Kernel-RT and LibTIFF updates for AlmaLinux

AlmaLinux 2483 Published by

AlmaLinux has released two security updates: ALSA-2025:19932 for the kernel-rt package and ALSA-2025:20034 for libtiff. The kernel-rt update addresses three vulnerabilities, including one related to conditional IBPB mitigation (CVE-2025-40300) and another that fixes a zswap writeback race condition (CVE-2023-53178). In contrast, the libtiff update patches a single vulnerability known as LibTIFF Use-After-Free Vulnerability (CVE-2025-8176), which is classified as "Important."

ALSA-2025:19932: kernel-rt security update (Moderate)
ALSA-2025:20034: libtiff security update (Important)




ALSA-2025:19932: kernel-rt security update (Moderate)


Hi,

You are receiving an AlmaLinux Security update email because you subscribed to receive errata notifications from AlmaLinux.

AlmaLinux: 8
Type: Security
Severity: Moderate
Release date: 2025-11-11

Summary:

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

Security Fix(es):

* kernel: x86/vmscape: Add conditional IBPB mitigation (CVE-2025-40300)
* kernel: mm: fix zswap writeback race condition (CVE-2023-53178)
* kernel: fs: fix UAF/GPF bug in nilfs_mdt_destroy (CVE-2022-50367)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Full details, updated packages, references, and other related information: https://errata.almalinux.org/8/ALSA-2025-19932.html

This message is automatically generated, please don’t reply. For further questions, please, contact us via the AlmaLinux community chat: https://chat.almalinux.org/.
Want to change your notification settings? Sign in and manage mailing lists on https://lists.almalinux.org.

Kind regards,
AlmaLinux Team



ALSA-2025:20034: libtiff security update (Important)


Hi,

You are receiving an AlmaLinux Security update email because you subscribed to receive errata notifications from AlmaLinux.

AlmaLinux: 8
Type: Security
Severity: Important
Release date: 2025-11-11

Summary:

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files.

Security Fix(es):

* libtiff: LibTIFF Use-After-Free Vulnerability (CVE-2025-8176)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Full details, updated packages, references, and other related information: https://errata.almalinux.org/8/ALSA-2025-20034.html

This message is automatically generated, please don’t reply. For further questions, please, contact us via the AlmaLinux community chat: https://chat.almalinux.org/.
Want to change your notification settings? Sign in and manage mailing lists on https://lists.almalinux.org.

Kind regards,
AlmaLinux Team


BIND, RunC, Frr, and more updates for Oracle Linux

Firefox update for Slackware

Windows

Linux

macOS

Community

  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...