AlmaLinux has recently implemented a series of crucial security updates for several packages, including Kernel-rt, Kernel, Python-Jinja2, Grub 2, and Freetype. These updates address significant vulnerabilities that could potentially compromise system security. The updates are as follows:
1. Kernel-rt Security Update (ALSA-2025:3264): This update focuses on the Real Time Linux Kernel, which is essential for systems that require high determinism. It includes a fix for an out-of-bounds write issue in the cacheinfo array, identified as CVE-2025-21785.
2. Kernel Security Update (ALSA-2025:3260): Similar to the Kernel-rt update, this addresses the core Linux kernel and also includes the fix for the CVE-2025-21785 vulnerability.
3. Python-Jinja2 Security Update (ALSA-2025:3406): This update pertains to the Python templating engine, Jinja2, which had a security flaw allowing for sandbox breakout through the attr filter. This vulnerability is documented as CVE-2025-27516.
4. Grub2 Security Update (ALSA-2025:3367): This update for the Grand Unified Boot Loader addresses an out-of-bounds write issue in the grub_net_search_config_file function, classified as CVE-2025-0624.
5. Freetype Security Update (ALSA-2025:3421): The Freetype update fixes an out-of-bounds write vulnerability that occurs during the parsing of font subglyph structures, particularly in TrueType GX and variable font files, noted as CVE-2025-27363.
These updates are crucial for maintaining the security and stability of AlmaLinux systems. Users are encouraged to review the full details of each update and apply them promptly. For any questions or concerns, users can reach out to the AlmaLinux community for assistance.
In addition to these updates, users should regularly monitor for new updates and vulnerabilities, as the security landscape is continually evolving. Staying informed about patches and security practices is vital for safeguarding systems against potential threats
1. Kernel-rt Security Update (ALSA-2025:3264): This update focuses on the Real Time Linux Kernel, which is essential for systems that require high determinism. It includes a fix for an out-of-bounds write issue in the cacheinfo array, identified as CVE-2025-21785.
2. Kernel Security Update (ALSA-2025:3260): Similar to the Kernel-rt update, this addresses the core Linux kernel and also includes the fix for the CVE-2025-21785 vulnerability.
3. Python-Jinja2 Security Update (ALSA-2025:3406): This update pertains to the Python templating engine, Jinja2, which had a security flaw allowing for sandbox breakout through the attr filter. This vulnerability is documented as CVE-2025-27516.
4. Grub2 Security Update (ALSA-2025:3367): This update for the Grand Unified Boot Loader addresses an out-of-bounds write issue in the grub_net_search_config_file function, classified as CVE-2025-0624.
5. Freetype Security Update (ALSA-2025:3421): The Freetype update fixes an out-of-bounds write vulnerability that occurs during the parsing of font subglyph structures, particularly in TrueType GX and variable font files, noted as CVE-2025-27363.
These updates are crucial for maintaining the security and stability of AlmaLinux systems. Users are encouraged to review the full details of each update and apply them promptly. For any questions or concerns, users can reach out to the AlmaLinux community for assistance.
In addition to these updates, users should regularly monitor for new updates and vulnerabilities, as the security landscape is continually evolving. Staying informed about patches and security practices is vital for safeguarding systems against potential threats
Kernel, Jinja, Grub, Freetype updates for AlmaLinux
AlmaLinux has been updated with several important security updates, including Kernel-rt, Kernel, Python-Jinja 2, Grub 2, and Freetype:
ALSA-2025:3264: kernel-rt security update (Important)
ALSA-2025:3260: kernel security update (Important)
ALSA-2025:3406: python-jinja2 security update (Important)
ALSA-2025:3367: grub2 security update (Important)
ALSA-2025:3421: freetype security update (Important)Kernel, Jinja, Grub, Freetype updates for AlmaLinux @ Linux Compatible
