Oracle has released several updates for its Linux operating system, including security patches and bug fixes. The updates affect various versions of Oracle Linux, including 7, 8, 9, and 10. Some of the updates are categorized as important and address critical security vulnerabilities, while others are moderate or bug fix updates. The affected components include kernel, open-vm-tools, redis, kexec-tools, scap-security-guide, and other packages.

ELSA-2025-17429 Important: Oracle Linux 10 open-vm-tools security update
ELSA-2025-17396 Moderate: Oracle Linux 10 kernel security update
ELSA-2025-20653 Important Oracle Linux 10 valkey security update
ELBA-2025-20651 Oracle Linux 10 kexec-tools bug fix update
ELSA-2025-17558 Moderate: Oracle Linux 9 iputils security update
ELSA-2025-17428 Important: Oracle Linux 9 open-vm-tools security update
ELSA-2025-17377 Moderate: Oracle Linux 9 kernel security update
ELBA-2025-17402 Oracle Linux 9 gcc-toolset-14-gcc bug fix and enhancement update
ELBA-2025-16917 Oracle Linux 9 scap-security-guide bug fix and enhancement update
ELSA-2025-20655 Important: Oracle Linux 9 redis security update
ELSA-2025-20654 Important: Oracle Linux 9 redis security update
ELBA-2025-16917 Oracle Linux 8 scap-security-guide bug fix and enhancement update
ELBA-2025-20651 Oracle Linux 9 kexec-tools bug fix update
ELBA-2025-17416 Oracle Linux 8 grub2 bug fix and enhancement update
ELSA-2025-17397 Moderate: Oracle Linux 8 kernel security update
ELBA-2025-17412 Oracle Linux 8 e2fsprogs bug fix and enhancement update
ELSA-2025-17509 Important: Oracle Linux 8 open-vm-tools security update
ELBA-2025-20651 Oracle Linux 8 kexec-tools bug fix update
ELBA-2025-17418 Oracle Linux 8 ksh bug fix and enhancement update
ELBA-2025-17426 Oracle Linux 8 fence-agents bug fix and enhancement update
ELEA-2025-17423 Oracle Linux 8 nodejs:22 bug fix and enhancement update
ELBA-2025-17419 Oracle Linux 8 motif and mutter bug fix and enhancement update
ELBA-2025-17411 Oracle Linux 8 samba bug fix and enhancement update
ELSA-2025-20656 Important Oracle Linux 8 redis security update
ELBA-2025-17397-1 Oracle Linux 8 kernel bug fix update
ELSA-2025-16130 Important: Oracle Linux 7 udisks2 security update
ELBA-2025-20651 Oracle Linux 9 kexec-tools bug fix update
ELSA-2025-17675 Important: Oracle Linux 8 compat-libtiff3 security update
ELBA-2025-17405 Oracle Linux 8 binutils bug fix update

ELSA-2025-17429 Important: Oracle Linux 10 open-vm-tools security update

Oracle Linux Security Advisory ELSA-2025-17429

http://linux.oracle.com/errata/ELSA-2025-17429.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
open-vm-tools-12.5.0-1.0.1.el10_0.1.x86_64.rpm
open-vm-tools-desktop-12.5.0-1.0.1.el10_0.1.x86_64.rpm
open-vm-tools-salt-minion-12.5.0-1.0.1.el10_0.1.x86_64.rpm
open-vm-tools-sdmp-12.5.0-1.0.1.el10_0.1.x86_64.rpm
open-vm-tools-test-12.5.0-1.0.1.el10_0.1.x86_64.rpm

aarch64:
open-vm-tools-12.5.0-1.0.1.el10_0.1.aarch64.rpm
open-vm-tools-desktop-12.5.0-1.0.1.el10_0.1.aarch64.rpm
open-vm-tools-test-12.5.0-1.0.1.el10_0.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/open-vm-tools-12.5.0-1.0.1.el10_0.1.src.rpm

Related CVEs:

CVE-2025-41244

Description of changes:

[12.5.0-1.0.1.el10_0.1]
- Fix spaces in vmware udev rule for scsi devices [Orabug: 24461968]
- Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. [Orabug: 22815019]
- Increase timeout for scsi devices on VMWare guests by adding a udev rule. [Orabug: 21819156]

[12.5.0-1.el10_0.1]
- ovt-Address-CVE-2025-41244.patch [RHEL-117381]
- Resolves: RHEL-117381
([CISA Major Incident] CVE-2025-41244 open-vm-tools: Local privilege escalation in open-vm-tools [rhel-10.0.z])

ELSA-2025-17396 Moderate: Oracle Linux 10 kernel security update

Oracle Linux Security Advisory ELSA-2025-17396

http://linux.oracle.com/errata/ELSA-2025-17396.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-abi-stablelists-6.12.0-55.38.1.0.1.el10_0.noarch.rpm
kernel-core-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-cross-headers-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-debug-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-debug-core-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-debug-devel-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-debug-devel-matched-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-core-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-extra-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-debug-uki-virt-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-devel-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-devel-matched-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-doc-6.12.0-55.38.1.0.1.el10_0.noarch.rpm
kernel-headers-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-modules-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-modules-core-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-modules-extra-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-tools-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-tools-libs-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-tools-libs-devel-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-uki-virt-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
kernel-uki-virt-addons-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
libperf-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
perf-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
python3-perf-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
rtla-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm
rv-6.12.0-55.38.1.0.1.el10_0.x86_64.rpm

aarch64:
kernel-cross-headers-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
kernel-headers-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
kernel-tools-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
kernel-tools-libs-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
kernel-tools-libs-devel-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
libperf-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
perf-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
python3-perf-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
rtla-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm
rv-6.12.0-55.38.1.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/kernel-6.12.0-55.38.1.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-22026
CVE-2025-38718

Description of changes:

[6.12.0-55.38.1.0.1.el10_0.OL10]
- nvme-pci: remove two deallocate zeroes quirks [Orabug: 37756650]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985782]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64