Valkey, Kernel, SSSD, and more updates for Oracle Linux

Oracle Linux 6420 Published 2025-11-07 07:25 by Philipp Esselbach

News

ELSA-2025-19772 Important: Oracle Linux 10 qt6-qtsvg security update

Oracle Linux Security Advisory ELSA-2025-19772

http://linux.oracle.com/errata/ELSA-2025-19772.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
qt6-qtsvg-6.8.1-1.el10_0.1.x86_64.rpm
qt6-qtsvg-devel-6.8.1-1.el10_0.1.x86_64.rpm
qt6-qtsvg-examples-6.8.1-1.el10_0.1.x86_64.rpm

aarch64:
qt6-qtsvg-6.8.1-1.el10_0.1.aarch64.rpm
qt6-qtsvg-devel-6.8.1-1.el10_0.1.aarch64.rpm
qt6-qtsvg-examples-6.8.1-1.el10_0.1.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/qt6-qtsvg-6.8.1-1.el10_0.1.src.rpm

Related CVEs:

CVE-2025-10729

Description of changes:

[6.8.1-1.1]
- Fix CVE-2025-10729: Prevent dangling pointers from misplaced elements
Resolves: RHEL-119697

ELSA-2025-19675 Important: Oracle Linux 10 valkey security update

Oracle Linux Security Advisory ELSA-2025-19675

http://linux.oracle.com/errata/ELSA-2025-19675.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
valkey-8.0.6-1.0.1.el10_0.x86_64.rpm
valkey-devel-8.0.6-1.0.1.el10_0.x86_64.rpm

aarch64:
valkey-8.0.6-1.0.1.el10_0.aarch64.rpm
valkey-devel-8.0.6-1.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/valkey-8.0.6-1.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-46817
CVE-2025-46818
CVE-2025-46819
CVE-2025-49844

Description of changes:

[8.0.6-1.0.1]
- Fix for CVE-2025-49844 [Orabug: 38515582]

[8.0.6-1]
- rebase to 8.0.6 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819

ELSA-2025-19566 Moderate: Oracle Linux 10 osbuild-composer security update

Oracle Linux Security Advisory ELSA-2025-19566

http://linux.oracle.com/errata/ELSA-2025-19566.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
osbuild-composer-134.1-3.0.1.el10_0.x86_64.rpm
osbuild-composer-core-134.1-3.0.1.el10_0.x86_64.rpm
osbuild-composer-worker-134.1-3.0.1.el10_0.x86_64.rpm

aarch64:
osbuild-composer-134.1-3.0.1.el10_0.aarch64.rpm
osbuild-composer-core-134.1-3.0.1.el10_0.aarch64.rpm
osbuild-composer-worker-134.1-3.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/osbuild-composer-134.1-3.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-27144

Description of changes:

[134.1-3.0.1]
- Add OL10 support
- Update repository URLs for baseos, appstream and UERK
- Fix the label for UEKR repository
- Simplify repository names [JIRA: OLDIS-35893]
- Ensure build on latest golang: CVE-2024-34156
- Refactor patches to fix some naming and set a correct kernel for Oracle Linux [Orabug: 37253643]
- Support using OCI variables inside built images [JIRA: OLDIS-35302]
- Support using repository definitons with OCI variables [JIRA: OLDIS-38657]
- Update repositories to contain OCI variables
- Remove image types Minimal-raw and wsl [JIRA: OLDIS-38123]
- Increase default /boot size to 1GB [Orabug: 36827079]
- Add support for OCI hybrid images [JIRA: OLDIS-33593]
- enable aarch64 OCI image builds [JIRA: OLDIS-33593]
- support for building OL8/9 images on Oracle Linux 9 [Orabug: 36400619]
- Rebuild for CVE-2025-22871

[134.1-3]
- Fix json tailoring blueprint conversion
Resolves: RHEL-115392
- Fix unclosed logrus logging pipes
Resolves: RHEL-121533
- Update go-jose dependency
Resolves: RHEL-82957 (CVE-2025-27144)

ELSA-2025-19469 Moderate: Oracle Linux 10 kernel security update

Oracle Linux Security Advisory ELSA-2025-19469

http://linux.oracle.com/errata/ELSA-2025-19469.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
kernel-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-abi-stablelists-6.12.0-55.42.1.0.1.el10_0.noarch.rpm
kernel-core-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-cross-headers-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-debug-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-debug-core-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-debug-devel-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-debug-devel-matched-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-core-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-debug-modules-extra-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-debug-uki-virt-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-devel-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-devel-matched-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-doc-6.12.0-55.42.1.0.1.el10_0.noarch.rpm
kernel-headers-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-modules-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-modules-core-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-modules-extra-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-tools-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-tools-libs-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-tools-libs-devel-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-uki-virt-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
kernel-uki-virt-addons-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
libperf-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
perf-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
python3-perf-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
rtla-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm
rv-6.12.0-55.42.1.0.1.el10_0.x86_64.rpm

aarch64:
kernel-cross-headers-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
kernel-headers-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
kernel-tools-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
kernel-tools-libs-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
kernel-tools-libs-devel-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
libperf-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
perf-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
python3-perf-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
rtla-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm
rv-6.12.0-55.42.1.0.1.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/kernel-6.12.0-55.42.1.0.1.el10_0.src.rpm

Related CVEs:

CVE-2025-39702
CVE-2025-39881

Description of changes:

[6.12.0-55.42.1.0.1]
- nvme-pci: remove two deallocate zeroes quirks [Orabug: 37756650]
- Add new Oracle Linux Driver Signing (key 1) certificate [Orabug: 37985782]
- Disable UKI signing [Orabug: 36571828]
- Update Oracle Linux certificates (Kevin Lyons)
- Disable signing for aarch64 (Ilya Okomin)
- Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list (olkmod_signing_key.pem) [Orabug: 29539237]
- Update x509.genkey [Orabug: 24817676]
- Conflict with shim-ia32 and shim-x64 priv to NULL upon file release (CKI Backport Bot) [RHEL-119147] {CVE-2025-39881}
- kernfs: Fix UAF in polling when open file is released (CKI Backport Bot) [RHEL-119147] {CVE-2025-39881}
- ipv6: sr: Fix MAC comparison to be constant-time (CKI Backport Bot) [RHEL-116388] {CVE-2025-39702}

ELBA-2025-19568 Oracle Linux 10 passt bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19568

http://linux.oracle.com/errata/ELBA-2025-19568.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
passt-0^20250217.ga1e48a0-7.el10_0.x86_64.rpm
passt-selinux-0^20250217.ga1e48a0-7.el10_0.noarch.rpm

aarch64:
passt-0^20250217.ga1e48a0-7.el10_0.aarch64.rpm
passt-selinux-0^20250217.ga1e48a0-7.el10_0.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/passt-0^20250217.ga1e48a0-7.el10_0.src.rpm

Description of changes:

[0^20250217.ga1e48a0-7]
- Resolves: RHEL-123414 RHEL-123421

[0^20250217.ga1e48a0-5]
- Resolves: RHEL-83979 RHEL-84157 RHEL-86761

[0^20250217.ga1e48a0-4]
- Resolves: RHEL-84249 RHEL-83979 RHEL-84157 RHEL-84248

[0^20250217.ga1e48a0-3]
- Resolves: RHEL-80297

[0^20250217.ga1e48a0-2]
- Resolves: RHEL-80297

[0^20250217.ga1e48a0-1]
- Resolves: RHEL-79788

[0^20250121.g4f2c8e7-3]
- Resolves: RHEL-75657

[0^20250121.g4f2c8e7-1]
- Resolves: RHEL-75657

[0^20241121.g238c69f-1]
- Resolves: RHEL-67556

[0^20240806.gee36266-3]
- Bump release for October 2024 mass rebuild:
Resolves: RHEL-64018

ELBA-2025-19567 Oracle Linux 10 NetworkManager-libreswan bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19567

http://linux.oracle.com/errata/ELBA-2025-19567.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
NetworkManager-libreswan-1.2.27-2.el10_0.x86_64.rpm
NetworkManager-libreswan-gnome-1.2.27-2.el10_0.x86_64.rpm

aarch64:
NetworkManager-libreswan-1.2.27-2.el10_0.aarch64.rpm
NetworkManager-libreswan-gnome-1.2.27-2.el10_0.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/NetworkManager-libreswan-1.2.27-2.el10_0.src.rpm

Description of changes:

[1.2.26-1]
- Update to 1.2.26 release
- Add support for leftsubnets/rightsubnets (RHEL-56553)

[1.2.27-2]
- Fix potentional crash in malformed items import

[1.2.27-1]
- Update to 1.2.27 version
- Support leftsendcert in X.509-Based VPN (RHEL-110773)
- Add support for nm-auto-defaults + symetric import/export
- Support rightca in ipsec section
- Esp param properly exported

[1.2.26-1]
- Update to 1.2.26 release
- Add support for leftsubnets/rightsubnets (RHEL-56553)

ELBA-2025-19565 Oracle Linux 10 osinfo-db bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19565

http://linux.oracle.com/errata/ELBA-2025-19565.html

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

x86_64:
osinfo-db-20250124-2.0.1.el10_0.noarch.rpm

aarch64:
osinfo-db-20250124-2.0.1.el10_0.noarch.rpm

SRPMS:
http://oss.oracle.com/ol10/SRPMS-updates/osinfo-db-20250124-2.0.1.el10_0.src.rpm

Description of changes:

[20250124-2.0.1]
- Add OL9.6 data [Orabug: 37816177]
- Make sure all OL XML files are included [Orabug: 37816177]
- Add OL10.0 data
- Add 9.5 data

[20250124-2]
- Fixes x86_64 pxeboot in RHEL 10

ELBA-2025-19597 Oracle Linux 9 passt bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19597

http://linux.oracle.com/errata/ELBA-2025-19597.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
passt-0^20250217.ga1e48a0-13.el9_6.x86_64.rpm
passt-selinux-0^20250217.ga1e48a0-13.el9_6.noarch.rpm

aarch64:
passt-0^20250217.ga1e48a0-13.el9_6.aarch64.rpm
passt-selinux-0^20250217.ga1e48a0-13.el9_6.noarch.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/passt-0^20250217.ga1e48a0-13.el9_6.src.rpm

Description of changes:

[0^20250217.ga1e48a0-13]
- Resolves: RHEL-123412 RHEL-123418

[0^20250217.ga1e48a0-10]
- Resolves: RHEL-106424

[0^20250217.ga1e48a0-9]
- Resolves: RHEL-86759

[0^20250217.ga1e48a0-8]
- Resolves: RHEL-83978

[0^20250217.ga1e48a0-7]
- Original fix for RHEL-84156 still leaves inbound connections broken. Bring in
another fix.
- Last fix for RHEL-83978 introduced a different off-by-one error, fix again.
- Resolves: RHEL-84156
- Resolves: RHEL-83978

[0^20250217.ga1e48a0-6]
- Original fix for RHEL-83978 wasn't sufficient, we need the fix for upstream bug 119 as well.
- Resolves: RHEL-83978

[0^20250217.ga1e48a0-5]
- Resolves: RHEL-84247

[0^20250217.ga1e48a0-4]
- Resolves: RHEL-84156

[0^20250217.ga1e48a0-3]
- Resolves: RHEL-83978

[0^20250217.ga1e48a0-2]
- Resolves: RHEL-82211

ELBA-2025-19596 Oracle Linux 9 NetworkManager-libreswan bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19596

http://linux.oracle.com/errata/ELBA-2025-19596.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
NetworkManager-libreswan-1.2.27-2.el9_6.x86_64.rpm
NetworkManager-libreswan-gnome-1.2.27-2.el9_6.x86_64.rpm

aarch64:
NetworkManager-libreswan-1.2.27-2.el9_6.aarch64.rpm
NetworkManager-libreswan-gnome-1.2.27-2.el9_6.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/NetworkManager-libreswan-1.2.27-2.el9_6.src.rpm

Description of changes:

* Thu Oct 23 2025 Vladimír Beneš calc_signature() (Paulo Alcantara) [RHEL-109546]
- cifs: add missing spinlock around tcon refcount (Paulo Alcantara) [RHEL-109546]
- cifs: fix small mempool leak in SMB2_negotiate() (Paulo Alcantara) [RHEL-109546] {CVE-2022-49938}
- cifs: remove useless parameter 'is_fsctl' from SMB2_ioctl() (Paulo Alcantara) [RHEL-109546]
- cifs: remove unused server parameter from calc_smb_size() (Paulo Alcantara) [RHEL-109546]
- smb3: limit noisy error (Paulo Alcantara) [RHEL-109546]
- cifs: alloc_mid function should be marked as static (Paulo Alcantara) [RHEL-109546]
- cifs: remove "cifs_" prefix from init/destroy mids functions (Paulo Alcantara) [RHEL-109546]
- cifs: fix wrong unlock before return from cifs_tree_connect() (Paulo Alcantara) [RHEL-109546]
- cifs: avoid use of global locks for high contention data (Paulo Alcantara) [RHEL-109546]
- cifs: remove remaining build warnings (Paulo Alcantara) [RHEL-109546]
- cifs: remove minor build warning (Paulo Alcantara) [RHEL-109546]
- cifs: remove some camelCase and also some static build warnings (Paulo Alcantara) [RHEL-109546]
- cifs: remove unnecessary (void*) conversions. (Paulo Alcantara) [RHEL-109546]
- cifs: remove unnecessary type castings (Paulo Alcantara) [RHEL-109546]
- cifs: remove redundant initialization to variable mnt_sign_enabled (Paulo Alcantara) [RHEL-109546]
- smb3: check xattr value length earlier (Paulo Alcantara) [RHEL-109546]
- cifs: remove unnecessary locking of chan_lock while freeing session (Paulo Alcantara) [RHEL-109546]
- cifs: fix race condition with delayed threads (Paulo Alcantara) [RHEL-109546]
- cifs: update cifs_ses::ip_addr after failover (Paulo Alcantara) [RHEL-109546]
- cifs: avoid deadlocks while updating iface (Paulo Alcantara) [RHEL-109546]
- cifs: periodically query network interfaces from server (Paulo Alcantara) [RHEL-109546]
- cifs: during reconnect, update interface if necessary (Paulo Alcantara) [RHEL-109546]
- cifs: change iface_list from array to sorted linked list (Paulo Alcantara) [RHEL-109546]
- cifs: when a channel is not found for server, log its connection id (Paulo Alcantara) [RHEL-109546]
- cifs: fix potential deadlock in direct reclaim (Paulo Alcantara) [RHEL-109546]
- cifs: return errors during session setup during reconnects (Paulo Alcantara) [RHEL-109546]
- cifs: remove repeated debug message on cifs_put_smb_ses() (Paulo Alcantara) [RHEL-109546]
- cifs: avoid parallel session setups on same channel (Paulo Alcantara) [RHEL-109546]
- cifs: use new enum for ses_status (Paulo Alcantara) [RHEL-109546]
- cifs: fix incorrect use of list iterator after the loop (Paulo Alcantara) [RHEL-109546]
- cifs: do not use tcpStatus after negotiate completes (Paulo Alcantara) [RHEL-109546]
- cifs: use correct lock type in cifs_reconnect() (Paulo Alcantara) [RHEL-109546]
- cifs: Use kzalloc instead of kmalloc/memset (Paulo Alcantara) [RHEL-109546]
- cifs: force new session setup and tcon for dfs (Paulo Alcantara) [RHEL-109546]
- cifs: fix potential race with cifsd thread (Paulo Alcantara) [RHEL-109546]
- smb3: cleanup and clarify status of tree connections (Paulo Alcantara) [RHEL-109546]
- cifs: use a different reconnect helper for non-cifsd threads (Paulo Alcantara) [RHEL-109546]
- smb3: fix incorrect session setup check for multiuser mounts (Paulo Alcantara) [RHEL-109546]
- cifs: mark sessions for reconnection in helper function (Paulo Alcantara) [RHEL-109546]
- cifs: call helper functions for marking channels for reconnect (Paulo Alcantara) [RHEL-109546]
- cifs: call cifs_reconnect when a connection is marked (Paulo Alcantara) [RHEL-109546]
- cifs: unlock chan_lock before calling cifs_put_tcp_session (Paulo Alcantara) [RHEL-109546]
- cifs: cifs_ses_mark_for_reconnect should also update reconnect bits (Paulo Alcantara) [RHEL-109546]
- cifs: update tcpStatus during negotiate and sess setup (Paulo Alcantara) [RHEL-109546]
- cifs: make status checks in version independent callers (Paulo Alcantara) [RHEL-109546]
- cifs: remove repeated state change in dfs tree connect (Paulo Alcantara) [RHEL-109546]
- cifs: fix the cifs_reconnect path for DFS (Paulo Alcantara) [RHEL-109546]
- cifs: remove unused variable ses_selected (Paulo Alcantara) [RHEL-109546]
- cifs: protect all accesses to chan_* with chan_lock (Paulo Alcantara) [RHEL-109546]
- cifs: fix the connection state transitions with multichannel (Paulo Alcantara) [RHEL-109546]
- cifs: check reconnects for channels of active tcons too (Paulo Alcantara) [RHEL-109546]
- cifs: avoid race during socket reconnect between send and recv (Paulo Alcantara) [RHEL-109546]
- cifs: maintain a state machine for tcp/smb/tcon sessions (Paulo Alcantara) [RHEL-109546]
- cifs: fix hang on cifs_get_next_mid() (Paulo Alcantara) [RHEL-109546]
- cifs: take cifs_tcp_ses_lock for status checks (Paulo Alcantara) [RHEL-109546]
- cifs: reconnect only the connection and not smb session where possible (Paulo Alcantara) [RHEL-109546]
- cifs: add WARN_ON for when chan_count goes below minimum (Paulo Alcantara) [RHEL-109546]
- cifs: adjust DebugData to use chans_need_reconnect for conn status (Paulo Alcantara) [RHEL-109546]
- cifs: use the chans_need_reconnect bitmap for reconnect status (Paulo Alcantara) [RHEL-109546]
- cifs: track individual channel status using chans_need_reconnect (Paulo Alcantara) [RHEL-109546]
- cifs: Adjust key sizes and key generation routines for AES256 encryption (Paulo Alcantara) [RHEL-109546]
- cifs: fix allocation size on newly created files (Paulo Alcantara) [RHEL-109546]
- veth: try harder when allocating queue memory (Davide Caratti) [RHEL-92515]
- net: enable memcg accounting for veth queues (Davide Caratti) [RHEL-92515]
- gfs2: No more gfs2_find_jhead caching (Andreas Gruenbacher) [RHEL-92461]
- gfs2: Clean up revokes on normal withdraws (Bob Peterson) [RHEL-92461]
- gfs2: Get rid of duplicate log head lookup (Andreas Gruenbacher) [RHEL-92461]
- gfs2: Improve gfs2_make_fs_rw error handling (Andreas Gruenbacher) [RHEL-92461]
- gfs2: Simplify clean_journal (Andreas Gruenbacher) [RHEL-92461]
- gfs2: Simplify gfs2_log_pointers_init (Andreas Gruenbacher) [RHEL-92461]
- gfs2: Fix glock recursion in freeze_go_xmote_bh (Bob Peterson) [RHEL-92461]
- gfs2: Move gfs2_log_pointers_init (Andreas Gruenbacher) [RHEL-92461]
- mm: hugetlb: conditionally disable tlb_remove_table_sync_one() in huge_pmd_unshare() (Rafael Aquini) [RHEL-120391]
- kernel: extend rh_waived to cope better with the CVE mitigations case (Rafael Aquini) [RHEL-120391]
- Add support to rh_waived cmdline boot parameter (Rafael Aquini) [RHEL-120391]
- wifi: cfg80211: fix use-after-free in cmp_bss() (CKI Backport Bot) [RHEL-117792] {CVE-2025-39864}
- ext4: prevent stale extent cache entries caused by concurrent I/O writeback (Brian Foster) [RHEL-50745]
- ext4: ext4: unify EXT4_EX_NOCACHE|NOFAIL flags in ext4_ext_remove_space() (Brian Foster) [RHEL-50745]
- ext4: check the extent status again before inserting delalloc block (Brian Foster) [RHEL-50745]
- ext4: factor out a common helper to query extent map (Brian Foster) [RHEL-50745]
- ext4: convert to exclusive lock while inserting delalloc extents (Brian Foster) [RHEL-50745]
- ext4: refactor ext4_da_map_blocks() (Brian Foster) [RHEL-50745]
- wifi: mac80211: check S1G action frame size (Jose Ignacio Tornos Martinez) [RHEL-116069] {CVE-2023-53257}
- wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet (Jose Ignacio Tornos Martinez) [RHEL-115516] {CVE-2023-53226}
- wifi: mwifiex: Fix missed return in oob checks failed path (Jose Ignacio Tornos Martinez) [RHEL-115516] {CVE-2023-53226}
- wifi: mwifiex: Fix OOB and integer underflow when rx packets (Jose Ignacio Tornos Martinez) [RHEL-115516] {CVE-2023-53226}

ELBA-2025-19579 Oracle Linux 8 opencv bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19579

http://linux.oracle.com/errata/ELBA-2025-19579.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
opencv-3.4.6-9.el8_10.i686.rpm
opencv-3.4.6-9.el8_10.x86_64.rpm
opencv-contrib-3.4.6-9.el8_10.i686.rpm
opencv-contrib-3.4.6-9.el8_10.x86_64.rpm
opencv-core-3.4.6-9.el8_10.i686.rpm
opencv-core-3.4.6-9.el8_10.x86_64.rpm
opencv-devel-3.4.6-9.el8_10.i686.rpm
opencv-devel-3.4.6-9.el8_10.x86_64.rpm

aarch64:
opencv-3.4.6-9.el8_10.aarch64.rpm
opencv-contrib-3.4.6-9.el8_10.aarch64.rpm
opencv-core-3.4.6-9.el8_10.aarch64.rpm
opencv-devel-3.4.6-9.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/opencv-3.4.6-9.el8_10.src.rpm

Description of changes:

[3.4.6-9]
- establish explicit dependency between opencv-core and qt5-qtbase (RHEL-118394)

ELBA-2025-19571 Oracle Linux 8 ksh bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19571

http://linux.oracle.com/errata/ELBA-2025-19571.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
ksh-20120801-270.0.1.el8_10.x86_64.rpm

aarch64:
ksh-20120801-270.0.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/ksh-20120801-270.0.1.el8_10.src.rpm

Description of changes:

[20120801-270.0.1]
- Disable _AST_no_spawnveg for taskset workaround [Orabug: 26754277]
Red Hat Bug: #1295563

[20120801-270]
- Fix arbitrary command execution/code injection bugs
RHEL-92629

ELBA-2025-19578 Oracle Linux 8 gnome-shell-extensions bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19578

http://linux.oracle.com/errata/ELBA-2025-19578.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
gnome-classic-session-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-apps-menu-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-auto-move-windows-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-classification-banner-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-common-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-custom-menu-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-dash-to-dock-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-dash-to-panel-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-desktop-icons-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-disable-screenshield-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-drive-menu-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-gesture-inhibitor-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-heads-up-display-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-horizontal-workspaces-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-launch-new-instance-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-native-window-placement-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-no-hot-corner-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-panel-favorites-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-places-menu-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-screenshot-window-sizer-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-systemMonitor-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-top-icons-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-updates-dialog-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-user-theme-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-window-grouper-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-window-list-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-windowsNavigator-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-workspace-indicator-3.32.1-46.el8_10.noarch.rpm

aarch64:
gnome-classic-session-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-apps-menu-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-auto-move-windows-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-classification-banner-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-common-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-custom-menu-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-dash-to-dock-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-dash-to-panel-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-desktop-icons-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-disable-screenshield-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-drive-menu-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-gesture-inhibitor-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-heads-up-display-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-horizontal-workspaces-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-launch-new-instance-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-native-window-placement-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-no-hot-corner-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-panel-favorites-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-places-menu-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-screenshot-window-sizer-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-systemMonitor-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-top-icons-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-updates-dialog-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-user-theme-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-window-grouper-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-window-list-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-windowsNavigator-3.32.1-46.el8_10.noarch.rpm
gnome-shell-extension-workspace-indicator-3.32.1-46.el8_10.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/gnome-shell-extensions-3.32.1-46.el8_10.src.rpm

Description of changes:

[3.32.1-46]
- Skip creating main panel with no monitor
Resolves: RHEL-110378

[3.32.1-45]
- Fix issues in workspace-names backport
Resolves: RHEL-96219

ELBA-2025-19573 Oracle Linux 8 lftp bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19573

http://linux.oracle.com/errata/ELBA-2025-19573.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
lftp-4.8.4-7.el8_10.i686.rpm
lftp-4.8.4-7.el8_10.x86_64.rpm
lftp-scripts-4.8.4-7.el8_10.noarch.rpm

aarch64:
lftp-4.8.4-7.el8_10.aarch64.rpm
lftp-scripts-4.8.4-7.el8_10.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/lftp-4.8.4-7.el8_10.src.rpm

Description of changes:

[4.8.4-7]
- Adding a timeout for TLS close
- Resolves: RHEL-108115 - "cannot seek on data source" in TLS lftp sessions

ELBA-2025-19570 Oracle Linux 8 rig bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19570

http://linux.oracle.com/errata/ELBA-2025-19570.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
rig-1.1-4.el8_10.noarch.rpm

aarch64:
rig-1.1-4.el8_10.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/rig-1.1-4.el8_10.src.rpm

Description of changes:

[1.1-4]
- Add fix to avoid using deprecated sosreport command.

ELBA-2025-19569 Oracle Linux 8 samba bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19569

http://linux.oracle.com/errata/ELBA-2025-19569.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
ctdb-4.19.4-12.0.1.el8_10.x86_64.rpm
libnetapi-4.19.4-12.0.1.el8_10.i686.rpm
libnetapi-4.19.4-12.0.1.el8_10.x86_64.rpm
libnetapi-devel-4.19.4-12.0.1.el8_10.i686.rpm
libnetapi-devel-4.19.4-12.0.1.el8_10.x86_64.rpm
libsmbclient-4.19.4-12.0.1.el8_10.i686.rpm
libsmbclient-4.19.4-12.0.1.el8_10.x86_64.rpm
libsmbclient-devel-4.19.4-12.0.1.el8_10.i686.rpm
libsmbclient-devel-4.19.4-12.0.1.el8_10.x86_64.rpm
libwbclient-4.19.4-12.0.1.el8_10.i686.rpm
libwbclient-4.19.4-12.0.1.el8_10.x86_64.rpm
libwbclient-devel-4.19.4-12.0.1.el8_10.i686.rpm
libwbclient-devel-4.19.4-12.0.1.el8_10.x86_64.rpm
python3-samba-4.19.4-12.0.1.el8_10.i686.rpm
python3-samba-4.19.4-12.0.1.el8_10.x86_64.rpm
python3-samba-dc-4.19.4-12.0.1.el8_10.x86_64.rpm
python3-samba-devel-4.19.4-12.0.1.el8_10.i686.rpm
python3-samba-devel-4.19.4-12.0.1.el8_10.x86_64.rpm
python3-samba-test-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-client-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-client-libs-4.19.4-12.0.1.el8_10.i686.rpm
samba-client-libs-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-common-4.19.4-12.0.1.el8_10.noarch.rpm
samba-common-libs-4.19.4-12.0.1.el8_10.i686.rpm
samba-common-libs-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-common-tools-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-dc-libs-4.19.4-12.0.1.el8_10.i686.rpm
samba-dc-libs-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-dcerpc-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-devel-4.19.4-12.0.1.el8_10.i686.rpm
samba-devel-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-krb5-printing-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-ldb-ldap-modules-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-libs-4.19.4-12.0.1.el8_10.i686.rpm
samba-libs-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-pidl-4.19.4-12.0.1.el8_10.noarch.rpm
samba-test-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-test-libs-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-tools-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-usershares-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-vfs-glusterfs-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-vfs-iouring-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-winbind-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-winbind-clients-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-winbind-krb5-locator-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-winbind-modules-4.19.4-12.0.1.el8_10.i686.rpm
samba-winbind-modules-4.19.4-12.0.1.el8_10.x86_64.rpm
samba-winexe-4.19.4-12.0.1.el8_10.x86_64.rpm

aarch64:
ctdb-4.19.4-12.0.1.el8_10.aarch64.rpm
libnetapi-4.19.4-12.0.1.el8_10.aarch64.rpm
libnetapi-devel-4.19.4-12.0.1.el8_10.aarch64.rpm
libsmbclient-4.19.4-12.0.1.el8_10.aarch64.rpm
libsmbclient-devel-4.19.4-12.0.1.el8_10.aarch64.rpm
libwbclient-4.19.4-12.0.1.el8_10.aarch64.rpm
libwbclient-devel-4.19.4-12.0.1.el8_10.aarch64.rpm
python3-samba-4.19.4-12.0.1.el8_10.aarch64.rpm
python3-samba-dc-4.19.4-12.0.1.el8_10.aarch64.rpm
python3-samba-devel-4.19.4-12.0.1.el8_10.aarch64.rpm
python3-samba-test-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-client-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-client-libs-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-common-4.19.4-12.0.1.el8_10.noarch.rpm
samba-common-libs-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-common-tools-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-dc-libs-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-dcerpc-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-devel-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-krb5-printing-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-ldb-ldap-modules-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-libs-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-pidl-4.19.4-12.0.1.el8_10.noarch.rpm
samba-test-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-test-libs-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-tools-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-usershares-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-vfs-glusterfs-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-vfs-iouring-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-winbind-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-winbind-clients-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-winbind-krb5-locator-4.19.4-12.0.1.el8_10.aarch64.rpm
samba-winbind-modules-4.19.4-12.0.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/samba-4.19.4-12.0.1.el8_10.src.rpm

Description of changes:

[4.19.4-12.0.1]
- s3: winbindd: winbindd_pam: fix leak in extract_pac_vrfy_sigs [Orabug: 36518285]
- s3:passdb: Do not leak memory in pdb_tdb [Orabug: 36371377]
- Gluster volumes not accessible via Samba due to missing samba-vfs-glusterfs in OL8 [Orabug: 30205755]

[4.19.4-12]
- resolves: RHEL-119843 - Fix stale sharemode entries which can cause deadlocks

[4.19.4-11]
- resolves: RHEL-115067 - Fix regression with symlinks inside shares

ELBA-2025-19559 Oracle Linux 8 initscripts bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19559

http://linux.oracle.com/errata/ELBA-2025-19559.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
initscripts-10.00.19-1.0.1.el8_10.x86_64.rpm
netconsole-service-10.00.19-1.0.1.el8_10.noarch.rpm
network-scripts-10.00.19-1.0.1.el8_10.x86_64.rpm
readonly-root-10.00.19-1.0.1.el8_10.noarch.rpm

aarch64:
initscripts-10.00.19-1.0.1.el8_10.aarch64.rpm
netconsole-service-10.00.19-1.0.1.el8_10.noarch.rpm
network-scripts-10.00.19-1.0.1.el8_10.aarch64.rpm
readonly-root-10.00.19-1.0.1.el8_10.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/initscripts-10.00.19-1.0.1.el8_10.src.rpm

Description of changes:

[10.00.19-1.0.1]
- Fix a bug in is_nm_handling() [Orabug: 37019525]
- replaced upstream references [Orabug: 35333880]

[10.00.19-1]
- man: add ifdown.8

ELBA-2025-19557 Oracle Linux 8 glib2 bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19557

http://linux.oracle.com/errata/ELBA-2025-19557.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
glib2-2.56.4-167.el8_10.i686.rpm
glib2-2.56.4-167.el8_10.x86_64.rpm
glib2-devel-2.56.4-167.el8_10.i686.rpm
glib2-devel-2.56.4-167.el8_10.x86_64.rpm
glib2-doc-2.56.4-167.el8_10.noarch.rpm
glib2-fam-2.56.4-167.el8_10.x86_64.rpm
glib2-static-2.56.4-167.el8_10.i686.rpm
glib2-static-2.56.4-167.el8_10.x86_64.rpm
glib2-tests-2.56.4-167.el8_10.x86_64.rpm

aarch64:
glib2-2.56.4-167.el8_10.aarch64.rpm
glib2-devel-2.56.4-167.el8_10.aarch64.rpm
glib2-doc-2.56.4-167.el8_10.noarch.rpm
glib2-fam-2.56.4-167.el8_10.aarch64.rpm
glib2-static-2.56.4-167.el8_10.aarch64.rpm
glib2-tests-2.56.4-167.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/glib2-2.56.4-167.el8_10.src.rpm

Description of changes:

[2.56.4-167]
- gdbusconnection: Prevent sending a serial of zero on overflow
- Resolves: RHEL-114086

ELBA-2025-19556 Oracle Linux 8 systemd bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19556

http://linux.oracle.com/errata/ELBA-2025-19556.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
systemd-239-82.0.6.el8_10.8.i686.rpm
systemd-239-82.0.6.el8_10.8.x86_64.rpm
systemd-container-239-82.0.6.el8_10.8.i686.rpm
systemd-container-239-82.0.6.el8_10.8.x86_64.rpm
systemd-devel-239-82.0.6.el8_10.8.i686.rpm
systemd-devel-239-82.0.6.el8_10.8.x86_64.rpm
systemd-journal-remote-239-82.0.6.el8_10.8.x86_64.rpm
systemd-libs-239-82.0.6.el8_10.8.i686.rpm
systemd-libs-239-82.0.6.el8_10.8.x86_64.rpm
systemd-pam-239-82.0.6.el8_10.8.x86_64.rpm
systemd-tests-239-82.0.6.el8_10.8.x86_64.rpm
systemd-udev-239-82.0.6.el8_10.8.x86_64.rpm

aarch64:
systemd-239-82.0.6.el8_10.8.aarch64.rpm
systemd-container-239-82.0.6.el8_10.8.aarch64.rpm
systemd-devel-239-82.0.6.el8_10.8.aarch64.rpm
systemd-journal-remote-239-82.0.6.el8_10.8.aarch64.rpm
systemd-libs-239-82.0.6.el8_10.8.aarch64.rpm
systemd-pam-239-82.0.6.el8_10.8.aarch64.rpm
systemd-tests-239-82.0.6.el8_10.8.aarch64.rpm
systemd-udev-239-82.0.6.el8_10.8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/systemd-239-82.0.6.el8_10.8.src.rpm

Description of changes:

[239-82.0.6.8]
- Fix leak of old devlink device units on lvm rename [Orabug: 38491067]
- Stash the dbus subscriber list when we disconnect from the bus [Orabug: 38028720]
- Drop systemd-nspawn delay on failing to reset loginuid [Orabug: 37782633]
- coredump: use %d in kernel core pattern - CVE-2025-4598
- Fixes podman quadlet doesn't work in rootless mode [Orabug: 36076771]
- Drastically simplify caching of cgroups members mask
- drop IN_ATTRIB from parent directory inotify watches [Orabug: 36780432]
- Udevd: add an extra configurable timeout before udevd kills workers [Orabug: 36424686]
- Fixed deletion issue for symlink when device is opened [Orabug: 36228608]
- Fix local-fs and remote-fs targets during system boot (replaces old Orabug: 25897792) [Orabug: 35871376]
- 1A) Add "systemd-fstab-generator-reload-targets.service" file [Orabug: 35871376]
- 1B) Add required rpms for correct kickstart/systemd functionality within systemd.spec [Orabug: 35871376]
- 1C) Important: Review 1902-systemd-fstab-generator-reload-targets.patch for important build details/steps [Orabug: 35871376]
- Prevent duplicate uuid device to replace existing one in udev [Orabug: 35987487]
- Backport upstream pstore dmesg fix [Orabug: 34850699]
- mount: flush out cycle state on DEAD->MOUNTED only, not the other way round [Orabug: 35454661]
- core/mount: adjust deserialized state based on /proc/self/mountinfo [Orabug: 35454661]
- Prevent duplicate label to replace exsisting one in udev [Orabug: 34898273]
- Oracle-Redhat Errata ELSA-2023:3837 CVE-2023-26604 OLERRATA-43629
- Detect podman as separate container type [Orabug: 31922204]
- improve container detection logic [Orabug: 31922204]
- mount: flush out cycle state on DEAD->MOUNTED only, not the other way round [Orabug: 35454661]
- core/mount: adjust deserialized state based on /proc/self/mountinfo [Orabug: 35454661]
- Prevent duplicate label to replace existing one in udev [Orabug: 34898273]
- Standardize ioctl (BTRFS_IOC_QGROUP_CREATE) check and return -ENOTCONN, if quota is not enabled [Orabug: 34694253]
- Disable unprivileged BPF by default [Orabug: 32870980]
- udev rules: fix memory hot add and remove [Orabug: 31310273]
- fix to enable systemd-pstore.service [Orabug: 30951066]
- journal: change support URL shown in the catalog entries [Orabug: 30853009]
- set "RemoveIPC=no" in logind.conf as default for OL7.2 [Orabug: 22224874]
- allow dm remove ioctl to co-operate with UEK3 (Vaughan Cao) [Orabug: 18467469]
- Backport upstream patches for the new systemd-pstore tool (Eric DeVolder) [OraBug: 30230056]
- Removed unneeded patches (Already provided upstream or not required)
- 1902-Fix-missing-netdev-for-iscsi-entry-in-fstab.patch [Orabug: 25897792]
- 2002-orabug31420486-pstore-introduce-tmpfiles.d-systemd-pstore.conf.patch [Orabug: 31420486]
- 2009-login-add-a-missing-error-check-for-session_set_lead.patch (#2158167)
- 2010-logind-reset-session-leader-if-we-know-for-a-fact-th.patch (#2158167)
- 2011-sulogin-fix-control-lost-of-the-current-terminal-whe.patch (#2227769)
- systemd.spec: prevent 'myhostname' from being appended on upgrade (#2187761) (#2227769)
- Updated mod_nss() and readlink /etc/nsswitch.conf sections (#2187761)
- systemd.spec: mod_nss() and readlink /etc/nsswitch.conf sections (#2187761)

[239-82.8]
- test-execute: let's ignore the difference between CLD_KILLED and CLD_DUMPED (RHEL-108744)
- test-execute: turn off coredump generation in test services (RHEL-108744)
- test: introduce TEST-53-TIMER (RHEL-108744)
- test: restarting elapsed timer shouldn't trigger the corresponding service (RHEL-108744)
- test: check the next elapse timer timestamp after deserialization (RHEL-108744)
- timer: don't run service immediately after restart of a timer (RHEL-108744)
- Revert "test: extend testcase to ensure controller membership doesn't regress" (RHEL-9322)

[239-82.7]
- cgroup-util: add mask definitions for sets of controllers supported by cgroupsv1 vs. cgroupsv2 (RHEL-9322)
- cgroup: dump delegation mask too (RHEL-9322)
- cgroup: units that aren't loaded properly should not result in cgroup controllers being pulled in (RHEL-9322)
- cgroup: be more careful with which controllers we can enable/disable on a cgroup (RHEL-9322)
- cgroup: extend reasons when we realize the enable mask (RHEL-9322)
- cgroup: drastically simplify caching of cgroups members mask (RHEL-9322)
- cgroup: when we unload a unit, also update all its parent's members mask (RHEL-9322)
- test: extend testcase to ensure controller membership doesn't regress (RHEL-9322)

[239-82.6]
- dbus: stash the subscriber list when we disconenct from the bus (RHEL-75081)
- manager: s/deserialized_subscribed/subscribed_as_strv (RHEL-75081)
- bus-util: do not reset the count returned by sd_bus_track_count_name() (RHEL-75081)
- core: do not disconnect from bus when failed to install signal match (RHEL-75081)
- sd-bus/bus-track: use install_callback in sd_bus_track_add_name() (RHEL-75081)
- core/manager: restore bus track deserialization cleanup in manager_reload() (RHEL-75081)
- core/manager: drop duplicate bus track deserialization (RHEL-75081)

[239-82.5]
- man: be even clearer that tmpfiles user/group/mode are applied on existing inodes (RHEL-77145)
- Revert "man: fix description of --force in halt(8) (#7392)" (RHEL-81056)
- man: explicitly document that "reboot -f" is different from "systemctl reboot -f" (RHEL-81056)

[239-82.4]
- core: fix member access within null pointer (RHEL-76308)

[239-82.3]
- ci: update actions/upload-artifact to v4 (RHEL-32494)
- ci: drop unused variable (RHEL-32494)
- core: add possibility to not track certain unit types (RHEL-5877)
- logind: don't setup idle session watch for lock-screen and greeter (RHEL-19215)
- logind: tighten for which classes of sessions we do stop-on-idle (RHEL-19215)
- ci: point C8S containers to the Vault (RHEL-1087)

[239-82.2]
- spec: do not create symlink /etc/systemd/system/syslog.service (RHEL-13179)

[239-82.1]
- pid1: by default make user units inherit their umask from the user manager (RHEL-28048)
- pam: add call to pam_umask (RHEL-28048)
- ci: deploy systemd man to GitHub Pages (RHEL-32494)
- ci(src-git): update list of supported products (RHEL-32494)

ELBA-2025-19554 Oracle Linux 8 mdadm bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2025-19554

http://linux.oracle.com/errata/ELBA-2025-19554.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
mdadm-4.2-19.0.1.el8_10.x86_64.rpm

aarch64:
mdadm-4.2-19.0.1.el8_10.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/mdadm-4.2-19.0.1.el8_10.src.rpm

Description of changes:

[4.2-19.0.1]
- mdadm: Fix IMSM Raid assembly after disk link failure and reboot [Orabug: 37608049]
- mdmon: imsm: fix metadata corruption when managing new array [Orabug: 37419014]
- Fix socket connection failure when mdmon runs in foreground mode. [Orabug: 36077756]
- Fixed deletion issue for symlink when device is opened [Orabug: 36228608]
- Prevent duplicate uuid device to replace existing one in udev [Orabug: 35987487]
- Prevent duplicate label to replace existing one in udev [Orabug: 34898273]

[4.2-19]
- alloc superblock in Assemble
- Resolves: RHEL-82267

[4.2-18]
- increase md device name number limit
- Resolves: RHEL-97802

[4.2-17]
- enable sync file for udev rules
- Resolves: RHEL-59180

ELBA-2025-25736 Oracle Linux 8 dtrace bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-25736

http://linux.oracle.com/errata/ELBA-2025-25736.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

aarch64:
dtrace-2.0.4-1.el8.aarch64.rpm
dtrace-devel-2.0.4-1.el8.aarch64.rpm
dtrace-testsuite-2.0.4-1.el8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/dtrace-2.0.4-1.el8.src.rpm

Description of changes:

[2.0.4-1]
- TCP, UDP, and stapsdt providers implemented. (Alan Maguire)
- New learning materials: the User's Guide in Markdown format,
example scripts, and a context file for LLMs.
(Eugene Loh, Bruce McCulloch, Ruud van der Pas, Elena Zannoni).
- Allow [u]stack() to be used as a variable value. (Kris Van Hees)
[Orabug: 37950533]
- Comments using // are now supported. (Kris Van Hees)
- Scalability improvements. (Kris Van Hees)
- Error injection via return() action. (Kris Van Hees)
- Improved string handling. (Kris Van Hees)
- Various bug fixes. (Eugene Loh, Kris Van Hees)
- Fix dyn vars overwriting one another. [Orabug: 37994729]
- Fix regression: list fbt probes by default. [Orabug: 38249511]
- Various testsuite fixes and improvements.
(Nick Alcock, Eugene Loh, Alan Maguire, Kris Van Hees)
- Add test for preprocessor definitions. [Orabug: 28763074]
- Fix some stack tests. [Orabug: 37459289]

ELBA-2025-25734 Oracle Linux 8 oracle-common-release bug fix update

Oracle Linux Bug Fix Advisory ELBA-2025-25734

http://linux.oracle.com/errata/ELBA-2025-25734.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
oracle-java-jdk-release-el8-1.0-6.el8.x86_64.rpm
oracle-instantclient-release-26ai-el8-1.0-6.el8.x86_64.rpm

aarch64:
oracle-java-jdk-release-el8-1.0-6.el8.aarch64.rpm
oracle-instantclient-release-26ai-el8-1.0-6.el8.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/oracle-common-release-1.0-6.el8.src.rpm

Description of changes:

[1.0-6]
- Retire Oracle Instant Client 23ai repositories [JIRA: OLRM-712]
- Add Oracle Instant Client 26ai repositories [JIRA: OLRM-712]

Valkey, Expat, LibSoup, and more updates for Rocky Linux

Java, RunC, Kernel, ImageMagick, Python-Django updates for SUSE

Valkey, Kernel, SSSD, and more updates for Oracle Linux

ELSA-2025-19772 Important: Oracle Linux 10 qt6-qtsvg security update

ELSA-2025-19675 Important: Oracle Linux 10 valkey security update

ELSA-2025-19566 Moderate: Oracle Linux 10 osbuild-composer security update

ELSA-2025-19469 Moderate: Oracle Linux 10 kernel security update

ELBA-2025-19568 Oracle Linux 10 passt bug fix and enhancement update

ELBA-2025-19567 Oracle Linux 10 NetworkManager-libreswan bug fix and enhancement update

ELBA-2025-19565 Oracle Linux 10 osinfo-db bug fix and enhancement update

ELBA-2025-19597 Oracle Linux 9 passt bug fix and enhancement update

ELBA-2025-19596 Oracle Linux 9 NetworkManager-libreswan bug fix and enhancement update

ELBA-2025-19579 Oracle Linux 8 opencv bug fix and enhancement update

ELBA-2025-19571 Oracle Linux 8 ksh bug fix and enhancement update

ELBA-2025-19578 Oracle Linux 8 gnome-shell-extensions bug fix and enhancement update

ELBA-2025-19573 Oracle Linux 8 lftp bug fix and enhancement update

ELBA-2025-19570 Oracle Linux 8 rig bug fix and enhancement update

ELBA-2025-19569 Oracle Linux 8 samba bug fix and enhancement update

ELBA-2025-19559 Oracle Linux 8 initscripts bug fix and enhancement update

ELBA-2025-19557 Oracle Linux 8 glib2 bug fix and enhancement update

ELBA-2025-19556 Oracle Linux 8 systemd bug fix and enhancement update

ELBA-2025-19554 Oracle Linux 8 mdadm bug fix and enhancement update

ELBA-2025-25736 Oracle Linux 8 dtrace bug fix update

ELBA-2025-25734 Oracle Linux 8 oracle-common-release bug fix update

Windows

Linux

macOS

Community