Several security updates have been released for Oracle Linux, addressing potential vulnerabilities. The updates affect various versions of Python (3.9, 3.11, and 3.12), as well as Apache HTTP Server (httpd) and other packages like udisks2 and mod_http2. A significant update was also released for PostgreSQL:15 on Oracle Linux 9. Additionally, security patches have been issued for Oracle Linux 8 and 9, prioritizing important updates to protect against potential threats.

ELSA-2025-14984 Moderate: Oracle Linux 10 python3.12 security update
ELSA-2025-15023 Moderate: Oracle Linux 9 httpd security update
ELSA-2025-15019 Moderate: Oracle Linux 9 python3.9 security update
ELSA-2025-15018 Important: Oracle Linux 9 udisks2 security update
ELSA-2025-15010 Moderate: Oracle Linux 9 python3.11 security update
ELSA-2025-15007 Moderate: Oracle Linux 9 python3.12 security update
ELSA-2025-14862 Important: Oracle Linux 9 postgresql:15 security update
ELSA-2025-14983 Moderate: Oracle Linux 9 mod_http2 security update
ELSA-2025-15017 Important: Oracle Linux 8 udisks2 security update

ELSA-2025-14984 Moderate: Oracle Linux 10 python3.12 security update

Oracle Linux Security Advisory ELSA-2025-14984

http://linux.oracle.com/errata/ELSA-2025-14984.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
python-unversioned-command-3.12.9-2.0.1.el10_0.3.noarch.rpm
python3-3.12.9-2.0.1.el10_0.3.x86_64.rpm
python3-debug-3.12.9-2.0.1.el10_0.3.x86_64.rpm
python3-devel-3.12.9-2.0.1.el10_0.3.x86_64.rpm
python3-idle-3.12.9-2.0.1.el10_0.3.x86_64.rpm
python3-libs-3.12.9-2.0.1.el10_0.3.x86_64.rpm
python3-test-3.12.9-2.0.1.el10_0.3.x86_64.rpm
python3-tkinter-3.12.9-2.0.1.el10_0.3.x86_64.rpm

aarch64:
python-unversioned-command-3.12.9-2.0.1.el10_0.3.noarch.rpm
python3-3.12.9-2.0.1.el10_0.3.aarch64.rpm
python3-debug-3.12.9-2.0.1.el10_0.3.aarch64.rpm
python3-devel-3.12.9-2.0.1.el10_0.3.aarch64.rpm
python3-idle-3.12.9-2.0.1.el10_0.3.aarch64.rpm
python3-libs-3.12.9-2.0.1.el10_0.3.aarch64.rpm
python3-test-3.12.9-2.0.1.el10_0.3.aarch64.rpm
python3-tkinter-3.12.9-2.0.1.el10_0.3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/python3.12-3.12.9-2.0.1.el10_0.3.src.rpm

Related CVEs:

CVE-2025-8194

Description of changes:

[3.12.9-2.0.1.3]
- Remove upstream URL reference

[3.12.9-2.3]
- Security fix for CVE-2025-8194
Resolves: RHEL-106370

[3.12.9-2.2]
- Enable PAC and BTI protections for aarch64
- Security fixes for CVE-2025-4517, CVE-2025-4330, CVE-2025-4138, CVE-2024-12718, CVE-2025-4435
- Resolves: RHEL-98058, RHEL-98020, RHEL-97809, RHEL-98184, RHEL-98211

[3.12.9-2.1]
- Apply Intel's CET for mitigation against control-flow hijacking attacks

ELSA-2025-15023 Moderate: Oracle Linux 9 httpd security update

Oracle Linux Security Advisory ELSA-2025-15023

http://linux.oracle.com/errata/ELSA-2025-15023.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
httpd-2.4.62-4.0.1.el9_6.4.x86_64.rpm
httpd-core-2.4.62-4.0.1.el9_6.4.x86_64.rpm
httpd-devel-2.4.62-4.0.1.el9_6.4.x86_64.rpm
httpd-filesystem-2.4.62-4.0.1.el9_6.4.noarch.rpm
httpd-manual-2.4.62-4.0.1.el9_6.4.noarch.rpm
httpd-tools-2.4.62-4.0.1.el9_6.4.x86_64.rpm
mod_ldap-2.4.62-4.0.1.el9_6.4.x86_64.rpm
mod_lua-2.4.62-4.0.1.el9_6.4.x86_64.rpm
mod_proxy_html-2.4.62-4.0.1.el9_6.4.x86_64.rpm
mod_session-2.4.62-4.0.1.el9_6.4.x86_64.rpm
mod_ssl-2.4.62-4.0.1.el9_6.4.x86_64.rpm

aarch64:
httpd-2.4.62-4.0.1.el9_6.4.aarch64.rpm
httpd-core-2.4.62-4.0.1.el9_6.4.aarch64.rpm
httpd-devel-2.4.62-4.0.1.el9_6.4.aarch64.rpm
httpd-filesystem-2.4.62-4.0.1.el9_6.4.noarch.rpm
httpd-manual-2.4.62-4.0.1.el9_6.4.noarch.rpm
httpd-tools-2.4.62-4.0.1.el9_6.4.aarch64.rpm
mod_ldap-2.4.62-4.0.1.el9_6.4.aarch64.rpm
mod_lua-2.4.62-4.0.1.el9_6.4.aarch64.rpm
mod_proxy_html-2.4.62-4.0.1.el9_6.4.aarch64.rpm
mod_session-2.4.62-4.0.1.el9_6.4.aarch64.rpm
mod_ssl-2.4.62-4.0.1.el9_6.4.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/httpd-2.4.62-4.0.1.el9_6.4.src.rpm

Related CVEs:

CVE-2024-47252
CVE-2025-23048
CVE-2025-49812

Description of changes:

[2.4.62-4.0.1.4]
- Replace index.html with Oracle's index page oracle_index.html.

[2.4.62-4.4]
- Resolves: RHEL-99949 - CVE-2025-49812 httpd: HTTP Session Hijack via a TLS upgrade

[2.4.62-4.1]
- Resolves: RHEL-99972 - CVE-2024-47252 httpd: insufficient escaping of
user-supplied data in mod_ssl
- Resolves: RHEL-99963 - CVE-2025-23048 httpd: access control bypass by trusted
clients is possible using TLS 1.3 session resumption
- Resolves: RHEL-102079 - stickysession field does not work when specifying it
in the query parameter after upgrade to 9.5

[2.4.62-4]
- Resolves: RHEL-66488 - Apache HTTPD no longer parse PHP files with unicode
characters in the name

[2.4.62-3]
- Resolves: RHEL-68660 - RewriteRule proxying to UDS (unix domain socket)
configured in .htaccess doesn't work on httpd-2.4.62-1

[2.4.62-2]
- mod_ssl: fix loading keys via ENGINE API
Resolves: RHEL-36755

[2.4.62-1]
- new version 2.4.62
- Resolves: RHEL-52724 - Regression introduced by CVE-2024-38474 fix

[2.4.59-7]
- Resolves: RHEL-49856: htcacheclean.service missing [Install] section

[2.4.59-6]
- mod_ssl: restore SSL_OP_NO_RENEGOTIATE support
Related: RHEL-14668

[2.4.59-5]
- mod_ssl: defer ENGINE_finish() calls to a cleanup
Resolves: RHEL-36755

[2.4.59-4]
- Resolves: RHEL-6575 - [RFE] httpd use systemd-sysusers

[2.4.59-3]
- Related: RHEL-14668 - RFE: httpd rebase to 2.4.59

[2.4.59-2]
- Resolves: RHEL-35870 - httpd mod_cgi/cgid unification

[2.4.59-1]
- new version 2.4.59
- Resolves: RHEL-14668 - RFE: httpd rebase to 2.4.59
- Resolves: RHEL-31856 - httpd: HTTP response splitting
(CVE-2023-38709)
- Resolves: RHEL-31859 - httpd: HTTP Response Splitting in multiple
modules (CVE-2024-24795)

[2.4.57-8]
- mod_xml2enc: fix media type handling
Resolves: RHEL-17686
- mod_dav: add DavBasePath
Resolves: RHEL-6600

[2.4.57-7]
- Resolves: RHEL-14447 - httpd: mod_macro: out-of-bounds read
vulnerability (CVE-2023-31122)

[2.4.57-6]
- Resolves: RHEL-5071 - mod_dav_fs: add DavLockDBType
- mod_dav_fs: add global mutex around lockdb interaction

ELSA-2025-15019 Moderate: Oracle Linux 9 python3.9 security update

Oracle Linux Security Advisory ELSA-2025-15019

http://linux.oracle.com/errata/ELSA-2025-15019.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python-unversioned-command-3.9.21-2.el9_6.2.noarch.rpm
python3-3.9.21-2.el9_6.2.i686.rpm
python3-3.9.21-2.el9_6.2.x86_64.rpm
python3-debug-3.9.21-2.el9_6.2.i686.rpm
python3-debug-3.9.21-2.el9_6.2.x86_64.rpm
python3-devel-3.9.21-2.el9_6.2.i686.rpm
python3-devel-3.9.21-2.el9_6.2.x86_64.rpm
python3-idle-3.9.21-2.el9_6.2.i686.rpm
python3-idle-3.9.21-2.el9_6.2.x86_64.rpm
python3-libs-3.9.21-2.el9_6.2.i686.rpm
python3-libs-3.9.21-2.el9_6.2.x86_64.rpm
python3-test-3.9.21-2.el9_6.2.i686.rpm
python3-test-3.9.21-2.el9_6.2.x86_64.rpm
python3-tkinter-3.9.21-2.el9_6.2.i686.rpm
python3-tkinter-3.9.21-2.el9_6.2.x86_64.rpm

aarch64:
python-unversioned-command-3.9.21-2.el9_6.2.noarch.rpm
python3-3.9.21-2.el9_6.2.aarch64.rpm
python3-debug-3.9.21-2.el9_6.2.aarch64.rpm
python3-devel-3.9.21-2.el9_6.2.aarch64.rpm
python3-idle-3.9.21-2.el9_6.2.aarch64.rpm
python3-libs-3.9.21-2.el9_6.2.aarch64.rpm
python3-test-3.9.21-2.el9_6.2.aarch64.rpm
python3-tkinter-3.9.21-2.el9_6.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.9-3.9.21-2.el9_6.2.src.rpm

Related CVEs:

CVE-2025-8194

Description of changes:

[3.9.21-2.2]
- Security fix for CVE-2025-8194
Resolves: RHEL-106375

ELSA-2025-15018 Important: Oracle Linux 9 udisks2 security update

Oracle Linux Security Advisory ELSA-2025-15018

http://linux.oracle.com/errata/ELSA-2025-15018.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libudisks2-2.9.4-11.0.1.el9_6.1.i686.rpm
libudisks2-2.9.4-11.0.1.el9_6.1.x86_64.rpm
libudisks2-devel-2.9.4-11.0.1.el9_6.1.i686.rpm
libudisks2-devel-2.9.4-11.0.1.el9_6.1.x86_64.rpm
udisks2-2.9.4-11.0.1.el9_6.1.x86_64.rpm
udisks2-iscsi-2.9.4-11.0.1.el9_6.1.x86_64.rpm
udisks2-lsm-2.9.4-11.0.1.el9_6.1.x86_64.rpm
udisks2-lvm2-2.9.4-11.0.1.el9_6.1.x86_64.rpm

aarch64:
libudisks2-2.9.4-11.0.1.el9_6.1.aarch64.rpm
libudisks2-devel-2.9.4-11.0.1.el9_6.1.aarch64.rpm
udisks2-2.9.4-11.0.1.el9_6.1.aarch64.rpm
udisks2-iscsi-2.9.4-11.0.1.el9_6.1.aarch64.rpm
udisks2-lsm-2.9.4-11.0.1.el9_6.1.aarch64.rpm
udisks2-lvm2-2.9.4-11.0.1.el9_6.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/udisks2-2.9.4-11.0.1.el9_6.1.src.rpm

Related CVEs:

CVE-2025-8067

Description of changes:

[2.9.4-11.0.1.1]
- Enable btrfs support for OL supported arches [Orabug: 37464632]

[2.9.4-11.1]
- udiskslinuxmanager: Add lower bounds check to fd_index (CVE-2025-8067) (RHEL-109417)

[2.9.4-11]
- udiskslinuxblockobject: Try issuing BLKRRPART ioctl harder
- lvm2: Refactor udisks_daemon_util_lvm2_wipe_block()

[2.9.4-10]
- tests: Fix targetcli_config.json (RHEL-16229)

ELSA-2025-15010 Moderate: Oracle Linux 9 python3.11 security update

Oracle Linux Security Advisory ELSA-2025-15010

http://linux.oracle.com/errata/ELSA-2025-15010.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.11-3.11.11-2.el9_6.2.i686.rpm
python3.11-3.11.11-2.el9_6.2.x86_64.rpm
python3.11-debug-3.11.11-2.el9_6.2.i686.rpm
python3.11-debug-3.11.11-2.el9_6.2.x86_64.rpm
python3.11-devel-3.11.11-2.el9_6.2.i686.rpm
python3.11-devel-3.11.11-2.el9_6.2.x86_64.rpm
python3.11-idle-3.11.11-2.el9_6.2.i686.rpm
python3.11-idle-3.11.11-2.el9_6.2.x86_64.rpm
python3.11-libs-3.11.11-2.el9_6.2.i686.rpm
python3.11-libs-3.11.11-2.el9_6.2.x86_64.rpm
python3.11-test-3.11.11-2.el9_6.2.i686.rpm
python3.11-test-3.11.11-2.el9_6.2.x86_64.rpm
python3.11-tkinter-3.11.11-2.el9_6.2.i686.rpm
python3.11-tkinter-3.11.11-2.el9_6.2.x86_64.rpm

aarch64:
python3.11-3.11.11-2.el9_6.2.aarch64.rpm
python3.11-debug-3.11.11-2.el9_6.2.aarch64.rpm
python3.11-devel-3.11.11-2.el9_6.2.aarch64.rpm
python3.11-idle-3.11.11-2.el9_6.2.aarch64.rpm
python3.11-libs-3.11.11-2.el9_6.2.aarch64.rpm
python3.11-test-3.11.11-2.el9_6.2.aarch64.rpm
python3.11-tkinter-3.11.11-2.el9_6.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.11-3.11.11-2.el9_6.2.src.rpm

Related CVEs:

CVE-2025-8194

Description of changes:

[3.11.11-2.2]
- Security fix for CVE-2025-8194
Resolves: RHEL-106366

ELSA-2025-15007 Moderate: Oracle Linux 9 python3.12 security update

Oracle Linux Security Advisory ELSA-2025-15007

http://linux.oracle.com/errata/ELSA-2025-15007.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.12-3.12.9-1.el9_6.2.i686.rpm
python3.12-3.12.9-1.el9_6.2.x86_64.rpm
python3.12-debug-3.12.9-1.el9_6.2.i686.rpm
python3.12-debug-3.12.9-1.el9_6.2.x86_64.rpm
python3.12-devel-3.12.9-1.el9_6.2.i686.rpm
python3.12-devel-3.12.9-1.el9_6.2.x86_64.rpm
python3.12-idle-3.12.9-1.el9_6.2.i686.rpm
python3.12-idle-3.12.9-1.el9_6.2.x86_64.rpm
python3.12-libs-3.12.9-1.el9_6.2.i686.rpm
python3.12-libs-3.12.9-1.el9_6.2.x86_64.rpm
python3.12-test-3.12.9-1.el9_6.2.i686.rpm
python3.12-test-3.12.9-1.el9_6.2.x86_64.rpm
python3.12-tkinter-3.12.9-1.el9_6.2.i686.rpm
python3.12-tkinter-3.12.9-1.el9_6.2.x86_64.rpm

aarch64:
python3.12-3.12.9-1.el9_6.2.aarch64.rpm
python3.12-debug-3.12.9-1.el9_6.2.aarch64.rpm
python3.12-devel-3.12.9-1.el9_6.2.aarch64.rpm
python3.12-idle-3.12.9-1.el9_6.2.aarch64.rpm
python3.12-libs-3.12.9-1.el9_6.2.aarch64.rpm
python3.12-test-3.12.9-1.el9_6.2.aarch64.rpm
python3.12-tkinter-3.12.9-1.el9_6.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.12-3.12.9-1.el9_6.2.src.rpm

Related CVEs:

CVE-2025-8194

Description of changes:

[3.12.9-1.2]
- Security fix for CVE-2025-8194
Resolves: RHEL-106370

ELSA-2025-14862 Important: Oracle Linux 9 postgresql:15 security update

Oracle Linux Security Advisory ELSA-2025-14862

http://linux.oracle.com/errata/ELSA-2025-14862.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.x86_64.rpm
pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.x86_64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.x86_64.rpm
postgresql-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-contrib-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-docs-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-plperl-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-plpython3-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-pltcl-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-private-devel-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-private-libs-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-server-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-server-devel-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-static-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-test-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-test-rpm-macros-15.14-1.0.1.module+el9.6.0+90648+e6f151be.noarch.rpm
postgresql-upgrade-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm
postgresql-upgrade-devel-15.14-1.0.1.module+el9.6.0+90648+e6f151be.x86_64.rpm

aarch64:
pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.aarch64.rpm
pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.aarch64.rpm
postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.aarch64.rpm
postgresql-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-contrib-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-docs-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-plperl-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-plpython3-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-pltcl-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-private-devel-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-private-libs-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-server-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-server-devel-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-static-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-test-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-test-rpm-macros-15.14-1.0.1.module+el9.6.0+90648+e6f151be.noarch.rpm
postgresql-upgrade-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm
postgresql-upgrade-devel-15.14-1.0.1.module+el9.6.0+90648+e6f151be.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/pgaudit-1.7.0-1.module+el9.2.0+21134+ceb95ed9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/pg_repack-1.4.8-2.module+el9.5.0+90424+300303e9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/postgres-decoderbufs-1.9.7-1.Final.module+el9.2.0+21134+ceb95ed9.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates/postgresql-15.14-1.0.1.module+el9.6.0+90648+e6f151be.src.rpm

Related CVEs:

CVE-2025-8714
CVE-2025-8715

Description of changes:

pgaudit
[1.7.0-1]
- Initial import for postgresql 15 module
- Update to 1.7.0
- Support postgresql 15
- Related: #2128410

pg_repack
[1.4.8-2]
- Add new build dependencies to fix build with lz4 enabled
- Related: RHEL-47350

[1.4.8-1]
- Update to version 1.4.8
- Postgresql 15 is supported
- Related: #2128410

postgres-decoderbufs
[1.9.7-1.Final]
- Iitial import for postgresql 15 stream
- Related: #2128410

postgresql
[15.14-1.0.1]
- Update to v15.14

[15.12-1]
- Update to 15.12

[15.10-1]
- Update to 15.10
- Fixes: CVE-2024-10976 CVE-2024-10978 CVE-2024-10979

[15.8-2]
- Fix build on 15.8

[15.8-1]
- Update to 15.8

[15.6-3]
- Remove /var/run/postgresql
- Related: RHEL-51271

[15.6-2]
- Enable lz4 and zstd support

[15.6-1]
- Update to 15.6 and 13.14
- Fix CVE-2024-0985

[15.5-1]
- update to 15.5
- Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, CVE-2023-39417, and CVE-2023-39418

ELSA-2025-14983 Moderate: Oracle Linux 9 mod_http2 security update

Oracle Linux Security Advisory ELSA-2025-14983

http://linux.oracle.com/errata/ELSA-2025-14983.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mod_http2-2.0.26-4.el9_6.1.x86_64.rpm

aarch64:
mod_http2-2.0.26-4.el9_6.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/mod_http2-2.0.26-4.el9_6.1.src.rpm

Related CVEs:

CVE-2025-49630

Description of changes:

[2.0.26-4.1]
- Resolves: RHEL-99956 - CVE-2025-49630 httpd: untrusted input from a client
causes an assertion to fail in the Apache mod_proxy_http2 module

ELSA-2025-15017 Important: Oracle Linux 8 udisks2 security update

Oracle Linux Security Advisory ELSA-2025-15017

http://linux.oracle.com/errata/ELSA-2025-15017.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
libudisks2-2.9.0-16.el8_10.1.i686.rpm
libudisks2-2.9.0-16.el8_10.1.x86_64.rpm
libudisks2-devel-2.9.0-16.el8_10.1.i686.rpm
libudisks2-devel-2.9.0-16.el8_10.1.x86_64.rpm
udisks2-2.9.0-16.el8_10.1.x86_64.rpm
udisks2-iscsi-2.9.0-16.el8_10.1.x86_64.rpm
udisks2-lsm-2.9.0-16.el8_10.1.x86_64.rpm
udisks2-lvm2-2.9.0-16.el8_10.1.x86_64.rpm

aarch64:
libudisks2-2.9.0-16.el8_10.1.aarch64.rpm
libudisks2-devel-2.9.0-16.el8_10.1.aarch64.rpm
udisks2-2.9.0-16.el8_10.1.aarch64.rpm
udisks2-iscsi-2.9.0-16.el8_10.1.aarch64.rpm
udisks2-lsm-2.9.0-16.el8_10.1.aarch64.rpm
udisks2-lvm2-2.9.0-16.el8_10.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/udisks2-2.9.0-16.el8_10.1.src.rpm

Related CVEs:

CVE-2025-8067

Description of changes:

[2.9.0-16.1]
- udiskslinuxmanager: Add lower bounds check to fd_index (CVE-2025-8067) (RHEL-109408)