RLSA-2023:0626
Important: libksba security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for libksba.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS.
Security Fix(es):
* libksba: integer overflow to code executiona (CVE-2022-47629)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libksba-devel-1.5.1-6.el9_1.aarch64.rpm
42a75fb30626c16a573482ecdb5b95bd1d6a1a0eeafeab7d9447584ad5955966
RLBA-2023:0781
.NET 7.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet7.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address bugs are now available. The updated versions are .NET SDK 7.0.103 and .NET Runtime 7.0.3.
Bug Fix(es) and Enhancement(s):
* 2166776 - Update .NET 7.0 to SDK 7.0.103 and Runtime 7.0.3 [rhel-9.1.0.z]
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-7.0-source-built-artifacts-7.0.103-1.el9_1.aarch64.rpm
612883d9c34556c876991cf512a59ab13c815e0b80b6ae3c80a02ca4bd634119
RLBA-2023:0782
.NET 6.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet6.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address bugs are now available. The updated versions are .NET SDK 6.0.114 and .NET Runtime 6.0.14.
Bug Fix(es) and Enhancements :
* 2166770 - Update .NET 6.0 to SDK 6.0.114 and Runtime 6.0.14 [rhel-9.1.0.z]
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-6.0-source-built-artifacts-6.0.114-1.el9_1.aarch64.rpm
61bf1fcf10127ea63cb028e17f8296252675aa0bf07854648483c3a25c1e012a
RLSA-2023:1068
Moderate: libjpeg-turbo security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libjpeg-turbo.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance.
Security Fix(es):
* libjpeg-turbo: heap buffer overflow in get_word_rgb_row() in rdppm.c (CVE-2021-46822)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
turbojpeg-2.0.90-6.el9_1.aarch64.rpm
e0d059c2562c74fc4b4b25286ea4b5bd11619e8d456844713e60f4e9e84d6870
turbojpeg-devel-2.0.90-6.el9_1.aarch64.rpm
571817f091ac55d04a620de27e28c4a3a1af1e5aa5ff1a7765c80446565b04dc
RLBA-2023:0311
libvirt bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
Bug Fixes:
* libvirt doesn't catch mdevs created thru sysfs (BZ#2141364)
* libvirt kills virtual machine on restart when 2M and 1G hugepages are mounted (BZ#2152083)
* qemuAgentGetDisks cannot parse response from a guest agent running in Windows VM (BZ#2154410)
Enhancement:
* Backport the qemuDomainGetStatsCpu fallback Implementation (BZ#2157094)
rocky-linux-9-aarch64-crb-rpms
libvirt-devel-8.5.0-7.3.el9_1.aarch64.rpm
7aa2a477b7185171070343da752fa84d48a158621b064677a7781d35f7fe05f0
libvirt-docs-8.5.0-7.3.el9_1.aarch64.rpm
27d253a1a391014ae1d2daf24217849894cab1c407d7f7f5bfff186d81855822
libvirt-lock-sanlock-8.5.0-7.3.el9_1.aarch64.rpm
c5b8351a4fb990e6b3a6eee2332e85bf10d5e0f08683e7b4e272a3729c48d019
RLBA-2023:0313
nmstate bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nmstate.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound.
Bug Fix:
* Cannot move bridge port to bond (BZ#2148394)
rocky-linux-9-aarch64-crb-rpms
nmstate-devel-2.1.4-2.el9_1.aarch64.rpm
2e43aeba85326d6820874bee279994d090657bb9ff33bc39c7ca51286a9820ec
nmstate-static-2.1.4-2.el9_1.aarch64.rpm
6ea90fdd1c97b2621dc5d499bf49c0d52d0ff0dbcad203d6043d1cc500d8bcef
RLBA-2023:1244
.NET 7.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet7.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es) and Enhancement(s):
* Update .NET 7.0 to SDK 7.0.104 and Runtime 7.0.4 [rhel-9.1.0.z] (BZ#2175027)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-7.0-source-built-artifacts-7.0.104-1.el9_1.aarch64.rpm
3d5eea508139a2098ff7d7000e89b61b4d7ae7184cad439bc5a7f57aacb13e4f
RLSA-2023:0194
Moderate: java-17-openjdk security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-17-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit.
Security Fix(es):
* OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411) (CVE-2023-21835)
* OpenJDK: soundbank URL remote loading (Sound, 8293742) (CVE-2023-21843)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* In FIPS mode, the use of a SQLite database provided by NSS was assumed, which was opened in read-only mode and with no PIN expected. This prevented the use of other databases or setting a PIN on the NSS database. This update allows more control over database use using two new properties - fips.nssdb.path and fips.nssdb.pin - which can be configured permanently in the java.security file or temporarily via command-line arguments to the Java virtual machine (RHBZ#2147476)
* Prepare for the next quarterly OpenJDK upstream release (2023-01, 17.0.6) [Rocky Linux-9] (BZ#2153097)
rocky-linux-9-aarch64-crb-rpms
java-17-openjdk-demo-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
df37904c3b61a2a9fbbc87cb8bd893672cdc4c57d1e70b35359d6d499a0b194a
java-17-openjdk-demo-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
2c4dab700a24f0b9677ab85b4259079fdb33ca3a3297d56d3438acebac403a3c
java-17-openjdk-devel-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
5d141d2d6b79677e1ce578609c776080a03ea9cdc4d676686204e8faed790f15
java-17-openjdk-devel-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
b4ac5f42f2bf451624c3c9fd753e6ce2be3d241cfd35c494df3dc34e7cc121ff
java-17-openjdk-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
5df7036c7a5f351cad465b0e881f3234e4fb72c8d224b63543548363b7988492
java-17-openjdk-headless-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
ba734c9dd79216922bafea6c30e5e0b201e87d28d613a62e5a7a5b27ce5849cf
java-17-openjdk-headless-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
fbda24e65c651020fc0addf3aefaca9c425bf918ead31078efa13c4be1267c81
java-17-openjdk-jmods-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
2cda95a74d93b0d33ec45ab88da74c4303de7d0abc82348ae5ed746ec136f3f3
java-17-openjdk-jmods-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
6360a2785da3a4b2403654e130923c9ee1d3d296d48168ace9aa70f189eb75c6
java-17-openjdk-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
2aa585957b810124b3936a0662651b2d496419d313bc0af1100256668c9cce4e
java-17-openjdk-src-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
a01eea24063a117132a997de1bb8145540bdc7b012d98a25ed9bd913219a4663
java-17-openjdk-src-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
d2467f67e66676f99045b1195ecf6d37f06be2d175a22661bc564d5ad1ef3538
java-17-openjdk-static-libs-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
543edcf041bad9c99bf7e785409556a74043040a93b75231242904ff12d4ec57
java-17-openjdk-static-libs-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm
a8671708fb4e12af4bc305ed2764131b788eb5aceb3547515d602e91c4bd99bc
RLBA-2023:1246
.NET 6.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet6.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es) and Enhancement(s):
* Update .NET 6.0 to SDK 6.0.115 and Runtime 6.0.15 [rhel-9.1.0.z] (BZ#2174986)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-6.0-source-built-artifacts-6.0.115-1.el9_1.aarch64.rpm
98927ece0f867a40e91d04c9175cda7aac303a7cd7e4d80a28022147ca219886
RLBA-2023:0316
nbdkit bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nbdkit.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Network Block Device (NBD) is a protocol for accessing hard disks and other disk-like devices over the network. The nbdkit toolkit utilizes NBD to create servers with minimal dependencies. The package contains plug-in support for the C and Python programming languages.
Bug Fix:
* nbdkit: error: /home/vddk8.0.0/lib64/libvixDiskLib.so.7: cannot open shared object file: No such file or directory (BZ#2148498)
rocky-linux-9-aarch64-crb-rpms
nbdkit-devel-1.30.8-2.el9_1.aarch64.rpm
fd8e24745d1065ff269c9ae1dee5f77307c108e5b2b520dafb7e409c7dc1b46d
nbdkit-example-plugins-1.30.8-2.el9_1.aarch64.rpm
9abb1acbc71fe75c292a8b92a545d895bd8c7d204f0f6883144c3702daa7323c
nbdkit-srpm-macros-1.30.8-2.el9_1.noarch.rpm
341e29ed559ac990037aaa739d3148e8b7efbacb71528ef4706444f24ab24f69
RLBA-2023:0320
ipa bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ipa.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.
Bug Fix(es) and Enhancement(s):
* vault interoperability with older Rocky Linux systems is broken (BZ#2149274)
* ipa-client-install does not maintain server affinity during installation (BZ#2150270)
rocky-linux-9-aarch64-crb-rpms
python3-ipatests-4.10.0-8.el9_1.noarch.rpm
2f5153a5fdb52d80da4c1461d827ee67ff894532d0c85d9fcf44be5e9901a719
RLBA-2023:2480
libsepol bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsepol.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsepol-static-3.5-1.el9.aarch64.rpm
42f2bb2df1777af64f28877e63439a0538ddea9ff5744d5280ae2671912df08a
RLBA-2022:2321
new packages: hivex
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for hivex.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
hivex-devel-1.3.21-3.el9.aarch64.rpm
1000ad345a370b7ba03ab8ebc1223ec926ad1664293fdb348b4d25128272ca56
ocaml-hivex-1.3.21-3.el9.aarch64.rpm
6f0ee55a9a96e1b6d9d8ce639673571385bc03f0e368b89ef712c9737a8c1cac
ocaml-hivex-devel-1.3.21-3.el9.aarch64.rpm
807afcf1e72a6b33c1cdf2163b602995c27822e515deef23c82a762687e99a93
python3-hivex-1.3.21-3.el9.aarch64.rpm
b3250fe89c7f2afc86de2b129f2e263aaae9145556418cebc9a2887c0a5a8412
ruby-hivex-1.3.21-3.el9.aarch64.rpm
0db61f29a469edf522a525a19e43228f71b63fe0d6cec96b26d93fc398e57847
RLBA-2022:2343
new packages: mutter
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for mutter.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
mutter-devel-40.9-10.el9_1.aarch64.rpm
b63a2e8644ee10e1f2467ed4bf526733f74eba968d4d41445861b651c27a300f
RLBA-2022:2400
new packages: libjpeg-turbo
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libjpeg-turbo.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
turbojpeg-2.0.90-5.el9.aarch64.rpm
0c09f7db5e80becfe99bd64eb05e5a6c570ad66890903c71bdf1b8af86440d79
turbojpeg-devel-2.0.90-5.el9.aarch64.rpm
63c9ad031f08aed106501ffafc4ee784782e9774767c8436c79db4bf1924b8a1
RLBA-2022:2402
new packages: ibus
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ibus.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ibus-devel-1.5.25-2.el9.rocky.0.1.aarch64.rpm
c1408bbb479399a40054cc8f88314af76ddb2c726a145da2be6e5598e0b1cb76
ibus-devel-docs-1.5.25-2.el9.rocky.0.1.noarch.rpm
c0d02d296b1aa2728924a81b223bb37aa249d57101648b9dc3d2b47c518b9ce2
RLBA-2022:2413
new packages: udisks2
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for udisks2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libudisks2-devel-2.9.4-3.el9.aarch64.rpm
b12779e3a5e06de46d82d611aa476ca22d78d96ae9d267c833b14bbc85e100cf
RLBA-2022:2420
new packages: createrepo_c
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for createrepo_c.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
createrepo_c-devel-0.17.7-4.el9_0.aarch64.rpm
033e1f1b0aa7be78ae69cd29c202258f74829ec015117d68df5c86f16fc7757d
RLBA-2022:2445
new packages: maven
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for javapackages-tools, maven.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
javapackages-generators-6.0.0-3.el9.noarch.rpm
317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30
javapackages-local-6.0.0-3.el9.noarch.rpm
8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8
maven-local-6.0.0-3.el9.noarch.rpm
1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878
python3-javapackages-6.0.0-3.el9.noarch.rpm
899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2
RLBA-2022:2466
new packages: libecpg
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libecpg.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libecpg-devel-13.5-1.el9.aarch64.rpm
512a5bcacbdd2855e8bc450b7fece1ded81814d6ffe5355e4074fa91418981bd
RLBA-2022:2480
new packages: texlive
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for texlive.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
texlive-gnu-freefont-20200406-25.el9.noarch.rpm
70371ec649772c941a33208d8932379d07d09884e01786a091e208ac62a17aae
texlive-lib-devel-20200406-25.el9.aarch64.rpm
84a963e3c4f5c8a61679b13a505619ae5c37d938a4848ccae085a444325f3ccc
RLBA-2022:2496
new packages: opencsd
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for opencsd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
opencsd-devel-1.2.0-2.el9.aarch64.rpm
86e3a01294fda19d75d1fd2aaef63a18641c684aa3b8a3128b710cf07a525416
RLBA-2022:2532
new packages: libdecor
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libdecor.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libdecor-devel-0.1.0-3.el9.aarch64.rpm
4a6ac491ceb58fbace6e054c99ec213f9c883bba55b293d34d20fdaaaeef19ca
RLBA-2023:2489
librepo bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for librepo.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
librepo-devel-1.14.5-1.el9.aarch64.rpm
a61f0ee7326a32151e970da46bf071ba449399692dcb9aaddbea55b667a76a99
RLBA-2022:2547
new packages: SDL2
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for SDL2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
SDL2-static-2.0.20-2.el9.aarch64.rpm
3074dc2a6419e3ec8ff9fc6f1aba0a3312c33576bbc2233e47811706baadd47f
RLBA-2022:2564
new packages: ghostscript
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ghostscript.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libgs-devel-9.54.0-7.el9.aarch64.rpm
e00025e4ba4759de304918321a821d8003b96a2db8362c6e4b59e8b132a7cb03
RLBA-2022:2571
new packages: geoclue2
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for geoclue2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
geoclue2-demos-2.5.7-5.el9.aarch64.rpm
822a2cc5b5dcfa857ae4fc44456a5afa4364a240eac53653ed517047ec862f24
geoclue2-devel-2.5.7-5.el9.aarch64.rpm
0b001b30ef84e94a1abad6c4f2ec3438724d4480e5c630dc54d9855d03ee80d3
RLBA-2022:2578
new packages: graphviz
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for graphviz.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
graphviz-devel-2.44.0-25.el9.aarch64.rpm
85619e1ca081356613d1c18adf4b270b934e556089924a80e67ca0d5ba42ba05
RLBA-2022:2579
new packages: libnsl2
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for slapi-nis, libnsl2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnsl2-devel-2.0.0-1.el9.aarch64.rpm
1403640e618e485b81d71e725c7917992fd078f2db120aefffe1720bd7b137d0
RLBA-2022:2589
new packages: libtool
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtool.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtool-ltdl-devel-2.4.6-45.el9.aarch64.rpm
88549e5da08c623313323d77a01edb5a0d55fe52d8fa58d26fc824ad1cdece7b
RLBA-2022:2600
new packages: OpenIPMI
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for OpenIPMI.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
OpenIPMI-devel-2.0.32-3.el9.aarch64.rpm
36446c13df354d78278e81576269f88dd034a27b8a47c3df4582f6e3f96181d2
RLBA-2022:2616
new packages: gsl
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gsl.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gsl-devel-2.6-7.el9.aarch64.rpm
24fc361650a83474da76ed400b6d73ed1f915ebf38e6216c70e71e49391fa0b5
RLBA-2022:2624
new packages: freeipmi
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for freeipmi.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
freeipmi-devel-1.6.9-1.el9.aarch64.rpm
69a6ae406eeff1313d1cf6ec84bb4e3e344b17a7c373c2a8c291383af8786c10
RLBA-2022:2631
new packages: libburn
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libburn.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libburn-devel-1.5.4-4.el9.aarch64.rpm
de60433c139cbc2e4939e08cbf907582df2d224eba23fbfcf97349fd65b703d5
RLBA-2022:2672
new packages: varnish
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for varnish.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
varnish-devel-6.6.2-2.el9_1.1.aarch64.rpm
6aecc646ff7854945a799cf7614e202096aeb71644b38d244d391e0fb7eb89f2
RLBA-2022:2681
new packages: zziplib
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for zziplib.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
zziplib-devel-0.13.71-9.el9.aarch64.rpm
1e89d6f5241d197ddb5b7f4a91c1c82d0a4928abc8edb60f3ab9610bb7ce2a4e
RLBA-2022:2682
new packages: protobuf-c
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for protobuf-c.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
protobuf-c-compiler-1.3.3-12.el9.aarch64.rpm
0bc397b9f0b8857be4d5343145bcfbc04980a67f3e076ab9adcec1ec166bf803
protobuf-c-devel-1.3.3-12.el9.aarch64.rpm
840520e9c9508da5f049775d11e6cbff79ff21bf0cbc7ff76f5aa7edd5a77570
RLBA-2022:2684
new packages: flexiblas
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for flexiblas.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
flexiblas-devel-3.0.4-8.el9.aarch64.rpm
4b12e0a2f8cf09092a63a317dbf2b0cec6a0b13bb9d88912414c8ac3c6096a4d
flexiblas-netlib64-3.0.4-8.el9.aarch64.rpm
f907848e3f9d4ea3f5fb5c970f1521831aac302465e47f09683432983ace73e7
flexiblas-openblas-openmp64-3.0.4-8.el9.aarch64.rpm
01ff831bef56d4654083a59f3312cb817cc04e78c674e124789be73959dd8e41
RLBA-2022:2687
new packages: xorg-x11-drv-wacom
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for xorg-x11-drv-wacom.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xorg-x11-drv-wacom-devel-1.0.0-1.el9.aarch64.rpm
b537e5b073200c585087e1259fb116405765f2616a0ad1f1cf03b3e048a9d312
RLBA-2022:2688
new packages: openblas
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for openblas.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
openblas-devel-0.3.15-3.el9.aarch64.rpm
8878261848bdbc17bb0b7689651acc117c4202f94fa47eedeed564bc5c051347
openblas-openmp64_-0.3.15-3.el9.aarch64.rpm
46092fdbda9def956eaea9955e358ede474b2a17c426aac3da179e81d35f450d
openblas-openmp64-0.3.15-3.el9.aarch64.rpm
a26d72dc934d857daee95512b9370dd96addb2f6d1c6980e700b0f53f62915cd
openblas-serial64_-0.3.15-3.el9.aarch64.rpm
1ce6907f7bacdc243135a1840b8bfd65c822193779055d6606d0b70ad6b6372f
openblas-serial64-0.3.15-3.el9.aarch64.rpm
56368b3cb3502b91d79f4b93204cfe3d82ea05aa10379159b23e3542e2927cf4
openblas-static-0.3.15-3.el9.aarch64.rpm
6fdfb9685251d7de67ca2c8576600bd1883d8914d76e305d317a29da5ac04b65
openblas-threads-0.3.15-3.el9.aarch64.rpm
8c8b0253535dc62af63a993145487a712203601b91845baea18dcb092ce250f3
openblas-threads64_-0.3.15-3.el9.aarch64.rpm
7a58726891d025d0c7b24410f027af39d2d895506b9c66ebb1433fdee0765cd9
openblas-threads64-0.3.15-3.el9.aarch64.rpm
c2eda7cc357a74b06458fea32ecc09c65cc6bccbd8a9a40bd1384ae835c724ea
RLBA-2022:2695
new packages: libsndfile
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsndfile.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsndfile-devel-1.0.31-7.el9.aarch64.rpm
e709abce3c4b421fde35823ce6b76374c5580e2405c603728a6f7684709b7a1d
RLBA-2022:2710
new packages: PackageKit
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for PackageKit.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
PackageKit-glib-devel-1.2.4-2.el9.aarch64.rpm
ac0383b7c6fe1836abf246d150599e04c6429312615dbd4cce62dae079ec119f
RLBA-2022:2724
new packages: antlr
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for antlr.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
antlr-C++-2.7.7-68.el9.aarch64.rpm
64c2a169c893655f4c9b185cdb22a791015943ffd001fa002403962e0a16a1ef
RLBA-2022:2756
new packages: byte-buddy
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for byte-buddy.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
byte-buddy-agent-1.10.20-5.el9.noarch.rpm
935078f879e607a466cc92b91d0c66cb251f49f41d00ed09bba8b1956343871d
RLBA-2022:2775
new packages: colord
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for colord.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
colord-devel-1.4.5-4.el9.aarch64.rpm
db2ac9de2e627578f298df8506183adeb8028fa2deb2490cc84cdf12177aa9cb
colord-devel-docs-1.4.5-4.el9.noarch.rpm
f0e687a0dd5bb9274d913228d27488b3871a2116ef1c38331baf315e7a3c8d95
RLBA-2022:2783
new packages: cups-filters
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for cups-filters.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
cups-filters-devel-1.28.7-10.el9.aarch64.rpm
a126d265cf327f9070475cc15e7e24c6d056727503a32371574623502bf02db0
RLBA-2022:2810
new packages: fftw
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for fftw.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
fftw-doc-3.3.8-12.el9.noarch.rpm
93eb256ae6969eb9fb1424fcd601e19f63fcd279b6a96c8974b3808c63c75a62
RLBA-2022:2869
new packages: google-noto-cjk-fonts
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for google-noto-cjk-fonts.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
google-noto-sans-cjk-jp-fonts-20201206-4.el9.noarch.rpm
c68de2962092861c2fea9e284bb877f2e26f8e17f04c6aa66fe9b217753e590f
RLBA-2022:2882
new packages: gstreamer1-plugins-bad-free
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gstreamer1-plugins-bad-free.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gstreamer1-plugins-bad-free-devel-1.18.4-5.el9.aarch64.rpm
20540aabe895797deaf8ba392ade58b6a865192ddda93faada6e90b05239a953
RLBA-2022:3101
new packages: jose
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for jose.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libjose-devel-11-3.el9.aarch64.rpm
bcb56e16fd400abde0ead3003f274138e2581a4a2b5daa3c66d1d3f992555aec
RLBA-2022:3119
new packages: lapack
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for lapack.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
blas64_-3.9.0-8.el9.aarch64.rpm
451cddd3d399c9025ec7d6e38baafd5afcac82bfb6d20f52f53078450198f199
blas-devel-3.9.0-8.el9.aarch64.rpm
35602e6858bbc2158f4cd586339913e198e9449696c30c2c8fa025438d00bc94
lapack64_-3.9.0-8.el9.aarch64.rpm
9a6fce0825e2c44dca3d21cd866b689b5cc0e6733ab5a3d54f0fec693e7cd921
lapack-devel-3.9.0-8.el9.aarch64.rpm
b412570e7c6be25ccd34ba2adb6837429231ccb7477ef7f54ed75d92b47e41ec
lapack-static-3.9.0-8.el9.aarch64.rpm
f88d90b5f290a55822af51458ce1fcbaf491f27d7dda8910ef93cd34224701a9
RLBA-2022:3120
new packages: lasso
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for lasso.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
lasso-devel-2.7.0-8.el9.aarch64.rpm
da3a3902d0f88cc7d5a415179efa8ca3f8004d8d366f916f1b66099c13c7caaf
RLBA-2022:3767
new packages: sendmail
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sendmail.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
sendmail-milter-8.16.1-10.el9.aarch64.rpm
7321aa21682878b531f457b44fa756ac1e829ec3a9df5b5af1ad428d801fbccf
sendmail-milter-devel-8.16.1-10.el9.aarch64.rpm
583d16a358a0fe6f4e4b1f282aaad4c920901420763cd40b20a8adfef59715af
RLBA-2022:3154
new packages: libappstream-glib
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libappstream-glib.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libappstream-glib-devel-0.7.18-4.el9.aarch64.rpm
ddf28963add03e22e80a4dc1a67c45164ce5defda94ef1db300de54d395b49b9
RLBA-2022:3211
new packages: libmaxminddb
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libmaxminddb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libmaxminddb-devel-1.5.2-3.el9.aarch64.rpm
23e6a95a15ed6ec8d60a4d9b988d740dc7edadaf7e6591bba4b66e35f314583e
RLBA-2022:3213
new packages: libmicrohttpd
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libmicrohttpd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libmicrohttpd-devel-0.9.72-4.el9.aarch64.rpm
2d81331282644de607098d507ac768d9456a933493e09987e5e9405b1f907feb
libmicrohttpd-doc-0.9.72-4.el9.noarch.rpm
5c3003cb4fc9ccd2d5f272605bfbac9a4336e1a7a86a139906ec32bc713810f6
RLBA-2022:3218
new packages: libnet
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnet.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnet-devel-1.2-6.el9.aarch64.rpm
536e881bc3af9cf664ab25326b0d23b9e2ba0e8a8d3b91924bf175c2545a066e
RLBA-2022:3232
new packages: libpfm
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libpfm.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python3-libpfm-4.11.0-6.el9.aarch64.rpm
24608a8546f2e354718f2918ffe52a317dadd6e44a089c53b224be5e5c859415
RLBA-2022:3237
new packages: librabbitmq
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for librabbitmq.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
librabbitmq-devel-0.11.0-5.el9.aarch64.rpm
6b8debbd7cdb8663785a85c755d5a5e4785368e0671ce1daeecdd98ced536fc9
RLBA-2022:3251
new packages: libsrtp
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsrtp.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsrtp-devel-2.3.0-7.el9.aarch64.rpm
18a402aed4f18ee2a86ce811ca3229606442239950cb4b2f0adc447ec33cb3c7
RLBA-2022:3260
new packages: libvdpau
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libvdpau.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libvdpau-devel-1.4-6.el9.aarch64.rpm
f08048afc28127cc509cebf506d2dc42ab6dc2d01fec6bbdb7ea770ec6ce4ebb
RLBA-2022:3267
new packages: libvpx
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libvpx.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libvpx-devel-1.9.0-5.el9.aarch64.rpm
2d53499f6f88fb1d8d58a7454521b74bb1c0d8585cf11e31287b758d8d963274
RLBA-2022:3280
new packages: libzip
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libzip.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libzip-devel-1.7.3-7.el9.aarch64.rpm
79148b95900c7945d8ba952a3f3c46c9c234376b8ceb1d413d1c713f2bdf0715
RLBA-2022:3341
new packages: mpg123
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for mpg123.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
mpg123-devel-1.26.2-5.el9.aarch64.rpm
b4c0935d6eb82b4e0e0ce4b335386bb1df7550a6716a932beb6a78530f8e3b15
RLBA-2023:2514
sssd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sssd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsss_nss_idmap-devel-2.8.2-2.el9.aarch64.rpm
8f9ccb753854d9073f7b9e9508353489effae337951c816c8e7e2ef320703be3
RLBA-2022:3391
new packages: openexr
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for openexr.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
openexr-devel-3.1.1-2.el9.aarch64.rpm
0960a0eb8c4fa9f3e0f6c0b0460703e43803b0b0100c06e2132c9fbcdf4d864f
RLBA-2022:3397
new packages: openwsman
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for openwsman.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libwsman-devel-2.6.8-22.el9.aarch64.rpm
161d43f437e66b0eb80b1ed089c7641b271a18e74c2273cd939e4b8192ff6a73
openwsman-client-2.6.8-22.el9.aarch64.rpm
17f0c84fffd0dc94824604848e5e274762da6428fea7dd2be3e1e086eb5f3e45
RLBA-2022:3588
new packages: perl-Tk
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for perl-Tk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
perl-Tk-devel-804.035-7.el9.aarch64.rpm
0c7d7f711b51f80edf0449beb0f87dfcfc2e8c206f3514ec03f28882e78d5a62
RLBA-2022:3634
new packages: plexus-containers
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for plexus-containers.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
plexus-containers-container-default-2.1.0-9.el9.noarch.rpm
f62fa55d0e98d2db0874892c53483db149a758a2a3d64ae3eee23fafce561023
RLBA-2022:3640
new packages: pmix
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for pmix.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
pmix-pmi-devel-3.2.3-3.el9.aarch64.rpm
2349158b4a13a48d07f8cfc2a0266b1929dddfe44e0d702ef841f0d4005dc74a
RLBA-2022:3818
new packages: tpm2-abrmd
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for tpm2-abrmd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
tpm2-abrmd-devel-2.4.0-3.el9.aarch64.rpm
eb34a28ee7586e46490a8398bc2a591c4a8a9cc00b53af622d554e6c2a22d34f
RLBA-2022:3839
new packages: volume_key
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for volume_key.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
volume_key-devel-0.3.12-15.el9.aarch64.rpm
77459c33be602c5c0c4d41a633223cf2f9d0acf6f4862e49433638e09b04ba8e
RLBA-2022:3855
new packages: xcb-util-image
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for xcb-util-image.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xcb-util-image-devel-0.4.0-19.el9.aarch64.rpm
6ef21f61847dad6271273a9d4cfab190a86bca557e97b4d04162746143d9ef39
RLBA-2022:3857
new packages: xcb-util-renderutil
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for xcb-util-renderutil.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xcb-util-renderutil-devel-0.3.9-20.el9.aarch64.rpm
82f712eef408d9a7cf23df8c82c98359320dd902793f5df71331fe0fbd425b8d
RLBA-2022:3869
new packages: xmlsec1
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for xmlsec1.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xmlsec1-devel-1.2.29-9.el9.aarch64.rpm
173bf7b0b92fd87a1ba2a9de8cb7393970990e79024ccc4985b4588b28358132
xmlsec1-gcrypt-1.2.29-9.el9.aarch64.rpm
bbcf0e81746775754d83c3f06b59b85dcede2324085a8f487a9acbb9b3f52ad7
xmlsec1-gnutls-1.2.29-9.el9.aarch64.rpm
76784a298ad5c53ebca60c66969ad00049d793cf214c60d2f2bb9ce588221485
xmlsec1-gnutls-devel-1.2.29-9.el9.aarch64.rpm
23867d3938ab3d16a854caaee7a20b8226e245bcf48126d553704d612c3c5086
xmlsec1-openssl-devel-1.2.29-9.el9.aarch64.rpm
732db3fe3592e36b933dcab625764bb6197e4a26be755f2c026fe13b6ee0fc66
RLBA-2022:3872
new packages: xorg-x11-drv-libinput
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for xorg-x11-drv-libinput.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xorg-x11-drv-libinput-devel-1.0.1-3.el9.aarch64.rpm
57f5bbd02238f327d96185695b084881968f94e63e1c409a8a6c6dfd514adfac
RLBA-2022:3883
new packages: yelp
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for yelp.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
yelp-devel-40.3-2.el9.aarch64.rpm
733fae43d7ad85ad322ebd461702699a0ea7795468bef4e14e4791ebb82ac96e
RLBA-2022:3906
new packages: ModemManager
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ModemManager.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ModemManager-devel-1.18.2-3.el9.aarch64.rpm
1fe67e5b70614609813a9dbddee95ae0958a738d6c4200afdd05ead439b15093
ModemManager-glib-devel-1.18.2-3.el9.aarch64.rpm
c5a24d1c988edd58c330f3cf363409f75affab52c159d424599bd6e9f2c1fea2
RLBA-2022:3931
new packages: glib2
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for glib2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
glib2-static-2.68.4-5.el9.aarch64.rpm
278d682e5a196a09bbdd9467edec31038f713272960286276a10a9540971e301
RLBA-2022:3935
new packages: fuse
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for fuse.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
fuse-devel-2.9.9-15.el9.aarch64.rpm
6bedd93d92c52b432a3c0721eb75a1a2e8f270738e1592f62c5a8ae898eaa336
RLBA-2022:3938
new packages: libxmlb
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libxmlb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libxmlb-devel-0.3.3-1.el9.aarch64.rpm
44d261431d269f3e0f57fffaba6bc38c0e5e83269b7a7b5b133a9f6b6ed751ca
RLBA-2022:3939
new packages: libgusb
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libgusb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libgusb-devel-0.3.8-1.el9.aarch64.rpm
96f8508367bc21a71db00436f70c7252c335299d700af00b938315704e91ca53
RLBA-2022:3940
new packages: gobject-introspection
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gobject-introspection.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gobject-introspection-devel-1.68.0-10.el9.aarch64.rpm
fe01b4f18764d52fb0e32874eeb7183e8169f2fba918a28bf14974c990efd3d9
RLEA-2022:3950
new packages: RDMA stack
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for mpitests, ucx, rdma-core, mstflint, libvma, libpsm2, fabtests, openmpi, perftest, eth-tools, mpich, libfabric.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python3-mpich-3.4.2-1.el9.aarch64.rpm
2c8b8183141106518a29a86143840dba4001eb03462457343378a9ed24edc343
python3-openmpi-4.1.1-5.el9.aarch64.rpm
1dae40124be5836fc7fdd5142d2d844c911a9ffc39c9489953c83d335035b8d9
RLBA-2022:3964
new packages: kmod
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for kmod.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
kmod-devel-28-7.el9.aarch64.rpm
ad6e2b995bba79ab33e55135bd4edc91eb4f07862a3868d0970c2da4b5e4026d
RLBA-2022:3983
new packages: pcsc-lite
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for pcsc-lite.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
pcsc-lite-devel-1.9.4-1.el9.aarch64.rpm
7f09b1875311f47a0e9520110050dbfdd286914e08d50953ab37122cbb8188ff
RLEA-2022:3986
new packages: ipset
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ipset.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ipset-devel-7.11-6.el9.aarch64.rpm
464e3e352999d8d24f68c0c57bea04077023bc83008074e331b24239b391fce0
RLBA-2022:3987
new packages: libdb
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libdb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libdb-cxx-5.3.28-53.el9.aarch64.rpm
2a143edbbf1fd2c1cf1efcd42ecfede84b9bcd2c2c389c8b81dd15085a217495
libdb-cxx-devel-5.3.28-53.el9.aarch64.rpm
7ddfedc21b66b95ac74315f983926936c4e5a793c0ef0eabe3a5a4b1c5e43417
libdb-devel-doc-5.3.28-53.el9.noarch.rpm
b743f2065d46a14b686c79f9d02b49d149ce3519d7921192f324a886852ca4da
libdb-sql-5.3.28-53.el9.aarch64.rpm
a01e21fc94924541ebe73dd2a75945291a0a2f5dd6b3103cc69dedd78c3162fd
libdb-sql-devel-5.3.28-53.el9.aarch64.rpm
ee8f142192baac07e310eeb9dd442cdb05956baa58c2568c206e9e6eceee1ee8
RLBA-2022:3990
new packages: trace-cmd
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for trace-cmd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtracecmd-devel-0-9.el9.aarch64.rpm
984a0cd9cf93a9690fb14328369c80145dd10f26bdabace12790a4f66aa9503c
RLBA-2023:2549
libbpf bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libbpf.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libbpf-devel-1.0.0-2.el9.aarch64.rpm
59bf1f602173defda3c6bb5bab07854f4df3d9084121db6888ea261e001975d1
libbpf-static-1.0.0-2.el9.aarch64.rpm
dde2fffe70195d9080679405b42e5f76fabd79eb0e64ba24529f26f21669043f
RLBA-2022:4008
new packages: snappy
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for snappy.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
snappy-devel-1.1.8-8.el9.aarch64.rpm
5a2e128482e0bd70641fb5734d70213c03dcec1c8aef955328f18d9efa519acd
RLBA-2022:4011
new packages: libtalloc
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtalloc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtalloc-devel-2.3.3-1.el9.aarch64.rpm
f62ab82d4f893dd8e8a8768af547c429f0b461cddf762ee453b13ea87bcc15f6
RLEA-2022:4019
new packages: ima-evm-utils
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ima-evm-utils.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ima-evm-utils-devel-1.4-4.el9.aarch64.rpm
ddafbe1a3dd1212e4d4ba9643a61844ee0e66312da5276432a182bfe87719645
RLBA-2022:4031
new packages: libtraceevent
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtraceevent.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtraceevent-devel-1.1.1-8.el9.aarch64.rpm
0788d05b6005414278dd2d097414b6f36778d448a0ba08e728a9c2a2c0750db1
RLBA-2022:4034
new packages: libtracefs
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtracefs.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtracefs-devel-1.0.2-7.el9.aarch64.rpm
e0ccf68f513e1d6514f05db1cb0c267c631f1489d7d45d088573a8462b255d0e
RLBA-2022:4050
new packages: efivar
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for efivar.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
efivar-devel-38-2.el9.aarch64.rpm
1720a6938e1f8eee99017fae30506726c6db2354487fdb17b4004143d43023c3
RLBA-2023:2558
libselinux bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libselinux.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libselinux-static-3.5-1.el9.aarch64.rpm
fd50a8e1331e38597f29e20788784e9586819d9639680eed5a96c2ac19acdd52
RLBA-2022:4091
new packages: avahi
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for avahi.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
avahi-compat-howl-0.8-12.el9.aarch64.rpm
dd20371ba6e0346f84ef7ba50797dda280cb3c802f940d0912f81192c770f71d
avahi-compat-howl-devel-0.8-12.el9.aarch64.rpm
c5b20cfe6a9262ccf89131fe2a178ac948df53ec1e7e14436be0537e74fdca81
avahi-compat-libdns_sd-0.8-12.el9.aarch64.rpm
4bd8a2973c17eb5916bafc977b676d92b5dd1196d86cffe7994fb3374a9bead6
avahi-compat-libdns_sd-devel-0.8-12.el9.aarch64.rpm
22894092eeba8b6fbab255de788393864212169326bbb9d575851741561178a6
avahi-devel-0.8-12.el9.aarch64.rpm
9f923bb904376a07dc967b3d90ceca4d72c7e78cdb025147d96bd88bb9ba25bf
RLBA-2022:4125
new packages: gdbm
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gdbm.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gdbm-1.19-4.el9.aarch64.rpm
413de3ee07befc30e9396651dd3b88bc7d0b5cdbc6935f8546ecf32baf2125c8
gdbm-devel-1.19-4.el9.aarch64.rpm
399d5205373f8eddb398f9cb03424ea264055d84d5c0fe8ce918ba670567d19a
RLBA-2022:4160
new packages: libfido2
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libfido2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libfido2-devel-1.6.0-7.el9.aarch64.rpm
b88aa35ab7ce8f87d2b80ea6d2981c9ed34811275916c6409e6c6ce51117c9ea
RLBA-2022:4166
new packages: libmnl
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libmnl.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libmnl-devel-1.0.4-15.el9.aarch64.rpm
537319e8a7e149ce67db46c7cc67d7884174766bbbdbcbf3a61478af32b10a1b
RLBA-2022:4169
new packages: libnetfilter_conntrack
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnetfilter_conntrack.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnetfilter_conntrack-devel-1.0.8-4.el9.aarch64.rpm
febdd3e936a5c1da24c6fd89f1968630d1ce9d4480fdc20483e9ddd4afe9846c
RLBA-2022:4170
new packages: libnfnetlink
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnfnetlink.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnfnetlink-devel-1.0.1-21.el9.aarch64.rpm
605ee0d54953a4b3712abad47c4e412fb97b2255b657b4e8a491d0b9d80c85f9
RLBA-2022:4174
new packages: libpciaccess
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libpciaccess.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libpciaccess-devel-0.16-6.el9.aarch64.rpm
85144d14a9e3fef1eba1078143f50a0d165d58bd03f212353e63d643f580af07
RLBA-2022:4181
new packages: librhsm
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for librhsm.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
librhsm-devel-0.0.3-7.el9.aarch64.rpm
a54c20f5dd9a76eb633106f5740f2e75fb23ad5597aa57911209f9cb16ed8690
RLBA-2022:4203
new packages: lua
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for lua.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
lua-devel-5.4.2-4.el9_0.3.aarch64.rpm
126101238e19657c9c15bc6d8e14c36b385c19369d02d62f8ba9b1ff60405adc
RLBA-2022:4225
new packages: nghttp2
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nghttp2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnghttp2-devel-1.43.0-5.el9.aarch64.rpm
f03cd5f7c042ea047e2bcac1ecbde07139eeec273abad8e0680940d672fd3858
nghttp2-1.43.0-5.el9.aarch64.rpm
5e1846967e2aa4e514cf4bc424539ee1f0bef739815329ffdb1e8edc8b00f8e2
RLBA-2022:4235
new packages: pcre
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for pcre.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
pcre-static-8.44-3.el9.3.aarch64.rpm
a4b8547cb47d5d9c44205415756f1c61b5ccc76de42301fa49c24ab231457f8d
RLBA-2022:4247
new packages: python-dateutil
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for python-dateutil.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python-dateutil-doc-2.8.1-6.el9.noarch.rpm
57077af0d69a9a75a996c43ef30010623b7ececc4679ef0fe1d310a0135ef879
RLBA-2022:4258
new packages: quota
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for quota.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
quota-devel-4.06-6.el9.aarch64.rpm
bafde90c487a785150a617b9d8389c71488b574c3a105d3e05c5aaa23f7ef801
RLEA-2022:4570
new packages: libreoffice:flatpak
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for zaf, hyphen-uk, libpagemaker, hyphen-ca, hunspell-et, hyphen-eu, hyphen-ga, libvisio, raptor2, hunspell-ta, mythes-nl, hunspell-lt, hunspell-sk, ongres-scram, hunspell-hu, libshout, hunspell-nso, poppler, hunspell-nl, hunspell-hi, openjpeg2, libabw, hunspell-es, hunspell-sv, hyphen-sv, hyphen-te, google-carlito-fonts, hunspell-br, hunspell-ml, hyphen-pl, hunspell-pl, hyphen-el, hyphen-ru, hunspell-bg, hyphen-es, mythes-ro, hyphen-as, libloader, libmspub, dconf, mythes-en, libreoffice-voikko, hunspell-de, hunspell-id, hunspell-eu, libexttextcat, hyphen-da, pentaho-libxml, redland, hunspell-kn, libcmis, libepubgen, libodfgen, hunspell-fr, hunspell-th, hunspell-zu, xmlsec1, libnumbertext, hyphen-gu, libreoffice, hyphen-nl, hyphen-ro, libfontenc, librevenge, libwpg, hyphen-it, mythes-it, libmwaw, ttmkfdir, postgresql-jdbc, hunspell-sr, hunspell-ga, hunspell-ro, openoffice-lv, lksctp-tools, mythes-sk, mythes-cs, hyphen-cy, libformula, liblayout, clucene, hunspell-hr, mythes-ru, hunspell-gl, hyphen-ta, mythes-da, hunspell-tn, libqxp, lpsolve, hunspell-gu, mythes-pt, mythes-sl, libetonyek, hyphen-lt, google-noto-fonts, hunspell-ar, neon, librtas, hyphen-sk, hunspell-cy, boost, hunspell-ko, hunspell-si, flute, hunspell-pt, hyphen-fa, libzmf, hunspell-nr, hunspell-pa, hunspell-ve, mythes-ca, sac, hunspell-it, hyphen-bg, gstreamer1-plugins-good, openoffice.org-dict-cs_CZ, hyphen-gl, hyphen-hu, taglib, bitmap-fonts, libwps, hyphen-de, libbase, hunspell-af, hunspell-or, mythes-ga, xorg-x11-fonts, hunspell-no, hunspell-kk, libvoikko, mythes-sv, hunspell-el, hyphen-id, hunspell-da, libwpd, hunspell-ss, hunspell-ts, hyphen-bn, hyphen-sl, libeot, mythes-fr, hunspell-te, mythes-pl, pentaho-reporting-flow-engine, mythes-de, mythes-es, hunspell-as, hunspell-fa, hyphen, hunspell-uk, mythes-el, hyphen-hi, mythes-hu, hyphen-or, hyphen-mr, hunspell-xh, hyphen-pa, libserializer, poppler-data, hunspell-mr, hspell, hunspell-st, hunspell-ru, libfreehand, hunspell-ca, hyphen-fr, hunspell-bn, gstreamer1-plugins-base, twolame, libcdr, Box2D, liborcus, hyphen-ml, hunspell-sl, javapackages-tools, librepository, libstaroffice, libfonts, v4l-utils, rasqal, voikko-fi, hyphen-kn, mythes-uk, mythes-bg, hyphen-pt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
clucene-core-devel-2.3.3.4-42.20130812.e8e3d20git.el9.aarch64.rpm
407136bfdb2c11ce5109e5f9128d5eb7d818448b473703d8925e0ca9222a8d8f
dconf-devel-0.40.0-6.el9.aarch64.rpm
27d14f0cd3ae3269e2a9e7a7a66ef68ced5f1d3fa4193ad6440e60c9e27dc6c4
javapackages-generators-6.0.0-3.el9.noarch.rpm
317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30
javapackages-local-6.0.0-3.el9.noarch.rpm
8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8
libeot-0.01-18.el9.aarch64.rpm
6dcd26e7b498b9a3c2078f56b45cfd27f834ab1d4210a791aa79a05c8574638d
libetonyek-devel-0.1.10-2.el9.aarch64.rpm
3c8b67169ab92eff65836175033a57ac3229d0d4bd1586ff9cfaf4ce544ac01f
libfontenc-devel-1.1.3-17.el9.aarch64.rpm
631c347fe7a67e2621617d249289b1ea5071a1af64c91f1091df0157141c67a3
libodfgen-devel-0.1.8-4.el9.aarch64.rpm
2906fa4bb807a7423b51aa22d8fa9a887192c3f6ca068846a1b05db9868b146e
librevenge-devel-0.0.4-22.el9.aarch64.rpm
c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4
libshout-devel-2.4.3-7.el9.aarch64.rpm
5e1af2e46a5301c9f34626483516dcb9c430885952855157f5c14c593f63ab84
libv4l-devel-1.20.0-5.el9.aarch64.rpm
885378d8783da55b5a7a64deb5745f61d5b89b7ac9911faecc4b9205364309bd
libvisio-devel-0.1.7-9.el9.aarch64.rpm
f4bf5d016f918afdc7ee62beee2b83a70657f87d3ff4f11f33cdba50de42bcec
libvoikko-devel-4.3-7.el9.aarch64.rpm
70053a0d076781af4e9847b1d01e24a714bbd1b1f531412b52a1899a1e426521
libwpd-devel-0.10.3-10.el9.aarch64.rpm
d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de
libwpd-doc-0.10.3-10.el9.noarch.rpm
cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4
libwpg-devel-0.3.3-8.el9.aarch64.rpm
ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326
libwpg-doc-0.3.3-8.el9.noarch.rpm
612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0
libwps-devel-0.4.12-4.el9.aarch64.rpm
5f623d9ec9c1ae83ee39cddd18b6ac35d5be99e463abb665946d247d1f5018d3
libwps-doc-0.4.12-4.el9.noarch.rpm
a57cc3f098bec98c980281bf98395ecd53c2f63d364e03fabd653f02ca29a8cf
maven-local-6.0.0-3.el9.noarch.rpm
1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878
neon-devel-0.31.2-11.el9.aarch64.rpm
095a73f8063bdf20163211c8e44ee6284d8b153c3d056240ef8c90404d60fbef
python3-javapackages-6.0.0-3.el9.noarch.rpm
899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2
raptor2-devel-2.0.15-30.el9.aarch64.rpm
74d2f985d35631ff6803faf444eb6e288ca168f46546601c1a4c33f6d50018ea
rasqal-devel-0.9.33-18.el9.aarch64.rpm
428a21bf2f1fff8485f24f87a97fa75c86b4ab791a55e92bead0240cd15804ec
redland-devel-1.0.17-29.el9.aarch64.rpm
20b31c37d1699bda5d3f395d3426a4685b2350ee13386e36ac900fc092363eb7
taglib-devel-1.12-6.el9.aarch64.rpm
302edef8009de60952bbea22d4192bc70db6406445db778ffc8a4b9921def0d7
twolame-devel-0.3.13-19.el9.aarch64.rpm
86ba074c8dabc035c21e7e9842ea4ab318ad15647596fe8782795937a0ce4d98
xmlsec1-devel-1.2.29-9.el9.aarch64.rpm
173bf7b0b92fd87a1ba2a9de8cb7393970990e79024ccc4985b4588b28358132
xmlsec1-gcrypt-1.2.29-9.el9.aarch64.rpm
bbcf0e81746775754d83c3f06b59b85dcede2324085a8f487a9acbb9b3f52ad7
xmlsec1-gnutls-1.2.29-9.el9.aarch64.rpm
76784a298ad5c53ebca60c66969ad00049d793cf214c60d2f2bb9ce588221485
xmlsec1-gnutls-devel-1.2.29-9.el9.aarch64.rpm
23867d3938ab3d16a854caaee7a20b8226e245bcf48126d553704d612c3c5086
xmlsec1-openssl-devel-1.2.29-9.el9.aarch64.rpm
732db3fe3592e36b933dcab625764bb6197e4a26be755f2c026fe13b6ee0fc66
RLBA-2022:4571
new packages: inkscape-flatpak module
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsigc++20, gc, poppler, inkscape, poppler-data, python-scour, libwpd, librevenge, libwpg, pangomm, python-lxml, potrace, gtkmm30, double-conversion, gtkspell3, python-appdirs, numpy.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
double-conversion-devel-3.1.5-6.el9.aarch64.rpm
f08034f3e663e69e81b440998e46e515ab5e2cca4bdbd2cb1467daa9d0405c55
gc-devel-8.0.4-7.el9.aarch64.rpm
01420ab8f632ae57dfce1bcdcedeaef0d2f709338713c3f1fb4d2d74e0d373c2
gtkmm30-devel-3.24.5-1.el9.aarch64.rpm
b48a541a65de3092b2828261b69f139297e04209bd3f87e8b575f147ea527d49
gtkmm30-doc-3.24.5-1.el9.noarch.rpm
abe9d8f8b5cc7a7d8cfa3e70e35cf283930d6cdf18dd0c8254d86cc7a06ed99c
gtkspell3-3.0.10-9.el9.aarch64.rpm
a11b324e2af3998cbb891a215106f455d5640f9083cd1f2c431f77289a9fd1ff
gtkspell3-devel-3.0.10-9.el9.aarch64.rpm
3eafdee78b67ee972a7688baec3b54acf6f67c812a09e7c0bd9246163e757440
librevenge-devel-0.0.4-22.el9.aarch64.rpm
c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4
libsigc++20-devel-2.10.7-2.el9.aarch64.rpm
cc4915b8c5d5678d0f595fed564f4991801594ed670046c7af84d7db666dac22
libsigc++20-doc-2.10.7-2.el9.noarch.rpm
29487250f3f83163d9b2b19379dc1437e3ad90db099286cb698d375effee094b
libwpd-devel-0.10.3-10.el9.aarch64.rpm
d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de
libwpd-doc-0.10.3-10.el9.noarch.rpm
cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4
libwpg-devel-0.3.3-8.el9.aarch64.rpm
ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326
libwpg-doc-0.3.3-8.el9.noarch.rpm
612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0
pangomm-devel-2.46.1-1.el9.aarch64.rpm
293d63cce96944ad2864d805c6fc865b51d09ecf9760aac23de90512963d9097
pangomm-doc-2.46.1-1.el9.noarch.rpm
77ecd2fc1fc2c70f00abf9262894aaa56cbb8d2a8938e862109d8873e6e47607
RLSA-2022:4771
Important: postgresql security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for postgresql.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
PostgreSQL is an advanced object-relational database management system (DBMS).
The following packages have been upgraded to a later upstream version: postgresql (13.7).
Security Fix(es):
* postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox (CVE-2022-1552)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
postgresql-private-devel-13.7-1.el9_0.aarch64.rpm
5412d0c70f4ca556f5d06ab5e6850891b84e021bd9ea0a208dae5d83cee19450
postgresql-server-devel-13.7-1.el9_0.aarch64.rpm
9921e62b1a009972d9f734abd6dbc9d409a9a4f047a42825130cafd16c7cc202
postgresql-test-13.7-1.el9_0.aarch64.rpm
c5279d6b77167cec36498ea11d3bbad413718c3c33feb4bdc523b42d800bc6f0
RLSA-2022:5257
Moderate: libinput security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libinput.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
libinput is a library that handles input devices for display servers and other applications that need to directly deal with input devices.
Security Fix(es):
* libinput: format string vulnerability may lead to privilege escalation (CVE-2022-1215)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libinput-devel-1.19.3-2.el9_0.aarch64.rpm
94f81435a466bfcbb0c450b599f30f5f02ee7d3de8cf3ef467d15cf0b823f1b3
RLBA-2023:2586
ipset bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ipset.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ipset-devel-7.11-8.el9.aarch64.rpm
5bb87c900bfb575bc009c12852e8d38a791c227dea7c4c83f3f0234f8b24d11c
RLBA-2023:2223
anaconda bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for anaconda.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
anaconda-widgets-devel-34.25.2.10-1.el9_2.rocky.0.3.aarch64.rpm
6dea849b4b4ed0095047ffb61a6c3d349eb4bd18bc10134d5b26035813a99275
RLBA-2022:5962
yajl bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for yajl.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator.
* Regular rebuild for 9.0.0.2 (QR) - yajl (BZ#2111628)
rocky-linux-9-aarch64-crb-rpms
yajl-devel-2.1.0-21.el9.aarch64.rpm
5bff3a63b4bd5036cc6578b512181be1062df6c7beb303fd578cb7259b744fb7
RLSA-2022:6585
Moderate: ruby security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for ruby.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
The following packages have been upgraded to a later upstream version: ruby (3.0.4). (BZ#2109428)
Security Fix(es):
* Ruby: Double free in Regexp compilation (CVE-2022-28738)
* Ruby: Buffer overrun in String-to-Float conversion (CVE-2022-28739)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
ruby-doc-3.0.4-160.el9_0.noarch.rpm
c506029c15725b138655537c19ab15429c8b24a61b919f5088ac93c5efdc1645
RLSA-2022:6590
Moderate: mysql security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for mysql.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries.
The following packages have been upgraded to a later upstream version: mysql (8.0.30). (BZ#2122589)
Security Fix(es):
* mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21412, CVE-2022-21414, CVE-2022-21435, CVE-2022-21436, CVE-2022-21437, CVE-2022-21438, CVE-2022-21440, CVE-2022-21452, CVE-2022-21459, CVE-2022-21462, CVE-2022-21478, CVE-2022-21479)
* mysql: Server: DML unspecified vulnerability (CPU Apr 2022) (CVE-2022-21413)
* mysql: Server: Replication unspecified vulnerability (CPU Apr 2022) (CVE-2022-21415)
* mysql: InnoDB multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21417, CVE-2022-21418, CVE-2022-21451, CVE-2022-21423)
* mysql: Server: DDL multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21425, CVE-2022-21444)
* mysql: Server: FTS unspecified vulnerability (CPU Apr 2022) (CVE-2022-21427)
* mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21454)
* mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Jul 2022) (CVE-2022-21455)
* mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21457)
* mysql: Server: Logging unspecified vulnerability (CPU Apr 2022) (CVE-2022-21460)
* mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21509, CVE-2022-21525, CVE-2022-21526, CVE-2022-21527, CVE-2022-21528, CVE-2022-21529, CVE-2022-21530, CVE-2022-21531, CVE-2022-21553, CVE-2022-21556, CVE-2022-21569)
* mysql: Server: Options unspecified vulnerability (CPU Jul 2022) (CVE-2022-21515)
* mysql: InnoDB multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21517, CVE-2022-21537, CVE-2022-21539)
* mysql: Server: Stored Procedure multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21522, CVE-2022-21534)
* mysql: Server: Federated unspecified vulnerability (CPU Jul 2022) (CVE-2022-21547)
* mysql: Server: Security: Encryption unspecified vulnerability (CPU Jul 2022) (CVE-2022-21538)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Default logrotate set to wrong log file (BZ#2122592)
rocky-linux-9-aarch64-crb-rpms
mysql-devel-8.0.30-3.el9_0.aarch64.rpm
9bbe7602c921fb1012de8673e41a23fc23ea9f7cf736d9b2e11d4d652b0a5c49
mysql-libs-8.0.30-3.el9_0.aarch64.rpm
9c9261e4818ab57917a622f9bd55f2bc8b23b191349faebce40a09a0ed157ee5
mysql-test-8.0.30-3.el9_0.aarch64.rpm
7c265994951c89798917a26439b7071c312a321ac3b6373df58a599b4320de9b
RLSA-2022:7090
Important: libksba security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for libksba.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS.
Security Fix(es):
* libksba: integer overflow may lead to remote code execution (CVE-2022-3515)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libksba-devel-1.5.1-5.el9_0.aarch64.rpm
6ecbdb1abb0442b36741379899d6504501699ee02d37728875c5f4bd0f2e8538
RLSA-2022:7329
Moderate: lua security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for lua.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language.
Security Fix(es):
* lua: heap buffer overflow in luaG_errormsg() in ldebug.c due to uncontrolled recursion in error handling (CVE-2022-33099)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
lua-devel-5.4.2-4.el9_0.3.aarch64.rpm
126101238e19657c9c15bc6d8e14c36b385c19369d02d62f8ba9b1ff60405adc
RLBA-2022:2856
new packages: gnome-menus
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gnome-menus.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gnome-menus-devel-3.36.0-8.el9.0.1.aarch64.rpm
3f0439239b432154bb43448472bf689d4b8c88ec28f87ec9ac30849f94eb035f
RLBA-2022:7944
libnbd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnbd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnbd-devel-1.12.6-1.el9.aarch64.rpm
07847a430539e0d97685427d06d4677a7722451781593bf68bb14e0b9c5a3ce5
ocaml-libnbd-1.12.6-1.el9.aarch64.rpm
0443a319fdb14faff769bf930c571ea81d302f8fa04501ebc08d2e023871a477
ocaml-libnbd-devel-1.12.6-1.el9.aarch64.rpm
0bd0b71353e813b860c9a73a4e7520c48f9c061f40b3235ddf164f73fcabcf95
RLBA-2022:7952
flatpak bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for flatpak.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
flatpak-devel-1.12.7-2.el9.aarch64.rpm
844eb8e71febdff9f8da60b81c7001c7c35a0f1521a8cb6fe8d1d0085308c9b5
RLBA-2022:7953
gdm bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gdm.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gdm-devel-40.1-17.el9_1.aarch64.rpm
e7d81a301439810eddc7da37a05c6172837e961cfaded0a1d71feee4bfd20714
gdm-pam-extensions-devel-40.1-17.el9_1.aarch64.rpm
5837393c1b0c64dc2834ea8b3f4a84d7a5d2ed361df033c39ac17cc2134e16ff
RLSA-2022:7958
Low: libguestfs security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Low
An update is available for libguestfs.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libguestfs packages contain a library used for accessing and modifying virtual machine disk images.
Security Fix(es):
* libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libguestfs-devel-1.48.4-2.el9.aarch64.rpm
437e590fb60e055eea4737e40e91538381a063b67721fb4b78bb3f334f1a42c3
libguestfs-gobject-1.48.4-2.el9.aarch64.rpm
fff41093e2f7108666f9ae3578a8d4c664bfc7d80c78d57f97be27bb54791c8a
libguestfs-gobject-devel-1.48.4-2.el9.aarch64.rpm
ba04802ef5a122a3f02680fd0f2d59613399daab3cad68ca9a951d8f34de5e13
libguestfs-man-pages-ja-1.48.4-2.el9.noarch.rpm
ce5bbcb3fe01b5f5e05f39666cfddeb102a532accd3cd71add956bb88cb6c3c5
libguestfs-man-pages-uk-1.48.4-2.el9.noarch.rpm
3942c50c33e5ec41deb55131b8c31e0aecefa48688ca4d5140ab542cfd6de24a
lua-guestfs-1.48.4-2.el9.aarch64.rpm
6b6232908befb54419b4f3dbd87c270592ffaffa8b7e2c256eee5de3886f8c3b
ocaml-libguestfs-1.48.4-2.el9.aarch64.rpm
d413b83fe738c948787bbde37dfc6e0cdaf8fa47c7cd3ade87aaf14e3bd44812
ocaml-libguestfs-devel-1.48.4-2.el9.aarch64.rpm
7eab8c3ed4e8092d19ee48497d3b6092058e1632a785fdfa3fd1d97576e471b2
php-libguestfs-1.48.4-2.el9.aarch64.rpm
14fd6274afd9993b26dca02a3221cb884d5dd466b95a1e9ca5d7b4fb192965cc
ruby-libguestfs-1.48.4-2.el9.aarch64.rpm
faaafe06e45c75f0976030eca4c1fc5cce279c99e48124a3e199d58f9a21b5d8
RLBA-2022:7965
supermin bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for supermin.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
supermin-devel-5.2.1-8.el9.aarch64.rpm
aec12bf39fe17203f52593fb783aac52a8ad0a818d0a3641ac9fa2ef9540bcf1
RLSA-2022:7970
Moderate: protobuf security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for protobuf.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data.
Security Fix(es):
* protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference (CVE-2021-22570)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
protobuf-compiler-3.14.0-13.el9.aarch64.rpm
8231c5feadbf67dbb41c09e1f92e101c62b51efb69992c9c5d495770844c8093
protobuf-devel-3.14.0-13.el9.aarch64.rpm
ef740652326428a2819f84d86c320c366ff0a750996ee74763b6ad55de707ec0
protobuf-lite-devel-3.14.0-13.el9.aarch64.rpm
7e8a2cc266f6b6fc251600dc253e7b2ad2c7bce3505f5233c9b9d0ac45db8797
RLBA-2022:7977
anaconda bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for anaconda.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
anaconda-widgets-devel-34.25.1.14-1.el9.rocky.0.3.aarch64.rpm
9a99ef344623a1de032a27b6cc7f03d5230982eddbd97d5ee0e8f04f28d75255
RLEA-2022:7983
ostree bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ostree.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ostree-devel-2022.5-1.el9.aarch64.rpm
a20d30f4c880d863b873ae9d121c47498f70c008f1362c415fe456685a5a0eb3
RLBA-2022:7985
nautilus bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nautilus.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
nautilus-devel-40.2-9.el9_1.aarch64.rpm
e57e0fa3424d40b3ece2e5dfecb415d12975a167e6cfae2bcc54259d0ea99bbf
RLBA-2022:7994
evolution bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for evolution.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
evolution-devel-3.40.4-6.el9.aarch64.rpm
90bfb3d58bb37051151a605d5365a7b2c6d38ed8ec88272aa9e819098355d3c2
RLSA-2022:8003
Low: libvirt security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Low
An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
The following packages have been upgraded to a later upstream version: libvirt (8.5.0). (BZ#2060313)
Security Fix(es):
* libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service (CVE-2022-0897)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libvirt-devel-8.5.0-7.3.el9_1.aarch64.rpm
7aa2a477b7185171070343da752fa84d48a158621b064677a7781d35f7fe05f0
libvirt-docs-8.5.0-7.3.el9_1.aarch64.rpm
27d253a1a391014ae1d2daf24217849894cab1c407d7f7f5bfff186d81855822
libvirt-lock-sanlock-8.5.0-7.3.el9_1.aarch64.rpm
c5b8351a4fb990e6b3a6eee2332e85bf10d5e0f08683e7b4e272a3729c48d019
RLBA-2022:8006
gjs bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gjs.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gjs-devel-1.68.6-1.el9.aarch64.rpm
6da08b2cd2c52b35c2e85eaebc828cde307844939f34f73ae6ac5770de997ef5
RLBA-2022:8017
augeas bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for augeas.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
augeas-devel-1.13.0-2.el9.aarch64.rpm
2921c77f6f8b1e9de13432ae72020f121dc8cb1c4754e6ccad443f435e289b6e
RLSA-2022:8022
Moderate: qt5 security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for qt5.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Qt5 libraries packages provide Qt 5, version 5 of the Qt cross-platform application framework.
Security Fix(es):
* qt: QProcess could execute a binary from the current working directory when not found in the PATH (CVE-2022-25255)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
qt5-devel-5.15.3-1.el9.noarch.rpm
0c7ecd814cae18753f7f6ba4f83aba303c482aab8194ccdbacb9a87d59576b5d
RLBA-2022:8025
qt5-qtbase bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for qt5-qtbase.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
qt5-qtbase-static-5.15.3-1.el9.aarch64.rpm
38109116319f50008fd6670700162f5d812551f86c8bcf70ddc360d34eab3b4a
RLBA-2022:8026
qt5-qtdeclarative bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for qt5-qtdeclarative.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
qt5-qtdeclarative-static-5.15.3-1.el9.aarch64.rpm
7ef6fcb66b20a47a62a2f1f7bf42f2afbbe7675f87f7082492551ab574f18ed5
RLBA-2022:8045
qt5-qttools bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for qt5-qttools.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
qt5-qttools-static-5.15.3-3.el9.aarch64.rpm
909569a33844a814900fecabb482bbe9a494c690de222cae34bd677257123aba
RLBA-2022:8046
sip bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sip.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python3-sip-devel-4.19.25-1.el9.aarch64.rpm
617d992195778dbc6c419df370f1a17957950ae4a74888b0497ac7c3a2040299
sip-4.19.25-1.el9.aarch64.rpm
21cc940ba2d0396e65f83710d7c42de265dbf076dad5a43c7424b10b458aedc9
RLBA-2022:8047
python-qt5 bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for python-qt5.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python3-qt5-devel-5.15.6-1.el9.aarch64.rpm
2f795724e7f4004d75df79d68f755f04a14e977c67c7e710bc56aeaa4d8e78e3
RLSA-2022:8062
Moderate: unbound security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for unbound.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.
The following packages have been upgraded to a later upstream version: unbound (1.16.2). (BZ#2087120)
Security Fix(es):
* unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30698)
* unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30699)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
unbound-devel-1.16.2-2.el9.aarch64.rpm
e2b30973eaa05c7d8d7cb86ec7943333830d822e0b3975507768de5d52a89eea
RLSA-2022:8068
Moderate: bind security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for bind.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
* bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220)
* bind: DoS from specifically crafted TCP packets (CVE-2022-0396)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
bind-devel-9.16.23-5.el9_1.aarch64.rpm
4e64ff72ec7d09dceec3b25d8ed43edb4af364695a0efa883ffcccaf99566f58
bind-doc-9.16.23-5.el9_1.noarch.rpm
b54a5042601c2c9929ff55e7a28d9b81b336187f00c1e46440a3d48e1e222fed
RLSA-2022:8078
Moderate: flac security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for flac.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files.
Security Fix(es):
* flac: out of bound write in append_to_verify_fifo_interleaved_ of stream_encoder.c (CVE-2021-0561)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
flac-1.3.3-10.el9.aarch64.rpm
7181ea52f233500edc2d411202fedbdd8565bf25d11c6accbf68f674ea6537cd
flac-devel-1.3.3-10.el9.aarch64.rpm
9baae7cdeee7020b2986b799b8a23470b7f8008c421a3b14773385a052dd07c3
RLBA-2022:8095
crash bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for crash.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
crash-devel-8.0.1-2.el9.aarch64.rpm
ebd3e2e01eace31f82fafbecc97465c45e6da9b7962cc93abd051a7628f89f81
RLBA-2022:8109
bcc bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for bcc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
bcc-devel-0.24.0-4.el9.aarch64.rpm
930a8055d1d2ba0dc2dad3d167cff034d01a001e7b7bf0686135ca4a4eab1c77
bcc-doc-0.24.0-4.el9.noarch.rpm
0c503c00b79e77cc426e76fd84713f6d3608e085db2436600f5a739cb52ee5eb
RLBA-2022:8116
google-noto-fonts bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for google-noto-fonts.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
google-noto-sans-symbols2-fonts-20201206-4.el9.noarch.rpm
dd615d5f24abcfa7b0cd668e079d1cc26472634251956c335daac0e57eb4cdf7
RLSA-2022:8151
Moderate: poppler security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for poppler.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince.
Security Fix(es):
* poppler: A logic error in the Hints::Hints function can cause denial of service (CVE-2022-27337)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
poppler-cpp-devel-21.01.0-13.el9.aarch64.rpm
9a2896a421dc2ee82b5555e9ae90d224374cd2bd75ca1011c63cb3a95734cbe4
poppler-devel-21.01.0-13.el9.aarch64.rpm
634cf93dc3b3ac595c7a11ca70e7e2407fa7cfa1ffabcc740c07ab4a93ed37da
poppler-glib-devel-21.01.0-13.el9.aarch64.rpm
fa2a249be5c93f6a38560b6aa094f9244ad09ab2a0d11b5452897355e97a2bc6
poppler-qt5-devel-21.01.0-13.el9.aarch64.rpm
94c2a935dfa7b09f0faff2de2efaa492f5d54a5d723a454904379ebd53162ff3
RLBA-2023:0331
opencryptoki bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for opencryptoki.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The opencryptoki packages contain version 2.11 of the PKCS#11 API, implemented
for IBM Cryptocards, such as IBM 4764 and 4765 crypto cards. These packages
includes support for the IBM 4758 Cryptographic CoProcessor (with the PKCS#11
firmware loaded), the IBM eServer Cryptographic Accelerator (FC 4960 on IBM
eServer System p), the IBM Crypto Express2 (FC 0863 or FC 0870 on IBM System z), and the IBM CP Assist for cryptographic Function (FC 3863 on IBM System z). The opencryptoki packages also bring a software token implementation that can be used without any cryptographic hardware. These packages contain the Slot Daemon (pkcsslotd) and general utilities.
Bug Fix:
* opencryptoki C_GenerateKeyPair() fails after generating > 500 RSA keys with CEX7 and CEX8 crypto cards (BZ#2128611)
rocky-linux-9-aarch64-crb-rpms
opencryptoki-devel-3.18.0-5.el9_1.aarch64.rpm
27175a8891b6b877355c8018f87ecd9287b81e70398234e5def6be986019dd42
RLBA-2022:8129
papi bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for papi.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
papi-6.0.0-12.el9.aarch64.rpm
f2ce8e5aa3e1f8398f76047c93f52490bcb7f8ce8b961e12f2ba965a61b6cf17
papi-testsuite-6.0.0-12.el9.aarch64.rpm
061d54827b129d4c5c645376bd009b048af0fa4fceb421d2dec59ef982b56fe9
RLBA-2022:8130
criu bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for criu.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
criu-devel-3.17-4.el9.aarch64.rpm
fa7ae77bbe70bd1677397f2272a13793be412da9ba842416e177fc08389097f3
RLBA-2023:0332
zlib bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for zlib.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The zlib packages provide a general-purpose lossless data compression library that is used by many different programs.
Bug Fix:
* Rocky Linux9.0 - zlib: inflate() does not update strm.adler if DFLTCC is used (BZ#2135745)
rocky-linux-9-aarch64-crb-rpms
zlib-static-1.2.11-35.el9_1.aarch64.rpm
36bc3dc2dd8f16e08c2699ae3d617fcb10c3a33e6a03fa17631f146e791d21fa
RLBA-2022:8142
yara bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for yara.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
yara-devel-4.2.3-1.el9.aarch64.rpm
ccf72e289c76bc848ac843fe1196bc3c00671b32e1c8fd58f836957d4fa6f405
RLBA-2022:8155
nginx bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nginx.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
nginx-mod-devel-1.20.1-13.el9.aarch64.rpm
b93c44432e1ea69f93497bc3bf4930ab1d4531d23f769676665e44d92a1ad3ca
RLEA-2022:8157
libdrm and mesa bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libdrm, mesa.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
mesa-libgbm-devel-22.1.5-2.el9.aarch64.rpm
cc5cdc91799732a2d99285a72e6ca1f2a8cd7d927e76132151c7c81d0cfc3c7d
mesa-libOSMesa-22.1.5-2.el9.aarch64.rpm
7237fcf84f2f251a3eee72c39a539fad91ed6b326fd29530164ae08dc340f555
mesa-libOSMesa-devel-22.1.5-2.el9.aarch64.rpm
272f8ac4ac0475a82989a9ec6f3ccc9512a2bf1ca7d4f8eeb5038024b5c955e3
RLBA-2022:8158
sdl12-compat bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sdl12-compat.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
sdl12-compat-devel-1.2.52-1.el9.aarch64.rpm
25e43cfbf1d4e4795589bbb9c15ed61109d04f9f049546f32ef729bc02f79960
RLBA-2022:8160
freerdp bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for freerdp.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
freerdp-devel-2.4.1-3.el9.aarch64.rpm
e85ae9adba743351c686d079a685635e7a4fa49df4d8a9b7f5169094e11244c7
libwinpr-devel-2.4.1-3.el9.aarch64.rpm
cb479314cca1597be1655e20609f769e7c5b526bf249545a07697aa5878aa423
RLBA-2022:8170
nispor bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nispor.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
nispor-devel-1.2.7-1.el9.aarch64.rpm
e6248c2668e548ba423e756d9a5c740f01a8b5230cf6ff1ca6824bf19340fe2a
RLBA-2022:8176
ldns bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ldns.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ldns-devel-1.7.1-11.el9.aarch64.rpm
bc7f8b6a2a6777036a2dd7e4e83112be45878b32074ae9f2e640d2030a912999
ldns-doc-1.7.1-11.el9.noarch.rpm
9b10ac31884afbefbf610d8280e6e585ef3c88fd2fca8a1e4c2cb55c903e8c0d
ldns-utils-1.7.1-11.el9.aarch64.rpm
37881177af33df3e5fb92e6e00bbaadc291765ad4de8222d83ed886612cb67aa
perl-ldns-1.7.1-11.el9.aarch64.rpm
82a1c349e7e3309d54cbd7899f3663433ec1ab9d64fc3a88eeb7c37f9fcf17a2
python3-ldns-1.7.1-11.el9.aarch64.rpm
b14470d7e4839f1f6e0cc8b25d19005e3a70186181d062847d2551d9bde594e4
RLBA-2022:8178
xxhash bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for xxhash.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xxhash-devel-0.8.1-3.el9.aarch64.rpm
aa85f2dab0755adf697bdaa57b3dd64f255f06e40f8588cda77c2456c88b3d44
xxhash-doc-0.8.1-3.el9.noarch.rpm
1b1802afd44bd91211ca8fa5521cdcebbbf2dee0b409802774c42e5398dbe90d
RLBA-2022:8200
qpdf bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for qpdf.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
qpdf-10.3.1-6.el9.aarch64.rpm
067b07d07ef658c3adc29bd98c93052c0e6c378c743712b5f56320a48f229fe9
RLSA-2022:8207
Low: openjpeg2 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Low
An update is available for openjpeg2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
OpenJPEG is an open source library for reading and writing image files in JPEG2000 format.
Security Fix(es):
* openjpeg: segmentation fault in opj2_decompress due to uninitialized pointer (CVE-2022-1122)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
openjpeg2-devel-2.4.0-7.el9.aarch64.rpm
d20aa82d5d912b0ec93f1553b41fd0a5b27361013e3aa06bf3653a8dcc5fd772
openjpeg2-tools-2.4.0-7.el9.aarch64.rpm
6b936ef4371c66d1e9d5f75fb495e1a9a99fea7b4a38e4140cb40c8755ab0670
RLSA-2022:8208
Moderate: dovecot security and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for dovecot.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages.
Security Fix(es):
* dovecot: Privilege escalation when similar master and non-master passdbs are used (CVE-2022-30550)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
dovecot-devel-2.3.16-7.el9.aarch64.rpm
524e7e29974dcd3c9affdbbaa3c6d62ea4da0edccc30bd4bd8970c64bf301d64
RLBA-2022:8209
boost bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for boost.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
boost-b2-1.75.0-8.el9.aarch64.rpm
a24522fdbc70095eb4eeb10a564da4dc75893646acc633d1903b20b752c93fc6
boost-build-1.75.0-8.el9.noarch.rpm
7434dfea46f9bd571b3675bb4c303de6597ad7ba8de42b4faef7e5824e9a36e8
boost-doc-1.75.0-8.el9.noarch.rpm
e5080e6bb50f4ae84b97ff3681e6d5d80b6337ca035c88b4f2f3770a1205cf0c
boost-doctools-1.75.0-8.el9.aarch64.rpm
6e257845b697fec568039506a5dc9dc92a208816107fc9008cf97bc77df40ee3
boost-examples-1.75.0-8.el9.noarch.rpm
f3904eec06577458543173a6e0b913a0baae3f378e034fa6b63eadb46b3e17f2
boost-graph-mpich-1.75.0-8.el9.aarch64.rpm
590d972405d7941cbe0366f1317f69a72641d3cda6e5d47a7967efb804448ac4
boost-graph-openmpi-1.75.0-8.el9.aarch64.rpm
819bcc310465c057e07be9ff383d7128e7a79ca4cda7ac1af662797645345d11
boost-mpich-1.75.0-8.el9.aarch64.rpm
8ca71aada4c5cb335500e4ba5586984ffa8925895727b425de76e4b66deb3294
boost-mpich-devel-1.75.0-8.el9.aarch64.rpm
7886c9d1b2c1c00838e41c05e14dd536cacedb86649ab44e2ab2fdbb6a19c907
boost-mpich-python3-1.75.0-8.el9.aarch64.rpm
6da691f8a8ee22f69faa18df364cbf3a7211ffe6b608ad8bc3f2e0b92f1f6072
boost-openmpi-1.75.0-8.el9.aarch64.rpm
3983627bede7aa0a48e2fe69ccd9eef535e8e2172bf8a2f1e0dd8cf36ba9587b
boost-openmpi-devel-1.75.0-8.el9.aarch64.rpm
2222a4802acc26b0663f438373398a639318d3565a90f5c20ec82c813d670d5f
boost-openmpi-python3-1.75.0-8.el9.aarch64.rpm
bf725981415b898c678c245d46fbfb3d023e69c157fcc0b1a8e534e84549f1eb
boost-static-1.75.0-8.el9.aarch64.rpm
8d7c864fdb7e625560d6b315fd41f3eeca677e7ca07cf85ce25ebe5a441e64a6
RLBA-2022:8216
openscap bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for openscap.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
openscap-engine-sce-devel-1.3.6-4.el9.rocky.0.2.aarch64.rpm
27263207024ff9c6fc189229d570e2b6c92f05cc880e4605b0c20d05fed6e38c
RLSA-2022:8221
Moderate: xorg-x11-server security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for xorg-x11-server.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.
Security Fix(es):
* xorg-x11-server: X.Org Server ProcXkbSetGeometry out-of-bounds access (CVE-2022-2319)
* xorg-x11-server: out-of-bounds access in ProcXkbSetDeviceInfo request handler of the Xkb extension (CVE-2022-2320)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xorg-x11-server-devel-1.20.11-11.el9.aarch64.rpm
5a56549dd0ac90215cad0cb6799ab56787d96c095e39a7a95a3b3f01540ac01a
xorg-x11-server-source-1.20.11-11.el9.noarch.rpm
9b7ef85d732e8fb5a3712ea75167a3d9a4a39f443b0fe0a6dbaca49841467178
RLBA-2022:2332
new packages: libuv
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libuv.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libuv-devel-1.42.0-1.el9.aarch64.rpm
616121dd2debc65c95f68c7beead5e37d50b99024de8eabedcb476dceb27e71d
RLBA-2022:8239
sanlock bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sanlock.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
sanlock-devel-3.8.4-4.el9.aarch64.rpm
59b349b4a23c95ad408e969e846b6ff051314b733fe3e3f1be016affb0c8eaf9
RLBA-2022:8248
xdp-tools bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for xdp-tools.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libxdp-devel-1.2.6-1.el9.aarch64.rpm
57603d01ee91da1190ca729c700125fe7d0290ec0bcb195dd39e08d3839eec5b
libxdp-static-1.2.6-1.el9.aarch64.rpm
a6dc4e9058e1aa14fcf2381da3eccca8cbfd306062db3d208ff82f26e8240293
RLBA-2022:8251
vulkan bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for shaderc, glslang, spirv-tools, vulkan-loader, vulkan-headers, vulkan-validation-layers, vulkan-tools.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
glslang-devel-11.9.0-3.el9.aarch64.rpm
548ceab5f033e4760cfab364896464e4f8a898461fd3d07d4d3933e01def55b9
libshaderc-devel-2022.2-2.el9.aarch64.rpm
8b9017dc96bbd1e9d9e99749017d28c5c9a22f5a5030a8665a25276817dcdce8
spirv-tools-devel-2022.2-3.el9.aarch64.rpm
a0abc3f9fe6ec36383a4c7415baf9c62784056fdfac0c9b1ba4b1305d8f89d16
RLSA-2022:8252
Moderate: yajl security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for yajl.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator.
Security Fix(es):
* yajl: heap-based buffer overflow when handling large inputs due to an integer overflow (CVE-2022-24795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
yajl-devel-2.1.0-21.el9.aarch64.rpm
5bff3a63b4bd5036cc6578b512181be1062df6c7beb303fd578cb7259b744fb7
RLBA-2022:8265
NetworkManager bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for NetworkManager.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
NetworkManager-libnm-devel-1.40.0-1.el9.aarch64.rpm
2e99a8d8d06a2c2e5bfa157c5863bda710652862965275d1efca4d99801fbde0
RLBA-2022:8272
glibc bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for glibc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
glibc-benchtests-2.34-40.el9_1.1.aarch64.rpm
b2d340e2be83362c55d70dbd95f02b45df37e372c173399083ef34561df5bebd
glibc-nss-devel-2.34-40.el9_1.1.aarch64.rpm
4fddf8453a93fac81f3ae08648c03c1af428bda2b94caa9932daf5f7036982e1
glibc-static-2.34-40.el9_1.1.aarch64.rpm
a4a815e06c461e395d547a33cf149f4bb507d7eb9a17cedde2a29b71bda30917
nss_db-2.34-40.el9_1.1.aarch64.rpm
721d9c76f10c8607f904bdce0cbb0868d1afa1e866daf1e5ae70c78a31790b44
nss_hesiod-2.34-40.el9_1.1.aarch64.rpm
c56a60d73880f6c5a07059afdc574baff9ebf253413925d4d8f1d6983611e652
RLBA-2022:8277
gcc bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gcc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gcc-plugin-devel-11.3.1-2.1.el9.aarch64.rpm
ce70992e30a85a8023e290387b4fcfcb39787d624c3cb7beaaee24ba3e8e6a59
libstdc++-static-11.3.1-2.1.el9.aarch64.rpm
d3090fe40606ebfddf0ec36a3819f23e6f425f6636cde8b1d0d35a12ccfd708e
RLBA-2022:8280
trace-cmd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for trace-cmd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtracecmd-devel-0-9.el9.aarch64.rpm
984a0cd9cf93a9690fb14328369c80145dd10f26bdabace12790a4f66aa9503c
RLBA-2023:2186
augeas bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for augeas.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
augeas-devel-1.13.0-3.el9.aarch64.rpm
3d0fb4a3c22827201b27e4bfff81dce868ceaf899cf1d7742cd263d30fc68602
RLBA-2022:8289
shadow-utils bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for shadow-utils.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
shadow-utils-subid-devel-4.9-5.el9.aarch64.rpm
7e039c421839a6da651a7d465f3168db586509b2156a97d37cd4c8a7841c7ae6
RLBA-2022:8293
libsemanage bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsemanage.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsemanage-devel-3.4-2.el9.aarch64.rpm
d6886c823bd56aa1fe59c5de44ae9bd526b6c87093a5b3a6d5c89769deb643fe
RLBA-2022:8295
libdnf bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libdnf.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libdnf-devel-0.67.0-3.el9.aarch64.rpm
fcadd9e6b99a10dc5dc46452dcbffe963f169aa0f590fb14746a4f5f924c6fc8
RLBA-2022:8298
libsolv bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsolv.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsolv-devel-0.7.22-1.el9.aarch64.rpm
4d8266245c95049387d11cf84204248e9edcee4a48cf85fffba326d6983b92bf
libsolv-tools-0.7.22-1.el9.aarch64.rpm
ea2c79aaa34e859e5579fbeba264cc73522c30811cafdf50b0f56f0608d2a804
RLBA-2022:8309
jitterentropy bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for jitterentropy.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
jitterentropy-devel-3.4.0-1.el9.aarch64.rpm
514a939cc4c958c102c47143f7f08a5bdf0720a8badb6ad4acef09ae84d29b8f
RLBA-2022:8313
device-mapper-multipath bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for device-mapper-multipath.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
device-mapper-multipath-devel-0.8.7-12.el9_1.1.aarch64.rpm
db0c13a8ead6c48f3f1f705f87d017c621d2207be662cf9f294d03dc0051367c
RLSA-2022:8317
Moderate: samba security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for samba.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.
The following packages have been upgraded to a later upstream version: samba (4.16.4). (BZ#2077487)
Security Fix(es):
* samba: server memory information leak via SMB1 (CVE-2022-32742)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsmbclient-devel-4.16.4-101.el9.aarch64.rpm
e4b0538611c9e7188bf2ac164c88cbc35d9708d0fa24867b6d0f86d3ebd12ed2
libwbclient-devel-4.16.4-101.el9.aarch64.rpm
824e2672512bf4d48e81d6e901e3f41fe3af512850ef753d7938e124ff90ef90
samba-devel-4.16.4-101.el9.aarch64.rpm
1e5197fd38f29e2382b359aa57629ef24b4baeaa767b263324e45477367196ac
samba-pidl-4.16.4-101.el9.noarch.rpm
2a62fd23b7bc67bd4c85fd7ff2f748493c82ff8de5b0b1958238a9826188a7b4
samba-test-4.16.4-101.el9.aarch64.rpm
bcbe62bba90ab7869d852288d834cdce5e1ebe34a82879fbda94991320775f89
samba-test-libs-4.16.4-101.el9.aarch64.rpm
830b9e50b5e057dd46115c25ff820672d07b0e22bad408ce066088a49e2d6873
RLBA-2023:2390
varnish bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for varnish.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
varnish-devel-6.6.2-3.el9.aarch64.rpm
98385a78ead407cab59d5ea75ba89d4407bb7986ae361107c84481083e083d35
RLSA-2022:8318
Moderate: libldb security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libldb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases.
The following packages have been upgraded to a later upstream version: libldb (2.5.2). (BZ#2077490)
Security Fix(es):
* samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request (CVE-2022-32746)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libldb-devel-2.5.2-1.el9.aarch64.rpm
fc3276a2ad90ac6e57b098d4e4f4e3323d4691194106c135e8b0fb1f3f7a1f80
RLBA-2022:8319
libtdb bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtdb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtdb-devel-1.4.6-1.el9.aarch64.rpm
154708b3b438b0d357e605125968329ccf71e0eb75e92bb39dc16056b47fbb3c
RLBA-2022:8320
libtevent bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtevent.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtevent-devel-0.12.0-0.el9.aarch64.rpm
5b5042eb586128c53eff42f0767550c92fc53aff9cf6752e01323ef4f792bc54
RLBA-2022:8325
sssd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sssd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsss_nss_idmap-devel-2.7.3-4.el9_1.3.aarch64.rpm
5f7bcafeb2b8220d0035ec5dd4213b3ff61dc6a96bc8e143acd891523063c9ef
RLBA-2022:8336
libselinux bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libselinux.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libselinux-static-3.4-3.el9.aarch64.rpm
00b54625ffd1173eb90d90d9fec8feef4da1b1ec2c961bb8bdaa58dad449c593
RLBA-2022:8337
libsepol bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsepol.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsepol-static-3.4-1.1.el9.aarch64.rpm
637c436c284453ec74126c02bab3ac058fe9edd539a4c1ece64114b3930fd50f
RLBA-2022:8342
parted bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for parted.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
parted-devel-3.5-2.el9.aarch64.rpm
7e68b971bf33daf5601bbf1b6b37731ca400edcb51faefa5ceb7aeaec53b1a58
RLBA-2022:8343
libnftnl bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnftnl.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnftnl-devel-1.2.2-1.el9.aarch64.rpm
af0bb9e1ec97af4c612fdd8a6dcb598a1b8e24f908f0d01a1984d22c97d33882
RLSA-2022:8353
Moderate: python3.9 security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.9.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
The following packages have been upgraded to a later upstream version: python3.9 (3.9.14). (BZ#2128249)
Security Fix(es):
* python: mailcap: findmatch() function does not sanitize the second argument (CVE-2015-20107)
* python: open redirection vulnerability in lib/http/server.py may lead to information disclosure (CVE-2021-28861)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python3-debug-3.9.14-1.el9_1.1.aarch64.rpm
0ab1bc8089c366ce9e299b726d6e7d364552149253ee57360a89813b7e64c567
python3-idle-3.9.14-1.el9_1.1.aarch64.rpm
bacf73f1a335be08b17cd6e6a66a9f115d11201637e63069416865f21760a0c3
python3-test-3.9.14-1.el9_1.1.aarch64.rpm
72d367b1c768f800e4dd84b0a5b1e09f6642c35d05a94dfe985a00ef51db4f3a
RLBA-2022:8357
ndctl bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ndctl.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
daxctl-devel-71.1-7.el9.aarch64.rpm
fb73c5d6c8fe8645aeefb69c67b930998c0d30bad77e59c6aa5f29a58f1874c8
ndctl-devel-71.1-7.el9.aarch64.rpm
a30bc14fdcaaa0e661228dcebc4e1eb0a5448b087c29ec856c168cf1059b4204
RLBA-2022:8358
lvm2 bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for lvm2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
device-mapper-devel-1.02.185-3.el9.aarch64.rpm
b2ed58c0877fad5f9a645a45003427f2e888cce8c2c072f33dac92244d490fd1
device-mapper-event-devel-1.02.185-3.el9.aarch64.rpm
f384131de35a8a89b941e358648a23b28809836d3ddc8029023fc16faddf97c3
lvm2-devel-2.03.16-3.el9.aarch64.rpm
d016572d254da60a44a4a9feae9abb9cee83f079f743651c582bfd6d2386ff7a
RLBA-2022:8364
libbpf bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libbpf.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libbpf-devel-0.6.0-1.el9.aarch64.rpm
d2a7bead72c4c3725867f6a29dc1b546188bed8786e4d018e3711c84fb1644e0
libbpf-static-0.6.0-1.el9.aarch64.rpm
2bc10a7e9a6613d404f88ab0e52c9b0fdfad6f8a8cc5a4209b1e2f774453471e
RLBA-2023:2402
maven bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for plexus-interpolation, httpcomponents-core, maven-wagon, maven, google-guice, jsoup, jansi, apache-commons-io, apache-commons-lang3, maven-shared-utils, plexus-utils, plexus-classworlds, jakarta-annotations, httpcomponents-client, apache-commons-codec, plexus-cipher, atinject, javapackages-tools, maven-resolver, plexus-containers, jsr-305, cdi-api, apache-commons-cli, slf4j, guava, plexus-sec-dispatcher, sisu.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
javapackages-generators-6.0.0-4.el9.noarch.rpm
658d14adcf1518041ff90ee238d485193ab92f5601fd24e2767d1531c6503d4f
javapackages-local-6.0.0-4.el9.noarch.rpm
4677a41640859d83cc0b2a102a60e3eb34dd4c3d6bfef0d14cc9d5e28dc7eabd
maven-local-6.0.0-4.el9.noarch.rpm
acf5acd8478e2aadedf45db80699b349b03b9605b5f7eaed790572b7683dc65b
plexus-containers-container-default-2.1.0-10.el9.noarch.rpm
f95f3671e7d93035d083cbfdbb4b14ebc3bfe295a1bbe738036da6f103f5c54a
python3-javapackages-6.0.0-4.el9.noarch.rpm
02090a36a022def69bb135f2d30b92f1f322719adc0a3c0993038500d74dfb5e
RLBA-2022:8373
librepo bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for librepo.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
librepo-devel-1.14.2-3.el9.aarch64.rpm
da2f0fff2f7d9a7b1e5feacc4f5b893f8957103276a6f1296d82043a51d40216
RLBA-2022:8372
iproute bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for iproute.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
iproute-devel-5.18.0-1.el9.aarch64.rpm
eaadacff9ded25d2e1b13d70e7328bdd6a6db5d8f18c08e21778b67170c385f4
RLBA-2022:8376
nfs-utils bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nfs-utils.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnfsidmap-devel-2.5.4-15.el9.aarch64.rpm
6626eb62e5f887491d381143bf61d9474ffc0c85ccbac2c18812df6d1ac655c5
RLBA-2022:8377
libarchive bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libarchive.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libarchive-devel-3.5.3-3.el9.aarch64.rpm
34f5f62deeeb03ada9cc6d1ee7128fc6e0a1e37ff973ed4d9113b3105171c2c2
RLBA-2022:8381
nftables bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nftables.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
nftables-devel-1.0.4-2.el9.aarch64.rpm
d36b7f8d7be9557bd3aefdf32d057e163627a39d8efb4439f10fd967ea295042
RLBA-2023:2608
kronosnet bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for kronosnet.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libknet1-1.25-2.el9.aarch64.rpm
3e59ab4b7e94f604026d92c77dc89defdcb7fb6df4fb3444a84f3a31a2d276d8
libknet1-devel-1.25-2.el9.aarch64.rpm
f1c96955d260fa6146706119ea24d03b355332cfd8285b6c1b602fc592fa44b5
RLBA-2022:8388
bluez bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for bluez.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
bluez-libs-devel-5.64-2.el9.aarch64.rpm
cd7dfedcd877fb373d11da2f628fd53766971520e8bb1309d7353937af0416ab
RLSA-2023:1470
Important: kernel security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: tun: avoid double free in tun_free_netdev (CVE-2022-4744)
* ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF (CVE-2023-0266)
* kernel: net: CPU soft lockup in TC mirred egress-to-ingress action (CVE-2022-4269)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Rocky Linux9.0 - zfcp: fix missing auto port scan and thus missing target ports (BZ#2127880)
* Cgroups_v2, when creating new cgroup/container, resets the cpu affinity masks for all usr processes on the system. (BZ#2143766)
* Rocky Linux9.0 - boot: Add secure boot trailer (BZ#2151528)
* kernel-rt-debug: WARNING: possible circular locking dependency detected (&n->list_lock->&p->pi_lock->&lock->wait_lock) (BZ#2160614)
* Support cpuset.sched_load_balance by changing default CPUset directory structure (BZ#2161105)
* Rocky Linux9.0 - s390/kexec: fix ipl report address for kdump (BZ#2166903)
* libgpiod doesn't seem to work with Interphase gpiochip (BZ#2166956)
* Azure Rocky Linux9 scsi: storvsc: Fix swiotlb bounce buffer leak in confidential VM (BZ#2170227)
Enhancement(s):
* IBM 9.2 FEAT: Upgrade the QETH driver to latest from upstream, e.g. kernel 6.0 (BZ#2166304)
* Intel 9.2 FEAT SPR CPU: AMX: Improve the init_fpstate setup code (BZ#2168382)
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-162.22.2.el9_1.aarch64.rpm
d926ac30c2a5cec83b9edd0587907b24cf10beffed4595906241094bdb7acdc6
kernel-tools-libs-devel-5.14.0-162.22.2.el9_1.aarch64.rpm
27761e972150575125464e400534aea4446d5f98cc2f68e713a4881450236376
RLEA-2022:8391
RDMA stack bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ucx, rdma-core, mstflint, libvma, libpsm2, fabtests, opa-fm, opa-ff, eth-tools, libfabric.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libfabric-devel-1.15.1-1.el9.aarch64.rpm
5f440db5ee05d31644c4d2681ee61b73c78b35b6e6182315b0fad91a5490cb58
RLBA-2022:8392
sg3_utils bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sg3_utils.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
sg3_utils-devel-1.47-9.el9.aarch64.rpm
9974a75662aa2f01681627e793c189a3a23ad208733733ec245af0141c1cc861
RLBA-2022:8394
libuser bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libuser.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libuser-devel-0.63-11.el9.aarch64.rpm
712518218891381aa01ab469f72e26f729c455588b75847b39688381097d480c
RLBA-2022:8395
fwupd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for fwupd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
fwupd-devel-1.7.9-1.el9.aarch64.rpm
fbb5b7cc3a57b4ecf51475180e0093166fc132511d059aab172c2239fef4e3b7
RLBA-2022:8396
tpm2-tss bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for tpm2-tss.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
tpm2-tss-devel-3.0.3-8.el9.aarch64.rpm
a067522f448f94c464613591f630ac798c1bbb4336edf33fe52676a45799d0ee
RLBA-2022:8398
liblockfile bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for liblockfile.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
liblockfile-devel-1.14-10.el9.aarch64.rpm
044777b8e7d5afc31679f9416e2fa409d96c6909c3c7d6b068cd2afc71c08832
RLBA-2022:8399
cryptsetup bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for cryptsetup.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
cryptsetup-devel-2.4.3-5.el9_1.1.aarch64.rpm
f2db664998a7e53e14a5f21555751be4a0ead1244c2fdc4b407d40812af25914
RLSA-2022:8400
Moderate: libtirpc security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libtirpc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libtirpc packages contain SunLib's implementation of transport-independent remote procedure call (TI-RPC) documentation, which includes a library required by programs in the nfs-utils and rpcbind packages.
Security Fix(es):
* libtirpc: DoS vulnerability with lots of connections (CVE-2021-46828)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtirpc-devel-1.3.3-0.el9.aarch64.rpm
c53e95bfdc9d7a1d62f96b0e5969e00f689457d51f313ed035bd6796d3fbdc5d
RLBA-2022:8404
util-linux bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for util-linux.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libfdisk-devel-2.37.4-9.el9.aarch64.rpm
f25baa7c6905a72f02a60a496ff309c2da516e8a9c81f9abed252c1dd854c282
RLBA-2023:2635
.NET 7.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet7.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET
framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es) and Enhancement(s):
* Update .NET 7.0 to SDK 7.0.105 and Runtime 7.0.5 [rhel-9.2.0.z] (BZ#2183591)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-7.0-source-built-artifacts-7.0.105-2.el9_2.aarch64.rpm
fcf0d93543792ee2714848431b61adf0552868fb0576dae3666e9458846a799f
RLBA-2022:8406
file bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for file.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
file-devel-5.39-10.el9.aarch64.rpm
04baa145cb6323672fccbaa5670f17c4215cd1eb2acf4e22c6588a02fc5fe553
RLBA-2022:8419
kronosnet bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for kronosnet.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libknet1-1.24-2.el9.aarch64.rpm
242fab96e478e7bd55e25182ef2a0845e10fd06c8bfa01aa73aef7fadde3f1a0
libknet1-devel-1.24-2.el9.aarch64.rpm
c63509f4e26a352a898a6f95e4237f0bd7e130ebe6435a51f78d5217396a4b2c
RLBA-2022:8423
inkscape:flatpak bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for enchant2, cairomm, gc, libwpd, gsl, python-lxml, boost, potrace, python-appdirs, poppler, inkscape, python-scour, librevenge, libwpg, lapack, gspell, libsigc++20, poppler-data, double-conversion, gtkmm30, openblas, pangomm, atkmm, glibmm24, numpy.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
atkmm-devel-2.28.2-2.el9.aarch64.rpm
24d118eda1d60da59c6de1859a4ec64d3e9f07ff7c50a8fd3bc8caadcc4e0a41
atkmm-doc-2.28.2-2.el9.noarch.rpm
56521e83bec50b0c679f98ebb9eed867a2f8733d0a2a6f161c76dcd2d5105765
blas64_-3.9.0-8.el9.aarch64.rpm
451cddd3d399c9025ec7d6e38baafd5afcac82bfb6d20f52f53078450198f199
blas-devel-3.9.0-8.el9.aarch64.rpm
35602e6858bbc2158f4cd586339913e198e9449696c30c2c8fa025438d00bc94
boost-b2-1.75.0-8.el9.aarch64.rpm
a24522fdbc70095eb4eeb10a564da4dc75893646acc633d1903b20b752c93fc6
boost-build-1.75.0-8.el9.noarch.rpm
7434dfea46f9bd571b3675bb4c303de6597ad7ba8de42b4faef7e5824e9a36e8
boost-doc-1.75.0-8.el9.noarch.rpm
e5080e6bb50f4ae84b97ff3681e6d5d80b6337ca035c88b4f2f3770a1205cf0c
boost-doctools-1.75.0-8.el9.aarch64.rpm
6e257845b697fec568039506a5dc9dc92a208816107fc9008cf97bc77df40ee3
boost-examples-1.75.0-8.el9.noarch.rpm
f3904eec06577458543173a6e0b913a0baae3f378e034fa6b63eadb46b3e17f2
boost-static-1.75.0-8.el9.aarch64.rpm
8d7c864fdb7e625560d6b315fd41f3eeca677e7ca07cf85ce25ebe5a441e64a6
cairomm-devel-1.14.2-10.el9.aarch64.rpm
43a3a4bf22a8e57cdca64d8eac465a4977848726137aa582c9d60001d8c16e94
cairomm-doc-1.14.2-10.el9.noarch.rpm
383bbbc516adade85cecf9956a9810d533fc5c5acaefb80b1b23edf5bd82b58e
double-conversion-devel-3.1.5-6.el9.aarch64.rpm
f08034f3e663e69e81b440998e46e515ab5e2cca4bdbd2cb1467daa9d0405c55
enchant2-devel-2.2.15-6.el9.aarch64.rpm
6c00302aaf964eadd79a95a00f26092325a8841a6fa4ff086220315ed9926535
gc-devel-8.0.4-7.el9.aarch64.rpm
01420ab8f632ae57dfce1bcdcedeaef0d2f709338713c3f1fb4d2d74e0d373c2
glibmm24-devel-2.66.1-1.el9.aarch64.rpm
2f841a8632fcf0d53b501759bf08f7f93498596f70a6afdc934493cd62d36d8c
glibmm24-doc-2.66.1-1.el9.noarch.rpm
bfbcd163138501fa996ad0aa4dda44619ae3b7205390023646364b3fac404ec0
gsl-devel-2.6-7.el9.aarch64.rpm
24fc361650a83474da76ed400b6d73ed1f915ebf38e6216c70e71e49391fa0b5
gspell-devel-1.9.1-3.el9.aarch64.rpm
4b1174183a306caf41134434be5cdd9dbd25b2332d1f46a179fe39f093d04843
gspell-doc-1.9.1-3.el9.noarch.rpm
208a6225b69d9c50c7e695b818c3e5d04182e3fe5ce49d1147f2a886eb1edd23
gtkmm30-devel-3.24.5-1.el9.aarch64.rpm
b48a541a65de3092b2828261b69f139297e04209bd3f87e8b575f147ea527d49
gtkmm30-doc-3.24.5-1.el9.noarch.rpm
abe9d8f8b5cc7a7d8cfa3e70e35cf283930d6cdf18dd0c8254d86cc7a06ed99c
lapack64_-3.9.0-8.el9.aarch64.rpm
9a6fce0825e2c44dca3d21cd866b689b5cc0e6733ab5a3d54f0fec693e7cd921
lapack-devel-3.9.0-8.el9.aarch64.rpm
b412570e7c6be25ccd34ba2adb6837429231ccb7477ef7f54ed75d92b47e41ec
lapack-static-3.9.0-8.el9.aarch64.rpm
f88d90b5f290a55822af51458ce1fcbaf491f27d7dda8910ef93cd34224701a9
librevenge-devel-0.0.4-22.el9.aarch64.rpm
c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4
libsigc++20-devel-2.10.7-2.el9.aarch64.rpm
cc4915b8c5d5678d0f595fed564f4991801594ed670046c7af84d7db666dac22
libsigc++20-doc-2.10.7-2.el9.noarch.rpm
29487250f3f83163d9b2b19379dc1437e3ad90db099286cb698d375effee094b
libwpd-devel-0.10.3-10.el9.aarch64.rpm
d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de
libwpd-doc-0.10.3-10.el9.noarch.rpm
cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4
libwpg-devel-0.3.3-8.el9.aarch64.rpm
ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326
libwpg-doc-0.3.3-8.el9.noarch.rpm
612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0
openblas-devel-0.3.15-3.el9.aarch64.rpm
8878261848bdbc17bb0b7689651acc117c4202f94fa47eedeed564bc5c051347
openblas-openmp64_-0.3.15-3.el9.aarch64.rpm
46092fdbda9def956eaea9955e358ede474b2a17c426aac3da179e81d35f450d
openblas-openmp64-0.3.15-3.el9.aarch64.rpm
a26d72dc934d857daee95512b9370dd96addb2f6d1c6980e700b0f53f62915cd
openblas-serial64_-0.3.15-3.el9.aarch64.rpm
1ce6907f7bacdc243135a1840b8bfd65c822193779055d6606d0b70ad6b6372f
openblas-serial64-0.3.15-3.el9.aarch64.rpm
56368b3cb3502b91d79f4b93204cfe3d82ea05aa10379159b23e3542e2927cf4
openblas-static-0.3.15-3.el9.aarch64.rpm
6fdfb9685251d7de67ca2c8576600bd1883d8914d76e305d317a29da5ac04b65
openblas-threads-0.3.15-3.el9.aarch64.rpm
8c8b0253535dc62af63a993145487a712203601b91845baea18dcb092ce250f3
openblas-threads64_-0.3.15-3.el9.aarch64.rpm
7a58726891d025d0c7b24410f027af39d2d895506b9c66ebb1433fdee0765cd9
openblas-threads64-0.3.15-3.el9.aarch64.rpm
c2eda7cc357a74b06458fea32ecc09c65cc6bccbd8a9a40bd1384ae835c724ea
pangomm-devel-2.46.1-1.el9.aarch64.rpm
293d63cce96944ad2864d805c6fc865b51d09ecf9760aac23de90512963d9097
pangomm-doc-2.46.1-1.el9.noarch.rpm
77ecd2fc1fc2c70f00abf9262894aaa56cbb8d2a8938e862109d8873e6e47607
poppler-cpp-devel-21.01.0-13.el9.aarch64.rpm
9a2896a421dc2ee82b5555e9ae90d224374cd2bd75ca1011c63cb3a95734cbe4
poppler-devel-21.01.0-13.el9.aarch64.rpm
634cf93dc3b3ac595c7a11ca70e7e2407fa7cfa1ffabcc740c07ab4a93ed37da
poppler-glib-devel-21.01.0-13.el9.aarch64.rpm
fa2a249be5c93f6a38560b6aa094f9244ad09ab2a0d11b5452897355e97a2bc6
poppler-qt5-devel-21.01.0-13.el9.aarch64.rpm
94c2a935dfa7b09f0faff2de2efaa492f5d54a5d723a454904379ebd53162ff3
RLBA-2022:8424
libreoffice:flatpak bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for zaf, hyphen-uk, libpagemaker, hyphen-ca, hunspell-et, hyphen-eu, hyphen-ga, libvisio, raptor2, hunspell-ta, mythes-nl, hunspell-lt, hunspell-sk, ongres-scram, hunspell-hu, libshout, hunspell-nso, poppler, hunspell-nl, hunspell-hi, openjpeg2, libabw, hunspell-es, hunspell-sv, hyphen-sv, hyphen-te, google-carlito-fonts, hunspell-br, hunspell-ml, hyphen-pl, hunspell-pl, hyphen-el, hyphen-ru, hunspell-bg, mariadb-connector-c, hyphen-es, mythes-ro, hyphen-as, libloader, libmspub, dconf, mythes-en, libreoffice-voikko, hunspell-de, hunspell-id, hunspell-eu, libexttextcat, hyphen-da, pentaho-libxml, redland, hunspell-kn, libcmis, libepubgen, libodfgen, hunspell-fr, hunspell-th, hunspell-zu, xmlsec1, libnumbertext, hyphen-gu, hyphen-nl, hyphen-ro, libfontenc, librevenge, libwpg, hyphen-it, mythes-it, libmwaw, ttmkfdir, postgresql-jdbc, hunspell-sr, hunspell-ga, hunspell-ro, openoffice-lv, lksctp-tools, mythes-sk, mythes-cs, hyphen-cy, libformula, liblayout, clucene, hunspell-hr, yajl, mythes-ru, hunspell-gl, hyphen-ta, mythes-da, hunspell-tn, libqxp, lpsolve, hunspell-gu, mythes-pt, mythes-sl, libetonyek, hyphen-lt, google-noto-fonts, hunspell-ar, neon, librtas, hyphen-sk, hunspell-cy, boost, hunspell-ko, hunspell-si, flute, hunspell-pt, hyphen-fa, libzmf, hunspell-nr, hunspell-pa, hunspell-ve, mythes-ca, sac, hunspell-it, hyphen-bg, gstreamer1-plugins-good, openoffice.org-dict-cs_CZ, hyphen-gl, hyphen-hu, taglib, bitmap-fonts, libwps, hyphen-de, libbase, hunspell-af, hunspell-or, mythes-ga, xorg-x11-fonts, hunspell-no, hunspell-kk, libvoikko, mythes-sv, hunspell-el, hyphen-id, hunspell-da, libwpd, hunspell-ss, hunspell-ts, hyphen-bn, hyphen-sl, libeot, mythes-fr, hunspell-te, mythes-pl, pentaho-reporting-flow-engine, mythes-de, mythes-es, hunspell-as, hunspell-fa, hyphen, hunspell-uk, mythes-el, hyphen-hi, mythes-hu, hyphen-or, hyphen-mr, hunspell-xh, hyphen-pa, libserializer, poppler-data, hunspell-mr, hspell, hunspell-st, hunspell-ru, libfreehand, hunspell-ca, hyphen-fr, hunspell-bn, gstreamer1-plugins-base, twolame, libcdr, Box2D, liborcus, hyphen-ml, hunspell-sl, javapackages-tools, librepository, libstaroffice, libfonts, v4l-utils, rasqal, voikko-fi, hyphen-kn, mythes-uk, mythes-bg, hyphen-pt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
boost-b2-1.75.0-8.el9.aarch64.rpm
a24522fdbc70095eb4eeb10a564da4dc75893646acc633d1903b20b752c93fc6
boost-build-1.75.0-8.el9.noarch.rpm
7434dfea46f9bd571b3675bb4c303de6597ad7ba8de42b4faef7e5824e9a36e8
boost-doc-1.75.0-8.el9.noarch.rpm
e5080e6bb50f4ae84b97ff3681e6d5d80b6337ca035c88b4f2f3770a1205cf0c
boost-doctools-1.75.0-8.el9.aarch64.rpm
6e257845b697fec568039506a5dc9dc92a208816107fc9008cf97bc77df40ee3
boost-examples-1.75.0-8.el9.noarch.rpm
f3904eec06577458543173a6e0b913a0baae3f378e034fa6b63eadb46b3e17f2
boost-static-1.75.0-8.el9.aarch64.rpm
8d7c864fdb7e625560d6b315fd41f3eeca677e7ca07cf85ce25ebe5a441e64a6
clucene-core-devel-2.3.3.4-42.20130812.e8e3d20git.el9.aarch64.rpm
407136bfdb2c11ce5109e5f9128d5eb7d818448b473703d8925e0ca9222a8d8f
dconf-devel-0.40.0-6.el9.aarch64.rpm
27d14f0cd3ae3269e2a9e7a7a66ef68ced5f1d3fa4193ad6440e60c9e27dc6c4
google-noto-sans-symbols2-fonts-20201206-4.el9.noarch.rpm
dd615d5f24abcfa7b0cd668e079d1cc26472634251956c335daac0e57eb4cdf7
javapackages-generators-6.0.0-3.el9.noarch.rpm
317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30
javapackages-local-6.0.0-3.el9.noarch.rpm
8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8
libeot-0.01-18.el9.aarch64.rpm
6dcd26e7b498b9a3c2078f56b45cfd27f834ab1d4210a791aa79a05c8574638d
libetonyek-devel-0.1.10-2.el9.aarch64.rpm
3c8b67169ab92eff65836175033a57ac3229d0d4bd1586ff9cfaf4ce544ac01f
libfontenc-devel-1.1.3-17.el9.aarch64.rpm
631c347fe7a67e2621617d249289b1ea5071a1af64c91f1091df0157141c67a3
libodfgen-devel-0.1.8-4.el9.aarch64.rpm
2906fa4bb807a7423b51aa22d8fa9a887192c3f6ca068846a1b05db9868b146e
librevenge-devel-0.0.4-22.el9.aarch64.rpm
c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4
libshout-devel-2.4.3-7.el9.aarch64.rpm
5e1af2e46a5301c9f34626483516dcb9c430885952855157f5c14c593f63ab84
libv4l-devel-1.20.0-5.el9.aarch64.rpm
885378d8783da55b5a7a64deb5745f61d5b89b7ac9911faecc4b9205364309bd
libvisio-devel-0.1.7-9.el9.aarch64.rpm
f4bf5d016f918afdc7ee62beee2b83a70657f87d3ff4f11f33cdba50de42bcec
libvoikko-devel-4.3-7.el9.aarch64.rpm
70053a0d076781af4e9847b1d01e24a714bbd1b1f531412b52a1899a1e426521
libwpd-devel-0.10.3-10.el9.aarch64.rpm
d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de
libwpd-doc-0.10.3-10.el9.noarch.rpm
cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4
libwpg-devel-0.3.3-8.el9.aarch64.rpm
ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326
libwpg-doc-0.3.3-8.el9.noarch.rpm
612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0
libwps-devel-0.4.12-4.el9.aarch64.rpm
5f623d9ec9c1ae83ee39cddd18b6ac35d5be99e463abb665946d247d1f5018d3
libwps-doc-0.4.12-4.el9.noarch.rpm
a57cc3f098bec98c980281bf98395ecd53c2f63d364e03fabd653f02ca29a8cf
mariadb-connector-c-test-3.2.6-1.el9_0.aarch64.rpm
70a7f3b9ebd83354bfa326a99cfbfb147c9fec27e057383ce6f61b0fbc4d851b
maven-local-6.0.0-3.el9.noarch.rpm
1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878
neon-devel-0.31.2-11.el9.aarch64.rpm
095a73f8063bdf20163211c8e44ee6284d8b153c3d056240ef8c90404d60fbef
openjpeg2-devel-2.4.0-7.el9.aarch64.rpm
d20aa82d5d912b0ec93f1553b41fd0a5b27361013e3aa06bf3653a8dcc5fd772
openjpeg2-tools-2.4.0-7.el9.aarch64.rpm
6b936ef4371c66d1e9d5f75fb495e1a9a99fea7b4a38e4140cb40c8755ab0670
poppler-cpp-devel-21.01.0-13.el9.aarch64.rpm
9a2896a421dc2ee82b5555e9ae90d224374cd2bd75ca1011c63cb3a95734cbe4
poppler-devel-21.01.0-13.el9.aarch64.rpm
634cf93dc3b3ac595c7a11ca70e7e2407fa7cfa1ffabcc740c07ab4a93ed37da
poppler-glib-devel-21.01.0-13.el9.aarch64.rpm
fa2a249be5c93f6a38560b6aa094f9244ad09ab2a0d11b5452897355e97a2bc6
poppler-qt5-devel-21.01.0-13.el9.aarch64.rpm
94c2a935dfa7b09f0faff2de2efaa492f5d54a5d723a454904379ebd53162ff3
python3-javapackages-6.0.0-3.el9.noarch.rpm
899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2
raptor2-devel-2.0.15-30.el9.aarch64.rpm
74d2f985d35631ff6803faf444eb6e288ca168f46546601c1a4c33f6d50018ea
rasqal-devel-0.9.33-18.el9.aarch64.rpm
428a21bf2f1fff8485f24f87a97fa75c86b4ab791a55e92bead0240cd15804ec
redland-devel-1.0.17-29.el9.aarch64.rpm
20b31c37d1699bda5d3f395d3426a4685b2350ee13386e36ac900fc092363eb7
taglib-devel-1.12-6.el9.aarch64.rpm
302edef8009de60952bbea22d4192bc70db6406445db778ffc8a4b9921def0d7
twolame-devel-0.3.13-19.el9.aarch64.rpm
86ba074c8dabc035c21e7e9842ea4ab318ad15647596fe8782795937a0ce4d98
xmlsec1-devel-1.2.29-9.el9.aarch64.rpm
173bf7b0b92fd87a1ba2a9de8cb7393970990e79024ccc4985b4588b28358132
xmlsec1-gcrypt-1.2.29-9.el9.aarch64.rpm
bbcf0e81746775754d83c3f06b59b85dcede2324085a8f487a9acbb9b3f52ad7
xmlsec1-gnutls-1.2.29-9.el9.aarch64.rpm
76784a298ad5c53ebca60c66969ad00049d793cf214c60d2f2bb9ce588221485
xmlsec1-gnutls-devel-1.2.29-9.el9.aarch64.rpm
23867d3938ab3d16a854caaee7a20b8226e245bcf48126d553704d612c3c5086
xmlsec1-openssl-devel-1.2.29-9.el9.aarch64.rpm
732db3fe3592e36b933dcab625764bb6197e4a26be755f2c026fe13b6ee0fc66
yajl-devel-2.1.0-21.el9.aarch64.rpm
5bff3a63b4bd5036cc6578b512181be1062df6c7beb303fd578cb7259b744fb7
RLBA-2022:8440
mutter bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for mutter.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Mutter is a compositing window manager that displays and manages desktop
through OpenGL. It combines the window-management logic inherited from the
Metacity window manager with a display engine that uses the Clutter
toolkit.
Bug Fix(es) and Enhancement(s):
* [AMDCLIENT 9.1 Bug] [Lenovo]When switch to some resolutions will be black screen [Rocky Linux-9.1.0.z] (BZ#2136747)
rocky-linux-9-aarch64-crb-rpms
mutter-devel-40.9-10.el9_1.aarch64.rpm
b63a2e8644ee10e1f2467ed4bf526733f74eba968d4d41445861b651c27a300f
RLSA-2022:8453
Important: device-mapper-multipath security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for device-mapper-multipath.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The device-mapper-multipath packages provide tools that use the device-mapper multipath kernel module to manage multipath devices.
Security Fix(es):
* device-mapper-multipath: Regression of CVE-2022-41974 fix in Rocky Linux (CVE-2022-3787)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
device-mapper-multipath-devel-0.8.7-12.el9_1.1.aarch64.rpm
db0c13a8ead6c48f3f1f705f87d017c621d2207be662cf9f294d03dc0051367c
RLSA-2022:8493
Important: python3.9 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for python3.9.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: local privilege escalation via the multiprocessing forkserver start method (CVE-2022-42919)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3-debug-3.9.14-1.el9_1.1.aarch64.rpm
0ab1bc8089c366ce9e299b726d6e7d364552149253ee57360a89813b7e64c567
python3-idle-3.9.14-1.el9_1.1.aarch64.rpm
bacf73f1a335be08b17cd6e6a66a9f115d11201637e63069416865f21760a0c3
python3-test-3.9.14-1.el9_1.1.aarch64.rpm
72d367b1c768f800e4dd84b0a5b1e09f6642c35d05a94dfe985a00ef51db4f3a
RLBA-2022:2549
new packages: wireshark
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for wireshark.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
wireshark-devel-3.4.10-1.el9.aarch64.rpm
09ee736f538f4fac01f354c98145fcc98fdeca2b611e82f4db90b3c727f23d8f
RLSA-2022:8643
Important: varnish security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for varnish.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up.
Security Fix(es):
* varnish: Request Forgery Vulnerability (CVE-2022-45060)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
varnish-devel-6.6.2-2.el9_1.1.aarch64.rpm
6aecc646ff7854945a799cf7614e202096aeb71644b38d244d391e0fb7eb89f2
RLBA-2023:0947
ipset bug fix and enhancement advisory
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ipset.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The ipset packages provide the ipset utility and the ipset service to manage IP sets in the Linux kernel. Depending on the type, an IP set may store IP addresses, networks, (TCP/UDP) port numbers, MAC addresses, interface names or combinations of them in a way that ensures high speed when matching an entry against a set.
Bug Fix(es) and Enhancement(s):
* systemctl restart ipset extremely slow restoring large saved set (BZ#2043008)
rocky-linux-9-aarch64-crb-rpms
ipset-devel-7.11-7.el9_1.aarch64.rpm
aeb27ce0c56e56a7f11167f299af2a841ab7bb36c89b8be4b91fed5c6eb8eb06
RLBA-2023:0948
libnetfilter_conntrack bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnetfilter_conntrack.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
libnetfilter_conntrack is a userspace library providing a programming interface (API) to the in-kernel connection tracking state table.
Bug Fix(es) and Enhancement(s):
* conntrack -D with filters sometimes ignores the filters and deletes all connection state (BZ#2122641)
rocky-linux-9-aarch64-crb-rpms
libnetfilter_conntrack-devel-1.0.8-5.el9_1.aarch64.rpm
1b7b2bb1cc8118714f555e7d5308485b14397d0b28830bed196dcce5674b49a0
RLBA-2023:0950
nftables bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nftables.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
nftables provides a packet-filtering tool, with numerous improvements in convenience, features, and performance. It is the designated successor to iptables, ip6tables, arptables and ebtables.
Bug Fix(es) and Enhancement(s):
* RFE: Document why nft ipsec out ip daddr fail to match with xfrmi topo (BZ#1806431)
* Make upstream test suite pass (BZ#1973687)
* Prevent port-shadow attacks in sample nat config (BZ#2061940)
* nftables set concatenation match (ether saddr . vlan id) displays wrong (BZ#2094887)
* nftables denies rule with explicit ether type match and VLAN ID in set concatenation (BZ#2094890)
* nft asserts if set concatenation contains a constant (BZ#2094894)
* nftables add ipsec rule fail (BZ#2113874)
* NFT delete element rule return false value. (BZ#2115627)
* nft: netlink_delinearize.c:2695: netlink_delinearize_rule: Assertion `pctx->table != NULL' failed. (BZ#2130721)
rocky-linux-9-aarch64-crb-rpms
nftables-devel-1.0.4-9.el9_1.aarch64.rpm
3d9bc1638f97b56384cd0005cc394be62a955b6e793ee310bdaa557be4cf758b
RLSA-2023:2127
Important: samba security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for samba.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.
Security Fix(es):
* samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided (CVE-2022-38023)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libsmbclient-devel-4.16.4-103.el9_1.aarch64.rpm
ecbc5b34ccf2bb7ad2eec9a4db6953358c2ae725782ed4add9b3b00beda2cf8d
libwbclient-devel-4.16.4-103.el9_1.aarch64.rpm
b05e035515f718a6a12b37119b02b98c1141ef449b450435e1d8985f76741a3a
samba-devel-4.16.4-103.el9_1.aarch64.rpm
4445dcc6cb1cfea711ab02a78a52f59b6115a3069cacb484ef0088fdb632af9c
samba-pidl-4.16.4-103.el9_1.noarch.rpm
d37af99927d8d78941c6e456156317a42c6ec42358e0c9c154068d1ec62808dc
samba-test-4.16.4-103.el9_1.aarch64.rpm
8ef4347d2ec9b334dfb4d897b7081e044fd9bfec40f39256cd15a61339309404
samba-test-libs-4.16.4-103.el9_1.aarch64.rpm
96b634654a1097b700986a9c63a35677d624b074d84f8f13dc2a10e8ca4d9786
RLSA-2023:0953
Moderate: python3.9 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.9.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* Python: CPU denial of service via inefficient IDNA decoder (CVE-2022-45061)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3-debug-3.9.14-1.el9_1.2.aarch64.rpm
3e2a95afff547f69143791fcccfce5cfa07f29a8af826c9d5c55cf48c90d7589
python3-idle-3.9.14-1.el9_1.2.aarch64.rpm
cc88801d361195569c2ce76ed4c77d8a032171558b1eac9d80706e0cb5a80374
python3-test-3.9.14-1.el9_1.2.aarch64.rpm
9e5024a778eb6396233e67c3d33b3d455f7ea83c3c40095823c523aa82196d88
RLBA-2022:2550
new packages: oniguruma
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for oniguruma.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
oniguruma-devel-6.9.6-1.el9.5.aarch64.rpm
a94ef600c237154869111f422fc87f66077645bb123ec4dde5f4b9ea9c9117c9
RLSA-2023:0957
Moderate: lua security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for lua.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language.
Security Fix(es):
* lua: use after free allows Sandbox Escape (CVE-2021-44964)
* lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file (CVE-2021-43519)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
lua-devel-5.4.4-2.el9_1.aarch64.rpm
6ecd81929a1e5bea1728e9d8ab3dfd7eccbb0441a394e4fec0f1fa7854746c82
RLBA-2023:0964
libvirt bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
Bug Fixes:
* libvirt doesn't catch mdevs created thru sysfs (BZ#2141364)
* libvirt kills virtual machine on restart when 2M and 1G hugepages are mounted (BZ#2152083)
* qemuAgentGetDisks cannot parse response from a guest agent running in Windows VM (BZ#2154410)
Enhancement:
* Backport the qemuDomainGetStatsCpu fallback Implementation (BZ#2157094)
rocky-linux-9-aarch64-crb-rpms
libvirt-devel-8.5.0-7.4.el9_1.aarch64.rpm
e906fe09d7075072fa59d657f9400b8f7df8df507f90ac2ca7020e4e2d1bbc81
libvirt-docs-8.5.0-7.4.el9_1.aarch64.rpm
8b1fc933f6f3fc21605446ff9cfdd7257da804108e76aafdffad2a67c4af0ddb
libvirt-lock-sanlock-8.5.0-7.4.el9_1.aarch64.rpm
eb6da5cf3ec3fd31455082895374319113973e2fc8c484eb4919e786e17c790c
RLBA-2023:1756
.NET 7.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet7.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es):
* Update .NET 7.0 to SDK 7.0.105 and Runtime 7.0.5 [rhel-9.1.0.z] (BZ#2183592)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-7.0-source-built-artifacts-7.0.105-1.el9_1.aarch64.rpm
79bac036ff8a12f27dbc2db8195a1135a8c1117bb33a9ded8028b051b19bc854
RLSA-2023:0302
Moderate: libtiff security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libtiff.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files.
Security Fix(es):
* LibTiff: DoS from Divide By Zero Error (CVE-2022-2056, CVE-2022-2057, CVE-2022-2058)
* libtiff: Double free or corruption in rotateImage() function at tiffcrop.c (CVE-2022-2519)
* libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c (CVE-2022-2953)
* libtiff: Assertion fail in rotateImage() function at tiffcrop.c (CVE-2022-2520)
* libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c (CVE-2022-2521)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libtiff-tools-4.4.0-5.el9_1.aarch64.rpm
7c923ecc66ba36aa2323f5353c57af80378c48ed0a783c86329adb92e03bf079
RLBA-2022:2611
new packages: libwacom
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libwacom.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libwacom-devel-1.12.1-2.el9.aarch64.rpm
c63fb269670797f06ea4de2194e077577ec2def42a11dfae2010b57f2154bb99
RLSA-2023:1879
Important: java-17-openjdk security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for java-17-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit.
Security Fix(es):
* OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930)
* OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939)
* OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954)
* OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967)
* OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937)
* OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938)
* OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* In FIPS mode, the list of cryptographic services and algorithms available is limited to those that are FIPS compliant. It was found that this filtering was too strict and was also excluding service attributes. These attributes are now made available in FIPS mode, as they are in non-FIPS mode. (RHBZ#2186804)
* Previously, the XML signature provider was unable to operate in FIPS mode. Following recent enhancements to FIPS mode support, the XML signature provider can now be supported. It is now enabled in FIPS mode. (RHBZ#2186811)
* The PKCS#11 provider used by FIPS mode can be supported by different PKCS#11 tokens. It was found that some PKCS#11 tokens may not be initialised fully before use, leading to an exception being thrown by the provider. With this release, this exception is now expected and handled by the FIPS support code. (RHBZ#2186807)
rocky-linux-9-aarch64-crb-rpms
java-17-openjdk-demo-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
b1b7e7b424e8106b8bc9a54103f446f6b90ed8e205ca71223cbf1810c43f63b2
java-17-openjdk-demo-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
3a111989cc8ced89bf1331c7f0edb6410f4028499a7f7012919b650cba2b019f
java-17-openjdk-devel-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
f8f4d6c396ac03bfd25a5676237f44ab0c4a1f9042d252021b2dfa26239a42db
java-17-openjdk-devel-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
3b5f77c2a02e9f42924998bb600de2445aea603080f3790f91e5dc16d7a81895
java-17-openjdk-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
4553b2e908c5e492d38c160014b59e66ef7198ebb3419aac8ab3a75e027db2b9
java-17-openjdk-headless-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
5313949dc67e93f8236228dacd783577104a0041584d0ae6bae2b605e33aea3c
java-17-openjdk-headless-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
18325762279b117c5cff91ea7cb6085c1fbd4c39396e88f79ad506db909197d0
java-17-openjdk-jmods-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
da38267a7186f00330fc0b283d99a5dc302c4eba30b3b0539138e12f106c5d1d
java-17-openjdk-jmods-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
7f6a850970b2a5a3bba427752ecbf51c9077f91389366bec6ad8da3633dd3076
java-17-openjdk-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
650fcd886ad2a6c5b2dd485324b56c11778f8e4d2db5f7053d3267d96676be61
java-17-openjdk-src-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
1c50a344b368829868ec05dcac46ce8f373d8fee0aeb59754bf80cd1c055e0f0
java-17-openjdk-src-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
d3b3ee5b26f7f5970f5514286a26b3abb960e5df0712f25398413fc6cef36f77
java-17-openjdk-static-libs-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
655ae96f43236a61fcef303b20e0100d85ec9485e7cacf7fd9ae6a6804551fa0
java-17-openjdk-static-libs-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm
409fd6409a8829cb20b368a85bd086b85890dbbea8b5cd73eb6153583a3cb78f
RLBA-2023:2639
java-17-openjdk bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for java-17-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit.
Bug Fix(es):
* All Rocky Linux versions now share a single OpenJDK build (RHBZ#2189326)
* In FIPS mode, the list of cryptographic services and algorithms available is
limited to those that are FIPS compliant. It was found that this filtering was
too strict and was also excluding service attributes. These attributes are now
made available in FIPS mode, as they are in non-FIPS mode. (RHBZ#2186803)
* Previously, the XML signature provider was unable to operate in FIPS mode.
Following recent enhancements to FIPS mode support, the XML signature provider
can now be supported. It is now enabled in FIPS mode. (RHBZ#2186810)
* The PKCS#11 provider used by FIPS mode can be supported by different PKCS#11
tokens. It was found that some PKCS#11 tokens may not be initialised fully
before use, leading to an exception being thrown by the provider. With this
release, this exception is now expected and handled by the FIPS support code.
(RHBZ#2186806)
rocky-linux-9-aarch64-crb-rpms
java-17-openjdk-demo-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm
f1516104118bd0eb02b0920fdd4dd0ba46ad8a58f53f76722a18ff4f4b09a464
java-17-openjdk-demo-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm
f33dc1ccfcd4d3e850c198d8004f502ec5f229a400bea5667ea36b353725a6f7
java-17-openjdk-devel-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm
58fed1222e7250c5a57963bd8361de158bce00d0fce0e196df98b370642b666d
java-17-openjdk-devel-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm
33e6e47429084c5ef159f63835cd412045010ddc89b89d6a4000b7ada200fdd9
java-17-openjdk-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm
48cf2cef9334901418d84eb277475c0967a632283f4319745fc632968870ccf3
java-17-openjdk-headless-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm
05d6cbcd37857e311f1bca692e59ebfe0e70fad4003e1f898d2297c8f7b438ad
java-17-openjdk-headless-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm
fe91ce7f60ac21cb6c13eba8d53bc41570ea0a3f503dcdb53a7b199f717c2f73
java-17-openjdk-jmods-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm
ac88e8b3db9b25b485a94fab42bb06bfb878c19d49ec7969d7db9cdf4d782897
java-17-openjdk-jmods-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm
348c503a9ccc8a5ccd50099ac5fb025dcdcaf92865d7c1e4ff3fcdf4e10ac5df
java-17-openjdk-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm
6b0086fc23b5a86fb20122b7c1b78f2b634591bdaad4bfe93e2dcca442520631
java-17-openjdk-src-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm
fd8453c3d96e871129a6cb94137c07778205a9c7930b3068f49d541e193a87ca
java-17-openjdk-src-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm
a0d33191b6db668aa4249ffe68f3b6147e25aa4c3bd9958a55b4ecd898f888ba
java-17-openjdk-static-libs-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm
a7d34409e99b819f51cb5f84ae202f050002f89f1383f5c646a46ef417680a4f
java-17-openjdk-static-libs-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm
8a3521aa46cd6b34689726d80a59dfeb8a234aed496724c65ed01ed27fcf4e0a
RLSA-2023:1880
Important: java-11-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for java-11-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.
Security Fix(es):
* OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930)
* OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939)
* OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954)
* OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967)
* OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937)
* OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938)
* OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-11-openjdk-demo-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
583870d759b1f4bfe28f31218ed23b6cf658fef3779ad9bd2637b2fa887cb488
java-11-openjdk-demo-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
af5d641225bc5a82426a91f6e18e7e57bef1aa005cc442eb9b982514eec99e5d
java-11-openjdk-devel-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
0184be94c12cd8074d93dafe2809364cfb01cc29acd72543e1780ad0e46f8f64
java-11-openjdk-devel-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
9b354634c0393dd6269f1aaed47ecbe81302d3901b3216a6717c75dc2a8ce369
java-11-openjdk-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
d34e391fe4b5dbcd78159973995a7e45855841745b2389c8c14b324f6d9772a0
java-11-openjdk-headless-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
f94af326b11333ec07460d51e79decc22c5c9fc838ac651df4fb784b0bcfb852
java-11-openjdk-headless-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
be408373e7402f6214dbc537147c8228410a112d799c56e79da1b4fcb9ad1d49
java-11-openjdk-jmods-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
8ff15c578508aa1e2c330471c716c32d6fbcf96a30fd8521410a5ddc1e4af3b8
java-11-openjdk-jmods-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
6e4cf9599de2f7c1e414de75fe56ae96a17b03b830b3d53b70dfe370b3db3e70
java-11-openjdk-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
900977816fef5a518e7d6fa1033f275833f013741104046d022d2170e4ee76b9
java-11-openjdk-src-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
e2f424e9e6c817944d027a6ed8c2512825d8f4c63e75a4d6e62a0a5781579d2b
java-11-openjdk-src-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
cd5c95eef1339ee8452b0078bbf2e0223f7d34686b6d530180b872736e444d8c
java-11-openjdk-static-libs-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
2a87df4bed9cba42107cab5aa2d922710dc48b24ea9381c5d8e0a857a34f9ed6
java-11-openjdk-static-libs-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm
3cfcafb3b588e355b832aa1df6f26315eb7b22a821dcb09b8a58f41d6ffc0d1a
RLBA-2023:2640
java-11-openjdk bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for java-11-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.
Bug Fix(es):
* All Rocky Linux versions now share a single OpenJDK build (RHBZ#2189325)
rocky-linux-9-aarch64-crb-rpms
java-11-openjdk-demo-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm
c0ef8fb12d4ac8875ef35a1b89c55b1f569d7fbf0024a830cdf398a4ad1d8177
java-11-openjdk-demo-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm
0fed820197a0985bc0fdf55b0c75cd9140780fcbb00d42e26557f325ec7769da
java-11-openjdk-devel-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm
d3bdd62be32a2b674c0c09dd9b3a446216717493974e96c22c5f0e9535588cfe
java-11-openjdk-devel-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm
3f0fd3bd2224355f21340c73110331bd58e496591ee75d64f30d91d212a606f9
java-11-openjdk-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm
a5a30dc3f76af3e37bafec49c54848eb3dea63500f9f22945a869041a9a81922
java-11-openjdk-headless-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm
d4ff181481422b957971464570bec93690b23706e7b3b5036bec8522fb77177c
java-11-openjdk-headless-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm
0905d2f0c95551cb8965ffb134d5b14c26361a151ebc9d4da9e26936bfedab52
java-11-openjdk-jmods-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm
98afa4fbcca2697d6c970d4235005bc437237f1c1f695f14c73310371f42361a
java-11-openjdk-jmods-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm
b08c31fba4dd132e09b4c80ce8dbd6553f3a4e46502b967b0e009aa4345d2a3f
java-11-openjdk-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm
9d166dc32f8614f2040debcc39a899f650452907552da2c50ce528a2a6fba8da
java-11-openjdk-src-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm
91bd65782bc6108c0da3bae5312d95103edef22894183e74e5b9b08b39306f78
java-11-openjdk-src-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm
8f325045e7aafdb98c13567afc330188c4a32cda007a0e280caefdfe30e728b5
java-11-openjdk-static-libs-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm
5282aaa42fa5702baa3435ef7fae4ad4dbbef7ea29e3a85be6e5152dfef52cea
java-11-openjdk-static-libs-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm
c8a7e5076d0324f0b49205b860031653139ec53448ded8d76072eb580e588b32
RLSA-2023:1909
Important: java-1.8.0-openjdk security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for java-1.8.0-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.
Security Fix(es):
* OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930)
* OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939)
* OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954)
* OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967)
* OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937)
* OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938)
* OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* The RSAPSSSignature implementation works with RSA keys via the SunRSASign provider. However, it did not fully check that the RSA key could be used by the provider before attempting to do so, leading to the possibility of errors being returned with custom security providers. The implementation now validates RSA keys and will allow other providers to handle such keys where it cannot. (RHBZ#2188024)
rocky-linux-9-aarch64-crb-rpms
java-1.8.0-openjdk-demo-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
a80a1f577f8f92d37c88f553deb7d9c1ba27c0785c429fc16a1274e6d025210c
java-1.8.0-openjdk-demo-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
352941ceb2f51d6171f0d198c14aaa045b57232b0947a419e7cc4609e6662ed6
java-1.8.0-openjdk-devel-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
7111f6997fd0319da1120c1be887b96ae6e8d233fdbc6598bfc5b8a390b10d2b
java-1.8.0-openjdk-devel-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
d87e93ea96c27e90ec5919d9a51ca1c6800be01a0139df3764322df2094a606e
java-1.8.0-openjdk-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
876430ed858b1e37e3411abb45581f2e2107e1fce911269c64b02e260a7b06df
java-1.8.0-openjdk-headless-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
853b037cccd10d56d4ff9b7c3a3c73e0537d72c15ea93a2875835d53e6166cd6
java-1.8.0-openjdk-headless-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
a1172208ff05d8808c0f243301264fcd87bc20ec0f459987ba9917f3aa2ffc59
java-1.8.0-openjdk-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
f4b2ae7ec1d3d173f6e1bd2fa671bebbbf5e1765979a564513966a3bf3cfcc48
java-1.8.0-openjdk-src-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
047e6346428a62d329cbf236562343723c9fffab4b6c3d0ef5b85eb24447aa98
java-1.8.0-openjdk-src-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm
82e49a1430a55e73d8cdf9ca93290f5fdb8f11eef87ecaae4e1a41b4ba2384ba
RLBA-2023:2643
util-linux bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for util-linux.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program.
Bug Fix(es):
* Backport hint about systemd daemon-reload (BZ#2180441)
rocky-linux-9-aarch64-crb-rpms
libfdisk-devel-2.37.4-11.el9_2.aarch64.rpm
1d4cd2fc34ed529e84c7258f1b6ca32de28fb35f8ac73173fea3ef8970a9686b
libsmartcols-devel-2.37.4-11.el9_2.aarch64.rpm
cc5701282bfee91ed30d0b75474f95dd87c34997272bf64fb1810af88f311d84
RLSA-2023:0077
Moderate: .NET 6.0 security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for dotnet6.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.113 and .NET Runtime 6.0.13.
The following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.113). (BZ#2154459)
Security Fix(es):
* dotnet: Parsing an empty HTTP response as a JSON.NET JObject causes a stack overflow and crashes a process (CVE-2023-21538)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-6.0-source-built-artifacts-6.0.113-1.el9_1.aarch64.rpm
2cde22c09d614c32cc8d9c4759a9c401e212b19d148bb1601cec09688be7724a
RLBA-2023:0080
.NET 7.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet7.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es) and Enhancement(s):
* Update .NET 7.0 to SDK 7.0.102 and Runtime 7.0.2 [Rocky Linux-9.1.0.z] (BZ#2154468)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-7.0-source-built-artifacts-7.0.102-1.el9_1.aarch64.rpm
a4caff1b592aa16947bc3059220fa21046a56eb8f63a98c1178efdf40b50f25a
RLBA-2023:2578
file bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for file.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
file-devel-5.39-12.el9.aarch64.rpm
68c2cbb552abd20eec15ab5eb11eac5f204bee8934e3712070f222acb1eeffef
RLSA-2023:4099
Important: bind security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for bind.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
* bind: named's configured cache size limit can be significantly exceeded (CVE-2023-2828)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
bind-devel-9.16.23-11.el9_2.1.aarch64.rpm
971d1b384cfee905f62882c189757b341200a630c0ec2163e9ebf3348386d61a
bind-doc-9.16.23-11.el9_2.1.noarch.rpm
20ee083d8fb6047b1e6e360485045d533a07dccc725f7edbccf65103c6854c09
RLSA-2023:4178
Moderate: java-1.8.0-openjdk security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-1.8.0-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.
Security Fix(es):
* OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312) (CVE-2023-22049)
* OpenJDK: array indexing integer overflow issue (8304468) (CVE-2023-22045)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Prepare for the next quarterly OpenJDK upstream release (2023-07, 8u382) [rhel-9] (BZ#2220662)
rocky-linux-9-aarch64-crb-rpms
java-1.8.0-openjdk-demo-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm
91aa1e5a40f85a3f9423271831804b9907cb37e617c8a7bc46f74ffbf1d54169
java-1.8.0-openjdk-demo-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm
a607448084f38c509f5b4b7397ae66d93fc0238a8ac4f241e60ae3adaed8a864
java-1.8.0-openjdk-devel-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm
403f3665a9dee9baeeee0896fa1a4692f15daf92597a488aa1453c23fb207650
java-1.8.0-openjdk-devel-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm
095870132a789fa2ae23af590611265412d4333a475ea581ff6cf6d6e747f991
java-1.8.0-openjdk-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm
f78c10c1fa46a4d22fb26269980a0feed850a20109bce85be93383ead0b7d757
java-1.8.0-openjdk-headless-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm
32c1d8afbe6fc253873663e317c92cdc627381c2d5f7b20cdb9df3524e74f750
java-1.8.0-openjdk-headless-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm
ffb6cb9bc46411c9163196cf242587e62907fc5a59596686048688f683cbb132
java-1.8.0-openjdk-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm
c756080bfc2fa66f51b1a6435d88546d4780d2ac0b39a82de1b14046f40b7dfa
java-1.8.0-openjdk-src-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm
995c7a7268ad09bdf0f92d1a270916d609c7a0a0de8a696f80ca841407917dfc
java-1.8.0-openjdk-src-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm
793b2d7858291811af65d741f372978432286ef31be0ca3f493c3665c68296fc
RLBA-2023:4374
java-11-openjdk bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for java-11-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Bug Fix(es):
* The recent OpenJDK 11.0.20 security update accidentally removed a runtime dependency on the tzdata-java package. Installations of the package on systems that did not already have tzdata-java installed were left with missing timezone data. This mistake is rectified in this build. (RHBZ#2224428)
For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
java-11-openjdk-demo-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm
4f026104dec02e7cb1385353fe4eaca25ca0ce4cba861362ee98051fb14dba67
java-11-openjdk-demo-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm
ddf1c8d4e2a4174f44db23f0f4fbbdce11418da963d23d90e6090e0b027bdc19
java-11-openjdk-devel-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm
d84d0ba4dbe749123c86245c181c69ad2281e305b8057c95b8e994eb44b15493
java-11-openjdk-devel-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm
864076b242ccad5f60eda0f98f5e3677708d7b04cc9fca4d5ca76cbe03d8f034
java-11-openjdk-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm
c4d9a0a2c73c90f9c9f7bffe3663b31f809fc7055696b9fcbc2ff414c1627e8b
java-11-openjdk-headless-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm
3c91a7211c04a0a2509ef60f55db94831cdb9509056fa7b21b2df91e6ea80838
java-11-openjdk-headless-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm
c6a31c4035dd01a8a940e21ae80c9a243b74226ea841b5c038fc0533028cf4e0
java-11-openjdk-jmods-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm
d9791f6c65689d98b7ab2a897f3d49b287aaf7ca3a90611a4f902037c25b5421
java-11-openjdk-jmods-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm
d54ae86f9b84678b0fcdb0cba45e65f868875b1aae04658ece4ca478bf9efcc6
java-11-openjdk-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm
bbf0392268832398919ae1cb364066618125dd03c400e393befbb0196e0c6131
java-11-openjdk-src-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm
8226b01413697d09e6de854344463e235a159f8d3acf5c341a98b11c3d534709
java-11-openjdk-src-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm
b5e631e04b240b3cce626324d9dcb5264a0aa64f5decf6093a1ea36feaa1c31b
java-11-openjdk-static-libs-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm
f7e423459d6c355cf9a9365a5e7ca53047b106a8117d134a09c498ea3e8acb38
java-11-openjdk-static-libs-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm
649edf2af9d70bc34bbf84ee226363e389abee229b2956229b6c098f37b01231
RLBA-2023:4375
ostree bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ostree.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
OSTree is a tool for managing bootable, immutable, versioned file system trees.
Bug Fix(es):
* backport https://github.com/ostreedev/ostree/pull/2874/commits/de6fddc6adee09a93901243dc7074090828a1912 (BZ#2224105)
rocky-linux-9-aarch64-crb-rpms
ostree-devel-2023.1-6.el9_2.aarch64.rpm
42838b23ae067c8c6c3138ce121af6c639bf1bfc3f86612a0b226876eb5df51d
RLSA-2023:3595
Important: python3.9 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for python3.9.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: urllib.parse url blocklisting bypass (CVE-2023-24329)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3-debug-3.9.16-1.el9_2.1.aarch64.rpm
e938d62db5d1ab7f96d89af823bfdfd2b754d8bbd20c9d6b7c0258fc3da473bb
python3-idle-3.9.16-1.el9_2.1.aarch64.rpm
ad0237b36bbe6e61f0d87a8e49bca018b12757f4a5e92d69eae80a9124c2f320
python3-test-3.9.16-1.el9_2.1.aarch64.rpm
aadfc74a08df4d56c46190d6b6e2903cb9fcaba6ce0446a52b34cd5f276481d0
RLBA-2023:3730
avahi bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for avahi.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Avahi is an implementation of the DNS Service Discovery and Multicast DNS
specifications for Zero Configuration Networking. It facilitates service
discovery on a local network. Avahi and Avahi-aware applications allow you to
plug your computer into a network and, with no configuration, view other people
to chat with, view printers to print with, and find shared files on other
computers.
Bug Fix(es):
* [Rocky Linux-9] Avahi-tools package built but not shipped. (BZ#2204487)
rocky-linux-9-aarch64-crb-rpms
avahi-compat-howl-0.8-12.el9_2.1.aarch64.rpm
5c34408d5d8f623fb8e8a1ffc86d415c603446e57b96f4761e2d0ab0d6654838
avahi-compat-howl-devel-0.8-12.el9_2.1.aarch64.rpm
fb014f3d4d65c3b14a10814ad1ca445709cf5d5bc2fcabf1fbab74302f770541
avahi-compat-libdns_sd-0.8-12.el9_2.1.aarch64.rpm
c9e1efcba0f2bc2eb53ca68d47975f672d5562c9d056315baec0a8d4fb1a2304
avahi-compat-libdns_sd-devel-0.8-12.el9_2.1.aarch64.rpm
18dce30e7e38cbab9d65b1fcf521f382d22434731a80cf55aca9985ea78a58ee
avahi-devel-0.8-12.el9_2.1.aarch64.rpm
05fc8952ed64ae5a687ff03d2937fd43aaf72ceacffee4be0a4db6abbbaf2810
RLSA-2023:3423
Important: cups-filters security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for cups-filters.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently.
Security Fix(es):
* cups-filters: remote code execution in cups-filters, beh CUPS backend (CVE-2023-24805)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
cups-filters-devel-1.28.7-11.el9_2.1.aarch64.rpm
6290ab64c808d13975606c00b64c455d76827411d0402dca4ec23c7f57142bf7
RLSA-2023:3585
Important: python3.11 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for python3.11.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries.
Security Fix(es):
* python: urllib.parse url blocklisting bypass (CVE-2023-24329)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.11-debug-3.11.2-2.el9_2.1.aarch64.rpm
dbc125bd305458129c2b091d243517d46ce23f0bc5f0968beed0f4116095fb51
python3.11-idle-3.11.2-2.el9_2.1.aarch64.rpm
eec45375f1839a1f6f3f6ae2b4ac7e841c04940840bc7f299c6c676c426e69ab
python3.11-test-3.11.2-2.el9_2.1.aarch64.rpm
3bf5f7576ce9ce62787d8aaaacf4acbf88c5c6c91a530bcfd30cc7b1f0eb9cce
RLSA-2023:3711
Moderate: libtiff security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libtiff.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files.
Security Fix(es):
* libtiff: heap-based buffer overflow in processCropSelections() in tools/tiffcrop.c (CVE-2022-48281)
* libtiff: out-of-bounds read in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0795)
* libtiff: out-of-bounds read in extractContigSamplesShifted24bits() in tools/tiffcrop.c (CVE-2023-0796)
* libtiff: out-of-bounds read in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c (CVE-2023-0797)
* libtiff: out-of-bounds read in extractContigSamplesShifted8bits() in tools/tiffcrop.c (CVE-2023-0798)
* libtiff: use-after-free in extractContigSamplesShifted32bits() in tools/tiffcrop.c (CVE-2023-0799)
* libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0800)
* libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c (CVE-2023-0801)
* libtiff: out-of-bounds write in extractContigSamplesShifted32bits() in tools/tiffcrop.c (CVE-2023-0802)
* libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0803)
* libtiff: out-of-bounds write in extractContigSamplesShifted24bits() in tools/tiffcrop.c (CVE-2023-0804)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libtiff-tools-4.4.0-8.el9_2.aarch64.rpm
864a091f33cd8336e4d49d6e88a5d33db5b449b2272d7243d644f2febeb62d78
RLSA-2023:3715
Moderate: libvirt security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
Security Fix(es):
* libvirt: Memory leak in virPCIVirtualFunctionList cleanup (CVE-2023-2700)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libvirt-client-qemu-9.0.0-10.2.el9_2.aarch64.rpm
471ee3cce885c8e91d1fed1305c3d535fe59eb24790ebba19ce92daa9a99f474
libvirt-devel-9.0.0-10.2.el9_2.aarch64.rpm
0cd310144dd6787aa27aae9797dc6d588375401d583135bf660d8d18a41bd1b6
libvirt-docs-9.0.0-10.2.el9_2.aarch64.rpm
6d2792603ab8e5cf72552d0993e60e4758671a1d6293ef31ee70fd2f6b259be3
libvirt-lock-sanlock-9.0.0-10.2.el9_2.aarch64.rpm
a5ee3671441d7b5e0da8e5c325e22007090e48a006ecd170641432702c06cda2
RLSA-2023:3714
Moderate: postgresql security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for postgresql.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
PostgreSQL is an advanced object-relational database management system (DBMS).
Security Fix(es):
* postgresql: schema_element defeats protective search_path changes (CVE-2023-2454)
* postgresql: row security policies disregard user ID changes after inlining. (CVE-2023-2455)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
postgresql-docs-13.11-1.el9_2.aarch64.rpm
7a463f2f4a248d0c61847831218c6865215d0789904fe9adb8fe0e7ae71b4817
postgresql-private-devel-13.11-1.el9_2.aarch64.rpm
b107d5432fa2003ec503643a2eebd0d130762cec4bfd9f0f7e7a7cb480e609a1
postgresql-server-devel-13.11-1.el9_2.aarch64.rpm
14bb94411884c12efdc59d77c4ad7ed0ebdba56144fc77c5527cca5a00c59ef0
postgresql-static-13.11-1.el9_2.aarch64.rpm
0c9e753d55deb4a800a5aead4b5bb14888b3d32959a7c6d1cfa89322509ca9e9
postgresql-test-13.11-1.el9_2.aarch64.rpm
9bf99b877780d9d58661979064b74f569c70cf71663eace9c14d2ba50c11bf57
postgresql-upgrade-devel-13.11-1.el9_2.aarch64.rpm
cfdd742753906679745c70fe90df519a81c1eaed1541f7b2b26244866ffcb2f3
RLBA-2023:3720
criu bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for criu.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The criu packages provide the Checkpoint/Restore in User Space (CRIU) function, which provides the possibility to checkpoint and restore processes or groups of processes. This in turn allows improved fault tolerance or high availability (HA) of a system by restoring a failed process to its state in an earlier point in time.
Bug Fix(es) and Enhancement(s):
* Containers migration "podman container checkpoint" doesn't work on Sapphire Rapids CPU. (BZ#2203235)
rocky-linux-9-aarch64-crb-rpms
criu-devel-3.17-5.el9_2.aarch64.rpm
1884e950e86cf8923e5854e640a1deccf2e1e268d6bd9d30916104fab9f9e60a
RLSA-2023:5214
Important: libwebp security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for libwebp.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently.
Security Fix(es):
* libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libwebp-tools-1.2.0-7.el9_2.aarch64.rpm
50a8de0613089b88caed1b2cc55827e31b86a08689d44884d4c483855ca1396e
RLSA-2023:5689
Important: bind security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for bind.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
* bind: stack exhaustion in control channel code may lead to DoS (CVE-2023-3341)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
bind-devel-9.16.23-11.el9_2.2.aarch64.rpm
b0a4a4224956230d0ca2c8768da5ca40cefdaccdf6d1cbb0bcf6257b478f0c7c
bind-doc-9.16.23-11.el9_2.2.noarch.rpm
0f211a1c8314dbddcfe39c71a696a31d9e0b324f16d7c2e705901839a82d9315
RLSA-2023:5459
Important: ghostscript security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for ghostscript.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed.
Security Fix(es):
* ghostscript: vulnerable to OS command injection due to mishandles permission validation for pipe devices (CVE-2023-36664)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libgs-devel-9.54.0-10.el9_2.aarch64.rpm
a152128bcc497f8e7ddfbc8e58fcba40c6d90c0a0316dda5500b0b520f9401c9
RLSA-2023:5708
Important: dotnet6.0 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for dotnet6.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET 6.0 to SDK 6.0.123 and Runtime 6.0.23.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-6.0-source-built-artifacts-6.0.123-1.el9_2.aarch64.rpm
d99b9e6d6515ac80647c85a96086f356ed6fcf709501638b2ccc18630e355ba2
RLSA-2023:5749
Important: .NET 7.0 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for dotnet7.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET 7.0 to SDK 7.0.112 and Runtime 7.0.12.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-7.0-source-built-artifacts-7.0.112-1.el9_2.aarch64.rpm
98b17210768de2b8be8043c5c1139cf0e531840ccaa0bcaa78137d55e990dd97
RLSA-2023:5838
Important: nghttp2 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for nghttp2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libnghttp2-devel-1.43.0-5.el9_2.1.aarch64.rpm
d75938bdddad68af06d791d2e5a2231cc509cc417c12d4f2f801f7d09394bd9a
nghttp2-1.43.0-5.el9_2.1.aarch64.rpm
5ef799bd79900de0e32e54af7796be1cff0fcc8b220ad3d30194007246336d9c
RLSA-2023:6242
Moderate: .NET 6.0 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for dotnet6.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.124 and .NET Runtime 6.0.24.
Security Fix(es):
* dotnet: Denial of Service with Client Certificates using .NET Kestrel (CVE-2023-36799)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-6.0-source-built-artifacts-6.0.124-1.el9_2.aarch64.rpm
10b705ea29e6e55d6b14784847f5fe9c281dfe7b4fcc2f0182fe0486a713ded0
RLSA-2024:2758
Moderate: kernel security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation (CVE-2023-6240)
* CVE-2024-25743 hw: amd: Instruction raise #VC exception at exit (AMD-SN-3008,CVE-2024-25742,CVE-2024-25743)
Bug Fix(es):
* ffdhe* algortihms introduced in 0a2e5b909023 as .fips_allowed=1 lack pairwise consistency tests (JIRA:Rocky Linux-27009)
* mm/mglru: fix underprotected page cache (JIRA:Rocky Linux-29235)
* [EMR] [TBOOT OS] SUT could not go to S3 state with Rocky Linux 9.2 Tboot OS One CPU return -16 running BUSY (JIRA:Rocky Linux-29673)
* system hangs completely - NMI not possible (JIRA:Rocky Linux-30678)
* ice 0000:6f:00.0: PTP failed to get time (JIRA:Rocky Linux-30110)
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.16.1.el9_4.aarch64.rpm
a2303864abb5003a91bb303b1ff80f5c6e3e29a1fdfd94ee2340f038e45c4ec1
kernel-tools-libs-devel-5.14.0-427.16.1.el9_4.aarch64.rpm
50893f8a488212587ef2816a61d4908ee5393664391900d4c96a29671ba3e4e2
libperf-5.14.0-427.16.1.el9_4.aarch64.rpm
ae4ffdc1d1955a1af2c7ad7c3dadf8978f477b56288de4be3af000c2e0ac9188
RLSA-2024:1818
Moderate: java-1.8.0-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-1.8.0-openjdk.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.
Security Fix(es):
* OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011)
* OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068)
* OpenJDK: Pack200 excessive memory allocation (8322114) (CVE-2024-21085)
* OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507) (CVE-2024-21094)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-1.8.0-openjdk-demo-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm
6c30c46b3fea1bf064f2f8713660b3a6c28500b28510e553d99d14729eb7b83a
java-1.8.0-openjdk-demo-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm
4611a2f3e76765fe48e3ea85d10325a9755a93365d125e916f18a4aaa56304ff
java-1.8.0-openjdk-devel-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm
9379a3b81fc09cc30260c81013c232478eb2772b279f9690cba34442dddf99cf
java-1.8.0-openjdk-devel-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm
af0f5ee838fa969303083ee2854bcd9e7934821d6729bdaa18a87ca8aaf92e41
java-1.8.0-openjdk-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm
6d45b093d78f72bd4e6143d5a79dcbb4311901522a5309fe53eb6dac19206b36
java-1.8.0-openjdk-headless-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm
6c617c843b50e555107d427d55e70eea36e82aa821871eef4a605d6f1c7df2ef
java-1.8.0-openjdk-headless-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm
ca90c02bfa8edd34a3bee77e5f4a3c47812410cef5e5db11a55f8d62d8e3bb2c
java-1.8.0-openjdk-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm
e917ddb6d2f1ce3fd09c1f0166c78132e01d1f124a9500247b8a1080b9897fdd
java-1.8.0-openjdk-src-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm
f7f99c246245ccae2a69e22673ff88ef96b2ea262ee2e1d153a449eced1977f3
java-1.8.0-openjdk-src-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm
dbb6351d79c06da6984a2f843cf9d4bca6eeedbe7fcf3ddd477408877890963f
RLSA-2024:1828
Moderate: java-21-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-21-openjdk.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit.
Security Fix(es):
* OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011)
* OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068)
* OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) (CVE-2024-21012)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-21-openjdk-demo-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm
b390428b6ca17effd05e117b30de0cec729ec0060e2213d77a46a7140ab6b91a
java-21-openjdk-demo-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm
4eef3505a0a86b147a77e7adc78577aff217c242104ac4894c8a8e3425e410de
java-21-openjdk-devel-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm
9344181c86ab2f702640e38583f8200532ea6656206808d886b192f290816c90
java-21-openjdk-devel-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm
bda0633331e0552593d0bf15487d473b7d3d0026102f5b073596f304c099778f
java-21-openjdk-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm
283297f98fad61e352994410b4ff72abea7514dec731f6cf68c76e752c99bf42
java-21-openjdk-headless-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm
5e81be33cc9fcc2123e8cc37263014fd68a2b0a94c4abecd23f16da9edeff959
java-21-openjdk-headless-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm
3f8ec051613768cfb90a5de37985d1a045becfc18644a104dd7a4e2b4f6fbb9c
java-21-openjdk-jmods-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm
a701fcafebd39e6e13f3be10ed96c2cd2e8d8d13d09e61085add9b30ac1dbe85
java-21-openjdk-jmods-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm
9cec839e1471bdc270c52131327d0af3f3369a99644843cae197a38c9414d04f
java-21-openjdk-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm
fa3a8424ed8f99693e974e2e37419e80d99da30a89f4157bddcb12d9961b8a8b
java-21-openjdk-src-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm
5fdd61cabb7442c8a5cbbdc7d603e214a090eab8f2128958b33ebefdca492fae
java-21-openjdk-src-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm
51309f1a5b43336adcc32aaec97c516dd1a7ffb19c0d42765027e7b04367093f
java-21-openjdk-static-libs-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm
14ee715591abf8477adfb45f66aa743a53f017104c4083d930c7531967098930
java-21-openjdk-static-libs-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm
6fbfe176cea0a2dd6eed4e2660a28bc1c5ba17f87c414b2a773ab516bef23325
RLSA-2024:1822
Moderate: java-11-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-11-openjdk.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.
Security Fix(es):
* OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011)
* OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068)
* OpenJDK: Pack200 excessive memory allocation (8322114) (CVE-2024-21085)
* OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507) (CVE-2024-21094)
* OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) (CVE-2024-21012)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-11-openjdk-demo-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm
5dc34c0280158f544e49a96df7c99365f7ada1955f075e7d4d5617e4e0c43ae3
java-11-openjdk-demo-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm
afdd52cb0e786a4a36139e560f9ed2fb2be50dfdf01d003196b1c8b8cea346b8
java-11-openjdk-devel-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm
500bdfcea69ad1cf6eec15935ae24743bbda0c021f9f5592292d583a9c08c246
java-11-openjdk-devel-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm
8e5f09a51cdd9fc6419d772c5688c8dfe304a0256b7f511ffc3571ca503871f6
java-11-openjdk-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm
27b3ea31069b260b33a0313357a7b2e7cf54a9372de1d0592e0ce0beac87e157
java-11-openjdk-headless-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm
b6e0606098253e6e7981ccd55160c894f023b211fd1b67b07ab1985c800e4ccf
java-11-openjdk-headless-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm
7de904c6ce46d3ef7592f23d704b019d4941da2dcf78859cc6e00bfa3d68fcdf
java-11-openjdk-jmods-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm
3536be9d976419bd8299621da88195b321de75b0f37c02d62c3fc315c24d6c3c
java-11-openjdk-jmods-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm
28205616f7d3f58a61885b29cd97bf8a27a9cabde4fb90c90f347a4e3d3e0008
java-11-openjdk-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm
b10fcd269ebd96928541d38c43be00543d4d79de77d1559dbaeb29e760559ca3
java-11-openjdk-src-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm
326ea92896df0ab391e7bcf7fbe24c3009ad46618b912dfc9b44c3186518024c
java-11-openjdk-src-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm
2bbbd37ecfa37becf0f38a77b50b120517f232c5678d109c93362c03bccb06df
java-11-openjdk-static-libs-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm
159cc4533aef5e2d2b2a915c9ef5a0cddbcfcd77273c219b79e30df7e09229c2
java-11-openjdk-static-libs-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm
0c71af97477f904157d399e2f6c6ac7f24fe5dcaea6fd0d41be058663b7f1257
RLBA-2024:2403
gcc bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gcc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gcc-plugin-devel-11.4.1-3.el9.aarch64.rpm
366a60f2faafea70743d9e57319b0ba2c292f6216ab019658d605e5ef8059c7c
libstdc++-static-11.4.1-3.el9.aarch64.rpm
ad931b68350d5c9decfb2411245e00e72c0a72cfb89bac7f65b77c5760d84297
RLBA-2024:2411
e2fsprogs bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for e2fsprogs.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libss-devel-1.46.5-5.el9.aarch64.rpm
2f57b2884e49479bdcc4dd1c3b058cc0dc21bfa0f464777b9595ec088061a62e
RLEA-2024:2424
libnvme bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnvme.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnvme-devel-1.6-1.el9.aarch64.rpm
1af917c8fda97c37f251a7311e9c0060a0d89007b96bd7ae8961e4646a4b60c9
RLBA-2024:2428
glib2 bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for glib2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
glib2-static-2.68.4-14.el9.aarch64.rpm
cc725de7590fcb49c83b29b5822bdb6a80f24ed527f82507e812074eeb40369f
RLBA-2024:2439
libsemanage bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsemanage.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsemanage-devel-3.6-1.el9.aarch64.rpm
901fd89d3c1e35338fef56066dcd7170a3b594dff87df268bc92cba68a0dd834
RLBA-2024:2440
libsepol bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsepol.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsepol-static-3.6-1.el9.aarch64.rpm
3a52a99d9b6500512bc2a5a1901e7216619202896432d0cc8a35914e2775e238
RLSA-2024:2463
Moderate: systemd security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for systemd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit.
Security Fix(es):
* systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes (CVE-2023-7008)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
systemd-boot-unsigned-252-32.el9_4.aarch64.rpm
e57a72dbf78da5a6e8922163af116aedf1f85ed376ffd68be367eda46fdeeae4
RLBA-2024:2468
libtalloc bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtalloc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtalloc-devel-2.4.1-1.el9.aarch64.rpm
8b8b0a654d9d23de727a4544c9f8c987e2cd8eb1d5c96364f1601b6902b159da
RLBA-2024:2467
hwdata bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for hwdata.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
hwdata-devel-0.348-9.13.el9.noarch.rpm
58c4eaf9977c6f04c1eedc31774ca3ed6426326b913654fb73d5ba1d51944c92
RLBA-2024:2472
libtdb bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtdb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Enterprise Software Foundation
Enterprise Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtdb-devel-1.4.9-1.el9.aarch64.rpm
f9bdb710b97d0fd8f24315c4b949ef8a694434e6c7cc99363507da84b8026a25
RLBA-2024:2493
nftables bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nftables.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
nftables-devel-1.0.9-1.el9.aarch64.rpm
a706b6fbad7ea22f44e945a373e166e117fd6a018995c8f9b2c4b8effcab9181
RLBA-2024:2489
libbpf bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libbpf.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libbpf-devel-1.3.0-2.el9.aarch64.rpm
b62816f4e0f5f1e70bae4c1227bda717207347349b0ec149a9d88eec4af71b24
libbpf-static-1.3.0-2.el9.aarch64.rpm
f10d79687a4a2003583199327107c10fe5179942ee16642153d36e40bf41b023
RLBA-2024:2497
lvm2 bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for lvm2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
device-mapper-devel-1.02.197-2.el9.aarch64.rpm
a7480d533806a01e097bc8ac9dcf9de5c5d87e2e49140b6e88344d20b8146f1b
device-mapper-event-devel-1.02.197-2.el9.aarch64.rpm
ec13788b53761e4796236ee97f564b5e4975cc11173cd33a5784b07afd71273c
lvm2-devel-2.03.23-2.el9.aarch64.rpm
8173636a9263b732d775602027dc634ae38f7d5822a34931c283be5db553acbd
RLBA-2024:2510
libtirpc bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtirpc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtirpc-devel-1.3.3-8.el9_4.aarch64.rpm
b09d7d581c3bc85371c486ed33b525a055313eed45a7c5ebd5213b4e591482e3
RLBA-2024:2515
iproute bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for iproute.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
iproute-devel-6.2.0-6.el9_4.aarch64.rpm
ee8f5e97579b25cb5c70b797cac7c885f724b01777dd7b4d067f5c63f46a6790
RLSA-2024:2571
Moderate: sssd security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for sssd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources.
Security Fix(es):
* sssd: Race condition during authorization leads to GPO policies functioning inconsistently (CVE-2023-3758)
Bug Fix(es):
* socket leak (JIRA:Rocky Linux-22340)
* Passkey cannot fall back to password (JIRA:Rocky Linux-28161)
* sssd: Race condition during authorization leads to GPO policies functioning inconsistently (JIRA:Rocky Linux-27209)
rocky-linux-9-aarch64-crb-rpms
libsss_nss_idmap-devel-2.9.4-6.el9_4.aarch64.rpm
c2b12fef96033c146d9d7ecc48af5d54bfb6330910e5bb1adad4a64c60cfbe14
RLBA-2023:6326
libstoragemgmt bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libstoragemgmt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libstoragemgmt-devel-1.9.7-2.el9.aarch64.rpm
1aa3d48cf3fcf9762afacd7e903b9f08ccdaa3d2bea1e2a4f2bc5318c0a8e162
RLEA-2023:6416
libblkio bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libblkio.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libblkio-devel-1.3.0-1.el9.aarch64.rpm
5a848ffc0789c79898af473e9f1c92fc3f2f34eaf44a0f5010f0b897f1b3a82a
RLSA-2023:6518
Moderate: flatpak security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for flatpak.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux.
The following packages have been upgraded to a later upstream version: flatpak (1.12.8). (BZ#2221792)
Security Fix(es):
* flatpak: TIOCLINUX can send commands outside sandbox if running on a virtual console (CVE-2023-28100)
* flatpak: Metadata with ANSI control codes can cause misleading terminal output (CVE-2023-28101)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
flatpak-devel-1.12.8-1.el9.aarch64.rpm
f1ff49352fa4149ce217d7164b0df7b50f269062a876c27ecb03532ed877d606
RLSA-2023:6551
Moderate: yajl security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for yajl.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator.
Security Fix(es):
* yajl: Memory leak in yajl_tree_parse function (CVE-2023-33460)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
yajl-devel-2.1.0-22.el9.aarch64.rpm
ff2b161f27b1fba7d15f1a9fcd84a2a2698fd17aa027769bce1685fbb73193a9
RLSA-2024:0951
Important: postgresql security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for postgresql.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
PostgreSQL is an advanced object-relational database management system (DBMS).
Security Fix(es):
* postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL (CVE-2024-0985)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
postgresql-docs-13.14-1.el9_3.aarch64.rpm
04bb6a9df15528b6c7ee9ccda481367760b5524bacbedd78b8b575de57dfd749
postgresql-private-devel-13.14-1.el9_3.aarch64.rpm
1840df451971e46a65706cace81065b6117a89cef1cc1d1e1824f41d6bebbd25
postgresql-server-devel-13.14-1.el9_3.aarch64.rpm
077a6c7451ac480b3bead2dd6b412cb226a35a5458940593104ff0130e8cbddb
postgresql-static-13.14-1.el9_3.aarch64.rpm
acbd40059e17853b8abd62ae2c0a1b092d256d33b1c1c90ab9ab0907eb9128a0
postgresql-test-13.14-1.el9_3.aarch64.rpm
c4a6a7910a43cb4098b1ee8d0a08712b309ab3bdde4fe983b8640d1051dcf97f
postgresql-upgrade-devel-13.14-1.el9_3.aarch64.rpm
374856e4c684e558794ae4c8a87118478f0b57b929bab67f8ec101b1f74b65c0
RLSA-2024:1691
Important: varnish security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for varnish.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up.
Security Fix(es):
* varnish: HTTP/2 Broken Window Attack may result in denial of service (CVE-2024-30156)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
varnish-devel-6.6.2-4.el9_3.1.aarch64.rpm
524633204ae1c65de72b78c58ba225340418180c27315bfd089c7f4d998f64ef
RLBA-2024:1736
.NET 7.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet7.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es) and Enhancement(s):
* Update .NET 7.0 to SDK 7.0.118 and Runtime 7.0.18 [rhel-9.3.0.z] (Rocky Linux-31202)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-7.0-source-built-artifacts-7.0.118-1.el9_3.aarch64.rpm
043aeb523c026c31fa6bdd63edd092278b9bcba1eff0abe871d15e2873de6160
RLSA-2024:1750
Important: unbound security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for unbound.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.
Security Fix(es):
* A vulnerability was found in Unbound due to incorrect default permissions,
allowing any process outside the unbound group to modify the unbound runtime
configuration. The default combination of the "control-use-cert: no" option with
either explicit or implicit use of an IP address in the "control-interface"
option could allow improper access. If a process can connect over localhost to
port 8953, it can alter the configuration of unbound.service. This flaw allows
an unprivileged local process to manipulate a running instance, potentially
altering forwarders, allowing them to track all queries forwarded by the local
resolver, and, in some cases, disrupting resolving altogether.
To mitigate the vulnerability, a new file
"/etc/unbound/conf.d/remote-control.conf" has been added and included in the
main unbound configuration file, "unbound.conf". The file contains two
directives that should limit access to unbound.conf:
control-interface: "/run/unbound/control"
control-use-cert: "yes"
For details about these directives, run "man unbound.conf".
Updating to the version of unbound provided by this advisory should, in most
cases, address the vulnerability. To verify that your configuration is not
vulnerable, use the "unbound-control status | grep control" command. If the
output contains "control(ssl)" or "control(namedpipe)", your configuration is
not vulnerable. If the command output returns only "control", the configuration
is vulnerable because it does not enforce access only to the unbound group
members. To fix your configuration, add the line "include:
/etc/unbound/conf.d/remote-control.conf" to the end of the file
"/etc/unbound/unbound.conf". If you use a custom
"/etc/unbound/conf.d/remote-control.conf" file, add the new directives to this
file. (CVE-2024-1488)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
rocky-linux-9-aarch64-crb-rpms
unbound-devel-1.16.2-3.el9_3.5.aarch64.rpm
1287eef05a7e09aa31e186c0c171d94a1741412689e0c993e7e9ab187d35a56a
RLBA-2024:2152
poppler bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for poppler.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
poppler-cpp-devel-21.01.0-19.el9.aarch64.rpm
9db98e110d2420770cf17221a72ab4a2f0f95efce21497a1c9afd77dbdddcb99
poppler-devel-21.01.0-19.el9.aarch64.rpm
a1218530c37c0177b1e5cb31465c0cd3fe85792053e6702466ff568f42582c54
poppler-glib-devel-21.01.0-19.el9.aarch64.rpm
bc01254682a35910b0027898617e449799c48d42581572c14ed6c3333ac055df
poppler-glib-doc-21.01.0-19.el9.noarch.rpm
b98f8763e4028928b011007b9d32f354d13a37a5235f0a62892a4e70c62f66de
poppler-qt5-devel-21.01.0-19.el9.aarch64.rpm
7a892e7650c2c363bee690250d78242dd14b360f95e38132babfd0ee7fa44707
RLBA-2024:2166
xdp-tools bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for xdp-tools.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libxdp-devel-1.4.2-1.el9.aarch64.rpm
fbbbc066d96cbf60ea2da3b01848589d57e8db230b8edb5eac6c8c046d64253b
libxdp-static-1.4.2-1.el9.aarch64.rpm
5c69b7724a4876aa0eaf89509d9aeb2f2017a6a2879975ea9599bb748c9291fe
RLBA-2024:2235
ostree bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ostree.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ostree-devel-2024.4-3.el9_4.aarch64.rpm
43086d39b94a044915424ff6c2a5ec8013ef4fa92aeb756b00264ca85aaa43fc
RLSA-2024:2264
Important: edk2 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for edk2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.
Security Fix(es):
* edk2: Buffer overflow when handling Server ID option from a DHCPv6 proxy Advertise message (CVE-2023-45235)
* EDK2: heap buffer overflow in Tcg2MeasureGptTable() (CVE-2022-36763)
* EDK2: heap buffer overflow in Tcg2MeasurePeImage() (CVE-2022-36764)
* edk2: Integer underflow when processing IA_NA/IA_TA options in a DHCPv6 Advertise message (CVE-2023-45229)
* edk2: Out of Bounds read when handling a ND Redirect message with truncated options (CVE-2023-45231)
* edk2: Infinite loop when parsing unknown options in the Destination Options header (CVE-2023-45232)
* edk2: Infinite loop when parsing a PadN option in the Destination Options header (CVE-2023-45233)
* openssl: Excessive time spent checking DH keys and parameters (CVE-2023-3446)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
edk2-ovmf-20231122-6.el9.noarch.rpm
4c5983e3bd7aa795f76f6b36fbcb0c3b01e79b5829de3dc2cdf289e3b58d51d3
edk2-tools-20231122-6.el9.aarch64.rpm
d8908939bbd7509a3c4ba6416f738262d47bb1087b4b4baac3b01efa89a986a7
edk2-tools-doc-20231122-6.el9.noarch.rpm
1106801a16134dcc67ff1c42cba9285d342482a0738571f69f6754e6c4fef1bb
RLBA-2024:2263
mesa bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for mesa.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
mesa-libOSMesa-23.3.3-1.el9.aarch64.rpm
16d5d5c105160da9deffda1ae42ce6b11cabfaad59a24eb05a396b70f36e689e
mesa-libOSMesa-devel-23.3.3-1.el9.aarch64.rpm
df801828da67d0fafe88d1209f35f9128a80ab644c80955afdcf9884019a57b0
RLBA-2024:2268
anaconda bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for anaconda.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
anaconda-widgets-devel-34.25.4.9-1.el9_4.rocky.0.3.aarch64.rpm
8f30b5a0baa0c3db71a2224fdf8c7e96d40ae266b5f75f53197eae10f7409964
RLEA-2024:2269
nbdkit enhancement and bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nbdkit.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
nbdkit-devel-1.36.2-1.el9.0.1.aarch64.rpm
caa8311edaa6c3eca6f7a48c1953ca20c001800f7ed20d1fb93f2e6db3d8c7fd
nbdkit-example-plugins-1.36.2-1.el9.0.1.aarch64.rpm
046d9d387a998f3797356e08a053054485063d2038cdf0535f71318941554809
nbdkit-srpm-macros-1.36.2-1.el9.0.1.noarch.rpm
e1342ca81938949694ea20a66d9e26068f058c2ca03b6b19320ffd076c71e0f7
RLSA-2024:2287
Moderate: gstreamer1-plugins-bad-free security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for gstreamer1-plugins-bad-free.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer.
Security Fix(es):
* gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video (CVE-2023-40474)
* gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with AES3 audio (CVE-2023-40475)
* gstreamer-plugins-bad: Integer overflow in H.265 video parser leading to stack overwrite (CVE-2023-40476)
* gstreamer-plugins-bad-free: buffer overflow vulnerability (CVE-2023-50186)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gstreamer1-plugins-bad-free-devel-1.22.1-4.el9.aarch64.rpm
de226e40e3153109849eb972c4ba098cdfba6af46642821c16317bb476fd03b5
RLBA-2024:2371
dovecot bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dovecot.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
dovecot-devel-2.3.16-11.el9.aarch64.rpm
ec00c56969d47d424d13b96cb66fe17f44720e262c30861c51c1ab866b0aaf54
RLEA-2024:2546
389-ds-base enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for 389-ds-base.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base
packages include the Lightweight Directory Access Protocol (LDAP) server and
command-line utilities for server administration.
Enhancement
* [RFE] allows plugins to log multi-factor authentication notification (JIRA:Rocky Linux-30588)
rocky-linux-9-aarch64-crb-rpms
389-ds-base-devel-2.4.5-6.el9_4.aarch64.rpm
d2eec6872e7e1fa91dc2272aa09742d6acf5d71d795675870c9e5f4938f915ff
RLSA-2024:2551
Important: bind security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for bind-dyndb-ldap, bind.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
* bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868)
* bind: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387)
* bind: Specific recursive query patterns may lead to an out-of-memory condition (CVE-2023-6516)
* bind: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution (CVE-2023-5679)
* bind: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled (CVE-2023-5517)
* bind: Parsing large DNS messages may cause excessive CPU load (CVE-2023-4408)
Bug Fix(es):
* bind-dyndb-ldap: rebuilt to adapt ABI changes in bind
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
bind-devel-9.16.23-18.el9_4.1.aarch64.rpm
d2f23758f84d4fea811f6671e88f422af8fc5243de4fa7be06b778168d4eacc8
bind-doc-9.16.23-18.el9_4.1.noarch.rpm
8b6ceb2cff4a31dbfd4549385ffa41f8832ea282433d2f6a2cd9c436da71218f
RLBA-2024:2554
.NET 8.0 bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet8.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET Core is a managed-software framework. It implements a subset of the .NET
framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es) and Enhancement(s):
* Update .NET 8 to RC2 (JIRA:Rocky Linux-13785)
* Update .NET 8 to 8.0.0 GA (JIRA:Rocky Linux-15860)
* Update .NET 8.0 to SDK 8.0.101 and Runtime 8.0.1 (JIRA:Rocky Linux-19803)
* RFE: add -dbg packages to ship complete symbol files (JIRA:Rocky Linux-23070)
* Update .NET 8.0 to SDK 8.0.102 and Runtime 8.0.2 (JIRA:Rocky Linux-23804)
* Don't set a locale when running msbuild Exec on Unix (JIRA:Rocky Linux-23936)
* Update .NET 8.0 to SDK 8.0.103 and Runtime 8.0.3 [rhel-9] (JIRA:Rocky Linux-27553)
* Follow-up for Rocky Linux-22734: CheckCertificateRevocationList flag for SHA1 CAs [rhel-9.4.0.z] (JIRA:Rocky Linux-28344)
* Update .NET 8.0 to SDK 8.0.104 and Runtime 8.0.4 [rhel-9.4.0.z] (JIRA:Rocky Linux-31208)
* Update .NET 8 to RC1 (JIRA:Rocky Linux-4073)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-8.0-source-built-artifacts-8.0.104-2.el9_4.aarch64.rpm
ced46f12d6d9959bd5d4bbcc9966d87b793f4e141cb221068aa9127018d25455
RLBA-2024:2552
.NET 6.0 bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet6.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET Core is a managed-software framework. It implements a subset of the .NET
framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es) and Enhancement(s):
* Update .NET 6.0 to SDK 6.0.123 and Runtime 6.0.23 (JIRA:Rocky Linux-11675)
* Update .NET 6.0 to SDK 6.0.124 and Runtime 6.0.24 (JIRA:Rocky Linux-14451)
* Update .NET 6.0 to SDK 6.0.125 and Runtime 6.0.25 (JIRA:Rocky Linux-15349)
* Update .NET 6.0 to SDK 6.0.126 and Runtime 6.0.26 (JIRA:Rocky Linux-19801)
* Update .NET 6.0 to SDK 6.0.122 and Runtime 6.0.22 (JIRA:Rocky Linux-1995)
* Update .NET 6.0 to SDK 6.0.127 and Runtime 6.0.27 (JIRA:Rocky Linux-23785)
* Update .NET 6.0 to SDK 6.0.128 and Runtime 6.0.28 [rhel-9] (JIRA:Rocky Linux-27541)
* Update .NET 6.0 to SDK 6.0.129 and Runtime 6.0.29 [rhel-9.4.0.z] (JIRA:Rocky Linux-31198)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-6.0-source-built-artifacts-6.0.129-2.el9_4.aarch64.rpm
056992407e405436c35458186dee10ba68b383fac8fe236e9ce4f28fe00eba3f
RLBA-2024:2556
nmstate bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nmstate.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound.
Bug Fix(es):
* Support checkpoint on rollback when using global DNS of NetworkManager (JIRA:Rocky Linux-31190)
* Include driver information in systemd network link file created by
`nmstatectl persist-nic-names` (JIRA:Rocky Linux-32330)
rocky-linux-9-aarch64-crb-rpms
nmstate-devel-2.2.27-2.el9_4.aarch64.rpm
65706a19fe08593eaa887b45f8d5a990fc6f6561affcba86cefdf52d3e8f2514
nmstate-static-2.2.27-2.el9_4.aarch64.rpm
85cf95d9a57b5520b12226d79919e9395db67454e8aec7a1102f1bc3986262d3
RLBA-2024:2558
ipa bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ipa.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity
management, and authorization solution for both traditional and cloud-based
enterprise environments.
Bug Fix(es):
* Enforce OTP for ldap bind (in some scenarios) (JIRA:Rocky Linux-23377)
* Unable to re-add broken AD trust - NT_STATUS_INVALID_PARAMETER (JIRA:Rocky Linux-29745)
* Backport latest test fixes in ipa (JIRA: Rocky Linux-30905)
rocky-linux-9-aarch64-crb-rpms
python3-ipatests-4.11.0-10.el9_4.noarch.rpm
7725dac69c697105c653ca1561a9db64fc77128278183b1b7c5cb1efd9c3d65c
RLSA-2024:2560
Moderate: libvirt security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
Security Fixes:
* libvirt: off-by-one error in udevListInterfacesByStatus() (CVE-2024-1441)
* libvirt: negative g_new0 length can lead to unbounded memory allocation (CVE-2024-2494)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fixes:
* libvirt: off-by-one error in udevListInterfacesByStatus() [rhel-9] (JIRA:Rocky Linux-25081)
* libvirt: negative g_new0 length can lead to unbounded memory allocation [rhel-9] (JIRA:Rocky Linux-29515)
rocky-linux-9-aarch64-crb-rpms
libvirt-daemon-plugin-sanlock-10.0.0-6.2.el9_4.aarch64.rpm
83a5678d1015ff5eb3d7cc48a04aa75eabddc4eaa7e2dd29bb8b6766181af581
libvirt-devel-10.0.0-6.2.el9_4.aarch64.rpm
a607417a1c72a948ea3e3959eeda7db130ed7799c823e2d0cbcec93eb4206131
libvirt-docs-10.0.0-6.2.el9_4.aarch64.rpm
fad458e86d666869dbeacf3b58a1eab952a2005bffc1dcb0d2ac01344e0d3adb
RLSA-2024:4573
Important: java-21-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for java-21-openjdk.
This update affects Rocky Linux 8, Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit.
Security Fix(es):
* OpenJDK: RangeCheckElimination array index overflow (8323231) (CVE-2024-21147)
* OpenJDK: potential UTF8 size overflow (8314794) (CVE-2024-21131)
* OpenJDK: Excessive symbol length can lead to infinite loop (8319859) (CVE-2024-21138)
* OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548) (CVE-2024-21140)
* OpenJDK: Out-of-bounds access in 2D image handling (8324559) (CVE-2024-21145)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-21-openjdk-demo-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm
5055a202a9526066108c17b98f0ccb8815cb6aca963181f86b62f23ed91b06e5
java-21-openjdk-demo-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm
64de7fecbf97a103b47a87d710df8fc956fbde6ea2f739937708887ae32b5358
java-21-openjdk-devel-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm
79f48f2d748720325ddb0cab0aeb04a5493b56846bf4e9166eb823bb8df1b3f7
java-21-openjdk-devel-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm
00325e6f074bfc0b06acd666066cccdeb300dfd317cc7e6ffa0a5f77e9662ce8
java-21-openjdk-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm
09809fa490e0aa4f85b03f7a5d08f58ea8be2868bd5149709dcc45d6db6c38f4
java-21-openjdk-headless-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm
145a026fde386eda2e34fa487f11a44cdccea92735f2a8d7e71ebe4501e124be
java-21-openjdk-headless-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm
65db11d5373a963aadc0eb58e76b9434dbb8135780cd2db3c784f6ca2b71ee9b
java-21-openjdk-jmods-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm
2be668fc5b4aa5e3c7cc619d5e3871ec2d7188062804bd9a84abbbfd2c7bd0fa
java-21-openjdk-jmods-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm
c4a56e9457aa6d0a2be3d786b55ce30cfce805b681f911358eccb35d120247f6
java-21-openjdk-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm
33a95370a33d763f56c93954183b9d17f4acbaafdd4d39de37c9ca9479143fa0
java-21-openjdk-src-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm
75f2a457caa62ae172fead1953e27df1e1f28cfe3afa2ee3a71fd1a3afd936c3
java-21-openjdk-src-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm
08eb5508de3f956ddd842c96d3396559e5028f713771452b75805be285c39a42
java-21-openjdk-static-libs-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm
bb19a0177980833a348048d7ae95e8a195de66951190aee11e0a74df00f4f685
java-21-openjdk-static-libs-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm
bcccd202d12d57015d04cdc941287199cad90937a02e60cd1009fc4e1e95f4a7
RLBA-2024:3983
kernel bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Bug Fix(es):
* [DELL 9.4 BUG] - Screen shows garbage sometimes [rhel-9.4.z] (JIRA:Rocky Linux-36534)
* cifs - Unable to mount CIFS shares after upgrading to Rocky Linux9.4 (JIRA:Rocky Linux-36743)
* [Azure][Rocky Linux-9][MANA]System crash at skbuff when set mtu=100 [rhel-9.4.z] (JIRA:Rocky Linux-37622)
* selective backport from perf upstream v6.8 to fix AmpereOne and Nvidia support [rhel-9.4.z] (JIRA:Rocky Linux-34991)
* [Intel 9.5 FEAT] [SRF] performance: hwmon: (coretemp) Fix core count limitation [rhel-9.4.z] (JIRA:Rocky Linux-35447)
* CNB95: dpll: rebase DPLL to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-36572)
* ice: IRQs being moved to isolated CPUs and causing latency issues [rhel-9.4.z] (JIRA:Rocky Linux-38512)
* Bluetooth device disappears from the device list after a few minutes with AX211 [rhel-9.4.z] (JIRA:Rocky Linux-38524)
* deadlock on dfs_cache_refresh [rhel-9.4.z] (JIRA:Rocky Linux-38904)
* [DELL 9.3 BUG]Unexpected message "integrity: Problem loading X.509 certificate -126" occurred on boot screen. [rhel-9.4.z] (JIRA:Rocky Linux-39933)
* [rhel9-rt-debug] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:46 ( clocksource_mark_unstable) (JIRA:Rocky Linux-9296)
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.22.1.el9_4.aarch64.rpm
53d4af5e43c223c6af55162d81222927aa52e22f840af7b31800d4ab9e728677
kernel-tools-libs-devel-5.14.0-427.22.1.el9_4.aarch64.rpm
c9bfd841aaf5acb15cf7da7b809bf70b769b37d37ec37128c66dd71d04c4c932
libperf-5.14.0-427.22.1.el9_4.aarch64.rpm
6502c217cdd3e4b7bd2a9dfe6e71a6d54dfc642a97fe4cb169fe6879e9a39062
RLSA-2024:4078
Important: python3.9 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for python3.9.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: Path traversal on tempfile.TemporaryDirectory (CVE-2023-6597)
* python: The zipfile module is vulnerable to zip-bombs leading to denial of service (CVE-2024-0450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3-debug-3.9.18-3.el9_4.1.aarch64.rpm
4d7e504ea16c5fe12520f889739995038be21e9f3da37ddbdfa4d7928cce136e
python3-idle-3.9.18-3.el9_4.1.aarch64.rpm
4eec1b03a7b7ae481ce12f4d5b97bddba9ace3b9de9a9f752510c2f4f3c26263
python3-test-3.9.18-3.el9_4.1.aarch64.rpm
4cf14df9bd690f47639b7f3c9a3bccec3ee1d528aacba1bccb7af88c918fb977
RLSA-2024:3959
Important: flatpak security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for flatpak.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux.
Security Fix(es):
* flatpak: sandbox escape via RequestBackground portal (CVE-2024-32462)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
flatpak-devel-1.12.9-1.el9_4.aarch64.rpm
cf451005b822d4c6de7325f647dee0851d3ce163cf25d7ad93a81e28384a1b69
RLSA-2024:3999
Important: ghostscript security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for ghostscript.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed.
Security Fix(es):
* ghostscript: OPVP device arbitrary code execution via custom Driver library (CVE-2024-33871)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libgs-devel-9.54.0-16.el9_4.aarch64.rpm
2e85889839f73a0dbd559f8d083ef12d6ec7e4c19b8d691b273f7b7773c768bd
RLSA-2024:4077
Important: python3.11 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for python3.11.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: Path traversal on tempfile.TemporaryDirectory (CVE-2023-6597)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.11-debug-3.11.7-1.el9_4.1.aarch64.rpm
92723b9e4de9bb79d9ad265cc3e9a044a040e2420d836c071e54f3707cc55d4d
python3.11-idle-3.11.7-1.el9_4.1.aarch64.rpm
9cdff15ac601a5f69422982578abc0b0075edf20dab80b701a9e42ff0a961141
python3.11-test-3.11.7-1.el9_4.1.aarch64.rpm
66cac638f0a1a8597288ba5b31d2655b598a1fb90f482c3e3f99874706c4cea5
RLSA-2024:3619
Moderate: kernel security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: ipv6: sr: fix possible use-after-free and null-ptr-deref (CVE-2024-26735)
* kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() (CVE-2024-26993)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.20.1.el9_4.aarch64.rpm
04727fcd6c12572de5c428fbada8928153a3249a3419ec9ce51f609b3a46502b
kernel-tools-libs-devel-5.14.0-427.20.1.el9_4.aarch64.rpm
fedb67b30da5e904c9984a01401cfe6dfeab9264f91c534c4ff7f24ca417cf1d
libperf-5.14.0-427.20.1.el9_4.aarch64.rpm
206ebe3603ee5c6675467a65f11757120c4b21b8aaf2b1718bc654e39999b8c4
RLSA-2024:3339
Important: glibc security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for glibc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly.
Security Fix(es):
* glibc: Out of bounds write in iconv conversion to ISO-2022-CN-EXT
(CVE-2024-2961)
* glibc: stack-based buffer overflow in netgroup cache (CVE-2024-33599)
* glibc: null pointer dereferences after failed netgroup cache insertion
(CVE-2024-33600)
* glibc: netgroup cache may terminate daemon on memory allocation failure
(CVE-2024-33601)
* glibc: netgroup cache assumes NSS callback uses in-buffer strings
(CVE-2024-33602)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
glibc-benchtests-2.34-100.el9_4.2.aarch64.rpm
80300343b1fb0e3abab509f61d25e3ab972f62ddf3358f92f96bb36be1846bb7
glibc-nss-devel-2.34-100.el9_4.2.aarch64.rpm
db9dabca64a60b776af30f6843d55dd26a65d17270ff7132f4b90074ec051165
glibc-static-2.34-100.el9_4.2.aarch64.rpm
e4e635db05acf5c4f5e0360ddba45a0d11e2cdbd52e655eaec574b5f28563584
nss_db-2.34-100.el9_4.2.aarch64.rpm
892faf67f24feaaa7393f52ac431cc881f674d9565e5dfb83fb495c9665b9409
nss_hesiod-2.34-100.el9_4.2.aarch64.rpm
03ab1dfb6eb5dca737cfb4916fe22cb18a1c74761c1cd01dc0144df37f8260e5
RLSA-2024:3501
Moderate: nghttp2 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for nghttp2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C.
Security Fix(es):
* nghttp2: CONTINUATION frames DoS (CVE-2024-28182)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libnghttp2-devel-1.43.0-5.el9_4.3.aarch64.rpm
4a0ec9eff49f0b1ffd3683892062c8032a38548b0bf406d0718cb4cf86852547
nghttp2-1.43.0-5.el9_4.3.aarch64.rpm
41cfa412d53a7a6534025dba606aafa45763a9f4770ea3bc93c4084305ef0f79
RLBA-2024:2841
.NET 6.0 bugfix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dotnet6.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
Bug Fix(es) and Enhancement(s):
* Update .NET 6.0 to SDK 6.0.130 and Runtime 6.0.30 [rhel-9.4.z] (Rocky Linux-35310)
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-6.0-source-built-artifacts-6.0.130-1.el9_4.aarch64.rpm
cc1c4b05c96cfd56b3cd9e22bdaa0b85345766ac761a3ef0d40deded123ce1af
RLSA-2024:2842
Important: .NET 8.0 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for dotnet8.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.105 and .NET Runtime 8.0.5.
Security Fix(es):
* dotnet: stack buffer overrun in Double Parse (CVE-2024-30045)
* dotnet: denial of service in ASP.NET Core due to deadlock in Http2OutputProducer.Stop() (CVE-2024-30046)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-8.0-source-built-artifacts-8.0.105-1.el9_4.aarch64.rpm
adc8e19bf22c9d9b9b399121eecc6c65eaf836a40cb23fed73d2335924691aea
RLSA-2024:4349
Moderate: kernel security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context (CVE-2023-52626)
* kernel: Bluetooth: Avoid potential use-after-free in hci_error_reset (CVE-2024-26801)
* kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974)
* kernel: xen-netfront: Add missing skb_mark_for_recycle (CVE-2024-27393)
* kernel: net/mlx5e: fix a potential double-free in fs_any_create_groups (CVE-2023-52667)
* kernel: smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870)
* kernel: net/mlx5: Properly link new fs rules into the tree (CVE-2024-35960)
* kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly (CVE-2021-47400)
Bug Fix(es):
* cifs - kernel panic with cifs_put_smb_ses (JIRA:Rocky Linux-28943)
* BUG: unable to handle page fault for address: ff16bf752f593ff8 [rhel-9.4.z] (JIRA:Rocky Linux-35672)
* [HPE 9.4 Bug] Request merge of AMD address translation library patch series [rhel-9.4.z] (JIRA:Rocky Linux-36220)
* [Rocky Linux9] kernel BUG at lib/list_debug.c:51! [rhel-9.4.z] (JIRA:Rocky Linux-36687)
* ice: DPLL-related fixes [rhel-9.4.z] (JIRA:Rocky Linux-36716)
* CNB95: net/sched: update TC core to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-37641)
* IPv6: SR: backport fixes from upstream [rhel-9.4.z] (JIRA:Rocky Linux-37669)
* [RFE] Backport tmpfs noswap mount option [rhel-9.4.z] (JIRA:Rocky Linux-38252)
* Isolated cores causing issues on latest Rocky Linux9.4 kernel and not functioning as desired. [rhel-9.4.z] (JIRA:Rocky Linux-38595)
* [ice] Add automatic VF reset on Tx MDD events [rhel-9.4.z] (JIRA:Rocky Linux-39083)
* [HPEMC Rocky Linux 9.4 REGRESSION] turbostat: turbostat broken on 10+ sockets. [rhel-9.4.z] (JIRA:Rocky Linux-34953)
* bnx2x: fix crashes in PCI error handling, resource leaks [rhel-9.4.z] (JIRA:Rocky Linux-43272)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.24.1.el9_4.aarch64.rpm
363defeafcd25d8d4b329deb29b187ce8d7455e1c08897a7673011eb8a511962
kernel-tools-libs-devel-5.14.0-427.24.1.el9_4.aarch64.rpm
fdb6b00396ae102d573c4b489febce333813993541195421bda69617e14ed851
libperf-5.14.0-427.24.1.el9_4.aarch64.rpm
9b56dc9309898083b99ecb41326ee5bdad47e7d6099317452ab1790a957f4559
RLSA-2024:3754
Important: ipa security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for ipa.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.
Security Fix(es):
* freeipa: delegation rules allow a proxy service to impersonate any user to access another target service (CVE-2024-2698)
* freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force (CVE-2024-3183)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3-ipatests-4.11.0-15.el9_4.noarch.rpm
67e90e53fc46b5e151c183e4c5e16b75ca51e2d40f6c35b3ca4e54605abafc2e
RLBA-2024:3832
libvirt bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.
Bug Fix(es):
* live-migration with NBD TLS fails with "Certificate does not match the hostname " [rhel-9.4.z] (JIRA:Rocky Linux-33781)
rocky-linux-9-aarch64-crb-rpms
libvirt-daemon-plugin-sanlock-10.0.0-6.3.el9_4.aarch64.rpm
e50528761e767c243d469aab6a234783eacbe94bed0f7de8ce824d9c3f5d272e
libvirt-devel-10.0.0-6.3.el9_4.aarch64.rpm
03c632b092d6b34bac5ab6b3a94b4b6e504b4aa7b63130d25a7ba902470761bd
libvirt-docs-10.0.0-6.3.el9_4.aarch64.rpm
3e9173449b264ac7075bd78155f4ee292bc768cab429a9b4505e441f600032a4
RLSA-2024:3837
Important: 389-ds-base security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for 389-ds-base.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base
packages include the Lightweight Directory Access Protocol (LDAP) server and
command-line utilities for server administration.
Security Fix(es):
* 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request (CVE-2024-3657)
* 389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c (CVE-2024-2199)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
389-ds-base-devel-2.4.5-8.el9_4.aarch64.rpm
389704cffb212bc0e6460568de3391503e47e4f8cf63634a9e3d610ffb43bbea
RLSA-2024:4450
Important: dotnet8.0 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for dotnet8.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.107 and Runtime 8.0.7.
Security Fix(es):
* dotnet: DoS in System.Text.Json (CVE-2024-30105)
* dotnet: DoS in ASP.NET Core 8 (CVE-2024-35264)
* dotnet: DoS when parsing X.509 Content and ObjectIdentifiers (CVE-2024-38095)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-8.0-source-built-artifacts-8.0.107-1.el9_4.aarch64.rpm
25273481c8d37c999242079bfb8bdd821d68f042d705f288e6ef08701192b8e2
RLBA-2024:3839
ostree bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ostree.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
OSTree is a tool for managing bootable, immutable, versioned file system trees.
Bug Fix(es):
* [9.4.z] Update ostree to 2024.6 (JIRA:Rocky Linux-36770)
rocky-linux-9-aarch64-crb-rpms
ostree-devel-2024.6-1.el9_4.aarch64.rpm
be7dbd827d29e70c88fba18e043b55abd4140f17dd22c3f388672d2a71390a4c
RLSA-2024:4583
Important: kernel security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: TIPC message reassembly use-after-free remote code execution vulnerability (CVE-2024-36886)
* kernel: ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() (CVE-2021-47548)
* kernel: net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (CVE-2021-47596)
* kernel: vt: fix memory overlapping when deleting chars in the buffer (CVE-2022-48627)
* kernel: can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock (CVE-2023-52638)
* kernel: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index (CVE-2024-26783)
* kernel: net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map (CVE-2024-26858)
* kernel: netfilter: nf_tables: use timestamp to check for set element timeout (CVE-2024-27397)
* kernel: nvme: fix reconnection fail due to reserved tag allocation (CVE-2024-27435)
* kernel: net: ena: Fix incorrect descriptor free behavior (CVE-2024-35958)
* kernel: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). (CVE-2024-36904)
* kernel: lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (CVE-2024-38543)
* kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets. (CVE-2024-38586)
* kernel: net: micrel: Fix receiving the timestamp in the frame for lan8841 (CVE-2024-38593)
* kernel: netfilter: tproxy: bail out if IP has been disabled on the device (CVE-2024-36270)
* kernel: octeontx2-af: avoid off-by-one read from userspace (CVE-2024-36957)
* kernel: blk-cgroup: fix list corruption from resetting io stat (CVE-2024-38663)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.26.1.el9_4.aarch64.rpm
83deee8a444fe0bcfa1d83f8ea51bf20a70fd8937f06b6ce1c1ee9c083095b96
kernel-tools-libs-devel-5.14.0-427.26.1.el9_4.aarch64.rpm
29994e9df64fbe0f2a8eb039d99b5965cd561a5bf58e618f3b8c269392851040
libperf-5.14.0-427.26.1.el9_4.aarch64.rpm
c02689a49e4b212201ff2fefb8a4cab201db425bbfa2589b43e192fcff135d62
RLSA-2024:4928
Moderate: kernel security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: block: null pointer dereference in ioctl.c when length and logical block size are misaligned (CVE-2023-52458)
* kernel: ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() (CVE-2024-26773)
* kernel: bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel (CVE-2024-26737)
* kernel: dm: call the resume method on internal suspend (CVE-2024-26880)
* kernel: net/ipv6: avoid possible UAF in ip6_route_mpath_notify() (CVE-2024-26852)
* kernel: Squashfs: check the inode number is not the invalid value of zero (CVE-2024-26982)
* kernel: nfp: flower: handle acti_netdevs allocation failure (CVE-2024-27046)
* kernel: octeontx2-af: Use separate handlers for interrupts (CVE-2024-27030)
* kernel: icmp: prevent possible NULL dereferences from icmp_build_probe() (CVE-2024-35857)
* kernel: mlxbf_gige: call request_irq() after NAPI initialized (CVE-2024-35907)
* kernel: mlxbf_gige: stop interface during shutdown (CVE-2024-35885)
* kernel: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() (CVE-2023-52809)
* kernel: can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv (CVE-2021-47459)
* kernel: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (CVE-2024-36924)
* kernel: scsi: lpfc: Move NPIV's transport unregistration to after resource clean up (CVE-2024-36952)
* kernel: net: amd-xgbe: Fix skb data length underflow (CVE-2022-48743)
* kernel: epoll: be better about file lifetimes (CVE-2024-38580)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.28.1.el9_4.aarch64.rpm
1f6c79d139c8a594f6c49853d49307960b8859f0a1a8636242f763040efed33b
kernel-tools-libs-devel-5.14.0-427.28.1.el9_4.aarch64.rpm
c06f41658fe6d35ed518875a3a197f45c1ee2802a5d71ce38a8fa712b4ef6d0a
libperf-5.14.0-427.28.1.el9_4.aarch64.rpm
a018226a0c7d29537d401f21a9443292de0162db0b18ea4ea25417954e59057a
RLSA-2024:4935
Important: freeradius security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for freeradius.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service (RADIUS) server, designed to allow centralized authentication and authorization for a network.
Security Fix(es):
* freeradius: forgery attack (CVE-2024-3596)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
freeradius-mysql-3.0.21-40.el9_4.aarch64.rpm
727224c8daf48483148ceea1d7513a778acdda5dd08b914d2b2869e7cec5b3db
freeradius-perl-3.0.21-40.el9_4.aarch64.rpm
9bcce978fd081a0129e65a5eb543dec1a340d1a5dbcedf1ffac1e20f0f217b8b
freeradius-postgresql-3.0.21-40.el9_4.aarch64.rpm
1859abc2c2822972cd63fa5dbba5a1d8d4a5ac0000f5910ab99efbf463af2e5d
freeradius-rest-3.0.21-40.el9_4.aarch64.rpm
2c8b1976b64aedfe30e997e80f8684bc56e2b1ad00fd803bb15af82505109e5a
freeradius-sqlite-3.0.21-40.el9_4.aarch64.rpm
c50699e8edd2c935f745a8ee72f5a345accb9a4dd2bd8a7617096cf6f75955b5
freeradius-unixODBC-3.0.21-40.el9_4.aarch64.rpm
674db0b9bb0dfc911b7184f199c74a307b6bd8de9bb89ef3f42780c5a35b1da4
RLSA-2024:5363
Important: kernel security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Errata Tool Automation could not update the description because it is longer (4803) than ET limit of 4000 characters. (OSCI-6058)
Please update the description manually.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.31.1.el9_4.aarch64.rpm
526e091284485c499095dd04ea6befcc862a31e739471dd93f3b118b69c11f97
kernel-tools-libs-devel-5.14.0-427.31.1.el9_4.aarch64.rpm
3458bf9d381a17aca65763edf19d7ce31151f51a51895b38a75e49b58d36b406
libperf-5.14.0-427.31.1.el9_4.aarch64.rpm
9a38fff5c6a7af7c34cbb48620f5d135052ddaad48aff70eaa4c6f64718283ff
RLSA-2024:5192
Moderate: 389-ds-base security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for 389-ds-base.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.
Security Fix(es):
* 389-ds-base: Malformed userPassword hash may cause Denial of Service (CVE-2024-5953)
* 389-ds-base: unauthenticated user can trigger a DoS by sending a specific extended search request (CVE-2024-6237)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
389-ds-base-devel-2.4.5-9.el9_4.aarch64.rpm
3914154e2565a0f83ed5be77e3da2dab11dbf6f76dc364e39ba74f504064ff34
RLSA-2024:5231
Important: bind and bind-dyndb-ldap security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for bind-dyndb-ldap, bind.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
* bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam (CVE-2024-1737)
* bind9: bind: SIG(0) can be used to exhaust CPU resources (CVE-2024-1975)
* bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content (CVE-2024-4076)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
bind-devel-9.16.23-18.el9_4.6.aarch64.rpm
822ccfdf45ea3b7f56d84dd1cad6b79946540433418de6f038089557e502965f
bind-doc-9.16.23-18.el9_4.6.noarch.rpm
daeca2e33af99da35b03d30bf7ffd4190c0e147b87eda5f11bb716856d5a44fc
RLSA-2024:5533
Important: python3.12-setuptools security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for python3.12-setuptools.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially ones that have dependencies on other packages. This package also contains the runtime components of setuptools, necessary to execute the software that requires pkg_resources.
Security Fix(es):
* pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.12-setuptools-wheel-68.2.2-3.el9_4.1.noarch.rpm
88392789f4736337f4f20525fb6a4654fa678b1f4697392906fcce12108172aa
RLSA-2024:6567
Moderate: kernel security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: efivarfs: force RO when remounting if SetVariable is not supported (CVE-2023-52463)
* kernel: nfsd: fix RELEASE_LOCKOWNER (CVE-2024-26629)
* kernel: mm: cachestat: fix folio read-after-free in cache walk (CVE-2024-26630)
* kernel: mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (CVE-2024-26720)
* kernel: Bluetooth: af_bluetooth: Fix deadlock (CVE-2024-26886)
* kernel: kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address (CVE-2024-26946)
* kernel: KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() (CVE-2024-35791)
* kernel: mm: cachestat: fix two shmem bugs (CVE-2024-35797)
* kernel: x86/coco: Require seeding RNG with RDRAND on CoCo systems (CVE-2024-35875)
* kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (CVE-2024-36000)
* kernel: iommufd: Fix missing update of domains_itree after splitting iopt_area (CVE-2023-52801)
* kernel: net: fix out-of-bounds access in ops_init (CVE-2024-36883)
* kernel: regmap: maple: Fix cache corruption in regcache_maple_drop() (CVE-2024-36019)
* kernel: usb-storage: alauda: Check whether the media is initialized (CVE-2024-38619)
* kernel: net: bridge: mst: fix vlan use-after-free (CVE-2024-36979)
* kernel: scsi: qedf: Ensure the copied buf is NUL terminated (CVE-2024-38559)
* kernel: xhci: Handle TD clearing for multiple streams case (CVE-2024-40927)
* kernel: cxl/region: Fix memregion leaks in devm_cxl_add_region() (CVE-2024-40936)
* kernel: net/sched: Fix UAF when resolving a clash (CVE-2024-41040)
* kernel: ppp: reject claimed-as-LCP but actually malformed packets (CVE-2024-41044)
* kernel: mm: prevent derefencing NULL ptr in pfn_section_valid() (CVE-2024-41055)
* kernel: PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096)
* kernel: xdp: Remove WARN() from __xdp_reg_mem_model() (CVE-2024-42082)
* kernel: x86: stop playing stack games in profile_pc() (CVE-2024-42096)
* kernel: Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" (CVE-2024-42102)
* kernel: mm: avoid overflows in dirty throttling logic (CVE-2024-42131)
* kernel: nvme: avoid double free special payload (CVE-2024-41073)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.35.1.el9_4.aarch64.rpm
5eee1a84b4f4b280848fe87f2fc33cbc90860c6a7ed12fdad030d048611007ed
kernel-tools-libs-devel-5.14.0-427.35.1.el9_4.aarch64.rpm
bc39a13f30a85049d837d5bb6ad7a5dbe7fddcb947e2a22fd8587423c2b133aa
libperf-5.14.0-427.35.1.el9_4.aarch64.rpm
3f29c044f1f6a92cd3e3a25871b4eaeab56a037ae3fb563ff5e062b56e46fe38
RLSA-2024:6464
Moderate: glib2 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for glib2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures.
Security Fix(es):
* glib2: Signal subscription vulnerabilities (CVE-2024-34397)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
glib2-static-2.68.4-14.el9_4.1.aarch64.rpm
13d70d746a4bafdc7f25e53fd98f0707a80df81ed5a09b37a19ff8aca8e434c1
RLSA-2024:5999
Important: postgresql security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for postgresql.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
PostgreSQL is an advanced object-relational database management system (DBMS).
Security Fix(es):
* postgresql: PostgreSQL relation replacement during pg_dump executes arbitrary SQL (CVE-2024-7348)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.
rocky-linux-9-aarch64-crb-rpms
postgresql-docs-13.16-1.el9_4.aarch64.rpm
079cbe9d62933ddae3fd540a9eee839fa2444d06290df3783b3e338132f9f328
postgresql-private-devel-13.16-1.el9_4.aarch64.rpm
86aaeacfda43e814dec4187bfaac179959ef6422bb2205b4aa0f99a8c077964c
postgresql-server-devel-13.16-1.el9_4.aarch64.rpm
219bfde5f12b5798c01998c8d3e44433de8050d0a1e2b6688b388a44f7916581
postgresql-static-13.16-1.el9_4.aarch64.rpm
6fd086bb62ae859e9bfdcdb734c7d39ec542af2bb9bfd785a23ad0deaa28fe0e
postgresql-test-13.16-1.el9_4.aarch64.rpm
c747fa3a74262f871598566ec1e0dc991801aaf336027c4ac1caa4f25adb5370
postgresql-upgrade-devel-13.16-1.el9_4.aarch64.rpm
d75ca5a5062444f6e4c9289162391d21c04b0dbd8572b47bad62a10d8ee6e381
RLSA-2024:6146
Moderate: python3.12 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.12.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix.
Security Fix(es):
* cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection (CVE-2024-6923)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.12-debug-3.12.1-4.el9_4.3.aarch64.rpm
486964d60d8f8cce099e3091f905485e7f5939f90f6d98cd03afabebc0395868
python3.12-idle-3.12.1-4.el9_4.3.aarch64.rpm
9d76b9354e441d9c385c8405fc98c79022cee0450d14c207590dd4e94ddb74bf
python3.12-test-3.12.1-4.el9_4.3.aarch64.rpm
8ccadfc5dd4ccdfcad79967e5c7cf8342ab3910ea3b010d30b570ea36f1b8757
RLBA-2024:6287
libguestfs bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libguestfs.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libguestfs packages contain a library used for accessing and modifying virtual machine disk images.
Bug Fix(es) and Enhancement(s):
* sgdisk fails with "Invalid partition data!" for win2019, win2022, win2025 guests with three additional online disks [rhel-9.4.z] (JIRA:Rocky Linux-56697)
rocky-linux-9-aarch64-crb-rpms
libguestfs-devel-1.50.1-8.el9_4.aarch64.rpm
702467449c5e324a7d56bf08a6f4246754ed1ed5a22b82a83ea979903c6d7d13
libguestfs-gobject-1.50.1-8.el9_4.aarch64.rpm
21ee4c327b4df2225495e80e29ae4b6a27d6899773aab717f6d564c8378e8064
libguestfs-gobject-devel-1.50.1-8.el9_4.aarch64.rpm
6164cd9993d1ee5588c89bad0a7a7100169b16a30b9dd9b2cab3c467897e76c4
libguestfs-man-pages-ja-1.50.1-8.el9_4.noarch.rpm
e4c9e9a41c1cd9d1ef0c9ec76a679ce2f017793fb4e2595f0acada92a479fa1c
libguestfs-man-pages-uk-1.50.1-8.el9_4.noarch.rpm
28b763d121ae802142ecb91ecc4860f1c504c4aac15c284f9e5df6101bf6a504
lua-guestfs-1.50.1-8.el9_4.aarch64.rpm
0ad8c851572998cdf3db8a6723504e2d8542501849b1c799a4c09e11f7d2ed47
ocaml-libguestfs-1.50.1-8.el9_4.aarch64.rpm
bcd81b175edd41e82a740cadf1d8beb299e41d4f03ce2471ae5cced2f5d1e9e8
ocaml-libguestfs-devel-1.50.1-8.el9_4.aarch64.rpm
250d223699508a6eb8d6ea3af83e9e975500d342474120a37596291200d61a9b
php-libguestfs-1.50.1-8.el9_4.aarch64.rpm
373eee6e5ed96b28c2f8887628bbb8d68783d70d5275982db2e7610676061c10
ruby-libguestfs-1.50.1-8.el9_4.aarch64.rpm
22bebf7b2821eab02345e07b030ca1ee7bdccd3b01ca84658cb7c29cc7221771
RLBA-2024:6416
augeas bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for augeas.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by manipulating this tree and saving it back into native config files.
Bug Fix(es) and Enhancement(s):
* libguestfs pops up error when ?there is a trailing comma after character like nosuid in guest /etc/fstab [rhel-9.4.z] (JIRA:Rocky Linux-56992)
rocky-linux-9-aarch64-crb-rpms
augeas-devel-1.13.0-6.el9_4.aarch64.rpm
79a76f0b6d2209dd8201eece8832f9cafe189bfc03c40c6e5eea3f5c0c62fab2
RLSA-2024:6529
Moderate: dovecot security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for dovecot.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages.
Security Fix(es):
* dovecot: using a large number of address headers may trigger a denial of service (CVE-2024-23184)
* dovecot: very large headers can cause resource exhaustion when parsing message (CVE-2024-23185)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dovecot-devel-2.3.16-11.el9_4.1.aarch64.rpm
5142136121d459b31473daccbcf1232ccf817cfff5b5efbbf7fb691cf92b1c48
RLBA-2024:6669
libvirt bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems.
Bug Fix(es) and Enhancement(s):
* Opening a vpx:// URL fails if the backing VMX file has a "*" character in any key [rhel-9.4.z] (JIRA:Rocky Linux-58676)
rocky-linux-9-aarch64-crb-rpms
libvirt-daemon-plugin-sanlock-10.0.0-6.7.el9_4.aarch64.rpm
a2da07a4391b9c1a5fb376d14d46fd4547432ec7af9104130933ea8d95e461c6
libvirt-devel-10.0.0-6.7.el9_4.aarch64.rpm
f10d83b17fa4c86765af2a90506fa02099d62211795d2cfa4fbb4aca7f76194a
libvirt-docs-10.0.0-6.7.el9_4.aarch64.rpm
583707c8277d563d96120eee291dc2f4b0561c48d2a33e3038ca08bac9963bdc
RLSA-2024:6757
Moderate: libnbd security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libnbd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Network Block Device (NBD) is a protocol for accessing Block Devices (hard disks and disk-like devices) over a Network. The libnbd is a userspace client library for writing NBD clients.
Security Fix(es):
* libnbd: NBD server improper certificate validation (CVE-2024-7383)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libnbd-devel-1.18.1-4.el9_4.aarch64.rpm
d128478b34370efe9ee0896855efbbef311e73b6abec364da0e8b6eca9210534
ocaml-libnbd-1.18.1-4.el9_4.aarch64.rpm
cd9cc09ad86f5c4b8c8967785c2d4c2c60af9efb54c22abe491c047b690adb80
ocaml-libnbd-devel-1.18.1-4.el9_4.aarch64.rpm
055e085d9ab5cfeaa2eab798dac7cfdd57d037fc28d8849f51990a03b3704038
RLSA-2024:7346
Important: cups-filters security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for cups-filters.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently.
Security Fix(es):
* cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source ()
* cups-filters: libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes (CVE-2024-47076)
* cups: libppd: remote command injection via attacker controlled data in PPD file ()
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
cups-filters-devel-1.28.7-17.el9_4.aarch64.rpm
e68d3d7ad2d032a9b6a297717f08a10e4ed71534e0d3c4913f62ca340839da25
RLSA-2024:8121
Moderate: java-11-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-11-openjdk.
This update affects Rocky Linux 8, Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.
Security Fix(es):
* giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161)
* JDK: Array indexing integer overflow (8328544) (CVE-2024-21210)
* JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208)
* JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217)
* JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-11-openjdk-demo-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm
866374f38a7dabd20eaa986cd5f0031c936f9b25027d5de37203a6b04184fd7e
java-11-openjdk-demo-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm
a888c6fe841387bfb836651f6c2c42b841085e7e81e536635bdc9e80e7f75fa9
java-11-openjdk-devel-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm
d8ed41aa02032307613d55039f085f3d41f85d4acf4609050bfe7c73b8c6d44e
java-11-openjdk-devel-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm
9408ec6b17a1bf5b83d190f125aaa39da5cf3ab4aee0dfb0cbc04c5ae0ec747a
java-11-openjdk-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm
a156d14121e9965520700bef4be617c14f30354bf23aed86424265d1c66ac754
java-11-openjdk-headless-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm
bb54995f9da22132f3150630e4f684a303a21eedffb2a524e87442ccdd5fe772
java-11-openjdk-headless-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm
4bef09ad049c70884f0a3b6a92f5f943828e0f72061116b5bd2262bf852ba2b2
java-11-openjdk-jmods-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm
51ba5618ed198820bcc431f755466aeff6efe6ee5815b35f280c777826d5ddb7
java-11-openjdk-jmods-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm
b7f0a654944eb88885fba91c05fbd09e80bdb364dfd3800b2a9ce501e67022e9
java-11-openjdk-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm
e36c421300b787be5e3b10d625cb477f775f2b9029d55ceed2c335971dccf828
java-11-openjdk-src-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm
622116d4da95698e2761810fb16506a2e306974178feb826c236872b423ac14a
java-11-openjdk-src-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm
23e27ffe79c2f227f3e9ecb2a77997780d729fa67c2faf06afe98421393d1aae
java-11-openjdk-static-libs-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm
a93e0ce384a9b417e826c2e84485e8b49410089e9364a943c596a21cdc34ff8d
java-11-openjdk-static-libs-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm
b7cb5fb257a3c56bf239a7dae2c4eebd9479b7c5e5a2c4750fabcc5fef49d7ad
RLSA-2024:8127
Moderate: java-21-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-21-openjdk.
This update affects Rocky Linux 8, Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The OpenJDK 21 runtime environment.
Security Fix(es):
* giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161)
* JDK: Array indexing integer overflow (8328544) (CVE-2024-21210)
* JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208)
* JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217)
* JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-21-openjdk-demo-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm
74de6e677cbd7e65f5da8376bd2b7ef7caf1e40981109fc2278e5c85efec3dd7
java-21-openjdk-demo-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm
2366c5183fe3ccd33af4f41818c0597625b10c5435b5809c304548a79071ac19
java-21-openjdk-devel-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm
4fa5ceb407ea880e1bc3b8ef7131a87cc1e01661d820086a5998454c1bf142e3
java-21-openjdk-devel-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm
b8d81bc79702c6bb6640d19d7e29b01768af6fbeb425228538e84d8af8afda6e
java-21-openjdk-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm
f4f6ce2bcafc625cfd0ada783a4b9b13170693ce26350ac56aa4af7de6ef69d9
java-21-openjdk-headless-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm
6f688ac8cf23c25b48932d4952e9065ad29ba33cc1dc1615adb5f89b20daf3c4
java-21-openjdk-headless-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm
daaf06af7b2e24fc52903c5b499b8539394a647fcdb6c8b4c0f86be0694c81d5
java-21-openjdk-jmods-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm
28da2ba1b3000e88fe221fb74fb7e3bbff613476d39ad44a796e7a4558aa0437
java-21-openjdk-jmods-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm
97bd1cff6e3d71e39c4a614975db3bf335362fd2b0990e298202614e3efa5ad2
java-21-openjdk-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm
94b0a2aa0834f1f82eceae2b2c430ae1eac359a08052859076ec4912327b0c0d
java-21-openjdk-src-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm
ce9f8badf1d14d343dd6f83b07ba04d3a7500921c5262094b8e6b8f9acd479b0
java-21-openjdk-src-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm
cf25f1847cd2470af82ed92a0ed756173c62c6720551355e9d1774508faf2def
java-21-openjdk-static-libs-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm
6590ae6f1d5078db174a8a21b3162ef355fb64fe9d0a6f333b574af896c5ac67
java-21-openjdk-static-libs-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm
572f97a660dcce2f6b100b85b8c0bd7a9edaa6048f9bbfd3431d06a4ed247ad0
RLSA-2024:8124
Moderate: java-17-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-17-openjdk.
This update affects Rocky Linux 8, Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit.
Security Fix(es):
* giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161)
* JDK: Array indexing integer overflow (8328544) (CVE-2024-21210)
* JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208)
* JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217)
* JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-17-openjdk-demo-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm
a2d8dc5c6c720a408b6019775b3debf9741326d5966d74e64bb82cc46df55735
java-17-openjdk-demo-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm
70e5a0a015bcdd0d11231393a7d1bc74f60b0fd4e98f85acf114ff7c4c3824b7
java-17-openjdk-devel-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm
5c92a81db3f4cc1e5f39074b4d29ad6bc880cd78c225efb13a1b5f70579397f0
java-17-openjdk-devel-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm
86a629c1e34c91cd38fdc11f56f0f953f9e3fb1e5425434ced17a626a6619db0
java-17-openjdk-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm
9bd02cfda1713687fa3eca2791b30a7001c474f032ee31f91ede55a52e6396e1
java-17-openjdk-headless-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm
524e4034cba8739c595cdfb5b089c73bcc21977f28581330f04ae4102583f8bf
java-17-openjdk-headless-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm
97e2ba6fe0552ecf4758146c73b030771a4eced73b1c377b7c783e5a6c69c053
java-17-openjdk-jmods-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm
06b12fac34479cc9c50022dd8aed9927d54a72426d815544f753c9a429d93f48
java-17-openjdk-jmods-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm
c8505dec754374bd38cb7aec247de7eda337cd64939b1735e0ad6f6b7d2d4ba1
java-17-openjdk-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm
87ad8ee59bb5adb3456dd5aa0d722918e54134eeda3d92fd0c52bf0b1409d661
java-17-openjdk-src-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm
a0c13fff271db88ce0f74491cf35f280fc000f9f08883fd68dd1436c5b92a25b
java-17-openjdk-src-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm
4d13cac7745bb067a38836d7aa33f1dd71d59ad019e3aafebb7dacb22930e2f1
java-17-openjdk-static-libs-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm
de9dd56d458b36920d46d059e6e369ad03da249fcbfdaac7af8d6801bbc0dab3
java-17-openjdk-static-libs-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm
f1a4db4354dfbdd580cfe3148da1e2d3313550db4791a735a848e27c5ea12e5e
RLSA-2024:8117
Moderate: java-1.8.0-openjdk security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-1.8.0-openjdk.
This update affects Rocky Linux 8, Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit.
Security Fix(es):
* giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161)
* JDK: Array indexing integer overflow (8328544) (CVE-2024-21210)
* JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208)
* JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217)
* JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-1.8.0-openjdk-demo-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm
01096b93f51ee2a48548992f7c5e4948956f87b6e1cd5aaa2041e4e3c14baa27
java-1.8.0-openjdk-demo-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm
463c035e420982fd87e184fdc41f9e953c1f982cb44da75a7758e165f73c6e72
java-1.8.0-openjdk-devel-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm
1d7342763eb9a8d925f89fb1f4462a1fde90e70aa619d0c384d01d00f8d00a13
java-1.8.0-openjdk-devel-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm
854021c6601a2dfc2a0dc2654d1ff78df0160871f657615ef4b17703fc95ed4c
java-1.8.0-openjdk-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm
598b28eb5b8be5ce9b0b15dd5bdc411c61ae39deee2dd781b1017c6cb7b9c463
java-1.8.0-openjdk-headless-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm
b864306f0dc5804f3ebbba5760c64ef942557d2e44c7eaf043724dc500b02c72
java-1.8.0-openjdk-headless-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm
8aa2958a48b31c500ce9b32222f78ac970fdfd70f27ffdb728ed2bb8462ef57d
java-1.8.0-openjdk-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm
956ea49f7bb5401869df2fb957efb62b39814cf4bb53129ca5714610d389898b
java-1.8.0-openjdk-src-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm
68d00d734fc1fa13eff11e36a9c523382f3b7f83af4bdeaf30c8aedb99d97acf
java-1.8.0-openjdk-src-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm
0d6e0d13e82b7bb68ee2ecc201ca0dd908eb501d68afc9f466066dfb7f798359
RLSA-2024:8162
Moderate: kernel security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: Local information disclosure on Intel(R) Atom(R) processors (CVE-2023-28746)
* kernel: netfilter: nft_flow_offload: reset dst in route object after setting up flow (CVE-2024-27403)
* kernel: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (CVE-2023-52658)
* kernel: dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (CVE-2024-35989)
* kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field (CVE-2021-47385)
* kernel: mptcp: ensure snd_nxt is properly initialized on connect (CVE-2024-36889)
* kernel: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (CVE-2024-36978)
* kernel: net/mlx5: Add a timeout to acquire the command queue semaphore (CVE-2024-38556)
* kernel: KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (CVE-2024-39483)
* kernel: ionic: fix use after netif_napi_del() (CVE-2024-39502)
* kernel: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (CVE-2024-40959)
* kernel: gfs2: Fix NULL pointer dereference in gfs2_log_flush (CVE-2024-42079)
* kernel: sched: act_ct: take care of padding in struct zones_ht_key (CVE-2024-42272)
* kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error (CVE-2024-42284)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.40.1.el9_4.aarch64.rpm
e30cbdfea2abe3184bca7a9561f2be27875480c1225b1702a3b4aefc328d91ff
kernel-tools-libs-devel-5.14.0-427.40.1.el9_4.aarch64.rpm
4ee0e3662a5b9be528f081954d7cb7698eddde053345301457834c18320aaadc
libperf-5.14.0-427.40.1.el9_4.aarch64.rpm
2bab63a212c0554ac649c0392171032e9660bf52ebaf8bcdb42660eda11e0937
RLBA-2024:7448
glibc bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for glibc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly.
Bug Fix(es) and Enhancement(s):
* glibc: Previously used TLS sometimes incorrectly reverted to initial state after dlopen [rhel-9.4.z] (JIRA:Rocky Linux-46763)
rocky-linux-9-aarch64-crb-rpms
glibc-benchtests-2.34-100.el9_4.4.aarch64.rpm
d7e0a00e27fd7b284df2a267e62c236d8c2247482fe83272e39ec98df25eb125
glibc-nss-devel-2.34-100.el9_4.4.aarch64.rpm
caa9886b1e2ea8660fe6fefedc91eba2268781e597ac1bb63c8a30fe7b5f1dc9
glibc-static-2.34-100.el9_4.4.aarch64.rpm
64fb801b7cad82d4f79884cd1477dd68899753077983c8f62657151538f199ef
nss_db-2.34-100.el9_4.4.aarch64.rpm
ec2c4e8798459ef736ba2edb9255b9f0586e5f1f8e54cfb51e7040e6f38c3297
nss_hesiod-2.34-100.el9_4.4.aarch64.rpm
fd2f80798a09723cf0d3ca2aa273e04606c85ae4f7aa0dfa77edcb83a7749f4d
RLSA-2024:8446
Moderate: python3.9 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.9.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3-debug-3.9.18-3.el9_4.6.aarch64.rpm
8ff60735d74e56efb1e9605f32cefe689ebb378be6afc863303d0d6db3f7326c
python3-idle-3.9.18-3.el9_4.6.aarch64.rpm
47dc0d914f1e0f5b9135f77dfd9605219ab7eff236e5b0df6f4cc44ed295ece9
python3-test-3.9.18-3.el9_4.6.aarch64.rpm
ca1558d01d3fad3d6f887f115a29351e4ae592a4afc1b74dda7f980bb79d104e
RLSA-2024:7867
Important: .NET 6.0 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for dotnet6.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.135 and .NET Runtime 6.0.35.
Security Fix(es):
* dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484)
* dotnet: Denial of Service in System.Text.Json (CVE-2024-43485)
* dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Security Fix(es):
* dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484)
* dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483)
* dotnet: Denial of Service in System.Text.Json (CVE-2024-43485)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-6.0-source-built-artifacts-6.0.135-1.el9_4.aarch64.rpm
18653ae2734e430750c1e95315f2b470fc2ac0fbd35081cdba63b92830c13a85
RLSA-2024:7869
Important: .NET 8.0 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for dotnet8.0.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.
New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.110 and .NET Runtime 8.0.10.
Security Fix(es):
* dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution (CVE-2024-38229)
* dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483)
* dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484)
* dotnet: Denial of Service in System.Text.Json (CVE-2024-43485)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Security Fix(es):
* dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484)
* dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483)
* dotnet: Denial of Service in System.Text.Json (CVE-2024-43485)
* dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution (CVE-2024-38229)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
dotnet-sdk-8.0-source-built-artifacts-8.0.110-1.el9_4.aarch64.rpm
b87355ee4c3f805c1cd62cc131cc171bba1c14aed429dd7139d67940ed785ed4
RLSA-2024:8037
Moderate: OpenIPMI security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for OpenIPMI.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The OpenIPMI packages provide command-line tools and utilities to access platform information using Intelligent Platform Management Interface (IPMI). System administrators can use OpenIPMI to manage systems and to perform system health monitoring.
Security Fix(es):
* openipmi: missing check on the authorization type on incoming LAN messages in IPMI simulator (CVE-2024-42934)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
OpenIPMI-devel-2.0.32-5.el9_4.aarch64.rpm
cbd8550faa86af1b166b9fbdae7467355eed7f426cceb4669f706dbe9d360ad7
RLSA-2024:8374
Moderate: python3.11 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.11.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.11-debug-3.11.7-1.el9_4.6.aarch64.rpm
bf44aaa21b29cd1b930cf68d17c357f0693ac08e0fceb15b5b8cc42887def5ab
python3.11-idle-3.11.7-1.el9_4.6.aarch64.rpm
f4c72cbe86f1f9e4ce1315443c7641a4ad319b1c318af121811ca16e23e9e349
python3.11-test-3.11.7-1.el9_4.6.aarch64.rpm
99fa99b0ef0273ffb96f00e01e4d115345728b002fd0ec1208e43f0923324674
RLSA-2024:8447
Moderate: python3.12 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.12.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix.
Security Fix(es):
* python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.12-debug-3.12.1-4.el9_4.4.aarch64.rpm
274d8b22050e1163fc41c3db4697de9577d0caf96dcc3f5ebffb52396b9957fb
python3.12-idle-3.12.1-4.el9_4.4.aarch64.rpm
212646a747a18c736aea15ef28d1c209d0000faac55e05da137b036177c4f9ae
python3.12-test-3.12.1-4.el9_4.4.aarch64.rpm
a3b0db26627c3e37634650d7b2597e9508accbb02e899d1dc0b2a03e0726e9d0
RLSA-2024:8617
Moderate: kernel security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* hw: cpu: intel: Native Branch History Injection (BHI) (CVE-2024-2201)
* kernel: tcp: add sanity checks to rx zerocopy (CVE-2024-26640)
* kernel: mptcp: fix data re-injection from stale subflow (CVE-2024-26826)
* kernel: af_unix: Fix garbage collector racing against connect() (CVE-2024-26923)
* kernel: mac802154: fix llsec key resources release in mac802154_llsec_key_del (CVE-2024-26961)
* kernel: scsi: core: Fix unremoved procfs host directory regression (CVE-2024-26935)
* kernel: tty: Fix out-of-bound vmalloc access in imageblit (CVE-2021-47383)
* kernel: net/sched: taprio: extend minimum interval restriction to entire cycle too (CVE-2024-36244)
* kernel: xfs: fix log recovery buffer allocation for the legacy h_size fixup (CVE-2024-39472)
* kernel: netfilter: nft_inner: validate mandatory meta and payload (CVE-2024-39504)
* kernel: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (CVE-2024-40904)
* kernel: mptcp: ensure snd_una is properly initialized on connect (CVE-2024-40931)
* kernel: ipv6: prevent possible NULL dereference in rt6_probe() (CVE-2024-40960)
* kernel: ext4: do not create EA inode under buffer lock (CVE-2024-40972)
* kernel: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (CVE-2024-40977)
* kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (CVE-2024-40995)
* kernel: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (CVE-2024-40998)
* kernel: netpoll: Fix race condition in netpoll_owner_active (CVE-2024-41005)
* kernel: xfs: don't walk off the end of a directory data block (CVE-2024-41013)
* kernel: xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014)
* kernel: block: initialize integrity buffer to zero before writing it to media (CVE-2024-43854)
* kernel: netfilter: flowtable: initialise extack before use (CVE-2024-45018)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-427.42.1.el9_4.aarch64.rpm
251fa1fd9ce3588c5332cfd1d6d0cd25470cee8feec6f686f9abee8efeac2420
kernel-tools-libs-devel-5.14.0-427.42.1.el9_4.aarch64.rpm
cdd24aaf2330f6ac71e42bd6db5f64428288206a5723f123b5ac9ab1388d8715
libperf-5.14.0-427.42.1.el9_4.aarch64.rpm
51512c80ed10e7772af4bb6a36ec52868c51377c308cbdb67578e2b4b2a604b9
RLSA-2024:8800
Important: openexr security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for openexr.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR.
Security Fix(es):
* OpenEXR: Heap Overflow in Scanline Deep Data Parsing (CVE-2023-5841)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
openexr-devel-3.1.1-2.el9_4.1.aarch64.rpm
3604df89d4c0025c34cb56208573932eab1f3e71ee2f8f3b555476ae26a17c8b
RLSA-2024:8914
Moderate: libtiff security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libtiff.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files.
Security Fix(es):
* libtiff: NULL pointer dereference in tif_dirinfo.c (CVE-2024-7006)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libtiff-tools-4.4.0-12.el9_4.1.aarch64.rpm
3e3daa27c5b074ef5fb976b16c4d38464554514e3dc487a5663dba10875c1183
RLSA-2024:8935
Moderate: edk2 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for edk2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.
Security Fix(es):
* openssl: Possible denial of service in X.509 name checks (CVE-2024-6119)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
edk2-ovmf-20231122-6.el9_4.4.noarch.rpm
01c5a535b13fcaa13e5d134ca94d118368f1d15fe2f030b6d9b1a1644d773c7b
edk2-tools-20231122-6.el9_4.4.aarch64.rpm
91b8d2e33cb949288914f712014f0590494081fa0217a23577ec9c77b5175a9c
edk2-tools-doc-20231122-6.el9_4.4.noarch.rpm
4f0b359eaaec46670c1e9cdfe3d831a1027e7d0e14290fe07e49339de2ee9a91
RLBA-2024:9279
augeas bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for augeas.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
augeas-devel-1.13.0-6.el9_4.aarch64.rpm
79a76f0b6d2209dd8201eece8832f9cafe189bfc03c40c6e5eea3f5c0c62fab2
RLBA-2024:9284
postgresql bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for postgresql.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
postgresql-docs-13.16-1.el9_4.aarch64.rpm
079cbe9d62933ddae3fd540a9eee839fa2444d06290df3783b3e338132f9f328
postgresql-private-devel-13.16-1.el9_4.aarch64.rpm
86aaeacfda43e814dec4187bfaac179959ef6422bb2205b4aa0f99a8c077964c
postgresql-server-devel-13.16-1.el9_4.aarch64.rpm
219bfde5f12b5798c01998c8d3e44433de8050d0a1e2b6688b388a44f7916581
postgresql-static-13.16-1.el9_4.aarch64.rpm
6fd086bb62ae859e9bfdcdb734c7d39ec542af2bb9bfd785a23ad0deaa28fe0e
postgresql-test-13.16-1.el9_4.aarch64.rpm
c747fa3a74262f871598566ec1e0dc991801aaf336027c4ac1caa4f25adb5370
postgresql-upgrade-devel-13.16-1.el9_4.aarch64.rpm
d75ca5a5062444f6e4c9289162391d21c04b0dbd8572b47bad62a10d8ee6e381
RLSA-2024:9548
Important: openexr security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for openexr.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR.
Security Fix(es):
* OpenEXR: Heap Overflow in Scanline Deep Data Parsing (CVE-2023-5841)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
openexr-devel-3.1.1-2.el9_4.1.aarch64.rpm
3604df89d4c0025c34cb56208573932eab1f3e71ee2f8f3b555476ae26a17c8b
RLSA-2025:0426
Moderate: java-21-openjdk security update for Rocky Linux 8.10, 9.4 and 9.5
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-21-openjdk.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit.
Security Fix(es):
* JDK: Enhance array handling (CVE-2025-21502)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-21-openjdk-demo-fastdebug-21.0.6.0.7-1.el9.aarch64.rpm
a8292caf17c7dd0b13d5f9ca6837fe1cd5480c5c4644e214d4463a43d3555244
java-21-openjdk-demo-slowdebug-21.0.6.0.7-1.el9.aarch64.rpm
95b9c3243266118a18fa2204b601717372fe4c7cd49bee2dbccb8434d864cd18
java-21-openjdk-devel-fastdebug-21.0.6.0.7-1.el9.aarch64.rpm
ab01a950e7c47b7eb31bc43d5e8d3dfe685d01d2e7328e289f5791ee5e9e0eea
java-21-openjdk-devel-slowdebug-21.0.6.0.7-1.el9.aarch64.rpm
222e0773baa60772ddc96fd4befa57804fa84b43459bb51a34788525656ec25c
java-21-openjdk-fastdebug-21.0.6.0.7-1.el9.aarch64.rpm
e3529f9cd77b09df3b7282596c04bec714748a5662f1a138bd50f78e7a57bcd5
java-21-openjdk-headless-fastdebug-21.0.6.0.7-1.el9.aarch64.rpm
9cbcf5e831f85de83be41ec460e9a2d5f1176d3fec9f92a32539ac0a19b91b2e
java-21-openjdk-headless-slowdebug-21.0.6.0.7-1.el9.aarch64.rpm
882b3fe3fdea9fa70529f3aa784d0e581da8681b30c03e57711159c96ba21b79
java-21-openjdk-jmods-fastdebug-21.0.6.0.7-1.el9.aarch64.rpm
191d3ab7cdc7259539c28343e61c586e963a3c5e91d16e58c657bfb20d56237e
java-21-openjdk-jmods-slowdebug-21.0.6.0.7-1.el9.aarch64.rpm
4910c52d3d1d5f1a68ef86e344f793f632601d274b0732c926d8b3712dbfb33e
java-21-openjdk-slowdebug-21.0.6.0.7-1.el9.aarch64.rpm
4b52f2c47f40e86b5b99548f843a7faa1974fb631a1b226ed66312b49e120e22
java-21-openjdk-src-fastdebug-21.0.6.0.7-1.el9.aarch64.rpm
8cfa44813b8998ebb9e00841aba0ca153517ddaaf94c9218bf3f51240372181b
java-21-openjdk-src-slowdebug-21.0.6.0.7-1.el9.aarch64.rpm
963f6be33ea87764657694a1a26f9dedba11145e9bbb71ba34076d30c9d56ac9
java-21-openjdk-static-libs-fastdebug-21.0.6.0.7-1.el9.aarch64.rpm
c6bfb1e4678e9bbe23fcf7db509ef6ddeb496983d3f04ee43ae615a26546dcac
java-21-openjdk-static-libs-slowdebug-21.0.6.0.7-1.el9.aarch64.rpm
1e764470e99fbedc509122ec413dad8295f859ca0e12bb5e319fa72c1e415ac6
RLBA-2024:9324
jitterentropy bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for jitterentropy.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
jitterentropy-devel-3.5.0-1.el9.aarch64.rpm
a520fbe1eeda127717bb90e3ebb8e9aba4ad4b5f5ccb7c7bb0f0aebcf00893b4
RLBA-2024:9338
libdnf bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libdnf.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libdnf-devel-0.69.0-12.el9.aarch64.rpm
13a0c8246122cffb61b414403fccd8dbc4dfa240a0ff5d34dd202a4b864f023d
RLBA-2024:9342
libnvme bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnvme.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Beta Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnvme-devel-1.9-3.el9.aarch64.rpm
80f22772c3015c744b3b20d6777c5cc796f83ff78de9fc6e74923cfe7caf5f0c
RLBA-2024:9349
libtdb bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libtdb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libtdb-devel-1.4.10-1.el9.aarch64.rpm
6041412cd6c6e1b9775eaf190624a002c9e605699fcb7dc0a9dc191a78622bb0
RLBA-2024:9350
evolution-mapi, openchange, and samba bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for openchange, evolution-mapi, samba.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnetapi-devel-4.20.2-2.el9_5.aarch64.rpm
6bf189cf0f40513629e2a6f633cb1e11e111a8c37c8aff5db9b3f409b681cc75
libsmbclient-devel-4.20.2-2.el9_5.aarch64.rpm
76cc7f38cf2df50c3f2bb3ecdc87b36b6e2105712ac9d14cbb8e84396695ae5b
libwbclient-devel-4.20.2-2.el9_5.aarch64.rpm
0e11bbd528342db29c985b34c9e3388d075a0b940787efca5ab9be3a05480ec9
python3-samba-devel-4.20.2-2.el9_5.aarch64.rpm
308d17e325a51c19e28192b2ba68624fada3caa2c5742a9aa4a8f6624fbbaea1
python3-samba-test-4.20.2-2.el9_5.aarch64.rpm
a358386f2eddd1bcc909cfcb45016f804c732657088d35c6e560c5b3bacced6c
samba-devel-4.20.2-2.el9_5.aarch64.rpm
43b590b2b60d3a8e5fa9d057b40394c6c68098795b37fa8c8a19ec36f395f3d5
samba-pidl-4.20.2-2.el9_5.noarch.rpm
90ec7188e7bccfa4d4720acf672cad5272d6183fb483b8d86615421ccde688ee
samba-test-4.20.2-2.el9_5.aarch64.rpm
9fb1df7d9b3b7849f7553f131e51a3dacea102080da8699f879d08bb90f524a0
samba-test-libs-4.20.2-2.el9_5.aarch64.rpm
9386acbb143f7877072294ca9b8fe57682c7f4d2ced88d305dabef71f2cdca5c
RLBA-2024:9351
sssd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sssd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libsss_nss_idmap-devel-2.9.5-4.el9_5.4.aarch64.rpm
9026392df35d6f9f91fa37dcb5d42af8be98d3bf221baf797c0d780a44dd0c99
RLBA-2024:9360
opencryptoki bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for opencryptoki.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
opencryptoki-devel-3.23.0-1.el9.aarch64.rpm
35395611c2d80dedb4654a3ca80f7b6509f1f1a06818bc1d3d05529289d95c4d
RLBA-2024:9366
ima-evm-utils bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ima-evm-utils.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ima-evm-utils-devel-1.5-2.el9.0.1.aarch64.rpm
4df65e086e192825d5d50609aecf64175f723c0f7a7f37a1ea47ace0ad175e63
RLBA-2024:9373
device-mapper-multipath bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for device-mapper-multipath.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
device-mapper-multipath-devel-0.8.7-32.el9.aarch64.rpm
78c05ad34b1eae8a86ad22623f1b711ddd6832ba13bec73c23b05ca51270b17d
RLBA-2024:9374
cifs-utils bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for cifs-utils.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
cifs-utils-devel-7.0-5.el9.aarch64.rpm
9a32a43c09fc1eac2566783348eaad9c986ed41b661402dce873b19f32a6dfab
RLBA-2024:9376
nfs-utils bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nfs-utils.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Beta Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnfsidmap-devel-2.5.4-27.el9.aarch64.rpm
a3211cad74af62fa94f27a57ce18aeca739d72395a9605f604177d37266ce68b
RLBA-2024:9377
libdb bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libdb.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libdb-cxx-5.3.28-54.el9.aarch64.rpm
51a761b3340dd6c9710e956695525ec68fc7c83e9458d80f85da2308f74d5a32
libdb-cxx-devel-5.3.28-54.el9.aarch64.rpm
08cc9de3f5c24509580a360ec3d91b325d74482e2c1c3227349dd3a20c65fc07
libdb-devel-doc-5.3.28-54.el9.noarch.rpm
ae225eeddfb02562548d289bf5ffac2bb66693e957186b25d3c9166ca81d3d2f
libdb-sql-5.3.28-54.el9.aarch64.rpm
2ee1aecb109abd9cac043de72b0af69b7dfc4b5809ef9ba33a3758c0a50439c0
libdb-sql-devel-5.3.28-54.el9.aarch64.rpm
7033bc6d1a675ca27c10d3c849048df70fe8f112a228f907f288b3737572e8bb
RLBA-2024:9382
ledmon bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ledmon.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Beta Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
ledmon-devel-1.0.0-1.el9.aarch64.rpm
69c05e5e91d916b3238746ecd6cba1347b514065a7a06382644ad2654df3e9ee
RLBA-2024:9386
fuse bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for fuse.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
fuse-devel-2.9.9-16.el9.aarch64.rpm
1114e4b3180369c627ab7a01d85b72a79702a7b97aab451351938fc3cac22069
RLBA-2024:9393
libbpf bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libbpf.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libbpf-devel-1.4.0-1.el9.aarch64.rpm
4612955cd4344efbf01f2da26eebf4de6690dc2fd4496fbd87b20f0fc47ebc9a
libbpf-static-1.4.0-1.el9.aarch64.rpm
9b24b7d90f52b8c55d8b190ee5d773734724f0edc3db16567e461a567eb9e73d
RLBA-2024:9395
quota bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for quota.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
quota-devel-4.09-2.el9.aarch64.rpm
cc545eedb8608c0b601d9657bfca91b1bcae18e1baae9eadd2c2c4db89e786ba
RLBA-2024:9394
lvm2 bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for lvm2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
device-mapper-devel-1.02.198-2.el9.aarch64.rpm
3ba6e7c96ea469ad48073c0c3714df2ba63be57b48fd627e2a5711e0c6602721
device-mapper-event-devel-1.02.198-2.el9.aarch64.rpm
1fad8657bd30a29ad3e11b0a7abff5f11d9127d161ed9fda51e09b1a0e9eb846
lvm2-devel-2.03.24-2.el9.aarch64.rpm
2e55c1753565776d80ea546c437937a1e9ecb4070f9dba564006770986c4ef98
RLSA-2024:9413
Moderate: bluez security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for bluez.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The bluez packages contain the following utilities for use in Bluetooth applications: hcitool, hciattach, hciconfig, bluetoothd, l2ping, start scripts (Rocky Enterprise Software Foundation), and pcmcia configuration files.
Security Fix(es):
* bluez: unauthorized HID device connections allows keystroke injection and arbitrary commands execution (CVE-2023-45866)
* BlueZ: Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability (CVE-2023-27349)
* bluez: phone book access profile heap-based buffer overflow remote code execution vulnerability (CVE-2023-51596)
* bluez: OBEX library out-of-bounds read information disclosure vulnerability (CVE-2023-51594)
* bluez: audio profile avrcp parse_media_folder out-of-bounds read information disclosure vulnerability (CVE-2023-51592)
* bluez: audio profile avrcp parse_media_element out-of-bounds read information disclosure vulnerability (CVE-2023-51589)
* bluez: avrcp_parse_attribute_list out-of-bounds read information disclosure vulnerability (CVE-2023-51580)
* bluez: AVRCP stack-based buffer overflow remote code execution vulnerability (CVE-2023-44431)
* bluez: phone book access profile heap-based buffer overflow remote code execution vulnerability (CVE-2023-50230)
* bluez: phone book access profile heap-based buffer overflow remote code execution vulnerability (CVE-2023-50229)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
bluez-libs-devel-5.72-2.el9.aarch64.rpm
d4735c2a3046f38825d8cca84e199af88b3b8a36fe4a6298478b1eb80887c672
RLBA-2024:9426
libuser bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libuser.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libuser-devel-0.63-15.el9.aarch64.rpm
a640c87f15f6734bb73c88d5234c587f380c5072646642de0d3f8f36a886c4e6
RLBA-2024:9431
util-linux bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for util-linux.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libfdisk-devel-2.37.4-20.el9.aarch64.rpm
0470c087c15b6983681af9d86f90ae2557ad145db34f8260b3d6a12e517bde89
libsmartcols-devel-2.37.4-20.el9.aarch64.rpm
b4bd4122f5c4d19766f316707b861dcbf093f4249cf1bdc23e9fdb31871b1987
RLBA-2024:9433
hwdata bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for hwdata.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
hwdata-devel-0.348-9.15.el9.noarch.rpm
1d0724dcf76022c6f7ff1d0242fbb440222579817ebbb160679d9b1e63303a0b
RLBA-2024:9434
avahi bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for avahi.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
avahi-compat-howl-0.8-21.el9.aarch64.rpm
3f3bfbbec5ddd69641e878cd029a126c331c62c12e9abfc7e932272f0c133652
avahi-compat-howl-devel-0.8-21.el9.aarch64.rpm
2c8574d883ba7d1e03598985d4e197378adb334a2b04cb88f73d642d27ddb764
avahi-compat-libdns_sd-0.8-21.el9.aarch64.rpm
40e8f8f950c603eec8cf5a8379f964b5b2d80a4bdc121896f7dc6c5e18564013
avahi-compat-libdns_sd-devel-0.8-21.el9.aarch64.rpm
ffbdc76888fdf45193b86dea02252d94a170bd269522cda02a5a8ea2187fc35d
avahi-devel-0.8-21.el9.aarch64.rpm
7d04e4f452c22706e2fde8acb2b3205df3e9ef8f6cd9286a17a343e9f9f8e5a8
avahi-glib-devel-0.8-21.el9.aarch64.rpm
d6b6604a7fadaf9f8ac6af28dc6c2a7a5b877c28ad2008b334296b123c1a1eee
avahi-gobject-0.8-21.el9.aarch64.rpm
179a364997edc87f60f36ab541c53058dc0a8ab79c48b67299781dfd0cc881b4
avahi-gobject-devel-0.8-21.el9.aarch64.rpm
032d6e6e3f2dd3f35686afa7d8f6ea746c6449aa2ba503e142beb3770763ccca
RLBA-2024:9471
samba bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for samba.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information.
Bug Fix(es):
* smbd-notifyd O(n*n) performance issue ( https://bugzilla.samba.org/show_bug.cgi?id=14430 ) [rhel-9.5.z] (JIRA:Rocky Linux-59912)
* Package certs directories in samba-common for gpupdate [rhel-9.5.z] (JIRA:Rocky Linux-59913)
rocky-linux-9-aarch64-crb-rpms
libnetapi-devel-4.20.2-2.el9_5.aarch64.rpm
6bf189cf0f40513629e2a6f633cb1e11e111a8c37c8aff5db9b3f409b681cc75
libsmbclient-devel-4.20.2-2.el9_5.aarch64.rpm
76cc7f38cf2df50c3f2bb3ecdc87b36b6e2105712ac9d14cbb8e84396695ae5b
libwbclient-devel-4.20.2-2.el9_5.aarch64.rpm
0e11bbd528342db29c985b34c9e3388d075a0b940787efca5ab9be3a05480ec9
python3-samba-devel-4.20.2-2.el9_5.aarch64.rpm
308d17e325a51c19e28192b2ba68624fada3caa2c5742a9aa4a8f6624fbbaea1
python3-samba-test-4.20.2-2.el9_5.aarch64.rpm
a358386f2eddd1bcc909cfcb45016f804c732657088d35c6e560c5b3bacced6c
samba-devel-4.20.2-2.el9_5.aarch64.rpm
43b590b2b60d3a8e5fa9d057b40394c6c68098795b37fa8c8a19ec36f395f3d5
samba-pidl-4.20.2-2.el9_5.noarch.rpm
90ec7188e7bccfa4d4720acf672cad5272d6183fb483b8d86615421ccde688ee
samba-test-4.20.2-2.el9_5.aarch64.rpm
9fb1df7d9b3b7849f7553f131e51a3dacea102080da8699f879d08bb90f524a0
samba-test-libs-4.20.2-2.el9_5.aarch64.rpm
9386acbb143f7877072294ca9b8fe57682c7f4d2ced88d305dabef71f2cdca5c
RLSA-2024:10983
Moderate: python3.9:3.9.21 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.9.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: Virtual environment (venv) activation scripts don't quote paths (CVE-2024-9287)
* python: Improper validation of IPv6 and IPvFuture addresses (CVE-2024-11168)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3-debug-3.9.21-1.el9_5.aarch64.rpm
ed1e182470bad934b48ba22e7a6b55f7c025beb8ebc3ec4b78e3f2661f79acce
python3-idle-3.9.21-1.el9_5.aarch64.rpm
3f9a24081f6e5f5321c8db90360dfa38e3554a670110c03d2d0a50ceb20f5d6d
python3-test-3.9.21-1.el9_5.aarch64.rpm
58c02eda9a62bee4c3c02f120450cb77172cc4adc15ada2bf4df4d819f3ee523
RLBA-2024:11243
shadow-utils bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for shadow-utils.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The shadow-utils packages include programs for converting UNIX password files to the shadow password format, as well as utilities for managing user and group accounts.
Bug Fix(es):
* Disable shadow-utils/SSSD integration by default (JIRA:Rocky Linux-56352)
rocky-linux-9-aarch64-crb-rpms
shadow-utils-subid-devel-4.9-10.el9_5.aarch64.rpm
7e3801c452d3d12d7092ce103373d06acf661941f99b8ec2728a0c6fc601db86
RLSA-2025:0377
Moderate: Security and bug fixes for NetworkManager
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for NetworkManager.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
NetworkManager is a system network service that manages network devices and connections, attempting to keep active network connectivity when available. Its capabilities include managing Ethernet, wireless, mobile broadband (WWAN), and PPPoE devices, as well as providing VPN integration with a variety of different VPN services.
Security and bug fix(es):
* Routes in table different to main are not deleted on reapply [rhel-9.5.z] (JIRA:Rocky Linux-73013)
* Route to VPN server not stored in routing table that is specified by ipv4.route-table [rhel-9.5.z] (JIRA:Rocky Linux-73166)
* VPN connections do not support ipv4.routing-rules settings [rhel-9.5.z] (JIRA:Rocky Linux-73167)
* CVE-2024-3661 NetworkManager: DHCP routing options can manipulate interface-based VPN traffic [rhel-9.5.z] (JIRA:Rocky Linux-64726)
rocky-linux-9-aarch64-crb-rpms
NetworkManager-libnm-devel-1.48.10-5.el9_5.aarch64.rpm
2c754e6f511f7155d7896b839a15779daaf681738a4dc5ee3b75affac36da601
RLSA-2024:9088
Moderate: edk2 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for edk2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.
Security Fix(es):
* mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC (CVE-2023-6129)
* openssl: Excessive time spent checking invalid RSA public keys (CVE-2023-6237)
* openssl: denial of service via null dereference (CVE-2024-0727)
* edk2: Temporary DoS vulnerability (CVE-2024-1298)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
edk2-ovmf-20240524-6.el9_5.3.noarch.rpm
fc0caf09a366d9af2744b360332c131580cca70d734a06cc6db99a13300aff34
edk2-tools-20240524-6.el9_5.3.aarch64.rpm
cb522dd68986719995f49146ad1b95361b6f35e137671655d1916040706ab108
edk2-tools-doc-20240524-6.el9_5.3.noarch.rpm
ec645e377e76dbab6c94506732165121cf304972dad9ee8f5fd5b58c5420bff9
RLSA-2024:9093
Moderate: xorg-x11-server-Xwayland security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for xorg-x11-server-Xwayland.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Xwayland is an X server for running X clients under Wayland.
Security Fix(es):
* xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents (CVE-2024-31080)
* xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice (CVE-2024-31081)
* xorg-x11-server: Use-after-free in ProcRenderAddGlyphs (CVE-2024-31083)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xorg-x11-server-Xwayland-devel-23.2.7-1.el9.aarch64.rpm
2261d8e1a81b148a825a875c606f45e7c5a9f6304b5505091fe217d345a0303d
RLBA-2024:9118
anaconda bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for anaconda.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
anaconda-widgets-devel-34.25.5.9-1.el9.rocky.0.3.aarch64.rpm
20feccb116f16375c7129646eb069d6e64032be44ab1e7ea77f856b1af5502b2
RLSA-2024:9122
Moderate: xorg-x11-server security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for xorg-x11-server.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.
Security Fix(es):
* xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents (CVE-2024-31080)
* xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice (CVE-2024-31081)
* xorg-x11-server: Use-after-free in ProcRenderAddGlyphs (CVE-2024-31083)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
xorg-x11-server-devel-1.20.11-26.el9.aarch64.rpm
28039c16132ecbd2a480bef12f6d654aa02f96a2c67a03db3c46d726fd30bca0
xorg-x11-server-source-1.20.11-26.el9.noarch.rpm
aa02d1e143dd7d2601abb5ed40844bf5637d265e4b30b07ec86e93ba4b90c328
RLSA-2024:9128
Moderate: libvirt security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libvirt.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems.
Security Fix(es):
* libvirt: Crash of virtinterfaced via virConnectListInterfaces() (CVE-2024-8235)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libvirt-daemon-plugin-sanlock-10.5.0-7.4.el9_5.aarch64.rpm
a5239d89e1a9f81e57dd4acfd0e6686c17fc81b3ec743549fecf7a09cd792f40
libvirt-devel-10.5.0-7.4.el9_5.aarch64.rpm
38326b8af7972e621cbdb39b43ac01a1da30451ba95cbe699292f6ae7ef961aa
libvirt-docs-10.5.0-7.4.el9_5.aarch64.rpm
cbab8ac489866607b656f92517f28560d3b18d1812be28c818cebfbd9b3f164a
RLBA-2024:9131
nbdkit bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nbdkit.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
nbdkit-devel-1.38.3-1.el9.aarch64.rpm
b89546cf9f7b56de9367fb24910bac7c5aa2919fb4d6af6a3563ed122c85391b
nbdkit-example-plugins-1.38.3-1.el9.aarch64.rpm
7e0b622a938460b3bbfff27538b50909fba61e10c0b5e627e4a569fcce98c8af
nbdkit-srpm-macros-1.38.3-1.el9.noarch.rpm
34f01c36104f439d3e231ba7c5b13b5d6480d90d7d9c744b39e7ec65439224b9
RLBA-2024:9147
ipa bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ipa.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python3-ipatests-4.12.2-1.el9_5.4.noarch.rpm
10e3a62af67d86e7b31a966c667b26ffd63c771f7923c9f6e858ed4300daa264
RLBA-2024:9151
libnbd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libnbd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libnbd-devel-1.20.2-2.el9.aarch64.rpm
ce0bd496c622654dd0d0c4c362b836dc458e107b3732951074996d561459a053
ocaml-libnbd-1.20.2-2.el9.aarch64.rpm
4f0b014614a6482717ee16859f7bfc6fdcd68eaeb3df769b8e1d8005139a303b
ocaml-libnbd-devel-1.20.2-2.el9.aarch64.rpm
9e2f84e5a8895a1bfa7a97f2c4d7b29242f5cddf83aec27f01654a6604de2a4e
RLBA-2024:9155
WALinuxAgent bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for WALinuxAgent.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
WALinuxAgent-cvm-2.7.0.6-10.el9.rocky.0.noarch.rpm
4d94f632639ed39dacf498cc1eebb413a674a3bbab9d7847e74e959936b245d3
RLBA-2024:9157
egl-wayland bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for egl-wayland.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
egl-wayland-devel-1.1.9-3.el9.aarch64.rpm
6553f2012d1bea6f84df5c131420af5582f77b26c40a5364b6dc8778dccf47d7
RLBA-2024:9165
crash bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for crash.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
crash-devel-8.0.5-1.el9.aarch64.rpm
48c0a2ca4c2d00b23c8c87590ac589b4446842ff65d26a21692b636420420747
RLBA-2024:9179
glslang, shaderc, spirv-tools, vulkan-headers, vulkan-loader, vulkan-tools, vulkan-utility-libraries, vulkan-validation-layers, and vulkan-volk bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for vulkan-utility-libraries, vulkan-validation-layers, vulkan-headers, vulkan-tools, spirv-tools, vulkan-volk, vulkan-loader, glslang, shaderc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
glslang-devel-14.2.0-3.el9.aarch64.rpm
7653c6b0a770df340b5577b49cab65e758b5c9ed101fe3c644be988348d3c09b
libshaderc-devel-2024.0-1.el9.aarch64.rpm
ad33ad55ec710752a7b04199c96ecb937fb62a706370430309137d46adaaae86
spirv-tools-devel-2024.2-1.el9.aarch64.rpm
5c463aa0a19e2e66b18ee7a0aa3e0f937174d4a70b4207b7506e1bca13637a73
vulkan-utility-libraries-devel-1.3.283.0-1.el9.aarch64.rpm
d9d3430749100f7df6e8fb4e2b69398ab6413c196fe8cc4ebba01cdce7450185
RLSA-2024:9190
Moderate: python3.12 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.12.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix.
Security Fix(es):
* python: The zipfile module is vulnerable to zip-bombs leading to denial of service (CVE-2024-0450)
* python: incorrect IPv4 and IPv6 private ranges (CVE-2024-4032)
* python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service (CVE-2024-8088)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python3.12-debug-3.12.5-2.el9_5.2.aarch64.rpm
6b6ee317b291de132952ff984f95e6d86c37d8654ddf0e2524ff009d76b13387
python3.12-idle-3.12.5-2.el9_5.2.aarch64.rpm
7b6d69f7466cacb2fbfaf418390cc22f430375f6be417b49f5b11448ea3fb773
python3.12-test-3.12.5-2.el9_5.2.aarch64.rpm
64b9f43563422447a4694a121fa440c213c5e2b13b30cb66bf12be34c08780ee
RLSA-2024:9192
Moderate: python3.11 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.11.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: The zipfile module is vulnerable to zip-bombs leading to denial of service (CVE-2024-0450)
* python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service (CVE-2024-8088)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
python3.11-debug-3.11.9-7.el9_5.2.aarch64.rpm
00d22f90f1b9fab13d0c6bd39f1bae71d43bd70fcef8d201ce09bf9e1cc22d56
python3.11-idle-3.11.9-7.el9_5.2.aarch64.rpm
2e6b763214e2616f93a89fc7482935fea278c344c6fae1be9d0510bc997331a7
python3.11-test-3.11.9-7.el9_5.2.aarch64.rpm
900f54f4dc0008b4db2bd77199bb3128d30956552574044cbfa7203580d9399e
RLBA-2024:9202
mesa bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for mesa.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
mesa-libOSMesa-24.1.2-3.el9.aarch64.rpm
bcf2141b84f8ce83fe57288c5e689d76997e19d6dcae71a4ea9abf9fd618c87c
mesa-libOSMesa-devel-24.1.2-3.el9.aarch64.rpm
5f020f5f3ec13f2a7688e127717062251ee94a64bcc75c32ae244fc51ddecc62
RLBA-2024:9208
bind9.18 bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for bind9.18.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Beta Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
bind9.18-devel-9.18.29-1.el9_5.1.aarch64.rpm
4a2724c374f83cf4bc3807bb48536edfc4f2e8bb56572b24b4a4581d22406d95
bind9.18-doc-9.18.29-1.el9_5.1.noarch.rpm
a6ef797885ebc1ab67bdda539f25c3cfdcea04cb21181b48a531e803a6f1999f
RLBA-2024:9217
corosync bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for corosync.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
corosynclib-3.1.8-2.el9.aarch64.rpm
a278119afbf5dd3323af0a0d4c1a981759e572a2ba2cdf949c812b8c57bc43c7
corosync-vqsim-3.1.8-2.el9.aarch64.rpm
ae33a11ab39cb87c0abe5659bac27161c3da38339b39dfd17e18ca875ce2965b
RLBA-2024:9221
gdm bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for gdm.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
gdm-devel-40.1-27.el9.aarch64.rpm
5702a7afe3da6ef6a164493aca46f808af53ab0fce0230136b82983188ab544e
gdm-pam-extensions-devel-40.1-27.el9.aarch64.rpm
ec6a6d5c34820feacb2c095541ae05d9a2cd64cfb3f62f3705c1b6a1634e6605
RLBA-2024:9227
qt5-qttools bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for qt5-qttools.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
qt5-qttools-static-5.15.9-5.el9.aarch64.rpm
f8746cb3a057c53a5a4fa17c9cb4f082c9ce2f180c37bb7356fc7c7716b7e0d4
RLBA-2024:9266
cups-filters bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for cups-filters.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
cups-filters-devel-1.28.7-18.el9_5.aarch64.rpm
f5add2367fc40ae0d23f58d42e8016b975468fde0172db2782fe727c9fb517ed
RLBA-2024:9267
dovecot bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for dovecot.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
dovecot-devel-2.3.16-14.el9.aarch64.rpm
6da2763051e12c34424062744e20e4850e4428477eb26e88b99b9f6bb44b48fe
RLBA-2024:9289
sanlock bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sanlock.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
sanlock-devel-3.9.3-2.el9.aarch64.rpm
fbdbf1b73bbbb3641f8ebec8b50c05c697a2101dd5ade4d23138065effb5a1d7
RLBA-2024:9294
varnish bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for varnish.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
varnish-devel-6.6.2-6.el9.aarch64.rpm
f3da03ad1805bbc797febb462c3a7dd4f467269ca88e149273a5e0420c6bf966
RLBA-2024:9291
nginx bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nginx.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
nginx-mod-devel-1.20.1-20.el9.0.1.aarch64.rpm
f9ba9f0c5d0e1b49cfb1957b13bd7a4e6df2588a275bfab9594e367bea06139c
RLEA-2024:9296
libguestfs bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libguestfs.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libguestfs-devel-1.50.2-1.el9.aarch64.rpm
d20e96c8258f5b22439c2b0e5b7658997436033e784077db52aa1ae242ad7922
libguestfs-gobject-1.50.2-1.el9.aarch64.rpm
098b9898a80dc9497b7af835952acbdd0dd6bc50d1e8bed0a51135fc78260f47
libguestfs-gobject-devel-1.50.2-1.el9.aarch64.rpm
47f599512105bb1ac4938a09d674f88d7645eeac5cf304c11652e5301ffd0d83
libguestfs-man-pages-ja-1.50.2-1.el9.noarch.rpm
f79077e53314806cdb868bb9a1739483ad4d82903e5bf467402c7c4bf6cf40f3
libguestfs-man-pages-uk-1.50.2-1.el9.noarch.rpm
eb6620e920d65aaca1fa7e9ef19266567352164ecd4b5b2a8506ea873e5721e9
lua-guestfs-1.50.2-1.el9.aarch64.rpm
2ae27432a68dde472bc039fb79b8cc7fb8d917515d9c6b43dfc0c0d8bfbcca9a
ocaml-libguestfs-1.50.2-1.el9.aarch64.rpm
765f2196ecd9eea30cf29a56997951a03d9165ff439e738fe898175d47f8de7d
ocaml-libguestfs-devel-1.50.2-1.el9.aarch64.rpm
51310dad6387b1ffe868ae1389450bd71d2518d8627d41bb615a0343ffeee6d6
php-libguestfs-1.50.2-1.el9.aarch64.rpm
819d241712e10722c2998b5bb421151a1b8022b02e6abe4089e27820c7b76575
ruby-libguestfs-1.50.2-1.el9.aarch64.rpm
a109c1a798fa7bd6a49642bc6e6c18a85fa51a6b96e37e752802e1d80ded5d83
RLBA-2024:9440
libabigail bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libabigail.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libabigail-2.5-1.el9.aarch64.rpm
61fa0eeb7aee5be1eac1b716528e3e53bb4b97d3123ae9c578954977a3bef054
RLEA-2024:9448
OpenJDK 11 is no longer the default system-wide version of Java on Rocky Linux 9
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for java-11-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The 11.0.25 release is the last release of Rocky Enterprise Software Foundation build of OpenJDK 11 that Rocky Enterprise Software Foundation plans to fully support. The full support for Rocky Enterprise Software Foundation build of OpenJDK 11 ends on 31 October 2024.
As a consequence, Rocky Enterprise Software Foundation build of OpenJDK 17 will be the default system-wide Java version on Rocky Linux 9 after 31 October 2024.
Please refer to the Release Notes for Rocky Enterprise Software Foundation Build of OpenJDK 11.0.25 [1] for more details, including the Extended Life Cycle Support (ELS) phase for Rocky Enterprise Software Foundation build of OpenJDK 11 and for migration instructions.
See [2] for instructions on configuring Rocky Enterprise Software Foundation build of OpenJDK 17 on Rocky Linux and selecting the default Rocky Enterprise Software Foundation build of OpenJDK version to use system wide.
[1]
https://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/11/html/release_notes_for_red_hat_build_of_openjdk_11.0.25/endfullsupport
[2]
https://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/17/html-single/configuring_red_hat_build_of_openjdk_17_on_index
rocky-linux-9-aarch64-crb-rpms
java-11-openjdk-demo-fastdebug-11.0.25.0.9-3.el9.aarch64.rpm
c5d4dbc01b4ab1b14838eb4c206f136875e246d03922be0a3ca4d63b498ceea8
java-11-openjdk-demo-slowdebug-11.0.25.0.9-3.el9.aarch64.rpm
150a8fc077464ea2e36e5909dd4876a804b6d1bb087174b941fd9bebdb57f1fd
java-11-openjdk-devel-fastdebug-11.0.25.0.9-3.el9.aarch64.rpm
9007689126a368271c6423335e6865c9dbfd6094360d46042bb91aecdef4c18e
java-11-openjdk-devel-slowdebug-11.0.25.0.9-3.el9.aarch64.rpm
8d2a31686c1e9a4b518a1e8569329d69d50889f62f5754d7876c3221c77ddaa3
java-11-openjdk-fastdebug-11.0.25.0.9-3.el9.aarch64.rpm
360cf90d26713515c4a82eff3cb87d5b328c6e61ffcb8797b8246c3450566067
java-11-openjdk-headless-fastdebug-11.0.25.0.9-3.el9.aarch64.rpm
5a842c5962fdf812cff2cc93409597f31bcf274b942f0e6a18c96e64a6b34336
java-11-openjdk-headless-slowdebug-11.0.25.0.9-3.el9.aarch64.rpm
48a55f9aa0a5c95f0c5e81f77583f62f22f2bc81e45eec5891cf1170e1649c4b
java-11-openjdk-jmods-fastdebug-11.0.25.0.9-3.el9.aarch64.rpm
4fa7fc113302c02f3eb32db3f43617b61dbd34ce3731a4a5421181e454d0b3c9
java-11-openjdk-jmods-slowdebug-11.0.25.0.9-3.el9.aarch64.rpm
65c6a4dd98f050d07a11029583cbd24ad1e7ea7f0df2997f1248b9a769456341
java-11-openjdk-slowdebug-11.0.25.0.9-3.el9.aarch64.rpm
b4896d604bb7ef3e14bc3122791a49048fec2dbf1eebf30fed79284bd7364b34
java-11-openjdk-src-fastdebug-11.0.25.0.9-3.el9.aarch64.rpm
df070c3d0fa3e4e5d9ff284e1740a192c6fb9627a6c5ba82425be8b1e824d2e0
java-11-openjdk-src-slowdebug-11.0.25.0.9-3.el9.aarch64.rpm
69d2e117d91b8d750a43d4b8f2db72a189b0b71b6ba9119191fb841348f9c02c
java-11-openjdk-static-libs-fastdebug-11.0.25.0.9-3.el9.aarch64.rpm
2d4c8545a8f73319cc9ec277b76d8141aa67e5fa7fadf7ea64ae5a797455d83b
java-11-openjdk-static-libs-slowdebug-11.0.25.0.9-3.el9.aarch64.rpm
4a16290e68f988cc412143bcec1277cb4d774f74853e6c35c63fb06e39707896
RLEA-2024:9463
OpenJDK 17 is now the default system-wide version of Java on Rocky Linux 9
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for java-17-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The 11.0.25 release is the last release of Rocky Enterprise Software Foundation build of OpenJDK 11 that Rocky Enterprise Software Foundation plans to fully support. The full support for Rocky Enterprise Software Foundation build of OpenJDK 11 ends on 31 October 2024.
As a consequence, Rocky Enterprise Software Foundation build of OpenJDK 17 will be the default system-wide Java version on Rocky Linux 9 after 31 October 2024.
Please refer to the Release Notes for Rocky Enterprise Software Foundation Build of OpenJDK 11.0.25 [1] for more details, including the Extended Life Cycle Support (ELS) phase for Rocky Enterprise Software Foundation build of OpenJDK 11 and for migration instructions.
See [2] for instructions on configuring Rocky Enterprise Software Foundation build of OpenJDK 17 on Rocky Linux and selecting the default Rocky Enterprise Software Foundation build of OpenJDK version to use system wide.
[1]
https://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/11/html/release_notes_for_red_hat_build_of_openjdk_11.0.25/endfullsupport
[2]
https://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/17/html-single/configuring_red_hat_build_of_openjdk_17_on_index
rocky-linux-9-aarch64-crb-rpms
java-17-openjdk-demo-fastdebug-17.0.13.0.11-4.el9.aarch64.rpm
29830fbff9d7b8b49a4428acd578354c9d819f6c484ba9810438ef991a59c4d9
java-17-openjdk-demo-slowdebug-17.0.13.0.11-4.el9.aarch64.rpm
ecca24e35c0456db5cdbf64b3718858b45db3a5295ed6fee712fe0017b408716
java-17-openjdk-devel-fastdebug-17.0.13.0.11-4.el9.aarch64.rpm
fe83f1b18c308e0b140bb6d9e649696957c6af8dec414d317f78cd10f300f3ad
java-17-openjdk-devel-slowdebug-17.0.13.0.11-4.el9.aarch64.rpm
25443466a35e8335939830a1cfa37c6950509fe8e7543ba7ac96cc4eb0b3fff2
java-17-openjdk-fastdebug-17.0.13.0.11-4.el9.aarch64.rpm
de5689ac3f08a28b0ccce9624118cc2b797f947eec17c2cdd66ee65e3b8bed68
java-17-openjdk-headless-fastdebug-17.0.13.0.11-4.el9.aarch64.rpm
76319eb84225597cd6377f4f0dda6efeb08299329a8aee47f613bf593a320300
java-17-openjdk-headless-slowdebug-17.0.13.0.11-4.el9.aarch64.rpm
cc5e7d6b9b685a944b419a24748e859fe2300bd10bcea10a265c8415293202e8
java-17-openjdk-jmods-fastdebug-17.0.13.0.11-4.el9.aarch64.rpm
2b7803a80886596bbe1273b06e123d71577aa2b966694a56ef97d96b1ab7f432
java-17-openjdk-jmods-slowdebug-17.0.13.0.11-4.el9.aarch64.rpm
054fff2020daaa6fbdb1dd5fbb8fd3ce064e8f03a3016b17fd7ce1298ddebdd2
java-17-openjdk-slowdebug-17.0.13.0.11-4.el9.aarch64.rpm
6169022daa51b28f05cbbfa3034bb66b33fa6e9971054d0d162b5c7b077ebb5e
java-17-openjdk-src-fastdebug-17.0.13.0.11-4.el9.aarch64.rpm
eabd6244d40094b60cf6024fe83673f66f3bbda1cbf8903fe2c5ea6462849040
java-17-openjdk-src-slowdebug-17.0.13.0.11-4.el9.aarch64.rpm
7c707e39ad2f5fe8a0a0db10dd509c20c6ac40b92809012e1017d0bf0738c5ac
java-17-openjdk-static-libs-fastdebug-17.0.13.0.11-4.el9.aarch64.rpm
ebc44174ca2740bd1a145cf05656f69a97a54712ea76a4e57fa00d96c8a393d8
java-17-openjdk-static-libs-slowdebug-17.0.13.0.11-4.el9.aarch64.rpm
2697f5dbf40aebb0ced57cc838f280209223c46ce85042504ddc85c7ebb1b7c3
RLBA-2024:9464
java-1.8.0-openjdk bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for java-1.8.0-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Rocky Linux 9.5 GA release was prepared with the most recent release of OpenJDK 8 at that time, which was OpenJDK 8u422, released on 16 July 2024. OpenJDK 8u432 was subsequently released on 15 October 2024, with existing Rocky Linux 9 releases (9.0, 9.2, and 9.4) being updated at that time. This update now brings OpenJDK 8u432 to Rocky Linux 9.5.
For more information about the changes in OpenJDK 8u432, see the release notes listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-1.8.0-openjdk-demo-fastdebug-1.8.0.432.b06-3.el9.aarch64.rpm
1e8def21322e67a47590fe5d0a79a122dc13b353aa8a0b8c538ca7a002c254a9
java-1.8.0-openjdk-demo-slowdebug-1.8.0.432.b06-3.el9.aarch64.rpm
a44a5eef190703074e1791b05df7720a1df1722a49f612a7f496538424eeb3c3
java-1.8.0-openjdk-devel-fastdebug-1.8.0.432.b06-3.el9.aarch64.rpm
8cb32cb9d4cbea1708c8035e9d5dca1593732f5b363ec293d0822b94009b1ec5
java-1.8.0-openjdk-devel-slowdebug-1.8.0.432.b06-3.el9.aarch64.rpm
066bd192fec647b4ff4aa85b0c69318837b9b023da1bc200e40f546eec9fb7bc
java-1.8.0-openjdk-fastdebug-1.8.0.432.b06-3.el9.aarch64.rpm
73838cb2f4fd5215187389dac47eb333f46ef7e0d94368055e8c2196e69cef91
java-1.8.0-openjdk-headless-fastdebug-1.8.0.432.b06-3.el9.aarch64.rpm
f6d853b48ce9b566bd399e68d66745b08b40187955837b0827dc2dbcdf323d67
java-1.8.0-openjdk-headless-slowdebug-1.8.0.432.b06-3.el9.aarch64.rpm
134acebc6200cfa5eea8a3d54678061e17bc937ee31ccf1d59940b45b76e04ac
java-1.8.0-openjdk-slowdebug-1.8.0.432.b06-3.el9.aarch64.rpm
492f2333722b62ba1788005d12bb0870f4d9c5efd002b0770f1f2cbedae23b99
java-1.8.0-openjdk-src-fastdebug-1.8.0.432.b06-3.el9.aarch64.rpm
30f5ebf80e0209be619deae4ca80825b05865a992f9062121e3f3a0994395144
java-1.8.0-openjdk-src-slowdebug-1.8.0.432.b06-3.el9.aarch64.rpm
b3ee074957fbc89a2f8c78eacfe067dbddfbf3d1d6a2362470922631319bd753
RLBA-2024:9466
mutter bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for mutter, gnome-shell.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Mutter is a compositing window manager that displays and manages desktop through OpenGL. It combines the window-management logic inherited from the Metacity window manager with a display engine that uses the Clutter toolkit.
Bug Fix(es):
* gnome-shell crash on wl_copy [rhel-9.5.z] (JIRA:Rocky Linux-62993)
* gnome-shell crash on ctrl-alt-shift -left/right shortcuts [rhel-9.5.z] (JIRA:Rocky Linux-62997)
* Some application popups switch workspaces and steal focus on Xorg sessions [rhel-9.5.z] (JIRA:Rocky Linux-63000)
rocky-linux-9-aarch64-crb-rpms
mutter-devel-40.9-22.el9_5.aarch64.rpm
a3ceeaef7944eb89980ae557baa14cec1b5f2ecfcb39ee16e340acf60071bc0d
RLBA-2024:9465
java-21-openjdk bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for java-21-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Rocky Linux 9.5 GA release was prepared with the most recent release of OpenJDK 21 at that time, which was OpenJDK 21.0.4, released on 16 July 2024. OpenJDK 21.0.5 was subsequently released on 15 October 2024, with existing Rocky Linux 9 releases (9.0, 9.2, and 9.4) being updated at that time. This update now brings OpenJDK 21.0.5 to Rocky Linux 9.5.
For more information about the changes in OpenJDK 21.0.5, see the release notes listed in the References section.
rocky-linux-9-aarch64-crb-rpms
java-21-openjdk-demo-fastdebug-21.0.5.0.11-2.el9.aarch64.rpm
0f647703bb595ecd46940bce5b0472424ecd0d1f8958316e3b54d812653aa0c4
java-21-openjdk-demo-slowdebug-21.0.5.0.11-2.el9.aarch64.rpm
f4dcb8dfae488c3292090e315d1dea4d93fe0d6a3e068cfb5998cc8ea793251e
java-21-openjdk-devel-fastdebug-21.0.5.0.11-2.el9.aarch64.rpm
b1eb967b211dbe2c592a6fc420723af8b318076db48b2b0b56eb3b2312a6b327
java-21-openjdk-devel-slowdebug-21.0.5.0.11-2.el9.aarch64.rpm
64828894e8072b27c0230f1b0eac9b609a018e500971e5367c096436a7f46c09
java-21-openjdk-fastdebug-21.0.5.0.11-2.el9.aarch64.rpm
9a4d4a993779349af2da15ddcd3fad65b6ff7d97254b2fdcfa588fd3855d9d5a
java-21-openjdk-headless-fastdebug-21.0.5.0.11-2.el9.aarch64.rpm
d2b7fb1853a6b9d5b00cb1e1fa7dbaf49849c4159f9e9e621f77add997acde4f
java-21-openjdk-headless-slowdebug-21.0.5.0.11-2.el9.aarch64.rpm
5fc86358f3e0a88779c9f3a6977cbd05705bca4a9f22aed0c2dd473bdec68921
java-21-openjdk-jmods-fastdebug-21.0.5.0.11-2.el9.aarch64.rpm
50867eb23e968b39dfec611801dd8d175e09c631cadbd4b68a61be3086d93cdc
java-21-openjdk-jmods-slowdebug-21.0.5.0.11-2.el9.aarch64.rpm
081c7bec4e0f4f2c2ee29e76538832c3ad2fa24defbfaedb1d3ec1337abfcd2f
java-21-openjdk-slowdebug-21.0.5.0.11-2.el9.aarch64.rpm
7119abb4753ed15cf85cf7a7132f3dd2f8ca85b05390ea0782dcdfb2f81a995d
java-21-openjdk-src-fastdebug-21.0.5.0.11-2.el9.aarch64.rpm
c87d6163796f96fd328e1ddb4a947c12a65563a97a79da597c2473ec38dac1a4
java-21-openjdk-src-slowdebug-21.0.5.0.11-2.el9.aarch64.rpm
40799c8f6820042d252a62ac5ea2414fc586abf5edde0aa00604552edd8a8981
java-21-openjdk-static-libs-fastdebug-21.0.5.0.11-2.el9.aarch64.rpm
38f15e61599d790e5036ab5cffb566361f22fccb83859ec5eef7394abdafa74d
java-21-openjdk-static-libs-slowdebug-21.0.5.0.11-2.el9.aarch64.rpm
9ecb71777c87ccf8bb3c5b313a2a1325f89b9a9b9f49dad670db149f0447d980
RLBA-2024:9683
evolution bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for evolution.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Evolution is a GNOME application that provides integrated email, calendar, contact management, and communications functionality.
Bug Fix(es):
* WebKitGTK 2.46.1: Middle mouse button inserts primary clipboard twice [rhel-9.5.z] (JIRA:Rocky Linux-62680)
rocky-linux-9-aarch64-crb-rpms
evolution-devel-3.40.4-10.el9_5.1.aarch64.rpm
93b5c818456a746fcd12cebd14b93000a55a60c93aeb5882f7367f8d19737151
RLSA-2024:10858
Important: ruby security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for ruby.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
Security Fix(es):
* rexml: REXML ReDoS vulnerability (CVE-2024-49761)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
ruby-doc-3.0.7-163.el9_5.noarch.rpm
9b24423a8768ece429ac9752ae2383617a64271157c87d7c87c3d4735a9d7755
RLSA-2024:10978
Important: python3.12 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for python3.12.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: Virtual environment (venv) activation scripts don't quote paths (CVE-2024-9287)
* python: Unbounded memory buffering in SelectorSocketTransport.writelines() (CVE-2024-12254)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.12-debug-3.12.5-2.el9_5.2.aarch64.rpm
6b6ee317b291de132952ff984f95e6d86c37d8654ddf0e2524ff009d76b13387
python3.12-idle-3.12.5-2.el9_5.2.aarch64.rpm
7b6d69f7466cacb2fbfaf418390cc22f430375f6be417b49f5b11448ea3fb773
python3.12-test-3.12.5-2.el9_5.2.aarch64.rpm
64b9f43563422447a4694a121fa440c213c5e2b13b30cb66bf12be34c08780ee
RLSA-2024:11111
Moderate: python3.11 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for python3.11.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* python: Virtual environment (venv) activation scripts don't quote paths (CVE-2024-9287)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.11-debug-3.11.9-7.el9_5.2.aarch64.rpm
00d22f90f1b9fab13d0c6bd39f1bae71d43bd70fcef8d201ce09bf9e1cc22d56
python3.11-idle-3.11.9-7.el9_5.2.aarch64.rpm
2e6b763214e2616f93a89fc7482935fea278c344c6fae1be9d0510bc997331a7
python3.11-test-3.11.9-7.el9_5.2.aarch64.rpm
900f54f4dc0008b4db2bd77199bb3128d30956552574044cbfa7203580d9399e
RLBA-2024:11218
nmstate bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for nmstate.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound.
Bug Fix(es) and Enhancement(s):
* Disabling ipv6 on ovs-interface is failing due to verification error [rhel-9.5.z] (JIRA:Rocky Linux-60242)
* nmstatectl gc mode does not support blackhole routes [rhel-9.5.z] (JIRA:Rocky Linux-58666)
* nncp route-rules applied breaks br-ex connectivity [rhel-9.5.z] (JIRA:Rocky Linux-60261)
* nmstate: Connectivity issue with a configuration has `ipv4 dhcp: true` and `ipv6 enabled: false`. [rhel-9.5.z] (JIRA:Rocky Linux-61899)
* Pod interface removed [rhel-9.5.z] (JIRA:Rocky Linux-65031)
rocky-linux-9-aarch64-crb-rpms
nmstate-devel-2.2.39-1.el9_5.aarch64.rpm
cbda805ea966b54e3521a1ba719bb7f0137915c05067faf58e057dc10d21a5a7
nmstate-static-2.2.39-1.el9_5.aarch64.rpm
5d4e1700ff07fb2b21ba03e9401c95fcfafb3fa769d9001371face2baf073484
RLSA-2024:11219
Moderate: edk2:20240524 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for edk2.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM.
Security Fix(es):
* edk2: Integer overflows in PeCoffLoaderRelocateImage (CVE-2024-38796)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
edk2-ovmf-20240524-6.el9_5.3.noarch.rpm
fc0caf09a366d9af2744b360332c131580cca70d734a06cc6db99a13300aff34
edk2-tools-20240524-6.el9_5.3.aarch64.rpm
cb522dd68986719995f49146ad1b95361b6f35e137671655d1916040706ab108
edk2-tools-doc-20240524-6.el9_5.3.noarch.rpm
ec645e377e76dbab6c94506732165121cf304972dad9ee8f5fd5b58c5420bff9
RLBA-2024:11223
javapackages-tools bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for javapackages-tools.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The javapackages-tools packages provide macros and scripts to support Java packaging.
Bug Fix(es):
* javapackages-tools: Make OpenJDK 17 default JRE/JDK [rhel-9.5.z] (JIRA:Rocky Linux-62403)
* javapackages-tools: Include java-21-headless in generated auto-requires [rhel-9.5.z] (JIRA:Rocky Linux-62409)
rocky-linux-9-aarch64-crb-rpms
javapackages-generators-6.0.0-7.el9_5.noarch.rpm
5afaca645f3ae6bc603139715ebb04300926e69f714d36c428f1cf33e64030eb
javapackages-local-6.0.0-7.el9_5.noarch.rpm
149da2e9b3156051e9073e55f33362a47bc8ec8f07313e61264260997363464d
maven-local-6.0.0-7.el9_5.noarch.rpm
bb69f6e0f3eaae62a8bd3cd54403bdf3c2267d36852fc94e5c4a046624a944e3
python3-javapackages-6.0.0-7.el9_5.noarch.rpm
8e443104c3cab7f7b9e90d2b6e417acbb7e390ce3784c7e8139b9f1457b4d001
RLBA-2024:11224
ostree bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ostree.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
OSTree is a tool for managing bootable, immutable, versioned file system trees.
Bug Fix(es):
* [9.5] ostree Backport https://github.com/ostreedev/ostree/pull/3300 (JIRA:Rocky Linux-62772)
* [rhel-9.5.z] Rebase ostree to 2024.9 (JIRA:Rocky Linux-68351)
rocky-linux-9-aarch64-crb-rpms
ostree-devel-2024.9-1.el9_5.aarch64.rpm
beb9d6a5c765ea3851330a8fcee4a946c922bf6de6821f7ef545899baecef6fc
RLBA-2024:11228
bcc bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for bcc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
BPF Compiler Collection (BCC) is a toolkit for easier creation of efficient kernel tracing and manipulation programs. BCC uses the extended Berkeley Packet Filter (eBPF) tool.
Bug Fix(es):
* The bcc-tools 'bio*' does not run as expected on Rocky Linux 9.4 [rhel-9.5.z] (JIRA:Rocky Linux-65192)
rocky-linux-9-aarch64-crb-rpms
bcc-devel-0.30.0-7.el9_5.aarch64.rpm
9279714030b6b65b76e63867c05ec9a45b7a66a123ace3595987890374a29af9
bcc-doc-0.30.0-7.el9_5.noarch.rpm
edc236c3c2416b0de7899a9dc9f213e8fd962fa01892fb9223f6b6f7f6c29d60
RLSA-2024:11232
Moderate: unbound:1.16.2 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for unbound.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver.
Security Fix(es):
* unbound: Unbounded name compression could lead to Denial of Service (CVE-2024-8508)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
unbound-devel-1.16.2-8.el9_5.1.aarch64.rpm
3d58446169ad79998fefa23369d5e7d4d720718fe6ed856af7e11fb51f1b0f7d
RLSA-2024:11237
Moderate: libsndfile:1.0.31 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for libsndfile.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV.
Security Fix(es):
* libsndfile: Segmentation fault error in ogg_vorbis.c:417 vorbis_analysis_wrote() (CVE-2024-50612)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libsndfile-devel-1.0.31-8.el9_5.2.aarch64.rpm
64f77f6eb0d250bb3c7c9e58208c35ef637bdfd3ffa18aef56e5fc4c2ce29756
RLBA-2024:11241
seabios bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for seabios.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The seabios packages contain an open-source legacy BIOS implementation that can be used as a coreboot payload. They implement the standard BIOS calling interfaces that a typical x86 proprietary BIOS implements.
Bug Fix(es):
* amdgpu failed to initialize when multiple AMD MI210 GPUs assigned and firmware is seabios [rhel-9.5.z] (JIRA:Rocky Linux-68955)
rocky-linux-9-aarch64-crb-rpms
seabios-bin-1.16.3-2.el9_5.1.noarch.rpm
8928d209011e99e7f23d8c3a0053bc3e0a6c6c6e9a68251e2c7ef0125f288c3e
seavgabios-bin-1.16.3-2.el9_5.1.noarch.rpm
e34541684cb8c726bc494c91ef3fc57c134d841f496834823fcf68c7b696b125
RLBA-2025:0915
389-ds-base bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for 389-ds-base.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.
Bug Fix(es):
* Wrong set of entries returned for some search filters [rhel-9.5.z] (JIRA:Rocky Linux-65775)
* deadlock during cleanAllRuv [rhel-9.5.z] (JIRA:Rocky Linux-66138)
* cleanallruv consums CPU and is slow [rhel-9.5.z] (JIRA:Rocky Linux-67163)
* Freelist ordering causes high wtime [rhel-9.5.z] (JIRA:Rocky Linux-70257)
* Some nsslapd-haproxy-trusted-ip values are discarded upon a restart. [rhel-9.5.z] (JIRA:Rocky Linux-74350)
rocky-linux-9-aarch64-crb-rpms
389-ds-base-devel-2.5.2-5.el9_5.aarch64.rpm
7146ca639168b262811e7e9ae02692c7a5467b9e00dfaacb9177b30998dd6908
RLBA-2025:0924
ipa bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ipa.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments.
Bug Fix(es):
* kinit with external idp user is failing [rhel-9.5.z] (JIRA:Rocky Linux-76011)
rocky-linux-9-aarch64-crb-rpms
python3-ipatests-4.12.2-1.el9_5.4.noarch.rpm
10e3a62af67d86e7b31a966c667b26ffd63c771f7923c9f6e858ed4300daa264
RLSA-2025:1670
Important: bind9.18 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for bind9.18.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating properly.
Security Fix(es):
* bind: bind9: Many records in the additional section cause CPU exhaustion (CVE-2024-11187)
* bind: bind9: DNS-over-HTTPS implementation suffers from multiple issues under heavy query load (CVE-2024-12705)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
bind9.18-devel-9.18.29-1.el9_5.1.aarch64.rpm
4a2724c374f83cf4bc3807bb48536edfc4f2e8bb56572b24b4a4581d22406d95
bind9.18-doc-9.18.29-1.el9_5.1.noarch.rpm
a6ef797885ebc1ab67bdda539f25c3cfdcea04cb21181b48a531e803a6f1999f
RLSA-2025:1681
Important: bind security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for bind.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly.
Security Fix(es):
* bind: bind9: Many records in the additional section cause CPU exhaustion (CVE-2024-11187)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
bind-devel-9.16.23-24.el9_5.3.aarch64.rpm
e29c7309d959b5704c954313b1549a3f4ddcd09cbf0cf4c9ad3ad3c998d29d74
bind-doc-9.16.23-24.el9_5.3.noarch.rpm
96351e8ec1debab68ce99c9bb73054b4dcec0a33b80ad748aa6b171b23f18a40
RLBA-2022:2444
new packages: jq
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for jq.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
jq-devel-1.6-12.el9.aarch64.rpm
d3f4b43b825e77a829a81a081bd4666fcfb8f18c7bdc79094f8fc1de3d5f0841
RLBA-2024:2443
libselinux bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libselinux.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
libselinux-static-3.6-1.el9.aarch64.rpm
b2ecad2d87f380b90db8c6d4543e6788062187be91074eb5757ab019773436c6
RLBA-2024:2500
fwupd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for fwupd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
fwupd-devel-1.9.13-2.el9.aarch64.rpm
34b4362194cb41de2d08da0060eb9f1db8ad6e10fe7720df0704bdea6de61a56
RLBA-2024:11252
sssd bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sssd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources.
Bug Fix(es):
* SSSD needs an option to indicate if the LDAP server can run the exop with an anonymous bind or not [rhel-9.5.z] (JIRA:Rocky Linux-66268)
* Label DP_OPT_DYNDNS_REFRESH_OFFSET has no corresponding option [rhel-9.5.z] (JIRA:Rocky Linux-67673)
* sssd backend process segfaults when krb5.conf is invalid [rhel-9.5.z] (JIRA:Rocky Linux-68508)
rocky-linux-9-aarch64-crb-rpms
libsss_nss_idmap-devel-2.9.5-4.el9_5.4.aarch64.rpm
9026392df35d6f9f91fa37dcb5d42af8be98d3bf221baf797c0d780a44dd0c99
RLBA-2024:11253
libsemanage bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for libsemanage.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The libsemanage library provides an API for the manipulation of SELinux binary policies. It is used by the checkpolicy compiler and similar utilitlies, as well as by programs such as load_policy, which must perform specific transformations on binary policies, such as customizing policy Boolean settings.
Bug Fix(es):
* semanage fails to get lock if / is on NFS (or /var/lib/selinux/) [rhel-9.5.z] (JIRA:Rocky Linux-69531)
rocky-linux-9-aarch64-crb-rpms
libsemanage-devel-3.6-2.1.el9_5.aarch64.rpm
4e96df37a5885df2f41121ca994d19708e48d06bdd8f4a220e19aab50bcf68a3
RLBA-2024:2350
pyproject-rpm-macros bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for pyproject-rpm-macros.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
pyproject-rpm-macros-1.12.0-1.el9.noarch.rpm
20775a4ddbade42a6e7c60ba94593c3488a1def25fb78dafade4aa3668895699
RLSA-2024:2353
Moderate: mingw components security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for mingw-w64-tools, mingw-headers, mingw-zlib, mingw-binutils, mingw-winpthreads, mingw-libffi, mingw-gcc, mingw-crt, mingw-filesystem.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
MinGW (Minimalist GNU for Windows) is a free and open source software development environment to create Microsoft Windows applications.
Security Fix(es):
* binutils: Heap-buffer-overflow binutils-gdb/bfd/libbfd.c in bfd_getl64 (CVE-2023-1579)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
mingw32-binutils-2.41-3.el9.aarch64.rpm
10ab44a6cbdb15fb034417e356b9fb7362ceaa0aa76236a1379d6f889e01008e
mingw32-cpp-13.2.1-7.el9.aarch64.rpm
6a025b4ebfd6be2b378e3a191482fc2199b9dc42e9342cf4f4de446e9601d3ff
mingw32-crt-11.0.1-3.el9.noarch.rpm
c51230f416183e0c57de307d407e2ffba39f5c4090da825baba386b61741f5fe
mingw32-filesystem-148-3.el9.noarch.rpm
ec3132796ec36ed721b243022b478be4a6daf1d12aee2c81ead248ed61269fcb
mingw32-gcc-13.2.1-7.el9.aarch64.rpm
497488028c54072f73da9c05a707e73d0e43b58239fb8d7a9885b5750dfc0ff5
mingw32-gcc-c++-13.2.1-7.el9.aarch64.rpm
26039676bb6d6a48e9199c282066141b723ae8646dc4a5510d4c63b5e02830f0
mingw32-headers-11.0.1-3.el9.noarch.rpm
560988b9c9a61ff67b3f1f0670c5eaf4120f8401537c565f0f61e332302c26f9
mingw32-libgcc-13.2.1-7.el9.aarch64.rpm
e137c5398d44915f9cc31a57a6fd7b72f6064839c1043fa8a49e827434ceb626
mingw32-winpthreads-11.0.1-3.el9.noarch.rpm
a8065ddbe3b44cef323c79951887a7d0f254f3616bb3e6adb1c0d33eb8dcf393
mingw32-winpthreads-static-11.0.1-3.el9.noarch.rpm
7803a68ccb1a6722b0c49a5ce9ab858af3bef55d4074323e4e5697ca1abc900d
mingw64-binutils-2.41-3.el9.aarch64.rpm
48ee4494b5d532a1c302f0773a0e62ab29fb499fb494c6140d7d5dede75e6317
mingw64-cpp-13.2.1-7.el9.aarch64.rpm
72e8473a9cfc80c733b81291dd84e3435875c5e6eb0716e173e72d25ee6c27f2
mingw64-crt-11.0.1-3.el9.noarch.rpm
0d7cd781ab9b772bb9ed9c913794f1a531a4c543889e456da4f1e54ce9863582
mingw64-filesystem-148-3.el9.noarch.rpm
b3a67b1db16919e535260fd335e47d65753353e08bdc3527f0e3469724a2adc2
mingw64-gcc-13.2.1-7.el9.aarch64.rpm
4ee2738ae6217eb78dd34403fd5acd229aef2cbea7b42cd70f1722ada88b0150
mingw64-gcc-c++-13.2.1-7.el9.aarch64.rpm
ccabcd3de507307fb11ebfb269799b6bed3cce7aa8b499df394f0922eff6d87c
mingw64-headers-11.0.1-3.el9.noarch.rpm
f73ff4dd7c5e5cdca219e5b99083332fb5c2129180ce60df3d5bbc09583acba1
mingw64-libgcc-13.2.1-7.el9.aarch64.rpm
942beaeb2e2d1d466215003407b2dd7a1fb74f025e83b7256d0ede83775429b5
mingw64-winpthreads-11.0.1-3.el9.noarch.rpm
11140958e839c978d7e89b89499dc69209ef708e6f5b0dd26d9db33777548e00
mingw64-winpthreads-static-11.0.1-3.el9.noarch.rpm
27f558bdf97f85be1b680494e4e7b4fb1da5a9e97f2b8615dd566bed8a3c1549
mingw-binutils-generic-2.41-3.el9.aarch64.rpm
115158b1cf72c4903e04322f6304c7c16be4e5d895972dcd791b7bf9d0ffa2fe
mingw-filesystem-base-148-3.el9.noarch.rpm
7b01e206f79e561a50b62f94540ad910b9f52435ca135bb0872511c0685f788c
RLBA-2024:6177
pybind11 bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for pybind11.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
pybind11 is a lightweight header-only library that exposes C++ types in Python and vice versa, mainly to create Python bindings of existing C++ code.
Bug Fix(es) and Enhancement(s):
* python3.11-pybind11-devel-2.10.3-2.el9 is still in the Rocky Linux 9.4 repos, masking the fix in python3.11-pybind11-devel-2.10.3-3.el9 (JIRA:Rocky Linux-38108)
rocky-linux-9-aarch64-crb-rpms
pybind11-devel-2.6.2-6.el9_4.aarch64.rpm
63557cffa99bc47441c82ed8e4707951a1dac501201903a89655c31e1bbce1a9
python3-pybind11-2.6.2-6.el9_4.aarch64.rpm
d96bfe866a4fcea56745a55a92f785fcc60bf1eaa96e2bf36d1a0940f958621c
RLSA-2024:6197
Moderate: ghostscript security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for ghostscript.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed.
Security Fix(es):
* ghostscript: format string injection leads to shell command execution (SAFER bypass) (CVE-2024-29510)
* ghostscript: path traversal and command execution due to path reduction (CVE-2024-33869)
* ghostscript: path traversal to arbitrary files if the current directory is in the permitted paths (CVE-2024-33870)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
libgs-devel-9.54.0-17.el9_4.aarch64.rpm
ced00bea4406d6900b450f43169556a8cbd06c7496c300555742acf6f5800bfe
RLSA-2024:6356
Important: bubblewrap and flatpak security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for flatpak.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Bubblewrap (/usr/bin/bwrap) is a core execution engine for unprivileged containers that works as a setuid binary on kernels without user namespaces.
Security Fix(es):
* flatpak: Access to files outside sandbox for apps using persistent= (--persist) (CVE-2024-42472)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
flatpak-devel-1.12.9-3.el9_5.aarch64.rpm
3a73ec11e059ad01bdbdabcc7aec6933469af5b665c840fae76f69fe9eebdac4
RLBA-2024:11220
ant bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for byte-buddy, jzlib, xerces-j2, xz-java, xml-commons-apis, jdepend, regexp, jakarta-mail, junit5, assertj-core, univocity-parsers, jakarta-oro, objectweb-asm, hamcrest, opentest4j, ant, antlr, apache-commons-logging, junit, xml-commons-resolver, jsch, bcel, jakarta-activation, bsf, apache-commons-net.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Apache Ant is a Java library and command-line tool, which drives processes described in build files as targets dependent upon each other. Ant provides a number of built-in tasks allowing to compile, assemble, test, and run Java applications. Ant can also be used effectively to build non-Java applications, for instance, C or C++ applications. Generally, Ant can be used to pilot any type of process which can be described in terms of targets and tasks.
Bug Fix(es):
* ant: Add OpenJDK bindings [rhel-9.5.z] (JIRA:Rocky Linux-62405)
rocky-linux-9-aarch64-crb-rpms
antlr-C++-2.7.7-70.el9_5.aarch64.rpm
fadde8a7a28f2334266f0101f11bc0187b7531bae0bf686090f9824dec47880a
byte-buddy-agent-1.10.20-7.el9_5.noarch.rpm
c3bdcfa9c3b7bf73866e0d1328400925f654f2533bee5f47ab5fcfacef4e3264
RLBA-2024:11222
maven bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for jansi, cdi-api, google-guice, maven-wagon, plexus-cipher, guava, maven, httpcomponents-core, jakarta-annotations, apache-commons-io, maven-shared-utils, apache-commons-lang3, apache-commons-codec, plexus-interpolation, plexus-classworlds, sisu, plexus-sec-dispatcher, jsr-305, maven-resolver, httpcomponents-client, apache-commons-cli, plexus-containers, plexus-utils, slf4j, atinject, jsoup.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Maven is a software project management and comprehension tool. Based on the concept of a project object model (POM), Maven can manage a project's build, reporting and documentation from a central piece of information.
Bug Fix(es):
* maven: Suggest maven-openjdk17 [rhel-9.5.z] (JIRA:Rocky Linux-62398)
* maven: Add maven-openjdk21 [rhel-9.5.z] (JIRA:Rocky Linux-62407)
rocky-linux-9-aarch64-crb-rpms
plexus-containers-container-default-2.1.0-11.el9_5.noarch.rpm
99eb201e160e3d6363f388042eac35bd32d74e04182efe9416871ae2ef3e202c
RLSA-2025:4244
Moderate: glibc security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for glibc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly.
Security Fix(es):
* glibc: buffer overflow in the GNU C Library's assert() (CVE-2025-0395)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
glibc-benchtests-2.34-125.el9_5.8.aarch64.rpm
fdb46c54bc2795364eacab5ff8b440ea999927a389b6aebee92edfe3adf98517
glibc-nss-devel-2.34-125.el9_5.8.aarch64.rpm
32f767be615b276fc25a70cd7cfee4507c9c8f85c7e2f0ba875c9b30bbf185ad
glibc-static-2.34-125.el9_5.8.aarch64.rpm
4b6e1f3c71ad9c9aef57642f59fd8852f59fc4c58d1cef5d32c3bedcbe354744
nss_db-2.34-125.el9_5.8.aarch64.rpm
83dce84e250b8017bc172c6179eec388d8d015f24bc0a405d7958c2a13f6924b
nss_hesiod-2.34-125.el9_5.8.aarch64.rpm
365c021c5b8e45cfee92be5e5fde3ccc4f91e569ade4068594c5d783119b2d0a
RLSA-2025:4341
Important: kernel security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: kobject_uevent: Fix OOB access within zap_modalias_env() (CVE-2024-42292)
* kernel: ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322)
* kernel: bonding: fix null pointer deref in bond_ipsec_offload_ok (CVE-2024-44990)
* kernel: ELF: fix kernel.randomize_va_space double read (CVE-2024-46826)
* kernel: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu() (CVE-2025-21927)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-503.40.1.el9_5.aarch64.rpm
bd180f38e17c8be6728231b6c9339d765e11764caabd6e8b7e794b86e16f93a8
kernel-tools-libs-devel-5.14.0-503.40.1.el9_5.aarch64.rpm
40b3a47206e7efab12a053f81c14e8c2a20837360c4d26965cb3329ec877e3bb
libperf-5.14.0-503.40.1.el9_5.aarch64.rpm
c6de35c06bdbd5fc00e028636cc165c5d7eef4dca0d6acabb84929feaa2008e1
RLSA-2025:3631
Low: python3.12 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Low
An update is available for python3.12.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* cpython: python: Uncontrolled CPU resource consumption when in http.cookies module (CVE-2024-7592)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.12-debug-3.12.5-2.el9_5.3.aarch64.rpm
d67f4e33f9a26d592c682009c85cb97c185545610d14a7fbe484afb241a7749d
python3.12-idle-3.12.5-2.el9_5.3.aarch64.rpm
821cd88fbec89d5e22f0ef9cd168b234f45adcde48a3923441446a1663bcc429
python3.12-test-3.12.5-2.el9_5.3.aarch64.rpm
b09d24ca43c52afd9f11100194f4284760f3c6165216b491e4cb882871204072
RLSA-2025:3634
Low: python3.11 security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Low
An update is available for python3.11.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.
Security Fix(es):
* cpython: python: Uncontrolled CPU resource consumption when in http.cookies module (CVE-2024-7592)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
python3.11-debug-3.11.9-7.el9_5.3.aarch64.rpm
fe1addf490514358c7a183995dc3db92c2cdd887c078b5062a261ae9471cf89a
python3.11-idle-3.11.9-7.el9_5.3.aarch64.rpm
ff1024193c6ebc2f3ff13b36e9e0ef755cdafec8566ec501410d49f7dce7dc5b
python3.11-test-3.11.9-7.el9_5.3.aarch64.rpm
7c435eb8fc00851bf0bd0197fa54ead0d5958042a98c43c6a776c21e2e2aa234
RLSA-2025:4491
Moderate: 389-ds-base security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for 389-ds-base.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration.
Security Fix(es):
* 389-ds-base: null pointer dereference leads to denial of service (CVE-2025-2487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
389-ds-base-devel-2.5.2-9.el9_5.aarch64.rpm
d7c4b0f09031e9498d888397c9d15fc7da2014af6cfaa65ff61245c47a8f779b
RLSA-2022:5948
Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for mysql-selinux, mariadb, galera.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL.
The following packages have been upgraded to a later upstream version: galera (26.4.11), mariadb (10.5.16), mysql-selinux (1.0.5).
Security Fix(es):
* mariadb: MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used (CVE-2021-46669)
* mariadb: lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer (CVE-2022-24048)
* mariadb: lack of validating the existence of an object prior to performing operations on the object (CVE-2022-24050)
* mariadb: lack of proper validation of a user-supplied string before using it as a format specifier (CVE-2022-24051)
* mariadb: CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability (CVE-2022-24052)
* mariadb: assertion failure in Item_args::walk_arg (CVE-2022-27376)
* mariadb: use-after-poison when complex conversion is involved in blob (CVE-2022-27377)
* mariadb: server crash in create_tmp_table::finalize (CVE-2022-27378)
* mariadb: server crash in component arg_comparator::compare_real_fixed (CVE-2022-27379)
* mariadb: server crash at my_decimal::operator= (CVE-2022-27380)
* mariadb: server crash at Field::set_default via specially crafted SQL statements (CVE-2022-27381)
* mariadb: assertion failure via component Item_field::used_tables/update_depend_map_for_order (CVE-2022-27382)
* mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c (CVE-2022-27383)
* mariadb: crash via component Item_subselect::init_expr_cache_tracker (CVE-2022-27384)
* mariadb: server crashes in query_arena::set_query_arena upon SELECT from view (CVE-2022-27386)
* mariadb: assertion failures in decimal_bin_size (CVE-2022-27387)
* mariadb: crash when using HAVING with NOT EXIST predicate in an equality (CVE-2022-27444)
* mariadb: assertion failure in compare_order_elements (CVE-2022-27445)
* mariadb: crash when using HAVING with IS NULL predicate in an equality (CVE-2022-27446)
* mariadb: use-after-poison in Binary_string::free_buffer (CVE-2022-27447)
* mariadb: crash in multi-update and implicit grouping (CVE-2022-27448)
* mariadb: assertion failure in sql/item_func.cc (CVE-2022-27449)
* mariadb: crash via window function in expression in ORDER BY (CVE-2022-27451)
* mariadb: assertion failure in sql/item_cmpfunc.cc (CVE-2022-27452)
* mariadb: use-after-free when WHERE has subquery with an outer reference in HAVING (CVE-2022-27455)
* mariadb: assertion failure in VDec::VDec at /sql/sql_type.cc (CVE-2022-27456)
* mariadb: incorrect key in "dup value" error after long unique (CVE-2022-27457)
* mariadb: use-after-poison in Binary_string::free_buffer (CVE-2022-27458)
* mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc (CVE-2022-31622)
* mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc (CVE-2022-31623)
* mariadb: Crash executing query with VIEW, aggregate and subquery (CVE-2021-46659)
* mariadb: MariaDB allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE) (CVE-2021-46661)
* mariadb: MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements (CVE-2021-46663)
* mariadb: MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value of aggr (CVE-2021-46664)
* mariadb: MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations (CVE-2021-46665)
* mariadb: MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements (CVE-2021-46668)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
mariadb-devel-10.5.16-2.el9_0.aarch64.rpm
4182ec0539c96f346a00eb4b6b6b3a7b3062240e3d70b613d513238771f54ef9
mariadb-embedded-devel-10.5.16-2.el9_0.aarch64.rpm
43f75a00920b3ae1b7f8546bb9ce00012f5c839b635bba4d4c0d2308d9223739
mariadb-test-10.5.16-2.el9_0.aarch64.rpm
390578a5632baab76aab67d2168878e627ba5d836bc30e86a0c7b06b612791b3
RLSA-2023:0334
Important: kernel security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Important
An update is available for kernel.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The kernel packages contain the Linux kernel, the core of any Linux operating system.
Security Fix(es):
* kernel: watch queue race condition can lead to privilege escalation (CVE-2022-2959)
* kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964)
* kernel: i915: Incorrect GPU TLB flush can lead to random memory access (CVE-2022-4139)
* kernel: nfsd buffer overflow by RPC message over TCP with garbage data (CVE-2022-43945)
* kernel: i2c: unbounded length leads to buffer overflow in ismt_access() (CVE-2022-3077)
* kernel: Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option (CVE-2022-30594)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Intel 9.2: Important iavf bug fixes (BZ#2127884)
* vfio zero page mappings fail after 2M instances (BZ#2128514)
* nvme-tcp automatic reconnect fails intermittently during EMC powerstore NDU operation (BZ#2131359)
* ice: Driver Update to 5.19 (BZ#2132070)
* WARNING: CPU: 116 PID: 3440 at arch/x86/mm/extable.c:105 ex_handler_fprestore+0x3f/0x50 (BZ#2134588)
* drm: duplicated call of drm_privacy_screen_register_notifier() in drm_connector_register() (BZ#2134619)
* updating the appid field through sysfs is returning an -EINVAL error (BZ#2136914)
* DELL EMC: System is not booting into RT Kernel with perc12. (BZ#2139213)
* No signal showed in the VGA monitor when installing Rocky Linux9 in the legacy bios mode (BZ#2140153)
* Practically limit "Dummy wait" workaround to old Intel systems (BZ#2142168)
* ppc64le: unexpected oom panic when there's enough memory left in zswap test (BZ#2143976)
* fatal error: error in backend: Branch target out of insn range (BZ#2144902)
* AMdCLIENT: The kernel command line parameter "nomodeset" not working properly (BZ#2145217)
* Azure: PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (BZ#2150910)
* Azure z-stream: Sometimes newly deployed VMs are not getting accelerated network during provisioning (BZ#2151605)
* DELL 9.0 RT - On PE R760 system, call traces are observed dmesg when system is running stress (BZ#2154407)
rocky-linux-9-aarch64-crb-rpms
kernel-cross-headers-5.14.0-162.12.1.el9_1.0.2.aarch64.rpm
73eb74956d5798dcab6b939bd797ebc45669e94a8100abacac36e9fe2abb8d78
kernel-tools-libs-devel-5.14.0-162.12.1.el9_1.0.2.aarch64.rpm
d32e9129be0c0a8ac2512d65ce0804a7f20f9ad4dadef0ef7d3f8b98e6497ee9
RLEA-2022:7320
ostree bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for ostree.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
OSTree is a tool for managing bootable, immutable, versioned file system trees.
Bug Fix(es) and Enhancement(s):
* Update ostree to latest upstream version 2022.5 (BZ#2127868)
rocky-linux-9-aarch64-crb-rpms
ostree-devel-2022.5-1.el9.aarch64.rpm
a20d30f4c880d863b873ae9d121c47498f70c008f1362c415fe456685a5a0eb3
RLBA-2022:8127
corosync bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for corosync.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
rocky-linux-9-aarch64-crb-rpms
corosynclib-3.1.5-4.el9.aarch64.rpm
85937e01d260594d071b271d92d8836f893c78a2f8d5a1404e18d24a87251a8b
corosync-vqsim-3.1.5-4.el9.aarch64.rpm
b65d2686dc696bbc2ea64e154c089a6ede4b86077bf84804996bfb465f78f111
RLSA-2023:0202
Moderate: java-11-openjdk security and bug fix update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for java-11-openjdk.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit.
Security Fix(es):
* OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411) (CVE-2023-21835)
* OpenJDK: soundbank URL remote loading (Sound, 8293742) (CVE-2023-21843)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* Prepare for the next quarterly OpenJDK upstream release (2023-01, 11.0.18) [Rocky Linux-9] (BZ#2157798)
rocky-linux-9-aarch64-crb-rpms
java-11-openjdk-demo-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
91e56cc89dc766b28d0e7cc936b79f3436de73c9d9596747290fa1468cda5e92
java-11-openjdk-demo-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
f4295fc0aff94101baa1e761cce3a6303d28d39f9b86c2212b55b321839b4f66
java-11-openjdk-devel-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
4a5fc8cc34e1b0670a10b1bb113535b1854aebc438a39237e6fd01e6fd762481
java-11-openjdk-devel-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
abf6ffe41ec42311c373b78025af7bcc7dba35e40c9db71be071b0af1122b17d
java-11-openjdk-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
f57d3b17a2f2a7d1a4ad7f022118bbf9041461ee9a2e26cbef80a6f3e7eeebb5
java-11-openjdk-headless-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
75a2b21d5f4239fcb351b3758830a798180647369beed9c1c749afd5f6a576bb
java-11-openjdk-headless-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
fd48584e0c05edc9733653603e7055ce87093b534597f83fc57e76b319937513
java-11-openjdk-jmods-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
da929adeac5d18a05a394388741175685aa7dcdb03690459f91c3c6d38e5e400
java-11-openjdk-jmods-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
2a6a22993a8e74f365dd0a3c7d22384bd47adb2e1be13e92140ba13dbbd8bc23
java-11-openjdk-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
6e4c4bcb0048c38b25313847ef1d2626149b04bae9d17fea32a3d949adaf173f
java-11-openjdk-src-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
2f04882da16cca19adcd9fd379d6b2a2b9cdc98706e92a19835f75446b13ab3a
java-11-openjdk-src-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
469c68247c56e6246d06116a736391d052c3a42011f6331a1dc24581b2716d63
java-11-openjdk-static-libs-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
4019dfd288ec6a49dba8e1d603daebf39fd12f8f92564167415f836a0026bb3e
java-11-openjdk-static-libs-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm
c151e0f2e85fd4cb3c44eee64d4b750f852138e68486da70fadabdadfd6401a7
RLSA-2023:0340
Moderate: bash security update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
Moderate
An update is available for bash.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The bash packages provide Bash (Bourne-again shell), which is the default shell for Rocky Linux.
Security Fix(es):
* bash: a heap-buffer-overflow in valid_parameter_transform (CVE-2022-3715)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
rocky-linux-9-aarch64-crb-rpms
bash-devel-5.1.8-6.el9_1.aarch64.rpm
cf7eef232920a2409bc29a70db59233bc6050aa8a7cd087165e4e66e1f214f09
RLBA-2023:0342
glibc bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for glibc.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The glibc packages provide the standard C libraries (libc), POSIX thread
libraries (libpthread), standard math libraries (libm), and the name service
cache daemon (nscd) used by multiple programs on the system. Without these
libraries, the Linux system cannot function correctly.
Bug Fix:
* glibc: Restore IPC_64 support in sysvipc *ctl functions (BZ#2142111)
rocky-linux-9-aarch64-crb-rpms
glibc-benchtests-2.34-40.el9_1.1.aarch64.rpm
b2d340e2be83362c55d70dbd95f02b45df37e372c173399083ef34561df5bebd
glibc-nss-devel-2.34-40.el9_1.1.aarch64.rpm
4fddf8453a93fac81f3ae08648c03c1af428bda2b94caa9932daf5f7036982e1
glibc-static-2.34-40.el9_1.1.aarch64.rpm
a4a815e06c461e395d547a33cf149f4bb507d7eb9a17cedde2a29b71bda30917
nss_db-2.34-40.el9_1.1.aarch64.rpm
721d9c76f10c8607f904bdce0cbb0868d1afa1e866daf1e5ae70c78a31790b44
nss_hesiod-2.34-40.el9_1.1.aarch64.rpm
c56a60d73880f6c5a07059afdc574baff9ebf253413925d4d8f1d6983611e652
RLBA-2023:0347
sssd bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for sssd.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources.
Bug Fix(es) and Enhancement(s):
* Analyzer: Optimize and remove duplicate messages in verbose list (BZ#2139870)
* SSS_CLIENT: fix thread unsafe access to get*ent structs. (BZ#2141830)
* SSSD: `sssctl analyze` command shouldn't require 'root' privileged (BZ#2142960)
* UPN check cannot be disabled explicitly but requires krb5_validate = false' as a work-around (BZ#2148988)
* authenticating against external IdP services okta (native app) with OAuth client secret failed (BZ#2152884)
rocky-linux-9-aarch64-crb-rpms
libsss_nss_idmap-devel-2.7.3-4.el9_1.3.aarch64.rpm
5f7bcafeb2b8220d0035ec5dd4213b3ff61dc6a96bc8e143acd891523063c9ef
RLBA-2023:0349
cryptsetup bug fix and enhancement update
Copyright 2025 Rocky Enterprise Software Foundation
Rocky Linux 9
1
None
An update is available for cryptsetup.
This update affects Rocky Linux 9.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
The cryptsetup packages provide a utility for setting up disk encryption using
the dm-crypt kernel module.
Bug Fix(es) and Enhancement(s):
* Fix FIPS related issues in PBKDF2 (BZ#2151576)
rocky-linux-9-aarch64-crb-rpms
cryptsetup-devel-2.4.3-5.el9_1.1.aarch64.rpm
f2db664998a7e53e14a5f21555751be4a0ead1244c2fdc4b407d40812af25914