Administrators managing Rocky Linux environments should prioritize these critical patches for unbound, php, bind9.16, and thunderbird. The updates address multiple vulnerabilities across both version eight and version ten of the distribution. Each advisory includes a CVSS base score to help you evaluate the risk level before deployment. You can find complete installation details and official errata references by visiting the provided Rocky Linux links.

RLSA-2026:23231: Important: unbound security update
RLSA-2026:23388: Important: php security update
RLSA-2026:23360: Important: bind9.16 security update
RLSA-2026:22643: Important: thunderbird security update

RLSA-2026:23231: Important: unbound security update

An update is available for unbound.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

RLSA-2026:23231: Important: unbound security update

RLSA-2026:23388: Important: php security update

An update is available for php.
This update affects Rocky Linux 10.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

RLSA-2026:23388: Important: php security update

RLSA-2026:23360: Important: bind9.16 security update

An update is available for bind9.16.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

RLSA-2026:23360: Important: bind9.16 security update

RLSA-2026:22643: Important: thunderbird security update

An update is available for thunderbird.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

RLSA-2026:22643: Important: thunderbird security update