NodeJS, Git-LFS, mod_md, and more updates for Oracle Linux

Oracle Linux 6427 Published by

Oracle has released several security updates for its Linux operating systems. The updates include a mod_md security update for Oracle Linux 10, which is considered important, as well as two nodejs:24 bug fixes and enhancements for both Oracle Linux 9 and 8. Additionally, there are security updates for git-lfs on Oracle Linux 9 and 8, with the Oracle Linux 9 mod_md also receiving a security update.

ELSA-2025-23738 Important: Oracle Linux 10 mod_md security update
ELEA-2025-23332 Oracle Linux 9 nodejs:24 bug fix and enhancement update
ELSA-2025-23744 Important: Oracle Linux 9 git-lfs security update
ELSA-2025-23739 Important: Oracle Linux 9 mod_md security update
ELBA-2025-23317 Oracle Linux 9 nodejs:24 bug fix and enhancement update
ELSA-2025-23745 Important: Oracle Linux 8 git-lfs security update
ELBA-2025-23363 Oracle Linux 8 rest bug fix and enhancement update
ELBA-2025-23362 Oracle Linux 8 gnome-autoar bug fix and enhancement update




ELSA-2025-23738 Important: Oracle Linux 10 mod_md security update


Oracle Linux Security Advisory ELSA-2025-23738

http://linux.oracle.com/errata/ELSA-2025-23738.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
mod_md-2.4.26-4.el10_1.x86_64.rpm

aarch64:
mod_md-2.4.26-4.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/mod_md-2.4.26-4.el10_1.src.rpm

Related CVEs:

CVE-2025-55753

Description of changes:

[1:2.4.26-4]
- Resolves: RHEL-134483 - httpd: Apache HTTP Server: mod_md (ACME), unintended
retry intervals (CVE-2025-55753)



ELEA-2025-23332 Oracle Linux 9 nodejs:24 bug fix and enhancement update


Oracle Linux Enhancement Advisory ELEA-2025-23332

http://linux.oracle.com/errata/ELEA-2025-23332.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-24.11.1-2.module+el9.7.0+90730+edf704f1.x86_64.rpm
nodejs-devel-24.11.1-2.module+el9.7.0+90730+edf704f1.x86_64.rpm
nodejs-docs-24.11.1-2.module+el9.7.0+90730+edf704f1.noarch.rpm
nodejs-full-i18n-24.11.1-2.module+el9.7.0+90730+edf704f1.x86_64.rpm
nodejs-libs-24.11.1-2.module+el9.7.0+90730+edf704f1.x86_64.rpm
nodejs-nodemon-3.0.3-3.module+el9.7.0+90730+edf704f1.noarch.rpm
nodejs-packaging-2021.06-6.module+el9.7.0+90730+edf704f1.noarch.rpm
nodejs-packaging-bundler-2021.06-6.module+el9.7.0+90730+edf704f1.noarch.rpm
npm-11.6.2-1.24.11.1.2.module+el9.7.0+90730+edf704f1.noarch.rpm
v8-13.6-devel-13.6.233.10-1.24.11.1.2.module+el9.7.0+90730+edf704f1.x86_64.rpm

aarch64:
nodejs-24.11.1-2.module+el9.7.0+90730+edf704f1.aarch64.rpm
nodejs-devel-24.11.1-2.module+el9.7.0+90730+edf704f1.aarch64.rpm
nodejs-docs-24.11.1-2.module+el9.7.0+90730+edf704f1.noarch.rpm
nodejs-full-i18n-24.11.1-2.module+el9.7.0+90730+edf704f1.aarch64.rpm
nodejs-libs-24.11.1-2.module+el9.7.0+90730+edf704f1.aarch64.rpm
nodejs-nodemon-3.0.3-3.module+el9.7.0+90730+edf704f1.noarch.rpm
nodejs-packaging-2021.06-6.module+el9.7.0+90730+edf704f1.noarch.rpm
nodejs-packaging-bundler-2021.06-6.module+el9.7.0+90730+edf704f1.noarch.rpm
npm-11.6.2-1.24.11.1.2.module+el9.7.0+90730+edf704f1.noarch.rpm
v8-13.6-devel-13.6.233.10-1.24.11.1.2.module+el9.7.0+90730+edf704f1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/nodejs-24.11.1-2.module+el9.7.0+90730+edf704f1.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/nodejs-nodemon-3.0.3-3.module+el9.7.0+90730+edf704f1.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/nodejs-packaging-2021.06-6.module+el9.7.0+90730+edf704f1.src.rpm

Description of changes:

nodejs
[1:24.11.1-2]
- Disable test-tls-session-cache.js as its not currently compatiable with
RHEL environment

[1:24.11.1-1]
- Update to version 24.11.1

nodejs-nodemon
[3.0.3-3]
- Keep BR on just npm

[3.0.3-2]
- Fix BR for nodejs-npm

nodejs-packaging
[2021.06-6]
- Properly handle @group/package deps in nodejs-symlink-deps
Resolves: RHEL-121581

[2021.06-5]
- nodejs.req to properly detect bundled deps



ELSA-2025-23744 Important: Oracle Linux 9 git-lfs security update


Oracle Linux Security Advisory ELSA-2025-23744

http://linux.oracle.com/errata/ELSA-2025-23744.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
git-lfs-3.6.1-4.el9_7.x86_64.rpm

aarch64:
git-lfs-3.6.1-4.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/git-lfs-3.6.1-4.el9_7.src.rpm

Related CVEs:

CVE-2025-26625

Description of changes:

[3.6.1-4]
- Backport fix for CVE-2025-26625
- Resolves: RHEL-122431



ELSA-2025-23739 Important: Oracle Linux 9 mod_md security update


Oracle Linux Security Advisory ELSA-2025-23739

http://linux.oracle.com/errata/ELSA-2025-23739.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mod_md-2.4.26-1.el9_7.1.x86_64.rpm

aarch64:
mod_md-2.4.26-1.el9_7.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/mod_md-2.4.26-1.el9_7.1.src.rpm

Related CVEs:

CVE-2025-55753

Description of changes:

[1:2.4.26-1.1]
- Resolves: RHEL-134496 - httpd: Apache HTTP Server: mod_md (ACME), unintended
retry intervals (CVE-2025-55753)



ELBA-2025-23317 Oracle Linux 9 nodejs:24 bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2025-23317

http://linux.oracle.com/errata/ELBA-2025-23317.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-24.4.1-7.module+el9.7.0+90708+1a6713ab.x86_64.rpm
nodejs-devel-24.4.1-7.module+el9.7.0+90708+1a6713ab.x86_64.rpm
nodejs-docs-24.4.1-7.module+el9.7.0+90708+1a6713ab.noarch.rpm
nodejs-full-i18n-24.4.1-7.module+el9.7.0+90708+1a6713ab.x86_64.rpm
nodejs-libs-24.4.1-7.module+el9.7.0+90708+1a6713ab.x86_64.rpm
nodejs-nodemon-3.0.3-3.module+el9.7.0+90708+1a6713ab.noarch.rpm
nodejs-packaging-2021.06-5.module+el9.7.0+90729+d7e7aa54.noarch.rpm
nodejs-packaging-bundler-2021.06-5.module+el9.7.0+90729+d7e7aa54.noarch.rpm
npm-11.4.2-1.24.4.1.7.module+el9.7.0+90708+1a6713ab.noarch.rpm
v8-13.6-devel-13.6.233.10-1.24.4.1.7.module+el9.7.0+90708+1a6713ab.x86_64.rpm

aarch64:
nodejs-24.4.1-7.module+el9.7.0+90708+1a6713ab.aarch64.rpm
nodejs-devel-24.4.1-7.module+el9.7.0+90708+1a6713ab.aarch64.rpm
nodejs-docs-24.4.1-7.module+el9.7.0+90708+1a6713ab.noarch.rpm
nodejs-full-i18n-24.4.1-7.module+el9.7.0+90708+1a6713ab.aarch64.rpm
nodejs-libs-24.4.1-7.module+el9.7.0+90708+1a6713ab.aarch64.rpm
nodejs-nodemon-3.0.3-3.module+el9.7.0+90708+1a6713ab.noarch.rpm
nodejs-packaging-2021.06-5.module+el9.7.0+90729+d7e7aa54.noarch.rpm
nodejs-packaging-bundler-2021.06-5.module+el9.7.0+90729+d7e7aa54.noarch.rpm
npm-11.4.2-1.24.4.1.7.module+el9.7.0+90708+1a6713ab.noarch.rpm
v8-13.6-devel-13.6.233.10-1.24.4.1.7.module+el9.7.0+90708+1a6713ab.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/nodejs-24.4.1-7.module+el9.7.0+90708+1a6713ab.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/nodejs-nodemon-3.0.3-3.module+el9.7.0+90708+1a6713ab.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/nodejs-packaging-2021.06-5.module+el9.7.0+90729+d7e7aa54.src.rpm

Description of changes:

nodejs
[1:24.4.1-7]
- Add patch to prevent fips usage segfault

[1:24.4.1-6]
- Rename nodejs-npm back to npm

[1:24.4.1-5]
- Make nodejs-npm provide npm as well

[1:24.4.1-4]
- Remove sqlite extension test

[1:24.4.1-3]
- Switch to compilation using gcc-toolset-12

[1:24.4.1-2]
- Remove parallel-installable bits

* Fri Aug 01 2025 Jan Stanek
- Import package from c10s

nodejs-nodemon
[3.0.3-3]
- Keep BR on just npm

[3.0.3-2]
- Fix BR for nodejs-npm

nodejs-packaging
[2021.06-5]
- nodejs.req to properly detect bundled deps



ELSA-2025-23745 Important: Oracle Linux 8 git-lfs security update


Oracle Linux Security Advisory ELSA-2025-23745

http://linux.oracle.com/errata/ELSA-2025-23745.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
git-lfs-3.4.1-6.el8_10.x86_64.rpm

aarch64:
git-lfs-3.4.1-6.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/git-lfs-3.4.1-6.el8_10.src.rpm

Related CVEs:

CVE-2025-26625

Description of changes:

[3.4.1-6]
- Backport CVE-2025-26625 fixes
- Resolves: RHEL-122423



ELBA-2025-23363 Oracle Linux 8 rest bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2025-23363

http://linux.oracle.com/errata/ELBA-2025-23363.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
rest-0.8.1-3.el8_10.i686.rpm
rest-0.8.1-3.el8_10.x86_64.rpm
rest-devel-0.8.1-3.el8_10.i686.rpm
rest-devel-0.8.1-3.el8_10.x86_64.rpm

aarch64:
rest-0.8.1-3.el8_10.aarch64.rpm
rest-devel-0.8.1-3.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/rest-0.8.1-3.el8_10.src.rpm

Description of changes:

[0.8.1-3]
- Rebuild for shipping rest-devel in CRB
- Resolves: RHEL-122462



ELBA-2025-23362 Oracle Linux 8 gnome-autoar bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2025-23362

http://linux.oracle.com/errata/ELBA-2025-23362.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gnome-autoar-0.2.3-3.el8_10.i686.rpm
gnome-autoar-0.2.3-3.el8_10.x86_64.rpm
gnome-autoar-devel-0.2.3-3.el8_10.i686.rpm
gnome-autoar-devel-0.2.3-3.el8_10.x86_64.rpm

aarch64:
gnome-autoar-0.2.3-3.el8_10.aarch64.rpm
gnome-autoar-devel-0.2.3-3.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/gnome-autoar-0.2.3-3.el8_10.src.rpm

Description of changes:

[0.2.3-3]
- Ship gnome-autoar-devel in CRB


Binutils, CURL, Python, and more updates for AlmaLinux

Taglib and MariaDB updates for SUSE

Windows

Linux

macOS

Community

  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...