Rocky Linux 951 Published by

Rocky Linux has published a series of security advisories for versions 8, 9, and 10 that address vulnerabilities in core software packages. The updates cover widely used tools including Tomcat, Podman, LibreOffice, Node.js, and multiple GStreamer plugin collections.

RLSA-2026:37130: Important: gstreamer1-plugins-bad-free security update
RLSA-2026:37137: Important: tomcat security, bug fix, and enhancement update
RLSA-2026:36782: Moderate: aardvark-dns security update
RLSA-2026:36675: Important: gstreamer1-plugins-good security update
RLSA-2026:36790: Important: tomcat9 security, bug fix, and enhancement update
RLSA-2026:37072: Important: podman security, bug fix, and enhancement update
RLSA-2026:35841: Important: nodejs24 security, bug fix, and enhancement update
RLSA-2026:36749: Important: gstreamer1-plugins-bad-free security update
RLSA-2026:36673: Moderate: gstreamer1-plugins-ugly-free security update
RLSA-2026:36788: Important: tomcat security, bug fix, and enhancement update
RLSA-2026:37207: Important: freerdp security update
RLSA-2026:36617: Important: oci-seccomp-bpf-hook security update
RLSA-2026:37123: Important: podman security, bug fix, and enhancement update
RLSA-2026:37129: Important: gstreamer1-plugins-good security update
RLSA-2026:37410: Important: buildah security update
RLSA-2026:36832: Important: libreoffice security update
RLSA-2026:36834: Important: gstreamer1-plugins-bad-free security update
RLSA-2026:36674: Moderate: gstreamer1-plugins-ugly-free security update
RLSA-2026:36879: Important: tomcat security, bug fix, and enhancement update




RLSA-2026:37130: Important: gstreamer1-plugins-bad-free security update


An update is available for gstreamer1-plugins-bad-free.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:37130: Important: gstreamer1-plugins-bad-free security update



RLSA-2026:37137: Important: tomcat security, bug fix, and enhancement update


An update is available for tomcat.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:37137: Important: tomcat security, bug fix, and enhancement update



RLSA-2026:36782: Moderate: aardvark-dns security update


An update is available for aardvark-dns.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36782: Moderate: aardvark-dns security update



RLSA-2026:36675: Important: gstreamer1-plugins-good security update


An update is available for gstreamer1-plugins-good.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36675: Important: gstreamer1-plugins-good security update



RLSA-2026:36790: Important: tomcat9 security, bug fix, and enhancement update


An update is available for tomcat9.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36790: Important: tomcat9 security, bug fix, and enhancement update



RLSA-2026:37072: Important: podman security, bug fix, and enhancement update


An update is available for podman.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:37072: Important: podman security, bug fix, and enhancement update



RLSA-2026:35841: Important: nodejs24 security, bug fix, and enhancement update


An update is available for nodejs24.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:35841: Important: nodejs24 security, bug fix, and enhancement update



RLSA-2026:36749: Important: gstreamer1-plugins-bad-free security update


An update is available for gstreamer1-plugins-bad-free.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36749: Important: gstreamer1-plugins-bad-free security update



RLSA-2026:36673: Moderate: gstreamer1-plugins-ugly-free security update


An update is available for gstreamer1-plugins-ugly-free.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36673: Moderate: gstreamer1-plugins-ugly-free security update



RLSA-2026:36788: Important: tomcat security, bug fix, and enhancement update


An update is available for tomcat.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36788: Important: tomcat security, bug fix, and enhancement update



RLSA-2026:37207: Important: freerdp security update


An update is available for freerdp.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:37207: Important: freerdp security update



RLSA-2026:36617: Important: oci-seccomp-bpf-hook security update


An update is available for oci-seccomp-bpf-hook.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36617: Important: oci-seccomp-bpf-hook security update



RLSA-2026:37123: Important: podman security, bug fix, and enhancement update


An update is available for podman.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:37123: Important: podman security, bug fix, and enhancement update



RLSA-2026:37129: Important: gstreamer1-plugins-good security update


An update is available for gstreamer1-plugins-good.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:37129: Important: gstreamer1-plugins-good security update



RLSA-2026:37410: Important: buildah security update


An update is available for buildah.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:37410: Important: buildah security update



RLSA-2026:36832: Important: libreoffice security update


An update is available for libreoffice.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36832: Important: libreoffice security update



RLSA-2026:36834: Important: gstreamer1-plugins-bad-free security update


An update is available for gstreamer1-plugins-bad-free.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36834: Important: gstreamer1-plugins-bad-free security update



RLSA-2026:36674: Moderate: gstreamer1-plugins-ugly-free security update


An update is available for gstreamer1-plugins-ugly-free.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36674: Moderate: gstreamer1-plugins-ugly-free security update



RLSA-2026:36879: Important: tomcat security, bug fix, and enhancement update


An update is available for tomcat.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RLSA-2026:36879: Important: tomcat security, bug fix, and enhancement update