Oracle Linux 8 : freerdp (ELSA-2026-2081)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2081 advisory. 2:2.11.7-2 - Backport several CVE fixes Resolves: RHEL-142417, RHEL-142401, RHEL-142385, RHEL-142369, RHEL-142353 Resolves: RHEL-142337, RHEL-142321...

ruby:3.3 security update

ruby 3.3.10-5 - Upgrade to Ruby 3.3.10. Resolves: RHEL-106820 - Fix possible denial of service in resolv gem CVE-2025-24294 - Fix URI Credential Leakage Bypass previous fixes. CVE-2025-61594 - Fix REXML denial of service. CVE-2025-58767 Resolves: RHEL-122012 rubygem-abrt rubygem-mysql2 rubygem-pg...

git security update

2.47.3-1 - update to 2.47.3 - Resolves: RHEL-102449, RHEL-102463, RHEL-102675, RHEL-102681...

glib2 security update

2.56.4-166 - Add patches for CVE-2024-34397, CVE-2024-52533, CVE-2025-4373 - Update GDateTime test for new tzdata - Resolves: RHEL-67084 - Resolves: RHEL-94286 - Resolves: RHEL-94848...

python3.11 security update

3.11.11-2.1 - Security fixes for CVE-2025-4517, CVE-2025-4330, CVE-2025-4138, CVE-2024-12718, CVE-2025-4435 - Resolves: RHEL-98045, RHEL-98015, RHEL-98238, RHEL-98177, RHEL-98206...

python3.12 security update

3.12.9-1.1 - Security fixes for CVE-2025-4517, CVE-2025-4330, CVE-2025-4138, CVE-2024-12718, CVE-2025-4435 - Resolves: RHEL-98058, RHEL-98020, RHEL-97809, RHEL-98184, RHEL-98211...

nodejs:20 security update

nodejs 1:20.19.2-1 - Update to version 20.19.2 Resolves: RHEL-92865 RHEL-88876 RHEL-91597 nodejs-nodemon nodejs-packaging...

nodejs:22 security update

nodejs 1:22.15-1-1 - Update to 22.16.0 Fixes: CVE-2025-23166 - Resolves: RHEL-91596 RHEL-92859 1:22.15.0-1 - Update to 22.15.0 - Drop upstream patches 1:22.13.1-4 - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87300 1:22.13.1-3 - Update c-ares to newest version with fix for CVE-2025-31498...

libsoup security update

2.72.0-10.2 - Backport patches for various CVEs Resolves: RHEL-85888 Resolves: RHEL-87081 Resolves: RHEL-88332 Resolves: RHEL-92285...

libxslt security update

1.1.34-13.0.1 - Fix memory leak in exclPrefixPush Orabug: 37871881 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.34-13 - Rebuild for z-stream/0day - Resolves: RHEL-83514 - Resolves: RHEL-85988 1.1.34-12 - Include alloc changes into previous patch RHEL-83514...

ruby:3.1 security update

ruby 3.1.7-146 - Upgrade to Ruby 3.1.7. Resolves: RHEL-55410 - Fix DoS vulnerability in REXML. CVE-2024-39908 Resolves: RHEL-86077...

krb5 security update

1.18.2-31.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-31 - Prevent overflow when calculating ulog block size CVE-2025-24528 Resolves: RHEL-78248 - kdb5util: fix DB entry flags on modification Resolves: RHEL-56060...

gstreamer1-plugins-good security update

1.16.1-5 - CVE-2024-47537, CVE-2024-47539, CVE-2024-47540, CVE-2024-47606, CVE-2024-47613 Resolves: RHEL-70949, RHEL-70962, RHEL-70936, RHEL-71022 Resolves: RHEL-70998...

expat security update

2.5.0-3.1 - Fix CVE-2024-50602 - Resolves: RHEL-65064 2.5.0-3 - Fix CVE-2024-45490, CVE-2024-45491, CVE-2024-45492 - Resolves: RHEL-56761 - Resolves: RHEL-57520 - Resolves: RHEL-57511...

.NET 7.0 security update

7.0.119-1.0.1 - Add support for Oracle Linux 7.0.119-1 - Update to .NET SDK 7.0.119 and Runtime 7.0.19 - Resolves: RHEL-35313 7.0.118-2 - Update to .NET SDK 7.0.118 and Runtime 7.0.18 - Resolves: RHEL-31199...