RLSA-2023:0626 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for libksba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix(es): * libksba: integer overflow to code executiona (CVE-2022-47629) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libksba-devel-1.5.1-6.el9_1.s390x.rpm 1a7ffe21ff474e049b700b9fcae7be6962ade27aa8f80b6eaeca968e619890da RLBA-2023:0782 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotnet6.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address bugs are now available. The updated versions are .NET SDK 6.0.114 and .NET Runtime 6.0.14. Bug Fix(es) and Enhancements : * 2166770 - Update .NET 6.0 to SDK 6.0.114 and Runtime 6.0.14 [rhel-9.1.0.z] rocky-linux-9-s390x-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.114-1.el9_1.s390x.rpm d98004db02b92a4f7c1407e94d2065755a4d1e920367662790aa61ee4b0c29ab RLSA-2023:1068 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libjpeg-turbo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix(es): * libjpeg-turbo: heap buffer overflow in get_word_rgb_row() in rdppm.c (CVE-2021-46822) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms turbojpeg-2.0.90-6.el9_1.s390x.rpm 615aaa65ca357c8a73508e06942f3b9e63d9da373278d6a3f4a086288cc6bcaa turbojpeg-devel-2.0.90-6.el9_1.s390x.rpm aa96b966842746c48eed45e87d5f70ff48e7ca3df611df6065b616ca5c0069ae RLBA-2023:0311 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fixes: * libvirt doesn't catch mdevs created thru sysfs (BZ#2141364) * libvirt kills virtual machine on restart when 2M and 1G hugepages are mounted (BZ#2152083) * qemuAgentGetDisks cannot parse response from a guest agent running in Windows VM (BZ#2154410) Enhancement: * Backport the qemuDomainGetStatsCpu fallback Implementation (BZ#2157094) rocky-linux-9-s390x-crb-rpms libvirt-devel-8.5.0-7.3.el9_1.s390x.rpm 8d8af545b236520ebd680039e6a132bc147d7d8587c5b9cfeb2631cee302624c libvirt-docs-8.5.0-7.3.el9_1.s390x.rpm 79556ac3962ff55b68b789c551e9f0c15070bf233967f5325d92ccd375b9e6ee libvirt-lock-sanlock-8.5.0-7.3.el9_1.s390x.rpm aa310c3fb592b7598995fa9df9946e399a7804a2caf32dbf8035287f05381c4b RLBA-2023:0313 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nmstate. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound. Bug Fix: * Cannot move bridge port to bond (BZ#2148394) rocky-linux-9-s390x-crb-rpms nmstate-devel-2.1.4-2.el9_1.s390x.rpm 9ef107cb08cfb9d075b94280db9599e6ce47598de0d3f920f8a8ef427e8436b1 nmstate-static-2.1.4-2.el9_1.s390x.rpm 77df16f31d0571ba2bf9f063418509e6c0a045db94b3834a80e06d18594abe44 RLSA-2023:0194 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-17-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411) (CVE-2023-21835) * OpenJDK: soundbank URL remote loading (Sound, 8293742) (CVE-2023-21843) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * In FIPS mode, the use of a SQLite database provided by NSS was assumed, which was opened in read-only mode and with no PIN expected. This prevented the use of other databases or setting a PIN on the NSS database. This update allows more control over database use using two new properties - fips.nssdb.path and fips.nssdb.pin - which can be configured permanently in the java.security file or temporarily via command-line arguments to the Java virtual machine (RHBZ#2147476) * Prepare for the next quarterly OpenJDK upstream release (2023-01, 17.0.6) [Rocky Linux-9] (BZ#2153097) rocky-linux-9-s390x-crb-rpms java-17-openjdk-jmods-slowdebug-17.0.6.0.10-3.el9_1.s390x.rpm 6532dd1e3c9659c2d714d829d77b775ea609410361c0cc74e561eaef7f3bf0a0 java-17-openjdk-slowdebug-17.0.6.0.10-3.el9_1.s390x.rpm 84feefa22f25bda2dca13d09b74b9ddab244211243ae132329c41207b2c723f1 java-17-openjdk-src-slowdebug-17.0.6.0.10-3.el9_1.s390x.rpm 19b644fb5e922053b173a0fe29b28dfc5faf390d69a1ae1345e5de45081a817b java-17-openjdk-static-libs-slowdebug-17.0.6.0.10-3.el9_1.s390x.rpm b43989094805caff893bcebe839980fc284eb8cde1ed83d6b81c7e08014a6477 RLBA-2023:1246 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotnet6.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 6.0 to SDK 6.0.115 and Runtime 6.0.15 [rhel-9.1.0.z] (BZ#2174986) rocky-linux-9-s390x-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.115-1.el9_1.s390x.rpm 1819ced6e0b5d29b0a266a0c6a21460636caf06280e0b9b602786384e5cecbcc RLBA-2023:0316 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nbdkit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Network Block Device (NBD) is a protocol for accessing hard disks and other disk-like devices over the network. The nbdkit toolkit utilizes NBD to create servers with minimal dependencies. The package contains plug-in support for the C and Python programming languages. Bug Fix: * nbdkit: error: /home/vddk8.0.0/lib64/libvixDiskLib.so.7: cannot open shared object file: No such file or directory (BZ#2148498) rocky-linux-9-s390x-crb-rpms nbdkit-devel-1.30.8-2.el9_1.s390x.rpm 63dd71fb937cee0ba2ed633b92be5e70ba5b15693da0c9d925b16bb4e6f15c6b nbdkit-example-plugins-1.30.8-2.el9_1.s390x.rpm 7079d2a2d5adde3306a10090d849a6b590d0d7cfcbfbcc2b94dad57fa75c0fc3 nbdkit-srpm-macros-1.30.8-2.el9_1.noarch.rpm 341e29ed559ac990037aaa739d3148e8b7efbacb71528ef4706444f24ab24f69 RLBA-2023:0320 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fix(es) and Enhancement(s): * vault interoperability with older Rocky Linux systems is broken (BZ#2149274) * ipa-client-install does not maintain server affinity during installation (BZ#2150270) rocky-linux-9-s390x-crb-rpms python3-ipatests-4.10.0-8.el9_1.noarch.rpm 2f5153a5fdb52d80da4c1461d827ee67ff894532d0c85d9fcf44be5e9901a719 RLBA-2023:2480 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsepol. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsepol-static-3.5-1.el9.s390x.rpm af8cd289da70771ef05ab0d12f3293da213531bc9eb7853247ee8411807c1f91 RLBA-2022:2321 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for hivex. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms hivex-devel-1.3.21-3.el9.s390x.rpm c8fdec1ef341c9bb82ef1581f5fe1e03919d933c84f76c12bcc228be74e90e32 ocaml-hivex-1.3.21-3.el9.s390x.rpm aa102a4f3c2a354cdaa1a8de045ae9e1f908030998b7e216fb7545c9093d9a64 ocaml-hivex-devel-1.3.21-3.el9.s390x.rpm 4ed4b4a7e3eb862ad528e2b2864adb73be5d4df98ba94b1d518bb531254c28ef python3-hivex-1.3.21-3.el9.s390x.rpm 6705c31b0d5f5694f50c5a342858c75447e29bd20147666c5fd67861af01bcb8 ruby-hivex-1.3.21-3.el9.s390x.rpm 8cec90b4c4d64870598021ac88c1c4608b3d705da8d1f2ceda11b5696f6c9b60 RLBA-2022:2343 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mutter. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms mutter-devel-40.9-10.el9_1.s390x.rpm 19075ad0443b4169849a3aa291450d99daaad059748f29076692d76f54221835 RLBA-2022:2400 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libjpeg-turbo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms turbojpeg-2.0.90-5.el9.s390x.rpm bc034d13a1d2c5510404b963e0e0d855c8ddd934d87af02f1f08dbc54dddfa76 turbojpeg-devel-2.0.90-5.el9.s390x.rpm 2607c57e8645058856a2bdc7b731d63080392e24d41f5dcb4e844163d7876aae RLBA-2022:2402 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ibus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ibus-devel-1.5.25-2.el9.rocky.0.1.s390x.rpm 749e139bfbe76f244794590aba59ad1754d7a24a733920fa497bfc147e17da3c ibus-devel-docs-1.5.25-2.el9.rocky.0.1.noarch.rpm c0d02d296b1aa2728924a81b223bb37aa249d57101648b9dc3d2b47c518b9ce2 RLBA-2022:2413 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for udisks2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libudisks2-devel-2.9.4-3.el9.s390x.rpm b264e9b74e6176d173746a1a11068d1ba56a410277a7e9c8f983153026fa5e20 RLBA-2022:2420 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for createrepo_c. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms createrepo_c-devel-0.17.7-4.el9_0.s390x.rpm 08cd093678786ebce4ba25fd96270b11901dc4463345bf163f4897fa7f152510 RLBA-2022:2445 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for javapackages-tools, maven. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms javapackages-generators-6.0.0-3.el9.noarch.rpm 317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30 javapackages-local-6.0.0-3.el9.noarch.rpm 8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8 maven-local-6.0.0-3.el9.noarch.rpm 1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878 python3-javapackages-6.0.0-3.el9.noarch.rpm 899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2 RLBA-2022:2466 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libecpg. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libecpg-devel-13.5-1.el9.s390x.rpm b5bca30751988d7335b54a8259d98e5d806b8201224063b796732e8df25534dd RLBA-2022:2480 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for texlive. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms texlive-gnu-freefont-20200406-25.el9.noarch.rpm 70371ec649772c941a33208d8932379d07d09884e01786a091e208ac62a17aae texlive-lib-devel-20200406-25.el9.s390x.rpm 9c3f25a75eaf49167f1d0a18452cbae4eef1e0864a4ca65529be2077ec3a49ef RLBA-2022:2532 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdecor. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libdecor-devel-0.1.0-3.el9.s390x.rpm 83ee6819e8accb6efae530666fbd1b42e5635c3d34db991ec5368db47c3186ef RLBA-2023:2489 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librepo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms librepo-devel-1.14.5-1.el9.s390x.rpm 285575f92b92c92f0a488f440cb9d4374fe3396e60ac2334ff0b46d71bdec6bc RLBA-2022:2547 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for SDL2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms SDL2-static-2.0.20-2.el9.s390x.rpm 5bfbd11b144d071f29b7b3c48250fbfeab94910b9199816ade324a563bc1b688 RLBA-2022:2564 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ghostscript. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libgs-devel-9.54.0-7.el9.s390x.rpm a1d9f883dbd4ca88b9bcfcdb718c4fb415692c2afe71add303a5e9104fbc4be4 RLBA-2022:2571 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for geoclue2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms geoclue2-demos-2.5.7-5.el9.s390x.rpm b0aa6ac7938a41f3d4a39769428bd300ea1542071338fc6036823d108d0cb42f geoclue2-devel-2.5.7-5.el9.s390x.rpm 91fd2a204ab73029a9eeee84287ac1374f2f00d708914bcf1daf82687aa78931 RLBA-2022:2578 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for graphviz. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms graphviz-devel-2.44.0-25.el9.s390x.rpm a2439da11b2aa8e2f5611bf9d68807eb027e4665f65786e888a5596ee3431a80 RLBA-2022:2579 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for slapi-nis, libnsl2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnsl2-devel-2.0.0-1.el9.s390x.rpm cf515b854045c35dd5ef3f8318314ab6b2f6a2e60bff50dc89cf0c12e30f9c7f RLBA-2022:2589 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtool. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtool-ltdl-devel-2.4.6-45.el9.s390x.rpm 4285c53602d6565b014edf1acde772a9c1a8c07cbbabc5841e7005834badee71 RLBA-2022:2600 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for OpenIPMI. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms OpenIPMI-devel-2.0.32-3.el9.s390x.rpm d5f79930e4cc8e5ff600ea6597b1a3850819ea9c5d61da5f36e0d3c7fec09b8f RLBA-2022:2616 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gsl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gsl-devel-2.6-7.el9.s390x.rpm b383803b797a4d2488dcb19b29bec31ae4874068a5bd9c242ff56bca22064ba8 RLBA-2022:2624 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for freeipmi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms freeipmi-devel-1.6.9-1.el9.s390x.rpm ea572231e4ceace100122b9893027fe54cb0146744c33d5f6c813bad09e6ebf5 RLBA-2022:2631 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libburn. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libburn-devel-1.5.4-4.el9.s390x.rpm 494c1d186821587208ae3ffebfb0199664383b83cdee75c11ab134bc7b4ea41b RLBA-2022:2672 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for varnish. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms varnish-devel-6.6.2-2.el9_1.1.s390x.rpm 668ae979d32407a65ebceb12299d0d420e5a4c14d562b94f3fc1d180b8dd81d2 RLBA-2022:2681 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for zziplib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms zziplib-devel-0.13.71-9.el9.s390x.rpm 88b4a240acb4b664bf4f76de2439a19300012c1a942cea809e66d65c1fb8e52e RLBA-2022:2682 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for protobuf-c. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms protobuf-c-compiler-1.3.3-12.el9.s390x.rpm aea299fa877222933790c781407ca0f5d520b10a76a5e02aa851df720d5550d3 protobuf-c-devel-1.3.3-12.el9.s390x.rpm 39127081f5ce237e2eda9120d9bea2d877ad20e18fe18a0d60f74f39519854e9 RLBA-2022:2684 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for flexiblas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms flexiblas-devel-3.0.4-8.el9.s390x.rpm 0309507ac47a86a798099d6b65f5147e353cd45358eb20f59c970ae509b03fa1 flexiblas-netlib64-3.0.4-8.el9.s390x.rpm 0446ba7e93f48012eec105cb50ccae5c042d01289ac94b6f614ff94cd85edbcb flexiblas-openblas-openmp64-3.0.4-8.el9.s390x.rpm 12852d2f8d0ce099f1d173682b2342036beb37d3ba9a9383191069d8b9fe4d59 RLBA-2022:2687 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xorg-x11-drv-wacom. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xorg-x11-drv-wacom-devel-1.0.0-1.el9.s390x.rpm 9bb79a428547ff571c99ed7289c139ff9ea29c83d13acc9bb3ea46f999b212ed RLBA-2022:2688 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openblas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms openblas-devel-0.3.15-3.el9.s390x.rpm e33c80641ff2e7dca731102c598c1c15b64a2e2334db3a5bdc377207212279eb openblas-openmp64_-0.3.15-3.el9.s390x.rpm 487c6a534ea0ef4c9cc3d90b2ffaa4dfb97cc021a88c011ff2e22450eb29ad4b openblas-openmp64-0.3.15-3.el9.s390x.rpm 15b158c21428d15ffdcbd9794e7adb45abf00ac51d5141512fa8b7eee72b9817 openblas-serial64_-0.3.15-3.el9.s390x.rpm 4d7c20ac24254177107fcd29e76dba7acf3f5982a50050cf96ef495158522b69 openblas-serial64-0.3.15-3.el9.s390x.rpm 57ede4f86410728e3276e2656d8f3bd1126cbad3c66bca09686133ab8d0c870e openblas-static-0.3.15-3.el9.s390x.rpm 8898b0cadcc9663719a5b26851337d8e36df8c9790d7b00361b65d74f69a6a24 openblas-threads-0.3.15-3.el9.s390x.rpm 63e62d82e75db14a336556d5c930ad7621975d83392f272a2419b0d7e543cf2d openblas-threads64_-0.3.15-3.el9.s390x.rpm c323f442b659402ef129c94e0e674a2e731d08d1d5f61b0d467c33dc8b310edd openblas-threads64-0.3.15-3.el9.s390x.rpm 7c47d9150dc26dae618b871d4e42f8540bfe30bd5abc3135c3b210aadd378f1a RLBA-2022:2695 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsndfile. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsndfile-devel-1.0.31-7.el9.s390x.rpm 33a444d8b19eda4ea751105403e9d27cb556be1f1c00dbd6e4fb886e8079d33c RLBA-2022:2710 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for PackageKit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms PackageKit-glib-devel-1.2.4-2.el9.s390x.rpm d5c5a4b0b5c53c245f3c70147dee8fe8869385598b150968a6c53722721d901f RLBA-2022:2724 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for antlr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms antlr-C++-2.7.7-68.el9.s390x.rpm 06358870a8b77e32a5edb32a8c26b2eacd805a5bb3cbad140cab57bd5d3b0d55 RLBA-2022:2756 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for byte-buddy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms byte-buddy-agent-1.10.20-5.el9.noarch.rpm 935078f879e607a466cc92b91d0c66cb251f49f41d00ed09bba8b1956343871d RLBA-2022:2775 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for colord. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms colord-devel-1.4.5-4.el9.s390x.rpm 8461f4a7fe8abd666b69a9b93d49f89d642d45e881aef51bd8587a0546755f20 colord-devel-docs-1.4.5-4.el9.noarch.rpm f0e687a0dd5bb9274d913228d27488b3871a2116ef1c38331baf315e7a3c8d95 RLBA-2022:2783 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cups-filters. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms cups-filters-devel-1.28.7-10.el9.s390x.rpm 1185fc893ac4f4419a63e7ac198f227ff07efcd144d645a7140d1c8dd3e23484 RLBA-2022:2810 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fftw. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms fftw-doc-3.3.8-12.el9.noarch.rpm 93eb256ae6969eb9fb1424fcd601e19f63fcd279b6a96c8974b3808c63c75a62 RLBA-2022:2869 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for google-noto-cjk-fonts. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms google-noto-sans-cjk-jp-fonts-20201206-4.el9.noarch.rpm c68de2962092861c2fea9e284bb877f2e26f8e17f04c6aa66fe9b217753e590f RLBA-2022:2882 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gstreamer1-plugins-bad-free. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gstreamer1-plugins-bad-free-devel-1.18.4-5.el9.s390x.rpm 29a56142a8a0b437c98b1478688b1e2ac8d47cc0020ad0e5b2c7cc9cef8bd8f0 RLBA-2022:3101 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jose. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libjose-devel-11-3.el9.s390x.rpm 57e3e45f71b5b344c310ab250d53ba4ae5238fe715f280ed4efc216981f70849 RLBA-2022:3119 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lapack. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms blas64_-3.9.0-8.el9.s390x.rpm 16397c59fd84629e9f90fbe0de6e40e11fa91d29149f6c35d690e5a8679c201e blas-devel-3.9.0-8.el9.s390x.rpm 6edae43a2a2d8b9559a1ec626956a0e65afa2e345f3c5c928e20929acf6ed13b lapack64_-3.9.0-8.el9.s390x.rpm 2ecf8efff9768208e2e2440a009acd8e19d1f8ea13a2b42b8f2bf2c9f523b199 lapack-devel-3.9.0-8.el9.s390x.rpm 490cf1409efa17e299e416c700ae7cb9bc87cb101e4b99292fbae2a42ab9456b lapack-static-3.9.0-8.el9.s390x.rpm 7c90541ecc3ff44611ec98ae0d4fc2b7e890cf14ef08180b2857dcf5b2b1b43b RLBA-2022:3120 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lasso. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms lasso-devel-2.7.0-8.el9.s390x.rpm c5d9cd45574f604f53b96f66249aeb3d8be7ca01d7e28ac483b121629f344013 RLBA-2022:3767 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sendmail. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms sendmail-milter-8.16.1-10.el9.s390x.rpm 7cc3d47d1543f9c589d6b85f6bd8ce355c1f331223a032170b81f09b6d757e7b sendmail-milter-devel-8.16.1-10.el9.s390x.rpm f7b953c311df3068fed2178def8febb461e9e0085fe51ce6e83acbc3a0c0dda3 RLBA-2022:3154 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libappstream-glib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libappstream-glib-devel-0.7.18-4.el9.s390x.rpm 5d8fb4fe4e57823e0d28d922ee5264832b23c8415f1c8b39a0a2ba8a026c75aa RLBA-2022:3211 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmaxminddb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libmaxminddb-devel-1.5.2-3.el9.s390x.rpm f8406553e9ad5530056868eb6c2311827caef722ff81973cf9cb3a6b414c2353 RLBA-2022:3213 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmicrohttpd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libmicrohttpd-devel-0.9.72-4.el9.s390x.rpm a06823abcd33c2cec5bd755348da4e1a144d3a534f03097bca8b4c7478a3d63b libmicrohttpd-doc-0.9.72-4.el9.noarch.rpm 5c3003cb4fc9ccd2d5f272605bfbac9a4336e1a7a86a139906ec32bc713810f6 RLBA-2022:3218 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnet. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnet-devel-1.2-6.el9.s390x.rpm b2d6d0b595a3b6cbb114f99acf59a369a60239cfe751e265004b08ce234e3b57 RLBA-2022:3232 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpfm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python3-libpfm-4.11.0-6.el9.s390x.rpm 709cf91e34481f907e0f37aa0c31dcf834b7c1bc25b112dfa4cbffe7061d07cb RLBA-2022:3237 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librabbitmq. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms librabbitmq-devel-0.11.0-5.el9.s390x.rpm 8006635920a41e04af7709f7e45ea1fba4191fc08a28625d32edf954b34a1ada RLBA-2022:3251 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsrtp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsrtp-devel-2.3.0-7.el9.s390x.rpm 452a30cda37e0004749386acddc1a742dc65b42773a1a2b7e6550b822d78d570 RLBA-2022:3260 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvdpau. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libvdpau-devel-1.4-6.el9.s390x.rpm c96f038b823b1a3b586552999883e7eab2957485ce02afe49414bc4e20e3bc95 RLBA-2022:3267 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvpx. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libvpx-devel-1.9.0-5.el9.s390x.rpm 423e69a22c92e19120281ca3cd3269ad432b65dc70f90970253ae6540e880b91 RLBA-2022:3280 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libzip. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libzip-devel-1.7.3-7.el9.s390x.rpm 3b99b935f4970d976d2a0cfad4d99fd7e72dea87a9b412d1ff331bd5c8e79403 RLBA-2022:3341 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mpg123. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms mpg123-devel-1.26.2-5.el9.s390x.rpm efccacb0779bd9eaefa1e9ecceb7bc700d96bdccc0fbb2b8f2b063c74e8cb93a RLBA-2023:2514 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsss_nss_idmap-devel-2.8.2-2.el9.s390x.rpm b38f7c5b47bf25f186b7477ba7dbb3d0a9f91553108b165262bc62dea41d8e02 RLBA-2022:3391 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openexr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms openexr-devel-3.1.1-2.el9.s390x.rpm 0c7aa01efd8081e6ec63ccb09f230a6ef1140b434d8b84874a5fcb58f35a69be RLBA-2022:3397 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openwsman. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libwsman-devel-2.6.8-22.el9.s390x.rpm ae531ca5d2b561592f58715774cf3424f5bac70d5de147008433aab3f804a1c8 openwsman-client-2.6.8-22.el9.s390x.rpm dab21bf49aab0622dfd1aff1849b4f88565989494dc7e213001dad47fecc7aef RLBA-2022:3588 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for perl-Tk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms perl-Tk-devel-804.035-7.el9.s390x.rpm cf17f919deda1d5e2fe011eb5936ea9aa18cc1e71be21295ba8b40f1785e0e28 RLBA-2022:3634 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for plexus-containers. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms plexus-containers-container-default-2.1.0-9.el9.noarch.rpm f62fa55d0e98d2db0874892c53483db149a758a2a3d64ae3eee23fafce561023 RLBA-2022:3640 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pmix. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms pmix-pmi-devel-3.2.3-3.el9.s390x.rpm c0d3cf784760338b583b07c122918cb22c12188e38d4b8fabc6e3b67902753f6 RLBA-2022:3818 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tpm2-abrmd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms tpm2-abrmd-devel-2.4.0-3.el9.s390x.rpm b3105440fccd92816624638a5f32dbdf05cb8d6f186471c6814d7dad89a86370 RLBA-2022:3839 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for volume_key. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms volume_key-devel-0.3.12-15.el9.s390x.rpm 431554949c46601ce35f5ee425808b82fb693028eff62544e6c1e59a3583784d RLBA-2022:3855 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xcb-util-image. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xcb-util-image-devel-0.4.0-19.el9.s390x.rpm 31248da4cf86353380952c0e14bbe8f1a5fbaf7540c5d533d0dc259e24a8219b RLBA-2022:3857 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xcb-util-renderutil. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xcb-util-renderutil-devel-0.3.9-20.el9.s390x.rpm 4b991b9e9dd706d081e4f3e1a4ac0730dd4280334f989698c1926c3e0a567c90 RLBA-2022:3869 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xmlsec1. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xmlsec1-devel-1.2.29-9.el9.s390x.rpm 3848fc810c01c11b22afefd787f98ea5638707b18266bf19a913e413126e3f51 xmlsec1-gcrypt-1.2.29-9.el9.s390x.rpm cc1d919404f28a7c8003a1a18ed2db0a3986065eedadf393d4b7d64a4b338a3e xmlsec1-gnutls-1.2.29-9.el9.s390x.rpm 47ce7d45a12e935cdfdcb3bb7b5801f9cf6fe7e20f78f2ffc6d2f946ac467015 xmlsec1-gnutls-devel-1.2.29-9.el9.s390x.rpm f80f8230d766ff95bfb8e70e284679e97381dab8350d4fdcfb6d5a4de5204444 xmlsec1-openssl-devel-1.2.29-9.el9.s390x.rpm 3be027adf3872c1439ece1c90a7d4de2665fab0b4b178071c5402a4a3b35185d RLBA-2022:3872 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xorg-x11-drv-libinput. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xorg-x11-drv-libinput-devel-1.0.1-3.el9.s390x.rpm 050efe28a4e2c94638a88cad297ea3ce6c984b42b4aafbe2fe254fa9b4cc1f11 RLBA-2022:3883 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for yelp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms yelp-devel-40.3-2.el9.s390x.rpm b4473834acfaa107257a99e06bc4a656c323b7846737ffdc9146fd77f89fe887 RLBA-2022:3906 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ModemManager. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ModemManager-devel-1.18.2-3.el9.s390x.rpm 67c6c3effaddf07b3c6e3e5d2ea3fc7600bcc4869e9f27f721dcbb131eb7469b ModemManager-glib-devel-1.18.2-3.el9.s390x.rpm f0820231865d346591f990bdbd3707a79be25f242d7c04bf91080196fa6bddc1 RLBA-2022:3931 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glib2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms glib2-static-2.68.4-5.el9.s390x.rpm d8f44b950c732bf6b82865c913f026cd6a6e1e4298aa796344d390579152d84c RLBA-2022:3935 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fuse. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms fuse-devel-2.9.9-15.el9.s390x.rpm 03b946244de1add7e5257971680dc05f38f61205a509602d5b88a91b3834452a RLBA-2022:3938 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libxmlb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libxmlb-devel-0.3.3-1.el9.s390x.rpm b60f20f89868d24379218169c1a43af1005e05079b02c126e09f403c43b75d5d RLBA-2022:3939 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgusb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libgusb-devel-0.3.8-1.el9.s390x.rpm 8ee3590ef161b5fd5426428ab37153a8810a8e4b41b5e2617680c8ea5bf85c60 RLBA-2022:3940 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gobject-introspection. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gobject-introspection-devel-1.68.0-10.el9.s390x.rpm 78a3e7d1faff8a8342f1d0e018dc3f3b736da5d764c06d8d637481276c748080 RLEA-2022:3950 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mpitests, ucx, rdma-core, mstflint, libvma, libpsm2, fabtests, openmpi, perftest, eth-tools, mpich, libfabric. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python3-mpich-3.4.2-1.el9.s390x.rpm f8c7e6997a7aaf02dbc25ae63da4e95beebddcb749c97054306f9ac203368319 python3-openmpi-4.1.1-5.el9.s390x.rpm b5ded1a1db3ca7f44d88513341315bbd7d1c081b7002c8bc7568e616ea378fdc RLBA-2022:3964 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for kmod. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms kmod-devel-28-7.el9.s390x.rpm 844d40364a6f325d958a45065e655c68c60c8332e5e41eaaba716f16b1bccc80 RLBA-2022:3983 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pcsc-lite. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms pcsc-lite-devel-1.9.4-1.el9.s390x.rpm 5a6c16555b71bc40fe2ea1760f8595621c2b28b1346835d9711df7f72d794db9 RLEA-2022:3986 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipset. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ipset-devel-7.11-6.el9.s390x.rpm 739a62af0c2f0f213ef5952921f3d0b12bae6ebba24b20c2e871ba2ff70745a7 RLBA-2022:3987 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libdb-cxx-5.3.28-53.el9.s390x.rpm 41f52b85acd450dfdec0bf00b614eccb713ba7dfbfd0c2bec350a6e58a71a129 libdb-cxx-devel-5.3.28-53.el9.s390x.rpm 1fdf70f82163318fdac3bd3b22f8f877a47fbce4c52c7e39cfb8764912c96061 libdb-devel-doc-5.3.28-53.el9.noarch.rpm b743f2065d46a14b686c79f9d02b49d149ce3519d7921192f324a886852ca4da libdb-sql-5.3.28-53.el9.s390x.rpm 62713a502e2c5fa913dea0cd2f6d0e870cfdb9219eb0bf8efb50db4e587ac658 libdb-sql-devel-5.3.28-53.el9.s390x.rpm 311e69d62a0a209cf5db29dab8c2e24b0d6fc85e3bca19ffd36b956df558358f RLBA-2022:3990 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for trace-cmd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtracecmd-devel-0-9.el9.s390x.rpm afe6beca47718bef1fc2aae5019c8ed0503b1a5c17bd2185fd5d1b789356b95c RLBA-2023:2549 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libbpf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libbpf-devel-1.0.0-2.el9.s390x.rpm 89057631b7c9df437f185b1da9a818121ae573e8748e317f7c9190d9e90f3e14 libbpf-static-1.0.0-2.el9.s390x.rpm 88ac4618174f2f2e5db9936c8702056c1baed0dc03a6fabd5032e54686c9c7c6 RLBA-2022:4008 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for snappy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms snappy-devel-1.1.8-8.el9.s390x.rpm 0e6b61245a8a24b3634d2e6b052145ef3cadbfb3d29bb4f238f2fd3821f29fdb RLBA-2022:4011 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtalloc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtalloc-devel-2.3.3-1.el9.s390x.rpm 4cf0e877600fb9e984c54a765e3f56b7d4c66c16259e683a5f9a868961e58827 RLEA-2022:4019 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ima-evm-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ima-evm-utils-devel-1.4-4.el9.s390x.rpm 34fd1df49b36be6d439a27948e57bb9b9b0be170cc1760e32a992a43be00919c RLBA-2022:4031 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtraceevent. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtraceevent-devel-1.1.1-8.el9.s390x.rpm e273fc14ba0d21f35cb8b758f9c51001a1dee882967cfd3be4370f5c0156e66c RLBA-2022:4034 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtracefs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtracefs-devel-1.0.2-7.el9.s390x.rpm f93f878fa42dcafac72999edf32340b516b96e4c57224dd21440d6e15268c376 RLBA-2023:2558 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libselinux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libselinux-static-3.5-1.el9.s390x.rpm 0d06a0c2578fb708f28faefd459d0743f4e8e16afd9b8b2444513227958182cb RLBA-2022:4091 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for avahi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms avahi-compat-howl-0.8-12.el9.s390x.rpm 50ac382795b0c53b2f14e6b007cdfc7ba80037c3a4f6fcb3b1d67abeeaba54cf avahi-compat-howl-devel-0.8-12.el9.s390x.rpm 98616395c5ee6c3ce7a3cd97f354a395d1d5c670fe20ef7cdbaf8ade65b0f2fb avahi-compat-libdns_sd-0.8-12.el9.s390x.rpm c7e6e957aff192ec9392c85e73dafb13444e4012a26fc338ef2e18284c41e25d avahi-compat-libdns_sd-devel-0.8-12.el9.s390x.rpm 1f197ead3534f9df8e3e1650ebe1ea86848c4ef0f717fd85a1da968f76cf801f avahi-devel-0.8-12.el9.s390x.rpm 99ae8b1e46d75c1166ae5a3a637de42c0ff2a47f81871b0fde11f50bae00440a RLBA-2022:4125 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gdbm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gdbm-1.19-4.el9.s390x.rpm cc68fe1c9f94c9272a8272f62e634d07273bc7c59b1715d38fe9e4cb011bdba6 gdbm-devel-1.19-4.el9.s390x.rpm 4ec7ebe386aea98ca02397b1725c456fca88385fb7ddf0edf67ed2dce14fd4fa RLBA-2022:4160 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libfido2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libfido2-devel-1.6.0-7.el9.s390x.rpm a37f122432b4c89b18f253c897e2b6a2d2bfdc999c25fa6d3d1d8eee14804c0c RLBA-2022:4166 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmnl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libmnl-devel-1.0.4-15.el9.s390x.rpm 190b6c577ad4e98c2e1cfcec43677ba1cd207f4d9db62f4af32ea3ba96403550 RLBA-2022:4169 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnetfilter_conntrack. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnetfilter_conntrack-devel-1.0.8-4.el9.s390x.rpm 315179a3cc78182af9d09955568135dc7d9993788256734fda55d3e27feac598 RLBA-2022:4170 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnfnetlink. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnfnetlink-devel-1.0.1-21.el9.s390x.rpm 735480bbe161f8b7f743a8891d8e6a36573646655e2ecb3dc562aefab4040c46 RLBA-2022:4174 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpciaccess. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libpciaccess-devel-0.16-6.el9.s390x.rpm a5169b8fc8ebf7caa07d826c9512f10efe88d5c49c5ffca102ffc95998e2ff31 RLBA-2022:4181 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librhsm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms librhsm-devel-0.0.3-7.el9.s390x.rpm 16d0b50d8d1dfdb6dd3604cf277fe36dae7d6caab7be176a1bb51ef2e6f3a714 RLBA-2022:4203 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lua. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms lua-devel-5.4.2-4.el9_0.3.s390x.rpm 56e88c2d162041126acbebbdc57d7a28ba8ae0681fb8aea885549008144adec4 RLBA-2022:4225 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nghttp2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnghttp2-devel-1.43.0-5.el9.s390x.rpm 173731b3b8622784260ae3805be70890556ad8598423b3a85b60117d70d29417 nghttp2-1.43.0-5.el9.s390x.rpm d5d2d890e63a471ce7459a4555a32538d249aec2e6f6e9444424c432029ffac4 RLBA-2022:4235 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pcre. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms pcre-static-8.44-3.el9.3.s390x.rpm dd1e0f415166892c8cc7ca0a119e72270497be241876690b31586a48931d2443 RLBA-2022:4247 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for python-dateutil. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python-dateutil-doc-2.8.1-6.el9.noarch.rpm 57077af0d69a9a75a996c43ef30010623b7ececc4679ef0fe1d310a0135ef879 RLBA-2022:4258 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for quota. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms quota-devel-4.06-6.el9.s390x.rpm 4bd2a93098126e7ff060643a0197d1c2a3c28070ddeebea1ec54fe4a21756a80 RLEA-2022:4570 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for zaf, hyphen-uk, libpagemaker, hyphen-ca, hunspell-et, hyphen-eu, hyphen-ga, libvisio, raptor2, hunspell-ta, mythes-nl, hunspell-lt, hunspell-sk, ongres-scram, hunspell-hu, libshout, hunspell-nso, poppler, hunspell-nl, hunspell-hi, openjpeg2, libabw, hunspell-es, hunspell-sv, hyphen-sv, hyphen-te, google-carlito-fonts, hunspell-br, hunspell-ml, hyphen-pl, hunspell-pl, hyphen-el, hyphen-ru, hunspell-bg, hyphen-es, mythes-ro, hyphen-as, libloader, libmspub, dconf, mythes-en, libreoffice-voikko, hunspell-de, hunspell-id, hunspell-eu, libexttextcat, hyphen-da, pentaho-libxml, redland, hunspell-kn, libcmis, libepubgen, libodfgen, hunspell-fr, hunspell-th, hunspell-zu, xmlsec1, libnumbertext, hyphen-gu, libreoffice, hyphen-nl, hyphen-ro, libfontenc, librevenge, libwpg, hyphen-it, mythes-it, libmwaw, ttmkfdir, postgresql-jdbc, hunspell-sr, hunspell-ga, hunspell-ro, openoffice-lv, lksctp-tools, mythes-sk, mythes-cs, hyphen-cy, libformula, liblayout, clucene, hunspell-hr, mythes-ru, hunspell-gl, hyphen-ta, mythes-da, hunspell-tn, libqxp, lpsolve, hunspell-gu, mythes-pt, mythes-sl, libetonyek, hyphen-lt, google-noto-fonts, hunspell-ar, neon, librtas, hyphen-sk, hunspell-cy, boost, hunspell-ko, hunspell-si, flute, hunspell-pt, hyphen-fa, libzmf, hunspell-nr, hunspell-pa, hunspell-ve, mythes-ca, sac, hunspell-it, hyphen-bg, gstreamer1-plugins-good, openoffice.org-dict-cs_CZ, hyphen-gl, hyphen-hu, taglib, bitmap-fonts, libwps, hyphen-de, libbase, hunspell-af, hunspell-or, mythes-ga, xorg-x11-fonts, hunspell-no, hunspell-kk, libvoikko, mythes-sv, hunspell-el, hyphen-id, hunspell-da, libwpd, hunspell-ss, hunspell-ts, hyphen-bn, hyphen-sl, libeot, mythes-fr, hunspell-te, mythes-pl, pentaho-reporting-flow-engine, mythes-de, mythes-es, hunspell-as, hunspell-fa, hyphen, hunspell-uk, mythes-el, hyphen-hi, mythes-hu, hyphen-or, hyphen-mr, hunspell-xh, hyphen-pa, libserializer, poppler-data, hunspell-mr, hspell, hunspell-st, hunspell-ru, libfreehand, hunspell-ca, hyphen-fr, hunspell-bn, gstreamer1-plugins-base, twolame, libcdr, Box2D, liborcus, hyphen-ml, hunspell-sl, javapackages-tools, librepository, libstaroffice, libfonts, v4l-utils, rasqal, voikko-fi, hyphen-kn, mythes-uk, mythes-bg, hyphen-pt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms clucene-core-devel-2.3.3.4-42.20130812.e8e3d20git.el9.s390x.rpm 272242907e5fe687f343bbce927767fc0c5b99b5a9d6b4a22a0493b98806fe3d dconf-devel-0.40.0-6.el9.s390x.rpm 3755c781269863b994f3e0ef9511795e612983de0a50a16cf58dd74650f93c5f javapackages-generators-6.0.0-3.el9.noarch.rpm 317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30 javapackages-local-6.0.0-3.el9.noarch.rpm 8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8 libeot-0.01-18.el9.s390x.rpm 388ef9201b24934df5255e66067496812de3022e26fcf66cd3124564a706ad17 libetonyek-devel-0.1.10-2.el9.s390x.rpm 0d10a061ddd531e8f25036fc7ecb64519f44ee60f8f8a286900659c60d5fc9bf libfontenc-devel-1.1.3-17.el9.s390x.rpm 7276dfe266d1daa39e319a5253792005f9b7819049b61a2cb27950ab8dd452e5 libodfgen-devel-0.1.8-4.el9.s390x.rpm 27f397d7e75ae5a2e656b76d64cd19111cd776fe535dfa09cce4f1a4734f418c librevenge-devel-0.0.4-22.el9.s390x.rpm 220228e96cb5184bb5bf03979f0b49abb8c73a80c834c408d311bff7d80c88b9 libshout-devel-2.4.3-7.el9.s390x.rpm c871d80a3529df2b4970cf37dacb3d60cdc00a91d3c79ff63e54b941c2c9fb7b libv4l-devel-1.20.0-5.el9.s390x.rpm 54a9816a5d0e294ca88d578d158258fd2b9a2d4da29a0539388bb48089dad3d3 libvisio-devel-0.1.7-9.el9.s390x.rpm 73ef9b46417aa25fa8b13229bdd7441b9f55d3ceceffe4b7b79c06bfee117936 libvoikko-devel-4.3-7.el9.s390x.rpm f343a0c55ff4eec86c2225f819853622869f0d124f2e4eebd28a6e0798f85cb1 libwpd-devel-0.10.3-10.el9.s390x.rpm 254fe8a017fdd075518ce14f8d6510ddc097044fbf001dd8b2dc14f432e3a625 libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 libwpg-devel-0.3.3-8.el9.s390x.rpm 8bb8e34ece5bedf26fae7a4c7a6650fd736e6cf721ce453749e1e5c98af21a3b libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 libwps-devel-0.4.12-4.el9.s390x.rpm 7f42c7f24fdf3b73e7382546d4c13457e6714d4e536e1f443c04e5342dd1ee11 libwps-doc-0.4.12-4.el9.noarch.rpm a57cc3f098bec98c980281bf98395ecd53c2f63d364e03fabd653f02ca29a8cf maven-local-6.0.0-3.el9.noarch.rpm 1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878 neon-devel-0.31.2-11.el9.s390x.rpm 4bb2868acc4bd7e4c927fb56544cd4c2b1b6ff3f52cce0943d66e2332590bac4 python3-javapackages-6.0.0-3.el9.noarch.rpm 899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2 raptor2-devel-2.0.15-30.el9.s390x.rpm bf4f3f564fc8ba7cc0d5ed70f64385b9fd4ff9d13510b342bd8e392ddd7f15ae rasqal-devel-0.9.33-18.el9.s390x.rpm ddd1f54351d5e1c3c79a2d0b893d77fd75a911b97d6a0023393d555580130a9a redland-devel-1.0.17-29.el9.s390x.rpm cffadabcdd6f803afa4ef53dd793fbbff1b0b45bdf74aaaacfd1c5985036bb75 taglib-devel-1.12-6.el9.s390x.rpm c2aa646848eb219c6e71be5dbefe8ca2048b9f5208906022e99d76e1b46521ec twolame-devel-0.3.13-19.el9.s390x.rpm 894920ca21af59e604f710efba5162e98ced35c3ed960db85e54d66cbd8b31f9 xmlsec1-devel-1.2.29-9.el9.s390x.rpm 3848fc810c01c11b22afefd787f98ea5638707b18266bf19a913e413126e3f51 xmlsec1-gcrypt-1.2.29-9.el9.s390x.rpm cc1d919404f28a7c8003a1a18ed2db0a3986065eedadf393d4b7d64a4b338a3e xmlsec1-gnutls-1.2.29-9.el9.s390x.rpm 47ce7d45a12e935cdfdcb3bb7b5801f9cf6fe7e20f78f2ffc6d2f946ac467015 xmlsec1-gnutls-devel-1.2.29-9.el9.s390x.rpm f80f8230d766ff95bfb8e70e284679e97381dab8350d4fdcfb6d5a4de5204444 xmlsec1-openssl-devel-1.2.29-9.el9.s390x.rpm 3be027adf3872c1439ece1c90a7d4de2665fab0b4b178071c5402a4a3b35185d RLBA-2022:4571 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsigc++20, gc, poppler, inkscape, poppler-data, python-scour, libwpd, librevenge, libwpg, pangomm, python-lxml, potrace, gtkmm30, double-conversion, gtkspell3, python-appdirs, numpy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms double-conversion-devel-3.1.5-6.el9.s390x.rpm 3b5bbbbbf377d39a0a1a4c2e693fa1851c6edba3b88a677fa3ae576c47c06923 gc-devel-8.0.4-7.el9.s390x.rpm b6513f4644b1b79783c045f2ecab1730b25797025de353fbeaa4dba5fbed3cdd gtkmm30-devel-3.24.5-1.el9.s390x.rpm 5445c36938efdada34a4d4069cc78466ac15c2e979e427630f02e844eccb3b82 gtkmm30-doc-3.24.5-1.el9.noarch.rpm abe9d8f8b5cc7a7d8cfa3e70e35cf283930d6cdf18dd0c8254d86cc7a06ed99c gtkspell3-3.0.10-9.el9.s390x.rpm af984e917a8cc4405f0897ae224f8966ac85ca3241d521a63edbd13e49c6b06e gtkspell3-devel-3.0.10-9.el9.s390x.rpm d8dfb5da2d771150e0d372e9bdf969bc4fc7c21a08e7c441874fd023354cfe3c librevenge-devel-0.0.4-22.el9.s390x.rpm 220228e96cb5184bb5bf03979f0b49abb8c73a80c834c408d311bff7d80c88b9 libsigc++20-devel-2.10.7-2.el9.s390x.rpm d5cda1ff1862bff7850625d8fe76ff3fbea9f322f9f627ff6c4a9272abdd84db libsigc++20-doc-2.10.7-2.el9.noarch.rpm 29487250f3f83163d9b2b19379dc1437e3ad90db099286cb698d375effee094b libwpd-devel-0.10.3-10.el9.s390x.rpm 254fe8a017fdd075518ce14f8d6510ddc097044fbf001dd8b2dc14f432e3a625 libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 libwpg-devel-0.3.3-8.el9.s390x.rpm 8bb8e34ece5bedf26fae7a4c7a6650fd736e6cf721ce453749e1e5c98af21a3b libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 pangomm-devel-2.46.1-1.el9.s390x.rpm 4edde0b33a77c718b57a04aa92b859321815ad9b0912832f4f29c9a53b9055aa pangomm-doc-2.46.1-1.el9.noarch.rpm 77ecd2fc1fc2c70f00abf9262894aaa56cbb8d2a8938e862109d8873e6e47607 RLSA-2022:4771 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for postgresql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

PostgreSQL is an advanced object-relational database management system (DBMS). The following packages have been upgraded to a later upstream version: postgresql (13.7). Security Fix(es): * postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox (CVE-2022-1552) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms postgresql-private-devel-13.7-1.el9_0.s390x.rpm 503bddac223101068b7cc465b793ee7d1d8c9691f8f75aa71dffbac8d5debbab postgresql-server-devel-13.7-1.el9_0.s390x.rpm f570da441c196788546fd34721892f2c57c428d27ebc15a9056b60af1892c9ed postgresql-test-13.7-1.el9_0.s390x.rpm 1a118f70de98dd41c51e1f517ad6d986eb3ca48761b4df72ff9388b02b88f1ee RLSA-2022:5257 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libinput. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

libinput is a library that handles input devices for display servers and other applications that need to directly deal with input devices. Security Fix(es): * libinput: format string vulnerability may lead to privilege escalation (CVE-2022-1215) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libinput-devel-1.19.3-2.el9_0.s390x.rpm 7313dbf9627b7118ffabcfaa6c1418bde0bcb65537149c373b73d1f9d4814339 RLBA-2023:2586 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipset. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ipset-devel-7.11-8.el9.s390x.rpm bf84b19ca83c0014ffe7f41678dc5482a9c6c350c8a68e1687e12b9449ea4d97 RLBA-2023:2223 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for anaconda. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms anaconda-widgets-devel-34.25.2.10-1.el9_2.rocky.0.3.s390x.rpm c51771145c751c3a2eb4d101e6891014f970227f984b7a5107d0c59640df7d04 RLBA-2022:5962 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for yajl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. * Regular rebuild for 9.0.0.2 (QR) - yajl (BZ#2111628) rocky-linux-9-s390x-crb-rpms yajl-devel-2.1.0-21.el9.s390x.rpm d8c6ed7e491b56d573e81c389dd2ac4cfeb5c5c1dc6c7603641a0b02397f8bf0 RLSA-2022:6585 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for ruby. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. The following packages have been upgraded to a later upstream version: ruby (3.0.4). (BZ#2109428) Security Fix(es): * Ruby: Double free in Regexp compilation (CVE-2022-28738) * Ruby: Buffer overrun in String-to-Float conversion (CVE-2022-28739) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms ruby-doc-3.0.4-160.el9_0.noarch.rpm c506029c15725b138655537c19ab15429c8b24a61b919f5088ac93c5efdc1645 RLSA-2022:6590 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for mysql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql (8.0.30). (BZ#2122589) Security Fix(es): * mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21412, CVE-2022-21414, CVE-2022-21435, CVE-2022-21436, CVE-2022-21437, CVE-2022-21438, CVE-2022-21440, CVE-2022-21452, CVE-2022-21459, CVE-2022-21462, CVE-2022-21478, CVE-2022-21479) * mysql: Server: DML unspecified vulnerability (CPU Apr 2022) (CVE-2022-21413) * mysql: Server: Replication unspecified vulnerability (CPU Apr 2022) (CVE-2022-21415) * mysql: InnoDB multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21417, CVE-2022-21418, CVE-2022-21451, CVE-2022-21423) * mysql: Server: DDL multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21425, CVE-2022-21444) * mysql: Server: FTS unspecified vulnerability (CPU Apr 2022) (CVE-2022-21427) * mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21454) * mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Jul 2022) (CVE-2022-21455) * mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21457) * mysql: Server: Logging unspecified vulnerability (CPU Apr 2022) (CVE-2022-21460) * mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21509, CVE-2022-21525, CVE-2022-21526, CVE-2022-21527, CVE-2022-21528, CVE-2022-21529, CVE-2022-21530, CVE-2022-21531, CVE-2022-21553, CVE-2022-21556, CVE-2022-21569) * mysql: Server: Options unspecified vulnerability (CPU Jul 2022) (CVE-2022-21515) * mysql: InnoDB multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21517, CVE-2022-21537, CVE-2022-21539) * mysql: Server: Stored Procedure multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21522, CVE-2022-21534) * mysql: Server: Federated unspecified vulnerability (CPU Jul 2022) (CVE-2022-21547) * mysql: Server: Security: Encryption unspecified vulnerability (CPU Jul 2022) (CVE-2022-21538) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Default logrotate set to wrong log file (BZ#2122592) rocky-linux-9-s390x-crb-rpms mysql-devel-8.0.30-3.el9_0.s390x.rpm 70383c069bf28dbe4e82de46fda6695ded74884cbc4b169c54ebccc604ac5ebe mysql-libs-8.0.30-3.el9_0.s390x.rpm 2f82f2b69d800d787703d088ed5dd3ced8e6a6589c6e748fea6b18a943f6a3db mysql-test-8.0.30-3.el9_0.s390x.rpm 0102b3e92b0ddfcb1d92a268dae7bce68c54562e7549bb26fa108e2b616f95cb RLSA-2022:7090 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for libksba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix(es): * libksba: integer overflow may lead to remote code execution (CVE-2022-3515) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libksba-devel-1.5.1-5.el9_0.s390x.rpm 596c49461b6c3ca4e3d7214daf10cdd95850259e9eb264b11af5df518eefaf05 RLSA-2022:7329 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for lua. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language. Security Fix(es): * lua: heap buffer overflow in luaG_errormsg() in ldebug.c due to uncontrolled recursion in error handling (CVE-2022-33099) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms lua-devel-5.4.2-4.el9_0.3.s390x.rpm 56e88c2d162041126acbebbdc57d7a28ba8ae0681fb8aea885549008144adec4 RLBA-2022:2856 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gnome-menus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gnome-menus-devel-3.36.0-8.el9.0.1.s390x.rpm d1a6dab6d79ccc5300481a4724a364480cf52973448d1e3de900a6aa4d58c16d RLBA-2022:7944 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnbd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnbd-devel-1.12.6-1.el9.s390x.rpm 85a52946a3670a786fab219ebf3286d11792c26ea8e66f219c29d92e1c6f3334 ocaml-libnbd-1.12.6-1.el9.s390x.rpm d4a2ac09a8fdbaf14c7ebe7c6dd85e356d3d3393eab99dead53e4805c0d7d2e2 ocaml-libnbd-devel-1.12.6-1.el9.s390x.rpm 6668f73e5622849e92adf236dfc360f141fd3028edd0b4050560f58f866610c0 RLBA-2022:7952 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for flatpak. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms flatpak-devel-1.12.7-2.el9.s390x.rpm d1cbbb09103fe99cd201e7702a4bd1c5433dc83e1dd70f75c796b9c2915a6504 RLBA-2022:7953 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gdm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gdm-devel-40.1-17.el9_1.s390x.rpm aa2457ccbed8451b469dabe868e69ce6da2e8ab9d9c2a43c8aaa20db0daa25db gdm-pam-extensions-devel-40.1-17.el9_1.s390x.rpm a9fbc8dfe4001afe67c4da078837bf5ca839f42f28411b001cc81a1305daa960 RLSA-2022:7958 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for libguestfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libguestfs packages contain a library used for accessing and modifying virtual machine disk images. Security Fix(es): * libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libguestfs-devel-1.48.4-2.el9.s390x.rpm 2152dd4f22490dfb7a5210dce750c06e9f43a8e2a19856b9460e500e6051b518 libguestfs-gobject-1.48.4-2.el9.s390x.rpm 9851a7874fc787c6fd3440af0a996a2673a7ad540777250f072acc7652460c05 libguestfs-gobject-devel-1.48.4-2.el9.s390x.rpm ca966ce39be845c318eafd4d1d1a1bf71264432c092ee9113988624099725de5 libguestfs-man-pages-ja-1.48.4-2.el9.noarch.rpm ce5bbcb3fe01b5f5e05f39666cfddeb102a532accd3cd71add956bb88cb6c3c5 libguestfs-man-pages-uk-1.48.4-2.el9.noarch.rpm 3942c50c33e5ec41deb55131b8c31e0aecefa48688ca4d5140ab542cfd6de24a lua-guestfs-1.48.4-2.el9.s390x.rpm 80b0fc851643a7391c55fbf5ff9ea34d5595cf94688f92c6830b4a3c4df0de7f ocaml-libguestfs-1.48.4-2.el9.s390x.rpm 408001e2428a8976bbd7e23a5607a6e6a0ce44e1456d56849585156c3a2f49ee ocaml-libguestfs-devel-1.48.4-2.el9.s390x.rpm 5b6bdf7c955732a0a579b359d18d829de35c7857b18c925a6d6bc06e0e5eccbf php-libguestfs-1.48.4-2.el9.s390x.rpm 3ebc72f930fa090149504c2c287ae98f9542c9c45519533a4c67ea4720b67038 ruby-libguestfs-1.48.4-2.el9.s390x.rpm c05000687bfece0acf5348cd5b64a0d63926be18ec82a636aa92d2a5b4d2fc92 RLBA-2022:7965 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for supermin. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms supermin-devel-5.2.1-8.el9.s390x.rpm 92dd5babcda494e30dea31b61805457e9518ed9da46c626d4efd49ba6dffb38b RLSA-2022:7970 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for protobuf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data. Security Fix(es): * protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference (CVE-2021-22570) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms protobuf-compiler-3.14.0-13.el9.s390x.rpm 1e6e5d89fff2b0f49d2e1c55b497ee4b3519f75f9879c38c0e821b9342165e08 protobuf-devel-3.14.0-13.el9.s390x.rpm ed058b434acb1f0b97c45b2cc536d13a04eff60ead736f03a4c98bb6356d77df protobuf-lite-devel-3.14.0-13.el9.s390x.rpm fc948791718fa812a6ab2e9dadfc6be37e5f03dfa651f97e62ad3e777d0941fa RLBA-2022:7977 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for anaconda. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms anaconda-widgets-devel-34.25.1.14-1.el9.rocky.0.3.s390x.rpm d6a4458fb15eae48a91094007f3244a28638806b7bddefb6c9f196a9199d29de RLEA-2022:7983 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ostree. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ostree-devel-2022.5-1.el9.s390x.rpm 695bac87a4d196896c19d1dd1f099e8a9c8cb730400d8097f321c19f66883334 RLBA-2022:7985 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nautilus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms nautilus-devel-40.2-9.el9_1.s390x.rpm 0e05ada0a8de2df7e7d61d2ca5e53dbeae49c9bcdbeeb32e4b67b8bb6c9d19f4 RLBA-2022:7994 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for evolution. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms evolution-devel-3.40.4-6.el9.s390x.rpm c531c939ab7ad0407245fe13a68ae17526207df80c3c669e0d48b7d01d7190d0 RLSA-2022:8003 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. The following packages have been upgraded to a later upstream version: libvirt (8.5.0). (BZ#2060313) Security Fix(es): * libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service (CVE-2022-0897) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libvirt-devel-8.5.0-7.3.el9_1.s390x.rpm 8d8af545b236520ebd680039e6a132bc147d7d8587c5b9cfeb2631cee302624c libvirt-docs-8.5.0-7.3.el9_1.s390x.rpm 79556ac3962ff55b68b789c551e9f0c15070bf233967f5325d92ccd375b9e6ee libvirt-lock-sanlock-8.5.0-7.3.el9_1.s390x.rpm aa310c3fb592b7598995fa9df9946e399a7804a2caf32dbf8035287f05381c4b RLBA-2022:8006 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gjs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gjs-devel-1.68.6-1.el9.s390x.rpm 72068fe71023a6b3b121e05c5d986db90230ad764ba0426cbfdfdb6bc3557459 RLBA-2022:8017 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for augeas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms augeas-devel-1.13.0-2.el9.s390x.rpm 0a29d019bd6f5a54cffaac9b4e08c55caa84ca210e7b8fc096bbad7de8026228 RLSA-2022:8022 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for qt5. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Qt5 libraries packages provide Qt 5, version 5 of the Qt cross-platform application framework. Security Fix(es): * qt: QProcess could execute a binary from the current working directory when not found in the PATH (CVE-2022-25255) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms qt5-devel-5.15.3-1.el9.noarch.rpm 0c7ecd814cae18753f7f6ba4f83aba303c482aab8194ccdbacb9a87d59576b5d RLBA-2022:8025 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qt5-qtbase. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms qt5-qtbase-static-5.15.3-1.el9.s390x.rpm 1678243892200c21f876893a95c83a5b7f1b94762b5e0b964b988ca9bdf92747 RLBA-2022:8026 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qt5-qtdeclarative. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms qt5-qtdeclarative-static-5.15.3-1.el9.s390x.rpm ad4d528682e33bd93296c118590f87edf7deb6d971b9c301f628736e4502ccef RLBA-2022:8045 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qt5-qttools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms qt5-qttools-static-5.15.3-3.el9.s390x.rpm 27bf7c5441a971416ff85c20d3dd6b79f4f1caaf7d112c2695da1627ae91200c RLBA-2022:8046 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sip. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python3-sip-devel-4.19.25-1.el9.s390x.rpm d9326a1d8f4898eb800a0bd6f9ddab5b73b981525b95168eb75917d57b2314b7 sip-4.19.25-1.el9.s390x.rpm 9c387168c85eddbd08b491b229cc340afab9e5dd6cc0ada04c2a4b7562282e30 RLBA-2022:8047 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for python-qt5. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python3-qt5-devel-5.15.6-1.el9.s390x.rpm 7d4b3ee482011bca0d6fde777692b22fb0d8437d115eefd9b3f35f7b28eff370 RLSA-2022:8062 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for unbound. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. The following packages have been upgraded to a later upstream version: unbound (1.16.2). (BZ#2087120) Security Fix(es): * unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30698) * unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30699) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms unbound-devel-1.16.2-2.el9.s390x.rpm 0ba6b8948955c2c0c8351c123b0faf0ab2da92cc88c06a51f17e65b41b98db86 RLSA-2022:8068 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220) * bind: DoS from specifically crafted TCP packets (CVE-2022-0396) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms bind-devel-9.16.23-5.el9_1.s390x.rpm a3de39770fef1547cb05515068047611f2898d45d72e08837b536efa0d620312 bind-doc-9.16.23-5.el9_1.noarch.rpm b54a5042601c2c9929ff55e7a28d9b81b336187f00c1e46440a3d48e1e222fed RLSA-2022:8078 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for flac. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files. Security Fix(es): * flac: out of bound write in append_to_verify_fifo_interleaved_ of stream_encoder.c (CVE-2021-0561) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms flac-1.3.3-10.el9.s390x.rpm c155939fd21076b1dcd13e3b82eb49e76e95270a76870d33b4f8cce10450f04d flac-devel-1.3.3-10.el9.s390x.rpm b76d4152fd61ad67c5b3a70a190dc062a56dfcb1641ab86309f32166b24fa148 RLBA-2022:8095 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for crash. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms crash-devel-8.0.1-2.el9.s390x.rpm f7254448ce0a7c78455ba92282b247f2434a70bfa91eab6e1ae750f3d47f14fb RLBA-2022:8109 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for bcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms bcc-devel-0.24.0-4.el9.s390x.rpm b7607f4eb5d7b1fa5700a80c047986e1f521157616232d778fbf0d7cd9e249ee bcc-doc-0.24.0-4.el9.noarch.rpm 0c503c00b79e77cc426e76fd84713f6d3608e085db2436600f5a739cb52ee5eb RLBA-2022:8116 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for google-noto-fonts. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms google-noto-sans-symbols2-fonts-20201206-4.el9.noarch.rpm dd615d5f24abcfa7b0cd668e079d1cc26472634251956c335daac0e57eb4cdf7 RLSA-2022:8151 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for poppler. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince. Security Fix(es): * poppler: A logic error in the Hints::Hints function can cause denial of service (CVE-2022-27337) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms poppler-cpp-devel-21.01.0-13.el9.s390x.rpm 820498fcf09645c7c24bdee1fcad83474e196cf93a98eac339221a5ecd6dd368 poppler-devel-21.01.0-13.el9.s390x.rpm 01ee99613314efee26f9f34f2f0067606cd545b805827376167a1cacac925ae7 poppler-glib-devel-21.01.0-13.el9.s390x.rpm 2d0874ae5a16ba0842c0e85b55b219fa7377b899d32b6f7278e5bac21c02edfc poppler-qt5-devel-21.01.0-13.el9.s390x.rpm 4df63c308b1bee99d88571abba5ecabf3304582ff8b35d97577c8ef425daf44c RLBA-2023:0331 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for opencryptoki. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The opencryptoki packages contain version 2.11 of the PKCS#11 API, implemented for IBM Cryptocards, such as IBM 4764 and 4765 crypto cards. These packages includes support for the IBM 4758 Cryptographic CoProcessor (with the PKCS#11 firmware loaded), the IBM eServer Cryptographic Accelerator (FC 4960 on IBM eServer System p), the IBM Crypto Express2 (FC 0863 or FC 0870 on IBM System z), and the IBM CP Assist for cryptographic Function (FC 3863 on IBM System z). The opencryptoki packages also bring a software token implementation that can be used without any cryptographic hardware. These packages contain the Slot Daemon (pkcsslotd) and general utilities. Bug Fix: * opencryptoki C_GenerateKeyPair() fails after generating > 500 RSA keys with CEX7 and CEX8 crypto cards (BZ#2128611) rocky-linux-9-s390x-crb-rpms opencryptoki-devel-3.18.0-5.el9_1.s390x.rpm ced39e6c05e09cfc1c9240f026e2d5489ae28916b43499dd9e11467e28982850 RLBA-2022:8130 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for criu. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms criu-devel-3.17-4.el9.s390x.rpm 11b7733cef7916520d5e31e9ab36040cc10383248a80f0150a522202628748e2 RLBA-2023:0332 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for zlib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The zlib packages provide a general-purpose lossless data compression library that is used by many different programs. Bug Fix: * Rocky Linux9.0 - zlib: inflate() does not update strm.adler if DFLTCC is used (BZ#2135745) rocky-linux-9-s390x-crb-rpms zlib-static-1.2.11-35.el9_1.s390x.rpm c2269306d53386d24d0c8974301ffe71e1ca6559ce9d2c0e53150a4b62b1fa26 RLBA-2022:8142 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for yara. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms yara-devel-4.2.3-1.el9.s390x.rpm 11250a213e06e1b03a5c62c33e190abb1a3913f6e8e8376a0b8345ece673508e RLBA-2022:8155 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nginx. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms nginx-mod-devel-1.20.1-13.el9.s390x.rpm 6b69bc92d242d731ce529ccb5e9f1db3508a709a79566823c1706a788696e9a3 RLEA-2022:8157 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdrm, mesa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms mesa-libgbm-devel-22.1.5-2.el9.s390x.rpm b0d1fa5c1ec3ce99197494ce46bf3c7dd4abb507a7f5c91d4e518329291f6e46 mesa-libOSMesa-22.1.5-2.el9.s390x.rpm ddfb5fccb0594daa30ea6dcb8499d82711414efe637db69c73990fe436460151 mesa-libOSMesa-devel-22.1.5-2.el9.s390x.rpm a61bfbcade755f290e2943922dab19b47efde6d96c700f6cd4d8634aac172f17 RLBA-2022:8158 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sdl12-compat. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms sdl12-compat-devel-1.2.52-1.el9.s390x.rpm 306a2b35505a61c5a5b32c73e53f05197f83dc6b8d22cd84c563e24bc563e033 RLBA-2022:8160 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for freerdp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms freerdp-devel-2.4.1-3.el9.s390x.rpm 5472baa9e6a515382c1711c78df11e51b544b600a1ca0e33910c10b23fadc6ab libwinpr-devel-2.4.1-3.el9.s390x.rpm 87d870df95888810a082bb65b0781fa2adb52284c93ccc26727f28cd72f2ee93 RLBA-2022:8170 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nispor. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms nispor-devel-1.2.7-1.el9.s390x.rpm f03e4fd07c828a602e866c3bb4b4f29cacbb37d20c0f50987e05e10f567f94f8 RLBA-2022:8176 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ldns. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ldns-devel-1.7.1-11.el9.s390x.rpm e9a3035c90a268c4378582179516240bf5c91296993f2951b2f0888fa9ddb72e ldns-doc-1.7.1-11.el9.noarch.rpm 9b10ac31884afbefbf610d8280e6e585ef3c88fd2fca8a1e4c2cb55c903e8c0d ldns-utils-1.7.1-11.el9.s390x.rpm 5afadf13544f854ff7a02e5f2b734738c5cd7993011cc77b4f881ca943a650c2 perl-ldns-1.7.1-11.el9.s390x.rpm f323f80d2845655d222b87172fd156e67ffb803381fc913033916e5b33958490 python3-ldns-1.7.1-11.el9.s390x.rpm 41edb9033cecf5d5f7e19650299bb080060f28b45ae7ce18668d00458773262e RLBA-2022:8178 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xxhash. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xxhash-devel-0.8.1-3.el9.s390x.rpm c4539b6ded8a881c7f1564138223c3cbf10ae5cb60558dd39229ac9002715066 xxhash-doc-0.8.1-3.el9.noarch.rpm 1b1802afd44bd91211ca8fa5521cdcebbbf2dee0b409802774c42e5398dbe90d RLBA-2022:8185 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qclib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms qclib-devel-2.3.1-1.el9.s390x.rpm 82a4572fe82006b276b61f3e809fd3cba7a7696fa727ed01fc845ed9bfca9945 RLBA-2022:8200 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qpdf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms qpdf-10.3.1-6.el9.s390x.rpm 13fffe2aaadccd492579acb9493baaf185807b05852d94d6ee0bc76ed68dae60 RLSA-2022:8207 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for openjpeg2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. Security Fix(es): * openjpeg: segmentation fault in opj2_decompress due to uninitialized pointer (CVE-2022-1122) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms openjpeg2-devel-2.4.0-7.el9.s390x.rpm f6eb536051cff8754cd5b152b0a17af203cae42e2a06684437aa20cd2a43e6bd openjpeg2-tools-2.4.0-7.el9.s390x.rpm 1f099ac042ebd676f569d003baeb5d7f5a410fc89a1ee4414b6fcb36267d6215 RLSA-2022:8208 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for dovecot. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fix(es): * dovecot: Privilege escalation when similar master and non-master passdbs are used (CVE-2022-30550) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms dovecot-devel-2.3.16-7.el9.s390x.rpm 3507e9cf198ef1dd82f4e4ad7811d578c544ee05be83775f36f4a311e5050877 RLBA-2022:8209 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for boost. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms boost-b2-1.75.0-8.el9.s390x.rpm 792c5aadc8c86ff105edd4f7ba08b1ac850f788ae4d51422e8296f6cef367ed3 boost-build-1.75.0-8.el9.noarch.rpm 7434dfea46f9bd571b3675bb4c303de6597ad7ba8de42b4faef7e5824e9a36e8 boost-doc-1.75.0-8.el9.noarch.rpm e5080e6bb50f4ae84b97ff3681e6d5d80b6337ca035c88b4f2f3770a1205cf0c boost-doctools-1.75.0-8.el9.s390x.rpm efc88902add9c9ee7bdd094b3708ae5ae1c706c81b1b126e7c64de3d9c1e61ec boost-examples-1.75.0-8.el9.noarch.rpm f3904eec06577458543173a6e0b913a0baae3f378e034fa6b63eadb46b3e17f2 boost-graph-mpich-1.75.0-8.el9.s390x.rpm 6185749ec9e394eb9b66b64ae55bf836b2257f3e4db9f6fe10dd1d87f64057c7 boost-graph-openmpi-1.75.0-8.el9.s390x.rpm f585822b6e988a46ea95f8727d8b070427543bf92e9ad61af7d07fd3fe035445 boost-mpich-1.75.0-8.el9.s390x.rpm 9ae6b1071c93c3300d2518bdfae6fcd08d9baa7fec090debc9aa33a8ea956fc1 boost-mpich-devel-1.75.0-8.el9.s390x.rpm 37b286bddd095689ef681ee7aea5b8dbb817b762c2e786c72df5db84bcd02712 boost-mpich-python3-1.75.0-8.el9.s390x.rpm b898472aac98197f1dcbf31c2a88d549840355fd79ead630d26912d58843d6c0 boost-openmpi-1.75.0-8.el9.s390x.rpm 66628070849d222de543bcc01eb95a144787c0b7616161159b520c0c7e7e3a07 boost-openmpi-devel-1.75.0-8.el9.s390x.rpm 50cc6166365f0079000cb8f7425b751836cbc41476c42a037af875ddf6332d60 boost-openmpi-python3-1.75.0-8.el9.s390x.rpm e0f7e6e255fde92241ff2a3fa8233d42ae32a0d5ae4da55d8727f043748fe5c9 boost-static-1.75.0-8.el9.s390x.rpm cbd783d86a406303407004d86046e398434e0f158571e65d26f84a13f51863f4 RLBA-2022:8216 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openscap. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms openscap-engine-sce-devel-1.3.6-4.el9.rocky.0.2.s390x.rpm bd9a03e99cc93cae0f3130eaa34ac1f9be0a189dfeaa29708af544b1ff419457 RLSA-2022:8221 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for xorg-x11-server. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Security Fix(es): * xorg-x11-server: X.Org Server ProcXkbSetGeometry out-of-bounds access (CVE-2022-2319) * xorg-x11-server: out-of-bounds access in ProcXkbSetDeviceInfo request handler of the Xkb extension (CVE-2022-2320) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xorg-x11-server-devel-1.20.11-11.el9.s390x.rpm 0fd124c7b52f41193011a16a370ceee160c2ebeb276c56624fd13ec06237bf91 xorg-x11-server-source-1.20.11-11.el9.noarch.rpm 9b7ef85d732e8fb5a3712ea75167a3d9a4a39f443b0fe0a6dbaca49841467178 RLBA-2022:2332 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libuv. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libuv-devel-1.42.0-1.el9.s390x.rpm ed82c67215b5f5009cf810550e9b64965ad0d72b1cf4413d74281f328753768e RLBA-2022:8239 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sanlock. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms sanlock-devel-3.8.4-4.el9.s390x.rpm 74e5ba157e64c6515886e5f82628fd00af00b9fa7b8dea6e201a782fea50d59b RLBA-2022:8248 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xdp-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libxdp-devel-1.2.6-1.el9.s390x.rpm d093458f3e2cd948c3a1fb3768e022ff65a7cb9e9b05b1d755990c150f3b6b5d libxdp-static-1.2.6-1.el9.s390x.rpm 6452175d61d141f9679ef91c74e0aaef3dd2e8d93d5a3b4801f55bd02c7ed894 RLBA-2022:8251 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for shaderc, glslang, spirv-tools, vulkan-loader, vulkan-headers, vulkan-validation-layers, vulkan-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms glslang-devel-11.9.0-3.el9.s390x.rpm e2308aa05535d69e5113a846468ed0810c329e037fb0300ab54502954d665884 libshaderc-devel-2022.2-2.el9.s390x.rpm fec4c18d966a3f5d5c4ec4690567c8ad972f73663f3b443709309bf499c4f311 spirv-tools-devel-2022.2-3.el9.s390x.rpm 7cd8abfc4af8aa997cde2f732784eb7082f2eb187baa1c1a7873702484496051 RLSA-2022:8252 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for yajl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. Security Fix(es): * yajl: heap-based buffer overflow when handling large inputs due to an integer overflow (CVE-2022-24795) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms yajl-devel-2.1.0-21.el9.s390x.rpm d8c6ed7e491b56d573e81c389dd2ac4cfeb5c5c1dc6c7603641a0b02397f8bf0 RLBA-2022:8265 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for NetworkManager. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms NetworkManager-libnm-devel-1.40.0-1.el9.s390x.rpm 143feb9068fd75bd235df874ce7120a8464191a45802137a6193b13d1e6545df RLBA-2022:8272 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glibc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms glibc-benchtests-2.34-40.el9_1.1.s390x.rpm d75f5d8eafb0cc2e2d68eeaa8251cd39dfc0ead3931359843aadf672daee77bf glibc-nss-devel-2.34-40.el9_1.1.s390x.rpm 3f0c8ea1871582bbc0ef4dc7552adb00b1dd98c33091e07ff8c964fe6d533e4a glibc-static-2.34-40.el9_1.1.s390x.rpm f1e926b718df2a5aec79d0bb6ddf6f58ad0b89264e73f1e9f99ecfabbfa85f90 nss_db-2.34-40.el9_1.1.s390x.rpm 0fa17554bc75c12eb352c2aa0ce4205f56e20fe37b3f43554bbfe0f69b33a3d5 nss_hesiod-2.34-40.el9_1.1.s390x.rpm 9910c79feecb42bed1b336c830dbf10f62e3e684ee81b74eb374d34bad3d9311 RLBA-2022:8277 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gcc-plugin-devel-11.3.1-2.1.el9.s390x.rpm c54b85b42c2940e92c22ca0826be494d7ac30f10cb23ba789d69acd9ce2a152f libstdc++-static-11.3.1-2.1.el9.s390x.rpm e8b13e5d544b4bd7ca809900617125fe984f0b833c93d7e87190121d61b8f080 RLBA-2022:8280 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for trace-cmd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtracecmd-devel-0-9.el9.s390x.rpm afe6beca47718bef1fc2aae5019c8ed0503b1a5c17bd2185fd5d1b789356b95c RLBA-2023:2186 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for augeas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms augeas-devel-1.13.0-3.el9.s390x.rpm 6d21809100a7b252739d5abbcc950f62f43e8cc57c667b6f7b4ac30a64a2cb0d RLBA-2022:8289 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for shadow-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms shadow-utils-subid-devel-4.9-5.el9.s390x.rpm 56d19dbc9d8596fb4b58e73d4963d779a73b1986f65e357f86497a0b0079a33f RLBA-2022:8293 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsemanage. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsemanage-devel-3.4-2.el9.s390x.rpm fc6b756177bc4641eaba0449b8003e734c378dd08503824e90dde584d354684e RLBA-2022:8295 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdnf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libdnf-devel-0.67.0-3.el9.s390x.rpm cab12422e6de90b9bc4ec9b8b96c7efaa1ccb1a7edf34a4de3a8b99e81f29fbc RLBA-2022:8298 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsolv. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsolv-devel-0.7.22-1.el9.s390x.rpm 2e93af5a0bf67145161927a675bf1aa929d6f376407d9d8134758e0829048765 libsolv-tools-0.7.22-1.el9.s390x.rpm ebac4d3b7aa6da1a92556116c23c42ea28d2e33873aae495b847ab85ecbfe2c9 RLBA-2022:8309 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jitterentropy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms jitterentropy-devel-3.4.0-1.el9.s390x.rpm ec2cf6f95f1de76f0c41949f2209f51165cfa3a7442442620edfe8a8b69c9201 RLBA-2022:8313 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for device-mapper-multipath. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms device-mapper-multipath-devel-0.8.7-12.el9_1.1.s390x.rpm 06eabb6ddd67a38cf4e918becabe8a13408102c10caba884b54928728f16cb56 RLSA-2022:8317 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for samba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba (4.16.4). (BZ#2077487) Security Fix(es): * samba: server memory information leak via SMB1 (CVE-2022-32742) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsmbclient-devel-4.16.4-101.el9.s390x.rpm 24b6852dc692318abf3593ee5272f9986dcd2c7a0a731ba78faa0f8b4357b207 libwbclient-devel-4.16.4-101.el9.s390x.rpm 16938fbad9690f3c30a6446c31b392f0944c85b4570cbfe6ebd5fab8010d5072 samba-devel-4.16.4-101.el9.s390x.rpm 9ee210f8a79beb8f6dd7cb224d9211b44fb9d7fb1c24611aa11c78a07959183e samba-pidl-4.16.4-101.el9.noarch.rpm 2a62fd23b7bc67bd4c85fd7ff2f748493c82ff8de5b0b1958238a9826188a7b4 samba-test-4.16.4-101.el9.s390x.rpm bf8051ac691f7bed4dec1c709fd2d1c200997adf9eea0ce3386d6eca0265715d samba-test-libs-4.16.4-101.el9.s390x.rpm bf98bb90261a707272f1f7791ad25c9e36d7da83ff93c00707840867f2f1f6eb RLBA-2023:2390 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for varnish. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms varnish-devel-6.6.2-3.el9.s390x.rpm 15fb797751436af4d1362c2ca8013af02908ece454bbf3ba5ea416bc6f692253 RLSA-2022:8318 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libldb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. The following packages have been upgraded to a later upstream version: libldb (2.5.2). (BZ#2077490) Security Fix(es): * samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request (CVE-2022-32746) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libldb-devel-2.5.2-1.el9.s390x.rpm 92db6938f103eaf2c43d247deca7f38d0b4266f47b832fac0305694b4f704033 RLBA-2022:8319 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtdb-devel-1.4.6-1.el9.s390x.rpm 81e53209ac1e7ed1d64ee483e9d87d54bd4436b405d7e86bf555939793343e01 RLBA-2022:8320 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtevent. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtevent-devel-0.12.0-0.el9.s390x.rpm 0a557365bcdc9b47f2eb58e6e78d2fe4365e43d67c57ab73498e481a2f5ea5b1 RLBA-2022:8325 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsss_nss_idmap-devel-2.7.3-4.el9_1.3.s390x.rpm cc51f219ea723c124d772c16e815e05c7c6d03d70af0b6aa9128a9b4a37270c5 RLBA-2022:8329 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libica. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libica-devel-4.0.2-1.el9.s390x.rpm 3ad02a408094b84be1743ec7eadb4ca162ea77624507125e8102a9dfde5b6b22 RLBA-2022:8336 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libselinux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libselinux-static-3.4-3.el9.s390x.rpm c5caaef489a3ab9b683fff57b54aeb0f60535b18185bd793ffa64f865c12acfa RLBA-2022:8337 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsepol. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsepol-static-3.4-1.1.el9.s390x.rpm 9d2b2bd3a2f405ed9b86ca173495817df854f3ca23252bd362df45998eb2cc8a RLBA-2022:8342 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for parted. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms parted-devel-3.5-2.el9.s390x.rpm 4bb1bf1756b477f99b30496b5ed3e3595b71c36984cacfa08484f7b49d4e66ba RLBA-2022:8343 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnftnl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnftnl-devel-1.2.2-1.el9.s390x.rpm 9e5d82cd9dfc39c8331eb5ca4e5f47bf3956335b9cbc1d9ccde5887e7383ac7e RLSA-2022:8353 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. The following packages have been upgraded to a later upstream version: python3.9 (3.9.14). (BZ#2128249) Security Fix(es): * python: mailcap: findmatch() function does not sanitize the second argument (CVE-2015-20107) * python: open redirection vulnerability in lib/http/server.py may lead to information disclosure (CVE-2021-28861) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python3-debug-3.9.14-1.el9_1.1.s390x.rpm 6ca335ce3ee0ffec508cc3f6813c08a55eccec90ebb972d2ca6f6b3cb49184f2 python3-idle-3.9.14-1.el9_1.1.s390x.rpm 7f76f98c861412108323bc5876688901da47ca878719692fe973ae4d8c21ddd3 python3-test-3.9.14-1.el9_1.1.s390x.rpm fb0974a7b37101575a765fe25be1eb1f66036eb8fa73130542fec412770ea1e2 RLBA-2022:8357 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ndctl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms daxctl-devel-71.1-7.el9.s390x.rpm 27d1b12c3ca93705d6ce378d34b70814d9b5b6020f6792a702d98968b2b69c97 ndctl-devel-71.1-7.el9.s390x.rpm 4607ae123a4d124cbc74855e0c06f0c3bd74d9e1f4f55c89f8d87d93610d30e0 RLBA-2022:8358 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lvm2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms device-mapper-devel-1.02.185-3.el9.s390x.rpm 7e102a665c54949b7887e4d28fa781b74cd9e4409b82e9ac31a0241dadd741b6 device-mapper-event-devel-1.02.185-3.el9.s390x.rpm 50fd6ccfb21232b9870088bed1b20dc7a6a35164e1529976aa1215404a7fe9c7 lvm2-devel-2.03.16-3.el9.s390x.rpm 3f38c91262a09fb711adbd6337b070cf18d59267fc1a77bb1ba127d61f1d38c3 RLBA-2022:8364 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libbpf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libbpf-devel-0.6.0-1.el9.s390x.rpm 3d8f1fa7a740cd578fe4eec5a3625bc8f4b1573eb89eb4fd25245edaf6e7a217 libbpf-static-0.6.0-1.el9.s390x.rpm f93e32684a6d200b3346438b2ff245f2de8f633ee03e99b9a792971c0a359293 RLBA-2023:2402 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for plexus-interpolation, httpcomponents-core, maven-wagon, maven, google-guice, jsoup, jansi, apache-commons-io, apache-commons-lang3, maven-shared-utils, plexus-utils, plexus-classworlds, jakarta-annotations, httpcomponents-client, apache-commons-codec, plexus-cipher, atinject, javapackages-tools, maven-resolver, plexus-containers, jsr-305, cdi-api, apache-commons-cli, slf4j, guava, plexus-sec-dispatcher, sisu. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms javapackages-generators-6.0.0-4.el9.noarch.rpm 658d14adcf1518041ff90ee238d485193ab92f5601fd24e2767d1531c6503d4f javapackages-local-6.0.0-4.el9.noarch.rpm 4677a41640859d83cc0b2a102a60e3eb34dd4c3d6bfef0d14cc9d5e28dc7eabd maven-local-6.0.0-4.el9.noarch.rpm acf5acd8478e2aadedf45db80699b349b03b9605b5f7eaed790572b7683dc65b plexus-containers-container-default-2.1.0-10.el9.noarch.rpm f95f3671e7d93035d083cbfdbb4b14ebc3bfe295a1bbe738036da6f103f5c54a python3-javapackages-6.0.0-4.el9.noarch.rpm 02090a36a022def69bb135f2d30b92f1f322719adc0a3c0993038500d74dfb5e RLBA-2022:8373 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librepo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms librepo-devel-1.14.2-3.el9.s390x.rpm 7698c3316d3407e75e8ebf2280156ca5f7bfb249267a73dccaec82a9863e9239 RLBA-2022:8372 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for iproute. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms iproute-devel-5.18.0-1.el9.s390x.rpm 2e483fa1ec0d3ca4031f0248b5729778db34fb685578d6fffecf7b9b172942ad RLBA-2022:8376 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nfs-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnfsidmap-devel-2.5.4-15.el9.s390x.rpm 8387b717d34f7e1a32adf60eb5e3e6d7eac47e80740b3ce2868a3be4d7a4ada0 RLBA-2022:8377 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libarchive. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libarchive-devel-3.5.3-3.el9.s390x.rpm e6e096719c1d1e3be4167d6c543424791858b77079f99777b5cf4f2261d6d756 RLBA-2022:8381 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nftables. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms nftables-devel-1.0.4-2.el9.s390x.rpm 58077b1b4917f8e9f970cf343d44562e804d3ffb52729689793508f457276d49 RLBA-2023:2608 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for kronosnet. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libknet1-1.25-2.el9.s390x.rpm ec6805ef62ed7ab6164fb07a6d69b6794e3a08c447b0d93be2b348a85350d291 libknet1-devel-1.25-2.el9.s390x.rpm 982d8a1902ec1086d24ec5d3ef6e01f63f13f6622dedf3a495c875f2c9a0e60e RLEA-2022:8387 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for s390utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms s390utils-devel-2.22.0-2.el9.s390x.rpm 7d56440a0220dbb75169c981462b722875eb912b4055c749dcc5d457f614c985 RLBA-2022:8388 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for bluez. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms bluez-libs-devel-5.64-2.el9.s390x.rpm 5086ce0be6f6237d2a67bab59f17d27a5d29df6c72ec0bf330ad636204408703 RLEA-2022:8391 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ucx, rdma-core, mstflint, libvma, libpsm2, fabtests, opa-fm, opa-ff, eth-tools, libfabric. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libfabric-devel-1.15.1-1.el9.s390x.rpm 71539de28581c1250c6bc745a1fe089fed4c405623996dbf5e94e663de1c6b34 RLBA-2022:8392 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sg3_utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms sg3_utils-devel-1.47-9.el9.s390x.rpm 4352cf9fa62b369210652bb71232c7ef0266c873fa08768fb3c7c0f54b9cf461 RLBA-2022:8394 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libuser. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libuser-devel-0.63-11.el9.s390x.rpm ba37daca8d133e15fab431d1186d556b13a0afda2a7653830f648b7b2de08cb9 RLBA-2022:8395 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fwupd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms fwupd-devel-1.7.9-1.el9.s390x.rpm 4c3303b08b120e9af869052dc9fa05b231f8d73e37a97fe298f9d7d2203f371b RLBA-2022:8396 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tpm2-tss. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms tpm2-tss-devel-3.0.3-8.el9.s390x.rpm a27e758a4cd049224487cf4edc6b0eaabbd2935117e0c8d6c529bc7ab7686661 RLBA-2022:8398 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for liblockfile. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms liblockfile-devel-1.14-10.el9.s390x.rpm 21a4b04170b4752b7ce5686ffee7b5d1cb93d1f5cd057929d9f406c12980737b RLBA-2022:8399 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cryptsetup. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms cryptsetup-devel-2.4.3-5.el9_1.1.s390x.rpm 8fd5e079facfd57c941dead5baa42591aafb255c1540270cd35386acdf24da14 RLSA-2022:8400 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libtirpc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libtirpc packages contain SunLib's implementation of transport-independent remote procedure call (TI-RPC) documentation, which includes a library required by programs in the nfs-utils and rpcbind packages. Security Fix(es): * libtirpc: DoS vulnerability with lots of connections (CVE-2021-46828) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtirpc-devel-1.3.3-0.el9.s390x.rpm 5fb56b7226f439883acaa0c31812fcbd73f80f144c5960267950f583d6bd3cef RLBA-2022:8404 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for util-linux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libfdisk-devel-2.37.4-9.el9.s390x.rpm a18346f3b6419dc93dd3939a4a16152d53dce512f936cd63e62af0a4b43b8afb RLBA-2023:2635 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotnet7.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 7.0 to SDK 7.0.105 and Runtime 7.0.5 [rhel-9.2.0.z] (BZ#2183591) rocky-linux-9-s390x-crb-rpms dotnet-sdk-7.0-source-built-artifacts-7.0.105-2.el9_2.s390x.rpm 280bf21950f60b01b7b45c715a75920d6712821e031b1c04190f6eb0f530a6b4 RLBA-2022:8406 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for file. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms file-devel-5.39-10.el9.s390x.rpm d181068b67b72d8dc7bc3a5702ccfab52b9d7fa9d3c68246b570cd49874ca52e RLBA-2022:8423 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for enchant2, cairomm, gc, libwpd, gsl, python-lxml, boost, potrace, python-appdirs, poppler, inkscape, python-scour, librevenge, libwpg, lapack, gspell, libsigc++20, poppler-data, double-conversion, gtkmm30, openblas, pangomm, atkmm, glibmm24, numpy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms atkmm-devel-2.28.2-2.el9.s390x.rpm 64540df3aaf4bf3b3e85fe144141944a864720161050db85f83d72aca015fdea atkmm-doc-2.28.2-2.el9.noarch.rpm 56521e83bec50b0c679f98ebb9eed867a2f8733d0a2a6f161c76dcd2d5105765 blas64_-3.9.0-8.el9.s390x.rpm 16397c59fd84629e9f90fbe0de6e40e11fa91d29149f6c35d690e5a8679c201e blas-devel-3.9.0-8.el9.s390x.rpm 6edae43a2a2d8b9559a1ec626956a0e65afa2e345f3c5c928e20929acf6ed13b boost-b2-1.75.0-8.el9.s390x.rpm 792c5aadc8c86ff105edd4f7ba08b1ac850f788ae4d51422e8296f6cef367ed3 boost-build-1.75.0-8.el9.noarch.rpm 7434dfea46f9bd571b3675bb4c303de6597ad7ba8de42b4faef7e5824e9a36e8 boost-doc-1.75.0-8.el9.noarch.rpm e5080e6bb50f4ae84b97ff3681e6d5d80b6337ca035c88b4f2f3770a1205cf0c boost-doctools-1.75.0-8.el9.s390x.rpm efc88902add9c9ee7bdd094b3708ae5ae1c706c81b1b126e7c64de3d9c1e61ec boost-examples-1.75.0-8.el9.noarch.rpm f3904eec06577458543173a6e0b913a0baae3f378e034fa6b63eadb46b3e17f2 boost-static-1.75.0-8.el9.s390x.rpm cbd783d86a406303407004d86046e398434e0f158571e65d26f84a13f51863f4 cairomm-devel-1.14.2-10.el9.s390x.rpm 4d42b94025d159c64023b6a570c10ed5463667aba8fb8a43df32ed12961b7ad1 cairomm-doc-1.14.2-10.el9.noarch.rpm 383bbbc516adade85cecf9956a9810d533fc5c5acaefb80b1b23edf5bd82b58e double-conversion-devel-3.1.5-6.el9.s390x.rpm 3b5bbbbbf377d39a0a1a4c2e693fa1851c6edba3b88a677fa3ae576c47c06923 enchant2-devel-2.2.15-6.el9.s390x.rpm 68ccd9858a89867eba7cd6af961542cf715a3a2c774b22523a79d11a9606328e gc-devel-8.0.4-7.el9.s390x.rpm b6513f4644b1b79783c045f2ecab1730b25797025de353fbeaa4dba5fbed3cdd glibmm24-devel-2.66.1-1.el9.s390x.rpm bb8ec5247c6a8d5a58f003ede97577f5ac8b1803e0cd9e0d31b67174ab08ff52 glibmm24-doc-2.66.1-1.el9.noarch.rpm bfbcd163138501fa996ad0aa4dda44619ae3b7205390023646364b3fac404ec0 gsl-devel-2.6-7.el9.s390x.rpm b383803b797a4d2488dcb19b29bec31ae4874068a5bd9c242ff56bca22064ba8 gspell-devel-1.9.1-3.el9.s390x.rpm 8957d8a3fcc20489f5ff2a5cd88f9680d23346a202e163d96b9298e1689f60de gspell-doc-1.9.1-3.el9.noarch.rpm 208a6225b69d9c50c7e695b818c3e5d04182e3fe5ce49d1147f2a886eb1edd23 gtkmm30-devel-3.24.5-1.el9.s390x.rpm 5445c36938efdada34a4d4069cc78466ac15c2e979e427630f02e844eccb3b82 gtkmm30-doc-3.24.5-1.el9.noarch.rpm abe9d8f8b5cc7a7d8cfa3e70e35cf283930d6cdf18dd0c8254d86cc7a06ed99c lapack64_-3.9.0-8.el9.s390x.rpm 2ecf8efff9768208e2e2440a009acd8e19d1f8ea13a2b42b8f2bf2c9f523b199 lapack-devel-3.9.0-8.el9.s390x.rpm 490cf1409efa17e299e416c700ae7cb9bc87cb101e4b99292fbae2a42ab9456b lapack-static-3.9.0-8.el9.s390x.rpm 7c90541ecc3ff44611ec98ae0d4fc2b7e890cf14ef08180b2857dcf5b2b1b43b librevenge-devel-0.0.4-22.el9.s390x.rpm 220228e96cb5184bb5bf03979f0b49abb8c73a80c834c408d311bff7d80c88b9 libsigc++20-devel-2.10.7-2.el9.s390x.rpm d5cda1ff1862bff7850625d8fe76ff3fbea9f322f9f627ff6c4a9272abdd84db libsigc++20-doc-2.10.7-2.el9.noarch.rpm 29487250f3f83163d9b2b19379dc1437e3ad90db099286cb698d375effee094b libwpd-devel-0.10.3-10.el9.s390x.rpm 254fe8a017fdd075518ce14f8d6510ddc097044fbf001dd8b2dc14f432e3a625 libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 libwpg-devel-0.3.3-8.el9.s390x.rpm 8bb8e34ece5bedf26fae7a4c7a6650fd736e6cf721ce453749e1e5c98af21a3b libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 openblas-devel-0.3.15-3.el9.s390x.rpm e33c80641ff2e7dca731102c598c1c15b64a2e2334db3a5bdc377207212279eb openblas-openmp64_-0.3.15-3.el9.s390x.rpm 487c6a534ea0ef4c9cc3d90b2ffaa4dfb97cc021a88c011ff2e22450eb29ad4b openblas-openmp64-0.3.15-3.el9.s390x.rpm 15b158c21428d15ffdcbd9794e7adb45abf00ac51d5141512fa8b7eee72b9817 openblas-serial64_-0.3.15-3.el9.s390x.rpm 4d7c20ac24254177107fcd29e76dba7acf3f5982a50050cf96ef495158522b69 openblas-serial64-0.3.15-3.el9.s390x.rpm 57ede4f86410728e3276e2656d8f3bd1126cbad3c66bca09686133ab8d0c870e openblas-static-0.3.15-3.el9.s390x.rpm 8898b0cadcc9663719a5b26851337d8e36df8c9790d7b00361b65d74f69a6a24 openblas-threads-0.3.15-3.el9.s390x.rpm 63e62d82e75db14a336556d5c930ad7621975d83392f272a2419b0d7e543cf2d openblas-threads64_-0.3.15-3.el9.s390x.rpm c323f442b659402ef129c94e0e674a2e731d08d1d5f61b0d467c33dc8b310edd openblas-threads64-0.3.15-3.el9.s390x.rpm 7c47d9150dc26dae618b871d4e42f8540bfe30bd5abc3135c3b210aadd378f1a pangomm-devel-2.46.1-1.el9.s390x.rpm 4edde0b33a77c718b57a04aa92b859321815ad9b0912832f4f29c9a53b9055aa pangomm-doc-2.46.1-1.el9.noarch.rpm 77ecd2fc1fc2c70f00abf9262894aaa56cbb8d2a8938e862109d8873e6e47607 poppler-cpp-devel-21.01.0-13.el9.s390x.rpm 820498fcf09645c7c24bdee1fcad83474e196cf93a98eac339221a5ecd6dd368 poppler-devel-21.01.0-13.el9.s390x.rpm 01ee99613314efee26f9f34f2f0067606cd545b805827376167a1cacac925ae7 poppler-glib-devel-21.01.0-13.el9.s390x.rpm 2d0874ae5a16ba0842c0e85b55b219fa7377b899d32b6f7278e5bac21c02edfc poppler-qt5-devel-21.01.0-13.el9.s390x.rpm 4df63c308b1bee99d88571abba5ecabf3304582ff8b35d97577c8ef425daf44c RLBA-2022:8424 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for zaf, hyphen-uk, libpagemaker, hyphen-ca, hunspell-et, hyphen-eu, hyphen-ga, libvisio, raptor2, hunspell-ta, mythes-nl, hunspell-lt, hunspell-sk, ongres-scram, hunspell-hu, libshout, hunspell-nso, poppler, hunspell-nl, hunspell-hi, openjpeg2, libabw, hunspell-es, hunspell-sv, hyphen-sv, hyphen-te, google-carlito-fonts, hunspell-br, hunspell-ml, hyphen-pl, hunspell-pl, hyphen-el, hyphen-ru, hunspell-bg, mariadb-connector-c, hyphen-es, mythes-ro, hyphen-as, libloader, libmspub, dconf, mythes-en, libreoffice-voikko, hunspell-de, hunspell-id, hunspell-eu, libexttextcat, hyphen-da, pentaho-libxml, redland, hunspell-kn, libcmis, libepubgen, libodfgen, hunspell-fr, hunspell-th, hunspell-zu, xmlsec1, libnumbertext, hyphen-gu, hyphen-nl, hyphen-ro, libfontenc, librevenge, libwpg, hyphen-it, mythes-it, libmwaw, ttmkfdir, postgresql-jdbc, hunspell-sr, hunspell-ga, hunspell-ro, openoffice-lv, lksctp-tools, mythes-sk, mythes-cs, hyphen-cy, libformula, liblayout, clucene, hunspell-hr, yajl, mythes-ru, hunspell-gl, hyphen-ta, mythes-da, hunspell-tn, libqxp, lpsolve, hunspell-gu, mythes-pt, mythes-sl, libetonyek, hyphen-lt, google-noto-fonts, hunspell-ar, neon, librtas, hyphen-sk, hunspell-cy, boost, hunspell-ko, hunspell-si, flute, hunspell-pt, hyphen-fa, libzmf, hunspell-nr, hunspell-pa, hunspell-ve, mythes-ca, sac, hunspell-it, hyphen-bg, gstreamer1-plugins-good, openoffice.org-dict-cs_CZ, hyphen-gl, hyphen-hu, taglib, bitmap-fonts, libwps, hyphen-de, libbase, hunspell-af, hunspell-or, mythes-ga, xorg-x11-fonts, hunspell-no, hunspell-kk, libvoikko, mythes-sv, hunspell-el, hyphen-id, hunspell-da, libwpd, hunspell-ss, hunspell-ts, hyphen-bn, hyphen-sl, libeot, mythes-fr, hunspell-te, mythes-pl, pentaho-reporting-flow-engine, mythes-de, mythes-es, hunspell-as, hunspell-fa, hyphen, hunspell-uk, mythes-el, hyphen-hi, mythes-hu, hyphen-or, hyphen-mr, hunspell-xh, hyphen-pa, libserializer, poppler-data, hunspell-mr, hspell, hunspell-st, hunspell-ru, libfreehand, hunspell-ca, hyphen-fr, hunspell-bn, gstreamer1-plugins-base, twolame, libcdr, Box2D, liborcus, hyphen-ml, hunspell-sl, javapackages-tools, librepository, libstaroffice, libfonts, v4l-utils, rasqal, voikko-fi, hyphen-kn, mythes-uk, mythes-bg, hyphen-pt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms boost-b2-1.75.0-8.el9.s390x.rpm 792c5aadc8c86ff105edd4f7ba08b1ac850f788ae4d51422e8296f6cef367ed3 boost-build-1.75.0-8.el9.noarch.rpm 7434dfea46f9bd571b3675bb4c303de6597ad7ba8de42b4faef7e5824e9a36e8 boost-doc-1.75.0-8.el9.noarch.rpm e5080e6bb50f4ae84b97ff3681e6d5d80b6337ca035c88b4f2f3770a1205cf0c boost-doctools-1.75.0-8.el9.s390x.rpm efc88902add9c9ee7bdd094b3708ae5ae1c706c81b1b126e7c64de3d9c1e61ec boost-examples-1.75.0-8.el9.noarch.rpm f3904eec06577458543173a6e0b913a0baae3f378e034fa6b63eadb46b3e17f2 boost-static-1.75.0-8.el9.s390x.rpm cbd783d86a406303407004d86046e398434e0f158571e65d26f84a13f51863f4 clucene-core-devel-2.3.3.4-42.20130812.e8e3d20git.el9.s390x.rpm 272242907e5fe687f343bbce927767fc0c5b99b5a9d6b4a22a0493b98806fe3d dconf-devel-0.40.0-6.el9.s390x.rpm 3755c781269863b994f3e0ef9511795e612983de0a50a16cf58dd74650f93c5f google-noto-sans-symbols2-fonts-20201206-4.el9.noarch.rpm dd615d5f24abcfa7b0cd668e079d1cc26472634251956c335daac0e57eb4cdf7 javapackages-generators-6.0.0-3.el9.noarch.rpm 317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30 javapackages-local-6.0.0-3.el9.noarch.rpm 8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8 libeot-0.01-18.el9.s390x.rpm 388ef9201b24934df5255e66067496812de3022e26fcf66cd3124564a706ad17 libetonyek-devel-0.1.10-2.el9.s390x.rpm 0d10a061ddd531e8f25036fc7ecb64519f44ee60f8f8a286900659c60d5fc9bf libfontenc-devel-1.1.3-17.el9.s390x.rpm 7276dfe266d1daa39e319a5253792005f9b7819049b61a2cb27950ab8dd452e5 libodfgen-devel-0.1.8-4.el9.s390x.rpm 27f397d7e75ae5a2e656b76d64cd19111cd776fe535dfa09cce4f1a4734f418c librevenge-devel-0.0.4-22.el9.s390x.rpm 220228e96cb5184bb5bf03979f0b49abb8c73a80c834c408d311bff7d80c88b9 libshout-devel-2.4.3-7.el9.s390x.rpm c871d80a3529df2b4970cf37dacb3d60cdc00a91d3c79ff63e54b941c2c9fb7b libv4l-devel-1.20.0-5.el9.s390x.rpm 54a9816a5d0e294ca88d578d158258fd2b9a2d4da29a0539388bb48089dad3d3 libvisio-devel-0.1.7-9.el9.s390x.rpm 73ef9b46417aa25fa8b13229bdd7441b9f55d3ceceffe4b7b79c06bfee117936 libvoikko-devel-4.3-7.el9.s390x.rpm f343a0c55ff4eec86c2225f819853622869f0d124f2e4eebd28a6e0798f85cb1 libwpd-devel-0.10.3-10.el9.s390x.rpm 254fe8a017fdd075518ce14f8d6510ddc097044fbf001dd8b2dc14f432e3a625 libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 libwpg-devel-0.3.3-8.el9.s390x.rpm 8bb8e34ece5bedf26fae7a4c7a6650fd736e6cf721ce453749e1e5c98af21a3b libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 libwps-devel-0.4.12-4.el9.s390x.rpm 7f42c7f24fdf3b73e7382546d4c13457e6714d4e536e1f443c04e5342dd1ee11 libwps-doc-0.4.12-4.el9.noarch.rpm a57cc3f098bec98c980281bf98395ecd53c2f63d364e03fabd653f02ca29a8cf mariadb-connector-c-test-3.2.6-1.el9_0.s390x.rpm aadcc8cd815e4504aa02602a2e37ddf6b44af195ec53a28416fba043f2d22f74 maven-local-6.0.0-3.el9.noarch.rpm 1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878 neon-devel-0.31.2-11.el9.s390x.rpm 4bb2868acc4bd7e4c927fb56544cd4c2b1b6ff3f52cce0943d66e2332590bac4 openjpeg2-devel-2.4.0-7.el9.s390x.rpm f6eb536051cff8754cd5b152b0a17af203cae42e2a06684437aa20cd2a43e6bd openjpeg2-tools-2.4.0-7.el9.s390x.rpm 1f099ac042ebd676f569d003baeb5d7f5a410fc89a1ee4414b6fcb36267d6215 poppler-cpp-devel-21.01.0-13.el9.s390x.rpm 820498fcf09645c7c24bdee1fcad83474e196cf93a98eac339221a5ecd6dd368 poppler-devel-21.01.0-13.el9.s390x.rpm 01ee99613314efee26f9f34f2f0067606cd545b805827376167a1cacac925ae7 poppler-glib-devel-21.01.0-13.el9.s390x.rpm 2d0874ae5a16ba0842c0e85b55b219fa7377b899d32b6f7278e5bac21c02edfc poppler-qt5-devel-21.01.0-13.el9.s390x.rpm 4df63c308b1bee99d88571abba5ecabf3304582ff8b35d97577c8ef425daf44c python3-javapackages-6.0.0-3.el9.noarch.rpm 899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2 raptor2-devel-2.0.15-30.el9.s390x.rpm bf4f3f564fc8ba7cc0d5ed70f64385b9fd4ff9d13510b342bd8e392ddd7f15ae rasqal-devel-0.9.33-18.el9.s390x.rpm ddd1f54351d5e1c3c79a2d0b893d77fd75a911b97d6a0023393d555580130a9a redland-devel-1.0.17-29.el9.s390x.rpm cffadabcdd6f803afa4ef53dd793fbbff1b0b45bdf74aaaacfd1c5985036bb75 taglib-devel-1.12-6.el9.s390x.rpm c2aa646848eb219c6e71be5dbefe8ca2048b9f5208906022e99d76e1b46521ec twolame-devel-0.3.13-19.el9.s390x.rpm 894920ca21af59e604f710efba5162e98ced35c3ed960db85e54d66cbd8b31f9 xmlsec1-devel-1.2.29-9.el9.s390x.rpm 3848fc810c01c11b22afefd787f98ea5638707b18266bf19a913e413126e3f51 xmlsec1-gcrypt-1.2.29-9.el9.s390x.rpm cc1d919404f28a7c8003a1a18ed2db0a3986065eedadf393d4b7d64a4b338a3e xmlsec1-gnutls-1.2.29-9.el9.s390x.rpm 47ce7d45a12e935cdfdcb3bb7b5801f9cf6fe7e20f78f2ffc6d2f946ac467015 xmlsec1-gnutls-devel-1.2.29-9.el9.s390x.rpm f80f8230d766ff95bfb8e70e284679e97381dab8350d4fdcfb6d5a4de5204444 xmlsec1-openssl-devel-1.2.29-9.el9.s390x.rpm 3be027adf3872c1439ece1c90a7d4de2665fab0b4b178071c5402a4a3b35185d yajl-devel-2.1.0-21.el9.s390x.rpm d8c6ed7e491b56d573e81c389dd2ac4cfeb5c5c1dc6c7603641a0b02397f8bf0 RLBA-2022:8440 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mutter. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Mutter is a compositing window manager that displays and manages desktop through OpenGL. It combines the window-management logic inherited from the Metacity window manager with a display engine that uses the Clutter toolkit. Bug Fix(es) and Enhancement(s): * [AMDCLIENT 9.1 Bug] [Lenovo]When switch to some resolutions will be black screen [Rocky Linux-9.1.0.z] (BZ#2136747) rocky-linux-9-s390x-crb-rpms mutter-devel-40.9-10.el9_1.s390x.rpm 19075ad0443b4169849a3aa291450d99daaad059748f29076692d76f54221835 RLSA-2022:8453 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for device-mapper-multipath. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The device-mapper-multipath packages provide tools that use the device-mapper multipath kernel module to manage multipath devices. Security Fix(es): * device-mapper-multipath: Regression of CVE-2022-41974 fix in Rocky Linux (CVE-2022-3787) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms device-mapper-multipath-devel-0.8.7-12.el9_1.1.s390x.rpm 06eabb6ddd67a38cf4e918becabe8a13408102c10caba884b54928728f16cb56 RLSA-2022:8493 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: local privilege escalation via the multiprocessing forkserver start method (CVE-2022-42919) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3-debug-3.9.14-1.el9_1.1.s390x.rpm 6ca335ce3ee0ffec508cc3f6813c08a55eccec90ebb972d2ca6f6b3cb49184f2 python3-idle-3.9.14-1.el9_1.1.s390x.rpm 7f76f98c861412108323bc5876688901da47ca878719692fe973ae4d8c21ddd3 python3-test-3.9.14-1.el9_1.1.s390x.rpm fb0974a7b37101575a765fe25be1eb1f66036eb8fa73130542fec412770ea1e2 RLBA-2022:2549 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for wireshark. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms wireshark-devel-3.4.10-1.el9.s390x.rpm a3e261cd7e44c389225be99ffcc669632b82874194ca1103dcb5f8eed5bfb49f RLSA-2022:8643 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for varnish. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fix(es): * varnish: Request Forgery Vulnerability (CVE-2022-45060) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms varnish-devel-6.6.2-2.el9_1.1.s390x.rpm 668ae979d32407a65ebceb12299d0d420e5a4c14d562b94f3fc1d180b8dd81d2 RLBA-2023:0947 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipset. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The ipset packages provide the ipset utility and the ipset service to manage IP sets in the Linux kernel. Depending on the type, an IP set may store IP addresses, networks, (TCP/UDP) port numbers, MAC addresses, interface names or combinations of them in a way that ensures high speed when matching an entry against a set. Bug Fix(es) and Enhancement(s): * systemctl restart ipset extremely slow restoring large saved set (BZ#2043008) rocky-linux-9-s390x-crb-rpms ipset-devel-7.11-7.el9_1.s390x.rpm 479f778bee1a0381a3f2f645d5cb4a6279f026d4554548f592dad2a2f573428b RLBA-2023:0948 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnetfilter_conntrack. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

libnetfilter_conntrack is a userspace library providing a programming interface (API) to the in-kernel connection tracking state table. Bug Fix(es) and Enhancement(s): * conntrack -D with filters sometimes ignores the filters and deletes all connection state (BZ#2122641) rocky-linux-9-s390x-crb-rpms libnetfilter_conntrack-devel-1.0.8-5.el9_1.s390x.rpm 38bbc302d98fb47e33d759be2ce218a32222a488b4bf81304ea49e527060ed16 RLBA-2023:0950 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nftables. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

nftables provides a packet-filtering tool, with numerous improvements in convenience, features, and performance. It is the designated successor to iptables, ip6tables, arptables and ebtables. Bug Fix(es) and Enhancement(s): * RFE: Document why nft ipsec out ip daddr fail to match with xfrmi topo (BZ#1806431) * Make upstream test suite pass (BZ#1973687) * Prevent port-shadow attacks in sample nat config (BZ#2061940) * nftables set concatenation match (ether saddr . vlan id) displays wrong (BZ#2094887) * nftables denies rule with explicit ether type match and VLAN ID in set concatenation (BZ#2094890) * nft asserts if set concatenation contains a constant (BZ#2094894) * nftables add ipsec rule fail (BZ#2113874) * NFT delete element rule return false value. (BZ#2115627) * nft: netlink_delinearize.c:2695: netlink_delinearize_rule: Assertion `pctx->table != NULL' failed. (BZ#2130721) rocky-linux-9-s390x-crb-rpms nftables-devel-1.0.4-9.el9_1.s390x.rpm 48f8a6ff9030e10a01a0815695ee0f723322ea44f77343eec71783060dbe6a3c RLSA-2023:0953 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * Python: CPU denial of service via inefficient IDNA decoder (CVE-2022-45061) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3-debug-3.9.14-1.el9_1.2.s390x.rpm d2da519d13429e858efe85e05eab1de87ec838e12ffddc1b9cc6d1c37d96e17c python3-idle-3.9.14-1.el9_1.2.s390x.rpm 2d3a7e651032240a6bc57126336ded8e404d77d018571558565cf3ecfda17821 python3-test-3.9.14-1.el9_1.2.s390x.rpm 29244e1c1f0170fb2e0fc80948f8f659a7b9c58305a4d376a4cc4f670cc0da4c RLBA-2022:2550 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for oniguruma. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms oniguruma-devel-6.9.6-1.el9.5.s390x.rpm f0b9bf59358a5d4c9ab9a5070c37b967f8736fb364f0b4a476385c870d2eb728 RLSA-2023:0957 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for lua. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language. Security Fix(es): * lua: use after free allows Sandbox Escape (CVE-2021-44964) * lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file (CVE-2021-43519) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms lua-devel-5.4.4-2.el9_1.s390x.rpm d52e9a7db8449b927abb8ea8804573b50775318aff21bac97ab0dd2a4da9c31e RLBA-2023:0964 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fixes: * libvirt doesn't catch mdevs created thru sysfs (BZ#2141364) * libvirt kills virtual machine on restart when 2M and 1G hugepages are mounted (BZ#2152083) * qemuAgentGetDisks cannot parse response from a guest agent running in Windows VM (BZ#2154410) Enhancement: * Backport the qemuDomainGetStatsCpu fallback Implementation (BZ#2157094) rocky-linux-9-s390x-crb-rpms libvirt-devel-8.5.0-7.4.el9_1.s390x.rpm 69169ca2ac50bda0440cbeb846f2de7a5edf39d8902bd7da51fe87d5d813b454 libvirt-docs-8.5.0-7.4.el9_1.s390x.rpm 873c68c099e3ce1a4b71fba5ad7d0da53bfd23a676a5b14de5300322bce515e0 libvirt-lock-sanlock-8.5.0-7.4.el9_1.s390x.rpm 55eab0c2355f45161d710a2874499e076283ccec94f626c83184a0898dc9943a RLSA-2023:0302 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libtiff. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * LibTiff: DoS from Divide By Zero Error (CVE-2022-2056, CVE-2022-2057, CVE-2022-2058) * libtiff: Double free or corruption in rotateImage() function at tiffcrop.c (CVE-2022-2519) * libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c (CVE-2022-2953) * libtiff: Assertion fail in rotateImage() function at tiffcrop.c (CVE-2022-2520) * libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c (CVE-2022-2521) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libtiff-tools-4.4.0-5.el9_1.s390x.rpm c511841692bca8981754a70383c77944fbc63157eb7360e79c70ae9618a492d9 RLBA-2022:2611 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libwacom. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libwacom-devel-1.12.1-2.el9.s390x.rpm 0815f09ace19ffb800b8f1a3af4a0d19226bd1396c9528a2b9fc5182d5fe295d RLBA-2023:2639 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for java-17-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Bug Fix(es): * All Rocky Linux versions now share a single OpenJDK build (RHBZ#2189326) * In FIPS mode, the list of cryptographic services and algorithms available is limited to those that are FIPS compliant. It was found that this filtering was too strict and was also excluding service attributes. These attributes are now made available in FIPS mode, as they are in non-FIPS mode. (RHBZ#2186803) * Previously, the XML signature provider was unable to operate in FIPS mode. Following recent enhancements to FIPS mode support, the XML signature provider can now be supported. It is now enabled in FIPS mode. (RHBZ#2186810) * The PKCS#11 provider used by FIPS mode can be supported by different PKCS#11 tokens. It was found that some PKCS#11 tokens may not be initialised fully before use, leading to an exception being thrown by the provider. With this release, this exception is now expected and handled by the FIPS support code. (RHBZ#2186806) rocky-linux-9-s390x-crb-rpms java-17-openjdk-demo-slowdebug-17.0.7.0.7-3.el9.s390x.rpm 5eb67a067a6cc87e612379645054a7ad8d780ca82dbe08be3bacc89d145b64c1 java-17-openjdk-devel-slowdebug-17.0.7.0.7-3.el9.s390x.rpm b662d5b03ee8a5dba6725a84498e3f272639d28468288e83500bbef9ca82d564 java-17-openjdk-headless-slowdebug-17.0.7.0.7-3.el9.s390x.rpm c0d1f228e3529b188d48ee2b387b824e8f2c673460f84f9aa33c4d9a8fe4be2e java-17-openjdk-jmods-slowdebug-17.0.7.0.7-3.el9.s390x.rpm 1b20449b46d3ce8135bb7bf4ed693a48e83d64544668fcb2212bb872083e93f9 java-17-openjdk-slowdebug-17.0.7.0.7-3.el9.s390x.rpm d9776d46b69a64759dbb34ffc84f2b6adabf260cddf1b0ded78cd286a40fd461 java-17-openjdk-src-slowdebug-17.0.7.0.7-3.el9.s390x.rpm 241944a3e3b49f90d4ec5c99874c16bd133b49483a9999039865c34f05df879f java-17-openjdk-static-libs-slowdebug-17.0.7.0.7-3.el9.s390x.rpm 92d69202ad8a02b46f30ee83e635fb4493e83775668df36be8a9229408be32c4 RLBA-2023:2640 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for java-11-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Bug Fix(es): * All Rocky Linux versions now share a single OpenJDK build (RHBZ#2189325) rocky-linux-9-s390x-crb-rpms java-11-openjdk-demo-slowdebug-11.0.19.0.7-4.el9.s390x.rpm d5c0b012e11335c868431fcbbca4fd1b90e902ba1dcb2e62a6e8abdfdcb68e39 java-11-openjdk-devel-slowdebug-11.0.19.0.7-4.el9.s390x.rpm 7bb81a22396bb4806bbff00422ce0268dfdf35fbee5ffa7f5f12b1e0613d615c java-11-openjdk-headless-slowdebug-11.0.19.0.7-4.el9.s390x.rpm 11d28e00a2433a2e04e422a79613e311f74f45e7940b4c5e1832831bc041af59 java-11-openjdk-jmods-slowdebug-11.0.19.0.7-4.el9.s390x.rpm fd689f1f950c26c906948109b1cc90e1e31394bedc8fea0711c13b51e7a8f7f6 java-11-openjdk-slowdebug-11.0.19.0.7-4.el9.s390x.rpm a50748aa01e45bb3fec4223d0ed1214be843420b5b6b065d160db8dbff57e057 java-11-openjdk-src-slowdebug-11.0.19.0.7-4.el9.s390x.rpm 409429078e9268e4e74862c9154ee0acb8c3f00ff5dbb1f087a1182bb235ac58 java-11-openjdk-static-libs-slowdebug-11.0.19.0.7-4.el9.s390x.rpm fa18358065716fa005285a2c41ef4e5229490b7c004c3a1007e8e6a3b6816776 RLBA-2023:2643 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for util-linux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Bug Fix(es): * Backport hint about systemd daemon-reload (BZ#2180441) rocky-linux-9-s390x-crb-rpms libfdisk-devel-2.37.4-11.el9_2.s390x.rpm 054cb3d2b169e88a21509ab7383ae1597efc196496a20ec09f27d4bb0e1a89cd libsmartcols-devel-2.37.4-11.el9_2.s390x.rpm e999981a0c552155a6a0388e2b4d7fe030e176f8da992828f8a865fb509a622d RLSA-2023:0077 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for dotnet6.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.113 and .NET Runtime 6.0.13. The following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.113). (BZ#2154459) Security Fix(es): * dotnet: Parsing an empty HTTP response as a JSON.NET JObject causes a stack overflow and crashes a process (CVE-2023-21538) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.113-1.el9_1.s390x.rpm 63f80834b0053df4315f6e16302259643f3874b565f528e5550aede52639003a RLBA-2023:2578 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for file. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms file-devel-5.39-12.el9.s390x.rpm 07f9b55e883355ec34d8b0f7ad76bdcbd968096dbfe809d20e207350fba71aea RLSA-2023:4099 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: named's configured cache size limit can be significantly exceeded (CVE-2023-2828) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms bind-devel-9.16.23-11.el9_2.1.s390x.rpm 0820b5713f6e00484b5a0f4c0fedd87f9b8e0234122006fca36890aa2cd03a8b bind-doc-9.16.23-11.el9_2.1.noarch.rpm 20ee083d8fb6047b1e6e360485045d533a07dccc725f7edbccf65103c6854c09 RLBA-2023:4374 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for java-11-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Bug Fix(es): * The recent OpenJDK 11.0.20 security update accidentally removed a runtime dependency on the tzdata-java package. Installations of the package on systems that did not already have tzdata-java installed were left with missing timezone data. This mistake is rectified in this build. (RHBZ#2224428) For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms java-11-openjdk-demo-slowdebug-11.0.20.0.8-3.el9.s390x.rpm 861af58e65d7af84c34f21da3cf7645274936ab25de6581fdd3253c60b4e4101 java-11-openjdk-devel-slowdebug-11.0.20.0.8-3.el9.s390x.rpm 2bfb2529051ec71bdee1d56fcbaf6cc120d42914443f8c341b87c88f615a4ded java-11-openjdk-headless-slowdebug-11.0.20.0.8-3.el9.s390x.rpm 67cd79ef5f77441af4f1056c580c56e721bb570783e9ad0e31637b7c32df36b0 java-11-openjdk-jmods-slowdebug-11.0.20.0.8-3.el9.s390x.rpm bbfdf44a4e4cb5c476b76120581d9652f645cb2dfae65ea3d7a8feaa387b41bf java-11-openjdk-slowdebug-11.0.20.0.8-3.el9.s390x.rpm 26976d7547b5bd8e6e838a70e4cdcb1cc2b85748730bf1e999c9b844194dadf7 java-11-openjdk-src-slowdebug-11.0.20.0.8-3.el9.s390x.rpm 7ad4ecb48413db5567511bc40a2b84bc4af298bdb84b10c57d0a36fca07ea7b7 java-11-openjdk-static-libs-slowdebug-11.0.20.0.8-3.el9.s390x.rpm c6b4c356581965d9e3a6b0aefb2aebf56d80d84acfd05be41a4210e09d082747 RLBA-2023:4375 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ostree. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es): * backport https://github.com/ostreedev/ostree/pull/2874/commits/de6fddc6adee09a93901243dc7074090828a1912 (BZ#2224105) rocky-linux-9-s390x-crb-rpms ostree-devel-2023.1-6.el9_2.s390x.rpm 3e7d129e620a8b1ee3435f675f533824f466c2b9983959f44dabdf5830250c5d RLSA-2023:3595 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: urllib.parse url blocklisting bypass (CVE-2023-24329) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3-debug-3.9.16-1.el9_2.1.s390x.rpm fed8654230bfd64b4e468dfe1bb1965058894174f4652207ce4dcdbaeecf5ddf python3-idle-3.9.16-1.el9_2.1.s390x.rpm 1f8b68ced10a86476a5a662d28382c426e07185728565e99eb26bb3df268b03b python3-test-3.9.16-1.el9_2.1.s390x.rpm 3035fa97b80e170d4127d7253365406f951d60f945b1c4dfdfc97f6cab509dfd RLBA-2023:3730 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for avahi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other people to chat with, view printers to print with, and find shared files on other computers. Bug Fix(es): * [Rocky Linux-9] Avahi-tools package built but not shipped. (BZ#2204487) rocky-linux-9-s390x-crb-rpms avahi-compat-howl-0.8-12.el9_2.1.s390x.rpm e1458a5393db37c7f88aba10fb551ecc3ac3398e53349384ab942b7d192a2bb0 avahi-compat-howl-devel-0.8-12.el9_2.1.s390x.rpm f6bb2830990a9aaffe98c778c431d643ceb4e7e21611031f42f69154dc71bb4c avahi-compat-libdns_sd-0.8-12.el9_2.1.s390x.rpm fa0296cef8bd172af1a9dc52b9ebce73cf897ae08539a4d400b38cd934956cc3 avahi-compat-libdns_sd-devel-0.8-12.el9_2.1.s390x.rpm 00bd09575271ad3235cc19bae6dcd529b44cd2783bf1f017d264a33f35fef5da avahi-devel-0.8-12.el9_2.1.s390x.rpm fd130832e7b1e4a81a7b6f97e5dc76a10a5aa5dcf41b4314c566ee119df0a171 RLSA-2023:3423 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for cups-filters. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently. Security Fix(es): * cups-filters: remote code execution in cups-filters, beh CUPS backend (CVE-2023-24805) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms cups-filters-devel-1.28.7-11.el9_2.1.s390x.rpm 0e11c02db0f45d87714ae95485481cf7b7dc787514782caa431515bb8d07b68c RLSA-2023:3585 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. Security Fix(es): * python: urllib.parse url blocklisting bypass (CVE-2023-24329) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.11-debug-3.11.2-2.el9_2.1.s390x.rpm 23b42dd3ba8ef1bfd1ca72d95ff8155aefc6c19565d31ea882dc289eb15c0871 python3.11-idle-3.11.2-2.el9_2.1.s390x.rpm 36ed8ac9a1e6abd380c55f439eaa2d6fdf789d4d03f54d4de18aef3a8b34a315 python3.11-test-3.11.2-2.el9_2.1.s390x.rpm f6fd8250c0a84dad937b9e59710dfaa20b55f76a27bbc2952f889676d658f0f5 RLSA-2023:3711 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libtiff. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * libtiff: heap-based buffer overflow in processCropSelections() in tools/tiffcrop.c (CVE-2022-48281) * libtiff: out-of-bounds read in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0795) * libtiff: out-of-bounds read in extractContigSamplesShifted24bits() in tools/tiffcrop.c (CVE-2023-0796) * libtiff: out-of-bounds read in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c (CVE-2023-0797) * libtiff: out-of-bounds read in extractContigSamplesShifted8bits() in tools/tiffcrop.c (CVE-2023-0798) * libtiff: use-after-free in extractContigSamplesShifted32bits() in tools/tiffcrop.c (CVE-2023-0799) * libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0800) * libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c (CVE-2023-0801) * libtiff: out-of-bounds write in extractContigSamplesShifted32bits() in tools/tiffcrop.c (CVE-2023-0802) * libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0803) * libtiff: out-of-bounds write in extractContigSamplesShifted24bits() in tools/tiffcrop.c (CVE-2023-0804) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libtiff-tools-4.4.0-8.el9_2.s390x.rpm ca174e87d64bf1d2069ae58a963744b1133363ecb6d465c435f997219b94d6fa RLSA-2023:3715 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fix(es): * libvirt: Memory leak in virPCIVirtualFunctionList cleanup (CVE-2023-2700) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libvirt-client-qemu-9.0.0-10.2.el9_2.s390x.rpm 19c08609e531cc630181c5292139bfab5c3d3ba6c8e078e24ccd081a28fd2962 libvirt-devel-9.0.0-10.2.el9_2.s390x.rpm 2a867108ec9924bc8de545a5e7e2a88b211439a8cce9dc38f545aac7003fce99 libvirt-docs-9.0.0-10.2.el9_2.s390x.rpm f6f38bca63bdb1dbb455ddc089c7f826af4c13130604d2bcf4b6b307b4afdbd7 libvirt-lock-sanlock-9.0.0-10.2.el9_2.s390x.rpm 71f4aca27748e7eb98e722698adca007c95cc0c93130a6d90d18875179af6653 RLSA-2023:3714 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for postgresql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: schema_element defeats protective search_path changes (CVE-2023-2454) * postgresql: row security policies disregard user ID changes after inlining. (CVE-2023-2455) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms postgresql-docs-13.11-1.el9_2.s390x.rpm f7adc23f3d642c2b2fbb7094ac037356e4019ac78ab2e39bf6a276993fdc0a83 postgresql-private-devel-13.11-1.el9_2.s390x.rpm 60974c9170c6088fe72bb73d3d55e0917161b7489dfb9d023ee79a3417dd20c2 postgresql-server-devel-13.11-1.el9_2.s390x.rpm b0e80c8572f959ea7b66fda20b4e33c1c2483b5b45eb64c55f594cfd1507119b postgresql-static-13.11-1.el9_2.s390x.rpm 642b9249cd497fd37f3994b6593e6d08dd2b862aabac34281df14693e88034fa postgresql-test-13.11-1.el9_2.s390x.rpm 7bdb377a163ba1f8a2912aaeedbf02405e13e1a29e97357ecb3ad1d1506eae19 postgresql-upgrade-devel-13.11-1.el9_2.s390x.rpm 418a3bcff8d05e8863d26d9c48fa3de7ecd21fd6d536081cb40db2fc4e58aef5 RLBA-2023:3720 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for criu. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The criu packages provide the Checkpoint/Restore in User Space (CRIU) function, which provides the possibility to checkpoint and restore processes or groups of processes. This in turn allows improved fault tolerance or high availability (HA) of a system by restoring a failed process to its state in an earlier point in time. Bug Fix(es) and Enhancement(s): * Containers migration "podman container checkpoint" doesn't work on Sapphire Rapids CPU. (BZ#2203235) rocky-linux-9-s390x-crb-rpms criu-devel-3.17-5.el9_2.s390x.rpm 0653b570b5ef070fd782c1a627e74c584d9f5e5a5c30277f23793e23f14c1982 RLSA-2023:5214 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for libwebp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Security Fix(es): * libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libwebp-tools-1.2.0-7.el9_2.s390x.rpm c97e7e3ff2ba67f07c01283bc91ecc93e1c3c7d79b71c8b54eeb6ddb2e6aadb4 RLSA-2023:5924 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for varnish. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fix(es): * HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms varnish-devel-6.6.2-3.el9_2.1.s390x.rpm 157652d78c87898feb827d2034f84b54d2999b47a46e2f2d8206d6c25846d36c RLSA-2023:5708 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for dotnet6.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET 6.0 to SDK 6.0.123 and Runtime 6.0.23. Security Fix(es): * HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.123-1.el9_2.s390x.rpm 350c445248a19d1a035d4c643b2790b2b7740a2593201443f8567e942bc49c7f RLSA-2023:6746 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for nghttp2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C. Security Fix(es): * HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libnghttp2-devel-1.43.0-5.el9_2.1.s390x.rpm 53b5725899d90e67e1b199fd5a2f4e26ee1a57a19a549935fdde2be0f823e27d nghttp2-1.43.0-5.el9_2.1.s390x.rpm 22176c50cd70f96e303b28b778effe1201c59f7c3be7b25533905706ea9d28d5 RLSA-2024:2758 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation (CVE-2023-6240) * CVE-2024-25743 hw: amd: Instruction raise #VC exception at exit (AMD-SN-3008,CVE-2024-25742,CVE-2024-25743) Bug Fix(es): * ffdhe* algortihms introduced in 0a2e5b909023 as .fips_allowed=1 lack pairwise consistency tests (JIRA:Rocky Linux-27009) * mm/mglru: fix underprotected page cache (JIRA:Rocky Linux-29235) * [EMR] [TBOOT OS] SUT could not go to S3 state with Rocky Linux 9.2 Tboot OS One CPU return -16 running BUSY (JIRA:Rocky Linux-29673) * system hangs completely - NMI not possible (JIRA:Rocky Linux-30678) * ice 0000:6f:00.0: PTP failed to get time (JIRA:Rocky Linux-30110) rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.16.1.el9_4.s390x.rpm 96e52f64067663c695155df760310d34e2f21a207bad45b9009de8193f1aa4e9 libperf-5.14.0-427.16.1.el9_4.s390x.rpm 7ce10cebcec69f90e9e77f1720a1cd2a3ebb9bdcd2ab7d85d27afde48a0c7844 RLSA-2024:1828 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-21-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fix(es): * OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011) * OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068) * OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) (CVE-2024-21012) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms java-21-openjdk-demo-slowdebug-21.0.3.0.9-1.el9.s390x.rpm ad2e98754be1ba530aeca5079ce60f7dbd2d21bd0c1b474096c6851e4256f041 java-21-openjdk-devel-slowdebug-21.0.3.0.9-1.el9.s390x.rpm 116e02211437c7c55432820d5ee54be9210126e69fbc099bc37a322b5fbfa901 java-21-openjdk-headless-slowdebug-21.0.3.0.9-1.el9.s390x.rpm c3bf0175e8092f5dfa028411eab8963934f54366ef1b0f433b9277ace5d176eb java-21-openjdk-jmods-slowdebug-21.0.3.0.9-1.el9.s390x.rpm e2ea7ff4518a358cd4b510c2b12914a6ab057262797b800b7ec45f0a7e6a92f5 java-21-openjdk-slowdebug-21.0.3.0.9-1.el9.s390x.rpm edec0cbee4546de40981de26bf03991ca8461889f39f83986190e5c7c3d66c1e java-21-openjdk-src-slowdebug-21.0.3.0.9-1.el9.s390x.rpm ed2a96a9174a07dc7b5396a996a15887d098291bf94ba671b834a32c45a7749b java-21-openjdk-static-libs-slowdebug-21.0.3.0.9-1.el9.s390x.rpm 3ba89c81f62b11396aa464c77b87c064af78c1bb17b270fe7d198641311fc599 RLSA-2024:1822 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-11-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011) * OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068) * OpenJDK: Pack200 excessive memory allocation (8322114) (CVE-2024-21085) * OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507) (CVE-2024-21094) * OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) (CVE-2024-21012) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms java-11-openjdk-demo-slowdebug-11.0.23.0.9-3.el9.s390x.rpm aff40b39e497dd6b0134cc9ecfe8583565baa5a2e498086163a409f3351b18ce java-11-openjdk-devel-slowdebug-11.0.23.0.9-3.el9.s390x.rpm 0ddf72c91d4f9afaacd8c60fad6c53e702a447d00e0b5b17048b4346ee60763c java-11-openjdk-headless-slowdebug-11.0.23.0.9-3.el9.s390x.rpm a646817688d5a0b16258f96006e6a5a15a181fd898e6bf82e5c3881f1d4068b8 java-11-openjdk-jmods-slowdebug-11.0.23.0.9-3.el9.s390x.rpm 928e3848614f16294a57760201ca6fc0dd4f5aa02c10edc17e9a3bbd8c344990 java-11-openjdk-slowdebug-11.0.23.0.9-3.el9.s390x.rpm 7c30f91c2e1b4b524b86de5c0a4faf3bed910fb336b17667b68375937cb6b9ae java-11-openjdk-src-slowdebug-11.0.23.0.9-3.el9.s390x.rpm 658cbf9629041816b7b292bc15bd489d2ba570f72e722a2b5862fb5600c73968 java-11-openjdk-static-libs-slowdebug-11.0.23.0.9-3.el9.s390x.rpm 67670b321eeefa28c468038e0017beaf2c536650ae2a1c49f5e66788bb861797 RLBA-2024:2403 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gcc-plugin-devel-11.4.1-3.el9.s390x.rpm c0c2f75e2e51544b8c6f97b678d0d4c5ef9d793fdc30f6f0401fa582ba7979ae libstdc++-static-11.4.1-3.el9.s390x.rpm e56f9ba2e019af6e7f35f2202aad797ae021ddb6731cfa075304119d5960e554 RLBA-2024:2411 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for e2fsprogs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libss-devel-1.46.5-5.el9.s390x.rpm 58eb20989654403e08c3fe91316a4dfd43574729b863dbc717fe2369b9f61695 RLEA-2024:2424 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnvme. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnvme-devel-1.6-1.el9.s390x.rpm 7130418771d3aae5db4ffbf5a7add7a397ed7c6e0becf36356dc19b3fa8d35d1 RLBA-2024:2428 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glib2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms glib2-static-2.68.4-14.el9.s390x.rpm 1d5f0b1f1e482f2ccae944cf25d66aa290c0cb28c5727e5f5af5aa71242acd04 RLBA-2024:2439 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsemanage. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsemanage-devel-3.6-1.el9.s390x.rpm 0745f740f850565f5d83f63d682d978f1f24281152d94b13b546e3225b49687e RLBA-2024:2440 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsepol. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsepol-static-3.6-1.el9.s390x.rpm cbf44b0b03434009040b14281d743335987b8eb977629d10b933a6af6d9f45c9 RLBA-2024:2468 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtalloc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtalloc-devel-2.4.1-1.el9.s390x.rpm 230a66252d38aaca8d3c19add5ad61a7648f9b41060d7d0afaf8c20fb61a7833 RLBA-2024:2467 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for hwdata. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms hwdata-devel-0.348-9.13.el9.noarch.rpm 58c4eaf9977c6f04c1eedc31774ca3ed6426326b913654fb73d5ba1d51944c92 RLBA-2024:2472 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtdb-devel-1.4.9-1.el9.s390x.rpm 07c7c882200562bfadf13ba01e7531f5db1913d5b8ef42e13917228754e9ba75 RLBA-2024:2493 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nftables. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms nftables-devel-1.0.9-1.el9.s390x.rpm c229b979a146aee5ea52b3a9c7ca0fab5b3deb1f6134be22a19bf8cc1e61b0e5 RLBA-2024:2489 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libbpf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libbpf-devel-1.3.0-2.el9.s390x.rpm 7537fb43008402d4a5c5c452bbe7a726758114f7f60141524c8152f35eea70b4 libbpf-static-1.3.0-2.el9.s390x.rpm 8fd1a63986c046752a2e952eec35a9747a4bc817a190e9a3767f227d4a89c276 RLBA-2024:2497 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lvm2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms device-mapper-devel-1.02.197-2.el9.s390x.rpm 07455043ac899b24e5027b0ac115ff72af1073f0a90f7f7b74d837187204c737 device-mapper-event-devel-1.02.197-2.el9.s390x.rpm 7031f24a4a804d6e61840615c6e78b2dbf1de62f21f5c62a2a05fa9d936987ad lvm2-devel-2.03.23-2.el9.s390x.rpm d025a0cbce5b81cce7aaacf9f85a86c8c0263fde507bbcce2d51903accdacb2e RLBA-2024:2510 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtirpc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtirpc-devel-1.3.3-8.el9_4.s390x.rpm fa5a41a20b10354f3cba952591648da89cb42c1a7c4be085bf48467170a11b8c RLBA-2024:2515 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for iproute. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms iproute-devel-6.2.0-6.el9_4.s390x.rpm a402dafa4d75362c1d8802dfe7dda2fceaefb06c8b838afc2124792c742ff44d RLSA-2024:2571 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Security Fix(es): * sssd: Race condition during authorization leads to GPO policies functioning inconsistently (CVE-2023-3758) Bug Fix(es): * socket leak (JIRA:Rocky Linux-22340) * Passkey cannot fall back to password (JIRA:Rocky Linux-28161) * sssd: Race condition during authorization leads to GPO policies functioning inconsistently (JIRA:Rocky Linux-27209) rocky-linux-9-s390x-crb-rpms libsss_nss_idmap-devel-2.9.4-6.el9_4.s390x.rpm 83c34df816208251c9e5cf5f38271ed9eb357a6471ac7a009f197c23e2859ddd RLBA-2023:6326 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libstoragemgmt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libstoragemgmt-devel-1.9.7-2.el9.s390x.rpm 77ca33ffca0e390d08580ec54ceb27dfd471e79b5d0cd5f1dbe0a88a5f16c55e RLEA-2023:6416 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libblkio. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libblkio-devel-1.3.0-1.el9.s390x.rpm 7363d498bf45aa416d36f816d6ae75f95f36a78d704cef83e52ccc30be721efd RLSA-2023:6518 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for flatpak. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. The following packages have been upgraded to a later upstream version: flatpak (1.12.8). (BZ#2221792) Security Fix(es): * flatpak: TIOCLINUX can send commands outside sandbox if running on a virtual console (CVE-2023-28100) * flatpak: Metadata with ANSI control codes can cause misleading terminal output (CVE-2023-28101) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms flatpak-devel-1.12.8-1.el9.s390x.rpm d275e49daac5ff58e09d66bf9de9eccbecfdda59e9c0b8b29a821d15635d302d RLSA-2023:6551 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for yajl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. Security Fix(es): * yajl: Memory leak in yajl_tree_parse function (CVE-2023-33460) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms yajl-devel-2.1.0-22.el9.s390x.rpm b7015316345543da0da5ec67efdad7a0414096c9ae98ebd91f04ff001a55566b RLSA-2024:0951 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for postgresql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL (CVE-2024-0985) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms postgresql-docs-13.14-1.el9_3.s390x.rpm 8af9c84a60c936ca1ba82d308a15de0d2768fbee829be9298b506f0855cab2f5 postgresql-private-devel-13.14-1.el9_3.s390x.rpm 722ce8b55dc1192e58e2021bf5b34fdc254559f250daac38716e288e9aa40869 postgresql-server-devel-13.14-1.el9_3.s390x.rpm be01a894012de5f3a9c678366f4668e265a7bc5a0ecebab0ddc13af1e2f81904 postgresql-static-13.14-1.el9_3.s390x.rpm 734f6016f7310840cbc8e22e782f5fa5a909a99547a2b8723ccdca013bc05849 postgresql-test-13.14-1.el9_3.s390x.rpm 9fdbf18eb5fd6f624a4f4c5d81ea11faebd2dbd46d2d1bb5a5f0fa872f3c02e6 postgresql-upgrade-devel-13.14-1.el9_3.s390x.rpm 599477e65a31f516b4477168c79a73c965767bc0f35bf79cf9213633e7ff280b RLSA-2024:1691 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for varnish. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fix(es): * varnish: HTTP/2 Broken Window Attack may result in denial of service (CVE-2024-30156) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms varnish-devel-6.6.2-4.el9_3.1.s390x.rpm dd7ceaf144635dbd5781df42447fe546d803a1d84d2f9ee70d5caf721b2e907b RLBA-2024:1736 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotnet7.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 7.0 to SDK 7.0.118 and Runtime 7.0.18 [rhel-9.3.0.z] (Rocky Linux-31202) rocky-linux-9-s390x-crb-rpms dotnet-sdk-7.0-source-built-artifacts-7.0.118-1.el9_3.s390x.rpm 4e4ea71d1425830abab7a21d7a82865e5ff7bd66eec001185b7c24f1c1d3428a RLSA-2024:1750 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for unbound. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix(es): * A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. The default combination of the "control-use-cert: no" option with either explicit or implicit use of an IP address in the "control-interface" option could allow improper access. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged local process to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether. To mitigate the vulnerability, a new file "/etc/unbound/conf.d/remote-control.conf" has been added and included in the main unbound configuration file, "unbound.conf". The file contains two directives that should limit access to unbound.conf: control-interface: "/run/unbound/control" control-use-cert: "yes" For details about these directives, run "man unbound.conf". Updating to the version of unbound provided by this advisory should, in most cases, address the vulnerability. To verify that your configuration is not vulnerable, use the "unbound-control status | grep control" command. If the output contains "control(ssl)" or "control(namedpipe)", your configuration is not vulnerable. If the command output returns only "control", the configuration is vulnerable because it does not enforce access only to the unbound group members. To fix your configuration, add the line "include: /etc/unbound/conf.d/remote-control.conf" to the end of the file "/etc/unbound/unbound.conf". If you use a custom "/etc/unbound/conf.d/remote-control.conf" file, add the new directives to this file. (CVE-2024-1488) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms unbound-devel-1.16.2-3.el9_3.5.s390x.rpm 5bf8a3e0141d9c588c5db3e6b0ace38f5a68c4daa1479a64ce6d78fac0a102f7 RLBA-2024:2152 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for poppler. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms poppler-cpp-devel-21.01.0-19.el9.s390x.rpm 47d00c47691584d57d982349e3e6079a21255f23f822f3a1f3b57ab064a65bf7 poppler-devel-21.01.0-19.el9.s390x.rpm ef85ecd18124aa9c4b1fe0b6a25cf51ff348aabf67a9cad07ae1e7eb4281a115 poppler-glib-devel-21.01.0-19.el9.s390x.rpm 14e294df4bd5feb4168a8e2f13ed3b7fd063678842f14f42f3ef25fba3c2c595 poppler-glib-doc-21.01.0-19.el9.noarch.rpm b98f8763e4028928b011007b9d32f354d13a37a5235f0a62892a4e70c62f66de poppler-qt5-devel-21.01.0-19.el9.s390x.rpm 7002c92ba4c05d5df34131080a5b2c6f21979167894c4eca77d28361ef69fee5 RLBA-2024:2166 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xdp-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libxdp-devel-1.4.2-1.el9.s390x.rpm 0fc95d532ecb588864ef799ee1f43c32f6edb2f32a6d738ce12077c31bb02cb2 libxdp-static-1.4.2-1.el9.s390x.rpm cee26cce8dd9d8a2f1889ca64cf571965fbc6c24173fe2aeae3a7f4e89be9be8 RLBA-2024:2235 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ostree. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ostree-devel-2024.4-3.el9_4.s390x.rpm b9f636758d065a5f89390b72ff9e87f899eeefb66fecb1db31dd53e06bab9c49 RLBA-2024:2263 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mesa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms mesa-libOSMesa-23.3.3-1.el9.s390x.rpm 33579931fbda3cc61434790cff1468723ce828e74c2ce8c2014a8e9c2bda9775 mesa-libOSMesa-devel-23.3.3-1.el9.s390x.rpm a0e3a4438f98bc2abf8f29467f20c8742c2ebda2518b20fbf6c27c66d5ed7f34 RLBA-2024:2268 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for anaconda. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms anaconda-widgets-devel-34.25.4.9-1.el9_4.rocky.0.3.s390x.rpm 5c43547b166469cd56690f8c6eeae81e27e68b4e6b157df79f4d4fd673db9999 RLEA-2024:2269 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nbdkit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms nbdkit-devel-1.36.2-1.el9.0.1.s390x.rpm 76db6e49ea9cf1f23cade5893194858f7482e4119af56d81b5915ff0932fdf51 nbdkit-example-plugins-1.36.2-1.el9.0.1.s390x.rpm 640d72eaab30cac981feb22d9cbdda9cc5a4a839cea556841909114a7dd641ad nbdkit-srpm-macros-1.36.2-1.el9.0.1.noarch.rpm e1342ca81938949694ea20a66d9e26068f058c2ca03b6b19320ffd076c71e0f7 RLSA-2024:2287 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for gstreamer1-plugins-bad-free. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fix(es): * gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video (CVE-2023-40474) * gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with AES3 audio (CVE-2023-40475) * gstreamer-plugins-bad: Integer overflow in H.265 video parser leading to stack overwrite (CVE-2023-40476) * gstreamer-plugins-bad-free: buffer overflow vulnerability (CVE-2023-50186) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gstreamer1-plugins-bad-free-devel-1.22.1-4.el9.s390x.rpm e282996fd54e4ffd8003840edcd29175ff02ece43b56be1b1d00a3c5cb963b4a RLBA-2024:2371 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dovecot. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms dovecot-devel-2.3.16-11.el9.s390x.rpm 25362398616d821654f609ba5c87097df615a76e1cad5f5376ff08396ba743b7 RLEA-2024:2546 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for 389-ds-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Enhancement * [RFE] allows plugins to log multi-factor authentication notification (JIRA:Rocky Linux-30588) rocky-linux-9-s390x-crb-rpms 389-ds-base-devel-2.4.5-6.el9_4.s390x.rpm 87e451b5e026164449964371631836374146cda18d7689f90f55f87850fd3f63 RLSA-2024:2551 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for bind-dyndb-ldap, bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) * bind: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * bind: Specific recursive query patterns may lead to an out-of-memory condition (CVE-2023-6516) * bind: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution (CVE-2023-5679) * bind: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled (CVE-2023-5517) * bind: Parsing large DNS messages may cause excessive CPU load (CVE-2023-4408) Bug Fix(es): * bind-dyndb-ldap: rebuilt to adapt ABI changes in bind For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms bind-devel-9.16.23-18.el9_4.1.s390x.rpm 09975f3c8f5cdd6240bbc90330a3991f07a4ab257e0b164245d71ef685b85154 bind-doc-9.16.23-18.el9_4.1.noarch.rpm 8b6ceb2cff4a31dbfd4549385ffa41f8832ea282433d2f6a2cd9c436da71218f RLBA-2024:2554 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotnet8.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 8 to RC2 (JIRA:Rocky Linux-13785) * Update .NET 8 to 8.0.0 GA (JIRA:Rocky Linux-15860) * Update .NET 8.0 to SDK 8.0.101 and Runtime 8.0.1 (JIRA:Rocky Linux-19803) * RFE: add -dbg packages to ship complete symbol files (JIRA:Rocky Linux-23070) * Update .NET 8.0 to SDK 8.0.102 and Runtime 8.0.2 (JIRA:Rocky Linux-23804) * Don't set a locale when running msbuild Exec on Unix (JIRA:Rocky Linux-23936) * Update .NET 8.0 to SDK 8.0.103 and Runtime 8.0.3 [rhel-9] (JIRA:Rocky Linux-27553) * Follow-up for Rocky Linux-22734: CheckCertificateRevocationList flag for SHA1 CAs [rhel-9.4.0.z] (JIRA:Rocky Linux-28344) * Update .NET 8.0 to SDK 8.0.104 and Runtime 8.0.4 [rhel-9.4.0.z] (JIRA:Rocky Linux-31208) * Update .NET 8 to RC1 (JIRA:Rocky Linux-4073) rocky-linux-9-s390x-crb-rpms dotnet-sdk-8.0-source-built-artifacts-8.0.104-2.el9_4.s390x.rpm 22c4aa51262088152ffe29a74ef6f96a1a1927f2b01ec4e0b8e54212a2bbb0ee RLBA-2024:2552 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotnet6.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 6.0 to SDK 6.0.123 and Runtime 6.0.23 (JIRA:Rocky Linux-11675) * Update .NET 6.0 to SDK 6.0.124 and Runtime 6.0.24 (JIRA:Rocky Linux-14451) * Update .NET 6.0 to SDK 6.0.125 and Runtime 6.0.25 (JIRA:Rocky Linux-15349) * Update .NET 6.0 to SDK 6.0.126 and Runtime 6.0.26 (JIRA:Rocky Linux-19801) * Update .NET 6.0 to SDK 6.0.122 and Runtime 6.0.22 (JIRA:Rocky Linux-1995) * Update .NET 6.0 to SDK 6.0.127 and Runtime 6.0.27 (JIRA:Rocky Linux-23785) * Update .NET 6.0 to SDK 6.0.128 and Runtime 6.0.28 [rhel-9] (JIRA:Rocky Linux-27541) * Update .NET 6.0 to SDK 6.0.129 and Runtime 6.0.29 [rhel-9.4.0.z] (JIRA:Rocky Linux-31198) rocky-linux-9-s390x-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.129-2.el9_4.s390x.rpm 57ec5e4681126b94db6384a41361e74b742072f6f4f7f78ae34f43cd84638fb4 RLBA-2024:2556 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nmstate. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound. Bug Fix(es): * Support checkpoint on rollback when using global DNS of NetworkManager (JIRA:Rocky Linux-31190) * Include driver information in systemd network link file created by `nmstatectl persist-nic-names` (JIRA:Rocky Linux-32330) rocky-linux-9-s390x-crb-rpms nmstate-devel-2.2.27-2.el9_4.s390x.rpm cdf9e18de627d60f04d1e1414716536c34396c379708bdd408e0e2765e929928 nmstate-static-2.2.27-2.el9_4.s390x.rpm e72c1e4401f70b88d51c5b20706c50076acb3a05869d29490302a119a2b37f83 RLBA-2024:2558 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fix(es): * Enforce OTP for ldap bind (in some scenarios) (JIRA:Rocky Linux-23377) * Unable to re-add broken AD trust - NT_STATUS_INVALID_PARAMETER (JIRA:Rocky Linux-29745) * Backport latest test fixes in ipa (JIRA: Rocky Linux-30905) rocky-linux-9-s390x-crb-rpms python3-ipatests-4.11.0-10.el9_4.noarch.rpm 7725dac69c697105c653ca1561a9db64fc77128278183b1b7c5cb1efd9c3d65c RLSA-2024:2560 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: * libvirt: off-by-one error in udevListInterfacesByStatus() (CVE-2024-1441) * libvirt: negative g_new0 length can lead to unbounded memory allocation (CVE-2024-2494) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fixes: * libvirt: off-by-one error in udevListInterfacesByStatus() [rhel-9] (JIRA:Rocky Linux-25081) * libvirt: negative g_new0 length can lead to unbounded memory allocation [rhel-9] (JIRA:Rocky Linux-29515) rocky-linux-9-s390x-crb-rpms libvirt-daemon-plugin-sanlock-10.0.0-6.2.el9_4.s390x.rpm e89e04af84466d40ffe777b70dfa0cdd423217a6c8fb7b59012937def5142400 libvirt-devel-10.0.0-6.2.el9_4.s390x.rpm 97a1b443b0959409c42d06910d96dcd432b8668a6f8a5d990ea4e66cd53453d9 libvirt-docs-10.0.0-6.2.el9_4.s390x.rpm 968ca9e5606dcd150865c89a773cc3c3b927efe5c1fc794b5344d324873085f1 RLBA-2024:2446 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libica. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libica-devel-4.2.3-1.el9.s390x.rpm eecebe8a6b3d0af64d8f60023761fe32f78bfe998c62df94b56446056c13e0ba RLSA-2024:4573 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for java-21-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fix(es): * OpenJDK: RangeCheckElimination array index overflow (8323231) (CVE-2024-21147) * OpenJDK: potential UTF8 size overflow (8314794) (CVE-2024-21131) * OpenJDK: Excessive symbol length can lead to infinite loop (8319859) (CVE-2024-21138) * OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548) (CVE-2024-21140) * OpenJDK: Out-of-bounds access in 2D image handling (8324559) (CVE-2024-21145) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms java-21-openjdk-demo-slowdebug-21.0.4.0.7-1.el9.s390x.rpm ce74ae94030c0033f77baad16c8e02cede8a5a0203c6e8510c4923a10b3eceab java-21-openjdk-devel-slowdebug-21.0.4.0.7-1.el9.s390x.rpm accc6285b1a883a330e2d14c3de25e7e693d51d67026ca6772463bfd9b6b4f05 java-21-openjdk-headless-slowdebug-21.0.4.0.7-1.el9.s390x.rpm a7320766ffee44ddc729e7495dc3d00c95a6cd7953a06d0d3d29303b15e3a25f java-21-openjdk-jmods-slowdebug-21.0.4.0.7-1.el9.s390x.rpm 48e8456a7355095984fab0cfe5b859847e2b150265a53ec9edf20237e69b0bdd java-21-openjdk-slowdebug-21.0.4.0.7-1.el9.s390x.rpm e487bff0119aaeb2bf413b93f426623ca884b4531107e52ed76bd7d314b7d7a4 java-21-openjdk-src-slowdebug-21.0.4.0.7-1.el9.s390x.rpm e08ed99d3352fef14624bbc8d6e492013f5ba93ce5fbd704c7a61b385ab897d8 java-21-openjdk-static-libs-slowdebug-21.0.4.0.7-1.el9.s390x.rpm 4977d050aea56a175c8a0bf3d1bfcabd0a39dd61a9ba837669643e328d61f7f3 RLBA-2024:3983 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Bug Fix(es): * [DELL 9.4 BUG] - Screen shows garbage sometimes [rhel-9.4.z] (JIRA:Rocky Linux-36534) * cifs - Unable to mount CIFS shares after upgrading to Rocky Linux9.4 (JIRA:Rocky Linux-36743) * [Azure][Rocky Linux-9][MANA]System crash at skbuff when set mtu=100 [rhel-9.4.z] (JIRA:Rocky Linux-37622) * selective backport from perf upstream v6.8 to fix AmpereOne and Nvidia support [rhel-9.4.z] (JIRA:Rocky Linux-34991) * [Intel 9.5 FEAT] [SRF] performance: hwmon: (coretemp) Fix core count limitation [rhel-9.4.z] (JIRA:Rocky Linux-35447) * CNB95: dpll: rebase DPLL to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-36572) * ice: IRQs being moved to isolated CPUs and causing latency issues [rhel-9.4.z] (JIRA:Rocky Linux-38512) * Bluetooth device disappears from the device list after a few minutes with AX211 [rhel-9.4.z] (JIRA:Rocky Linux-38524) * deadlock on dfs_cache_refresh [rhel-9.4.z] (JIRA:Rocky Linux-38904) * [DELL 9.3 BUG]Unexpected message "integrity: Problem loading X.509 certificate -126" occurred on boot screen. [rhel-9.4.z] (JIRA:Rocky Linux-39933) * [rhel9-rt-debug] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:46 ( clocksource_mark_unstable) (JIRA:Rocky Linux-9296) rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.22.1.el9_4.s390x.rpm 52d6a469c7a54d72c78116145c2881781dc0cd362cda52525f9ef8526e8d8e18 libperf-5.14.0-427.22.1.el9_4.s390x.rpm 6c0e45e7a1841b0981cfb35e8087a4db36fab5b701aa2521d3a0cd48b8b4f21b RLSA-2024:4078 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: Path traversal on tempfile.TemporaryDirectory (CVE-2023-6597) * python: The zipfile module is vulnerable to zip-bombs leading to denial of service (CVE-2024-0450) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3-debug-3.9.18-3.el9_4.1.s390x.rpm 34807088988118e20fea7d6e41a24d01f639492643551266787f4e3b631495b0 python3-idle-3.9.18-3.el9_4.1.s390x.rpm 22b694c819753075ec779a77ee48cd3913bed690fa7409dcb8f277c09405361d python3-test-3.9.18-3.el9_4.1.s390x.rpm 2596d5c271ba7b370f566bbb696a787167adc39551aa765e57d0bbca27caadfa RLSA-2024:3959 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for flatpak. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Security Fix(es): * flatpak: sandbox escape via RequestBackground portal (CVE-2024-32462) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms flatpak-devel-1.12.9-1.el9_4.s390x.rpm e9a118b6a5053c6e5c68660807819da47b05db5bec0484eb2e6020ef9cc99daa RLSA-2024:3999 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for ghostscript. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fix(es): * ghostscript: OPVP device arbitrary code execution via custom Driver library (CVE-2024-33871) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libgs-devel-9.54.0-16.el9_4.s390x.rpm 3a1b71c133c57514b61fcdd55025441db7343754849317108154e6453adda226 RLSA-2024:4077 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: Path traversal on tempfile.TemporaryDirectory (CVE-2023-6597) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.11-debug-3.11.7-1.el9_4.1.s390x.rpm 9da8424fb7f39ddf397bfba1e7beb69349cee7fa984ca0f8561944bf51cd2b5a python3.11-idle-3.11.7-1.el9_4.1.s390x.rpm fe8374d74130c2a4d7b6612b60631a702fe1af6e335d6915f5b6133039b09ae1 python3.11-test-3.11.7-1.el9_4.1.s390x.rpm 084b552bb15721d6c2fd8b4cea22a273579cfa1426bae994189ea062eae13519 RLSA-2024:3619 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: ipv6: sr: fix possible use-after-free and null-ptr-deref (CVE-2024-26735) * kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() (CVE-2024-26993) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.20.1.el9_4.s390x.rpm 052f314ab79e2ccbe5ba2bc3ac789788d2d120c7788455d5ccf915fb8feb9b32 libperf-5.14.0-427.20.1.el9_4.s390x.rpm ce651cc2a8110a92f83a705a89475e65559743ca8914f92ae351819af02ef14c RLSA-2024:3339 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for glibc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix(es): * glibc: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (CVE-2024-2961) * glibc: stack-based buffer overflow in netgroup cache (CVE-2024-33599) * glibc: null pointer dereferences after failed netgroup cache insertion (CVE-2024-33600) * glibc: netgroup cache may terminate daemon on memory allocation failure (CVE-2024-33601) * glibc: netgroup cache assumes NSS callback uses in-buffer strings (CVE-2024-33602) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms glibc-benchtests-2.34-100.el9_4.2.s390x.rpm ee0436c8cdaf84c82071acdf49ec0458367d29a68fd3c14645e73163ec428d79 glibc-nss-devel-2.34-100.el9_4.2.s390x.rpm d7d893d6fa35f8d811fa1b3ea921aa45e7c65e071d0a9b137c1b82fe756b8e0a glibc-static-2.34-100.el9_4.2.s390x.rpm 9c7c13f1c548678f7cece6628f3ef857e057a908f8de4408c6bce63e31eacea0 nss_db-2.34-100.el9_4.2.s390x.rpm 030d9b6140d8076b39cb3ee9a15f37edd4153f6dc56fbceb6e48a5f68c4549c3 nss_hesiod-2.34-100.el9_4.2.s390x.rpm ff83b130e62a53e268f65c993d7721796fc0ebada1d40068bf9c017208db16d4 RLSA-2024:3501 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for nghttp2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C. Security Fix(es): * nghttp2: CONTINUATION frames DoS (CVE-2024-28182) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libnghttp2-devel-1.43.0-5.el9_4.3.s390x.rpm 09280abf09829a7dd92232cf291134f56e1b3e3af5e2826e845dd9d2ba2b4a13 nghttp2-1.43.0-5.el9_4.3.s390x.rpm 2f107da2288de3507c6db89749c6db8784d8acda9c072b55026bc5fc6ed06533 RLBA-2024:2841 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotnet6.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 6.0 to SDK 6.0.130 and Runtime 6.0.30 [rhel-9.4.z] (Rocky Linux-35310) rocky-linux-9-s390x-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.130-1.el9_4.s390x.rpm c5e8af7409f02badd69e095fc2bb1663d14ae807fa66eaa7072d0ef8bfbc928a RLSA-2024:2842 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for dotnet8.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.105 and .NET Runtime 8.0.5. Security Fix(es): * dotnet: stack buffer overrun in Double Parse (CVE-2024-30045) * dotnet: denial of service in ASP.NET Core due to deadlock in Http2OutputProducer.Stop() (CVE-2024-30046) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms dotnet-sdk-8.0-source-built-artifacts-8.0.105-1.el9_4.s390x.rpm 3fd8c89ff130d5d94c8670da8c483d0a1304892e492cd790bd9e41ec0bbf2915 RLSA-2024:4349 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context (CVE-2023-52626) * kernel: Bluetooth: Avoid potential use-after-free in hci_error_reset (CVE-2024-26801) * kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974) * kernel: xen-netfront: Add missing skb_mark_for_recycle (CVE-2024-27393) * kernel: net/mlx5e: fix a potential double-free in fs_any_create_groups (CVE-2023-52667) * kernel: smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870) * kernel: net/mlx5: Properly link new fs rules into the tree (CVE-2024-35960) * kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly (CVE-2021-47400) Bug Fix(es): * cifs - kernel panic with cifs_put_smb_ses (JIRA:Rocky Linux-28943) * BUG: unable to handle page fault for address: ff16bf752f593ff8 [rhel-9.4.z] (JIRA:Rocky Linux-35672) * [HPE 9.4 Bug] Request merge of AMD address translation library patch series [rhel-9.4.z] (JIRA:Rocky Linux-36220) * [Rocky Linux9] kernel BUG at lib/list_debug.c:51! [rhel-9.4.z] (JIRA:Rocky Linux-36687) * ice: DPLL-related fixes [rhel-9.4.z] (JIRA:Rocky Linux-36716) * CNB95: net/sched: update TC core to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-37641) * IPv6: SR: backport fixes from upstream [rhel-9.4.z] (JIRA:Rocky Linux-37669) * [RFE] Backport tmpfs noswap mount option [rhel-9.4.z] (JIRA:Rocky Linux-38252) * Isolated cores causing issues on latest Rocky Linux9.4 kernel and not functioning as desired. [rhel-9.4.z] (JIRA:Rocky Linux-38595) * [ice] Add automatic VF reset on Tx MDD events [rhel-9.4.z] (JIRA:Rocky Linux-39083) * [HPEMC Rocky Linux 9.4 REGRESSION] turbostat: turbostat broken on 10+ sockets. [rhel-9.4.z] (JIRA:Rocky Linux-34953) * bnx2x: fix crashes in PCI error handling, resource leaks [rhel-9.4.z] (JIRA:Rocky Linux-43272) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.24.1.el9_4.s390x.rpm 09d97c6c4034bdc1f7cfa03994cee68818132fe6ff14045bc8c3d6e24a2aa147 libperf-5.14.0-427.24.1.el9_4.s390x.rpm a952fafef01fcf8bf50f1242d293da330cc4bab39751f9192706fcf4b5ba3ce8 RLSA-2024:3754 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for ipa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fix(es): * freeipa: delegation rules allow a proxy service to impersonate any user to access another target service (CVE-2024-2698) * freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force (CVE-2024-3183) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3-ipatests-4.11.0-15.el9_4.noarch.rpm 67e90e53fc46b5e151c183e4c5e16b75ca51e2d40f6c35b3ca4e54605abafc2e RLBA-2024:3832 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fix(es): * live-migration with NBD TLS fails with "Certificate does not match the hostname " [rhel-9.4.z] (JIRA:Rocky Linux-33781) rocky-linux-9-s390x-crb-rpms libvirt-daemon-plugin-sanlock-10.0.0-6.3.el9_4.s390x.rpm 8ac9eb4859fad2cdaeacffa2f4050b01dce0930d80bdd6c64885970b8d99b0cc libvirt-devel-10.0.0-6.3.el9_4.s390x.rpm 83dc5259bbb4c0167e0c9d1413cf267f231157cecf04cae43262341035f0508f libvirt-docs-10.0.0-6.3.el9_4.s390x.rpm 181cfbbe0b4e3e7ed98fab88dddfaf5d2f67aec6f975d18a6bd12254411488d3 RLSA-2024:3837 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for 389-ds-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request (CVE-2024-3657) * 389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c (CVE-2024-2199) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms 389-ds-base-devel-2.4.5-8.el9_4.s390x.rpm ec52be51c6c3219bedfa8781ef2ed0656982d6fd0e885fb8598b47ecd02a8245 RLSA-2024:4450 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for dotnet8.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.107 and Runtime 8.0.7. Security Fix(es): * dotnet: DoS in System.Text.Json (CVE-2024-30105) * dotnet: DoS in ASP.NET Core 8 (CVE-2024-35264) * dotnet: DoS when parsing X.509 Content and ObjectIdentifiers (CVE-2024-38095) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms dotnet-sdk-8.0-source-built-artifacts-8.0.107-1.el9_4.s390x.rpm 06b318a1324e96dbb6b79a89e13331169055b2bb8491a7afa18709ad9e6309de RLBA-2024:3839 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ostree. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es): * [9.4.z] Update ostree to 2024.6 (JIRA:Rocky Linux-36770) rocky-linux-9-s390x-crb-rpms ostree-devel-2024.6-1.el9_4.s390x.rpm 538ef9425fe8e309d99040ef8aa1959f9b5ecee3520197bb87fb925d6827bcec RLSA-2024:4583 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: TIPC message reassembly use-after-free remote code execution vulnerability (CVE-2024-36886) * kernel: ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() (CVE-2021-47548) * kernel: net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (CVE-2021-47596) * kernel: vt: fix memory overlapping when deleting chars in the buffer (CVE-2022-48627) * kernel: can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock (CVE-2023-52638) * kernel: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index (CVE-2024-26783) * kernel: net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map (CVE-2024-26858) * kernel: netfilter: nf_tables: use timestamp to check for set element timeout (CVE-2024-27397) * kernel: nvme: fix reconnection fail due to reserved tag allocation (CVE-2024-27435) * kernel: net: ena: Fix incorrect descriptor free behavior (CVE-2024-35958) * kernel: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). (CVE-2024-36904) * kernel: lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (CVE-2024-38543) * kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets. (CVE-2024-38586) * kernel: net: micrel: Fix receiving the timestamp in the frame for lan8841 (CVE-2024-38593) * kernel: netfilter: tproxy: bail out if IP has been disabled on the device (CVE-2024-36270) * kernel: octeontx2-af: avoid off-by-one read from userspace (CVE-2024-36957) * kernel: blk-cgroup: fix list corruption from resetting io stat (CVE-2024-38663) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.26.1.el9_4.s390x.rpm ff0532777c0a3cc8547b5cecc36c772b5bc6a8c9432b828f2782bf54417bbc17 libperf-5.14.0-427.26.1.el9_4.s390x.rpm 8fa9b9871cf6c7fd84ed249004ecb48fef2c8abcc9c0523e214cf9c55b8d95ca RLSA-2024:4928 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: block: null pointer dereference in ioctl.c when length and logical block size are misaligned (CVE-2023-52458) * kernel: ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() (CVE-2024-26773) * kernel: bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel (CVE-2024-26737) * kernel: dm: call the resume method on internal suspend (CVE-2024-26880) * kernel: net/ipv6: avoid possible UAF in ip6_route_mpath_notify() (CVE-2024-26852) * kernel: Squashfs: check the inode number is not the invalid value of zero (CVE-2024-26982) * kernel: nfp: flower: handle acti_netdevs allocation failure (CVE-2024-27046) * kernel: octeontx2-af: Use separate handlers for interrupts (CVE-2024-27030) * kernel: icmp: prevent possible NULL dereferences from icmp_build_probe() (CVE-2024-35857) * kernel: mlxbf_gige: call request_irq() after NAPI initialized (CVE-2024-35907) * kernel: mlxbf_gige: stop interface during shutdown (CVE-2024-35885) * kernel: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() (CVE-2023-52809) * kernel: can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv (CVE-2021-47459) * kernel: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (CVE-2024-36924) * kernel: scsi: lpfc: Move NPIV's transport unregistration to after resource clean up (CVE-2024-36952) * kernel: net: amd-xgbe: Fix skb data length underflow (CVE-2022-48743) * kernel: epoll: be better about file lifetimes (CVE-2024-38580) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.28.1.el9_4.s390x.rpm ed2faadc8a4b60f2c19d79ae8f5bef96da2f6570a4244ddbfe10fe5c95cdaabd libperf-5.14.0-427.28.1.el9_4.s390x.rpm 115f68d0aeea72f987fefc24f8ef0392af00926b89f8cf965839db36db41b864 RLSA-2024:4935 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for freeradius. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service (RADIUS) server, designed to allow centralized authentication and authorization for a network. Security Fix(es): * freeradius: forgery attack (CVE-2024-3596) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms freeradius-mysql-3.0.21-40.el9_4.s390x.rpm 6232063421657b94618eed752f4f20819e836516e95d21279db1ae64fbe563ee freeradius-perl-3.0.21-40.el9_4.s390x.rpm 247b9db2d5a32b1e1644dc2123264f1e68a5537d4039618d77a48798c23420c2 freeradius-postgresql-3.0.21-40.el9_4.s390x.rpm 6aa24df080dd8c18baff6ec14877652c2b2b0199f31c7f5dc914dc1ef025a500 freeradius-rest-3.0.21-40.el9_4.s390x.rpm dd9f31e87edd9312a407c611c68442bb87f46f723c4682420d2e85be9b46588a freeradius-sqlite-3.0.21-40.el9_4.s390x.rpm 3f97716bf263a186c6b0f0b126b1845cf3c95924c1bfcd85496f7b6ed455b088 freeradius-unixODBC-3.0.21-40.el9_4.s390x.rpm 78e747be192bd87e208dba0cbed8d0b7febb5bb917a6ea6826a61ebd171b0688 RLSA-2024:5363 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Errata Tool Automation could not update the description because it is longer (4803) than ET limit of 4000 characters. (OSCI-6058) Please update the description manually. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.31.1.el9_4.s390x.rpm 9c7deaed4d84f43e6339db951190a62ddaba92178f77a21305f133bb6172be2f libperf-5.14.0-427.31.1.el9_4.s390x.rpm 8bed1417adf151feb01704736c44b456f9a1811b165ecacb785b8294db6ab485 RLSA-2024:5192 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for 389-ds-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: Malformed userPassword hash may cause Denial of Service (CVE-2024-5953) * 389-ds-base: unauthenticated user can trigger a DoS by sending a specific extended search request (CVE-2024-6237) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms 389-ds-base-devel-2.4.5-9.el9_4.s390x.rpm 172a414470f03553951c4c6d3f10741bc1a83cd054a9c098e27b3bc316ae4703 RLSA-2024:5231 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for bind-dyndb-ldap, bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam (CVE-2024-1737) * bind9: bind: SIG(0) can be used to exhaust CPU resources (CVE-2024-1975) * bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content (CVE-2024-4076) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms bind-devel-9.16.23-18.el9_4.6.s390x.rpm bdd55eef5b27df9b8ff0f17a13834ef5afc8da9072e8a1032b6b128f8164e8b4 bind-doc-9.16.23-18.el9_4.6.noarch.rpm daeca2e33af99da35b03d30bf7ffd4190c0e147b87eda5f11bb716856d5a44fc RLSA-2024:5533 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.12-setuptools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially ones that have dependencies on other packages. This package also contains the runtime components of setuptools, necessary to execute the software that requires pkg_resources. Security Fix(es): * pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.12-setuptools-wheel-68.2.2-3.el9_4.1.noarch.rpm 88392789f4736337f4f20525fb6a4654fa678b1f4697392906fcce12108172aa RLSA-2024:6567 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: efivarfs: force RO when remounting if SetVariable is not supported (CVE-2023-52463) * kernel: nfsd: fix RELEASE_LOCKOWNER (CVE-2024-26629) * kernel: mm: cachestat: fix folio read-after-free in cache walk (CVE-2024-26630) * kernel: mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (CVE-2024-26720) * kernel: Bluetooth: af_bluetooth: Fix deadlock (CVE-2024-26886) * kernel: kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address (CVE-2024-26946) * kernel: KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() (CVE-2024-35791) * kernel: mm: cachestat: fix two shmem bugs (CVE-2024-35797) * kernel: x86/coco: Require seeding RNG with RDRAND on CoCo systems (CVE-2024-35875) * kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (CVE-2024-36000) * kernel: iommufd: Fix missing update of domains_itree after splitting iopt_area (CVE-2023-52801) * kernel: net: fix out-of-bounds access in ops_init (CVE-2024-36883) * kernel: regmap: maple: Fix cache corruption in regcache_maple_drop() (CVE-2024-36019) * kernel: usb-storage: alauda: Check whether the media is initialized (CVE-2024-38619) * kernel: net: bridge: mst: fix vlan use-after-free (CVE-2024-36979) * kernel: scsi: qedf: Ensure the copied buf is NUL terminated (CVE-2024-38559) * kernel: xhci: Handle TD clearing for multiple streams case (CVE-2024-40927) * kernel: cxl/region: Fix memregion leaks in devm_cxl_add_region() (CVE-2024-40936) * kernel: net/sched: Fix UAF when resolving a clash (CVE-2024-41040) * kernel: ppp: reject claimed-as-LCP but actually malformed packets (CVE-2024-41044) * kernel: mm: prevent derefencing NULL ptr in pfn_section_valid() (CVE-2024-41055) * kernel: PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096) * kernel: xdp: Remove WARN() from __xdp_reg_mem_model() (CVE-2024-42082) * kernel: x86: stop playing stack games in profile_pc() (CVE-2024-42096) * kernel: Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" (CVE-2024-42102) * kernel: mm: avoid overflows in dirty throttling logic (CVE-2024-42131) * kernel: nvme: avoid double free special payload (CVE-2024-41073) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.35.1.el9_4.s390x.rpm d198a920481f26413df8aced3009ccfdcdfd612bf55310e9ccc58206fd48365c libperf-5.14.0-427.35.1.el9_4.s390x.rpm f0bbdbc3b85703c335d945041ce73edb00d6d9e59d43e573f81b70f9f283acbe RLSA-2024:6464 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for glib2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fix(es): * glib2: Signal subscription vulnerabilities (CVE-2024-34397) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms glib2-static-2.68.4-14.el9_4.1.s390x.rpm 7bec48dea32fdbc198ab5092c8dc0e44c7d8235e4cebce4e8544626c734ae4dc RLSA-2024:5999 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for postgresql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: PostgreSQL relation replacement during pg_dump executes arbitrary SQL (CVE-2024-7348) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms postgresql-docs-13.16-1.el9_4.s390x.rpm ee632f84193fe6fe554869c0f02da41587e61d7e765904bf5d71bcf699b36651 postgresql-private-devel-13.16-1.el9_4.s390x.rpm bd27723ca3c7b3dc203888023fdd0f3169be2c343873c59eb299c0bbebb6a409 postgresql-server-devel-13.16-1.el9_4.s390x.rpm 3977e35c6ae39cfdf5c5b4ddad97d5aa49945889a1ef923185ce3d44b7a9468d postgresql-static-13.16-1.el9_4.s390x.rpm d18c2c3770a73ff089a54f6eecdab4451b5f68a4635c55076b6af37f8d944b3e postgresql-test-13.16-1.el9_4.s390x.rpm 29ccc2859f2bc0352dec468493f2d6e0e68b9659c757077273aa6d1ba7f54a9b postgresql-upgrade-devel-13.16-1.el9_4.s390x.rpm d6c2da1757a576262bef286125a46a2ff597a87b79d65003fe4e78fe5e48c09b RLSA-2024:6146 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.12. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. Security Fix(es): * cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection (CVE-2024-6923) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.12-debug-3.12.1-4.el9_4.3.s390x.rpm 2db5f889168b160006c8dfb7e208c5d331a7cc619c37cf1ff9106210449dd1ab python3.12-idle-3.12.1-4.el9_4.3.s390x.rpm 803eee54ef401671dcea4011b31452987d7b58e8163413637879ea09f76303dc python3.12-test-3.12.1-4.el9_4.3.s390x.rpm 2e60f501209eae7bd35d62d91d6ace326671561e7dbd4a092893fc489bd1f136 RLBA-2024:6287 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libguestfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libguestfs packages contain a library used for accessing and modifying virtual machine disk images. Bug Fix(es) and Enhancement(s): * sgdisk fails with "Invalid partition data!" for win2019, win2022, win2025 guests with three additional online disks [rhel-9.4.z] (JIRA:Rocky Linux-56697) rocky-linux-9-s390x-crb-rpms libguestfs-devel-1.50.1-8.el9_4.s390x.rpm 9f3c772d3571157caabf6633688b62d15ad3f05c5b41b7e8c8ea4440d0653c8b libguestfs-gobject-1.50.1-8.el9_4.s390x.rpm 6ada99502a2644aadeb82a01380c7f1a114c8fe30a9ea557184bdeb01f9a8d84 libguestfs-gobject-devel-1.50.1-8.el9_4.s390x.rpm 4782c41ddecb2eb08753f71fdcd22b05754749026c25c616de7a861ebeb58246 libguestfs-man-pages-ja-1.50.1-8.el9_4.noarch.rpm e4c9e9a41c1cd9d1ef0c9ec76a679ce2f017793fb4e2595f0acada92a479fa1c libguestfs-man-pages-uk-1.50.1-8.el9_4.noarch.rpm 28b763d121ae802142ecb91ecc4860f1c504c4aac15c284f9e5df6101bf6a504 lua-guestfs-1.50.1-8.el9_4.s390x.rpm b3c8529b757393f26385b5f08967749e0132478a7835dd517687856cb0040483 ocaml-libguestfs-1.50.1-8.el9_4.s390x.rpm 5f1773483a60d9c23379e9e6a7e85e8f8cab62336df123e3aa78ff502acfe374 ocaml-libguestfs-devel-1.50.1-8.el9_4.s390x.rpm 16d9d1420a9cd730070d908c3267c3a8c32a311cbcce111233fa87e02f0e60d2 php-libguestfs-1.50.1-8.el9_4.s390x.rpm 1cd30577f0d3def15a7392b40807a1891c2bb1f9cf71b9c7753db209c04a560d ruby-libguestfs-1.50.1-8.el9_4.s390x.rpm 7c0cc81ceb9538b2d2cc0c83cd0aeba479b5c01f308fb108d01843a678968217 RLBA-2024:6416 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for augeas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by manipulating this tree and saving it back into native config files. Bug Fix(es) and Enhancement(s): * libguestfs pops up error when ?there is a trailing comma after character like nosuid in guest /etc/fstab [rhel-9.4.z] (JIRA:Rocky Linux-56992) rocky-linux-9-s390x-crb-rpms augeas-devel-1.13.0-6.el9_4.s390x.rpm 55937e3fa8c2e42f611832aaf4bd825f457924f64e6d42f52c229e42dc0c7234 RLSA-2024:6529 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for dovecot. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fix(es): * dovecot: using a large number of address headers may trigger a denial of service (CVE-2024-23184) * dovecot: very large headers can cause resource exhaustion when parsing message (CVE-2024-23185) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms dovecot-devel-2.3.16-11.el9_4.1.s390x.rpm 8980ae48d9c03b410a56afe16e96bc9dc7c66969ce200f3c069edc061cd41d9e RLBA-2024:6669 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems. Bug Fix(es) and Enhancement(s): * Opening a vpx:// URL fails if the backing VMX file has a "*" character in any key [rhel-9.4.z] (JIRA:Rocky Linux-58676) rocky-linux-9-s390x-crb-rpms libvirt-daemon-plugin-sanlock-10.0.0-6.7.el9_4.s390x.rpm 96595d8391f6ee7612e83a9f25aaca991692a88c60d2856066947f796337a719 libvirt-devel-10.0.0-6.7.el9_4.s390x.rpm 6113a08db9f74979c6c7b1910e825f4754690fe1c2dad056583a6b6fccb55bcb libvirt-docs-10.0.0-6.7.el9_4.s390x.rpm 771a212e27f7018900f39bf43bdc78ed41c626d9684ca771d317e8a4502dfe71 RLSA-2024:6757 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libnbd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Network Block Device (NBD) is a protocol for accessing Block Devices (hard disks and disk-like devices) over a Network. The libnbd is a userspace client library for writing NBD clients. Security Fix(es): * libnbd: NBD server improper certificate validation (CVE-2024-7383) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libnbd-devel-1.18.1-4.el9_4.s390x.rpm cfefc8f7c5f2fd574f2925d02e347f58552fec1015b35b66ca44d2f610bdf0ad ocaml-libnbd-1.18.1-4.el9_4.s390x.rpm c5076667bc056369f8d9011a24483712600c614e3de741d0cf17881bf544e611 ocaml-libnbd-devel-1.18.1-4.el9_4.s390x.rpm be342e81fdbdf9bf96016074fc43733a5e58a41c387379d01ebd56defce7ad8b RLSA-2024:7346 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for cups-filters. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently. Security Fix(es): * cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source () * cups-filters: libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes (CVE-2024-47076) * cups: libppd: remote command injection via attacker controlled data in PPD file () For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms cups-filters-devel-1.28.7-17.el9_4.s390x.rpm fe23db4899fa7b89c1aaff0b126cd0ec46b41c5583088ac1eb433616c1fd92e8 RLSA-2024:8121 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-11-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms java-11-openjdk-demo-slowdebug-11.0.25.0.9-2.el9.s390x.rpm a3fcca06903e37276e7bcd82e3e559b8edd73545f170a87829196b0d24352fdd java-11-openjdk-devel-slowdebug-11.0.25.0.9-2.el9.s390x.rpm b2d7389e01458cba00ed961bfbb0cb4cbcdb40a765093ca8f9bc048462a7d6d5 java-11-openjdk-headless-slowdebug-11.0.25.0.9-2.el9.s390x.rpm c298aa9542d867b0b66f476c44b5c04380eff71a93e3c40cb6d023c84f747309 java-11-openjdk-jmods-slowdebug-11.0.25.0.9-2.el9.s390x.rpm 07d3217a3f1aebb2031724b1ad79cb81091e579eb430479a5f476e3fe11b009d java-11-openjdk-slowdebug-11.0.25.0.9-2.el9.s390x.rpm 8714fd14b59937d2334d9daef501cb9a7d5ed2c82bd76eadc39ef233ceb50588 java-11-openjdk-src-slowdebug-11.0.25.0.9-2.el9.s390x.rpm 767285324eb8e4969e2715b41c10fadaa8b53f4157ca805c3988c5bad48bc20d java-11-openjdk-static-libs-slowdebug-11.0.25.0.9-2.el9.s390x.rpm b514ac77f951dc83f251b6fed48f590780cd1487d78778017f36760893e58ee0 RLSA-2024:8127 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-21-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The OpenJDK 21 runtime environment. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms java-21-openjdk-demo-slowdebug-21.0.5.0.10-3.el9.s390x.rpm 1d1d5c3711dfcb753ca9e315b351771ee46f5f8e7460feae6ea11c7daa7175ef java-21-openjdk-devel-slowdebug-21.0.5.0.10-3.el9.s390x.rpm a93739feba9525109e7eea3ca706bf45944dd370dc289af9937fd1e9a42b24a0 java-21-openjdk-headless-slowdebug-21.0.5.0.10-3.el9.s390x.rpm d4c4944e55dd5f71510dcb33370e6a74c4380761506d99ab0f7ecc8b1804fcc5 java-21-openjdk-jmods-slowdebug-21.0.5.0.10-3.el9.s390x.rpm bbb6ebed2b9c6a9a1aca9904f81adcbb21bd5d61180bcd8576b9de40b4171484 java-21-openjdk-slowdebug-21.0.5.0.10-3.el9.s390x.rpm 47ca1d840e36ac8759de01eb19ae7a8689abace73aa3590776d2ad89688b2e21 java-21-openjdk-src-slowdebug-21.0.5.0.10-3.el9.s390x.rpm 5dbf1aac708ab3b2b7082d22ebf833481f101e36ec85098d5a3e3f6f87a3bae5 java-21-openjdk-static-libs-slowdebug-21.0.5.0.10-3.el9.s390x.rpm 2ad0e0f8dac8a5e8dd108b9e4b04ba8b6da3027912831a5dc53ef3162fae3770 RLSA-2024:8124 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-17-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms java-17-openjdk-demo-slowdebug-17.0.13.0.11-3.el9.s390x.rpm 37a1051fc39265b726a75784e85beaf9ca517b2a62252dd747044efb0c386df1 java-17-openjdk-devel-slowdebug-17.0.13.0.11-3.el9.s390x.rpm aa56b40f24882f4dd76124b75ec4a88eac80d6b0223439cf481cfc80ca5ab39a java-17-openjdk-headless-slowdebug-17.0.13.0.11-3.el9.s390x.rpm ad377bed6b27c13f4b238b820e9cf94ba77741e354ed9f97b200d7cb09443c42 java-17-openjdk-jmods-slowdebug-17.0.13.0.11-3.el9.s390x.rpm 7bf6f1995bd88c7b577005ffd5aa46f18f5d4c6a09a6f31f9aa3cb413bbc8184 java-17-openjdk-slowdebug-17.0.13.0.11-3.el9.s390x.rpm 643e58644dc1ff64019e1fe56b45b85b04b9d6dd8c8c556c27f5c6318fbeccf0 java-17-openjdk-src-slowdebug-17.0.13.0.11-3.el9.s390x.rpm 8e9d038d47de03da4aaa8f926ec6f64dbe39b55b08c3750fd8fc88958036cd90 java-17-openjdk-static-libs-slowdebug-17.0.13.0.11-3.el9.s390x.rpm 9e941dfb4dae3e785778b15759b352998e7ae5c7cd0e2ec720cb077ec38f9c69 RLSA-2024:8162 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Local information disclosure on Intel(R) Atom(R) processors (CVE-2023-28746) * kernel: netfilter: nft_flow_offload: reset dst in route object after setting up flow (CVE-2024-27403) * kernel: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (CVE-2023-52658) * kernel: dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (CVE-2024-35989) * kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field (CVE-2021-47385) * kernel: mptcp: ensure snd_nxt is properly initialized on connect (CVE-2024-36889) * kernel: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (CVE-2024-36978) * kernel: net/mlx5: Add a timeout to acquire the command queue semaphore (CVE-2024-38556) * kernel: KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (CVE-2024-39483) * kernel: ionic: fix use after netif_napi_del() (CVE-2024-39502) * kernel: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (CVE-2024-40959) * kernel: gfs2: Fix NULL pointer dereference in gfs2_log_flush (CVE-2024-42079) * kernel: sched: act_ct: take care of padding in struct zones_ht_key (CVE-2024-42272) * kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error (CVE-2024-42284) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.40.1.el9_4.s390x.rpm daf2b5dc6593a7089eb558d3b282caf33f467b9d865f39b988fce34ec4b9a973 libperf-5.14.0-427.40.1.el9_4.s390x.rpm 9bdac5f8c930089db0cdb9defffff015d8a15e8b04b0ed0269063a0f757f0740 RLBA-2024:7448 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glibc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Bug Fix(es) and Enhancement(s): * glibc: Previously used TLS sometimes incorrectly reverted to initial state after dlopen [rhel-9.4.z] (JIRA:Rocky Linux-46763) rocky-linux-9-s390x-crb-rpms glibc-benchtests-2.34-100.el9_4.4.s390x.rpm ead22009cea24aef680100d0f625cf3e5f5f9a3baf1bb8b8f4375f58ace72c02 glibc-nss-devel-2.34-100.el9_4.4.s390x.rpm 21646736a4357c07ef711494c33ef2fb0a362652db720c5b4d67a8e5b79dd784 glibc-static-2.34-100.el9_4.4.s390x.rpm 3373b0f845fd443693d314d35b681304389ecebb5a5ed4a975dc35cdea85b927 nss_db-2.34-100.el9_4.4.s390x.rpm f764085735882e8b4eaa677b1140181f73feafd91528726676ae9eea669305ee nss_hesiod-2.34-100.el9_4.4.s390x.rpm 98aad34005a8a0cbce6efd805e260ba15e587ce79bd8b20d96d966cc6c4b9a39 RLSA-2024:8446 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3-debug-3.9.18-3.el9_4.6.s390x.rpm 28a97298e1b1707d0056f22eabe34b1b21dd7c9d03e8a0fcbaf4102a7de78487 python3-idle-3.9.18-3.el9_4.6.s390x.rpm 48b652d9239579211948df3f773961c03c6ed224c91beb6750b450a1281aee78 python3-test-3.9.18-3.el9_4.6.s390x.rpm 62e1671c10021990d8af36220167602405cdae9e19f541a8caf1ff606a5c9bb5 RLSA-2024:7867 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for dotnet6.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.135 and .NET Runtime 6.0.35. Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.135-1.el9_4.s390x.rpm 17529026044e27edbd082a343967ba439c608c2f04ce17c4f0a27b32393ab8d6 RLSA-2024:7869 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for dotnet8.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.110 and .NET Runtime 8.0.10. Security Fix(es): * dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution (CVE-2024-38229) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) * dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution (CVE-2024-38229) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms dotnet-sdk-8.0-source-built-artifacts-8.0.110-1.el9_4.s390x.rpm ff331dcdd84efd3545f78cb45fa7c42e2c3abdc32c14f75d9ac33ba57fa55707 RLSA-2024:8037 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for OpenIPMI. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The OpenIPMI packages provide command-line tools and utilities to access platform information using Intelligent Platform Management Interface (IPMI). System administrators can use OpenIPMI to manage systems and to perform system health monitoring. Security Fix(es): * openipmi: missing check on the authorization type on incoming LAN messages in IPMI simulator (CVE-2024-42934) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms OpenIPMI-devel-2.0.32-5.el9_4.s390x.rpm 10f78875d64b1ccd38fd950b63caf1b6f95bcced8cab49221e330de293924217 RLSA-2024:8374 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.11-debug-3.11.7-1.el9_4.6.s390x.rpm b2ce9b6f9f9a972179ea5b8e8d208f4256c3fc56e82f1dfd48d79134583e4675 python3.11-idle-3.11.7-1.el9_4.6.s390x.rpm d2fff4d41328b57b274da3924ed6e6c4621581ef54125fff0022d8c43a4dbe5f python3.11-test-3.11.7-1.el9_4.6.s390x.rpm 80fb9a27302b95cbe4fd9d9c23e20cd82d22594cf27c1cac0af87715d676499b RLSA-2024:8447 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.12. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.12-debug-3.12.1-4.el9_4.4.s390x.rpm b9f3f4b5b86b90d94c18c8fa06af8774ffd2e28398e51ec3026cbf556cd67589 python3.12-idle-3.12.1-4.el9_4.4.s390x.rpm b85358ca1f540b4dc34407beb0d6dddf13fd3ad46062b4a7f4c99a9df16aeee6 python3.12-test-3.12.1-4.el9_4.4.s390x.rpm 35444b23f44f50b4a130a9eac96ada8ed26917d494d7a060e5c2fadaf102c86c RLSA-2024:8617 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * hw: cpu: intel: Native Branch History Injection (BHI) (CVE-2024-2201) * kernel: tcp: add sanity checks to rx zerocopy (CVE-2024-26640) * kernel: mptcp: fix data re-injection from stale subflow (CVE-2024-26826) * kernel: af_unix: Fix garbage collector racing against connect() (CVE-2024-26923) * kernel: mac802154: fix llsec key resources release in mac802154_llsec_key_del (CVE-2024-26961) * kernel: scsi: core: Fix unremoved procfs host directory regression (CVE-2024-26935) * kernel: tty: Fix out-of-bound vmalloc access in imageblit (CVE-2021-47383) * kernel: net/sched: taprio: extend minimum interval restriction to entire cycle too (CVE-2024-36244) * kernel: xfs: fix log recovery buffer allocation for the legacy h_size fixup (CVE-2024-39472) * kernel: netfilter: nft_inner: validate mandatory meta and payload (CVE-2024-39504) * kernel: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (CVE-2024-40904) * kernel: mptcp: ensure snd_una is properly initialized on connect (CVE-2024-40931) * kernel: ipv6: prevent possible NULL dereference in rt6_probe() (CVE-2024-40960) * kernel: ext4: do not create EA inode under buffer lock (CVE-2024-40972) * kernel: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (CVE-2024-40977) * kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (CVE-2024-40995) * kernel: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (CVE-2024-40998) * kernel: netpoll: Fix race condition in netpoll_owner_active (CVE-2024-41005) * kernel: xfs: don't walk off the end of a directory data block (CVE-2024-41013) * kernel: xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014) * kernel: block: initialize integrity buffer to zero before writing it to media (CVE-2024-43854) * kernel: netfilter: flowtable: initialise extack before use (CVE-2024-45018) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-427.42.1.el9_4.s390x.rpm d6ec42364c4fafca80b8afb013ca2e6591298c0a8ef372534b36a22eb2d01845 libperf-5.14.0-427.42.1.el9_4.s390x.rpm 570f6a088cc4452ec1cae3f1232562857a9f18e8bdb3afdf0b0223cda719f505 RLSA-2024:8800 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for openexr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR. Security Fix(es): * OpenEXR: Heap Overflow in Scanline Deep Data Parsing (CVE-2023-5841) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms openexr-devel-3.1.1-2.el9_4.1.s390x.rpm bd3b96c1d4d5de38579b251dd8fa14eb736f7b1bd73ede369a19059aa518091c RLSA-2024:8914 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libtiff. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * libtiff: NULL pointer dereference in tif_dirinfo.c (CVE-2024-7006) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libtiff-tools-4.4.0-12.el9_4.1.s390x.rpm 1eea941bb4e3a910f00e5bdf0b3d1c4b5777a04eb22b04b617d650c95bcbe4ec RLSA-2024:8935 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for edk2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix(es): * openssl: Possible denial of service in X.509 name checks (CVE-2024-6119) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms edk2-aarch64-20231122-6.el9_4.4.noarch.rpm 5716082e60f11bdb5afb834aa9e7a69545546758a50e3f5de497ff21124083c9 edk2-ovmf-20231122-6.el9_4.4.noarch.rpm 01c5a535b13fcaa13e5d134ca94d118368f1d15fe2f030b6d9b1a1644d773c7b RLBA-2024:9279 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for augeas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms augeas-devel-1.13.0-6.el9_4.s390x.rpm 55937e3fa8c2e42f611832aaf4bd825f457924f64e6d42f52c229e42dc0c7234 RLBA-2024:9284 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for postgresql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms postgresql-docs-13.16-1.el9_4.s390x.rpm ee632f84193fe6fe554869c0f02da41587e61d7e765904bf5d71bcf699b36651 postgresql-private-devel-13.16-1.el9_4.s390x.rpm bd27723ca3c7b3dc203888023fdd0f3169be2c343873c59eb299c0bbebb6a409 postgresql-server-devel-13.16-1.el9_4.s390x.rpm 3977e35c6ae39cfdf5c5b4ddad97d5aa49945889a1ef923185ce3d44b7a9468d postgresql-static-13.16-1.el9_4.s390x.rpm d18c2c3770a73ff089a54f6eecdab4451b5f68a4635c55076b6af37f8d944b3e postgresql-test-13.16-1.el9_4.s390x.rpm 29ccc2859f2bc0352dec468493f2d6e0e68b9659c757077273aa6d1ba7f54a9b postgresql-upgrade-devel-13.16-1.el9_4.s390x.rpm d6c2da1757a576262bef286125a46a2ff597a87b79d65003fe4e78fe5e48c09b RLSA-2024:9548 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for openexr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR. Security Fix(es): * OpenEXR: Heap Overflow in Scanline Deep Data Parsing (CVE-2023-5841) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms openexr-devel-3.1.1-2.el9_4.1.s390x.rpm bd3b96c1d4d5de38579b251dd8fa14eb736f7b1bd73ede369a19059aa518091c RLSA-2025:0426 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-21-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fix(es): * JDK: Enhance array handling (CVE-2025-21502) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms java-21-openjdk-demo-slowdebug-21.0.6.0.7-1.el9.s390x.rpm 935c16d7bdae788220cf92a4fc7ee37b7c083eda67793297bbeaae27eebb79c8 java-21-openjdk-devel-slowdebug-21.0.6.0.7-1.el9.s390x.rpm 6e8d04fb31d6257f849ed0b79e35fa5730d353fe88f18cb69d9e8dab7359467b java-21-openjdk-headless-slowdebug-21.0.6.0.7-1.el9.s390x.rpm bd9cd5348afe2d8fc22754dda582715f70ec08323e6c59bc26235653d8d1a3fa java-21-openjdk-jmods-slowdebug-21.0.6.0.7-1.el9.s390x.rpm 684835680170fc1bd4a1c3f772c20bb5d8e6740f0dbb3621d4934a1ae179ea19 java-21-openjdk-slowdebug-21.0.6.0.7-1.el9.s390x.rpm 9fd6ad77781c136bd2f20c6e9a4580f7454f7708ba7c9f0ec5de28763313494c java-21-openjdk-src-slowdebug-21.0.6.0.7-1.el9.s390x.rpm 641e293285db380f8dff00a41ded313427d35d15493e17376c8014fd4b8b570e java-21-openjdk-static-libs-slowdebug-21.0.6.0.7-1.el9.s390x.rpm b4e6438a78e2d65322f375328b150222b2a8eb63fcc9ba78210d5bc15c4c4af4 RLBA-2024:9324 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jitterentropy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms jitterentropy-devel-3.5.0-1.el9.s390x.rpm bb9d1abb49f51f67d04daa983fd4d19a6d15f6f638214332fca4364495d7d2c6 RLBA-2024:9338 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdnf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libdnf-devel-0.69.0-12.el9.s390x.rpm 319639307e7be48f8f25133aecba52552484a88ad07b244d2013b1fb6e778ef9 RLBA-2024:9342 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnvme. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Beta Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnvme-devel-1.9-3.el9.s390x.rpm a27d3d8d77f261e5219dceac9026433d0d6df79ee2ae925d40a074089d19585f RLBA-2024:9349 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libtdb-devel-1.4.10-1.el9.s390x.rpm 3915714e45d4c96b473a1adcdf52d1c4f62b45d05dfbf0e71f16b68c3781f2d5 RLBA-2024:9350 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openchange, evolution-mapi, samba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnetapi-devel-4.20.2-2.el9_5.s390x.rpm 19c067239207d9183b6a5c71ff4d4f3cc5420482493f63d245fc15ad02fac198 libsmbclient-devel-4.20.2-2.el9_5.s390x.rpm 6281f97e2fb90987f3bb67ecb229ba9717e00e0d3a0ac52c01f736c14de9e6f2 libwbclient-devel-4.20.2-2.el9_5.s390x.rpm 68d132adc0217c3e384856ec9471f57e53882c3ed7ff69739d15df08a7516be0 python3-samba-devel-4.20.2-2.el9_5.s390x.rpm 06e4678412e8cf46ca8391d9895ed235309affd0b504642800c9cbf518e903a6 python3-samba-test-4.20.2-2.el9_5.s390x.rpm 6cc165fd3386cb4305eeec681dc273df6074d1f7ab969eda8d662ad606e5819f samba-devel-4.20.2-2.el9_5.s390x.rpm c2d75ea2f67e7d433e1a87f09d87967c6d9ee4e31fefc73868769f3843dd22e0 samba-pidl-4.20.2-2.el9_5.noarch.rpm 90ec7188e7bccfa4d4720acf672cad5272d6183fb483b8d86615421ccde688ee samba-test-4.20.2-2.el9_5.s390x.rpm d4e7efa82af991d00cbf860e2d398aef66929160bdde0b5b0ed357da865c95d0 samba-test-libs-4.20.2-2.el9_5.s390x.rpm 197bad0486ca2a97458e94ec9e913e4f9b2eae33805d806dc3337a2d8458fdd6 RLBA-2024:9351 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libsss_nss_idmap-devel-2.9.5-4.el9_5.4.s390x.rpm 951f813895b728fa1b578af49d9044681fbef9f8f49ce181bd61293849318107 RLBA-2024:9360 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for opencryptoki. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms opencryptoki-devel-3.23.0-1.el9.s390x.rpm 37466a15e80cd7ba34ec3907bb5ad3435854bfd4d05a755958c86bfe93e9b0bd RLBA-2024:9366 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ima-evm-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ima-evm-utils-devel-1.5-2.el9.0.1.s390x.rpm 38e327c1c65dae170b5070827f21826b1da63f21aab3844ffde3803ea362173b RLBA-2024:9373 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for device-mapper-multipath. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms device-mapper-multipath-devel-0.8.7-32.el9.s390x.rpm d8f95e7afddd0f7acad018bdad2b1d31d92a74b129f1e8f2a4294ff72fb8819b RLBA-2024:9374 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cifs-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms cifs-utils-devel-7.0-5.el9.s390x.rpm 15f0aa3f4b6ddb7314eb335b6dfde57376cf0f8a73520f0810b6bbdff5768474 RLBA-2024:9376 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nfs-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Beta Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnfsidmap-devel-2.5.4-27.el9.s390x.rpm 51e1bb56c861a2af7d97e36dc952147d76bc1bc0321b4cbb079afa591eebb485 RLBA-2024:9377 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libdb-cxx-5.3.28-54.el9.s390x.rpm fe84b1f11c9fe86912dea030fd0a554c5bee915d9fd4be984035592ca735603f libdb-cxx-devel-5.3.28-54.el9.s390x.rpm 8c7bc3de9d45652b655789acd3c0d25e3ccf5ab54d84674e10927fa4f012fa48 libdb-devel-doc-5.3.28-54.el9.noarch.rpm ae225eeddfb02562548d289bf5ffac2bb66693e957186b25d3c9166ca81d3d2f libdb-sql-5.3.28-54.el9.s390x.rpm cb3c8cc47a334701fb3d68fb2bee9a088eb903ac1bb54d11905f03d75dea2385 libdb-sql-devel-5.3.28-54.el9.s390x.rpm 61efac8fcb323ca0e0c112959d6dec846e2a2e101703248b91ae6751e776879d RLBA-2024:9382 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ledmon. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Beta Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms ledmon-devel-1.0.0-1.el9.s390x.rpm 07bdaa3a31e99e080c82ea8c231c6685062aabfbfb905c16875cedcd1c1516b0 RLBA-2024:9386 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fuse. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms fuse-devel-2.9.9-16.el9.s390x.rpm e79dfa3e7c5e9a1af18624ec4f2d647261a4b8316b9365077dc9e41ba4970ea0 RLBA-2024:9393 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libbpf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libbpf-devel-1.4.0-1.el9.s390x.rpm e79216b1245284ca2d98cb7af0fb7560ced36ddaf6493134d7cf121e07af5f37 libbpf-static-1.4.0-1.el9.s390x.rpm 264da506ae3cd89f9fa32b365aed45bcfb06c3ebaa60f9b552c4eeb9f9f18563 RLBA-2024:9395 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for quota. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms quota-devel-4.09-2.el9.s390x.rpm f2571a51ab4db0135a67007442619835a5dfe0a6c9eea489123778e7d309bba0 RLBA-2024:9394 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lvm2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms device-mapper-devel-1.02.198-2.el9.s390x.rpm f8f7dc8d301488ac5a7aa449e35359185f13e198b71fff1de34a78308f409796 device-mapper-event-devel-1.02.198-2.el9.s390x.rpm 3fcb63d20286e283939fb2910fd6eeb4c41eeaad3d27719dff24fecf86e40796 lvm2-devel-2.03.24-2.el9.s390x.rpm 5d7bf9ab4574d9ad202974fb88a021e30435f3f9d7bd1f4a550587a8d20650fa RLSA-2024:9413 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for bluez. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The bluez packages contain the following utilities for use in Bluetooth applications: hcitool, hciattach, hciconfig, bluetoothd, l2ping, start scripts (Rocky Enterprise Software Foundation), and pcmcia configuration files. Security Fix(es): * bluez: unauthorized HID device connections allows keystroke injection and arbitrary commands execution (CVE-2023-45866) * BlueZ: Audio Profile AVRCP Improper Validation of Array Index Remote Code Execution Vulnerability (CVE-2023-27349) * bluez: phone book access profile heap-based buffer overflow remote code execution vulnerability (CVE-2023-51596) * bluez: OBEX library out-of-bounds read information disclosure vulnerability (CVE-2023-51594) * bluez: audio profile avrcp parse_media_folder out-of-bounds read information disclosure vulnerability (CVE-2023-51592) * bluez: audio profile avrcp parse_media_element out-of-bounds read information disclosure vulnerability (CVE-2023-51589) * bluez: avrcp_parse_attribute_list out-of-bounds read information disclosure vulnerability (CVE-2023-51580) * bluez: AVRCP stack-based buffer overflow remote code execution vulnerability (CVE-2023-44431) * bluez: phone book access profile heap-based buffer overflow remote code execution vulnerability (CVE-2023-50230) * bluez: phone book access profile heap-based buffer overflow remote code execution vulnerability (CVE-2023-50229) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms bluez-libs-devel-5.72-2.el9.s390x.rpm 0c3d8de5a614094664d7f959ee26ad39d7651b5057a370fd98785318df6d8a8d RLBA-2024:9412 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for s390utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms s390utils-devel-2.33.1-2.el9.s390x.rpm 3469b439cc9fb42b488444e1f62812f12014b36f3b9811cd873243730c81979e RLBA-2024:9426 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libuser. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libuser-devel-0.63-15.el9.s390x.rpm 3b9d6c6b089396820c916059a8a8b659de2bd2765ff77004fd4306fc23e4f5ce RLBA-2024:9431 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for util-linux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libfdisk-devel-2.37.4-20.el9.s390x.rpm ed49d7c7fa98e73da5d416f7963fe8defaf64c15c5b83d9feaf22a5a2af4dbce libsmartcols-devel-2.37.4-20.el9.s390x.rpm 8053e5c7fb3550306160a3ddf1dfac8970e6d69dd22a4aae2978842ffeb65460 RLBA-2024:9433 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for hwdata. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms hwdata-devel-0.348-9.15.el9.noarch.rpm 1d0724dcf76022c6f7ff1d0242fbb440222579817ebbb160679d9b1e63303a0b RLBA-2024:9434 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for avahi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms avahi-compat-howl-0.8-21.el9.s390x.rpm be80a9834b021f9f8ec97d7f2b159f91eb339c93069f0b2ff596d4765f2ceebd avahi-compat-howl-devel-0.8-21.el9.s390x.rpm 48d16a7dc3d90bdca88be6fa81c041b58ae2e139b810ee185c76f5f571f65e2b avahi-compat-libdns_sd-0.8-21.el9.s390x.rpm 4cfa84ac6c73aeaef6d121b8071c09aa1d9a08b147729b21ff0163d3357cada6 avahi-compat-libdns_sd-devel-0.8-21.el9.s390x.rpm e4f722d21f107407384bc0dbe12dcbd0faed2999a342de2c5c7f0b9dedc6f107 avahi-devel-0.8-21.el9.s390x.rpm 83da3524948d93942eb18602fbd48ea7dcf8084875ad3d9c6230f5acbbc31d6b avahi-glib-devel-0.8-21.el9.s390x.rpm f5ab9415a1bf931b2cbba4dcaf171d97e434ba87fbeff2ee604a8f5ff425d34c avahi-gobject-0.8-21.el9.s390x.rpm 6b981421a0b9ae9a0eddba4b0cc224e6043ffeab1e10f8c268322dade7ad761f avahi-gobject-devel-0.8-21.el9.s390x.rpm 5fb9c8eed89ad826f61a7bb5addd037668393440e356c60a17b941b69557d910 RLBA-2024:9471 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for samba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. Bug Fix(es): * smbd-notifyd O(n*n) performance issue ( https://bugzilla.samba.org/show_bug.cgi?id=14430 ) [rhel-9.5.z] (JIRA:Rocky Linux-59912) * Package certs directories in samba-common for gpupdate [rhel-9.5.z] (JIRA:Rocky Linux-59913) rocky-linux-9-s390x-crb-rpms libnetapi-devel-4.20.2-2.el9_5.s390x.rpm 19c067239207d9183b6a5c71ff4d4f3cc5420482493f63d245fc15ad02fac198 libsmbclient-devel-4.20.2-2.el9_5.s390x.rpm 6281f97e2fb90987f3bb67ecb229ba9717e00e0d3a0ac52c01f736c14de9e6f2 libwbclient-devel-4.20.2-2.el9_5.s390x.rpm 68d132adc0217c3e384856ec9471f57e53882c3ed7ff69739d15df08a7516be0 python3-samba-devel-4.20.2-2.el9_5.s390x.rpm 06e4678412e8cf46ca8391d9895ed235309affd0b504642800c9cbf518e903a6 python3-samba-test-4.20.2-2.el9_5.s390x.rpm 6cc165fd3386cb4305eeec681dc273df6074d1f7ab969eda8d662ad606e5819f samba-devel-4.20.2-2.el9_5.s390x.rpm c2d75ea2f67e7d433e1a87f09d87967c6d9ee4e31fefc73868769f3843dd22e0 samba-pidl-4.20.2-2.el9_5.noarch.rpm 90ec7188e7bccfa4d4720acf672cad5272d6183fb483b8d86615421ccde688ee samba-test-4.20.2-2.el9_5.s390x.rpm d4e7efa82af991d00cbf860e2d398aef66929160bdde0b5b0ed357da865c95d0 samba-test-libs-4.20.2-2.el9_5.s390x.rpm 197bad0486ca2a97458e94ec9e913e4f9b2eae33805d806dc3337a2d8458fdd6 RLSA-2024:10983 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: Virtual environment (venv) activation scripts don't quote paths (CVE-2024-9287) * python: Improper validation of IPv6 and IPvFuture addresses (CVE-2024-11168) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3-debug-3.9.21-1.el9_5.s390x.rpm cd9e5ab6ec0b426392a186214e388279682f886809ebd601b9117dbcb3345e1a python3-idle-3.9.21-1.el9_5.s390x.rpm 67c8f22862231fca08d9b8cdcf63782d5ef6e3440b5a42044e7b0641bf4233f5 python3-test-3.9.21-1.el9_5.s390x.rpm 4ccdbc4e6297e977bb851c3d5a9f4434b69f2860133ae47be81da5f3a7ef55f7 RLBA-2024:11243 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for shadow-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The shadow-utils packages include programs for converting UNIX password files to the shadow password format, as well as utilities for managing user and group accounts. Bug Fix(es): * Disable shadow-utils/SSSD integration by default (JIRA:Rocky Linux-56352) rocky-linux-9-s390x-crb-rpms shadow-utils-subid-devel-4.9-10.el9_5.s390x.rpm 52a2cab7f2c338f31164d00c2942491958894b01cc7962722d62196fe38dbfd0 RLSA-2025:0377 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for NetworkManager. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

NetworkManager is a system network service that manages network devices and connections, attempting to keep active network connectivity when available. Its capabilities include managing Ethernet, wireless, mobile broadband (WWAN), and PPPoE devices, as well as providing VPN integration with a variety of different VPN services. Security and bug fix(es): * Routes in table different to main are not deleted on reapply [rhel-9.5.z] (JIRA:Rocky Linux-73013) * Route to VPN server not stored in routing table that is specified by ipv4.route-table [rhel-9.5.z] (JIRA:Rocky Linux-73166) * VPN connections do not support ipv4.routing-rules settings [rhel-9.5.z] (JIRA:Rocky Linux-73167) * CVE-2024-3661 NetworkManager: DHCP routing options can manipulate interface-based VPN traffic [rhel-9.5.z] (JIRA:Rocky Linux-64726) rocky-linux-9-s390x-crb-rpms NetworkManager-libnm-devel-1.48.10-5.el9_5.s390x.rpm 05c8a1fb238e5d766f8755de762e15b89091d371f0a9bc27bb4952c524333121 RLSA-2024:9088 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for edk2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix(es): * mysql: openssl: POLY1305 MAC implementation corrupts vector registers on PowerPC (CVE-2023-6129) * openssl: Excessive time spent checking invalid RSA public keys (CVE-2023-6237) * openssl: denial of service via null dereference (CVE-2024-0727) * edk2: Temporary DoS vulnerability (CVE-2024-1298) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms edk2-aarch64-20240524-6.el9_5.3.noarch.rpm 4028b087e6ae46a5aa42437a1a23327bd87d42b19b7c98774b5211ed6500c120 edk2-ovmf-20240524-6.el9_5.3.noarch.rpm fc0caf09a366d9af2744b360332c131580cca70d734a06cc6db99a13300aff34 RLSA-2024:9093 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for xorg-x11-server-Xwayland. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Xwayland is an X server for running X clients under Wayland. Security Fix(es): * xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents (CVE-2024-31080) * xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice (CVE-2024-31081) * xorg-x11-server: Use-after-free in ProcRenderAddGlyphs (CVE-2024-31083) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xorg-x11-server-Xwayland-devel-23.2.7-1.el9.s390x.rpm b432f145d6292445bbe466b5000e7b22fc56af228d6c3a45694cd58fb861ed54 RLBA-2024:9118 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for anaconda. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms anaconda-widgets-devel-34.25.5.9-1.el9.rocky.0.3.s390x.rpm fa69ace9e5224d416b1e40cdb9c3a7d45a8acf326ac3db0f661992b7f5db7bee RLSA-2024:9122 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for xorg-x11-server. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Security Fix(es): * xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents (CVE-2024-31080) * xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice (CVE-2024-31081) * xorg-x11-server: Use-after-free in ProcRenderAddGlyphs (CVE-2024-31083) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms xorg-x11-server-devel-1.20.11-26.el9.s390x.rpm 7bd5b3bb4e8cf4257e4a7696252b1ede72f49c50ca5107d22e8b98c85cd07e3e xorg-x11-server-source-1.20.11-26.el9.noarch.rpm aa02d1e143dd7d2601abb5ed40844bf5637d265e4b30b07ec86e93ba4b90c328 RLSA-2024:9128 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems. Security Fix(es): * libvirt: Crash of virtinterfaced via virConnectListInterfaces() (CVE-2024-8235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libvirt-daemon-plugin-sanlock-10.5.0-7.4.el9_5.s390x.rpm d57f30fbc2c304a3457f17c770c104b166b2fd09a1c4e6e0e6ab8844b37e7fa7 libvirt-devel-10.5.0-7.4.el9_5.s390x.rpm e4d9ec50d894f5a31401137698a1778abd03af9e326c6fbdc8fe807546dbfdf0 libvirt-docs-10.5.0-7.4.el9_5.s390x.rpm 6cf923875b799a20d090d837f622a25a1ef314980a2daac6f361140cd62a7dff RLBA-2024:9131 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nbdkit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms nbdkit-devel-1.38.3-1.el9.s390x.rpm 027d98d3dca93b9c7125ab1a9dea0e73ee26f06212e15f6e35b638d90c790f1c nbdkit-example-plugins-1.38.3-1.el9.s390x.rpm b2af1ddebbe2d760617e1bdc5669403bc0c3c0da2b14a24790165a5fc303e007 nbdkit-srpm-macros-1.38.3-1.el9.noarch.rpm 34f01c36104f439d3e231ba7c5b13b5d6480d90d7d9c744b39e7ec65439224b9 RLBA-2024:9147 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python3-ipatests-4.12.2-1.el9_5.4.noarch.rpm 10e3a62af67d86e7b31a966c667b26ffd63c771f7923c9f6e858ed4300daa264 RLBA-2024:9151 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnbd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libnbd-devel-1.20.2-2.el9.s390x.rpm cd44cd6d7744eee3bac3f95dff62a8c2383dd8852708f207da18a2c31bc77a26 ocaml-libnbd-1.20.2-2.el9.s390x.rpm d3c168fdd141dac1ae89574247de297e8af4fdb98e8b28951a9f3e117d921035 ocaml-libnbd-devel-1.20.2-2.el9.s390x.rpm 70df7560b8b9d07226537c2d3736cd008825ede787d68112907f6cb30e5d6454 RLBA-2024:9155 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for WALinuxAgent. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms WALinuxAgent-cvm-2.7.0.6-10.el9.rocky.0.noarch.rpm 4d94f632639ed39dacf498cc1eebb413a674a3bbab9d7847e74e959936b245d3 RLBA-2024:9157 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for egl-wayland. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms egl-wayland-devel-1.1.9-3.el9.s390x.rpm 675207c356b85f38468d62fabb3fbdae4d04e579716d616193441bce8b76adf1 RLBA-2024:9165 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for crash. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms crash-devel-8.0.5-1.el9.s390x.rpm c89972bca014c07c114a0081478bb6648beb321366b5c05e66aa1c6842fd9811 RLBA-2024:9179 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for vulkan-utility-libraries, vulkan-validation-layers, vulkan-headers, vulkan-tools, spirv-tools, vulkan-volk, vulkan-loader, glslang, shaderc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms glslang-devel-14.2.0-3.el9.s390x.rpm 72a0353f4d7276e8636e31e7bdba7c0991c93972a90dd2c507a6fe157a4f6ca6 libshaderc-devel-2024.0-1.el9.s390x.rpm e750b1c512f6f7efdc3145d19bd87eb3a0d96d58de076f0478c4b31725a8cf9b spirv-tools-devel-2024.2-1.el9.s390x.rpm f751ae0e8a06084b6bfb73080f2038a189ab2f18beda33e177d0f171f251fa81 vulkan-utility-libraries-devel-1.3.283.0-1.el9.s390x.rpm 1954820b80c380124e2e449661fd3b4b7119f970805de9b9a0dfbbc6ceacfc70 RLSA-2024:9190 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.12. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. Security Fix(es): * python: The zipfile module is vulnerable to zip-bombs leading to denial of service (CVE-2024-0450) * python: incorrect IPv4 and IPv6 private ranges (CVE-2024-4032) * python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service (CVE-2024-8088) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python3.12-debug-3.12.5-2.el9_5.2.s390x.rpm 49b7c64a34f1dfe55b109bef843341ded868947f92e5ef374d6563413488c77a python3.12-idle-3.12.5-2.el9_5.2.s390x.rpm f71523ce9017a50f3890607c0037470cf1679ebb26888e3de5c226d93dc53153 python3.12-test-3.12.5-2.el9_5.2.s390x.rpm b5d20bee04ce083a217507734a9059a2c651dfee4822ca6e5b47afa1a3f90d78 RLSA-2024:9192 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: The zipfile module is vulnerable to zip-bombs leading to denial of service (CVE-2024-0450) * python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service (CVE-2024-8088) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms python3.11-debug-3.11.9-7.el9_5.2.s390x.rpm 2be38210696eac257f581a91a2818cb24cb3cf2ca657310241bb01c2fee38c83 python3.11-idle-3.11.9-7.el9_5.2.s390x.rpm c744650c05dd462268383c878d09cfd3c46b147c22d86d8fcec20c99b4cb3e3a python3.11-test-3.11.9-7.el9_5.2.s390x.rpm a650ec7622db3549f5e1df1218e959ae94f153af695a779c8b603976b94b4c8d RLBA-2024:9202 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mesa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms mesa-libOSMesa-24.1.2-3.el9.s390x.rpm 3f318a84dbc501fd8776bf201ae464f008a9e0cf58bda4681d7104582e7b0f72 mesa-libOSMesa-devel-24.1.2-3.el9.s390x.rpm 542bb11a4aaa22671d93a92c39553338f7c58319e4ea80cce658a490e17eb324 RLBA-2024:9208 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for bind9.18. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Beta Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms bind9.18-devel-9.18.29-1.el9_5.1.s390x.rpm 3c8b8dd5d36e13bb7acb280437cf64d86f855e25373dd0a7326a9b232c50fd95 bind9.18-doc-9.18.29-1.el9_5.1.noarch.rpm a6ef797885ebc1ab67bdda539f25c3cfdcea04cb21181b48a531e803a6f1999f RLBA-2024:9217 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for corosync. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms corosynclib-3.1.8-2.el9.s390x.rpm f1b826afa2c321367da6d9eb05476dffc46fac3216b3b51db1a37e1dce46016c corosync-vqsim-3.1.8-2.el9.s390x.rpm d6d61ce71b0e05297e7a443348145117269cd0535285ba463198a326c114b166 RLBA-2024:9221 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gdm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms gdm-devel-40.1-27.el9.s390x.rpm 6807c352ba0f5f8d626b15862a038e93ef1b5c2feab5490f7bfbb1e781e95840 gdm-pam-extensions-devel-40.1-27.el9.s390x.rpm b5071191c6b8f0ba0ce4516b323fc316270bdfdeaa7c1f174fc4cd837a20c845 RLBA-2024:9227 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qt5-qttools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms qt5-qttools-static-5.15.9-5.el9.s390x.rpm a55b8afd68aca553ffb5230372b95679172d89a372b9b11007b2a8a44fea9769 RLBA-2024:9266 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cups-filters. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms cups-filters-devel-1.28.7-18.el9_5.s390x.rpm c759a5108614123dee2a6f2e72c3ef4d2deff1a9330788c4ce9c241de607e95f RLBA-2024:9267 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dovecot. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms dovecot-devel-2.3.16-14.el9.s390x.rpm 18790fb40f1e69899bbc272cc0bbeb248953920bd9ce9668586ecb0c16c79541 RLBA-2024:9289 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sanlock. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms sanlock-devel-3.9.3-2.el9.s390x.rpm 836d999c5d35ff006bcc95dda64589cc2fb8ec0da867bcd8e3b945d845ac0aa3 RLBA-2024:9294 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for varnish. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms varnish-devel-6.6.2-6.el9.s390x.rpm ee7278d24fde1ab202493240646a15db4efc8842bb933249cd6a7ca58c3d1854 RLBA-2024:9291 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nginx. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms nginx-mod-devel-1.20.1-20.el9.0.1.s390x.rpm 802a3a2758d3c251fe32b194124d13724ed46e6e6d1cae0fe97893690c5dbac1 RLEA-2024:9296 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libguestfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libguestfs-devel-1.50.2-1.el9.s390x.rpm 3147b1997312d7c2be984dce8ed541c5a1fc4624ee968be1e39bbf14c76cfe8b libguestfs-gobject-1.50.2-1.el9.s390x.rpm 949af590a960fa552767d62a8c95ae4386a6104a924818844504ab55ce81f25f libguestfs-gobject-devel-1.50.2-1.el9.s390x.rpm dd98e56ab8de704f43bb233715d70b9741bf8d1dc8987aa15cac2dc3c098d485 libguestfs-man-pages-ja-1.50.2-1.el9.noarch.rpm f79077e53314806cdb868bb9a1739483ad4d82903e5bf467402c7c4bf6cf40f3 libguestfs-man-pages-uk-1.50.2-1.el9.noarch.rpm eb6620e920d65aaca1fa7e9ef19266567352164ecd4b5b2a8506ea873e5721e9 lua-guestfs-1.50.2-1.el9.s390x.rpm 625f33c0a4125016f90a0f43af8760776467a1e788e2e30515d9060f98ec2725 ocaml-libguestfs-1.50.2-1.el9.s390x.rpm 1bb74f844cfb437d54ebcc0714c6366b62f499e8bd05042f15146caa31094776 ocaml-libguestfs-devel-1.50.2-1.el9.s390x.rpm 356ff68241374bb8e7b83d5f5626176d08fbe8f6994372b7ecae844f3f3a3f10 php-libguestfs-1.50.2-1.el9.s390x.rpm cfacd95c8b0bbf89d347d8c583daef86cbf185517d81918033eaf2f84cb7edf3 ruby-libguestfs-1.50.2-1.el9.s390x.rpm 47f5c821d737a5feea7be09e0fe2ce98ab5b60088a34431c697f497d786b06ff RLBA-2024:9440 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libabigail. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libabigail-2.5-1.el9.s390x.rpm 633862ced793e5d4ef406352ac77dece555d201dfa0c8ed3e25dbe41e364de14 RLEA-2024:9448 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for java-11-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The 11.0.25 release is the last release of Rocky Enterprise Software Foundation build of OpenJDK 11 that Rocky Enterprise Software Foundation plans to fully support. The full support for Rocky Enterprise Software Foundation build of OpenJDK 11 ends on 31 October 2024. As a consequence, Rocky Enterprise Software Foundation build of OpenJDK 17 will be the default system-wide Java version on Rocky Linux 9 after 31 October 2024. Please refer to the Release Notes for Rocky Enterprise Software Foundation Build of OpenJDK 11.0.25 [1] for more details, including the Extended Life Cycle Support (ELS) phase for Rocky Enterprise Software Foundation build of OpenJDK 11 and for migration instructions. See [2] for instructions on configuring Rocky Enterprise Software Foundation build of OpenJDK 17 on Rocky Linux and selecting the default Rocky Enterprise Software Foundation build of OpenJDK version to use system wide. [1] https://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/11/html/release_notes_for_red_hat_build_of_openjdk_11.0.25/endfullsupport [2] https://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/17/html-single/configuring_red_hat_build_of_openjdk_17_on_index rocky-linux-9-s390x-crb-rpms java-11-openjdk-demo-slowdebug-11.0.25.0.9-3.el9.s390x.rpm cfb0bf73495c66de08f2b63ee467e492bb5532cf2a50edabda4b7a624ddb535c java-11-openjdk-devel-slowdebug-11.0.25.0.9-3.el9.s390x.rpm b336d4f0f76f24d7d5d0305f579379b2d3fb482bae6cff18c7ea17b795c0ed4c java-11-openjdk-headless-slowdebug-11.0.25.0.9-3.el9.s390x.rpm d0c9977bdb6e976c2fd5160af8c8a91791e33237b4fa43280e7b952cfed43b89 java-11-openjdk-jmods-slowdebug-11.0.25.0.9-3.el9.s390x.rpm a131c037a1848993d15c052e588496f6c6c6567b283746384100d9651ed3d8bc java-11-openjdk-slowdebug-11.0.25.0.9-3.el9.s390x.rpm df8a3f9d9dff34a4f30df88a280888383597e914bc3038c921d34d19864d832a java-11-openjdk-src-slowdebug-11.0.25.0.9-3.el9.s390x.rpm 3b2eba2c01c75460a7a78c6337063eb7523e647baf4ac6866ab91de491e541d7 java-11-openjdk-static-libs-slowdebug-11.0.25.0.9-3.el9.s390x.rpm 18bd1ed4fae58e3e25c848f9a6ea1c01aae94f25b47a4b9a5c865c559e491617 RLEA-2024:9463 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for java-17-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The 11.0.25 release is the last release of Rocky Enterprise Software Foundation build of OpenJDK 11 that Rocky Enterprise Software Foundation plans to fully support. The full support for Rocky Enterprise Software Foundation build of OpenJDK 11 ends on 31 October 2024. As a consequence, Rocky Enterprise Software Foundation build of OpenJDK 17 will be the default system-wide Java version on Rocky Linux 9 after 31 October 2024. Please refer to the Release Notes for Rocky Enterprise Software Foundation Build of OpenJDK 11.0.25 [1] for more details, including the Extended Life Cycle Support (ELS) phase for Rocky Enterprise Software Foundation build of OpenJDK 11 and for migration instructions. See [2] for instructions on configuring Rocky Enterprise Software Foundation build of OpenJDK 17 on Rocky Linux and selecting the default Rocky Enterprise Software Foundation build of OpenJDK version to use system wide. [1] https://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/11/html/release_notes_for_red_hat_build_of_openjdk_11.0.25/endfullsupport [2] https://docs.redhat.com/en/documentation/red_hat_build_of_openjdk/17/html-single/configuring_red_hat_build_of_openjdk_17_on_index rocky-linux-9-s390x-crb-rpms java-17-openjdk-demo-slowdebug-17.0.13.0.11-4.el9.s390x.rpm f529a44a8a9bd4f3ad94b6fc74ad164c5e81a4c2172da431b01930fcb6ccffef java-17-openjdk-devel-slowdebug-17.0.13.0.11-4.el9.s390x.rpm 0b0c17cd994f62fe97a1a67e47c9641d9ca46248f46914ba346c0d04b09c112f java-17-openjdk-headless-slowdebug-17.0.13.0.11-4.el9.s390x.rpm d100d415d8192e94b0ccd5099b842aae0e5bf5b380daafafc3262590596f31b9 java-17-openjdk-jmods-slowdebug-17.0.13.0.11-4.el9.s390x.rpm 01a503867777f5630b307be5e64bf844c9a4a44ba5935a14f339ea756890f68b java-17-openjdk-slowdebug-17.0.13.0.11-4.el9.s390x.rpm 7111649f8337a33ac2202c544e28939535cea0171be85c4f0f07661ee6e5c47d java-17-openjdk-src-slowdebug-17.0.13.0.11-4.el9.s390x.rpm 95788181347f912e594424767ad98b2fe24e88a8bb46f82de3a9bd3973edbf33 java-17-openjdk-static-libs-slowdebug-17.0.13.0.11-4.el9.s390x.rpm 9a8fa481857ef822a3199834b4a4214b609f95904103a90d3c6d01597ede1387 RLBA-2024:9466 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mutter, gnome-shell. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Mutter is a compositing window manager that displays and manages desktop through OpenGL. It combines the window-management logic inherited from the Metacity window manager with a display engine that uses the Clutter toolkit. Bug Fix(es): * gnome-shell crash on wl_copy [rhel-9.5.z] (JIRA:Rocky Linux-62993) * gnome-shell crash on ctrl-alt-shift -left/right shortcuts [rhel-9.5.z] (JIRA:Rocky Linux-62997) * Some application popups switch workspaces and steal focus on Xorg sessions [rhel-9.5.z] (JIRA:Rocky Linux-63000) rocky-linux-9-s390x-crb-rpms mutter-devel-40.9-22.el9_5.s390x.rpm 41626243ad473f97d1c66b372f902260f8b1ae157f8ffeeb2b4397d03698f698 RLBA-2024:9465 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for java-21-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Rocky Linux 9.5 GA release was prepared with the most recent release of OpenJDK 21 at that time, which was OpenJDK 21.0.4, released on 16 July 2024. OpenJDK 21.0.5 was subsequently released on 15 October 2024, with existing Rocky Linux 9 releases (9.0, 9.2, and 9.4) being updated at that time. This update now brings OpenJDK 21.0.5 to Rocky Linux 9.5. For more information about the changes in OpenJDK 21.0.5, see the release notes listed in the References section. rocky-linux-9-s390x-crb-rpms java-21-openjdk-demo-slowdebug-21.0.5.0.11-2.el9.s390x.rpm e7e0afe55255861ac5ebaecc22572e03a8741d9fdcfa1b622b5dfc50c38090fd java-21-openjdk-devel-slowdebug-21.0.5.0.11-2.el9.s390x.rpm cf8d1c77040775ce8ab637d7ea7305a0fb3b446cc745d51da55807586acfdbd2 java-21-openjdk-headless-slowdebug-21.0.5.0.11-2.el9.s390x.rpm 7f9dd7e0458d30803a393ac208f87d73617732ac3e47244f9acea8d6b97e0e9e java-21-openjdk-jmods-slowdebug-21.0.5.0.11-2.el9.s390x.rpm 4b6c05697f8885f60fc0fe57c19150337fd5f4b198b0adc0af1f82b7da35bb15 java-21-openjdk-slowdebug-21.0.5.0.11-2.el9.s390x.rpm 487d9aee2f76095e18b350e6e33fb1b655ed62ddf9571073b4e03793c65c32ed java-21-openjdk-src-slowdebug-21.0.5.0.11-2.el9.s390x.rpm b2fecc7fab27df517e8a5741df6be9f0fb5c736d4382d7e748380b27937b50dd java-21-openjdk-static-libs-slowdebug-21.0.5.0.11-2.el9.s390x.rpm 2fa6630dddbc4a7a0f18467182b34f166b06716942e25277a7479a43de5df9c7 RLBA-2024:9683 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for evolution. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Evolution is a GNOME application that provides integrated email, calendar, contact management, and communications functionality. Bug Fix(es): * WebKitGTK 2.46.1: Middle mouse button inserts primary clipboard twice [rhel-9.5.z] (JIRA:Rocky Linux-62680) rocky-linux-9-s390x-crb-rpms evolution-devel-3.40.4-10.el9_5.1.s390x.rpm 94478cc28260af430626ddb5dcdcc226d64353e9234af31f7035651af41ed41d RLSA-2024:10858 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for ruby. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fix(es): * rexml: REXML ReDoS vulnerability (CVE-2024-49761) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms ruby-doc-3.0.7-163.el9_5.noarch.rpm 9b24423a8768ece429ac9752ae2383617a64271157c87d7c87c3d4735a9d7755 RLSA-2024:10978 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.12. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: Virtual environment (venv) activation scripts don't quote paths (CVE-2024-9287) * python: Unbounded memory buffering in SelectorSocketTransport.writelines() (CVE-2024-12254) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.12-debug-3.12.5-2.el9_5.2.s390x.rpm 49b7c64a34f1dfe55b109bef843341ded868947f92e5ef374d6563413488c77a python3.12-idle-3.12.5-2.el9_5.2.s390x.rpm f71523ce9017a50f3890607c0037470cf1679ebb26888e3de5c226d93dc53153 python3.12-test-3.12.5-2.el9_5.2.s390x.rpm b5d20bee04ce083a217507734a9059a2c651dfee4822ca6e5b47afa1a3f90d78 RLSA-2024:11111 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: Virtual environment (venv) activation scripts don't quote paths (CVE-2024-9287) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.11-debug-3.11.9-7.el9_5.2.s390x.rpm 2be38210696eac257f581a91a2818cb24cb3cf2ca657310241bb01c2fee38c83 python3.11-idle-3.11.9-7.el9_5.2.s390x.rpm c744650c05dd462268383c878d09cfd3c46b147c22d86d8fcec20c99b4cb3e3a python3.11-test-3.11.9-7.el9_5.2.s390x.rpm a650ec7622db3549f5e1df1218e959ae94f153af695a779c8b603976b94b4c8d RLBA-2024:11218 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nmstate. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound. Bug Fix(es) and Enhancement(s): * Disabling ipv6 on ovs-interface is failing due to verification error [rhel-9.5.z] (JIRA:Rocky Linux-60242) * nmstatectl gc mode does not support blackhole routes [rhel-9.5.z] (JIRA:Rocky Linux-58666) * nncp route-rules applied breaks br-ex connectivity [rhel-9.5.z] (JIRA:Rocky Linux-60261) * nmstate: Connectivity issue with a configuration has `ipv4 dhcp: true` and `ipv6 enabled: false`. [rhel-9.5.z] (JIRA:Rocky Linux-61899) * Pod interface removed [rhel-9.5.z] (JIRA:Rocky Linux-65031) rocky-linux-9-s390x-crb-rpms nmstate-devel-2.2.39-1.el9_5.s390x.rpm 9e622151e754f6690013a60debdf2316ce6f75de50d7fa75e8d5ab8fcf69f552 nmstate-static-2.2.39-1.el9_5.s390x.rpm 1e960896f8855e79a350c17c959437d6f99475924a9efbe92b96ae7256d66a1e RLSA-2024:11219 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for edk2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix(es): * edk2: Integer overflows in PeCoffLoaderRelocateImage (CVE-2024-38796) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms edk2-aarch64-20240524-6.el9_5.3.noarch.rpm 4028b087e6ae46a5aa42437a1a23327bd87d42b19b7c98774b5211ed6500c120 edk2-ovmf-20240524-6.el9_5.3.noarch.rpm fc0caf09a366d9af2744b360332c131580cca70d734a06cc6db99a13300aff34 RLBA-2024:11223 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for javapackages-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The javapackages-tools packages provide macros and scripts to support Java packaging. Bug Fix(es): * javapackages-tools: Make OpenJDK 17 default JRE/JDK [rhel-9.5.z] (JIRA:Rocky Linux-62403) * javapackages-tools: Include java-21-headless in generated auto-requires [rhel-9.5.z] (JIRA:Rocky Linux-62409) rocky-linux-9-s390x-crb-rpms javapackages-generators-6.0.0-7.el9_5.noarch.rpm 5afaca645f3ae6bc603139715ebb04300926e69f714d36c428f1cf33e64030eb javapackages-local-6.0.0-7.el9_5.noarch.rpm 149da2e9b3156051e9073e55f33362a47bc8ec8f07313e61264260997363464d maven-local-6.0.0-7.el9_5.noarch.rpm bb69f6e0f3eaae62a8bd3cd54403bdf3c2267d36852fc94e5c4a046624a944e3 python3-javapackages-6.0.0-7.el9_5.noarch.rpm 8e443104c3cab7f7b9e90d2b6e417acbb7e390ce3784c7e8139b9f1457b4d001 RLBA-2024:11224 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ostree. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es): * [9.5] ostree Backport https://github.com/ostreedev/ostree/pull/3300 (JIRA:Rocky Linux-62772) * [rhel-9.5.z] Rebase ostree to 2024.9 (JIRA:Rocky Linux-68351) rocky-linux-9-s390x-crb-rpms ostree-devel-2024.9-1.el9_5.s390x.rpm f30b32ca20bcba3aceb9ae4963b1a3d925d25a67aaffc58b83caf4137b2081bb RLBA-2024:11228 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for bcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

BPF Compiler Collection (BCC) is a toolkit for easier creation of efficient kernel tracing and manipulation programs. BCC uses the extended Berkeley Packet Filter (eBPF) tool. Bug Fix(es): * The bcc-tools 'bio*' does not run as expected on Rocky Linux 9.4 [rhel-9.5.z] (JIRA:Rocky Linux-65192) rocky-linux-9-s390x-crb-rpms bcc-devel-0.30.0-7.el9_5.s390x.rpm 5be7fb467c9c3e82ad28de36751078e3ef570a4809a180fca0abdb55419f83c2 bcc-doc-0.30.0-7.el9_5.noarch.rpm edc236c3c2416b0de7899a9dc9f213e8fd962fa01892fb9223f6b6f7f6c29d60 RLSA-2024:11232 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for unbound. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix(es): * unbound: Unbounded name compression could lead to Denial of Service (CVE-2024-8508) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms unbound-devel-1.16.2-8.el9_5.1.s390x.rpm e4505ffce1b33f46da34b93082182690087777fd29747923c5de31f057b616f9 RLSA-2024:11237 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libsndfile. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV. Security Fix(es): * libsndfile: Segmentation fault error in ogg_vorbis.c:417 vorbis_analysis_wrote() (CVE-2024-50612) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libsndfile-devel-1.0.31-8.el9_5.2.s390x.rpm 5e3001ebce83265adf45424964e8a9aa17adc64c0f01348977e481495645b8e7 RLBA-2024:11241 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for seabios. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The seabios packages contain an open-source legacy BIOS implementation that can be used as a coreboot payload. They implement the standard BIOS calling interfaces that a typical x86 proprietary BIOS implements. Bug Fix(es): * amdgpu failed to initialize when multiple AMD MI210 GPUs assigned and firmware is seabios [rhel-9.5.z] (JIRA:Rocky Linux-68955) rocky-linux-9-s390x-crb-rpms seabios-bin-1.16.3-2.el9_5.1.noarch.rpm 8928d209011e99e7f23d8c3a0053bc3e0a6c6c6e9a68251e2c7ef0125f288c3e seavgabios-bin-1.16.3-2.el9_5.1.noarch.rpm e34541684cb8c726bc494c91ef3fc57c134d841f496834823fcf68c7b696b125 RLBA-2025:0915 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for 389-ds-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Bug Fix(es): * Wrong set of entries returned for some search filters [rhel-9.5.z] (JIRA:Rocky Linux-65775) * deadlock during cleanAllRuv [rhel-9.5.z] (JIRA:Rocky Linux-66138) * cleanallruv consums CPU and is slow [rhel-9.5.z] (JIRA:Rocky Linux-67163) * Freelist ordering causes high wtime [rhel-9.5.z] (JIRA:Rocky Linux-70257) * Some nsslapd-haproxy-trusted-ip values are discarded upon a restart. [rhel-9.5.z] (JIRA:Rocky Linux-74350) rocky-linux-9-s390x-crb-rpms 389-ds-base-devel-2.5.2-5.el9_5.s390x.rpm e83e5f60043189b2374436c590e7d3e31ad34fd14c4d672ae7c7b4dddb061f05 RLBA-2025:0924 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fix(es): * kinit with external idp user is failing [rhel-9.5.z] (JIRA:Rocky Linux-76011) rocky-linux-9-s390x-crb-rpms python3-ipatests-4.12.2-1.el9_5.4.noarch.rpm 10e3a62af67d86e7b31a966c667b26ffd63c771f7923c9f6e858ed4300daa264 RLSA-2025:1670 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for bind9.18. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

BIND (Berkeley Internet Name Domain) is an implementation of the DNS (Domain Name System) protocols. BIND includes a DNS server (named), which resolves host names to IP addresses; a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating properly. Security Fix(es): * bind: bind9: Many records in the additional section cause CPU exhaustion (CVE-2024-11187) * bind: bind9: DNS-over-HTTPS implementation suffers from multiple issues under heavy query load (CVE-2024-12705) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms bind9.18-devel-9.18.29-1.el9_5.1.s390x.rpm 3c8b8dd5d36e13bb7acb280437cf64d86f855e25373dd0a7326a9b232c50fd95 bind9.18-doc-9.18.29-1.el9_5.1.noarch.rpm a6ef797885ebc1ab67bdda539f25c3cfdcea04cb21181b48a531e803a6f1999f RLSA-2025:1681 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: bind9: Many records in the additional section cause CPU exhaustion (CVE-2024-11187) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms bind-devel-9.16.23-24.el9_5.3.s390x.rpm 0c3a6942dbda9ce57db4c8c1f80371c1917a09cec3626ce157f92ed186778823 bind-doc-9.16.23-24.el9_5.3.noarch.rpm 96351e8ec1debab68ce99c9bb73054b4dcec0a33b80ad748aa6b171b23f18a40 RLBA-2022:2444 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jq. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms jq-devel-1.6-12.el9.s390x.rpm 2960faadad08d7221a178e94ecb1ff89129ba7a9b05d9801eea06b25d0bcf200 RLBA-2024:9368 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libica. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libica-devel-4.3.0-1.el9.s390x.rpm 9160acffa2b9a5f2cf3ed29f028e0c1c261d539bf455ed767386066482bc48c1 RLBA-2024:2443 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libselinux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms libselinux-static-3.6-1.el9.s390x.rpm cde743fe514b8435c9bea766991d7c49c568de24c6d92faeae0f7bbc599ea87e RLBA-2024:2500 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fwupd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms fwupd-devel-1.9.13-2.el9.s390x.rpm b4d875489a178a87fb62af5b8d7adf3f881bbee593038c03233b0563f8a604ac RLBA-2024:11252 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Bug Fix(es): * SSSD needs an option to indicate if the LDAP server can run the exop with an anonymous bind or not [rhel-9.5.z] (JIRA:Rocky Linux-66268) * Label DP_OPT_DYNDNS_REFRESH_OFFSET has no corresponding option [rhel-9.5.z] (JIRA:Rocky Linux-67673) * sssd backend process segfaults when krb5.conf is invalid [rhel-9.5.z] (JIRA:Rocky Linux-68508) rocky-linux-9-s390x-crb-rpms libsss_nss_idmap-devel-2.9.5-4.el9_5.4.s390x.rpm 951f813895b728fa1b578af49d9044681fbef9f8f49ce181bd61293849318107 RLBA-2024:11253 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsemanage. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libsemanage library provides an API for the manipulation of SELinux binary policies. It is used by the checkpolicy compiler and similar utilitlies, as well as by programs such as load_policy, which must perform specific transformations on binary policies, such as customizing policy Boolean settings. Bug Fix(es): * semanage fails to get lock if / is on NFS (or /var/lib/selinux/) [rhel-9.5.z] (JIRA:Rocky Linux-69531) rocky-linux-9-s390x-crb-rpms libsemanage-devel-3.6-2.1.el9_5.s390x.rpm c54cbab7140afb1ac5c2052dae7be25149c65eb5f5349a1d40a2b0a154b2e2d4 RLBA-2024:2350 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pyproject-rpm-macros. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms pyproject-rpm-macros-1.12.0-1.el9.noarch.rpm 20775a4ddbade42a6e7c60ba94593c3488a1def25fb78dafade4aa3668895699 RLSA-2024:2353 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for mingw-w64-tools, mingw-headers, mingw-zlib, mingw-binutils, mingw-winpthreads, mingw-libffi, mingw-gcc, mingw-crt, mingw-filesystem. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

MinGW (Minimalist GNU for Windows) is a free and open source software development environment to create Microsoft Windows applications. Security Fix(es): * binutils: Heap-buffer-overflow binutils-gdb/bfd/libbfd.c in bfd_getl64 (CVE-2023-1579) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-s390x-crb-rpms mingw32-binutils-2.41-3.el9.s390x.rpm 01794ce42569a6c539dc3e08b36c373d05d2550fea4e459971ccada82b8e3813 mingw32-cpp-13.2.1-7.el9.s390x.rpm e01329aed4abf5a6ec4cb86f43e110e0e44c713dae341e7eb205220aea256a50 mingw32-crt-11.0.1-3.el9.noarch.rpm c51230f416183e0c57de307d407e2ffba39f5c4090da825baba386b61741f5fe mingw32-filesystem-148-3.el9.noarch.rpm ec3132796ec36ed721b243022b478be4a6daf1d12aee2c81ead248ed61269fcb mingw32-gcc-13.2.1-7.el9.s390x.rpm 4a6c33e628a4343be0da598a5c40367c9c46dc9b65506752aabbe5c6f0840a39 mingw32-gcc-c++-13.2.1-7.el9.s390x.rpm 3dc87613c45ed1bbd5f89fc7c44e40c59ae7ccb9ac2272a275e67e9967c0e15b mingw32-headers-11.0.1-3.el9.noarch.rpm 560988b9c9a61ff67b3f1f0670c5eaf4120f8401537c565f0f61e332302c26f9 mingw32-libgcc-13.2.1-7.el9.s390x.rpm cbaf4dab707583e38bcad5922b4bc1ed201e55debf63736eca972ed74fb6e72d mingw32-winpthreads-11.0.1-3.el9.noarch.rpm a8065ddbe3b44cef323c79951887a7d0f254f3616bb3e6adb1c0d33eb8dcf393 mingw32-winpthreads-static-11.0.1-3.el9.noarch.rpm 7803a68ccb1a6722b0c49a5ce9ab858af3bef55d4074323e4e5697ca1abc900d mingw64-binutils-2.41-3.el9.s390x.rpm 934c7564455d15de6728fdc9d38a56c3a50a05a369ebecea95c8c9910076d1fe mingw64-cpp-13.2.1-7.el9.s390x.rpm 0cbf76d4c05a89c1f2c08abe87f11aa3cd2d5a86aa8933eedad73dc71b4aa7a7 mingw64-crt-11.0.1-3.el9.noarch.rpm 0d7cd781ab9b772bb9ed9c913794f1a531a4c543889e456da4f1e54ce9863582 mingw64-filesystem-148-3.el9.noarch.rpm b3a67b1db16919e535260fd335e47d65753353e08bdc3527f0e3469724a2adc2 mingw64-gcc-13.2.1-7.el9.s390x.rpm d3570c0f4072917e61d8215350b7a16d7c4a4967cdf707b2ad3511188c946213 mingw64-gcc-c++-13.2.1-7.el9.s390x.rpm a45486a3952388625ef5cd067abcd99b30d5e1ceae7a220219df1372bf70e872 mingw64-headers-11.0.1-3.el9.noarch.rpm f73ff4dd7c5e5cdca219e5b99083332fb5c2129180ce60df3d5bbc09583acba1 mingw64-libgcc-13.2.1-7.el9.s390x.rpm 31f01e2aa1108dd50c4329af89c9f0b0bc41a1e8dc52f58db29146582172b2b2 mingw64-winpthreads-11.0.1-3.el9.noarch.rpm 11140958e839c978d7e89b89499dc69209ef708e6f5b0dd26d9db33777548e00 mingw64-winpthreads-static-11.0.1-3.el9.noarch.rpm 27f558bdf97f85be1b680494e4e7b4fb1da5a9e97f2b8615dd566bed8a3c1549 mingw-binutils-generic-2.41-3.el9.s390x.rpm 8de949b36f945af6aed915293c7ab082835ab002c693698471caf3acbe487995 mingw-filesystem-base-148-3.el9.noarch.rpm 7b01e206f79e561a50b62f94540ad910b9f52435ca135bb0872511c0685f788c RLBA-2024:6177 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pybind11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

pybind11 is a lightweight header-only library that exposes C++ types in Python and vice versa, mainly to create Python bindings of existing C++ code. Bug Fix(es) and Enhancement(s): * python3.11-pybind11-devel-2.10.3-2.el9 is still in the Rocky Linux 9.4 repos, masking the fix in python3.11-pybind11-devel-2.10.3-3.el9 (JIRA:Rocky Linux-38108) rocky-linux-9-s390x-crb-rpms pybind11-devel-2.6.2-6.el9_4.s390x.rpm c9dae0b09b6628cd51faa2e7e3823897c5526a86d6ab22a396653f8a421bdb09 python3-pybind11-2.6.2-6.el9_4.s390x.rpm 579db6235026dc07311bdf26488ad5496845ab95406a3346cb773ac81c926666 RLSA-2024:6197 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for ghostscript. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fix(es): * ghostscript: format string injection leads to shell command execution (SAFER bypass) (CVE-2024-29510) * ghostscript: path traversal and command execution due to path reduction (CVE-2024-33869) * ghostscript: path traversal to arbitrary files if the current directory is in the permitted paths (CVE-2024-33870) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms libgs-devel-9.54.0-17.el9_4.s390x.rpm c2b7c1d0798cd364c23f118607b0790cdf1f4a0cede32b356aa1fc316095e86b RLSA-2024:6356 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for flatpak. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Bubblewrap (/usr/bin/bwrap) is a core execution engine for unprivileged containers that works as a setuid binary on kernels without user namespaces. Security Fix(es): * flatpak: Access to files outside sandbox for apps using persistent= (--persist) (CVE-2024-42472) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms flatpak-devel-1.12.9-3.el9_5.s390x.rpm 83da551aa9ad5aff8394678418ebd7d1e2e1cea66a716f790b9d2c4a905d9cae RLBA-2024:11220 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for byte-buddy, jzlib, xerces-j2, xz-java, xml-commons-apis, jdepend, regexp, jakarta-mail, junit5, assertj-core, univocity-parsers, jakarta-oro, objectweb-asm, hamcrest, opentest4j, ant, antlr, apache-commons-logging, junit, xml-commons-resolver, jsch, bcel, jakarta-activation, bsf, apache-commons-net. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Apache Ant is a Java library and command-line tool, which drives processes described in build files as targets dependent upon each other. Ant provides a number of built-in tasks allowing to compile, assemble, test, and run Java applications. Ant can also be used effectively to build non-Java applications, for instance, C or C++ applications. Generally, Ant can be used to pilot any type of process which can be described in terms of targets and tasks. Bug Fix(es): * ant: Add OpenJDK bindings [rhel-9.5.z] (JIRA:Rocky Linux-62405) rocky-linux-9-s390x-crb-rpms antlr-C++-2.7.7-70.el9_5.s390x.rpm ddd82d6985d9d8fcc3648d1eb34e2523a4a4735aca8dbe06cc8bdbb790ab7905 byte-buddy-agent-1.10.20-7.el9_5.noarch.rpm c3bdcfa9c3b7bf73866e0d1328400925f654f2533bee5f47ab5fcfacef4e3264 RLBA-2024:11222 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jansi, cdi-api, google-guice, maven-wagon, plexus-cipher, guava, maven, httpcomponents-core, jakarta-annotations, apache-commons-io, maven-shared-utils, apache-commons-lang3, apache-commons-codec, plexus-interpolation, plexus-classworlds, sisu, plexus-sec-dispatcher, jsr-305, maven-resolver, httpcomponents-client, apache-commons-cli, plexus-containers, plexus-utils, slf4j, atinject, jsoup. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Maven is a software project management and comprehension tool. Based on the concept of a project object model (POM), Maven can manage a project's build, reporting and documentation from a central piece of information. Bug Fix(es): * maven: Suggest maven-openjdk17 [rhel-9.5.z] (JIRA:Rocky Linux-62398) * maven: Add maven-openjdk21 [rhel-9.5.z] (JIRA:Rocky Linux-62407) rocky-linux-9-s390x-crb-rpms plexus-containers-container-default-2.1.0-11.el9_5.noarch.rpm 99eb201e160e3d6363f388042eac35bd32d74e04182efe9416871ae2ef3e202c RLSA-2025:4244 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for glibc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix(es): * glibc: buffer overflow in the GNU C Library's assert() (CVE-2025-0395) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms glibc-benchtests-2.34-125.el9_5.8.s390x.rpm a67d9c0ddc9092ced8c22fabc6a29f9614ba0c2e8eb6d05912a3731841e34699 glibc-nss-devel-2.34-125.el9_5.8.s390x.rpm 0cb3c6fafd61badae9e134631e654abd0f4129e6677f8b1006c6a947a644f8b0 glibc-static-2.34-125.el9_5.8.s390x.rpm 1b900e75fed8c2f580d121d09d60b006cce3849e295e82a645d19e0716367967 nss_db-2.34-125.el9_5.8.s390x.rpm effb869d8ac94c7d95e687edd620ab98c827b9a77e0012a9849d6148ed3d3ea4 nss_hesiod-2.34-125.el9_5.8.s390x.rpm 4e91959ead1429507b3cd09540f9ff3c01a4685aaff157c40f1a5f8ef66246e3 RLSA-2025:4341 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: kobject_uevent: Fix OOB access within zap_modalias_env() (CVE-2024-42292) * kernel: ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322) * kernel: bonding: fix null pointer deref in bond_ipsec_offload_ok (CVE-2024-44990) * kernel: ELF: fix kernel.randomize_va_space double read (CVE-2024-46826) * kernel: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu() (CVE-2025-21927) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-503.40.1.el9_5.s390x.rpm dfce8c29c7955a64136a0a88d1eaa3d55a24864b693449548fc6a2b76524580c libperf-5.14.0-503.40.1.el9_5.s390x.rpm 1d9cee378482c78dad91bf1cb9ac7c4fdb545563d7460ce164844f057b2dbad2 RLSA-2025:3631 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for python3.12. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * cpython: python: Uncontrolled CPU resource consumption when in http.cookies module (CVE-2024-7592) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.12-debug-3.12.5-2.el9_5.3.s390x.rpm 0bafce8d47e0889869052ccd97371a8a7a972dd5f3f073c7f557c3d3f005a82b python3.12-idle-3.12.5-2.el9_5.3.s390x.rpm 88731a4183e3d352b449e294bcb14885351c0485566718f46b1ac2858801f7b3 python3.12-test-3.12.5-2.el9_5.3.s390x.rpm 088232a72d9fb2f81a2deeee45eca23d5c5eb01c0f07c78b5fa23bf936431b0e RLSA-2025:3634 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for python3.11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * cpython: python: Uncontrolled CPU resource consumption when in http.cookies module (CVE-2024-7592) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms python3.11-debug-3.11.9-7.el9_5.3.s390x.rpm 4e0a5d2045061dbd5f3b74b099ccdd7ea5c9f032739bc020279c66dfa35717cb python3.11-idle-3.11.9-7.el9_5.3.s390x.rpm bce8c86a17af0dfb54d0675353ab0cff327c15e0bf63b38b15e3c905d40836a5 python3.11-test-3.11.9-7.el9_5.3.s390x.rpm 13192fda6c3b9ddda0ecd44f5f1215f45b0ff038556743f6f863d88db116a160 RLSA-2025:4491 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for 389-ds-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: null pointer dereference leads to denial of service (CVE-2025-2487) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms 389-ds-base-devel-2.5.2-9.el9_5.s390x.rpm 94d09bd28d1ea66a4ac0e4ef436a2a4f1708eaff77b33abcc067453217befcd3 RLSA-2022:5948 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for mysql-selinux, mariadb, galera. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: galera (26.4.11), mariadb (10.5.16), mysql-selinux (1.0.5). Security Fix(es): * mariadb: MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used (CVE-2021-46669) * mariadb: lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer (CVE-2022-24048) * mariadb: lack of validating the existence of an object prior to performing operations on the object (CVE-2022-24050) * mariadb: lack of proper validation of a user-supplied string before using it as a format specifier (CVE-2022-24051) * mariadb: CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability (CVE-2022-24052) * mariadb: assertion failure in Item_args::walk_arg (CVE-2022-27376) * mariadb: use-after-poison when complex conversion is involved in blob (CVE-2022-27377) * mariadb: server crash in create_tmp_table::finalize (CVE-2022-27378) * mariadb: server crash in component arg_comparator::compare_real_fixed (CVE-2022-27379) * mariadb: server crash at my_decimal::operator= (CVE-2022-27380) * mariadb: server crash at Field::set_default via specially crafted SQL statements (CVE-2022-27381) * mariadb: assertion failure via component Item_field::used_tables/update_depend_map_for_order (CVE-2022-27382) * mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c (CVE-2022-27383) * mariadb: crash via component Item_subselect::init_expr_cache_tracker (CVE-2022-27384) * mariadb: server crashes in query_arena::set_query_arena upon SELECT from view (CVE-2022-27386) * mariadb: assertion failures in decimal_bin_size (CVE-2022-27387) * mariadb: crash when using HAVING with NOT EXIST predicate in an equality (CVE-2022-27444) * mariadb: assertion failure in compare_order_elements (CVE-2022-27445) * mariadb: crash when using HAVING with IS NULL predicate in an equality (CVE-2022-27446) * mariadb: use-after-poison in Binary_string::free_buffer (CVE-2022-27447) * mariadb: crash in multi-update and implicit grouping (CVE-2022-27448) * mariadb: assertion failure in sql/item_func.cc (CVE-2022-27449) * mariadb: crash via window function in expression in ORDER BY (CVE-2022-27451) * mariadb: assertion failure in sql/item_cmpfunc.cc (CVE-2022-27452) * mariadb: use-after-free when WHERE has subquery with an outer reference in HAVING (CVE-2022-27455) * mariadb: assertion failure in VDec::VDec at /sql/sql_type.cc (CVE-2022-27456) * mariadb: incorrect key in "dup value" error after long unique (CVE-2022-27457) * mariadb: use-after-poison in Binary_string::free_buffer (CVE-2022-27458) * mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc (CVE-2022-31622) * mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc (CVE-2022-31623) * mariadb: Crash executing query with VIEW, aggregate and subquery (CVE-2021-46659) * mariadb: MariaDB allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE) (CVE-2021-46661) * mariadb: MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements (CVE-2021-46663) * mariadb: MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value of aggr (CVE-2021-46664) * mariadb: MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations (CVE-2021-46665) * mariadb: MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements (CVE-2021-46668) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms mariadb-devel-10.5.16-2.el9_0.s390x.rpm d2eef554d6c8edbb2274c3890e9fd9bbd1a5d6afdb94f3f40d5ef4795842f025 mariadb-embedded-devel-10.5.16-2.el9_0.s390x.rpm 5aa2fd2cdf2867edfcc67b88d9f111754ebfd2463920a766bcfad56dfedbdf3b mariadb-test-10.5.16-2.el9_0.s390x.rpm 2fa44502e46c1e535c2f45ce350923e03ffd86ce94ffaf880f0cc42ae017eef6 RLSA-2023:0334 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: watch queue race condition can lead to privilege escalation (CVE-2022-2959) * kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964) * kernel: i915: Incorrect GPU TLB flush can lead to random memory access (CVE-2022-4139) * kernel: nfsd buffer overflow by RPC message over TCP with garbage data (CVE-2022-43945) * kernel: i2c: unbounded length leads to buffer overflow in ismt_access() (CVE-2022-3077) * kernel: Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option (CVE-2022-30594) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Intel 9.2: Important iavf bug fixes (BZ#2127884) * vfio zero page mappings fail after 2M instances (BZ#2128514) * nvme-tcp automatic reconnect fails intermittently during EMC powerstore NDU operation (BZ#2131359) * ice: Driver Update to 5.19 (BZ#2132070) * WARNING: CPU: 116 PID: 3440 at arch/x86/mm/extable.c:105 ex_handler_fprestore+0x3f/0x50 (BZ#2134588) * drm: duplicated call of drm_privacy_screen_register_notifier() in drm_connector_register() (BZ#2134619) * updating the appid field through sysfs is returning an -EINVAL error (BZ#2136914) * DELL EMC: System is not booting into RT Kernel with perc12. (BZ#2139213) * No signal showed in the VGA monitor when installing Rocky Linux9 in the legacy bios mode (BZ#2140153) * Practically limit "Dummy wait" workaround to old Intel systems (BZ#2142168) * ppc64le: unexpected oom panic when there's enough memory left in zswap test (BZ#2143976) * fatal error: error in backend: Branch target out of insn range (BZ#2144902) * AMdCLIENT: The kernel command line parameter "nomodeset" not working properly (BZ#2145217) * Azure: PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (BZ#2150910) * Azure z-stream: Sometimes newly deployed VMs are not getting accelerated network during provisioning (BZ#2151605) * DELL 9.0 RT - On PE R760 system, call traces are observed dmesg when system is running stress (BZ#2154407) rocky-linux-9-s390x-crb-rpms kernel-cross-headers-5.14.0-162.12.1.el9_1.0.2.s390x.rpm 047b688042e89e727ec44eefbe09c722da2453ea05b96dd31ebd7af489c448b6 RLEA-2022:7320 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ostree. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es) and Enhancement(s): * Update ostree to latest upstream version 2022.5 (BZ#2127868) rocky-linux-9-s390x-crb-rpms ostree-devel-2022.5-1.el9.s390x.rpm 695bac87a4d196896c19d1dd1f099e8a9c8cb730400d8097f321c19f66883334 RLSA-2023:0202 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-11-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411) (CVE-2023-21835) * OpenJDK: soundbank URL remote loading (Sound, 8293742) (CVE-2023-21843) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Prepare for the next quarterly OpenJDK upstream release (2023-01, 11.0.18) [Rocky Linux-9] (BZ#2157798) rocky-linux-9-s390x-crb-rpms java-11-openjdk-demo-slowdebug-11.0.18.0.10-2.el9_1.s390x.rpm bcaef3406b193e751a6ce552f16d04b27b1a37d5f8fc805b2cf58f49f67db704 java-11-openjdk-devel-slowdebug-11.0.18.0.10-2.el9_1.s390x.rpm 566f6eb33ceaa96aed2407e06204d1bf311cab2cb5e9a90b3423447e94fadbbf java-11-openjdk-headless-slowdebug-11.0.18.0.10-2.el9_1.s390x.rpm 251a9e21b65c14eefa7514da12ad0f5945f7ffdea3db3e04039c3faf64909726 java-11-openjdk-jmods-slowdebug-11.0.18.0.10-2.el9_1.s390x.rpm e7d15448412a6dfd8d975ccd49360c1b684fac6e9f5d00854a968256a2c1a6e9 java-11-openjdk-slowdebug-11.0.18.0.10-2.el9_1.s390x.rpm bcd8284b97e56150e6f46de082c767aa5d47297d57e432a770c8cdbbe70c2391 java-11-openjdk-src-slowdebug-11.0.18.0.10-2.el9_1.s390x.rpm 9277d85c4ef4e0677eb073eba300fc99892f4614c1a176c7770c29e5f6297d44 java-11-openjdk-static-libs-slowdebug-11.0.18.0.10-2.el9_1.s390x.rpm 29d7bfb5ea293f9e137c74f21e1fa03afa1599ea0712c3397663c21dc57efd17 RLSA-2023:0340 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for bash. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The bash packages provide Bash (Bourne-again shell), which is the default shell for Rocky Linux. Security Fix(es): * bash: a heap-buffer-overflow in valid_parameter_transform (CVE-2022-3715) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-s390x-crb-rpms bash-devel-5.1.8-6.el9_1.s390x.rpm 652e39818bdcf19a69b95344cfc9e748e4172de9b057d31d2522c9c2956826dc RLBA-2023:0342 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glibc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Bug Fix: * glibc: Restore IPC_64 support in sysvipc *ctl functions (BZ#2142111) rocky-linux-9-s390x-crb-rpms glibc-benchtests-2.34-40.el9_1.1.s390x.rpm d75f5d8eafb0cc2e2d68eeaa8251cd39dfc0ead3931359843aadf672daee77bf glibc-nss-devel-2.34-40.el9_1.1.s390x.rpm 3f0c8ea1871582bbc0ef4dc7552adb00b1dd98c33091e07ff8c964fe6d533e4a glibc-static-2.34-40.el9_1.1.s390x.rpm f1e926b718df2a5aec79d0bb6ddf6f58ad0b89264e73f1e9f99ecfabbfa85f90 nss_db-2.34-40.el9_1.1.s390x.rpm 0fa17554bc75c12eb352c2aa0ce4205f56e20fe37b3f43554bbfe0f69b33a3d5 nss_hesiod-2.34-40.el9_1.1.s390x.rpm 9910c79feecb42bed1b336c830dbf10f62e3e684ee81b74eb374d34bad3d9311 RLBA-2023:0347 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Bug Fix(es) and Enhancement(s): * Analyzer: Optimize and remove duplicate messages in verbose list (BZ#2139870) * SSS_CLIENT: fix thread unsafe access to get*ent structs. (BZ#2141830) * SSSD: `sssctl analyze` command shouldn't require 'root' privileged (BZ#2142960) * UPN check cannot be disabled explicitly but requires krb5_validate = false' as a work-around (BZ#2148988) * authenticating against external IdP services okta (native app) with OAuth client secret failed (BZ#2152884) rocky-linux-9-s390x-crb-rpms libsss_nss_idmap-devel-2.7.3-4.el9_1.3.s390x.rpm cc51f219ea723c124d772c16e815e05c7c6d03d70af0b6aa9128a9b4a37270c5 RLBA-2023:0349 Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cryptsetup. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The cryptsetup packages provide a utility for setting up disk encryption using the dm-crypt kernel module. Bug Fix(es) and Enhancement(s): * Fix FIPS related issues in PBKDF2 (BZ#2151576) rocky-linux-9-s390x-crb-rpms cryptsetup-devel-2.4.3-5.el9_1.1.s390x.rpm 8fd5e079facfd57c941dead5baa42591aafb255c1540270cd35386acdf24da14