192684, RHEL-192731
ELSA-2026-39083 Important: Oracle Linux 8 kernel update
Oracle Linux Security Advisory ELSA-2026-39083
http://linux.oracle.com/errata/ELSA-2026-39083.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
bpftool-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.143.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.143.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.143.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.143.1.el8_10.x86_64.rpm
perf-4.18.0-553.143.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.143.1.el8_10.x86_64.rpm
aarch64:
bpftool-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-cross-headers-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-headers-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-tools-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-tools-libs-4.18.0-553.143.1.el8_10.aarch64.rpm
kernel-tools-libs-devel-4.18.0-553.143.1.el8_10.aarch64.rpm
perf-4.18.0-553.143.1.el8_10.aarch64.rpm
python3-perf-4.18.0-553.143.1.el8_10.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.143.1.el8_10.src.rpm
Related CVEs:
CVE-2025-71066
CVE-2025-71089
CVE-2026-31411
CVE-2026-43499
CVE-2026-46113
CVE-2026-53166
CVE-2026-53266
CVE-2026-53359
Description of changes:
[4.18.0-553.143.1]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 _lock);
OraBug: 28481550.
Reviewed-by: Qing Zhao [qing.zhao@oracle.com]
[2.28-251.38]
- CVE-2026-5450: Fix buffer overflow in scanf (RHEL-172700)
[2.28-251.37]
- Add tests for CVE-2026-4437 and CVE-2026-4438 (RHEL-173358)
[2.28-251.36]
- Fix __nss_get_default_domain logic to restore netgroup user enumeration
(RHEL-168095)
[2.28-251.35]
- CVE-2026-4046: Fix assertion failure in IBM1390 and IBM1399 iconv modules
(RHEL-162891)
[2.28-251.34]
- Update locales for Croatia to use EUR as currency symbol. (RHEL-140104)
[2.28-251.33]
- Change the currency symbol for the bg_BG locale to euro. (RHEL-137185)
[2.28-251.32]
- Improve qsort implementation (RHEL-24169)
[2.28-251.31]
- CVE-2025-15281: wordexp WRDE_REUSE uninitialized memory read (RHEL-142787)
[2.28-251.30]
- Remove default /var/tmp for LD_PROFILE_OUTPUT (RHEL-142194)
ELSA-2026-26453 Important: Oracle Linux 7 389-ds-base security update
Oracle Linux Security Advisory ELSA-2026-26453
http://linux.oracle.com/errata/ELSA-2026-26453.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
389-ds-base-1.3.11.1-5.0.9.el7_9.x86_64.rpm
389-ds-base-devel-1.3.11.1-5.0.9.el7_9.x86_64.rpm
389-ds-base-libs-1.3.11.1-5.0.9.el7_9.x86_64.rpm
389-ds-base-snmp-1.3.11.1-5.0.9.el7_9.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/389-ds-base-1.3.11.1-5.0.9.el7_9.src.rpm
Related CVEs:
CVE-2026-9064
Description of changes:
[1.3.11.1-5.0.9]
- Security fix for CVE-2026-9064 [Orabug: 39570202]
[1.3.11.1-5.0.7]
- Security fix for CVE-2025-14905 [Orabug: 39146844]
[1.3.11.1-5.0.5]
- Allow Uniqueness plugin to search uniqueness attributes using custom matching rules [Orabug: 38388205]
ELSA-2026-16101 Important: Oracle Linux 7 host-metering security update
Oracle Linux Security Advisory ELSA-2026-16101
http://linux.oracle.com/errata/ELSA-2026-16101.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
host-metering-1.2.0-4.0.1.el7_9.x86_64.rpm
host-metering-selinux-1.2.0-4.0.1.el7_9.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/host-metering-1.2.0-4.0.1.el7_9.src.rpm
Related CVEs:
CVE-2026-32283
Description of changes:
[1.2.0-4.0.1]
- Rebuild with new go-toolset-1.19-golang to fix CVE-2026-32283 [Orabug: 39352233]
ELBA-2026-50354 Oracle Linux 8 oVirt 4.5 ovirt-engine bug fix update
Oracle Linux Bug Fix Advisory ELBA-2026-50354
http://linux.oracle.com/errata/ELBA-2026-50354.html
The following updated rpms for Oracle Linux 8 oVirt 4.5 have been uploaded to the Unbreakable Linux Network:
x86_64:
ovirt-engine-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-backend-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-dbscripts-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-health-check-bundler-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-restapi-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-base-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-cinderlib-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-imageio-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-common-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-setup-plugin-websocket-proxy-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-tools-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-tools-backup-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-vmconsole-proxy-helper-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-webadmin-portal-4.5.5-1.70.el8.noarch.rpm
ovirt-engine-websocket-proxy-4.5.5-1.70.el8.noarch.rpm
python3-ovirt-engine-lib-4.5.5-1.70.el8.noarch.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/ovirt-engine-4.5.5-1.70.el8.src.rpm
Description of changes:
[4.5.5-1.70]
- Remove vdsm compat flag from v2v-imports
[4.5.5-1.69]
- Add AMD EPYC-Genoa CPU model
[4.5.5-1.68]
- Pick fixes of backup and restore for OL9 and postgresql-16
- Pick fixes of migrate legacy p12 on openssl upgrade
- Fix restore owner and mode from the pre-reencrypt backup file