Thunderbird, HaProxy, Kernel, and more updates for Oracle Linux

Oracle Linux 6416 Published 2025-12-06 08:27 by Philipp Esselbach

News

ELSA-2025-21843 Important: Oracle Linux 10 thunderbird security update

Oracle Linux Security Advisory ELSA-2025-21843

http://linux.oracle.com/errata/ELSA-2025-21843.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
thunderbird-140.5.0-2.0.1.el10_1.x86_64.rpm

aarch64:
thunderbird-140.5.0-2.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/thunderbird-140.5.0-2.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-13012
CVE-2025-13013
CVE-2025-13014
CVE-2025-13015
CVE-2025-13016
CVE-2025-13017
CVE-2025-13018
CVE-2025-13019
CVE-2025-13020

Description of changes:

[140.5.0-2.0.1]
- Add Oracle prefs

[140.5.0-2]
- Update to 140.5.0 ESR

ELSA-2025-21691 Important: Oracle Linux 10 haproxy security update

Oracle Linux Security Advisory ELSA-2025-21691

http://linux.oracle.com/errata/ELSA-2025-21691.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
haproxy-3.0.5-4.el10_1.1.x86_64.rpm

aarch64:
haproxy-3.0.5-4.el10_1.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/haproxy-3.0.5-4.el10_1.1.src.rpm

Related CVEs:

CVE-2025-11230

Description of changes:

[3.0.5-4.1]
- Fix denial of service vulnerability in mjson library (CVE-2025-11230)
Resolves: RHEL-126652

ELSA-2025-21485 Moderate: Oracle Linux 10 java-25-openjdk security update

Oracle Linux Security Advisory ELSA-2025-21485

http://linux.oracle.com/errata/ELSA-2025-21485.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
java-25-openjdk-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-demo-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-demo-fastdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-demo-slowdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-devel-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-devel-fastdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-devel-slowdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-fastdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-headless-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-headless-fastdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-headless-slowdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-javadoc-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-javadoc-zip-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-jmods-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-jmods-fastdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-jmods-slowdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-slowdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-src-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-src-fastdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-src-slowdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-static-libs-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-static-libs-fastdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm
java-25-openjdk-static-libs-slowdebug-25.0.1.0.8-2.0.1.el10.x86_64.rpm

aarch64:
java-25-openjdk-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-demo-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-demo-fastdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-demo-slowdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-devel-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-devel-fastdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-devel-slowdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-fastdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-headless-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-headless-fastdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-headless-slowdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-javadoc-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-javadoc-zip-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-jmods-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-jmods-fastdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-jmods-slowdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-slowdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-src-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-src-fastdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-src-slowdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-static-libs-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-static-libs-fastdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm
java-25-openjdk-static-libs-slowdebug-25.0.1.0.8-2.0.1.el10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/java-25-openjdk-25.0.1.0.8-2.0.1.el10.src.rpm

Related CVEs:

CVE-2025-53057
CVE-2025-53066
CVE-2025-61748

Description of changes:

[1:25.0.1.0.8-2.0.1]
- Add Oracle vendor bug URL [Orabug: 34340155]

[1:25.0.1.0.8-2]
- Remove superfluous backslashes that cause two alternative commands to be combined
- Related: RHEL-120553

[1:25.0.1.0.8-1]
- Update to jdk-25.0.1+8 (GA)
- Update release notes with features of JDK 25
- Mention finalisation JEP for features finalised in JDK 22, 23 & 24
- Drop fakefeaturever now we have reached OpenJDK 25
- Update release notes to 25.0.1+8
- Sync the copy of the portable specfile with the latest update
- Resolves: RHEL-120553

[1:24.0.2.0.12-1]
- Update to jdk-24.0.2+12 (GA)
- Update release notes with features of JDK 24
- alt-java man page installation is now handled by the OpenJDK build
- Adjust TestTranslations.java with updated German translations from CLDR 46 (JDK-8333582) (Mountain->Mountains)
- Run javap with the disassembled code (-c) option now required for -l by JDK-8345145
- Sync the copy of the portable specfile with the latest update
- Remove default.policy and java.policy following JDK-8338411: "Permanently Disable the Security Manager"
- Make man page handling dependent on pandoc being available during the portable build
- Handle new CDS archive variants (*_coh*) added by Compact Object Headers (JDK-8305895)
- Add missing man page alternatives for jdeprscan, jfr, jhsdb, jimage, jlink & jmod and fix alphabetical ordering
- Support jnativescan added by JDK-8317611: "Add a tool like jdeprscan to find usage of restricted methods"
- Add recent native libraries to _privatelibs (libjsvml.so, libsimdsort.so, libsyslookup.so)
- Support libsleef on AArch64 & RISC-V added by JDK-8329816, JDK-8320500 (RISC-V) & JDK-8312425 (AArch64)
- Related: RHEL-120553

[1:23.0.2.0.7-1]
- Update to jdk-23.0.2+7 (GA)
- Update release notes with features of JDK 23
- Sync the copy of the portable specfile with the latest update
- Remove lible.so handling following its removal in JDK-8327476: "Upgrade JLine to 3.26.1"
- Install jaxp-strict.properties.template added by JDK-8330542: "Template for Creating Strict JAXP Configuration File"
- Related: RHEL-120553

ELSA-2025-21463 Moderate: Oracle Linux 10 kernel security update

Oracle Linux Security Advisory ELSA-2025-21463

http://linux.oracle.com/errata/ELSA-2025-21463.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-abi-stablelists-6.12.0-124.13.1.el10_1.noarch.rpm
kernel-core-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-cross-headers-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-debug-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-debug-core-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-debug-devel-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-debug-devel-matched-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-debug-modules-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-debug-modules-core-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-debug-modules-extra-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-debug-uki-virt-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-devel-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-devel-matched-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-doc-6.12.0-124.13.1.el10_1.noarch.rpm
kernel-headers-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-modules-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-modules-core-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-modules-extra-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-modules-extra-matched-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-tools-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-tools-libs-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-tools-libs-devel-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-uki-virt-6.12.0-124.13.1.el10_1.x86_64.rpm
kernel-uki-virt-addons-6.12.0-124.13.1.el10_1.x86_64.rpm
libperf-6.12.0-124.13.1.el10_1.x86_64.rpm
perf-6.12.0-124.13.1.el10_1.x86_64.rpm
python3-perf-6.12.0-124.13.1.el10_1.x86_64.rpm
rtla-6.12.0-124.13.1.el10_1.x86_64.rpm
rv-6.12.0-124.13.1.el10_1.x86_64.rpm

aarch64:
kernel-cross-headers-6.12.0-124.13.1.el10_1.aarch64.rpm
kernel-headers-6.12.0-124.13.1.el10_1.aarch64.rpm
kernel-tools-6.12.0-124.13.1.el10_1.aarch64.rpm
kernel-tools-libs-6.12.0-124.13.1.el10_1.aarch64.rpm
kernel-tools-libs-devel-6.12.0-124.13.1.el10_1.aarch64.rpm
libperf-6.12.0-124.13.1.el10_1.aarch64.rpm
perf-6.12.0-124.13.1.el10_1.aarch64.rpm
python3-perf-6.12.0-124.13.1.el10_1.aarch64.rpm
rtla-6.12.0-124.13.1.el10_1.aarch64.rpm
rv-6.12.0-124.13.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/kernel-6.12.0-124.13.1.el10_1.src.rpm

Related CVEs:

CVE-2025-38614
CVE-2025-39864
CVE-2025-39903
CVE-2025-39946

Description of changes:

[6.12.0-124.13.1]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985782]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 fastopen_rsk in tcp_disconnect(). (Antoine Tenart) [RHEL-120672] {CVE-2025-39955}
- NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() (CKI Backport Bot) [RHEL-113613] {CVE-2025-39730}

[6.12.0-124.11.1]
- of_numa: fix uninitialized memory nodes causing kernel panic (Charles Mirabile) [RHEL-123154] {CVE-2025-39903}
- redhat: use the same cert as UKI's to sign addons (Li Tian) [RHEL-124734]
- ibmveth: Add multi buffers rx replenishment hcall support (Mamatha Inamdar) [RHEL-116193]
- net: ibmveth: Reset the adapter when unexpected states are detected (Mamatha Inamdar) [RHEL-116193]
- ibmvnic: Increase max subcrq indirect entries with fallback (Mamatha Inamdar) [RHEL-116189]
- redhat: enable TDX host config (Paolo Bonzini) [RHEL-27145]
- KVM/TDX: Explicitly do WBINVD when no more TDX SEAMCALLs (Paolo Bonzini) [RHEL-27145]
- x86/virt/tdx: Update the kexec section in the TDX documentation (Paolo Bonzini) [RHEL-27145]
- x86/virt/tdx: Remove the !KEXEC_CORE dependency (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Disable kexec/kdump on platforms with TDX partial write erratum (Paolo Bonzini) [RHEL-27145]
- x86/virt/tdx: Mark memory cache state incoherent when making SEAMCALL (Paolo Bonzini) [RHEL-27145]
- x86/sme: Use percpu boolean to control WBINVD during kexec (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Consolidate relocate_kernel() function parameters (Paolo Bonzini) [RHEL-27145]
- x86/paravirt: Remove the WBINVD callback (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Use typedef for relocate_kernel_fn function prototype (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Cope with relocate_kernel() not being at the start of the page (Paolo Bonzini) [RHEL-27145]
- kexec_core: Add and update comments regarding the KEXEC_JUMP flow (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Mark machine_kexec() with __nocfi (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Fix location of relocate_kernel with -ffunction-sections (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Fix stack and handling of re-entry point for ::preserve_context (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Use correct swap page in swap_pages function (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Ensure preserve_context flag is set on return to kernel (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Disable global pages before writing to control page (Paolo Bonzini) [RHEL-27145]
- x86: Fix build regression with CONFIG_KEXEC_JUMP enabled (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Mark relocate_kernel page as ROX instead of RWX (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Clean up register usage in relocate_kernel() (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Eliminate writes through kernel mapping of relocate_kernel page (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Drop page_list argument from relocate_kernel() (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Add data section to relocate_kernel (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Move relocate_kernel to kernel .data section (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Invoke copy of relocate_kernel() instead of the original (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Copy control page into place in machine_kexec_prepare() (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Allocate PGD for x86_64 transition page tables separately (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Only swap pages for ::preserve_context mode (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Use named labels in swap_pages in relocate_kernel_64.S (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Clean up and document register use in relocate_kernel_64.S (Paolo Bonzini) [RHEL-27145]
- x86/kexec: Restore GDT on return from ::preserve_context kexec (Paolo Bonzini) [RHEL-27145]

[6.12.0-124.10.1]
- wifi: cfg80211: fix use-after-free in cmp_bss() (CKI Backport Bot) [RHEL-122880] {CVE-2025-39864}
- selftests: tls: test skb copy under mem pressure and OOB (CKI Backport Bot) [RHEL-120380] {CVE-2025-39946}
- tls: make sure to abort the stream if headers are bogus (CKI Backport Bot) [RHEL-120380] {CVE-2025-39946}
- ixgbe: fix ixgbe_orom_civd_info struct layout (Michal Schmidt) [RHEL-119079]
- ice: fix Rx page leak on multi-buffer frames (Petr Oros) [RHEL-116543]
- eventpoll: Fix semi-unbounded recursion (CKI Backport Bot) [RHEL-111055] {CVE-2025-38614}

[6.12.0-124.9.1]
- platform/x86/intel: power-domains: Use topology_logical_package_id() for package ID (CKI Backport Bot) [RHEL-123290]
- smb: client: fix file open check in __cifs_unlink() (Paulo Alcantara) [RHEL-122417]
- smb: client: fix data loss due to broken rename(2) (Paulo Alcantara) [RHEL-122417]
- smb: client: fix compound alignment with encryption (Paulo Alcantara) [RHEL-122417]
- smb: client: fix race with concurrent opens in rename(2) (Paulo Alcantara) [RHEL-122417]
- smb: client: fix race with concurrent opens in unlink(2) (Paulo Alcantara) [RHEL-122417]
- use uniform permission checks for all mount propagation changes (Ian Kent) [RHEL-121702] {CVE-2025-38498}
- do_change_type(): refuse to operate on unmounted/not ours mounts (Ian Kent) [RHEL-121702] {CVE-2025-38498}
- cgroup/psi: Set of->priv to NULL upon file release (CKI Backport Bot) [RHEL-119143] {CVE-2025-39881}
- kernfs: Fix UAF in polling when open file is released (CKI Backport Bot) [RHEL-119143] {CVE-2025-39881}
- redhat: rpminspect: update emptyrpm list for kernel variants (Alexandra Hájková)
- scsi: lpfc: Fix buffer free/clear order in deferred receive path (CKI Backport Bot) [RHEL-119132] {CVE-2025-39841}
- efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare (CKI Backport Bot) [RHEL-118462] {CVE-2025-39817}
- wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result() (CKI Backport Bot) [RHEL-117585] {CVE-2025-39849}
- xfs: do not propagate ENODATA disk errors into xattr code (Carlos Maiolino) [RHEL-115733]
- ipv6: sr: Fix MAC comparison to be constant-time (CKI Backport Bot) [RHEL-116387] {CVE-2025-39702}
- s390/ism: fix concurrency management in ism_cmd() (CKI Backport Bot) [RHEL-114500]
- s390/hypfs: Enable limited access during lockdown (CKI Backport Bot) [RHEL-114431]
- s390/hypfs: Avoid unnecessary ioctl registration in debugfs (CKI Backport Bot) [RHEL-114431]
- redhat/configs: Enable CONFIG_MITIGATION_VMSCAPE for x86 (Waiman Long) [RHEL-114276]
- x86/vmscape: Add old Intel CPUs to affected list (Waiman Long) [RHEL-114276] {CVE-2025-40300}
- x86/vmscape: Warn when STIBP is disabled with SMT (Waiman Long) [RHEL-114276] {CVE-2025-40300}
- x86/bugs: Move cpu_bugs_smt_update() down (Waiman Long) [RHEL-114276] {CVE-2025-40300}
- x86/vmscape: Enable the mitigation (Waiman Long) [RHEL-114276] {CVE-2025-40300}
- x86/vmscape: Add conditional IBPB mitigation (Waiman Long) [RHEL-114276] {CVE-2025-40300}
- x86/vmscape: Enumerate VMSCAPE bug (Waiman Long) [RHEL-114276] {CVE-2025-40300}
- Documentation/hw-vuln: Add VMSCAPE documentation (Waiman Long) [RHEL-114276] {CVE-2025-40300}
- RDMA/mana_ib: Fix DSCP value in modify QP (Maxim Levitsky) [RHEL-114931]
- net: mana: Handle Reset Request from MANA NIC (Maxim Levitsky) [RHEL-114931]
- net: mana: Set tx_packets to post gso processing packet count (Maxim Levitsky) [RHEL-114931]
- net: mana: Handle unsupported HWC commands (Maxim Levitsky) [RHEL-114931]
- net: mana: Add handler for hardware servicing events (Maxim Levitsky) [RHEL-114931]
- net: mana: Expose additional hardware counters for drop and TC via ethtool. (Maxim Levitsky) [RHEL-114931]
- mm: swap: fix potential buffer overflow in setup_clusters() (CKI Backport Bot) [RHEL-114862] {CVE-2025-39727}
- ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control (CKI Backport Bot) [RHEL-114852] {CVE-2025-39751}
- ALSA: usb-audio: Validate UAC3 power domain descriptors, too (Jaroslav Kysela) [RHEL-114693] {CVE-2025-38729}
- ALSA: usb-audio: Fix size validation in convert_chmap_v3() (Jaroslav Kysela) [RHEL-114693]
- ALSA: usb-audio: Validate UAC3 cluster segment descriptors (CKI Backport Bot) [RHEL-114693] {CVE-2025-39757}
- ibmvnic: Use ndo_get_stats64 to fix inaccurate SAR reporting (Mamatha Inamdar) [RHEL-114439]
- ibmvnic: Fix hardcoded NUM_RX_STATS/NUM_TX_STATS with dynamic sizeof (Mamatha Inamdar) [RHEL-114439]
- ibmvnic: Add stat for tx direct vs tx batched (Mamatha Inamdar) [RHEL-114439]
- vsock/virtio: Validate length in packet header before skb_put() (CKI Backport Bot) [RHEL-114301] {CVE-2025-39718}
- NFS: Fix a race when updating an existing write (CKI Backport Bot) [RHEL-113861] {CVE-2025-39697}

ELSA-2025-21281 Important: Oracle Linux 10 firefox security update

Oracle Linux Security Advisory ELSA-2025-21281

http://linux.oracle.com/errata/ELSA-2025-21281.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-140.5.0-2.0.1.el10_1.x86_64.rpm

aarch64:
firefox-140.5.0-2.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/firefox-140.5.0-2.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-13012
CVE-2025-13013
CVE-2025-13014
CVE-2025-13015
CVE-2025-13016
CVE-2025-13017
CVE-2025-13018
CVE-2025-13019
CVE-2025-13020

Description of changes:

[140.5.0-2.0.1]
- Fix firefox-oracle-default-prefs.js for new nss [Orabug: 37079773]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[140.5.0-2]
- Update to 140.5.0 ESR

ELSA-2025-21248 Moderate: Oracle Linux 10 openssl security update

Oracle Linux Security Advisory ELSA-2025-21248

http://linux.oracle.com/errata/ELSA-2025-21248.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
openssl-3.5.1-4.0.1.el10_1.x86_64.rpm
openssl-devel-3.5.1-4.0.1.el10_1.x86_64.rpm
openssl-libs-3.5.1-4.0.1.el10_1.x86_64.rpm
openssl-perl-3.5.1-4.0.1.el10_1.x86_64.rpm

aarch64:
openssl-3.5.1-4.0.1.el10_1.aarch64.rpm
openssl-devel-3.5.1-4.0.1.el10_1.aarch64.rpm
openssl-libs-3.5.1-4.0.1.el10_1.aarch64.rpm
openssl-perl-3.5.1-4.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/openssl-3.5.1-4.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-9230

Description of changes:

[3.5.1-4.0.1]
- Replace upstream references [Orabug: 34340177]
- Update FIPS provider name [Orabug: 35824276]

[1:3.5.1-4]
- Fix CVE-2025-9230
Resolves: RHEL-115885

ELSA-2025-21220 Important: Oracle Linux 10 podman security update

Oracle Linux Security Advisory ELSA-2025-21220

http://linux.oracle.com/errata/ELSA-2025-21220.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
podman-5.6.0-6.0.1.el10_1.x86_64.rpm
podman-docker-5.6.0-6.0.1.el10_1.noarch.rpm
podman-remote-5.6.0-6.0.1.el10_1.x86_64.rpm
podman-tests-5.6.0-6.0.1.el10_1.x86_64.rpm

aarch64:
podman-5.6.0-6.0.1.el10_1.aarch64.rpm
podman-docker-5.6.0-6.0.1.el10_1.noarch.rpm
podman-remote-5.6.0-6.0.1.el10_1.aarch64.rpm
podman-tests-5.6.0-6.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/podman-5.6.0-6.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-52881

Description of changes:

[5.6.0-6.0.1]
- Add devices on container startup, not on creation
- overlay: Put should ignore ENINVAL for Unmount [Orabug: 36234694]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404]

[7:5.6.0-6]
- update to the latest content of https://github.com/containers/podman/tree/v5.6-rhel
( https://github.com/containers/podman/commit/2791007)
- fixes "[Minor Incident] CVE-2025-52881 podman: container escape and denial of service due to arbitrary write gadgets and procfs write redirects [rhel-10.1.z]"
- Resolves: RHEL-126635

[7:5.6.0-5]
- update to the latest content of https://github.com/containers/podman/tree/v5.6-rhel
( https://github.com/containers/podman/commit/61231e1)
- fixes "Timeouts while pushing Sigstore logs to Rekor - [RHEL 10.1] 0day"
- Resolves: RHEL-111077

ELSA-2025-21142 Important: Oracle Linux 10 python-kdcproxy security update

Oracle Linux Security Advisory ELSA-2025-21142

http://linux.oracle.com/errata/ELSA-2025-21142.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-kdcproxy-1.0.0-19.el10_1.noarch.rpm

aarch64:
python3-kdcproxy-1.0.0-19.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/python-kdcproxy-1.0.0-19.el10_1.src.rpm

Related CVEs:

CVE-2025-59088
CVE-2025-59089

Description of changes:

[1.0.0-19]
- Use DNS discovery for declared realms only (CVE-2025-59088)
Resolves: RHEL-122777
- Fix DoS vulnerability based on unbounded TCP buffering (CVE-2025-59089)
Resolves: RHEL-122776

ELSA-2025-21037 Important: Oracle Linux 10 qt6-qtsvg security update

Oracle Linux Security Advisory ELSA-2025-21037

http://linux.oracle.com/errata/ELSA-2025-21037.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
qt6-qtsvg-6.9.1-2.el10_1.1.x86_64.rpm
qt6-qtsvg-devel-6.9.1-2.el10_1.1.x86_64.rpm
qt6-qtsvg-examples-6.9.1-2.el10_1.1.x86_64.rpm

aarch64:
qt6-qtsvg-6.9.1-2.el10_1.1.aarch64.rpm
qt6-qtsvg-devel-6.9.1-2.el10_1.1.aarch64.rpm
qt6-qtsvg-examples-6.9.1-2.el10_1.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/qt6-qtsvg-6.9.1-2.el10_1.1.src.rpm

Related CVEs:

CVE-2025-10729

Description of changes:

[6.9.1-2.1]
- Fix CVE-2025-10729: Prevent dangling pointers in SVG group node creation
Resolves: RHEL-119699

ELSA-2025-21035 Moderate: Oracle Linux 10 xorg-x11-server-Xwayland security update

Oracle Linux Security Advisory ELSA-2025-21035

http://linux.oracle.com/errata/ELSA-2025-21035.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
xorg-x11-server-Xwayland-24.1.5-5.el10_1.x86_64.rpm
xorg-x11-server-Xwayland-devel-24.1.5-5.el10_1.x86_64.rpm

aarch64:
xorg-x11-server-Xwayland-24.1.5-5.el10_1.aarch64.rpm
xorg-x11-server-Xwayland-devel-24.1.5-5.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/xorg-x11-server-Xwayland-24.1.5-5.el10_1.src.rpm

Related CVEs:

CVE-2025-62229
CVE-2025-62230
CVE-2025-62231

Description of changes:

[24.1.5-5]
- CVE fix for: CVE-2025-62229 (RHEL-119965), CVE-2025-62230 (RHEL-120014),
CVE-2025-62231 (RHEL-125004)

ELSA-2025-21034 Important: Oracle Linux 10 bind security update

Oracle Linux Security Advisory ELSA-2025-21034

http://linux.oracle.com/errata/ELSA-2025-21034.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
bind-9.18.33-10.0.1.el10_1.2.x86_64.rpm
bind-chroot-9.18.33-10.0.1.el10_1.2.x86_64.rpm
bind-devel-9.18.33-10.0.1.el10_1.2.x86_64.rpm
bind-dnssec-utils-9.18.33-10.0.1.el10_1.2.x86_64.rpm
bind-doc-9.18.33-10.0.1.el10_1.2.noarch.rpm
bind-libs-9.18.33-10.0.1.el10_1.2.x86_64.rpm
bind-license-9.18.33-10.0.1.el10_1.2.noarch.rpm
bind-utils-9.18.33-10.0.1.el10_1.2.x86_64.rpm

aarch64:
bind-9.18.33-10.0.1.el10_1.2.aarch64.rpm
bind-chroot-9.18.33-10.0.1.el10_1.2.aarch64.rpm
bind-devel-9.18.33-10.0.1.el10_1.2.aarch64.rpm
bind-dnssec-utils-9.18.33-10.0.1.el10_1.2.aarch64.rpm
bind-doc-9.18.33-10.0.1.el10_1.2.noarch.rpm
bind-libs-9.18.33-10.0.1.el10_1.2.aarch64.rpm
bind-license-9.18.33-10.0.1.el10_1.2.noarch.rpm
bind-utils-9.18.33-10.0.1.el10_1.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/bind-9.18.33-10.0.1.el10_1.2.src.rpm

Related CVEs:

CVE-2025-8677
CVE-2025-40778
CVE-2025-40780

Description of changes:

[9.18.33-10.0.1]
- Fix warning when changing device file permissions [Orabug: 36518580]

[32:9.18.33-10.2]
- Fix upstream reported regression in recent CVE fix (CVE-2025-8677)

[32:9.18.33-10.1]
- Refuse malformed DNSKEY records (CVE-2025-8677)
- Address various spoofing attacks (CVE-2025-40778)
- Prevent cache poisoning due to weak PRNG (CVE-2025-40780)

[32:9.18.33-10]
- Fix failures in idna system test (RHEL-66172)

[32:9.18.33-9]
- Decode IDN names on input in all situations in utilities (RHEL-66172)

[32:9.18.33-8]
- logrotate: skip if empty and remove old variants (RHEL-113942)

[32:9.18.33-7]
- Add runtime tunable limit by environment NAMED_MAXADDITIONAL (RHEL-84006)

[32:9.18.33-6]
- Change additional NS to be served partially (RHEL-84006)

ELSA-2025-21032 Important: Oracle Linux 10 libsoup3 security update

Oracle Linux Security Advisory ELSA-2025-21032

http://linux.oracle.com/errata/ELSA-2025-21032.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libsoup3-3.6.5-3.el10_1.6.x86_64.rpm
libsoup3-devel-3.6.5-3.el10_1.6.x86_64.rpm
libsoup3-doc-3.6.5-3.el10_1.6.noarch.rpm

aarch64:
libsoup3-3.6.5-3.el10_1.6.aarch64.rpm
libsoup3-devel-3.6.5-3.el10_1.6.aarch64.rpm
libsoup3-doc-3.6.5-3.el10_1.6.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libsoup3-3.6.5-3.el10_1.6.src.rpm

Related CVEs:

CVE-2025-4945
CVE-2025-11021

Description of changes:

[3.6.5-6]
- Fix integer overflow in date/time parsing

[3.6.5-5]
- Bump revision number

[3.6.5-4]
- Fix several CVEs

ELSA-2025-21030 Important: Oracle Linux 10 expat security update

Oracle Linux Security Advisory ELSA-2025-21030

http://linux.oracle.com/errata/ELSA-2025-21030.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
expat-2.7.1-1.el10_1.3.x86_64.rpm
expat-devel-2.7.1-1.el10_1.3.x86_64.rpm

aarch64:
expat-2.7.1-1.el10_1.3.aarch64.rpm
expat-devel-2.7.1-1.el10_1.3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/expat-2.7.1-1.el10_1.3.src.rpm

Related CVEs:

CVE-2025-59375

Description of changes:

[2.7.1-3]
- Fix CVE-2025-59375 - backport allocation tracking improvements

[2.7.1-2]
- https://issues.redhat.com/browse/RHELMISC-13073

ELSA-2025-21015 Moderate: Oracle Linux 10 vim security update

Oracle Linux Security Advisory ELSA-2025-21015

http://linux.oracle.com/errata/ELSA-2025-21015.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
vim-X11-9.1.083-6.0.1.el10_1.x86_64.rpm
vim-common-9.1.083-6.0.1.el10_1.x86_64.rpm
vim-data-9.1.083-6.0.1.el10_1.noarch.rpm
vim-enhanced-9.1.083-6.0.1.el10_1.x86_64.rpm
vim-filesystem-9.1.083-6.0.1.el10_1.noarch.rpm
vim-minimal-9.1.083-6.0.1.el10_1.x86_64.rpm
xxd-9.1.083-6.0.1.el10_1.x86_64.rpm

aarch64:
vim-X11-9.1.083-6.0.1.el10_1.aarch64.rpm
vim-common-9.1.083-6.0.1.el10_1.aarch64.rpm
vim-data-9.1.083-6.0.1.el10_1.noarch.rpm
vim-enhanced-9.1.083-6.0.1.el10_1.aarch64.rpm
vim-filesystem-9.1.083-6.0.1.el10_1.noarch.rpm
vim-minimal-9.1.083-6.0.1.el10_1.aarch64.rpm
xxd-9.1.083-6.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/vim-9.1.083-6.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-53905
CVE-2025-53906

Description of changes:

[9.1.083-6.0.1]
- Remove upstream references [Orabug: 31197557]

[2:9.1.083-6]
- RHEL-113549 CVE-2025-53906 vim: Vim path traversal
- RHEL-113543 CVE-2025-53905 vim: Vim path traversial

ELSA-2025-21013 Moderate: Oracle Linux 10 libssh security update

Oracle Linux Security Advisory ELSA-2025-21013

http://linux.oracle.com/errata/ELSA-2025-21013.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libssh-0.11.1-4.el10_1.x86_64.rpm
libssh-config-0.11.1-4.el10_1.noarch.rpm
libssh-devel-0.11.1-4.el10_1.x86_64.rpm

aarch64:
libssh-0.11.1-4.el10_1.aarch64.rpm
libssh-config-0.11.1-4.el10_1.noarch.rpm
libssh-devel-0.11.1-4.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libssh-0.11.1-4.el10_1.src.rpm

Related CVEs:

CVE-2025-5318

Description of changes:

[0.11.1-4]
- Rebuild due to broken build auto-tagging

ELSA-2025-21006 Important: Oracle Linux 10 kea security update

Oracle Linux Security Advisory ELSA-2025-21006

http://linux.oracle.com/errata/ELSA-2025-21006.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
kea-3.0.1-2.el10_1.x86_64.rpm
kea-doc-3.0.1-2.el10_1.noarch.rpm
kea-hooks-3.0.1-2.el10_1.x86_64.rpm
kea-keama-3.0.1-2.el10_1.x86_64.rpm
kea-libs-3.0.1-2.el10_1.x86_64.rpm

aarch64:
kea-3.0.1-2.el10_1.aarch64.rpm
kea-doc-3.0.1-2.el10_1.noarch.rpm
kea-hooks-3.0.1-2.el10_1.aarch64.rpm
kea-keama-3.0.1-2.el10_1.aarch64.rpm
kea-libs-3.0.1-2.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/kea-3.0.1-2.el10_1.src.rpm

Related CVEs:

CVE-2025-40779

Description of changes:

[3.0.1-2]
- Fixes CVE-2025-11232

[3.0.1-1]
- New version 3.0.1
- Fixes CVE-2025-40779

ELSA-2025-21002 Important: Oracle Linux 10 squid security update

Oracle Linux Security Advisory ELSA-2025-21002

http://linux.oracle.com/errata/ELSA-2025-21002.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
squid-6.10-6.el10_1.1.x86_64.rpm

aarch64:
squid-6.10-6.el10_1.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/squid-6.10-6.el10_1.1.src.rpm

Related CVEs:

CVE-2025-62168

Description of changes:

[7:6.10-6.1]
- Resolves: RHEL-122480 - CVE-2025-62168 squid: Squid vulnerable to information
disclosure via authentication credential leakage in error handling

[7:6.10-6]
- Resolves: RHEL-86817 - ”TCP connection to XX.XX.XX.XX/XXXX failed” message is
output frequently on RHEL10

ELSA-2025-20998 Important: Oracle Linux 10 libtiff security update

Oracle Linux Security Advisory ELSA-2025-20998

http://linux.oracle.com/errata/ELSA-2025-20998.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libtiff-4.6.0-6.el10_1.1.x86_64.rpm
libtiff-devel-4.6.0-6.el10_1.1.x86_64.rpm
libtiff-tools-4.6.0-6.el10_1.1.x86_64.rpm

aarch64:
libtiff-4.6.0-6.el10_1.1.aarch64.rpm
libtiff-devel-4.6.0-6.el10_1.1.aarch64.rpm
libtiff-tools-4.6.0-6.el10_1.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libtiff-4.6.0-6.el10_1.1.src.rpm

Related CVEs:

CVE-2025-9900

Description of changes:

[4.6.0-6.1]
- Fix buffer underflow in TIFFReadRGBAImageOriented().
- Resolves: RHEL-112524

ELSA-2025-20983 Important: Oracle Linux 10 podman security update

Oracle Linux Security Advisory ELSA-2025-20983

http://linux.oracle.com/errata/ELSA-2025-20983.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
podman-5.6.0-6.0.1.el10_1.x86_64.rpm
podman-docker-5.6.0-6.0.1.el10_1.noarch.rpm
podman-remote-5.6.0-6.0.1.el10_1.x86_64.rpm
podman-tests-5.6.0-6.0.1.el10_1.x86_64.rpm

aarch64:
podman-5.6.0-6.0.1.el10_1.aarch64.rpm
podman-docker-5.6.0-6.0.1.el10_1.noarch.rpm
podman-remote-5.6.0-6.0.1.el10_1.aarch64.rpm
podman-tests-5.6.0-6.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/podman-5.6.0-6.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-9566
CVE-2025-47907

Description of changes:

[5.6.0-6.0.1]
- Add devices on container startup, not on creation
- overlay: Put should ignore ENINVAL for Unmount [Orabug: 36234694]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404]

[7:5.6.0-6]
- update to the latest content of https://github.com/containers/podman/tree/v5.6-rhel
( https://github.com/containers/podman/commit/2791007)
- fixes "[Minor Incident] CVE-2025-52881 podman: container escape and denial of service due to arbitrary write gadgets and procfs write redirects [rhel-10.1.z]"
- Resolves: RHEL-126635

[7:5.6.0-5]
- update to the latest content of https://github.com/containers/podman/tree/v5.6-rhel
( https://github.com/containers/podman/commit/61231e1)
- fixes "Timeouts while pushing Sigstore logs to Rekor - [RHEL 10.1] 0day"
- Resolves: RHEL-111077

ELBA-2025-21021 Oracle Linux 10 flatpak-runtime-config bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21021

http://linux.oracle.com/errata/ELBA-2025-21021.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
flatpak-runtime-config-40-5.0.1.el10_1.x86_64.rpm

aarch64:
flatpak-runtime-config-40-5.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/flatpak-runtime-config-40-5.0.1.el10_1.src.rpm

Description of changes:

[40-5.0.1]
- Ship Oracle Linux xml files

[40-5]
- Fix release date and version in the AppStream data
Resolves: RHEL-121458

ELBA-2025-21012 Oracle Linux 10 nftables bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21012

http://linux.oracle.com/errata/ELBA-2025-21012.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
nftables-1.1.1-6.el10_1.x86_64.rpm
nftables-devel-1.1.1-6.el10_1.x86_64.rpm
python3-nftables-1.1.1-6.el10_1.x86_64.rpm

aarch64:
nftables-1.1.1-6.el10_1.aarch64.rpm
nftables-devel-1.1.1-6.el10_1.aarch64.rpm
python3-nftables-1.1.1-6.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/nftables-1.1.1-6.el10_1.src.rpm

Description of changes:

[[1.1.1-6.el10]]
- Makefile: Fix for 'make CFLAGS=...' (Phil Sutter) [RHEL-108851]
- table: Embed creating nft version into userdata (Phil Sutter) [RHEL-108851]
- doc: nft.8: Minor NAT STATEMENTS section review (Phil Sutter) [RHEL-106743]
- trace: Fix for memleak in trace_alloc_list() error path (Phil Sutter) [RHEL-111205]

ELBA-2025-21309 Oracle Linux 10 .NET 9.0 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21309

http://linux.oracle.com/errata/ELBA-2025-21309.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-9.0-9.0.11-1.0.1.el10_1.x86_64.rpm
aspnetcore-runtime-dbg-9.0-9.0.11-1.0.1.el10_1.x86_64.rpm
aspnetcore-targeting-pack-9.0-9.0.11-1.0.1.el10_1.x86_64.rpm
dotnet-apphost-pack-9.0-9.0.11-1.0.1.el10_1.x86_64.rpm
dotnet-hostfxr-9.0-9.0.11-1.0.1.el10_1.x86_64.rpm
dotnet-runtime-9.0-9.0.11-1.0.1.el10_1.x86_64.rpm
dotnet-runtime-dbg-9.0-9.0.11-1.0.1.el10_1.x86_64.rpm
dotnet-sdk-9.0-9.0.112-1.0.1.el10_1.x86_64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.112-1.0.1.el10_1.x86_64.rpm
dotnet-sdk-aot-9.0-9.0.112-1.0.1.el10_1.x86_64.rpm
dotnet-sdk-dbg-9.0-9.0.112-1.0.1.el10_1.x86_64.rpm
dotnet-targeting-pack-9.0-9.0.11-1.0.1.el10_1.x86_64.rpm
dotnet-templates-9.0-9.0.112-1.0.1.el10_1.x86_64.rpm
netstandard-targeting-pack-2.1-9.0.112-1.0.1.el10_1.x86_64.rpm

aarch64:
aspnetcore-runtime-9.0-9.0.11-1.0.1.el10_1.aarch64.rpm
aspnetcore-runtime-dbg-9.0-9.0.11-1.0.1.el10_1.aarch64.rpm
aspnetcore-targeting-pack-9.0-9.0.11-1.0.1.el10_1.aarch64.rpm
dotnet-apphost-pack-9.0-9.0.11-1.0.1.el10_1.aarch64.rpm
dotnet-hostfxr-9.0-9.0.11-1.0.1.el10_1.aarch64.rpm
dotnet-runtime-9.0-9.0.11-1.0.1.el10_1.aarch64.rpm
dotnet-runtime-dbg-9.0-9.0.11-1.0.1.el10_1.aarch64.rpm
dotnet-sdk-9.0-9.0.112-1.0.1.el10_1.aarch64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.112-1.0.1.el10_1.aarch64.rpm
dotnet-sdk-aot-9.0-9.0.112-1.0.1.el10_1.aarch64.rpm
dotnet-sdk-dbg-9.0-9.0.112-1.0.1.el10_1.aarch64.rpm
dotnet-targeting-pack-9.0-9.0.11-1.0.1.el10_1.aarch64.rpm
dotnet-templates-9.0-9.0.112-1.0.1.el10_1.aarch64.rpm
netstandard-targeting-pack-2.1-9.0.112-1.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet9.0-9.0.112-1.0.1.el10_1.src.rpm

Description of changes:

[9.0.112-1.0.1]
- Add support for Oracle Linux

[9.0.112-1]
- Update to .NET SDK 9.0.112 and Runtime 9.0.11
- Resolves: RHEL-125746

ELBA-2025-21306 Oracle Linux 10 .NET 8.0 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21306

http://linux.oracle.com/errata/ELBA-2025-21306.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-8.0-8.0.22-1.0.1.el10_1.x86_64.rpm
aspnetcore-runtime-dbg-8.0-8.0.22-1.0.1.el10_1.x86_64.rpm
aspnetcore-targeting-pack-8.0-8.0.22-1.0.1.el10_1.x86_64.rpm
dotnet-apphost-pack-8.0-8.0.22-1.0.1.el10_1.x86_64.rpm
dotnet-hostfxr-8.0-8.0.22-1.0.1.el10_1.x86_64.rpm
dotnet-runtime-8.0-8.0.22-1.0.1.el10_1.x86_64.rpm
dotnet-runtime-dbg-8.0-8.0.22-1.0.1.el10_1.x86_64.rpm
dotnet-sdk-8.0-8.0.122-1.0.1.el10_1.x86_64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.122-1.0.1.el10_1.x86_64.rpm
dotnet-sdk-dbg-8.0-8.0.122-1.0.1.el10_1.x86_64.rpm
dotnet-targeting-pack-8.0-8.0.22-1.0.1.el10_1.x86_64.rpm
dotnet-templates-8.0-8.0.122-1.0.1.el10_1.x86_64.rpm

aarch64:
aspnetcore-runtime-8.0-8.0.22-1.0.1.el10_1.aarch64.rpm
aspnetcore-runtime-dbg-8.0-8.0.22-1.0.1.el10_1.aarch64.rpm
aspnetcore-targeting-pack-8.0-8.0.22-1.0.1.el10_1.aarch64.rpm
dotnet-apphost-pack-8.0-8.0.22-1.0.1.el10_1.aarch64.rpm
dotnet-hostfxr-8.0-8.0.22-1.0.1.el10_1.aarch64.rpm
dotnet-runtime-8.0-8.0.22-1.0.1.el10_1.aarch64.rpm
dotnet-runtime-dbg-8.0-8.0.22-1.0.1.el10_1.aarch64.rpm
dotnet-sdk-8.0-8.0.122-1.0.1.el10_1.aarch64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.122-1.0.1.el10_1.aarch64.rpm
dotnet-sdk-dbg-8.0-8.0.122-1.0.1.el10_1.aarch64.rpm
dotnet-targeting-pack-8.0-8.0.22-1.0.1.el10_1.aarch64.rpm
dotnet-templates-8.0-8.0.122-1.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet8.0-8.0.122-1.0.1.el10_1.src.rpm

Description of changes:

[8.0.122-1.0.1]
- Add support for Oracle Linux

[8.0.122-1]
- Update to .NET SDK 8.0.122 and Runtime 8.0.22
- Resolves: RHEL-125741

ELBA-2025-21033 Oracle Linux 10 ca-certificates bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21033

http://linux.oracle.com/errata/ELBA-2025-21033.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
ca-certificates-2025.2.80_v9.0.305-102.el10_1.noarch.rpm

aarch64:
ca-certificates-2025.2.80_v9.0.305-102.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/ca-certificates-2025.2.80_v9.0.305-102.el10_1.src.rpm

Description of changes:

[2025.2.80_v9.0.305-102]
- Remove /etc/pki/tls/certs/ca-certificates.crt symlink which was included by mistake

ELBA-2025-21019 Oracle Linux 10 realmd bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21019

http://linux.oracle.com/errata/ELBA-2025-21019.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
realmd-0.17.1-13.el10_1.x86_64.rpm

aarch64:
realmd-0.17.1-13.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/realmd-0.17.1-13.el10_1.src.rpm

Description of changes:

[0.17.1-13]
- add renew command
Resolves: RHEL-117645

ELBA-2025-20988 Oracle Linux 10 .NET 9.0 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20988

http://linux.oracle.com/errata/ELBA-2025-20988.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-9.0-9.0.10-2.0.1.el10_1.x86_64.rpm
aspnetcore-runtime-dbg-9.0-9.0.10-2.0.1.el10_1.x86_64.rpm
aspnetcore-targeting-pack-9.0-9.0.10-2.0.1.el10_1.x86_64.rpm
dotnet-apphost-pack-9.0-9.0.10-2.0.1.el10_1.x86_64.rpm
dotnet-hostfxr-9.0-9.0.10-2.0.1.el10_1.x86_64.rpm
dotnet-runtime-9.0-9.0.10-2.0.1.el10_1.x86_64.rpm
dotnet-runtime-dbg-9.0-9.0.10-2.0.1.el10_1.x86_64.rpm
dotnet-sdk-9.0-9.0.111-2.0.1.el10_1.x86_64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.111-2.0.1.el10_1.x86_64.rpm
dotnet-sdk-aot-9.0-9.0.111-2.0.1.el10_1.x86_64.rpm
dotnet-sdk-dbg-9.0-9.0.111-2.0.1.el10_1.x86_64.rpm
dotnet-targeting-pack-9.0-9.0.10-2.0.1.el10_1.x86_64.rpm
dotnet-templates-9.0-9.0.111-2.0.1.el10_1.x86_64.rpm
netstandard-targeting-pack-2.1-9.0.111-2.0.1.el10_1.x86_64.rpm

aarch64:
aspnetcore-runtime-9.0-9.0.10-2.0.1.el10_1.aarch64.rpm
aspnetcore-runtime-dbg-9.0-9.0.10-2.0.1.el10_1.aarch64.rpm
aspnetcore-targeting-pack-9.0-9.0.10-2.0.1.el10_1.aarch64.rpm
dotnet-apphost-pack-9.0-9.0.10-2.0.1.el10_1.aarch64.rpm
dotnet-hostfxr-9.0-9.0.10-2.0.1.el10_1.aarch64.rpm
dotnet-runtime-9.0-9.0.10-2.0.1.el10_1.aarch64.rpm
dotnet-runtime-dbg-9.0-9.0.10-2.0.1.el10_1.aarch64.rpm
dotnet-sdk-9.0-9.0.111-2.0.1.el10_1.aarch64.rpm
dotnet-sdk-9.0-source-built-artifacts-9.0.111-2.0.1.el10_1.aarch64.rpm
dotnet-sdk-aot-9.0-9.0.111-2.0.1.el10_1.aarch64.rpm
dotnet-sdk-dbg-9.0-9.0.111-2.0.1.el10_1.aarch64.rpm
dotnet-targeting-pack-9.0-9.0.10-2.0.1.el10_1.aarch64.rpm
dotnet-templates-9.0-9.0.111-2.0.1.el10_1.aarch64.rpm
netstandard-targeting-pack-2.1-9.0.111-2.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet9.0-9.0.111-2.0.1.el10_1.src.rpm

Description of changes:

[9.0.111-2.0.1]
- Add support for Oracle Linux

[9.0.111-2]
- Update to .NET SDK 9.0.111 and Runtime 9.0.10
- Resolves: RHEL-116861

[9.0.110-2]
- Update to .NET SDK 9.0.110 and Runtime 9.0.9
- Resolves: RHEL-112268

[9.0.109-2]
- Update to .NET SDK 9.0.109 and Runtime 9.0.8
- Resolves: RHEL-106727

[9.0.108-2]
- Update to .NET SDK 9.0.108 and Runtime 9.0.7
- Resolves: RHEL-100597

[9.0.107-2]
- Update to .NET SDK 9.0.107 and Runtime 9.0.6
- Resolves: RHEL-94423

[9.0.106-2]
- Update to .NET SDK 9.0.106 and Runtime 9.0.5
- Resolves: RHEL-89452

[9.0.105-2]
- Update to .NET SDK 9.0.105 and Runtime 9.0.4
- Resolves: RHEL-85281

[9.0.104-2]
- Update to .NET SDK 9.0.104 and Runtime 9.0.3
- Resolves: RHEL-81647

[9.0.103-2]
- Update to .NET SDK 9.0.103 and Runtime 9.0.2
- Resolves: RHEL-76904

ELBA-2025-21018 Oracle Linux 10 tuned bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21018

http://linux.oracle.com/errata/ELBA-2025-21018.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
tuned-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-gtk-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-ppd-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-atomic-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-cpu-partitioning-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-mssql-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-oci-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-oci-recommend-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-oracle-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-postgresql-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-spectrumscale-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-utils-2.26.0-1.0.1.el10_1.1.noarch.rpm

aarch64:
tuned-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-gtk-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-ppd-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-atomic-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-cpu-partitioning-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-mssql-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-oci-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-oci-recommend-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-oracle-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-postgresql-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-profiles-spectrumscale-2.26.0-1.0.1.el10_1.1.noarch.rpm
tuned-utils-2.26.0-1.0.1.el10_1.1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/tuned-2.26.0-1.0.1.el10_1.1.src.rpm

Description of changes:

[2.26.0-1.0.1]
- Fix RPS/XPS and busy polling optimization not getting applied [Orabug: 32153315]
- Fix error in uninstalling tuned [Orabug: 351528377]
- Updated patch with the more recent version [Orabug: 30730976]
- Set AMD CPU freq governor to ondemand when unapplying cpu tunings [Orabug: 30033199]
- Restored the system rules in recommend.conf [Orabug: 29962987]
- Added oci-nic profile and updated profiles-oci-recommend [Orabug: 29869969]
for increasing combined channels to 16 on NICs with bnxt_en driver on BM
- Do not access xps_cpus on single queue devices [Orabug: 29894296]
- OL8 does not support System Purpose [Orabug: 29443881]
Remove syspurpose_role option in recommend.conf.
- Added profiles-oci-recommend package [Orabug: 29632202]
- Modified the patch for ol8 [Orabug: 29560068] (james.cheng@oracle.com)
- Added iscsi plugin, and
- added oci-rps-xps profile [Orabug: 28397039]
- added oci-busy-polling profile [Orabug: 28748149]
- added oci-cpu-power profile

ELBA-2025-21000 Oracle Linux 10 aide bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21000

http://linux.oracle.com/errata/ELBA-2025-21000.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
aide-0.18.6-8.el10_1.2.x86_64.rpm

aarch64:
aide-0.18.6-8.el10_1.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/aide-0.18.6-8.el10_1.2.src.rpm

Description of changes:

[0.18.6-8.2]
- RHEL 10.1.Z ERRATUM
- Fix lowercase group name definition
Resolves: RHEL-119647

[0.18.6-8.1]
- RHEL 10.1 ERRATUM
- CVE-2025-54389 aide: improper output neutralization enables bypassing
Resolves: RHEL-108928

ELBA-2025-20997 Oracle Linux 10 libvirt bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20997

http://linux.oracle.com/errata/ELBA-2025-20997.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libvirt-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-client-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-client-qemu-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-common-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-config-network-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-config-nwfilter-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-interface-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-network-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-nodedev-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-nwfilter-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-qemu-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-secret-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-core-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-disk-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-iscsi-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-logical-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-mpath-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-rbd-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-driver-storage-scsi-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-kvm-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-lock-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-log-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-plugin-lockd-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-plugin-sanlock-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-daemon-proxy-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-devel-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-docs-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-libs-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-nss-11.5.0-4.1.0.1.el10_1.x86_64.rpm
libvirt-ssh-proxy-11.5.0-4.1.0.1.el10_1.x86_64.rpm

aarch64:
libvirt-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-client-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-client-qemu-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-common-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-config-network-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-config-nwfilter-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-interface-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-network-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-nodedev-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-nwfilter-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-qemu-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-secret-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-core-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-disk-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-iscsi-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-logical-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-mpath-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-rbd-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-driver-storage-scsi-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-kvm-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-lock-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-log-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-plugin-lockd-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-plugin-sanlock-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-daemon-proxy-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-devel-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-docs-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-libs-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-nss-11.5.0-4.1.0.1.el10_1.aarch64.rpm
libvirt-ssh-proxy-11.5.0-4.1.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libvirt-11.5.0-4.1.0.1.el10_1.src.rpm

Description of changes:

[11.5.0-4.1.0.1]
- Set SOURCE_DATE_EPOCH from changelog [Orabug: 32019554]

[11.5.0-4.1.el10_1]
- tools: Secure guest check for Intel in virt-host-validate (RHEL-111863)
- qemu: Check if INTEL Trust Domain Extention support is enabled (RHEL-111863)
- qemucapabilitiesdata: Document '+inteltdx' variant (RHEL-111863)
- qemucapabilitiestest: Add data for the qemu-10.1.0 dev cycle on x86_64 for the '+inteltdx' variant (RHEL-111863)
- qemu: Add QEMU_CAPS_TDX_GUEST capability (RHEL-111863)
- conf: Expose TDX feature in domain capabilities (RHEL-111863)
- conf: Add tdx as launch security type (RHEL-111863)
- conf: Validate TDX launchSecurity element mrConfigId/mrOwner/mrOwnerConfig (RHEL-111863)
- qemu: Add command line and validation for TDX type (RHEL-111863)
- conf: Expose TDX type in domain launch security capability (RHEL-111863)
- qemu: Force special parameters enabled for TDX guest (RHEL-111863)
- qemu: log the crash information for TDX (RHEL-111863)
- qemu_firmware: Pick the right firmware for TDX guests (RHEL-111863)
- conf: Add Intel TDX Quote Generation Service(QGS) support (RHEL-111863)
- qemu: Add command line for TDX Quote Generation Service(QGS) (RHEL-111863)
- qemu: Add FakeReboot support for TDX guest (RHEL-111863)
- qemu: Support reboot command in guest (RHEL-111863)
- qemu: Avoid duplicate FakeReboot for secure guest (RHEL-111863)
- qemu: Send event VIR_DOMAIN_EVENT_[STOPPED|STARTED] during recreation (RHEL-111863)
- qemu: Support domain reset command for TDX guest (RHEL-111863)
- qemuxmlconftest: Add latest version of 'launch-security-tdx*' test data (RHEL-111863)
- docs: domain: Add documentation for Intel TDX guest (RHEL-111863)

ELBA-2025-21011 Oracle Linux 10 libnftnl bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21011

http://linux.oracle.com/errata/ELBA-2025-21011.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
libnftnl-1.2.8-4.el10_1.x86_64.rpm
libnftnl-devel-1.2.8-4.el10_1.x86_64.rpm

aarch64:
libnftnl-1.2.8-4.el10_1.aarch64.rpm
libnftnl-devel-1.2.8-4.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/libnftnl-1.2.8-4.el10_1.src.rpm

Description of changes:

[[1.2.8-4.el10]]
- udata: Introduce NFTNL_UDATA_TABLE_NFT{VER,BLD} (Phil Sutter) [RHEL-113823]

ELBA-2025-21009 Oracle Linux 10 at bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21009

http://linux.oracle.com/errata/ELBA-2025-21009.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
at-3.2.5-14.el10_1.x86_64.rpm

aarch64:
at-3.2.5-14.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/at-3.2.5-14.el10_1.src.rpm

Description of changes:

[3.2.5-14]
- Use systemd-tmpfiles for /var/spool/at directories
- Resolves: RHEL-110320

ELBA-2025-21004 Oracle Linux 10 NetworkManager-libreswan bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21004

http://linux.oracle.com/errata/ELBA-2025-21004.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
NetworkManager-libreswan-1.2.27-2.el10_1.x86_64.rpm
NetworkManager-libreswan-gnome-1.2.27-2.el10_1.x86_64.rpm

aarch64:
NetworkManager-libreswan-1.2.27-2.el10_1.aarch64.rpm
NetworkManager-libreswan-gnome-1.2.27-2.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/NetworkManager-libreswan-1.2.27-2.el10_1.src.rpm

Description of changes:

[1.2.27-2]
- Fix potentional crash in malformed imports

ELBA-2025-21007 Oracle Linux 10 cups bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21007

http://linux.oracle.com/errata/ELBA-2025-21007.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
cups-2.4.10-12.el10_1.x86_64.rpm
cups-client-2.4.10-12.el10_1.x86_64.rpm
cups-devel-2.4.10-12.el10_1.x86_64.rpm
cups-filesystem-2.4.10-12.el10_1.noarch.rpm
cups-ipptool-2.4.10-12.el10_1.x86_64.rpm
cups-libs-2.4.10-12.el10_1.x86_64.rpm
cups-lpd-2.4.10-12.el10_1.x86_64.rpm
cups-printerapp-2.4.10-12.el10_1.x86_64.rpm

aarch64:
cups-2.4.10-12.el10_1.aarch64.rpm
cups-client-2.4.10-12.el10_1.aarch64.rpm
cups-devel-2.4.10-12.el10_1.aarch64.rpm
cups-filesystem-2.4.10-12.el10_1.noarch.rpm
cups-ipptool-2.4.10-12.el10_1.aarch64.rpm
cups-libs-2.4.10-12.el10_1.aarch64.rpm
cups-lpd-2.4.10-12.el10_1.aarch64.rpm
cups-printerapp-2.4.10-12.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/cups-2.4.10-12.el10_1.src.rpm

Description of changes:

[1:2.4.10-12]
- RHEL-112419 CVE-2025-58060 cups: Authentication Bypass in CUPS Authorization Handling
- RHEL-113073 CVE-2025-58364 cups: Null Pointer Dereference in CUPS ipp_read_io() Leading to Remote DoS

ELBA-2025-20987 Oracle Linux 10 ostree bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20987

http://linux.oracle.com/errata/ELBA-2025-20987.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
ostree-2025.6-1.el10_1.x86_64.rpm
ostree-devel-2025.6-1.el10_1.x86_64.rpm
ostree-grub2-2025.6-1.el10_1.x86_64.rpm
ostree-libs-2025.6-1.el10_1.x86_64.rpm

aarch64:
ostree-2025.6-1.el10_1.aarch64.rpm
ostree-devel-2025.6-1.el10_1.aarch64.rpm
ostree-grub2-2025.6-1.el10_1.aarch64.rpm
ostree-libs-2025.6-1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/ostree-2025.6-1.el10_1.src.rpm

Description of changes:

[2025.6-1]
- Rebase to 2025.6

ELBA-2025-21008 Oracle Linux 10 glib2 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21008

http://linux.oracle.com/errata/ELBA-2025-21008.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
glib2-2.80.4-10.el10_1.x86_64.rpm
glib2-devel-2.80.4-10.el10_1.x86_64.rpm
glib2-doc-2.80.4-10.el10_1.x86_64.rpm
glib2-static-2.80.4-10.el10_1.x86_64.rpm
glib2-tests-2.80.4-10.el10_1.x86_64.rpm

aarch64:
glib2-2.80.4-10.el10_1.aarch64.rpm
glib2-devel-2.80.4-10.el10_1.aarch64.rpm
glib2-doc-2.80.4-10.el10_1.aarch64.rpm
glib2-static-2.80.4-10.el10_1.aarch64.rpm
glib2-tests-2.80.4-10.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/glib2-2.80.4-10.el10_1.src.rpm

Description of changes:

[2.80.4-10]
- Backport patch to prevent sending a serial of zero on overflow

[2.80.4-9]
- Sync the content of main.fmf from rhel9 to rhel10

[2.80.4-8]
- Add patches for CVE-2024-52533 and CVE-2025-4373

[2.80.4-7]
- Add new systemtap-sdt-dtrace to build deps

[2.80.4-6]
- Add patch to fix test failure with newer tzdata

[2.80.4-5]
- metadata preparation for RHIVOS RHELMISC-7537

ELBA-2025-20992 Oracle Linux 10 containers-common bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20992

http://linux.oracle.com/errata/ELBA-2025-20992.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
containers-common-0.64.0-5.0.1.el10_1.noarch.rpm
containers-common-extra-0.64.0-5.0.1.el10_1.noarch.rpm

aarch64:
containers-common-0.64.0-5.0.1.el10_1.noarch.rpm
containers-common-extra-0.64.0-5.0.1.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/containers-common-0.64.0-5.0.1.el10_1.src.rpm

Description of changes:

[5:0.64.0-5.0.1]
- Update additional upstream references [Orabug: 37843297]
- Updated removed references [Orabug: 33473101] (Alex Burmashev)
- Adjust registries.conf (Nikita Gerasimov)
- remove references to RedHat registry (Nikita Gerasimov)

[5:0.64.0-5]
- Update rhel-shortnames-overrides to include complete list of UBI/RHEL images
- Resolves: RHEL-116621

ELBA-2025-20993 Important: Oracle Linux 10 .NET 10.0 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20993

http://linux.oracle.com/errata/ELBA-2025-20993.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
aspnetcore-runtime-dbg-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
aspnetcore-targeting-pack-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-apphost-pack-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-host-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-hostfxr-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-runtime-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-runtime-dbg-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-sdk-10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-sdk-10.0-source-built-artifacts-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-sdk-aot-10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-sdk-dbg-10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-targeting-pack-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm
dotnet-templates-10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.x86_64.rpm

aarch64:
aspnetcore-runtime-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
aspnetcore-runtime-dbg-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
aspnetcore-targeting-pack-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-apphost-pack-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-host-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-hostfxr-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-runtime-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-runtime-dbg-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-sdk-10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-sdk-10.0-source-built-artifacts-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-sdk-aot-10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-sdk-dbg-10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-targeting-pack-10.0-10.0.0~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm
dotnet-templates-10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet10.0-10.0.100~rc.2.25502.107-0.12.0.1.el10_1.src.rpm

Related CVEs:

CVE-2025-55247
CVE-2025-55315

Description of changes:

[10.0.100~rc.2.25502.107-0.12.0.1]
- Add support for Oracle Linux

[10.0.100~rc.2.25502.107-0.12]
- Update to .NET SDK 10.0.100-rc.2.25502.107 and Runtime 10.0.0-rc.2.25502.107
- Resolves: RHEL-121558

[10.0.100~rc.1.25451.107-0.11]
- Disable bootstrap
- Related: RHEL-114571

[10.0.100~rc.1.25451.107-0.10]
- Update to .NET 10 RC 1
- Resolves: RHEL-114571

ELBA-2025-20989 Oracle Linux 10 .NET 8.0 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20989

http://linux.oracle.com/errata/ELBA-2025-20989.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-8.0-8.0.21-2.0.1.el10_1.x86_64.rpm
aspnetcore-runtime-dbg-8.0-8.0.21-2.0.1.el10_1.x86_64.rpm
aspnetcore-targeting-pack-8.0-8.0.21-2.0.1.el10_1.x86_64.rpm
dotnet-apphost-pack-8.0-8.0.21-2.0.1.el10_1.x86_64.rpm
dotnet-hostfxr-8.0-8.0.21-2.0.1.el10_1.x86_64.rpm
dotnet-runtime-8.0-8.0.21-2.0.1.el10_1.x86_64.rpm
dotnet-runtime-dbg-8.0-8.0.21-2.0.1.el10_1.x86_64.rpm
dotnet-sdk-8.0-8.0.121-2.0.1.el10_1.x86_64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.121-2.0.1.el10_1.x86_64.rpm
dotnet-sdk-dbg-8.0-8.0.121-2.0.1.el10_1.x86_64.rpm
dotnet-targeting-pack-8.0-8.0.21-2.0.1.el10_1.x86_64.rpm
dotnet-templates-8.0-8.0.121-2.0.1.el10_1.x86_64.rpm

aarch64:
aspnetcore-runtime-8.0-8.0.21-2.0.1.el10_1.aarch64.rpm
aspnetcore-runtime-dbg-8.0-8.0.21-2.0.1.el10_1.aarch64.rpm
aspnetcore-targeting-pack-8.0-8.0.21-2.0.1.el10_1.aarch64.rpm
dotnet-apphost-pack-8.0-8.0.21-2.0.1.el10_1.aarch64.rpm
dotnet-hostfxr-8.0-8.0.21-2.0.1.el10_1.aarch64.rpm
dotnet-runtime-8.0-8.0.21-2.0.1.el10_1.aarch64.rpm
dotnet-runtime-dbg-8.0-8.0.21-2.0.1.el10_1.aarch64.rpm
dotnet-sdk-8.0-8.0.121-2.0.1.el10_1.aarch64.rpm
dotnet-sdk-8.0-source-built-artifacts-8.0.121-2.0.1.el10_1.aarch64.rpm
dotnet-sdk-dbg-8.0-8.0.121-2.0.1.el10_1.aarch64.rpm
dotnet-targeting-pack-8.0-8.0.21-2.0.1.el10_1.aarch64.rpm
dotnet-templates-8.0-8.0.121-2.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/dotnet8.0-8.0.121-2.0.1.el10_1.src.rpm

Description of changes:

[8.0.121-2.0.1]
- Add support for Oracle Linux

[8.0.121-2]
- Update to .NET SDK 8.0.121 and Runtime 8.0.21
- Resolves: RHEL-116869

[8.0.120-2]
- Update to .NET SDK 8.0.120 and Runtime 8.0.20
- Resolves: RHEL-112262

[8.0.119-2]
- Update to .NET SDK 8.0.119 and Runtime 8.0.19
- Resolves: RHEL-106721

[8.0.118-2]
- Update to .NET SDK 8.0.118 and Runtime 8.0.18
- Resolves: RHEL-100594

[8.0.117-2]
- Update to .NET SDK 8.0.117 and Runtime 8.0.17
- Resolves: RHEL-94416

[8.0.116-2]
- Update to .NET SDK 8.0.116 and Runtime 8.0.16
- Resolves: RHEL-89447

[8.0.115-2]
- Update to .NET SDK 8.0.115 and Runtime 8.0.15
- Resolves: RHEL-85275

[8.0.114-2]
- Update to .NET SDK 8.0.114 and Runtime 8.0.14
- Resolves: RHEL-81643

[8.0.113-2]
- Update to .NET SDK 8.0.113 and Runtime 8.0.13
- Resolves: RHEL-76900

ELBA-2025-20981 Oracle Linux 10 keylime bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20981

http://linux.oracle.com/errata/ELBA-2025-20981.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
keylime-7.12.1-11.el10_1.2.x86_64.rpm
keylime-base-7.12.1-11.el10_1.2.x86_64.rpm
keylime-registrar-7.12.1-11.el10_1.2.x86_64.rpm
keylime-selinux-7.12.1-11.el10_1.2.noarch.rpm
keylime-tenant-7.12.1-11.el10_1.2.x86_64.rpm
keylime-tools-7.12.1-11.el10_1.2.x86_64.rpm
keylime-verifier-7.12.1-11.el10_1.2.x86_64.rpm
python3-keylime-7.12.1-11.el10_1.2.x86_64.rpm

aarch64:
keylime-7.12.1-11.el10_1.2.aarch64.rpm
keylime-base-7.12.1-11.el10_1.2.aarch64.rpm
keylime-registrar-7.12.1-11.el10_1.2.aarch64.rpm
keylime-selinux-7.12.1-11.el10_1.2.noarch.rpm
keylime-tenant-7.12.1-11.el10_1.2.aarch64.rpm
keylime-tools-7.12.1-11.el10_1.2.aarch64.rpm
keylime-verifier-7.12.1-11.el10_1.2.aarch64.rpm
python3-keylime-7.12.1-11.el10_1.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/keylime-7.12.1-11.el10_1.2.src.rpm

Description of changes:

[7.12.1-14]
- Properly fix malformed TPM certificates workaround

[7.12.1-13]
- Avoid opening /dev/stdout when printing

[7.12.1-12]
- Fix malformed TPM certificates workaround

ELBA-2025-21001 Oracle Linux 10 nodejs-packaging bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21001

http://linux.oracle.com/errata/ELBA-2025-21001.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-packaging-2023.10-11.el10_1.noarch.rpm

aarch64:
nodejs-packaging-2023.10-11.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/nodejs-packaging-2023.10-11.el10_1.src.rpm

Description of changes:

[2023.10-11]
- Add test case for symlinked dependencies bug fix
- added test/symlinked scenario
- verifies nodejs.req correctly generates requirements for symlinked deps
- added mock 'external' packages to support this test

[2023.10-10]
- Correctly determine if a package has bundled dependencies

ELBA-2025-20990 Oracle Linux 10 nmstate bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20990

http://linux.oracle.com/errata/ELBA-2025-20990.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
nmstate-2.2.54-1.el10_1.x86_64.rpm
nmstate-devel-2.2.54-1.el10_1.x86_64.rpm
nmstate-libs-2.2.54-1.el10_1.x86_64.rpm
nmstate-static-2.2.54-1.el10_1.x86_64.rpm
python3-libnmstate-2.2.54-1.el10_1.x86_64.rpm

aarch64:
nmstate-2.2.54-1.el10_1.aarch64.rpm
nmstate-devel-2.2.54-1.el10_1.aarch64.rpm
nmstate-libs-2.2.54-1.el10_1.aarch64.rpm
nmstate-static-2.2.54-1.el10_1.aarch64.rpm
python3-libnmstate-2.2.54-1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/nmstate-2.2.54-1.el10_1.src.rpm

Description of changes:

[2.2.54-1]
- Upgrade to 2.2.54.
- Fix OVSDB query failure on database bigger than 20KiB. RHEL-121994

ELBA-2025-21005 Oracle Linux 10 passt bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21005

http://linux.oracle.com/errata/ELBA-2025-21005.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
passt-0^20250512.g8ec1341-4.el10_1.x86_64.rpm
passt-selinux-0^20250512.g8ec1341-4.el10_1.noarch.rpm

aarch64:
passt-0^20250512.g8ec1341-4.el10_1.aarch64.rpm
passt-selinux-0^20250512.g8ec1341-4.el10_1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/passt-0^20250512.g8ec1341-4.el10_1.src.rpm

Description of changes:

[0^20250512.g8ec1341-4]
- Resolves: RHEL-123415 RHEL-123424

[0^20250512.g8ec1341-2]
- Resolves: RHEL-106425

[0^20250512.g8ec1341-1]
- Resolves: RHEL-84285

[0^20250320.g32f6212-1]
- Resolves: RHEL-84285

[0^20250217.ga1e48a0-1]
- Resolves: RHEL-79788

[0^20250121.g4f2c8e7-3]
- Resolves: RHEL-75657

[0^20250121.g4f2c8e7-1]
- Resolves: RHEL-75657

[0^20241121.g238c69f-1]
- Resolves: RHEL-67556

[0^20240806.gee36266-3]
- Bump release for October 2024 mass rebuild:
Resolves: RHEL-64018

[0^20240806-gee36266-2]
- Resolves: RHEL-54269

ELBA-2025-21003 Oracle Linux 10 mesa bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-21003

http://linux.oracle.com/errata/ELBA-2025-21003.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
mesa-dri-drivers-25.0.7-6.el10_1.x86_64.rpm
mesa-filesystem-25.0.7-6.el10_1.x86_64.rpm
mesa-libEGL-25.0.7-6.el10_1.x86_64.rpm
mesa-libEGL-devel-25.0.7-6.el10_1.x86_64.rpm
mesa-libGL-25.0.7-6.el10_1.x86_64.rpm
mesa-libGL-devel-25.0.7-6.el10_1.x86_64.rpm
mesa-libOSMesa-25.0.7-6.el10_1.x86_64.rpm
mesa-libOSMesa-devel-25.0.7-6.el10_1.x86_64.rpm
mesa-libgbm-25.0.7-6.el10_1.x86_64.rpm
mesa-libgbm-devel-25.0.7-6.el10_1.x86_64.rpm
mesa-libxatracker-25.0.7-6.el10_1.x86_64.rpm
mesa-vulkan-drivers-25.0.7-6.el10_1.x86_64.rpm

aarch64:
mesa-dri-drivers-25.0.7-6.el10_1.aarch64.rpm
mesa-filesystem-25.0.7-6.el10_1.aarch64.rpm
mesa-libEGL-25.0.7-6.el10_1.aarch64.rpm
mesa-libEGL-devel-25.0.7-6.el10_1.aarch64.rpm
mesa-libGL-25.0.7-6.el10_1.aarch64.rpm
mesa-libGL-devel-25.0.7-6.el10_1.aarch64.rpm
mesa-libOSMesa-25.0.7-6.el10_1.aarch64.rpm
mesa-libOSMesa-devel-25.0.7-6.el10_1.aarch64.rpm
mesa-libgbm-25.0.7-6.el10_1.aarch64.rpm
mesa-libgbm-devel-25.0.7-6.el10_1.aarch64.rpm
mesa-vulkan-drivers-25.0.7-6.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/mesa-25.0.7-6.el10_1.src.rpm

Description of changes:

[25.0.7-6]
- Rebuild for mesa-25.0.7-6.el10_1

[25.0.7-5]
- Rebuild for mesa-25.0.7-5.el10_1

[25.0.7-4]
- fix llvmpipe constant loads on s390x

ELBA-2025-20986 Oracle Linux 10 rpm-ostree bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20986

http://linux.oracle.com/errata/ELBA-2025-20986.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
rpm-ostree-2025.11-1.el10_1.x86_64.rpm
rpm-ostree-libs-2025.11-1.el10_1.x86_64.rpm

aarch64:
rpm-ostree-2025.11-1.el10_1.aarch64.rpm
rpm-ostree-libs-2025.11-1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/rpm-ostree-2025.11-1.el10_1.src.rpm

Description of changes:

[2025.11-1]
- Rebase to 2025.11

ELBA-2025-20985 Oracle Linux 10 bootc bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20985

http://linux.oracle.com/errata/ELBA-2025-20985.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
bootc-1.8.0-2.el10_1.x86_64.rpm
system-reinstall-bootc-1.8.0-2.el10_1.x86_64.rpm

aarch64:
bootc-1.8.0-2.el10_1.aarch64.rpm
system-reinstall-bootc-1.8.0-2.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/bootc-1.8.0-2.el10_1.src.rpm

Description of changes:

[1.8.0-2]
- Rev bump as rhpkg needed an update to tag into 10.1.z

ELBA-2025-20982 Oracle Linux 10 gnome-initial-setup bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20982

http://linux.oracle.com/errata/ELBA-2025-20982.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
gnome-initial-setup-46.7-2.0.1.el10_1.x86_64.rpm

aarch64:
gnome-initial-setup-46.7-2.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/gnome-initial-setup-46.7-2.0.1.el10_1.src.rpm

Description of changes:

[46.7-2.0.1]
- Revert to generic artwork [Orabug: 38682215]

[46.7-2]
- Use systemd sysusers config to create user and group

ELBA-2025-20510-0 Oracle Linux 10 criu bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-20510-0

http://linux.oracle.com/errata/ELBA-2025-20510-0.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
crit-4.1-1.el10.x86_64.rpm
criu-4.1-1.el10.x86_64.rpm
criu-devel-4.1-1.el10.x86_64.rpm
criu-libs-4.1-1.el10.x86_64.rpm
python3-criu-4.1-1.el10.x86_64.rpm

aarch64:
crit-4.1-1.el10.aarch64.rpm
criu-4.1-1.el10.aarch64.rpm
criu-devel-4.1-1.el10.aarch64.rpm
criu-libs-4.1-1.el10.aarch64.rpm
python3-criu-4.1-1.el10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/criu-4.1-1.el10.src.rpm

Description of changes:

[4.1-1]
- Update to 4.1

ELBA-2025-28031 Oracle Linux 10 rust-rpm-sequoia bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-28031

http://linux.oracle.com/errata/ELBA-2025-28031.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
rpm-sequoia-1.9.0.3-1.0.1.el10_1.x86_64.rpm

aarch64:
rpm-sequoia-1.9.0.3-1.0.1.el10_1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/rust-rpm-sequoia-1.9.0.3-1.0.1.el10_1.src.rpm

Description of changes:

[1.9.0.3-1.0.1]
- Hard require needed openssl-libs [Orabug: 38716915]

ELBA-2025-28030 Oracle Linux 10 pcp bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-28030

http://linux.oracle.com/errata/ELBA-2025-28030.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
pcp-conf-6.3.7-5.0.3.el10.x86_64.rpm
pcp-devel-6.3.7-5.0.3.el10.x86_64.rpm
pcp-doc-6.3.7-5.0.3.el10.noarch.rpm
pcp-export-pcp2elasticsearch-6.3.7-5.0.3.el10.x86_64.rpm
pcp-export-pcp2graphite-6.3.7-5.0.3.el10.x86_64.rpm
pcp-export-pcp2influxdb-6.3.7-5.0.3.el10.x86_64.rpm
pcp-export-pcp2json-6.3.7-5.0.3.el10.x86_64.rpm
pcp-export-pcp2openmetrics-6.3.7-5.0.3.el10.x86_64.rpm
pcp-export-pcp2spark-6.3.7-5.0.3.el10.x86_64.rpm
pcp-export-pcp2xml-6.3.7-5.0.3.el10.x86_64.rpm
pcp-export-pcp2zabbix-6.3.7-5.0.3.el10.x86_64.rpm
pcp-export-zabbix-agent-6.3.7-5.0.3.el10.x86_64.rpm
pcp-geolocate-6.3.7-5.0.3.el10.x86_64.rpm
pcp-gui-6.3.7-5.0.3.el10.x86_64.rpm
pcp-import-collectl2pcp-6.3.7-5.0.3.el10.x86_64.rpm
pcp-import-ganglia2pcp-6.3.7-5.0.3.el10.x86_64.rpm
pcp-import-iostat2pcp-6.3.7-5.0.3.el10.x86_64.rpm
pcp-import-mrtg2pcp-6.3.7-5.0.3.el10.x86_64.rpm
pcp-import-sar2pcp-6.3.7-5.0.3.el10.x86_64.rpm
pcp-libs-devel-6.3.7-5.0.3.el10.x86_64.rpm
pcp-libs-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-activemq-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-amdgpu-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-apache-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-bash-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-bcc-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-bind2-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-bonding-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-bpftrace-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-bpf-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-cifs-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-cisco-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-dbping-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-denki-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-dm-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-docker-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-ds389log-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-ds389-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-elasticsearch-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-farm-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-gluster-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-gpfs-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-gpsd-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-hacluster-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-haproxy-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-infiniband-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-json-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-libvirt-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-lio-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-lmsensors-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-logger-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-lustrecomm-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-lustre-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-mailq-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-memcache-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-mic-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-mongodb-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-mounts-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-mssql-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-mysql-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-named-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-netcheck-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-netfilter-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-news-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-nfsclient-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-nginx-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-nvidia-gpu-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-openmetrics-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-openvswitch-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-oracle-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-pdns-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-perfevent-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-podman-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-postfix-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-postgresql-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-rabbitmq-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-redis-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-rocestat-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-resctrl-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-roomtemp-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-rsyslog-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-samba-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-sendmail-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-shping-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-slurm-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-smart-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-snmp-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-sockets-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-statsd-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-summary-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-systemd-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-trace-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-unbound-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-uwsgi-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-weblog-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-zimbra-6.3.7-5.0.3.el10.x86_64.rpm
pcp-pmda-zswap-6.3.7-5.0.3.el10.x86_64.rpm
pcp-selinux-6.3.7-5.0.3.el10.x86_64.rpm
pcp-system-tools-6.3.7-5.0.3.el10.x86_64.rpm
pcp-testsuite-6.3.7-5.0.3.el10.x86_64.rpm
pcp-6.3.7-5.0.3.el10.x86_64.rpm
pcp-zeroconf-6.3.7-5.0.3.el10.x86_64.rpm
perl-PCP-LogImport-6.3.7-5.0.3.el10.x86_64.rpm
perl-PCP-LogSummary-6.3.7-5.0.3.el10.x86_64.rpm
perl-PCP-MMV-6.3.7-5.0.3.el10.x86_64.rpm
perl-PCP-PMDA-6.3.7-5.0.3.el10.x86_64.rpm
python3-pcp-6.3.7-5.0.3.el10.x86_64.rpm

aarch64:
pcp-conf-6.3.7-5.0.3.el10.aarch64.rpm
pcp-devel-6.3.7-5.0.3.el10.aarch64.rpm
pcp-doc-6.3.7-5.0.3.el10.noarch.rpm
pcp-export-pcp2elasticsearch-6.3.7-5.0.3.el10.aarch64.rpm
pcp-export-pcp2graphite-6.3.7-5.0.3.el10.aarch64.rpm
pcp-export-pcp2influxdb-6.3.7-5.0.3.el10.aarch64.rpm
pcp-export-pcp2json-6.3.7-5.0.3.el10.aarch64.rpm
pcp-export-pcp2openmetrics-6.3.7-5.0.3.el10.aarch64.rpm
pcp-export-pcp2spark-6.3.7-5.0.3.el10.aarch64.rpm
pcp-export-pcp2xml-6.3.7-5.0.3.el10.aarch64.rpm
pcp-export-pcp2zabbix-6.3.7-5.0.3.el10.aarch64.rpm
pcp-export-zabbix-agent-6.3.7-5.0.3.el10.aarch64.rpm
pcp-geolocate-6.3.7-5.0.3.el10.aarch64.rpm
pcp-gui-6.3.7-5.0.3.el10.aarch64.rpm
pcp-import-collectl2pcp-6.3.7-5.0.3.el10.aarch64.rpm
pcp-import-ganglia2pcp-6.3.7-5.0.3.el10.aarch64.rpm
pcp-import-iostat2pcp-6.3.7-5.0.3.el10.aarch64.rpm
pcp-import-mrtg2pcp-6.3.7-5.0.3.el10.aarch64.rpm
pcp-import-sar2pcp-6.3.7-5.0.3.el10.aarch64.rpm
pcp-libs-devel-6.3.7-5.0.3.el10.aarch64.rpm
pcp-libs-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-activemq-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-amdgpu-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-apache-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-bash-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-bcc-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-bind2-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-bonding-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-bpftrace-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-bpf-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-cifs-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-cisco-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-dbping-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-denki-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-dm-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-docker-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-ds389log-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-ds389-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-elasticsearch-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-farm-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-gluster-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-gpfs-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-gpsd-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-hacluster-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-haproxy-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-infiniband-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-json-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-libvirt-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-lio-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-lmsensors-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-logger-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-lustrecomm-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-lustre-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-mailq-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-memcache-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-mic-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-mongodb-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-mounts-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-mysql-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-named-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-netcheck-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-netfilter-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-news-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-nfsclient-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-nginx-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-nvidia-gpu-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-openmetrics-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-openvswitch-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-oracle-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-pdns-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-perfevent-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-podman-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-postfix-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-postgresql-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-rabbitmq-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-redis-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-rocestat-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-roomtemp-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-rsyslog-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-samba-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-sendmail-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-shping-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-slurm-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-smart-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-snmp-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-sockets-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-statsd-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-summary-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-systemd-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-trace-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-unbound-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-uwsgi-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-weblog-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-zimbra-6.3.7-5.0.3.el10.aarch64.rpm
pcp-pmda-zswap-6.3.7-5.0.3.el10.aarch64.rpm
pcp-selinux-6.3.7-5.0.3.el10.aarch64.rpm
pcp-system-tools-6.3.7-5.0.3.el10.aarch64.rpm
pcp-testsuite-6.3.7-5.0.3.el10.aarch64.rpm
pcp-6.3.7-5.0.3.el10.aarch64.rpm
pcp-zeroconf-6.3.7-5.0.3.el10.aarch64.rpm
perl-PCP-LogImport-6.3.7-5.0.3.el10.aarch64.rpm
perl-PCP-LogSummary-6.3.7-5.0.3.el10.aarch64.rpm
perl-PCP-MMV-6.3.7-5.0.3.el10.aarch64.rpm
perl-PCP-PMDA-6.3.7-5.0.3.el10.aarch64.rpm
python3-pcp-6.3.7-5.0.3.el10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/pcp-6.3.7-5.0.3.el10.src.rpm

Description of changes:

[6.3.7-5.0.3]
- pmlogger_daily default xz compression changed to level 3 [Orabug: 38674834]

ELSA-2025-22417 Important: Oracle Linux 8 gimp:2.8 security update

Oracle Linux Security Advisory ELSA-2025-22417

http://linux.oracle.com/errata/ELSA-2025-22417.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gimp-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.x86_64.rpm
gimp-devel-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.x86_64.rpm
gimp-devel-tools-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.x86_64.rpm
gimp-libs-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.x86_64.rpm
pygobject2-2.28.7-5.module+el8.10.0+90497+ae78887f.x86_64.rpm
pygobject2-codegen-2.28.7-5.module+el8.10.0+90497+ae78887f.x86_64.rpm
pygobject2-devel-2.28.7-5.module+el8.10.0+90497+ae78887f.x86_64.rpm
pygobject2-doc-2.28.7-5.module+el8.10.0+90497+ae78887f.x86_64.rpm
pygtk2-2.24.0-25.module+el8.9.0+90151+46a7e4b5.x86_64.rpm
pygtk2-codegen-2.24.0-25.module+el8.9.0+90151+46a7e4b5.x86_64.rpm
pygtk2-devel-2.24.0-25.module+el8.9.0+90151+46a7e4b5.x86_64.rpm
pygtk2-doc-2.24.0-25.module+el8.9.0+90151+46a7e4b5.noarch.rpm
python2-cairo-1.16.3-7.module+el8.10.0+90497+ae78887f.x86_64.rpm
python2-cairo-devel-1.16.3-7.module+el8.10.0+90497+ae78887f.x86_64.rpm

aarch64:
gimp-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.aarch64.rpm
gimp-devel-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.aarch64.rpm
gimp-devel-tools-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.aarch64.rpm
gimp-libs-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.aarch64.rpm
pygobject2-2.28.7-5.module+el8.10.0+90497+ae78887f.aarch64.rpm
pygobject2-codegen-2.28.7-5.module+el8.10.0+90497+ae78887f.aarch64.rpm
pygobject2-devel-2.28.7-5.module+el8.10.0+90497+ae78887f.aarch64.rpm
pygobject2-doc-2.28.7-5.module+el8.10.0+90497+ae78887f.aarch64.rpm
pygtk2-2.24.0-25.module+el8.9.0+90151+46a7e4b5.aarch64.rpm
pygtk2-codegen-2.24.0-25.module+el8.9.0+90151+46a7e4b5.aarch64.rpm
pygtk2-devel-2.24.0-25.module+el8.9.0+90151+46a7e4b5.aarch64.rpm
pygtk2-doc-2.24.0-25.module+el8.9.0+90151+46a7e4b5.noarch.rpm
python2-cairo-1.16.3-7.module+el8.10.0+90497+ae78887f.aarch64.rpm
python2-cairo-devel-1.16.3-7.module+el8.10.0+90497+ae78887f.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/gimp-2.8.22-26.module+el8.10.0+90712+2a2d9b57.3.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/pygobject2-2.28.7-5.module+el8.10.0+90497+ae78887f.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/pygtk2-2.24.0-25.module+el8.9.0+90151+46a7e4b5.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/python2-pycairo-1.16.3-7.module+el8.10.0+90497+ae78887f.src.rpm

Related CVEs:

CVE-2025-10920
CVE-2025-10921
CVE-2025-10922
CVE-2025-10923
CVE-2025-10924
CVE-2025-10925
CVE-2025-10934

Description of changes:

python2-pycairo
[1.16.3-7]
- bump spec for NVR fix

[1.16.3-6]
- Rename pycairo to python2-pycairo (RCM-39388)

[1.16.3-5]
- Add python3 packages (RCM-39388)
- remove python3-test due its missing in build root

[1.16.3-4]
- Setup python2 stream branch for python2 binding of cairo library

[1.16.3-3]
- Remove the python2 subpackages
https://bugzilla.redhat.com/show_bug.cgi?id=1590820

[1.16.3-2]
- Allow Python 2 for build
See: https://hurl.corp.redhat.com/rhel8-py2

- Skip tests on Python 2 (python2-pytest is being removed)

[1.16.3-1]
- Update to 1.16.3

[1.16.1-1]
- Update to 1.16.1

[1.16.0-1]
- Update to 1.16.0

[1.15.6-1]
- Update to 1.15.6

ELSA-2025-22660 Moderate: Oracle Linux 9 systemd security update

Oracle Linux Security Advisory ELSA-2025-22660

http://linux.oracle.com/errata/ELSA-2025-22660.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
rhel-net-naming-sysattrs-252-55.0.3.el9_7.7.noarch.rpm
systemd-252-55.0.3.el9_7.7.i686.rpm
systemd-252-55.0.3.el9_7.7.x86_64.rpm
systemd-boot-unsigned-252-55.0.3.el9_7.7.x86_64.rpm
systemd-container-252-55.0.3.el9_7.7.i686.rpm
systemd-container-252-55.0.3.el9_7.7.x86_64.rpm
systemd-devel-252-55.0.3.el9_7.7.i686.rpm
systemd-devel-252-55.0.3.el9_7.7.x86_64.rpm
systemd-journal-remote-252-55.0.3.el9_7.7.x86_64.rpm
systemd-libs-252-55.0.3.el9_7.7.i686.rpm
systemd-libs-252-55.0.3.el9_7.7.x86_64.rpm
systemd-oomd-252-55.0.3.el9_7.7.x86_64.rpm
systemd-pam-252-55.0.3.el9_7.7.x86_64.rpm
systemd-resolved-252-55.0.3.el9_7.7.x86_64.rpm
systemd-rpm-macros-252-55.0.3.el9_7.7.noarch.rpm
systemd-udev-252-55.0.3.el9_7.7.x86_64.rpm
systemd-ukify-252-55.0.3.el9_7.7.noarch.rpm

aarch64:
rhel-net-naming-sysattrs-252-55.0.3.el9_7.7.noarch.rpm
systemd-252-55.0.3.el9_7.7.aarch64.rpm
systemd-boot-unsigned-252-55.0.3.el9_7.7.aarch64.rpm
systemd-container-252-55.0.3.el9_7.7.aarch64.rpm
systemd-devel-252-55.0.3.el9_7.7.aarch64.rpm
systemd-journal-remote-252-55.0.3.el9_7.7.aarch64.rpm
systemd-libs-252-55.0.3.el9_7.7.aarch64.rpm
systemd-oomd-252-55.0.3.el9_7.7.aarch64.rpm
systemd-pam-252-55.0.3.el9_7.7.aarch64.rpm
systemd-resolved-252-55.0.3.el9_7.7.aarch64.rpm
systemd-rpm-macros-252-55.0.3.el9_7.7.noarch.rpm
systemd-udev-252-55.0.3.el9_7.7.aarch64.rpm
systemd-ukify-252-55.0.3.el9_7.7.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/systemd-252-55.0.3.el9_7.7.src.rpm

Related CVEs:

CVE-2025-4598

Description of changes:

[252-55.0.3.7]
- serialize: don't allocate 1M on the stack just like that [LINUX-16166]
- Route logs from container mapped uids to the system journal [Orabug: 38135007]
- Drop delay when nspawn fails to reset loginuid [Orabug: 37793135]
- Improve logging for api bus connection and subscribers [Orabug: 38040980]
- Defer processing of timeout events in sd-bus api [Orabug: 38064217]
- coredump: use %d in kernel core pattern - CVE-2025-4598
- Add bus description to sd-bus outgoing sockets [Orabug: 37347576]
- Add log messages about daemon-reload requester and duration [Orabug: 37347576]
- Reverted back to previous Tony Lam patch [Orabug: 25897792] until issue with [Orabug: 36564551] is resolved.
- drop IN_ATTRIB from parent directory inotify watches [Orabug: 37118224]
- 1A) Fix local-fs and remote-fs targets during system boot (replaces old Orabug: 25897792) [Orabug: 36269319]
- 1B) Add "systemd-fstab-generator-reload-targets.service" file [Orabug: 36269319]
- 1C) Add required rpms for correct kickstart/systemd functionality within systemd.spec [Orabug: 36269319]
- 1D) Important: Review 1001-systemd-fstab-generator-reload-targets.patch for important build details/steps [Orabug: 36269319]
- Due to a new [Orabug: 36564551] filed on April 29 2024, reverting from back to
- previous Tony Lam patch [Orabug: 25897792] until issue with [Orabug: 36564551] is resolved.
- drop IN_ATTRIB from parent directory inotify watches [Orabug: 37118224]
- Reverted back to previous Tony Lam patch [Orabug: 25897792] until issue with [Orabug: 36564551] is resolved.
- Re-Added 1001-Fix-missing-netdev-for-iscsi-entry-in-fstab.patch [Orabug: 25897792]
- Backport upstream pstore dmesg fix [Orabug: 34868110]
- Remove upstream references [Orabug: 33995357]
- Disable unprivileged BPF by default [Orabug: 32870980]
- udev rules: fix memory hot add and remove [Orabug: 31310273]
- set "RemoveIPC=no" in logind.conf as default for OL7.2 [Orabug: 22224874]
- allow dm remove ioctl to co-operate with UEK3 [Orabug: 18467469]
- shutdown: get only active md arrays. [Orabug: 34467234]
- Wait for an extra configurable time before udevd kills a worker [Orabug: 36017407]
- Removed unneeded patches from the systemd.spec
- 1A) 1004-orabug34272490-0001-core-device-ignore-DEVICE_FOUND_UDEV-bit-on-switchin.patch [Orabug: 34272490]
- 1B) 1005-orabug34272490-0002-core-device-drop-unnecessary-condition.patch [Orabug: 34272490]
- 1C) 1007-orabug34868110-pstore-fixes-for-dmesg.txt-reconstruction.patch [Orabug: 34868110]
- Removed the following, associated with [Orabug: 36269319]:
- 2A) Remove 1001-systemd-fstab-generator-reload-targets.patch
- 2B) Remove Fix local-fs and remote-fs targets during system boot [Orabug: 36269319]
- 2C) Remove "systemd-fstab-generator-reload-targets.service" file [Orabug: 36269319]
- 2D) Remove required rpms for correct kickstart/systemd functionality within systemd.spec [Orabug: 36269319]
- 2E) Remove Important: Review 1001-systemd-fstab-generator-reload-targets.patch for important build details/steps [Orabug: 36269319]

[252-55.7]
- core: fix array size in unit_log_resources() (RHEL-132120)

[252-55.6]
- timer: rebase last_trigger timestamp if needed (RHEL-127022)

[252-55.5]
- test: rename TEST-53-ISSUE-16347 to TEST-53-TIMER (RHEL-127022)
- test: restarting elapsed timer shouldn't trigger the corresponding service (RHEL-127022)
- test: check the next elapse timer timestamp after deserialization (RHEL-127022)
- timer: don't run service immediately after restart of a timer (RHEL-127022)
- test: store and compare just the property value (RHEL-127022)
- timer: rebase the next elapse timestamp only if timer didn't already run (RHEL-127022)
- coredump: handle ENOBUFS and EMSGSIZE the same way (RHEL-126114)

[252-55.4]
- cryptsetup: Add optional support for linking volume key in keyring. (RHEL-118294)
- cryptsetup: fix typo (RHEL-118294)
- cryptsetup: HAVE_CRYPT_SET_KEYRING_TO_LINK is always defined (RHEL-118294)
- basic: add PIDFS magic (#31709) (RHEL-118294)
- time-util: make USEC_TIMESTAMP_FORMATTABLE_MAX for 32bit system off by one day (RHEL-118294)
- coredump: make check that all argv[] meta data fields are passed strict (RHEL-104138)
- coredump: restore compatibility with older patterns (RHEL-104138)
- coredump: use %d in kernel core pattern (RHEL-104138)
- pidref: add structure that can reference a pid via both pidfd and pid_t (RHEL-104138)
- fd-util: introduce parse_fd() (RHEL-104138)
- coredump: add support for new %F PIDFD specifier (RHEL-104138)

[252-55.2]
- Revert "test-time-util: disable failing tests" (RHEL-110954)
- test: use get_timezones() to iterate all known timezones (RHEL-110954)
- test-time-util: do not fail on DST change (RHEL-110954)
- test-time-util: suppress timestamp conversion failures for Africa/Khartoum timezone (RHEL-110954)
- test-time-util: do more suppression of time zone checks (RHEL-110954)
- test-time-util: fix truncation of usec to sec (RHEL-110954)
- test: unset TZ before timezone-sensitive unit tests are run (RHEL-110954)
- meson: extend timeout for test-time-util (RHEL-110954)
- time-util: use DEFINE_STRING_TABLE_LOOKUP_TO_STRING() macro (RHEL-110954)
- time-util: align string table (RHEL-110954)
- time-util: rename variables (RHEL-110954)
- time-util: add assertions (RHEL-110954)
- time-util: drop redundant else (RHEL-110954)
- time-util: do not use strdupa() (RHEL-110954)
- time-util: use result from startswith_no_case() (RHEL-110954)
- time-util: use usec_add() and usec_sub_unsigned() (RHEL-110954)
- time-util: shorten code a bit (RHEL-110954)
- time-util: rename variables (RHEL-110954)
- time-util: drop unnecessary assignment of timezone name (RHEL-110954)
- time-util: make parse_timestamp() use the RFC-822/ISO 8601 standard timezone spec (RHEL-110954)
- time-util: fix typo (RHEL-110954)
- ci: bump the tools tree to F42 (RHEL-110954)

[252-55.1]
- meson: /etc/systemd/network is also used by udevd (RHEL-111611)
- test: add tests for format_timestamp() and parse_timestamp() with various timezone (RHEL-110954)
- test-time-util: disable failing tests (RHEL-110954)
- test: test parse_timestamp() in various timezone (RHEL-110954)
- systemctl: logind: add missing asserts (RHEL-110954)
- systemctl: logind: make logind_schedule_shutdown accept action as param (RHEL-110954)
- systemctl: add option --when for scheduled shutdown (RHEL-110954)
- test-time-util: add test cases to invalidate "show" and "cancel" (RHEL-110954)
- sd-bus: make bus_add_match_full accept timeout (RHEL-111630)
- core/unit: add get_timeout_start_usec in UnitVTable and define it for service (RHEL-111630)
- core/unit: increase the NameOwnerChanged/GetNameOwner timeout to the unit's start timeout (RHEL-111630)
- core,sd-bus: drop empty lines between function call and error check (RHEL-111630)
- core: do not disconnect from bus when failed to install signal match (RHEL-111630)
- dbus: stash the subscriber list when we disconenct from the bus (RHEL-111630)
- manager: s/deserialized_subscribed/subscribed_as_strv (RHEL-111630)
- bus-util: do not reset the count returned by sd_bus_track_count_name() (RHEL-111630)
- core/manager: restore bus track deserialization cleanup in manager_reload() (RHEL-111630)
- core/manager: drop duplicate bus track deserialization (RHEL-111630)
- sd-bus/bus-track: use install_callback in sd_bus_track_add_name() (RHEL-111630)

ELBA-2025-28034 Oracle Linux 8 grafana bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-28034

http://linux.oracle.com/errata/ELBA-2025-28034.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
grafana-9.2.10-25.0.1.el8_10.x86_64.rpm
grafana-selinux-9.2.10-25.0.1.el8_10.x86_64.rpm

aarch64:
grafana-9.2.10-25.0.1.el8_10.aarch64.rpm
grafana-selinux-9.2.10-25.0.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/grafana-9.2.10-25.0.1.el8_10.src.rpm

Description of changes:

[9.2.10-25.0.1]
- Fixes CVE-2024-1442 Add email verification when updating user email [Orabug: 38550520]

ELBA-2025-28033 Oracle Linux 8 bpftrace bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-28033

http://linux.oracle.com/errata/ELBA-2025-28033.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftrace-0.16.0-6.0.1.el8_10.x86_64.rpm

aarch64:
bpftrace-0.16.0-6.0.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/bpftrace-0.16.0-6.0.1.el8_10.src.rpm

Description of changes:

[0.16.0-6.0.1]
- Fix perf event registration on systems with disjoint groups of online cpus [Orabug: 38539360]

Go-Toolset, GIMP, Firefox, and more updates for AlmaLinux

Git-Bug, Go, Libpng updates for SUSE

ELSA-2025-21843 Important: Oracle Linux 10 thunderbird security update

ELSA-2025-21691 Important: Oracle Linux 10 haproxy security update

ELSA-2025-21485 Moderate: Oracle Linux 10 java-25-openjdk security update

ELSA-2025-21463 Moderate: Oracle Linux 10 kernel security update

ELSA-2025-21281 Important: Oracle Linux 10 firefox security update

ELSA-2025-21248 Moderate: Oracle Linux 10 openssl security update

ELSA-2025-21220 Important: Oracle Linux 10 podman security update

ELSA-2025-21142 Important: Oracle Linux 10 python-kdcproxy security update

ELSA-2025-21037 Important: Oracle Linux 10 qt6-qtsvg security update

ELSA-2025-21035 Moderate: Oracle Linux 10 xorg-x11-server-Xwayland security update

ELSA-2025-21034 Important: Oracle Linux 10 bind security update

ELSA-2025-21032 Important: Oracle Linux 10 libsoup3 security update

ELSA-2025-21030 Important: Oracle Linux 10 expat security update

ELSA-2025-21015 Moderate: Oracle Linux 10 vim security update

ELSA-2025-21013 Moderate: Oracle Linux 10 libssh security update

ELSA-2025-21006 Important: Oracle Linux 10 kea security update

ELSA-2025-21002 Important: Oracle Linux 10 squid security update

ELSA-2025-20998 Important: Oracle Linux 10 libtiff security update

ELSA-2025-20983 Important: Oracle Linux 10 podman security update

ELBA-2025-21021 Oracle Linux 10 flatpak-runtime-config bug fix and enhancement update

ELBA-2025-21012 Oracle Linux 10 nftables bug fix and enhancement update

ELBA-2025-21309 Oracle Linux 10 .NET 9.0 bug fix and enhancement update

ELBA-2025-21306 Oracle Linux 10 .NET 8.0 bug fix and enhancement update

ELBA-2025-21033 Oracle Linux 10 ca-certificates bug fix and enhancement update

ELBA-2025-21019 Oracle Linux 10 realmd bug fix and enhancement update

ELBA-2025-20988 Oracle Linux 10 .NET 9.0 bug fix and enhancement update

ELBA-2025-21018 Oracle Linux 10 tuned bug fix and enhancement update

ELBA-2025-21000 Oracle Linux 10 aide bug fix and enhancement update

ELBA-2025-20997 Oracle Linux 10 libvirt bug fix and enhancement update

ELBA-2025-21011 Oracle Linux 10 libnftnl bug fix and enhancement update

ELBA-2025-21009 Oracle Linux 10 at bug fix and enhancement update

ELBA-2025-21004 Oracle Linux 10 NetworkManager-libreswan bug fix and enhancement update

ELBA-2025-21007 Oracle Linux 10 cups bug fix and enhancement update

ELBA-2025-20987 Oracle Linux 10 ostree bug fix and enhancement update

ELBA-2025-21008 Oracle Linux 10 glib2 bug fix and enhancement update

ELBA-2025-20992 Oracle Linux 10 containers-common bug fix and enhancement update

ELBA-2025-20993 Important: Oracle Linux 10 .NET 10.0 bug fix and enhancement update

ELBA-2025-20989 Oracle Linux 10 .NET 8.0 bug fix and enhancement update

ELBA-2025-20981 Oracle Linux 10 keylime bug fix and enhancement update

ELBA-2025-21001 Oracle Linux 10 nodejs-packaging bug fix and enhancement update

ELBA-2025-20990 Oracle Linux 10 nmstate bug fix and enhancement update

ELBA-2025-21005 Oracle Linux 10 passt bug fix and enhancement update

ELBA-2025-21003 Oracle Linux 10 mesa bug fix and enhancement update

ELBA-2025-20986 Oracle Linux 10 rpm-ostree bug fix and enhancement update

ELBA-2025-20985 Oracle Linux 10 bootc bug fix and enhancement update

ELBA-2025-20982 Oracle Linux 10 gnome-initial-setup bug fix and enhancement update

ELBA-2025-20510-0 Oracle Linux 10 criu bug fix and enhancement update

ELBA-2025-28031 Oracle Linux 10 rust-rpm-sequoia bug fix update

ELBA-2025-28030 Oracle Linux 10 pcp bug fix update

ELSA-2025-22417 Important: Oracle Linux 8 gimp:2.8 security update

ELSA-2025-22660 Moderate: Oracle Linux 9 systemd security update

ELBA-2025-28034 Oracle Linux 8 grafana bug fix update

ELBA-2025-28033 Oracle Linux 8 bpftrace bug fix update

Windows

Linux

macOS

Community