Oracle Linux Security Advisory ELSA-2026-50095 http://linux.oracle.com/errata/ELSA-2026-50095.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bpftool-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-core-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-debug-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-debug-core-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-debug-devel-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-debug-modules-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-debug-modules-extra-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-devel-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-doc-5.15.0-316.196.4.2.el9uek.noarch.rpm kernel-uek-modules-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-modules-extra-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-container-5.15.0-316.196.4.2.el9uek.x86_64.rpm kernel-uek-container-debug-5.15.0-316.196.4.2.el9uek.x86_64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-5.15.0-316.196.4.2.el9uek.src.rpm Related CVEs: CVE-2025-38566 CVE-2025-38571 CVE-2025-40215 CVE-2025-40258 CVE-2025-68209 Description of changes: [5.15.0-316.196.4.2] - xfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added (Sabrina Dubroca) - usb: raw-gadget: cap raw_io transfer length to KMALLOC_MAX_SIZE (Gopi Krishna Menon) - ext4: clear i_state_flags when alloc inode (Haibo Chen) - ext4: align max orphan file size with e2fsprogs limit (Baokun Li) - PM: runtime: Do not clear needs_force_resume with enabled runtime PM (Rafael J. Wysocki) - net: enetc: fix build warning when PAGE_SIZE is greater than 128K (Wei Fang) - net/sched: sch_cake: Fix incorrect qlen reduction in cake_drop (Xiang Mei) - block: fix comment for op_is_zone_mgmt() to include RESET_ALL (shechenglong) - fuse: fix readahead reclaim deadlock (Joanne Koong) - i40e: validate ring_len parameter against hardware-specific values (Gregory Herrero) - fs/ntfs3: fix mount failure for sparse runs in run_unpack() (Konstantin Komarov) - xfrm: delete x->tunnel as we delete x (Sabrina Dubroca) [Orabug: 38933003] {CVE-2025-40215} - mptcp: fix race condition in mptcp_schedule_work() (Eric Dumazet) [Orabug: 38932997] {CVE-2025-40258} - mlx5: Fix default values in create CQ (Akiva Goldberger) [Orabug: 38932992] - sunrpc: fix handling of server side tls alerts (Olga Kornievskaia) [Orabug: 38932991] {CVE-2025-38566} - sunrpc: fix client side handling of tls alerts (Olga Kornievskaia) [Orabug: 38932988] {CVE-2025-38571} _______________________________________________ El-errata mailing list [email protected] https://oss.oracle.com/mailman/listinfo/el-errata
