osbuild-composer security update

🗓️ 06 Mar 2026 00:00:00Reported by OracleLinuxType

Osbuild-composer security update adds OCI variables, updates repositories, removes image types, enlarges /boot to 1GB, enables Oracle Linux builds, and fixes CVEs.

Reporter	Title	Published	Views	Family All 2562
FreeBSD	oauth2-proxy -- multiple vulnerabilities	5 Feb 202600:00	–	freebsd
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container is vulnerable to loss of confidentiality (CVE-2025-68121)	31 Mar 202615:05	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Instana Observability is affected by multiple vulnerabilities within Instana Agent container image	10 Mar 202612:40	–	ibm
IBM Security Bulletins	Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to handshake corruption due to the crypto/tls package (CVE-2025-68121)	24 Mar 202614:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to improper allocation of resources in net/url [CVE-2025-61726]	14 Apr 202616:56	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple Operator package issues	14 Apr 202615:27	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container operator and operands are vulnerable to denial of service (CVE-2025-61726, CVE-2025-61728) and loss of confidentiality (CVE-2025-61730)	2 Mar 202614:09	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Guardium Data Protection is affected by multiple vulnerabilities	20 May 202615:34	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Financial Transaction Manager is impacted by multiple vulnerabilities in RedHat Proxy for Kubernetes RBAC authorization	14 May 202611:11	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to Improper Certificate Validation in crypto/tls [CVE-2025-68121]	14 Apr 202615:34	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
oracle linux	8	src	osbuild-composer	101.4-4.0.1.el8_10	osbuild-composer-101.4-4.0.1.el8_10.src.rpm
oracle linux	8	aarch64	osbuild-composer	101.4-4.0.1.el8_10	osbuild-composer-101.4-4.0.1.el8_10.aarch64.rpm
oracle linux	8	aarch64	osbuild-composer-core	101.4-4.0.1.el8_10	osbuild-composer-core-101.4-4.0.1.el8_10.aarch64.rpm
oracle linux	8	aarch64	osbuild-composer-worker	101.4-4.0.1.el8_10	osbuild-composer-worker-101.4-4.0.1.el8_10.aarch64.rpm
oracle linux	8	src	osbuild-composer	101.4-4.0.1.el8_10	osbuild-composer-101.4-4.0.1.el8_10.src.rpm
oracle linux	8	x86_64	osbuild-composer	101.4-4.0.1.el8_10	osbuild-composer-101.4-4.0.1.el8_10.x86_64.rpm
oracle linux	8	x86_64	osbuild-composer-core	101.4-4.0.1.el8_10	osbuild-composer-core-101.4-4.0.1.el8_10.x86_64.rpm
oracle linux	8	x86_64	osbuild-composer-worker	101.4-4.0.1.el8_10	osbuild-composer-worker-101.4-4.0.1.el8_10.x86_64.rpm

06 Mar 2026 00:00Current

7.1High risk

Vulners AI Score7.1

CVSS 3.17.5 - 10

EPSS0.00045

SSVC