Thunderbird, FreeRDP, Kernel, and more updates for Oracle Linux

Oracle Linux 6467 Published by

Oracle Linux has released important security updates affecting multiple software packages. Administrators will find critical patches for Python, Thunderbird, and the system kernel that resolve significant vulnerabilities across all supported releases. Moderate severity fixes are also included for components like libxslt alongside Java enhancements designed to improve stability.

ELSA-2026-6342 Important: Oracle Linux 10 thunderbird security update
ELSA-2026-6259 Important: Oracle Linux 10 gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free security update
ELSA-2026-6256 Important: Oracle Linux 10 python3.12 security update
ELBA-2026-6009 Oracle Linux 10 java-25-openjdk bug fix and enhancement update
ELSA-2026-6301 Important: Oracle Linux 9 squid security update
ELSA-2026-6340 Important: Oracle Linux 9 freerdp security update
ELSA-2026-6286 Important: Oracle Linux 9 python3.11 security update
ELSA-2026-6285 Important: Oracle Linux 9 python3.12 security update
ELSA-2026-6266 Moderate: Oracle Linux 9 libxslt security update
ELSA-2026-6153 Moderate: Oracle Linux 9 kernel security update
ELSA-2026-6283 Important: Oracle Linux 8 python3.12 security update
ELSA-2026-6281 Important: Oracle Linux 8 python3.11 security update
ELSA-2026-6037 Moderate: Oracle Linux 8 kernel security update




ELSA-2026-6342 Important: Oracle Linux 10 thunderbird security update


Oracle Linux Security Advisory ELSA-2026-6342

http://linux.oracle.com/errata/ELSA-2026-6342.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
thunderbird-140.9.0-1.0.1.el10_1.x86_64.rpm

aarch64:
thunderbird-140.9.0-1.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/thunderbird-140.9.0-1.0.1.el10_1.src.rpm

Related CVEs:

CVE-2026-3889
CVE-2026-4371
CVE-2026-4684
CVE-2026-4685
CVE-2026-4686
CVE-2026-4687
CVE-2026-4688
CVE-2026-4689
CVE-2026-4690
CVE-2026-4691
CVE-2026-4692
CVE-2026-4693
CVE-2026-4694
CVE-2026-4695
CVE-2026-4696
CVE-2026-4697
CVE-2026-4698
CVE-2026-4699
CVE-2026-4700
CVE-2026-4701
CVE-2026-4702
CVE-2026-4704
CVE-2026-4705
CVE-2026-4706
CVE-2026-4707
CVE-2026-4708
CVE-2026-4709
CVE-2026-4710
CVE-2026-4711
CVE-2026-4712
CVE-2026-4713
CVE-2026-4714
CVE-2026-4715
CVE-2026-4716
CVE-2026-4717
CVE-2026-4718
CVE-2026-4719
CVE-2026-4720
CVE-2026-4721

Description of changes:

[140.9.0-1.0.1]
- Add Oracle prefs

[140.9.0-1]
- Update to 140.9.0 ESR



ELSA-2026-6259 Important: Oracle Linux 10 gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free security update


Oracle Linux Security Advisory ELSA-2026-6259

http://linux.oracle.com/errata/ELSA-2026-6259.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
gstreamer1-plugins-bad-free-1.24.11-3.el10_1.x86_64.rpm
gstreamer1-plugins-bad-free-devel-1.24.11-3.el10_1.x86_64.rpm
gstreamer1-plugins-bad-free-libs-1.24.11-3.el10_1.x86_64.rpm
gstreamer1-plugins-base-1.24.11-2.el10_1.x86_64.rpm
gstreamer1-plugins-base-devel-1.24.11-2.el10_1.x86_64.rpm
gstreamer1-plugins-base-tools-1.24.11-2.el10_1.x86_64.rpm
gstreamer1-plugins-good-1.24.11-2.el10_1.x86_64.rpm
gstreamer1-plugins-good-gtk-1.24.11-2.el10_1.x86_64.rpm
gstreamer1-plugins-ugly-free-1.24.11-2.el10_1.x86_64.rpm

aarch64:
gstreamer1-plugins-bad-free-1.24.11-3.el10_1.aarch64.rpm
gstreamer1-plugins-bad-free-devel-1.24.11-3.el10_1.aarch64.rpm
gstreamer1-plugins-bad-free-libs-1.24.11-3.el10_1.aarch64.rpm
gstreamer1-plugins-base-1.24.11-2.el10_1.aarch64.rpm
gstreamer1-plugins-base-devel-1.24.11-2.el10_1.aarch64.rpm
gstreamer1-plugins-base-tools-1.24.11-2.el10_1.aarch64.rpm
gstreamer1-plugins-good-1.24.11-2.el10_1.aarch64.rpm
gstreamer1-plugins-good-gtk-1.24.11-2.el10_1.aarch64.rpm
gstreamer1-plugins-ugly-free-1.24.11-2.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/gstreamer1-plugins-bad-free-1.24.11-3.el10_1.src.rpm
http://oss.oracle.com/ol10/SRPMS-updates/gstreamer1-plugins-base-1.24.11-2.el10_1.src.rpm
http://oss.oracle.com/ol10/SRPMS-updates/gstreamer1-plugins-good-1.24.11-2.el10_1.src.rpm
http://oss.oracle.com/ol10/SRPMS-updates/gstreamer1-plugins-ugly-free-1.24.11-2.el10_1.src.rpm

Related CVEs:

CVE-2026-2920
CVE-2026-2921
CVE-2026-2922
CVE-2026-2923
CVE-2026-3082
CVE-2026-3083
CVE-2026-3085

Description of changes:

gstreamer1-plugins-bad-free
[1.24.11-3]
- fix for CVE-2026-2923, CVE-2026-3082
Resolves: RHEL-156111, RHEL-156158

gstreamer1-plugins-base
[1.24.11-2]
- Apply patch for CVE-2026-2921
Resolves: RHEL-156120

gstreamer1-plugins-good
[1.24.11-2]
- Apply patches for CVE-2026-3083, CVE-2026-3085
Resolves: RHEL-156130, RHEL-156109

gstreamer1-plugins-ugly-free
[1.24.11-2]
- Add patch for CVE-2026-2920, CVE-2026-2922
Resolves: RHEL-156146, RHEL-156043



ELSA-2026-6256 Important: Oracle Linux 10 python3.12 security update


Oracle Linux Security Advisory ELSA-2026-6256

http://linux.oracle.com/errata/ELSA-2026-6256.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
python-unversioned-command-3.12.12-3.0.1.el10_1.2.noarch.rpm
python3-3.12.12-3.0.1.el10_1.2.x86_64.rpm
python3-debug-3.12.12-3.0.1.el10_1.2.x86_64.rpm
python3-devel-3.12.12-3.0.1.el10_1.2.x86_64.rpm
python3-idle-3.12.12-3.0.1.el10_1.2.x86_64.rpm
python3-libs-3.12.12-3.0.1.el10_1.2.x86_64.rpm
python3-test-3.12.12-3.0.1.el10_1.2.x86_64.rpm
python3-tkinter-3.12.12-3.0.1.el10_1.2.x86_64.rpm

aarch64:
python-unversioned-command-3.12.12-3.0.1.el10_1.2.noarch.rpm
python3-3.12.12-3.0.1.el10_1.2.aarch64.rpm
python3-debug-3.12.12-3.0.1.el10_1.2.aarch64.rpm
python3-devel-3.12.12-3.0.1.el10_1.2.aarch64.rpm
python3-idle-3.12.12-3.0.1.el10_1.2.aarch64.rpm
python3-libs-3.12.12-3.0.1.el10_1.2.aarch64.rpm
python3-test-3.12.12-3.0.1.el10_1.2.aarch64.rpm
python3-tkinter-3.12.12-3.0.1.el10_1.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/python3.12-3.12.12-3.0.1.el10_1.2.src.rpm

Related CVEs:

CVE-2026-4519

Description of changes:

[3.12.12-3.0.1.el10_1.2]
- Remove upstream URL reference

[3.12.12-3.2]
- Security fix for CVE-2026-4519
Resolves: RHEL-158127

[3.12.12-3.1]
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143054 RHEL-143105 RHEL-144852



ELBA-2026-6009 Oracle Linux 10 java-25-openjdk bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-6009

http://linux.oracle.com/errata/ELBA-2026-6009.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
java-25-openjdk-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-crypto-adapter-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-crypto-adapter-fastdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-crypto-adapter-slowdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-demo-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-demo-fastdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-demo-slowdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-devel-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-devel-fastdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-devel-slowdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-fastdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-headless-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-headless-fastdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-headless-slowdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-javadoc-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-javadoc-zip-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-jmods-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-jmods-fastdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-jmods-slowdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-slowdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-src-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-src-fastdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-src-slowdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-static-libs-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-static-libs-fastdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm
java-25-openjdk-static-libs-slowdebug-25.0.2.0.10-4.0.1.el10_1.x86_64.rpm

aarch64:
java-25-openjdk-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-crypto-adapter-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-crypto-adapter-fastdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-crypto-adapter-slowdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-demo-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-demo-fastdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-demo-slowdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-devel-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-devel-fastdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-devel-slowdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-fastdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-headless-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-headless-fastdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-headless-slowdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-javadoc-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-javadoc-zip-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-jmods-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-jmods-fastdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-jmods-slowdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-slowdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-src-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-src-fastdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-src-slowdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-static-libs-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-static-libs-fastdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm
java-25-openjdk-static-libs-slowdebug-25.0.2.0.10-4.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/java-25-openjdk-25.0.2.0.10-4.0.1.el10_1.src.rpm

Description of changes:

[1:25.0.2.0.10-4.0.1]
- Add Oracle vendor bug URL [Orabug: 34340155]

[1:25.0.2.0.10-4]
- Add tagging scripts with signature checks and gating handling
- Update tagged versions to include 9.8.0-z, 9.9.0, 10.2-z & 10.3.
- Add gating scripts to simplify obtaining results and waiving issues
- Sync the copy of the portable specfile with the latest update
- Resolves: RHEL-155327
- Resolves: RHEL-155337
- Resolves: RHEL-155339
- Related: RHEL-155000
- Related: RHEL-146649
- Related: RHEL-148327
- Related: RHEL-148830

[1:25.0.2.0.10-3]
- Disable abidiff inspection in rpminspect.yaml to avoid an out-of-memory error on the CentOS test farm
- See: https://docs.testing-farm.io/Testing%20Farm/0.1/errors.html#TFE-1
- Resolves: RHEL-150976

[1:25.0.2.0.10-3]
- Update FIPS patch to e55ada9353e to include the fix for the too restrictive provider lockdown
- Fix FIPS issue list to represent the new 25u version
- Add JDK-8375063 libpng 1.6.54 ahead of 25.0.3
- Add JDK-8375057 harfbuzz 12.3.2 ahead of 25.0.3
- Add JDK-8377526 libpng 1.6.55 ahead of 25.0.3
- Bump libpng version to 1.6.55 following JDK-8375063 & JDK-8377526
- Bump harfbuzz version to 12.3.2 following JDK-8375057
- Bump nssadapter version to bring in shared PKCS11 session fix
- Drop LDFLAGS nssadapter patch which is now upstream in 0.1.1
- Resolves: RHEL-155000
- Resolves: RHEL-146649
- Resolves: RHEL-148327
- Resolves: RHEL-148830
- Resolves: RHEL-155044

[1:25.0.2.0.10-2]
- Bump rpmrelease for CentOS build
- Related: RHEL-139579
- Related: RHEL-131430
- Related: RHEL-131443
- Related: RHEL-142855
- Related: RHEL-142799

[1:25.0.2.0.10-1]
- Execute create-redhat-properties-files.bash with '-e' to exit on failure
- Related: RHEL-142855

[1:25.0.2.0.10-1]
- Update to jdk-25.0.2+10 (GA)
- Update release notes to 25.0.2+10
- Add JDK-8372534 libpng 1.6.51 ahead of 25.0.3
- Bump libpng version to 1.6.51 following JDK-8372534
- Bump ID of NSS adapter patch so we can stay in sync with portable on the libpng patch
- Test for java.security's existence in create-redhat-properties-files.bash
- Handle 'upgrade' as an alternative to 'update' in openjdk_news.sh
- Sync the copy of the portable specfile with the latest update
- ** This tarball is embargoed until 2026-01-20 @ 1pm PT. **
- Resolves: RHEL-139579
- Resolves: RHEL-131430
- Resolves: RHEL-131443
- Resolves: RHEL-142855
- Resolves: RHEL-142799



ELSA-2026-6301 Important: Oracle Linux 9 squid security update


Oracle Linux Security Advisory ELSA-2026-6301

http://linux.oracle.com/errata/ELSA-2026-6301.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
squid-5.5-22.el9_7.4.x86_64.rpm

aarch64:
squid-5.5-22.el9_7.4.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/squid-5.5-22.el9_7.4.src.rpm

Related CVEs:

CVE-2026-32748
CVE-2026-33526

Description of changes:

[7:5.5-22.4]
- Resolves: RHEL-160692 - squid: Squid: Denial of Service via
crafted ICP traffic (CVE-2026-32748)

[7:5.5-22.3]
- Resolves: RHEL-160693 - squid: Squid: Denial of Service via
heap Use-After-Free vulnerability in ICP handling (CVE-2026-33526)



ELSA-2026-6340 Important: Oracle Linux 9 freerdp security update


Oracle Linux Security Advisory ELSA-2026-6340

http://linux.oracle.com/errata/ELSA-2026-6340.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
freerdp-2.11.7-1.el9_7.5.x86_64.rpm
freerdp-devel-2.11.7-1.el9_7.5.i686.rpm
freerdp-devel-2.11.7-1.el9_7.5.x86_64.rpm
freerdp-libs-2.11.7-1.el9_7.5.i686.rpm
freerdp-libs-2.11.7-1.el9_7.5.x86_64.rpm
libwinpr-2.11.7-1.el9_7.5.i686.rpm
libwinpr-2.11.7-1.el9_7.5.x86_64.rpm
libwinpr-devel-2.11.7-1.el9_7.5.i686.rpm
libwinpr-devel-2.11.7-1.el9_7.5.x86_64.rpm

aarch64:
freerdp-2.11.7-1.el9_7.5.aarch64.rpm
freerdp-devel-2.11.7-1.el9_7.5.aarch64.rpm
freerdp-libs-2.11.7-1.el9_7.5.aarch64.rpm
libwinpr-2.11.7-1.el9_7.5.aarch64.rpm
libwinpr-devel-2.11.7-1.el9_7.5.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/freerdp-2.11.7-1.el9_7.5.src.rpm

Related CVEs:

CVE-2026-22852
CVE-2026-22854
CVE-2026-22856
CVE-2026-23732
CVE-2026-23948
CVE-2026-24491
CVE-2026-24675
CVE-2026-24676
CVE-2026-24679
CVE-2026-24681
CVE-2026-24683
CVE-2026-24684
CVE-2026-31806

Description of changes:

[2:2.11.7-1.5]
- Fix use of nsc_process_message
Resolves: RHEL-155993

[2:2.11.7-1.4]
- Backport several CVE fixes
Resolves: RHEL-148046, RHEL-148049, RHEL-148054, RHEL-148061, RHEL-148079
Resolves: RHEL-148094, RHEL-148096, RHEL-148104, RHEL-148939, RHEL-149029
Resolves: RHEL-149042, RHEL-149065, RHEL-155993



ELSA-2026-6286 Important: Oracle Linux 9 python3.11 security update


Oracle Linux Security Advisory ELSA-2026-6286

http://linux.oracle.com/errata/ELSA-2026-6286.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.11-3.11.13-5.2.0.1.el9_7.i686.rpm
python3.11-3.11.13-5.2.0.1.el9_7.x86_64.rpm
python3.11-debug-3.11.13-5.2.0.1.el9_7.i686.rpm
python3.11-debug-3.11.13-5.2.0.1.el9_7.x86_64.rpm
python3.11-devel-3.11.13-5.2.0.1.el9_7.i686.rpm
python3.11-devel-3.11.13-5.2.0.1.el9_7.x86_64.rpm
python3.11-idle-3.11.13-5.2.0.1.el9_7.i686.rpm
python3.11-idle-3.11.13-5.2.0.1.el9_7.x86_64.rpm
python3.11-libs-3.11.13-5.2.0.1.el9_7.i686.rpm
python3.11-libs-3.11.13-5.2.0.1.el9_7.x86_64.rpm
python3.11-test-3.11.13-5.2.0.1.el9_7.i686.rpm
python3.11-test-3.11.13-5.2.0.1.el9_7.x86_64.rpm
python3.11-tkinter-3.11.13-5.2.0.1.el9_7.i686.rpm
python3.11-tkinter-3.11.13-5.2.0.1.el9_7.x86_64.rpm

aarch64:
python3.11-3.11.13-5.2.0.1.el9_7.aarch64.rpm
python3.11-debug-3.11.13-5.2.0.1.el9_7.aarch64.rpm
python3.11-devel-3.11.13-5.2.0.1.el9_7.aarch64.rpm
python3.11-idle-3.11.13-5.2.0.1.el9_7.aarch64.rpm
python3.11-libs-3.11.13-5.2.0.1.el9_7.aarch64.rpm
python3.11-test-3.11.13-5.2.0.1.el9_7.aarch64.rpm
python3.11-tkinter-3.11.13-5.2.0.1.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.11-3.11.13-5.2.0.1.el9_7.src.rpm

Related CVEs:

CVE-2026-4519

Description of changes:

[3.11.13-5.2.0.1]
- Remove upstream URL reference [Orabug: 36073032]

[3.11.13-5.2]
- Security fix for CVE-2026-4519
Resolves: RHEL-158050



ELSA-2026-6285 Important: Oracle Linux 9 python3.12 security update


Oracle Linux Security Advisory ELSA-2026-6285

http://linux.oracle.com/errata/ELSA-2026-6285.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3.12-3.12.12-4.0.1.el9_7.2.i686.rpm
python3.12-3.12.12-4.0.1.el9_7.2.x86_64.rpm
python3.12-debug-3.12.12-4.0.1.el9_7.2.i686.rpm
python3.12-debug-3.12.12-4.0.1.el9_7.2.x86_64.rpm
python3.12-devel-3.12.12-4.0.1.el9_7.2.i686.rpm
python3.12-devel-3.12.12-4.0.1.el9_7.2.x86_64.rpm
python3.12-idle-3.12.12-4.0.1.el9_7.2.i686.rpm
python3.12-idle-3.12.12-4.0.1.el9_7.2.x86_64.rpm
python3.12-libs-3.12.12-4.0.1.el9_7.2.i686.rpm
python3.12-libs-3.12.12-4.0.1.el9_7.2.x86_64.rpm
python3.12-test-3.12.12-4.0.1.el9_7.2.i686.rpm
python3.12-test-3.12.12-4.0.1.el9_7.2.x86_64.rpm
python3.12-tkinter-3.12.12-4.0.1.el9_7.2.i686.rpm
python3.12-tkinter-3.12.12-4.0.1.el9_7.2.x86_64.rpm

aarch64:
python3.12-3.12.12-4.0.1.el9_7.2.aarch64.rpm
python3.12-debug-3.12.12-4.0.1.el9_7.2.aarch64.rpm
python3.12-devel-3.12.12-4.0.1.el9_7.2.aarch64.rpm
python3.12-idle-3.12.12-4.0.1.el9_7.2.aarch64.rpm
python3.12-libs-3.12.12-4.0.1.el9_7.2.aarch64.rpm
python3.12-test-3.12.12-4.0.1.el9_7.2.aarch64.rpm
python3.12-tkinter-3.12.12-4.0.1.el9_7.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/python3.12-3.12.12-4.0.1.el9_7.2.src.rpm

Related CVEs:

CVE-2026-4519

Description of changes:

[3.12.12-4.0.1.el9_7.2]
- Remove upstream URL reference

[3.12.12-4.2]
- Security fix for CVE-2026-4519
Resolves: RHEL-158051

[3.12.12-4.1]
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143106 RHEL-143168 RHEL-144891



ELSA-2026-6266 Moderate: Oracle Linux 9 libxslt security update


Oracle Linux Security Advisory ELSA-2026-6266

http://linux.oracle.com/errata/ELSA-2026-6266.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
libxslt-1.1.34-14.0.1.el9_7.1.i686.rpm
libxslt-1.1.34-14.0.1.el9_7.1.x86_64.rpm
libxslt-devel-1.1.34-14.0.1.el9_7.1.i686.rpm
libxslt-devel-1.1.34-14.0.1.el9_7.1.x86_64.rpm

aarch64:
libxslt-1.1.34-14.0.1.el9_7.1.aarch64.rpm
libxslt-devel-1.1.34-14.0.1.el9_7.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/libxslt-1.1.34-14.0.1.el9_7.1.src.rpm

Related CVEs:

CVE-2023-40403

Description of changes:

[1.1.34-14.0.1.el9_7.1]
- Fix memory leak in exclPrefixPush [Orabug: 37871881]
- Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball

[1.1.34-14.1]
- Fix upgrade path for CVE-2023-40403 (RHEL-82213)

[1.1.34-12.1]
- Fix CVE-2023-40403 (RHEL-82213)

[1.1.34-12]
- Include alloc changes into previous patch (RHEL-83514)

[1.1.34-11]
- Fix CVE-2024-55549 (RHEL-83514)

[1.1.34-10]
- Fix CVE-2025-24855 (RHEL-83500)



ELSA-2026-6153 Moderate: Oracle Linux 9 kernel security update


Oracle Linux Security Advisory ELSA-2026-6153

http://linux.oracle.com/errata/ELSA-2026-6153.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-abi-stablelists-5.14.0-611.45.1.el9_7.noarch.rpm
kernel-core-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-cross-headers-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-debug-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-debug-core-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-debug-devel-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-debug-devel-matched-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-debug-modules-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-debug-modules-core-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-debug-modules-extra-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-debug-uki-virt-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-devel-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-devel-matched-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-doc-5.14.0-611.45.1.el9_7.noarch.rpm
kernel-headers-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-modules-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-modules-core-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-modules-extra-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-tools-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-tools-libs-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-tools-libs-devel-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-uki-virt-5.14.0-611.45.1.el9_7.x86_64.rpm
kernel-uki-virt-addons-5.14.0-611.45.1.el9_7.x86_64.rpm
libperf-5.14.0-611.45.1.el9_7.x86_64.rpm
perf-5.14.0-611.45.1.el9_7.x86_64.rpm
python3-perf-5.14.0-611.45.1.el9_7.x86_64.rpm
rtla-5.14.0-611.45.1.el9_7.x86_64.rpm
rv-5.14.0-611.45.1.el9_7.x86_64.rpm

aarch64:
kernel-cross-headers-5.14.0-611.45.1.el9_7.aarch64.rpm
kernel-headers-5.14.0-611.45.1.el9_7.aarch64.rpm
kernel-tools-5.14.0-611.45.1.el9_7.aarch64.rpm
kernel-tools-libs-5.14.0-611.45.1.el9_7.aarch64.rpm
kernel-tools-libs-devel-5.14.0-611.45.1.el9_7.aarch64.rpm
libperf-5.14.0-611.45.1.el9_7.aarch64.rpm
perf-5.14.0-611.45.1.el9_7.aarch64.rpm
python3-perf-5.14.0-611.45.1.el9_7.aarch64.rpm
rtla-5.14.0-611.45.1.el9_7.aarch64.rpm
rv-5.14.0-611.45.1.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-611.45.1.el9_7.src.rpm

Related CVEs:

CVE-2025-38180
CVE-2025-40096
CVE-2026-23144
CVE-2026-23171
CVE-2026-23191
CVE-2026-23193
CVE-2026-23204
CVE-2026-23209

Description of changes:

[5.14.0-611.45.1]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64

Polkit, Crun, Rust, and more updates for Fedora

OpenShift, Thunderbird, Grafana, and more updates for RHEL

Windows

Linux

macOS

Community

  • Lexonight
    Hey everyone,Wanted to share a project I've been b ...
  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...