Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, SUSE Linux, and Ubuntu Linux.
AlmaLinux
- ALSA-2025:0401: grafana security update (Important)
- ALSA-2025:0595: redis:6 security update (Important)
- ALSA-2025:0578: kernel security update (Moderate)
- ALSA-2025:0667: python-jinja2 security update (Important)
- ALSA-2025:0673: git-lfs security update (Important)
- ALSA-2025:0422: java-17-openjdk security update for AlmaLinux 8.6, 8.8, 8.10, 9.4 and 9.5 (Moderate)
- ALSA-2025:0426: java-21-openjdk security update for AlmaLinux 8.10, 9.4 and 9.5 (Moderate)
Debian GNU/Linux
- [DLA 4019-1] busybox security update
- [DSA 5846-1] libreoffice security update
- [DLA 4022-1] tryton-server security update
- [DLA 4020-1] libreoffice security update
- ELA-1290-2 rsync regression update
- ELA-1298-1 tiff security update
- ELA-1297-1 redis security update
- ELA-1296-1 libtar security update
- ELA-1295-1 hplip security update
- [DLA 4026-1] tiff security update
- [DLA 4025-1] redis security update
- [DLA 4024-1] poco security update
- [DLA 4021-1] 389-ds-base security update
- [DLA 4023-1] libebml security update
- [DLA 4027-1] sympa security update
- ELA-1299-1 libreoffice security update
- [DLA 4016-1] ucf security update
- [DSA 5847-1] snapcast security update
- [DLA 4028-1] git-lfs security update
- ELA-1300-1 frr security update
- [DLA 4029-1] frr security update
- [DLA 4030-1] python-django security update
- [DSA 5848-1] chromium security update
- ELA-1301-1 rails security update
- [DSA 5849-1] git-lfs security update
Fedora Linux
- Fedora 41 Update: rsync-3.4.1-1.fc41
- Fedora 40 Update: python-jinja2-3.1.5-1.fc40
- Fedora 40 Update: webkit2gtk4.0-2.46.5-1.fc40
- Fedora 40 Update: SDL2_sound-2.0.4-1.fc40
- Fedora 41 Update: webkit2gtk4.0-2.46.5-1.fc41
- Fedora 41 Update: SDL2_sound-2.0.4-1.fc41
- Fedora 40 Update: git-lfs-3.6.1-1.fc40
- Fedora 41 Update: pam-u2f-1.3.2-1.fc41
- Fedora 41 Update: git-lfs-3.6.1-1.fc41
- Fedora 40 Update: pam-u2f-1.3.2-1.fc40
- Fedora 40 Update: rsync-3.4.1-1.fc40
- Fedora 41 Update: containers-common-0.61.1-1.fc41
- Fedora 41 Update: podman-5.3.2-1.fc41
- Fedora 41 Update: buildah-1.38.1-1.fc41
- Fedora 41 Update: golang-1.23.5-1.fc41
- Fedora 40 Update: chromium-132.0.6834.110-1.fc40
- Fedora 40 Update: mediawiki-1.41.5-1.fc40
- Fedora 41 Update: chromium-132.0.6834.110-1.fc41
- Fedora 41 Update: mediawiki-1.41.5-1.fc41
Gentoo Linux
- [ GLSA 202501-10 ] Mozilla Firefox: Multiple Vulnerabilities
- [ GLSA 202501-09 ] QtWebEngine: Multiple Vulnerabilities
- [ GLSA 202501-08 ] Qt: Buffer Overflow
- [ GLSA 202501-07 ] libgsf: Multiple Vulnerabilities
- [ GLSA 202501-06 ] GPL Ghostscript: Multiple Vulnerabilities
- [ GLSA 202501-05 ] libuv: Hostname Truncation
- [ GLSA 202501-04 ] Yubico pam-u2f: Partial Authentication Bypass
- [ GLSA 202501-11 ] PHP: Multiple Vulnerabilities
Oracle Linux
- ELBA-2025-20056 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update
- ELBA-2025-20056 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update
- ELSA-2025-0382 Important: Oracle Linux 8 .NET 9.0 security update
- ELSA-2025-0381 Important: Oracle Linux 8 .NET 8.0 security update
- ELBA-2025-20056 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
Red Hat Enterprise Linux
- RHSA-2025:0401: Important: grafana security update
- RHSA-2025:0404: Important: iperf3 security update
- RHSA-2025:0402: Important: iperf3 security update
- RHSA-2025:0403: Important: iperf3 security update
- RHSA-2025:0399: Important: redis security update
- RHSA-2025:0398: Important: redis security update
- RHSA-2025:0400: Important: redis security update
- RHSA-2025:0440: Important: iperf3 security update
- RHSA-2025:0342: Moderate: Red Hat JBoss Web Server 6.0.5 release and security update
- RHSA-2025:0505: Important: iperf3 security update
- RHSA-2025:0576: Important: Red Hat Advanced Cluster Management 2.9.6 bug fixes and container updates
- RHSA-2025:0364: Important: OpenShift Container Platform 4.14.45 bug fix and security update
- RHSA-2025:0578: Moderate: kernel security update
- RHSA-2025:0577: Important: Red Hat multicluster global hub 1.3.2 enhancements and container updates
- RHSA-2025:0552: Important: Multicluster Engine for Kubernetes 2.4.7 security updates and bug fixes
- RHSA-2025:0570: Important: iperf3 security update
- RHSA-2025:0560: Important: Red Hat Multicluster GlobalHub 1.2.1 bug fixes and container updates
- RHSA-2025:0566: Important: redis:7 security update
- RHSA-2025:0548: Important: iperf3 security update
- RHSA-2025:0542: Moderate: JBoss EAP XP 5.0 Update 1.0 release. See references for release notes.
- RHSA-2025:0532: Important: .NET 8.0 security update
- RHSA-2025:0343: Moderate: Red Hat JBoss Web Server 6.0.5 release and security update
- RHSA-2025:0425: Moderate: OpenJDK 17.0.14 Security Update for Windows Builds
- RHSA-2025:0422: Moderate: java-17-openjdk security update for RHEL 8.6, 8.8, 8.10, 9.4 and 9.5
- RHSA-2025:0595: Important: redis:6 security update
- RHSA-2025:0421: Moderate: java-17-openjdk security update for RHEL 8.4
- RHSA-2025:0423: Moderate: java-17-openjdk security update for RHEL 9.0 and 9.2
- RHSA-2025:0429: Moderate: java-11-openjdk ELS security update
- RHSA-2025:0640: Important: redis:6 security update
- RHSA-2025:0637: Important: rsync security update
- RHSA-2025:0426: Moderate: java-21-openjdk security update for RHEL 8.10, 9.4 and 9.5
- RHSA-2025:0428: Moderate: OpenJDK 21.0.6 Security Update for Windows Builds
- RHSA-2025:0427: Moderate: OpenJDK 21.0.6 Security Update for Portable Linux Builds
- RHSA-2025:0439: Moderate: Red Hat OpenStack Platform 18.0.4 (openstack-ironic) security update
- RHSA-2025:0424: Moderate: OpenJDK 17.0.14 Security Update for Portable Linux Builds
- RHSA-2025:0662: Important: grafana security update
- RHSA-2025:0664: Moderate: Release of OpenShift Serverless Logic 1.35.0 security update & enhancements
- RHSA-2025:0679: Important: Red Hat Advanced Cluster Management 2.10.7 bug fixes and container updates
- RHSA-2025:0678: Important: RHSA: Submariner 0.16.8 - bug and security fixes
- RHSA-2025:0676: Important: Multicluster Engine for Kubernetes 2.5.8 security updates and bug fixes
- RHSA-2025:0673: Important: git-lfs security update
- RHSA-2025:0667: Important: python-jinja2 security update
SUSE Linux
- SUSE-SU-2025:0180-1: important: Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3)
- SUSE-SU-2025:0185-1: important: Security update for the Linux Kernel (Live Patch 32 for SLE 15 SP4)
- SUSE-SU-2025:0187-1: important: Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP6)
- SUSE-SU-2025:0188-1: important: Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP6)
- SUSE-SU-2025:0181-1: important: Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP5)
- SUSE-SU-2025:0184-1: important: Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6)
- openSUSE-SU-2025:0018-1: important: Security update for chromium
- SUSE-SU-2025:0196-1: moderate: Security update for dhcp
- SUSE-SU-2025:0200-1: important: Security update for pam_u2f
- SUSE-SU-2025:0201-1: important: Security update for the Linux Kernel
- SUSE-SU-2025:0202-1: important: Security update for the Linux Kernel
- SUSE-SU-2025:0203-1: important: Security update for the Linux Kernel
- SUSE-SU-2025:0207-1: important: Security update for nvidia-open-driver-G06-signed
- SUSE-SU-2025:0208-1: important: Security update for nvidia-open-driver-G06-signed
- SUSE-SU-2025:0215-1: moderate: Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-containe ...
- SUSE-SU-2025:0217-1: moderate: Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadprox ...
- SUSE-SU-2025:0214-1: moderate: Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-containe ...
- SUSE-SU-2025:0216-1: moderate: Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadprox ...
- openSUSE-SU-2025:0021-1: important: Security update for gh
- openSUSE-SU-2025:14672-1: moderate: ruby3.4-rubygem-actiontext-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:14677-1: moderate: ruby3.4-rubygem-activestorage-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:14679-1: moderate: ruby3.4-rubygem-rails-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:14668-1: moderate: ruby3.4-rubygem-actioncable-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:14671-1: moderate: ruby3.4-rubygem-actionpack-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:14667-1: moderate: nvidia-modprobe-565.77-1.1 on GA media
- openSUSE-SU-2025:14666-1: moderate: helmfile-0.170.0-1.1 on GA media
- openSUSE-SU-2025:14680-1: moderate: ruby3.4-rubygem-railties-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:14676-1: moderate: ruby3.4-rubygem-activerecord-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:14674-1: moderate: ruby3.4-rubygem-activejob-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:14673-1: moderate: ruby3.4-rubygem-actionview-8.0-8.0.1-1.1 on GA media
- openSUSE-SU-2025:0025-1: moderate: Security update for cheat
- openSUSE-SU-2025:0030-1: moderate: Security update for dante
- openSUSE-SU-2025:14681-1: moderate: grafana-11.3.2-1.1 on GA media
- SUSE-SU-2025:0226-1: moderate: Security update for docker-stable
- openSUSE-SU-2025:14692-1: moderate: libQt6Bluetooth6-6.8.1-2.1 on GA media
- openSUSE-SU-2025:14690-1: moderate: python311-azure-storage-blob-12.24.1-1.1 on GA media
- SUSE-SU-2025:0232-1: important: Security update for nodejs20
- SUSE-SU-2025:0233-1: important: Security update for nodejs18
- SUSE-SU-2025:0237-1: important: Security update for nodejs20
- openSUSE-SU-2025:0033-1: moderate: Security update for qt6-connectivity
- openSUSE-SU-2025:14693-1: moderate: go1.24-1.24rc2-1.1 on GA media
Ubuntu Linux
- [USN-7217-1] PoDoFo library vulnerabilities
- [USN-7166-4] Linux kernel (Xilinx ZynqMP) vulnerabilities
- [USN-7219-1] Python vulnerability
- [USN-7218-1] Python vulnerability
- [USN-7221-1] Linux kernel (OEM) vulnerabilities
- [USN-7220-1] Vim vulnerability
- [USN-7222-1] BlueZ vulnerabilities
- [USN-7223-1] OpenJPEG vulnerabilities
- [USN-7205-2] Django vulnerability
- [USN-7227-1] PCL vulnerability
- [USN-7225-1] HTMLDOC vulnerabilities
- [USN-7224-1] Cyrus IMAP Server vulnerabilities
