ELEA-2025-15494 Oracle Linux 10 nss bug fix and enhancement update
ELBA-2025-15592 Oracle Linux 10 .NET 9.0 bug fix and enhancement update
ELBA-2025-15589 Oracle Linux 10 .NET 8.0 bug fix and enhancement update
ELSA-2025-15608 Important: Oracle Linux 9 python3.12-cryptography security update
ELSA-2025-15429 Important: Oracle Linux 9 kernel security update
ELBA-2025-9433 Oracle Linux 9 microcode_ctl bug fix and enhancement update
ELBA-2025-15590 Oracle Linux 9 .NET 9.0 bug fix and enhancement update
ELBA-2025-15588 Oracle Linux 9 .NET 8.0 bug fix and enhancement update
ELBA-2025-15534 Oracle Linux 9 389-ds-base bug fix and enhancement update
ELBA-2025-15471-1 Oracle Linux 8 kernel bug fix update
ELSA-2025-10991 Moderate: Oracle Linux 8 microcode_ctl security update
ELBA-2025-15591 Oracle Linux 8 .NET 9.0 bug fix and enhancement update
ELBA-2025-15587 Oracle Linux 8 .NET 8.0 bug fix and enhancement update
ELBA-2025-15532 Oracle Linux 8 389-ds:1.4 bug fix and enhancement update
ELEA-2025-15494 Oracle Linux 10 nss bug fix and enhancement update
Oracle Linux Enhancement Advisory ELEA-2025-15494
http://linux.oracle.com/errata/ELEA-2025-15494.html
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:
x86_64:
nspr-4.36.0-4.el10_0.x86_64.rpm
nspr-devel-4.36.0-4.el10_0.x86_64.rpm
nss-3.112.0-4.el10_0.x86_64.rpm
nss-devel-3.112.0-4.el10_0.x86_64.rpm
nss-softokn-3.112.0-4.el10_0.x86_64.rpm
nss-softokn-devel-3.112.0-4.el10_0.x86_64.rpm
nss-softokn-freebl-3.112.0-4.el10_0.x86_64.rpm
nss-softokn-freebl-devel-3.112.0-4.el10_0.x86_64.rpm
nss-sysinit-3.112.0-4.el10_0.x86_64.rpm
nss-tools-3.112.0-4.el10_0.x86_64.rpm
nss-util-3.112.0-4.el10_0.x86_64.rpm
nss-util-devel-3.112.0-4.el10_0.x86_64.rpm
aarch64:
nspr-4.36.0-4.el10_0.aarch64.rpm
nspr-devel-4.36.0-4.el10_0.aarch64.rpm
nss-3.112.0-4.el10_0.aarch64.rpm
nss-devel-3.112.0-4.el10_0.aarch64.rpm
nss-softokn-3.112.0-4.el10_0.aarch64.rpm
nss-softokn-devel-3.112.0-4.el10_0.aarch64.rpm
nss-softokn-freebl-3.112.0-4.el10_0.aarch64.rpm
nss-softokn-freebl-devel-3.112.0-4.el10_0.aarch64.rpm
nss-sysinit-3.112.0-4.el10_0.aarch64.rpm
nss-tools-3.112.0-4.el10_0.aarch64.rpm
nss-util-3.112.0-4.el10_0.aarch64.rpm
nss-util-devel-3.112.0-4.el10_0.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/nss-3.112.0-4.el10_0.src.rpm
Description of changes:
[3.112.0-4]
- fix interface issue when pulling 3.0 pkcs#11 interfaces explicitly
[3.112.0-3]
- restore CONCATENATE functions accidentally remvoed in the last patch
- fix big endian issue in tstclnt and selfserv in certificate compression
[3.112.0-2]
- add fips required changes.
- fix bugs found by QE
[3.112.0-1]
- rebase to NSS 3.112
- add ml-kem-1024 support
- add ml-dsa support
[3.101.0-14]
- add nss-policy-check
ELBA-2025-15592 Oracle Linux 10 .NET 9.0 bug fix and enhancement update
Oracle Linux Bug Fix Advisory ELBA-2025-15592
http://linux.oracle.com/errata/ELBA-2025-15592.html
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:
x86_64:
aspnetcore-runtime-9.0-9.0.9-1.0.1.el10_0.x86_64.rpm
aspnetcore-runtime-dbg-9.0-9.0.9-1.0.1.el10_0.x86_64.rpm
aspnetcore-targeting-pack-9.0-9.0.9-1.0.1.el10_0.x86_64.rpm
dotnet-apphost-pack-9.0-9.0.9-1.0.1.el10_0.x86_64.rpm
dotnet-host-9.0.9-1.0.1.el10_0.x86_64.rpm
dotnet-hostfxr-9.0-9.0.9-1.0.1.el10_0.x86_64.rpm
dotnet-runtime-9.0-9.0.9-1.0.1.el10_0.x86_64.rpm
dotnet-runtime-dbg-9.0-9.0.9-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-9.0-9.0.110-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.110-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-aot-9.0-9.0.110-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-dbg-9.0-9.0.110-1.0.1.el10_0.x86_64.rpm
dotnet-targeting-pack-9.0-9.0.9-1.0.1.el10_0.x86_64.rpm
dotnet-templates-9.0-9.0.110-1.0.1.el10_0.x86_64.rpm
netstandard-targeting-pack-2.1-9.0.110-1.0.1.el10_0.x86_64.rpm
aarch64:
aspnetcore-runtime-9.0-9.0.9-1.0.1.el10_0.aarch64.rpm
aspnetcore-runtime-dbg-9.0-9.0.9-1.0.1.el10_0.aarch64.rpm
aspnetcore-targeting-pack-9.0-9.0.9-1.0.1.el10_0.aarch64.rpm
dotnet-apphost-pack-9.0-9.0.9-1.0.1.el10_0.aarch64.rpm
dotnet-host-9.0.9-1.0.1.el10_0.aarch64.rpm
dotnet-hostfxr-9.0-9.0.9-1.0.1.el10_0.aarch64.rpm
dotnet-runtime-9.0-9.0.9-1.0.1.el10_0.aarch64.rpm
dotnet-runtime-dbg-9.0-9.0.9-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-9.0-9.0.110-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.110-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-aot-9.0-9.0.110-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-dbg-9.0-9.0.110-1.0.1.el10_0.aarch64.rpm
dotnet-targeting-pack-9.0-9.0.9-1.0.1.el10_0.aarch64.rpm
dotnet-templates-9.0-9.0.110-1.0.1.el10_0.aarch64.rpm
netstandard-targeting-pack-2.1-9.0.110-1.0.1.el10_0.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet9.0-9.0.110-1.0.1.el10_0.src.rpm
Description of changes:
[9.0.110-1.0.1]
- Add support for Oracle Linux
[9.0.110-1]
- Update to .NET SDK 9.0.110 and Runtime 9.0.9
- Resolves: RHEL-112267
ELBA-2025-15589 Oracle Linux 10 .NET 8.0 bug fix and enhancement update
Oracle Linux Bug Fix Advisory ELBA-2025-15589
http://linux.oracle.com/errata/ELBA-2025-15589.html
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:
x86_64:
aspnetcore-runtime-8.0-8.0.20-1.0.1.el10_0.x86_64.rpm
aspnetcore-runtime-dbg-8.0-8.0.20-1.0.1.el10_0.x86_64.rpm
aspnetcore-targeting-pack-8.0-8.0.20-1.0.1.el10_0.x86_64.rpm
dotnet-apphost-pack-8.0-8.0.20-1.0.1.el10_0.x86_64.rpm
dotnet-hostfxr-8.0-8.0.20-1.0.1.el10_0.x86_64.rpm
dotnet-runtime-8.0-8.0.20-1.0.1.el10_0.x86_64.rpm
dotnet-runtime-dbg-8.0-8.0.20-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-8.0-8.0.120-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.120-1.0.1.el10_0.x86_64.rpm
dotnet-sdk-dbg-8.0-8.0.120-1.0.1.el10_0.x86_64.rpm
dotnet-targeting-pack-8.0-8.0.20-1.0.1.el10_0.x86_64.rpm
dotnet-templates-8.0-8.0.120-1.0.1.el10_0.x86_64.rpm
aarch64:
aspnetcore-runtime-8.0-8.0.20-1.0.1.el10_0.aarch64.rpm
aspnetcore-runtime-dbg-8.0-8.0.20-1.0.1.el10_0.aarch64.rpm
aspnetcore-targeting-pack-8.0-8.0.20-1.0.1.el10_0.aarch64.rpm
dotnet-apphost-pack-8.0-8.0.20-1.0.1.el10_0.aarch64.rpm
dotnet-hostfxr-8.0-8.0.20-1.0.1.el10_0.aarch64.rpm
dotnet-runtime-8.0-8.0.20-1.0.1.el10_0.aarch64.rpm
dotnet-runtime-dbg-8.0-8.0.20-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-8.0-8.0.120-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.120-1.0.1.el10_0.aarch64.rpm
dotnet-sdk-dbg-8.0-8.0.120-1.0.1.el10_0.aarch64.rpm
dotnet-targeting-pack-8.0-8.0.20-1.0.1.el10_0.aarch64.rpm
dotnet-templates-8.0-8.0.120-1.0.1.el10_0.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet8.0-8.0.120-1.0.1.el10_0.src.rpm
Description of changes:
[8.0.120-1.0.1]
- Add support for Oracle Linux
[8.0.120-1]
- Update to .NET SDK 8.0.120 and Runtime 8.0.20
- Resolves: RHEL-112259
ELSA-2025-15608 Important: Oracle Linux 9 python3.12-cryptography security update
Oracle Linux Security Advisory ELSA-2025-15608
http://linux.oracle.com/errata/ELSA-2025-15608.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
python3.12-cryptography-41.0.7-2.el9_6.1.x86_64.rpm
aarch64:
python3.12-cryptography-41.0.7-2.el9_6.1.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.12-cryptography-41.0.7-2.el9_6.1.src.rpm
Related CVEs:
CVE-2024-26130
Description of changes:
[41.0.7-2.1]
- Security fix for CVE-2024-26130
Resolves: RHEL-112483
ELSA-2025-15429 Important: Oracle Linux 9 kernel security update
Oracle Linux Security Advisory ELSA-2025-15429
http://linux.oracle.com/errata/ELSA-2025-15429.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
kernel-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-abi-stablelists-5.14.0-570.41.1.0.1.el9_6.noarch.rpm
kernel-core-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-cross-headers-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-debug-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-debug-core-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-debug-devel-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-debug-devel-matched-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-debug-modules-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-debug-modules-core-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-debug-modules-extra-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-debug-uki-virt-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-devel-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-devel-matched-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-doc-5.14.0-570.41.1.0.1.el9_6.noarch.rpm
kernel-headers-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-modules-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-modules-core-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-modules-extra-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-tools-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-tools-libs-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-tools-libs-devel-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-uki-virt-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
kernel-uki-virt-addons-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
libperf-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
perf-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
python3-perf-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
rtla-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
rv-5.14.0-570.41.1.0.1.el9_6.x86_64.rpm
aarch64:
kernel-cross-headers-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
kernel-headers-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
kernel-tools-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
kernel-tools-libs-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
kernel-tools-libs-devel-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
libperf-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
perf-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
python3-perf-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
rtla-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
rv-5.14.0-570.41.1.0.1.el9_6.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-570.41.1.0.1.el9_6.src.rpm
Related CVEs:
CVE-2025-37803
CVE-2025-38392
Description of changes:
[5.14.0-570.41.1.0.1.el9_6.OL9]
- nvme-pci: remove two deallocate zeroes quirks [Orabug: 37756650]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 "Databases" menu blank in Cockpit [rhel-9.6.z]
- Resolves: RHEL-109888 - RootDN Access Control Plugin with wildcards for IP addresses fails with an error "Invalid IP address" [rhel-9.6.z]
- Resolves: RHEL-109891 - On RHDS 12.6 The user password policy for a user was created, but the pwdpolicysubentry attribute for this user incorrectly points to the People OU password policy instead of the specific user policy. [rhel-9.6.z]
- Resolves: RHEL-109896 - AddressSanitizer: leak in do_search [rhel-9.6.z]
- Resolves: RHEL-109904 - ns-slapd crashed when we add nsslapd-referral [rhel-9.6.z]
- Resolves: RHEL-109945 - CWE-284 dirsrv log rotation creates files with world readable permission [rhel-9.6.z]
- Resolves: RHEL-109954 - CWE-532 Created user password hash available to see in audit log [rhel-9.6.z]
- Resolves: RHEL-109957 - CWE-778 Log doesn't show what user gets password changed by administrator [rhel-9.6.z]
ELBA-2025-15471-1 Oracle Linux 8 kernel bug fix update
Oracle Linux Bug Fix Advisory ELBA-2025-15471-1
http://linux.oracle.com/errata/ELBA-2025-15471-1.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
bpftool-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-abi-stablelists-4.18.0-553.74.1.0.1.el8_10.noarch.rpm
kernel-core-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-cross-headers-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-debug-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-debug-core-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-debug-devel-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-debug-modules-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-debug-modules-extra-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-devel-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-doc-4.18.0-553.74.1.0.1.el8_10.noarch.rpm
kernel-headers-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-modules-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-modules-extra-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-tools-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-tools-libs-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
kernel-tools-libs-devel-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
perf-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
python3-perf-4.18.0-553.74.1.0.1.el8_10.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/kernel-4.18.0-553.74.1.0.1.el8_10.src.rpm
Description of changes:
[4.18.0-553.74.1.0.1.el8_10.OL8]
- scsi: core: Restrict legal sdev_state transitions via sysfs (Uday Shankar) [Orabug: 37778230]
[4.18.0-553.74.1.el8_10.OL8]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64
