PT-2026-45046

The current upstream main branch at commit 7e0206d was reviewed, and the fix-first patch set was rebased on 2026-05-18. The patches cover: validated and bound inactive-agent hour filtering; storage SQL identifier validation; metadata-backed ownership checks for raw storage SQL; blocking direct...

mariadb:10.11 security update

galera 26.4.23-1 - Rebase to 26.4.23 Judy mariadb 3:10.11.15-1 - Rebase to 10.11.15 - Resolves: RHBZ2417697 3:10.11.14-1 - Rebase to 10.11.14 - Resolves: RHBZ2386961 3:10.11.13-1 - Rebase to 10.11.13 3:10.11.11-1 - Rebase to 10.11.11...

Oracle Linux 10 : mariadb10.11 (ELSA-2026-0136)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0136 advisory. 3:10.11.15-1 - Rebase to 10.11.15 - Resolves: RHBZ2417697 3:10.11.14-3 - Add installation of downstream sysusers.d config file in place of the upstrea...

CLSA-2025-1762512792 Update of kernel

Rebased FIPS patches to 5.14.0-570.60.1...

redis:7 security update

7.2.11-1.0.1 - Build with 64k pages to support redis on UEK on aarch64 7.2.11-1 - rebase to 7.2.11 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819...

CLSA-2025-1761324209 Update of kernel

Rebased FIPS patches to 5.14.0-570.55.1...

CLSA-2025-1758295568 Update of kernel

Rebased FIPS patches to 5.14.0-570.44.1...

Linux Distros Unpatched Vulnerability : CVE-2021-46922

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix TPM reservation for seal/unseal The original patch 8c657a0590de KEYS:...

CLSA-2025-1752189542 Update of kernel

Rebased FIPS patches to 5.14.0-570.25.1...

CLSA-2025-1741074282 mysql: Fix of 49 CVEs

Update to MySQL 8.0.41 - CVEs fixed: CVE-2024-5535 CVE-2024-7264 CVE-2024-11053 CVE-2024-21193 CVE-2024-21194 CVE-2024-21196 CVE-2024-21197 CVE-2024-21198 CVE-2024-21199 CVE-2024-21201 CVE-2024-21203 CVE-2024-21212 CVE-2024-21213 CVE-2024-21218 CVE-2024-21219 CVE-2024-21230 CVE-2024-21231...

CVE-2022-49444

CVE-2022-49444: Linux kernel vulnerability in module loading (e_shstrndx).sh_size) leading to an out-of-bounds access; described as exploitable by crafting a module. The issue is resolved by a patch that was rebased onto modules-next. Affected systems require updating to a kernel version containi...

CVE-2021-46922

In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix TPM reservation for seal/unseal The original patch 8c657a0590de "KEYS: trusted: Reserve TPM for seal and unseal operations" was correct on the mailing list:...

Spoofing

In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix TPM reservation for seal/unseal The original patch 8c657a0590de "KEYS: trusted: Reserve TPM for seal and unseal operations" was correct on the mailing list:...

CVE-2021-46922

In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix TPM reservation for seal/unseal The original patch 8c657a0590de "KEYS: trusted: Reserve TPM for seal and unseal operations" was correct on the mailing list:...

libtirpc security update

1.3.3 - Rebased to libtirpc-1.3.3 bz 2118157...

WALinuxAgent bug fix and enhancement update

An update is available for WALinuxAgent. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Microsoft Azure Linux Agent supports the provisioning and running of...

Fedora 24 : libvirt (2016-65cc608ebe)

Rebased to version 1.3.3.2 - Fix xen default video device config bz 1336629 - Don't reject duplicate disk serials bz 1349895 - Fix LXC cgroup name mismatch bz 1350139 - Fix managed save/restore with VM USB Keyboard bz 1353222 - Missing dep on systemd-container bz 1355784 - CVE-2016-5008: Setting...

Fedora 22 : qemu-2.3.0-0.3.rc2.fc22 (2015-5541)

Rebased to version 2.3.0-rc2 - Don't install ksm services as executable bz 1192720 - Skip hanging tests on s390 bz 1206057 - CVE-2015-1779 vnc: insufficient resource limiting in VNC websockets decoder bz 1205051, bz 1199572 Note that Tenable Network Security has extracted the preceding...

Fedora 21 : libvirt-1.2.9.2-1.fc21 (2015-1892)

Rebased to version 1.2.9.2 - CVE-2014-8131: deadlock and segfault in qemuConnectGetAllDomainStats bz 1172571 - CVE-2015-0236: missing ACL check for the VIRDOMAINXMLSECURE flag in save images and snapshots objects bz 1185769 - CVE-2014-8136: local denial of service in qemu/qemudriver.c bz 1176179...

Moderate: Red Hat Bug Fix Advisory: glusterfs enhancement update

Updated Glusterfs packages that add one enhancement are now available for Red Hat Storage 3 native client for Red Hat Common. Red Hat Storage is software-only, scale-out storage that provides flexible and affordable unstructured data storage for an enterprise. GlusterFS, a key building block of R...