Microcode_CTL, Python, TigerVNC, and more updates for Oracle Linux

Oracle Linux 6474 Published by

Oracle has released a comprehensive batch of security advisories and bug fixes for Oracle Linux versions seven through ten, supporting both x86_64 and aarch64 architectures. The updates primarily target critical vulnerabilities in widely used software like OpenJDK Java, multiple Python releases, Firefox ESR, and essential system libraries such as gdk-pixbuf2 and webkit2gtk3. Administrators will also find important patches addressing race conditions in Kerberos, privilege escalation risks in sudo, and memory leaks within mdadm utilities.

ELBA-2026-9327 Oracle Linux 9 microcode_ctl bug fix and enhancement update
ELSA-2026-9683 Important: Oracle Linux 9 java-1.8.0-openjdk security update
ELSA-2026-10949 Important: Oracle Linux 9 python3.9 security update
ELSA-2026-9689 Important: Oracle Linux 9 java-21-openjdk security update
ELSA-2026-10757 Important: Oracle Linux 9 firefox security update
ELSA-2026-10745 Important: Oracle Linux 9 python3.12 security update
ELSA-2026-10739 Important: Oracle Linux 9 tigervnc security update
ELSA-2026-10708 Important: Oracle Linux 9 gdk-pixbuf2 security update
ELBA-2026-9328 Oracle Linux 9 krb5 bug fix and enhancement update
ELSA-2026-9689 Important: Oracle Linux 10 java-21-openjdk security update
ELSA-2026-10767 Important: Oracle Linux 10 firefox security update
ELSA-2026-10758 Important: Oracle Linux 10 sudo security update
ELSA-2026-10711 Important: Oracle Linux 10 python3.12 security update
ELSA-2026-10707 Important: Oracle Linux 10 gdk-pixbuf2 security update
ELSA-2026-10774 Important: Oracle Linux 9 python3.11 security update
ELSA-2026-10741 Important: Oracle Linux 8 gdk-pixbuf2 security update
ELSA-2026-11077 Important: Oracle Linux 8 python3 security update
ELSA-2026-9683 Important: Oracle Linux 8 java-1.8.0-openjdk security update
ELSA-2026-9689 Important: Oracle Linux 8 java-21-openjdk security update
ELSA-2026-10766 Important: Oracle Linux 8 firefox security update
ELSA-2026-11062 Important: Oracle Linux 8 python3.11 security update
ELSA-2026-10950 Important: Oracle Linux 8 python3.12 security update
ELBA-2026-50242 Oracle Linux 8 mdadm bug fix update
ELSA-2026-10702 Important: Oracle Linux 8 webkit2gtk3 security update
ELSA-2026-7032 Important: Oracle Linux 7 libpng12 security update




ELBA-2026-9327 Oracle Linux 9 microcode_ctl bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-9327

http://linux.oracle.com/errata/ELBA-2026-9327.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
microcode_ctl-20250812-1.20260210.1.0.1.el9_7.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/microcode_ctl-20250812-1.20260210.1.0.1.el9_7.src.rpm

Description of changes:

[20250812-1.20260210.1.0.1]
- add support for UEK7/UEK8 and ueknext kernels
- don't bother calling dracut if virtualized [Orabug: 35710094]
- ensure UEK also rebuilds initramfs [Orabug: 34280058]
- enable early update for 06-4f-01
- remove no longer appropriate caveats for 06-2d-07 and 06-55-04
- enable early and late load on RHCK

[4:20250812-1.20260210-1]
- Update Intel CPU microcode to microcode-20260210 release (RHEL-152424)
- Microcode files (/platform_mask shown) with revision updates (in hex):
06-6a-06/87: Ice Lake-X: d000410 to d000421
06-6c-01/10: Ice Lake-D: 10002e0 to 10002f1
06-7e-05/80: Ice Lake-L: 00ca to 00cc
06-8c-01/80: Tiger Lake: 00bc to 00be
06-8c-02/c2: Tiger Lake: 003c to 003e
06-8d-01/c2: Tiger Lake-H: 0056 to 0058
06-8f-07/87: Sapphire Rapids: 2b000650 to 2b000661
06-8f-08/10: Sapphire Rapids with HBM: 2c000410 to 2c000421
06-8f-08/87: Sapphire Rapids: 2b000650 to 2b000661
06-97-02/07: Alder Lake: 003d to 003e
06-97-05/07: Alder Lake: 003d to 003e
06-9a-03/80: Alder Lake-L: 043a to 043b
06-9a-04/80: Alder Lake-L: 043a to 043b
06-9a-04/40: Arizona Beach (Atom C11xx): 000b to 000c
06-9a-04/80: Alder Lake-L: 043a to 043b
06-a7-01/02: Rocket Lake: 0064 to 0065
06-aa-04/e6: Meteor Lake-L: 0025 to 0028
06-ad-01/20: Granite Rapids-X: a000124 to a000133
06-ad-01/95: Granite Rapids-X: 10003f0 to 1000405
06-ae-01/97: Granite Rapids-D: 1000273 to 10002f3
06-b5-00/80: Arrow Lake-U: 000a to 000d
06-b7-01/32: Raptor Lake: 0132 to 0133
06-ba-02/e0: Raptor Lake-P: 6133 to 6134
06-ba-03/e0: Raptor Lake-P: 6133 to 6134
06-be-00/19: Gracemont (Alder Lake-N): 001e to 0021
06-bf-02/07: Raptor Lake-S: 003d to 003e
06-bf-05/07: Raptor Lake-S: 003d to 003e
06-c5-02/82: Arrow Lake-H: 011a to 011b
06-c6-02/82: Arrow Lake: 011a to 011b
06-cf-02/87: Emerald Rapids: 210002c0 to 210002d3
Resolves: RHEL-152424



ELSA-2026-9683 Important: Oracle Linux 9 java-1.8.0-openjdk security update


Oracle Linux Security Advisory ELSA-2026-9683

http://linux.oracle.com/errata/ELSA-2026-9683.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
java-1.8.0-openjdk-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-demo-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-demo-fastdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-demo-slowdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-devel-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-devel-fastdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-devel-slowdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-fastdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-headless-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-headless-fastdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-headless-slowdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-javadoc-1.8.0.492.b09-2.0.1.el9.noarch.rpm
java-1.8.0-openjdk-javadoc-zip-1.8.0.492.b09-2.0.1.el9.noarch.rpm
java-1.8.0-openjdk-slowdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-src-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-src-fastdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm
java-1.8.0-openjdk-src-slowdebug-1.8.0.492.b09-2.0.1.el9.x86_64.rpm

aarch64:
java-1.8.0-openjdk-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-demo-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-demo-fastdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-demo-slowdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-devel-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-devel-fastdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-devel-slowdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-fastdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-headless-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-headless-fastdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-headless-slowdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-javadoc-1.8.0.492.b09-2.0.1.el9.noarch.rpm
java-1.8.0-openjdk-javadoc-zip-1.8.0.492.b09-2.0.1.el9.noarch.rpm
java-1.8.0-openjdk-slowdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-src-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-src-fastdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm
java-1.8.0-openjdk-src-slowdebug-1.8.0.492.b09-2.0.1.el9.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/java-1.8.0-openjdk-1.8.0.492.b09-2.0.1.el9.src.rpm

Related CVEs:

CVE-2026-22007
CVE-2026-22013
CVE-2026-22016
CVE-2026-22018
CVE-2026-22021
CVE-2026-23865
CVE-2026-34268

Description of changes:

[1:1.8.0.492.b09-2.0.1]
- Add Oracle vendor bug URL [Orabug: 34340155]

[1:1.8.0.492.b09-2]
- Bump release for PQC build
- Related: RHEL-169446

[1:1.8.0.492.b09-1]
- Update to 8u492-b09 (GA)
- Update release notes for 8u492-b09.
- Add missing CVEs for 8u482.
- Regenerate JDK-8199936/PR3533 patch following JDK-8374917
- Regenerate JDK-8186464/RH1433262 patch following JDK-8370986
- Drop local giflib 5.2.2 patch now JDK-8328999 is included upstream
- Bump freetype version to 2.14.2 following JDK-8373290 & JDK-8379158
- Bump giflib version to 6.1.2 following JDK-8379256 & JDK-8380078
- Bump LCMS 2 version to 2.15.0 following JDK-8303482
- Bump libpng version to 1.6.57 following JDK-8375063, JDK-8377526, JDK-8380959 & JDK-8382047
- Sync the copy of the portable specfile with the latest update
- ** This tarball is embargoed until 2026-04-21 @ 1pm PT. **
- Resolves: RHEL-169446
- Resolves: RHEL-133291
- Resolves: RHEL-147348
- Resolves: RHEL-148407
- Resolves: RHEL-148981
- Resolves: RHEL-161303
- Resolves: RHEL-161452
- Resolves: RHEL-157139
- Resolves: RHEL-157156

[1:1.8.0.482.b08-3]
- Update tagging scripts to include signature checks and correctly handle gating
- Add gating scripts to simplify obtaining results and waiving issues
- Resolves: RHEL-147634
- Resolves: RHEL-151197

[1:1.8.0.482.b08-2]
- Bump rpmrelease for CentOS build
- Related: RHEL-142687
- Related: RHEL-139534
- Related: RHEL-131588
- Related: RHEL-131600
- Related: RHEL-142875
- Related: RHEL-142697

[1:1.8.0.482.b08-1]
- Update to 8u482-b08 (GA).
- Update release notes for 8u482-b08.
- Remove generated-configure.sh changes from JDK-8141590 & FIPS patch as we already autogenerate this
- Turn on system FreeType as on later JDK versions and add to _privatelibs
- Set bundled FreeType version to 2.13.2 following JDK-8316028
- Bump LCMS 2 version to 2.14.0 following JDK-8297088
- Bump libpng version to 1.6.51 following JDK-8372534
- Update FIPS patch to include nss.fips.cfg that grants CKA_ENCRYPT
- Handle 'upgrade' as an alternative to 'update' in openjdk_news.sh
- Sync the copy of the portable specfile with the latest update
- ** This tarball is embargoed until 2026-01-20 @ 1pm PT. **
- Resolves: RHEL-142687
- Resolves: RHEL-139534
- Resolves: RHEL-131588
- Resolves: RHEL-131600
- Resolves: RHEL-142875
- Resolves: RHEL-142697



ELSA-2026-10949 Important: Oracle Linux 9 python3.9 security update


Oracle Linux Security Advisory ELSA-2026-10949

http://linux.oracle.com/errata/ELSA-2026-10949.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python-unversioned-command-3.9.25-3.0.1.el9_7.3.noarch.rpm
python3-3.9.25-3.0.1.el9_7.3.i686.rpm
python3-3.9.25-3.0.1.el9_7.3.x86_64.rpm
python3-debug-3.9.25-3.0.1.el9_7.3.i686.rpm
python3-debug-3.9.25-3.0.1.el9_7.3.x86_64.rpm
python3-devel-3.9.25-3.0.1.el9_7.3.i686.rpm
python3-devel-3.9.25-3.0.1.el9_7.3.x86_64.rpm
python3-idle-3.9.25-3.0.1.el9_7.3.i686.rpm
python3-idle-3.9.25-3.0.1.el9_7.3.x86_64.rpm
python3-libs-3.9.25-3.0.1.el9_7.3.i686.rpm
python3-libs-3.9.25-3.0.1.el9_7.3.x86_64.rpm
python3-test-3.9.25-3.0.1.el9_7.3.i686.rpm
python3-test-3.9.25-3.0.1.el9_7.3.x86_64.rpm
python3-tkinter-3.9.25-3.0.1.el9_7.3.i686.rpm
python3-tkinter-3.9.25-3.0.1.el9_7.3.x86_64.rpm

aarch64:
python-unversioned-command-3.9.25-3.0.1.el9_7.3.noarch.rpm
python3-3.9.25-3.0.1.el9_7.3.aarch64.rpm
python3-debug-3.9.25-3.0.1.el9_7.3.aarch64.rpm
python3-devel-3.9.25-3.0.1.el9_7.3.aarch64.rpm
python3-idle-3.9.25-3.0.1.el9_7.3.aarch64.rpm
python3-libs-3.9.25-3.0.1.el9_7.3.aarch64.rpm
python3-test-3.9.25-3.0.1.el9_7.3.aarch64.rpm
python3-tkinter-3.9.25-3.0.1.el9_7.3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.9-3.9.25-3.0.1.el9_7.3.src.rpm

Related CVEs:

CVE-2026-4786
CVE-2026-6100

Description of changes:

[3.9.25-3.0.1.el9_7.3]
- Remove upstream URL reference

[3.9.25-3.3]
- Security fixes for CVE-2026-4786 and CVE-2026-6100
Resolves: RHEL-168157, RHEL-167915

[3.9.25-3.2]
- Security fix for CVE-2026-4519
Resolves: RHEL-158052

[3.9.25-3.1]
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143108 RHEL-143169 RHEL-144893



ELSA-2026-9689 Important: Oracle Linux 9 java-21-openjdk security update


Oracle Linux Security Advisory ELSA-2026-9689

http://linux.oracle.com/errata/ELSA-2026-9689.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
java-21-openjdk-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-demo-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-demo-fastdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-demo-slowdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-devel-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-devel-fastdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-devel-slowdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-fastdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-headless-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-headless-fastdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-headless-slowdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-javadoc-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-javadoc-zip-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-jmods-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-jmods-fastdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-jmods-slowdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-slowdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-src-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-src-fastdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-src-slowdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-static-libs-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-static-libs-fastdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm
java-21-openjdk-static-libs-slowdebug-21.0.11.0.10-2.0.1.el9.x86_64.rpm

aarch64:
java-21-openjdk-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-demo-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-demo-fastdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-demo-slowdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-devel-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-devel-fastdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-devel-slowdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-fastdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-headless-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-headless-fastdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-headless-slowdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-javadoc-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-javadoc-zip-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-jmods-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-jmods-fastdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-jmods-slowdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-slowdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-src-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-src-fastdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-src-slowdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-static-libs-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-static-libs-fastdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm
java-21-openjdk-static-libs-slowdebug-21.0.11.0.10-2.0.1.el9.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/java-21-openjdk-21.0.11.0.10-2.0.1.el9.src.rpm

Related CVEs:

CVE-2026-22007
CVE-2026-22013
CVE-2026-22016
CVE-2026-22018
CVE-2026-22021
CVE-2026-23865
CVE-2026-34268
CVE-2026-34282

Description of changes:

[1:21.0.11.0.10-2.0.1]
- Add Oracle vendor bug URL [Orabug: 34340155]

[1:21.0.11.0.10-2]
- Bump release for PQC build
- Related: RHEL-169609

[1:21.0.11.0.10-1]
- Update to jdk-21.0.11+10 (GA)
- Update release notes to 21.0.11+10
- Update FIPS patch to feef2dc3ca7 version synced with 21.0.11+9 and adapted to JDK-8244336
- Bump freetype version to 2.14.2 following JDK-8373290 & JDK-8379158
- Bump giflib version to 6.1.2 following JDK-8379256 & JDK-8380078
- Bump libpng version to 1.6.57 following JDK-8380959 & JDK-8382047
- Bump zlib version to 1.3.2 following JDK-8378631
- Add JDK-8375294 EOPNOTSUPP patch ahead of 21.0.13
- Sync the copy of the portable specfile with the latest update
- ** This tarball is embargoed until 2026-04-21 @ 1pm PT. **
- Resolves: RHEL-169609
- Resolves: RHEL-133293
- Resolves: RHEL-147352
- Resolves: RHEL-148409
- Resolves: RHEL-148992
- Resolves: RHEL-157141
- Resolves: RHEL-161305
- Resolves: RHEL-161454
- Resolves: RHEL-169616

[1:21.0.10.0.7-2]
- Bump rpmrelease for CentOS build
- Related: RHEL-142859
- Related: RHEL-139560
- Related: RHEL-131592
- Related: RHEL-131602
- Related: RHEL-122121
- Related: RHEL-142820



ELSA-2026-10757 Important: Oracle Linux 9 firefox security update


Oracle Linux Security Advisory ELSA-2026-10757

http://linux.oracle.com/errata/ELSA-2026-10757.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-140.10.0-1.0.1.el9_7.x86_64.rpm
firefox-x11-140.10.0-1.0.1.el9_7.x86_64.rpm

aarch64:
firefox-140.10.0-1.0.1.el9_7.aarch64.rpm
firefox-x11-140.10.0-1.0.1.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/firefox-140.10.0-1.0.1.el9_7.src.rpm

Related CVEs:

CVE-2026-6746
CVE-2026-6747
CVE-2026-6748
CVE-2026-6749
CVE-2026-6750
CVE-2026-6751
CVE-2026-6752
CVE-2026-6753
CVE-2026-6754
CVE-2026-6757
CVE-2026-6759
CVE-2026-6761
CVE-2026-6762
CVE-2026-6763
CVE-2026-6764
CVE-2026-6765
CVE-2026-6766
CVE-2026-6767
CVE-2026-6769
CVE-2026-6770
CVE-2026-6771
CVE-2026-6772
CVE-2026-6776
CVE-2026-6785
CVE-2026-6786

Description of changes:

[140.10.0-1.0.1]
- Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079773]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[140.10.0]
- Add debranding patches (Mustafa Gezen)
- Add OpenELA default preferences (Louis Abel)

[140.10.0-1]
- Update to 140.10.0 ESR



ELSA-2026-10745 Important: Oracle Linux 9 python3.12 security update


Oracle Linux Security Advisory ELSA-2026-10745

http://linux.oracle.com/errata/ELSA-2026-10745.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.12-3.12.12-4.0.1.el9_7.3.i686.rpm
python3.12-3.12.12-4.0.1.el9_7.3.x86_64.rpm
python3.12-debug-3.12.12-4.0.1.el9_7.3.i686.rpm
python3.12-debug-3.12.12-4.0.1.el9_7.3.x86_64.rpm
python3.12-devel-3.12.12-4.0.1.el9_7.3.i686.rpm
python3.12-devel-3.12.12-4.0.1.el9_7.3.x86_64.rpm
python3.12-idle-3.12.12-4.0.1.el9_7.3.i686.rpm
python3.12-idle-3.12.12-4.0.1.el9_7.3.x86_64.rpm
python3.12-libs-3.12.12-4.0.1.el9_7.3.i686.rpm
python3.12-libs-3.12.12-4.0.1.el9_7.3.x86_64.rpm
python3.12-test-3.12.12-4.0.1.el9_7.3.i686.rpm
python3.12-test-3.12.12-4.0.1.el9_7.3.x86_64.rpm
python3.12-tkinter-3.12.12-4.0.1.el9_7.3.i686.rpm
python3.12-tkinter-3.12.12-4.0.1.el9_7.3.x86_64.rpm

aarch64:
python3.12-3.12.12-4.0.1.el9_7.3.aarch64.rpm
python3.12-debug-3.12.12-4.0.1.el9_7.3.aarch64.rpm
python3.12-devel-3.12.12-4.0.1.el9_7.3.aarch64.rpm
python3.12-idle-3.12.12-4.0.1.el9_7.3.aarch64.rpm
python3.12-libs-3.12.12-4.0.1.el9_7.3.aarch64.rpm
python3.12-test-3.12.12-4.0.1.el9_7.3.aarch64.rpm
python3.12-tkinter-3.12.12-4.0.1.el9_7.3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.12-3.12.12-4.0.1.el9_7.3.src.rpm

Related CVEs:

CVE-2026-4786
CVE-2026-6100

Description of changes:

[3.12.12-4.0.1.el9_7.3]
- Remove upstream URL reference

[3.12.12-4.3]
- Security fixes for CVE-2026-4786, CVE-2026-6100
Resolves: RHEL-168156, RHEL-167914

[3.12.12-4.2]
- Security fix for CVE-2026-4519
Resolves: RHEL-158051

[3.12.12-4.1]
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143106 RHEL-143168 RHEL-144891



ELSA-2026-10739 Important: Oracle Linux 9 tigervnc security update


Oracle Linux Security Advisory ELSA-2026-10739

http://linux.oracle.com/errata/ELSA-2026-10739.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
tigervnc-1.15.0-6.el9_7.1.x86_64.rpm
tigervnc-icons-1.15.0-6.el9_7.1.noarch.rpm
tigervnc-license-1.15.0-6.el9_7.1.noarch.rpm
tigervnc-selinux-1.15.0-6.el9_7.1.noarch.rpm
tigervnc-server-1.15.0-6.el9_7.1.x86_64.rpm
tigervnc-server-minimal-1.15.0-6.el9_7.1.x86_64.rpm
tigervnc-server-module-1.15.0-6.el9_7.1.x86_64.rpm

aarch64:
tigervnc-1.15.0-6.el9_7.1.aarch64.rpm
tigervnc-icons-1.15.0-6.el9_7.1.noarch.rpm
tigervnc-license-1.15.0-6.el9_7.1.noarch.rpm
tigervnc-selinux-1.15.0-6.el9_7.1.noarch.rpm
tigervnc-server-1.15.0-6.el9_7.1.aarch64.rpm
tigervnc-server-minimal-1.15.0-6.el9_7.1.aarch64.rpm
tigervnc-server-module-1.15.0-6.el9_7.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/tigervnc-1.15.0-6.el9_7.1.src.rpm

Related CVEs:

CVE-2026-33999
CVE-2026-34001
CVE-2026-34003
CVE-2026-34352

Description of changes:

[1.15.0-6.1]
- Fix CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002,
CVE-2026-34003 xorg-x11-server: various XKB and XSYNC vulnerabilities
Resolves: RHEL-163212
Resolves: RHEL-163280
Resolves: RHEL-163266
- Fix CVE-2026-34352
Resolves: RHEL-167769



ELSA-2026-10708 Important: Oracle Linux 9 gdk-pixbuf2 security update


Oracle Linux Security Advisory ELSA-2026-10708

http://linux.oracle.com/errata/ELSA-2026-10708.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
gdk-pixbuf2-2.42.6-6.el9_7.1.i686.rpm
gdk-pixbuf2-2.42.6-6.el9_7.1.x86_64.rpm
gdk-pixbuf2-devel-2.42.6-6.el9_7.1.i686.rpm
gdk-pixbuf2-devel-2.42.6-6.el9_7.1.x86_64.rpm
gdk-pixbuf2-modules-2.42.6-6.el9_7.1.i686.rpm
gdk-pixbuf2-modules-2.42.6-6.el9_7.1.x86_64.rpm

aarch64:
gdk-pixbuf2-2.42.6-6.el9_7.1.aarch64.rpm
gdk-pixbuf2-devel-2.42.6-6.el9_7.1.aarch64.rpm
gdk-pixbuf2-modules-2.42.6-6.el9_7.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/gdk-pixbuf2-2.42.6-6.el9_7.1.src.rpm

Related CVEs:

CVE-2026-5201

Description of changes:

* Tue Apr 21 2026 Benjamin Otte

Chromium, VIM, Edk2 updates for Fedora

FreeRDP, GDK-Pixbuf2, FreeRDP, and more updates for RHEL

Windows

Linux

macOS

Community

  • Lexonight
    Hey everyone,Wanted to share a project I've been b ...
  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...