TzData, Capstone, MySQL, and more updates for Oracle Linux

Oracle Linux 6462 Published by

Oracle Linux distributed updates for security and bug fixes across versions seven through ten of their enterprise operating system platforms now. Critical infrastructure components including grub2 boot loaders and kernel modules are patched against CVEs involving privilege escalation or memory corruption risks found in various system layers including networking drivers and identity services. Regarding transition times in Moldova, timezone data received corrections alongside improvements to fence agents and identity management tools like ipa for network control functionality.

ELBA-2026-4902 Oracle Linux 10 tzdata bug fix and enhancement update
ELBA-2026-4708 Oracle Linux 10 fence-agents bug fix and enhancement update
ELBA-2026-4897 Oracle Linux 10 ipa bug fix and enhancement update
ELSA-2026-4898 Important: Oracle Linux 9 capstone security update
ELSA-2026-4760 Moderate: Oracle Linux 9 grub2 security update
ELSA-2026-4828 Moderate: Oracle Linux 9 mysql security update
ELSA-2026-4648 Moderate: Oracle Linux 8 grub2 security update
ELBA-2026-4902 Oracle Linux 9 tzdata bug fix and enhancement update
ELSA-2026-4759 Moderate: Oracle Linux 9 kernel security update
ELBA-2026-4904 Oracle Linux 8 cups bug fix and enhancement update
ELBA-2026-4902 Oracle Linux 8 tzdata bug fix and enhancement update
ELBA-2026-50158 Oracle Linux 8 kexec-tools bug fix update
ELSA-2026-4148 Important: Oracle Linux 7 python-pyasn1 security update




ELBA-2026-4902 Oracle Linux 10 tzdata bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-4902

http://linux.oracle.com/errata/ELBA-2026-4902.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
tzdata-2026a-1.el10.noarch.rpm
tzdata-java-2026a-1.el10.noarch.rpm

aarch64:
tzdata-2026a-1.el10.noarch.rpm
tzdata-java-2026a-1.el10.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/tzdata-2026a-1.el10.src.rpm

Description of changes:

[2026a-1]
- Update to tzdata-2026a (RHEL-154023)
- Correct the transition times for Moldova.
- The POSIXRULES option is now obsolete.



ELBA-2026-4708 Oracle Linux 10 fence-agents bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-4708

http://linux.oracle.com/errata/ELBA-2026-4708.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
fence-agents-aliyun-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-all-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-amt-ws-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-apc-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-apc-snmp-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-aws-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-azure-arm-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-bladecenter-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-brocade-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-cisco-mds-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-cisco-ucs-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-common-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-drac5-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-eaton-snmp-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-emerson-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-eps-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-gce-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-heuristics-ping-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-hpblade-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ibm-powervs-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ibm-vpc-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ibmblade-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ifmib-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ilo-moonshot-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ilo-mp-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ilo-ssh-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ilo2-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-intelmodular-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ipdu-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ipmilan-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-kdump-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-kubevirt-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-mpath-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-nutanix-ahv-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-openstack-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-redfish-4.16.0-13.el10_1.3.x86_64.rpm
fence-agents-rhevm-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-rsa-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-rsb-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-sbd-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-scsi-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-virsh-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-vmware-rest-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-vmware-soap-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-wti-4.16.0-13.el10_1.3.noarch.rpm
fence-virt-4.16.0-13.el10_1.3.x86_64.rpm
fence-virtd-4.16.0-13.el10_1.3.x86_64.rpm
fence-virtd-cpg-4.16.0-13.el10_1.3.x86_64.rpm
fence-virtd-libvirt-4.16.0-13.el10_1.3.x86_64.rpm
fence-virtd-multicast-4.16.0-13.el10_1.3.x86_64.rpm
fence-virtd-serial-4.16.0-13.el10_1.3.x86_64.rpm
fence-virtd-tcp-4.16.0-13.el10_1.3.x86_64.rpm
ha-cloud-support-4.16.0-13.el10_1.3.x86_64.rpm

aarch64:
fence-agents-all-4.16.0-13.el10_1.3.aarch64.rpm
fence-agents-amt-ws-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-apc-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-apc-snmp-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-bladecenter-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-brocade-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-cisco-mds-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-cisco-ucs-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-common-4.16.0-13.el10_1.3.aarch64.rpm
fence-agents-drac5-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-eaton-snmp-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-emerson-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-eps-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-heuristics-ping-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-hpblade-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ibm-powervs-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ibm-vpc-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ibmblade-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ifmib-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ilo-moonshot-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ilo-mp-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ilo-ssh-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ilo2-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-intelmodular-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ipdu-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-ipmilan-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-kdump-4.16.0-13.el10_1.3.aarch64.rpm
fence-agents-kubevirt-4.16.0-13.el10_1.3.aarch64.rpm
fence-agents-mpath-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-nutanix-ahv-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-redfish-4.16.0-13.el10_1.3.aarch64.rpm
fence-agents-rhevm-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-rsa-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-rsb-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-sbd-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-scsi-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-virsh-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-vmware-rest-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-vmware-soap-4.16.0-13.el10_1.3.noarch.rpm
fence-agents-wti-4.16.0-13.el10_1.3.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/fence-agents-4.16.0-13.el10_1.3.src.rpm

Description of changes:

[4.16.0-13.3]
- fence_ibm_vpc: fix missing statuses
Resolves: RHEL-145756



ELBA-2026-4897 Oracle Linux 10 ipa bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-4897

http://linux.oracle.com/errata/ELBA-2026-4897.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
ipa-client-4.12.2-24.0.1.el10_1.2.x86_64.rpm
ipa-client-common-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-client-encrypted-dns-4.12.2-24.0.1.el10_1.2.x86_64.rpm
ipa-client-epn-4.12.2-24.0.1.el10_1.2.x86_64.rpm
ipa-client-samba-4.12.2-24.0.1.el10_1.2.x86_64.rpm
ipa-common-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-selinux-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-selinux-luna-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-selinux-nfast-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-server-4.12.2-24.0.1.el10_1.2.x86_64.rpm
ipa-server-common-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-server-dns-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-server-encrypted-dns-4.12.2-24.0.1.el10_1.2.x86_64.rpm
ipa-server-trust-ad-4.12.2-24.0.1.el10_1.2.x86_64.rpm
python3-ipaclient-4.12.2-24.0.1.el10_1.2.noarch.rpm
python3-ipalib-4.12.2-24.0.1.el10_1.2.noarch.rpm
python3-ipaserver-4.12.2-24.0.1.el10_1.2.noarch.rpm
python3-ipatests-4.12.2-24.0.1.el10_1.2.noarch.rpm

aarch64:
ipa-client-4.12.2-24.0.1.el10_1.2.aarch64.rpm
ipa-client-common-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-client-encrypted-dns-4.12.2-24.0.1.el10_1.2.aarch64.rpm
ipa-client-epn-4.12.2-24.0.1.el10_1.2.aarch64.rpm
ipa-client-samba-4.12.2-24.0.1.el10_1.2.aarch64.rpm
ipa-common-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-selinux-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-selinux-luna-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-selinux-nfast-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-server-4.12.2-24.0.1.el10_1.2.aarch64.rpm
ipa-server-common-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-server-dns-4.12.2-24.0.1.el10_1.2.noarch.rpm
ipa-server-encrypted-dns-4.12.2-24.0.1.el10_1.2.aarch64.rpm
ipa-server-trust-ad-4.12.2-24.0.1.el10_1.2.aarch64.rpm
python3-ipaclient-4.12.2-24.0.1.el10_1.2.noarch.rpm
python3-ipalib-4.12.2-24.0.1.el10_1.2.noarch.rpm
python3-ipaserver-4.12.2-24.0.1.el10_1.2.noarch.rpm
python3-ipatests-4.12.2-24.0.1.el10_1.2.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/ipa-4.12.2-24.0.1.el10_1.2.src.rpm

Description of changes:

[4.12.2-24.0.1.el10_1.2]
- Set IPAPLATFORM=rhel when build on Oracle Linux [Orabug: 29516674]
- Add bind to ipa-server-common Requires [Orabug: 36518596]

[4.12.2-24.2]
- Resolves: RHEL-141303 AddressSanitizer: SEGV ipa-pwd-extop/common.c:584 in ipapwd_gen_checks
- Resolves: RHEL-141317 Memory leaks in IPA plugins
- Resolves: RHEL-129968 Fix ipatests for kdcproxy after CVE-2025-59088 fix
- Resolves: RHEL-107483 ipa-ca-install fails on CA-less replica due to inadequate key usage in master certificate

[4.12.2-24.1]
- Resolves: RHEL-118447 CVE-2025-7493 ipa: Privilege escalation from host to domain admin in FreeIPA



ELSA-2026-4898 Important: Oracle Linux 9 capstone security update


Oracle Linux Security Advisory ELSA-2026-4898

http://linux.oracle.com/errata/ELSA-2026-4898.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
capstone-4.0.2-11.el9_7.i686.rpm
capstone-4.0.2-11.el9_7.x86_64.rpm
capstone-devel-4.0.2-11.el9_7.i686.rpm
capstone-devel-4.0.2-11.el9_7.x86_64.rpm
capstone-java-4.0.2-11.el9_7.noarch.rpm
python3-capstone-4.0.2-11.el9_7.x86_64.rpm

aarch64:
capstone-4.0.2-11.el9_7.aarch64.rpm
capstone-devel-4.0.2-11.el9_7.aarch64.rpm
capstone-java-4.0.2-11.el9_7.noarch.rpm
python3-capstone-4.0.2-11.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/capstone-4.0.2-11.el9_7.src.rpm

Related CVEs:

CVE-2025-67873
CVE-2025-68114

Description of changes:

[4.0.2-11]
- Fix CVE-2025-68114 (memory corruption) and CVE-2025-67873 (heap buffer overflow)
Resolves: RHEL-137758



ELSA-2026-4760 Moderate: Oracle Linux 9 grub2 security update


Oracle Linux Security Advisory ELSA-2026-4760

http://linux.oracle.com/errata/ELSA-2026-4760.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
grub2-common-2.06-114.0.1.el9_7.1.noarch.rpm
grub2-efi-aa64-modules-2.06-114.0.1.el9_7.1.noarch.rpm
grub2-efi-x64-2.06-114.0.1.el9_7.1.x86_64.rpm
grub2-efi-x64-cdboot-2.06-114.0.1.el9_7.1.x86_64.rpm
grub2-efi-x64-modules-2.06-114.0.1.el9_7.1.noarch.rpm
grub2-pc-2.06-114.0.1.el9_7.1.x86_64.rpm
grub2-pc-modules-2.06-114.0.1.el9_7.1.noarch.rpm
grub2-tools-2.06-114.0.1.el9_7.1.x86_64.rpm
grub2-tools-efi-2.06-114.0.1.el9_7.1.x86_64.rpm
grub2-tools-extra-2.06-114.0.1.el9_7.1.x86_64.rpm
grub2-tools-minimal-2.06-114.0.1.el9_7.1.x86_64.rpm

aarch64:
grub2-common-2.06-114.0.1.el9_7.1.noarch.rpm
grub2-efi-aa64-2.06-114.0.1.el9_7.1.aarch64.rpm
grub2-efi-aa64-cdboot-2.06-114.0.1.el9_7.1.aarch64.rpm
grub2-efi-aa64-modules-2.06-114.0.1.el9_7.1.noarch.rpm
grub2-efi-x64-modules-2.06-114.0.1.el9_7.1.noarch.rpm
grub2-tools-2.06-114.0.1.el9_7.1.aarch64.rpm
grub2-tools-extra-2.06-114.0.1.el9_7.1.aarch64.rpm
grub2-tools-minimal-2.06-114.0.1.el9_7.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/grub2-2.06-114.0.1.el9_7.1.src.rpm

Related CVEs:

CVE-2025-61662

Description of changes:

[2.06-114.0.1.el9_7.1]
- Update grub2 dependencies to match new Secure Boot certificate chain of trust [Orabug: 37766761]
- Fix typo in SBAT metadata [Orabug: 37693946]
- Allow installation of grub2 only with shim-aa64 that allows booting it [Orabug: 37693946]
- net/dns: Fix removal of DNS server [Orabug: 37539625]
- net/dns: Simplify error handling of recv_hook() function [Orabug: 37539625]
- net/dns: Add debugging messages in recv_hook() function [Orabug: 37539625]
- net/dns: Fix lookup error when no IPv6 is returned [Orabug: 37539625]
- efinet: close and reopen network card on failure [Orabug: 35126950], [Orabug: 37747175]
- efinet: Correct closing of SNP protocol [Orabug: 35126950], [Orabug: 37747175]
- Support setting custom kernels as default kernels [Orabug: 36043978]
- Bump SBAT metadata for grub to 3 [Orabug: 34872719]
- Fix CVE-2022-3775 [Orabug: 34871953]
- Enable signing for aarch64 EFI
- Fix signing certificate names
- Enable back btrfs grub module for EFI pre-built image [Orabug: 34360986]
- Replaced bugzilla.oracle.com references [Orabug: 34202300]
- Update provided certificate version to 202204 [JIRA: OLDIS-16371]
- Various coverity fixes [JIRA: OLDIS-16371]
- bump SBAT generation
- Update bug url [Orabug: 34202300]
- Revert provided certificate version back to 202102 [JIRA: OLDIS-16371]
- Update signing certificate [JIRA: OLDIS-16371]
- fix SBAT data [JIRA: OLDIS-16371]
- Update requires [JIRA: OLDIS-16371]
- Rebuild for SecureBoot signatures [Orabug: 33801813]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- Put "with" in menuentry instead of "using" [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.06-114.1]
- Fixes CVE-2025-61662 Missing unregister call for gettext command may lead to use-after-free
- Resolves: #RHEL-141593



ELSA-2026-4828 Moderate: Oracle Linux 9 mysql security update


Oracle Linux Security Advisory ELSA-2026-4828

http://linux.oracle.com/errata/ELSA-2026-4828.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
mysql-8.0.45-1.el9_7.x86_64.rpm
mysql-common-8.0.45-1.el9_7.x86_64.rpm
mysql-devel-8.0.45-1.el9_7.x86_64.rpm
mysql-errmsg-8.0.45-1.el9_7.x86_64.rpm
mysql-libs-8.0.45-1.el9_7.x86_64.rpm
mysql-server-8.0.45-1.el9_7.x86_64.rpm
mysql-test-8.0.45-1.el9_7.x86_64.rpm

aarch64:
mysql-8.0.45-1.el9_7.aarch64.rpm
mysql-common-8.0.45-1.el9_7.aarch64.rpm
mysql-devel-8.0.45-1.el9_7.aarch64.rpm
mysql-errmsg-8.0.45-1.el9_7.aarch64.rpm
mysql-libs-8.0.45-1.el9_7.aarch64.rpm
mysql-server-8.0.45-1.el9_7.aarch64.rpm
mysql-test-8.0.45-1.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/mysql-8.0.45-1.el9_7.src.rpm

Related CVEs:

CVE-2026-21936
CVE-2026-21937
CVE-2026-21941
CVE-2026-21948
CVE-2026-21964
CVE-2026-21968

Description of changes:

[8.0.45-1]
- Rebase to 8.0.45



ELSA-2026-4648 Moderate: Oracle Linux 8 grub2 security update


Oracle Linux Security Advisory ELSA-2026-4648

http://linux.oracle.com/errata/ELSA-2026-4648.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
grub2-common-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-efi-aa64-modules-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-efi-ia32-2.02-170.0.1.el8_10.1.x86_64.rpm
grub2-efi-ia32-cdboot-2.02-170.0.1.el8_10.1.x86_64.rpm
grub2-efi-ia32-modules-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-efi-x64-2.02-170.0.1.el8_10.1.x86_64.rpm
grub2-efi-x64-cdboot-2.02-170.0.1.el8_10.1.x86_64.rpm
grub2-efi-x64-modules-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-pc-2.02-170.0.1.el8_10.1.x86_64.rpm
grub2-pc-modules-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-tools-2.02-170.0.1.el8_10.1.x86_64.rpm
grub2-tools-efi-2.02-170.0.1.el8_10.1.x86_64.rpm
grub2-tools-extra-2.02-170.0.1.el8_10.1.x86_64.rpm
grub2-tools-minimal-2.02-170.0.1.el8_10.1.x86_64.rpm

aarch64:
grub2-common-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-efi-aa64-2.02-170.0.1.el8_10.1.aarch64.rpm
grub2-efi-aa64-cdboot-2.02-170.0.1.el8_10.1.aarch64.rpm
grub2-efi-aa64-modules-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-efi-ia32-modules-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-efi-x64-modules-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-pc-modules-2.02-170.0.1.el8_10.1.noarch.rpm
grub2-tools-2.02-170.0.1.el8_10.1.aarch64.rpm
grub2-tools-extra-2.02-170.0.1.el8_10.1.aarch64.rpm
grub2-tools-minimal-2.02-170.0.1.el8_10.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/grub2-2.02-170.0.1.el8_10.1.src.rpm

Related CVEs:

CVE-2025-61662

Description of changes:

[2.02-170.0.1.el8_10.1]
- Update grub2 dependencies to match new Secure Boot certificate chain of trust [Orabug: 37766761]
- Fix typo in SBAT metadata [Orabug: 37693946]
- Allow installation of grub2 only with shim-aa64 that allows booting it [Orabug: 37693946]
- net/dns: Fix removal of DNS server [Orabug: 37539625]
- net/dns: Simplify error handling of recv_hook() function [Orabug: 37539625]
- net/dns: Add debugging messages in recv_hook() function [Orabug: 37539625]
- net/dns: Fix lookup error when no IPv6 is returned [Orabug: 37539625]
- Use correct os_name on OL
- Backport the support for setting custom kernels as default kernels [Orabug: 36690061]
- Restore correct SBAT entries
- Replaced bugzilla.oracle.com references [Orabug: 35475894]
- efinet: Close and reopen card on failure [Orabug: 35126950]
- Fix CVE-2022-3775 [Orabug: 34867710]
- Bump SBAT metadata for grub to 3 [Orabug: 34871758]
- Enable signing on aarch64
- Don't try to switch to a BLS config if GRUB_ENABLE_BLSCFG is already set (Javier Martinez Canillas) [Orabug: 34375996]
- Enable back btrfs module by default [Orabug: 34377188]
- Backport upstream SNP protocol fixes [Orabug: 34195100]
- Rebase Fix EFI loader kernel image allocation patch, adapt it to new NX code [Orabug: 34352232]
- enable multiboot2 [Orabug: 34285558]
- backport arm64: Fix EFI loader kernel image allocation [Orabug: 33702462]
- backport Arm: check for the PE magic for the compiled arch [Orabug: 33702462]
- Backport some better script logic for BTRFS support [Orabug: 32448171]
- Do not add shim and grub certificate deps for aarch64 packages [Orabug: 32670033]
- Update Oracle SBAT data [Orabug: 32670033]
- Use new signing certificate [Orabug: 32670033]
- Fix various coverity issues [Orabug: 32530657]
- Set proper blsdir if /boot is on btrfs rootfs [Orabug: 32063327]
- Add CVE-2020-15706, CVE-2020-15707 to the list [Orabug: 31225072]
- honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS [Orabug: 30643497]
- set EFIDIR as redhat for additional grub2 tools [Orabug: 29875597]
- Update upstream references [Orabug: 26388226]
- Insert Unbreakable Enterprise Kernel text into BLS config file [Orabug: 29417955]
- fix symlink removal scriptlet, to be executed only on removal [Orabug: 19231481]
- Fix comparison in patch for 18504756
- Remove symlink to grub environment file during uninstall on EFI platforms [Orabug: 19231481]
- Put "with" in menuentry instead of "using" [Orabug: 18504756]
- Use different titles for UEK and RHCK kernels [Orabug: 18504756]

[2.02-170.1]
- Fixes CVE-2025-61662 Missing unregister call for gettext command may lead to use-after-free
- Resolves: #RHEL-141583

[2.02-170]
- fs/xfs/ppc64le: Update xfs code to fix install on 4KB block size
- Resolves: #RHEL-142208



ELBA-2026-4902 Oracle Linux 9 tzdata bug fix and enhancement update


Oracle Linux Bug Fix Advisory ELBA-2026-4902

http://linux.oracle.com/errata/ELBA-2026-4902.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
tzdata-2026a-1.el9.noarch.rpm
tzdata-java-2026a-1.el9.noarch.rpm

aarch64:
tzdata-2026a-1.el9.noarch.rpm
tzdata-java-2026a-1.el9.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/tzdata-2026a-1.el9.src.rpm

Description of changes:

[2026a-1]
- Update to tzdata-2026a (RHEL-154025)
- Correct the transition times for Moldova.
- The POSIXRULES option is now obsolete.



ELSA-2026-4759 Moderate: Oracle Linux 9 kernel security update


Oracle Linux Security Advisory ELSA-2026-4759

http://linux.oracle.com/errata/ELSA-2026-4759.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-abi-stablelists-5.14.0-611.41.1.el9_7.noarch.rpm
kernel-core-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-cross-headers-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-debug-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-debug-core-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-debug-devel-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-debug-devel-matched-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-debug-modules-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-debug-modules-core-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-debug-modules-extra-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-debug-uki-virt-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-devel-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-devel-matched-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-doc-5.14.0-611.41.1.el9_7.noarch.rpm
kernel-headers-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-modules-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-modules-core-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-modules-extra-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-tools-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-tools-libs-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-tools-libs-devel-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-uki-virt-5.14.0-611.41.1.el9_7.x86_64.rpm
kernel-uki-virt-addons-5.14.0-611.41.1.el9_7.x86_64.rpm
libperf-5.14.0-611.41.1.el9_7.x86_64.rpm
perf-5.14.0-611.41.1.el9_7.x86_64.rpm
python3-perf-5.14.0-611.41.1.el9_7.x86_64.rpm
rtla-5.14.0-611.41.1.el9_7.x86_64.rpm
rv-5.14.0-611.41.1.el9_7.x86_64.rpm

aarch64:
kernel-cross-headers-5.14.0-611.41.1.el9_7.aarch64.rpm
kernel-headers-5.14.0-611.41.1.el9_7.aarch64.rpm
kernel-tools-5.14.0-611.41.1.el9_7.aarch64.rpm
kernel-tools-libs-5.14.0-611.41.1.el9_7.aarch64.rpm
kernel-tools-libs-devel-5.14.0-611.41.1.el9_7.aarch64.rpm
libperf-5.14.0-611.41.1.el9_7.aarch64.rpm
perf-5.14.0-611.41.1.el9_7.aarch64.rpm
python3-perf-5.14.0-611.41.1.el9_7.aarch64.rpm
rtla-5.14.0-611.41.1.el9_7.aarch64.rpm
rv-5.14.0-611.41.1.el9_7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-5.14.0-611.41.1.el9_7.src.rpm

Related CVEs:

CVE-2025-39818
CVE-2025-68800

Description of changes:

[5.14.0-611.41.1]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64

OpenSSH, .NET, Chromium, and more updates for Fedora Linux

Grub, OpenShift, GIMP, and more updates for RHEL

Windows

Linux

macOS

Community

  • Lexonight
    Hey everyone,Wanted to share a project I've been b ...
  • SeveG
    need some help here... situationPC= Packard BellOS= win1 ...
  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...