Redis, EDIK2, LibTIFF, and more updates for Oracle Linux

Oracle Linux 6404 Published by

Oracle has released several updates for its Linux versions. The updates include security patches for various packages, such as Redis, libtiff, and kernel, which are considered important or moderate in severity. Additionally, there are bug fixes and enhancement updates for packages like edk2, ledmon, grub2, ca-certificates, and sos. These updates aim to improve the stability and security of Oracle Linux versions 7, 8, 9, and 10.

ELSA-2025-19237 Important: Oracle Linux 9 redis security update
ELBA-2025-19255 Oracle Linux 9 edk2 bug fix update
ELSA-2025-19276 Important: Oracle Linux 8 libtiff security update
ELBA-2025-19288 Oracle Linux 9 ledmon bug fix and enhancement update
ELSA-2025-17710 Important: Oracle Linux 7 compat-libtiff3 security update
ELSA-2025-19345 Important: Oracle Linux 9 redis:7 security update
ELBA-2025-19319 Oracle Linux 9 grub2 bug fix and enhancement update
ELSA-2025-19106 Moderate: Oracle Linux 10 kernel security update
ELBA-2025-25722 Oracle Linux 10 pcp bug fix update
ELBA-2025-19287 Oracle Linux 10 ledmon bug fix and enhancement update
ELSA-2025-19238 Important: Oracle Linux 8 redis:6 security update
ELBA-2025-19289 Oracle Linux 8 ca-certificates bug fix and enhancement update
ELBA-2025-25728 Oracle Linux 8 sos bug fix update




ELSA-2025-19237 Important: Oracle Linux 9 redis security update


Oracle Linux Security Advisory ELSA-2025-19237

http://linux.oracle.com/errata/ELSA-2025-19237.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
redis-6.2.20-1.el9_6.x86_64.rpm
redis-devel-6.2.20-1.el9_6.i686.rpm
redis-devel-6.2.20-1.el9_6.x86_64.rpm
redis-doc-6.2.20-1.el9_6.noarch.rpm

aarch64:
redis-6.2.20-1.el9_6.aarch64.rpm
redis-devel-6.2.20-1.el9_6.aarch64.rpm
redis-doc-6.2.20-1.el9_6.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/redis-6.2.20-1.el9_6.src.rpm

Related CVEs:

CVE-2025-46817
CVE-2025-46818
CVE-2025-46819
CVE-2025-49844

Description of changes:

[6.2.20-1]
- rebase to 6.2.20 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819



ELBA-2025-19255 Oracle Linux 9 edk2 bug fix update


Oracle Linux Bug Fix Advisory ELBA-2025-19255

http://linux.oracle.com/errata/ELBA-2025-19255.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
edk2-aarch64-20241117-2.0.1.el9_6.1.noarch.rpm
edk2-ovmf-20241117-2.0.1.el9_6.1.noarch.rpm
edk2-tools-20241117-2.0.1.el9_6.1.x86_64.rpm
edk2-tools-doc-20241117-2.0.1.el9_6.1.noarch.rpm

aarch64:
edk2-aarch64-20241117-2.0.1.el9_6.1.noarch.rpm
edk2-ovmf-20241117-2.0.1.el9_6.1.noarch.rpm
edk2-tools-20241117-2.0.1.el9_6.1.aarch64.rpm
edk2-tools-doc-20241117-2.0.1.el9_6.1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/edk2-20241117-2.0.1.el9_6.1.src.rpm

Description of changes:

[20241117-2.0.1.el9_6.1]
- Replace upstream references [Orabug:36569119]

[20241117-2.el9_6.1]
- edk2-Update-dbx-revocation-list-to-2025-02-24-version.patch [RHEL-83018]
- Resolves: RHEL-83018
(The newer revocation file and Server 2025 required to update it [rhel-9.6.z])



ELSA-2025-19276 Important: Oracle Linux 8 libtiff security update


Oracle Linux Security Advisory ELSA-2025-19276

http://linux.oracle.com/errata/ELSA-2025-19276.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
libtiff-4.0.9-35.el8_10.i686.rpm
libtiff-4.0.9-35.el8_10.x86_64.rpm
libtiff-devel-4.0.9-35.el8_10.i686.rpm
libtiff-devel-4.0.9-35.el8_10.x86_64.rpm
libtiff-tools-4.0.9-35.el8_10.x86_64.rpm

aarch64:
libtiff-4.0.9-35.el8_10.aarch64.rpm
libtiff-devel-4.0.9-35.el8_10.aarch64.rpm
libtiff-tools-4.0.9-35.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/libtiff-4.0.9-35.el8_10.src.rpm

Related CVEs:

CVE-2025-9900

Description of changes:

[4.0.9-35]
- fix CVE-2025-9900: buffer underflow crash in TIFFReadRGBAImageOriented()
(RHEL-112533)



ELBA-2025-19288 Oracle Linux 9 ledmon bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2025-19288

http://linux.oracle.com/errata/ELBA-2025-19288.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
ledmon-1.1.0-2.el9_6.1.x86_64.rpm
ledmon-devel-1.1.0-2.el9_6.1.i686.rpm
ledmon-devel-1.1.0-2.el9_6.1.x86_64.rpm
ledmon-libs-1.1.0-2.el9_6.1.i686.rpm
ledmon-libs-1.1.0-2.el9_6.1.x86_64.rpm

aarch64:
ledmon-1.1.0-2.el9_6.1.aarch64.rpm
ledmon-devel-1.1.0-2.el9_6.1.aarch64.rpm
ledmon-libs-1.1.0-2.el9_6.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/ledmon-1.1.0-2.el9_6.1.src.rpm

Description of changes:

[1.1.0-2.1]
- Fix string2ibpi function (RHEL-104907)



ELSA-2025-17710 Important: Oracle Linux 7 compat-libtiff3 security update


Oracle Linux Security Advisory ELSA-2025-17710

http://linux.oracle.com/errata/ELSA-2025-17710.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
compat-libtiff3-3.9.4-12.0.1.el7.i686.rpm
compat-libtiff3-3.9.4-12.0.1.el7.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/compat-libtiff3-3.9.4-12.0.1.el7.src.rpm

Related CVEs:

CVE-2025-9900

Description of changes:

[3.9.4-12.0.1]
- Fixes CVE-2025-9900 buffer underflow [Orabug: 38523840]



ELSA-2025-19345 Important: Oracle Linux 9 redis:7 security update


Oracle Linux Security Advisory ELSA-2025-19345

http://linux.oracle.com/errata/ELSA-2025-19345.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
redis-7.2.11-1.0.1.module+el9.6.0+90693+e335695b.x86_64.rpm
redis-devel-7.2.11-1.0.1.module+el9.6.0+90693+e335695b.x86_64.rpm
redis-doc-7.2.11-1.0.1.module+el9.6.0+90693+e335695b.noarch.rpm

aarch64:
redis-7.2.11-1.0.1.module+el9.6.0+90693+e335695b.aarch64.rpm
redis-devel-7.2.11-1.0.1.module+el9.6.0+90693+e335695b.aarch64.rpm
redis-doc-7.2.11-1.0.1.module+el9.6.0+90693+e335695b.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/redis-7.2.11-1.0.1.module+el9.6.0+90693+e335695b.src.rpm

Related CVEs:

CVE-2025-46817
CVE-2025-46818
CVE-2025-46819
CVE-2025-49844

Description of changes:

[7.2.11-1.0.1]
- Build with 64k pages to support redis on UEK on aarch64

[7.2.11-1]
- rebase to 7.2.11 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819



ELBA-2025-19319 Oracle Linux 9 grub2 bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2025-19319

http://linux.oracle.com/errata/ELBA-2025-19319.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
grub2-common-2.06-105.0.1.el9_6.noarch.rpm
grub2-efi-aa64-modules-2.06-105.0.1.el9_6.noarch.rpm
grub2-efi-x64-2.06-105.0.1.el9_6.x86_64.rpm
grub2-efi-x64-cdboot-2.06-105.0.1.el9_6.x86_64.rpm
grub2-efi-x64-modules-2.06-105.0.1.el9_6.noarch.rpm
grub2-pc-2.06-105.0.1.el9_6.x86_64.rpm
grub2-pc-modules-2.06-105.0.1.el9_6.noarch.rpm
grub2-tools-2.06-105.0.1.el9_6.x86_64.rpm
grub2-tools-efi-2.06-105.0.1.el9_6.x86_64.rpm
grub2-tools-extra-2.06-105.0.1.el9_6.x86_64.rpm
grub2-tools-minimal-2.06-105.0.1.el9_6.x86_64.rpm

aarch64:
grub2-common-2.06-105.0.1.el9_6.noarch.rpm
grub2-efi-aa64-2.06-105.0.1.el9_6.aarch64.rpm
grub2-efi-aa64-cdboot-2.06-105.0.1.el9_6.aarch64.rpm
grub2-efi-aa64-modules-2.06-105.0.1.el9_6.noarch.rpm
grub2-efi-x64-modules-2.06-105.0.1.el9_6.noarch.rpm
grub2-tools-2.06-105.0.1.el9_6.aarch64.rpm
grub2-tools-extra-2.06-105.0.1.el9_6.aarch64.rpm
grub2-tools-minimal-2.06-105.0.1.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/grub2-2.06-105.0.1.el9_6.src.rpm

Description of changes:

[2.06-105.0.1]
- Update grub2 dependencies to match new Secure Boot certificate chain of trust [Orabug: 37766761]
- Fix typo in SBAT metadata [Orabug: 37693946]
- Allow installation of grub2 only with shim-aa64 that allows booting it [Orabug: 37693946]
- net/dns: Fix removal of DNS server [Orabug: 37539625]
- net/dns: Simplify error handling of recv_hook() function [Orabug: 37539625]
- net/dns: Add debugging messages in recv_hook() function [Orabug: 37539625]
- net/dns: Fix lookup error when no IPv6 is returned [Orabug: 37539625]
- efinet: close and reopen network card on failure [Orabug: 35126950], [Orabug: 37747175]
- efinet: Correct closing of SNP protocol [Orabug: 35126950], [Orabug: 37747175]
- Rework the scripts to cover both in-place upgrade and update scenarios [Orabug: 36768566]
- Restore correct order of processing config files [Orabug: 36758359]
- Support setting custom kernels as default kernels [Orabug: 36043978]
- Bump SBAT metadata for grub to 3 [Orabug: 34872719]
- Fix CVE-2022-3775 [Orabug: 34871953]
- Enable signing for aarch64 EFI
- Fix signing certificate names
- Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986]
- Replaced bugzilla.oracle.com references [Orabug: 34202300]
- Update provided certificate version to 202204 [JIRA: OLDIS-16371]
- Various coverity fixes [JIRA: OLDIS-16371]
- bump SBAT generation
- Update bug url [Orabug: 34202300]
- Revert provided certificate version back to 202102 [JIRA: OLDIS-16371]
- Update signing certificate [JIRA: OLDIS-16371]
- fix SBAT data [JIRA: OLDIS-16371]
- Update requires [JIRA: OLDIS-16371]
- Rebuild for SecureBoot signatures [Orabug: 33801813]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- Put "with" in menuentry instead of "using" [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-105]
- Handle special kernel parameter characters properly
- Resolves: #RHEL-111748



ELSA-2025-19106 Moderate: Oracle Linux 10 kernel security update


Oracle Linux Security Advisory ELSA-2025-19106

http://linux.oracle.com/errata/ELSA-2025-19106.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-abi-stablelists-6.12.0-55.41.1.0.1.el10_0.noarch.rpm
kernel-core-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-cross-headers-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-debug-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-debug-core-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-debug-devel-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-debug-devel-matched-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-core-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-extra-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-debug-uki-virt-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-devel-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-devel-matched-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-doc-6.12.0-55.41.1.0.1.el10_0.noarch.rpm
kernel-headers-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-modules-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-modules-core-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-modules-extra-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-tools-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-tools-libs-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-tools-libs-devel-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-uki-virt-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
kernel-uki-virt-addons-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
libperf-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
perf-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
python3-perf-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
rtla-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm
rv-6.12.0-55.41.1.0.1.el10_0.x86_64.rpm

aarch64:
kernel-cross-headers-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
kernel-headers-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
kernel-tools-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
kernel-tools-libs-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
kernel-tools-libs-devel-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
libperf-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
perf-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
python3-perf-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
rtla-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm
rv-6.12.0-55.41.1.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/kernel-6.12.0-55.41.1.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-39697
CVE-2025-39718
CVE-2025-39727
CVE-2025-39730
CVE-2025-39751
CVE-2025-39849

Description of changes:

[6.12.0-55.41.1.0.1]
- nvme-pci: remove two deallocate zeroes quirks [Orabug: 37756650]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985782]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64

Kea, Unbound, Firefox, Openbao, Vgrep updates for Fedora

LibTIFF updates for AlmaLinux

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...