1. TigerVNC (ELSA-2025-2861): A critical security update for Oracle Linux 7 addresses multiple vulnerabilities in TigerVNC with fixes for several CVEs, including potential heap overflows and use-after-free errors.
2. Unbreakable Enterprise Kernel (ELSA-2025-20190): An important update for Oracle Linux 8 that resolves security issues related to kernel vulnerabilities, including use-after-free errors.
3. Freetype (ELSA-2025-3421): A security update aimed at fixing an out-of-bounds write vulnerability.
4. libxml2 (ELSA-2025-2673): An update for Oracle Linux 7 that resolves several CVEs related to potential buffer overflows and use-after-free issues.
5. Python Jinja2 (ELSA-2025-3388): A security patch for Oracle Linux 8 that addresses vulnerabilities in the Python Jinja2 package.
6. Other Updates: Additional updates have been made to LibreOffice, Btrfs-progs, the SCAP Security Guide, fence-agents, libxslt, tzdata, Emacs, and Grafana, ensuring the overall security and functionality of Oracle Linux distributions.
Extended Overview:
These updates are part of Oracle's commitment to maintaining the security integrity of its Linux distributions. Each security advisory provides detailed information about the vulnerabilities addressed, including links to the respective Common Vulnerabilities and Exposures (CVEs) for further reference. Users are encouraged to apply these updates promptly to mitigate risks associated with potential exploits.Furthermore, the updates include not only critical security patches but also bug fixes to enhance system stability and performance. For instance, the updates to the kernel aim to improve system resilience and ensure compatibility with new hardware and software standards.
In light of the growing number of cyber threats, organizations using Oracle Linux should prioritize these updates as part of their cybersecurity protocols. Regular monitoring of security advisories and timely application of patches can significantly reduce vulnerabilities within their systems.
For comprehensive details on each advisory and to access the updated RPMs, users can visit the Oracle Linux errata pages linked within the advisories
TigerVNC, Kernel, Freetype, and more updates for Oracle Linux
Oracle Linux has issued multiple security updates, encompassing tigervnc, unbreakable enterprise kernel, freetype, libxml2, python-jinja2, libreoffice, btrfs-progs, scap-security-guide, fence-agents, libxslt, tzdata, emacs, and grafana:
ELSA-2025-2861 Important: Oracle Linux 7 tigervnc security update
ELSA-2025-20190 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
ELSA-2025-3421 Important: Oracle Linux 8 freetype security update
ELSA-2025-2673 Important: Oracle Linux 7 libxml2 security update
ELSA-2025-3388 Important: Oracle Linux 8 python-jinja2 security update
ELBA-2025-3022 Oracle Linux 9 kernel bug fix update
ELSA-2025-2501 Important: Oracle Linux 7 kernel security update
ELSA-2025-20190 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update
ELBA-2025-20193 Oracle Linux 7 shim-signed bug fix update
ELSA-2025-3408 Important: Oracle Linux 9 libreoffice security update
ELBA-2025-20200 Oracle Linux 8 btrfs-progs bug fix update
ELBA-2025-3270 Oracle Linux 8 scap-security-guide bug fix and enhancement update
ELSA-2025-3406 Important: Oracle Linux 9 python-jinja2 security update
ELSA-2025-3113 Important: Oracle Linux 9 fence-agents security update
ELSA-2025-3107 Important: Oracle Linux 9 libxslt security update
ELBA-2025-3394 Oracle Linux 9 tzdata bug fix and enhancement update
ELSA-2025-2130 Important: Oracle Linux 7 emacs security update
ELSA-2025-3344 Important: Oracle Linux 9 grafana security updateTigerVNC, Kernel, Freetype, and more updates for Oracle Linux @ Linux Compatible
