wget: Fix of CVE-2024-38428

CLSA-2025:1747851041 wget: Fix of CVE-2024-38428 TuxCare License Agreement 0 - CVE-2024-38428: properly re-implement userinfo parsing (rfc2396) Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-38428: properly re-implement userinfo parsing (rfc2396)

0 tuxcare-rhel7-els wget-1.14-18.el7_6.1.tuxcare.els1.x86_64.rpm 85df657571b2423647df487b7dee6098e3f5eb09cb119165996381c9c4c31691 CLSA-2025:1747854497 Update of expat TuxCare License Agreement 0 - Version was updated Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Version was updated

0 tuxcare-rhel7-els expat-2.1.0-15.0.1.el7_9.tuxcare.els1.i686.rpm 3b70f6b7c6ed21025f408f7165471e808940fc32d66d1f33b8ef529ad11da1f2 expat-2.1.0-15.0.1.el7_9.tuxcare.els1.x86_64.rpm f6207bb8725e4c10f7db53acc5346624afe46199ef2309a65b9ab4725cee5990 expat-devel-2.1.0-15.0.1.el7_9.tuxcare.els1.i686.rpm 21e7e206f218f80ec3cbfd77055a2330e745136147763b544b7d04a4a1d97efb expat-devel-2.1.0-15.0.1.el7_9.tuxcare.els1.x86_64.rpm c354b2d370d80fbd8549c4f38d01814ce9887178ab6928ccd155adafe6734629 expat-static-2.1.0-15.0.1.el7_9.tuxcare.els1.i686.rpm a5a3df197f6b364a1ccc67526b83564961cf67272968bff0cc34005bbbe0590a expat-static-2.1.0-15.0.1.el7_9.tuxcare.els1.x86_64.rpm 6c885994daa27a5361e489a0c1a718ced8871a159a5d9f74e6156adc1016b76f CLSA-2025:1747855403 squid: Fix of 6 CVEs TuxCare License Agreement 0 - CVE-2021-28651: fix memory leak in RFC 2169 response parsing - CVE-2021-28652: fix broken cache manager URL parsing - CVE-2021-31806: fix memory management bug - CVE-2021-31807: fix integer overflow problem - CVE-2021-31808: fix input validation bug - CVE-2021-33620: handle more partial responses Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2021-28651: fix memory leak in RFC 2169 response parsing - CVE-2021-28652: fix broken cache manager URL parsing - CVE-2021-31806: fix memory management bug - CVE-2021-31807: fix integer overflow problem - CVE-2021-31808: fix input validation bug - CVE-2021-33620: handle more partial responses

0 tuxcare-rhel7-els squid-3.5.20-17.0.3.el7_9.10.tuxcare.els1.x86_64.rpm 0d732b6ffc8c7e357189f43a5add20da776167fb00f572047947877167c5d207 squid-migration-script-3.5.20-17.0.3.el7_9.10.tuxcare.els1.x86_64.rpm 6cd079614888f1a0bf518a3137200a1fc799486cdf38467e66273277cd3cf89d squid-sysvinit-3.5.20-17.0.3.el7_9.10.tuxcare.els1.x86_64.rpm 304fd886c6e8a0aedddaa2b06e6aa3a949e641495ade2c6988f3d5b71970d7dd CLSA-2025:1747926350 Update of python TuxCare License Agreement 0 - Version was updated Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Version was updated

0 tuxcare-rhel7-els python-2.7.5-94.0.1.el7_9.tuxcare.els1.x86_64.rpm efaa7df5965c5291ee49a9928a4f7f96be9da8fb2079eecde4261ac2641429c9 python-debug-2.7.5-94.0.1.el7_9.tuxcare.els1.x86_64.rpm 4bf3697eed081cdda4a78746c11898e430c842732a6f386c824922fa7811e066 python-devel-2.7.5-94.0.1.el7_9.tuxcare.els1.x86_64.rpm b2bafbc9aff135f77e9068fb3367eea6f20a75e7db22a129b2f527094f43f1c0 python-libs-2.7.5-94.0.1.el7_9.tuxcare.els1.i686.rpm aa5c44bc6c91a6603e7bbb6126fc4bcd0315e76cc5600dac267242dcdace31db python-libs-2.7.5-94.0.1.el7_9.tuxcare.els1.x86_64.rpm 947bb564f137768fb191dcbeb2e3c9846c6ed36f67f0eb6200889c9fa39f0475 python-test-2.7.5-94.0.1.el7_9.tuxcare.els1.x86_64.rpm fed046177d36e1c6ea6cfe7e52b49e2b49050ae81ccfdda2ec3d7aab6c14d8d9 python-tools-2.7.5-94.0.1.el7_9.tuxcare.els1.x86_64.rpm 4d79b6496cdcaa72719c9db8cbf1eaf451449b416c97d01b7382659a880d4516 tkinter-2.7.5-94.0.1.el7_9.tuxcare.els1.x86_64.rpm 651bd82eab19c4f15f08898acd837fbd2c067b400c9b49227fdeea0059987550 CLSA-2025:1747926654 binutils: Fix of CVE-2025-0840 TuxCare License Agreement 0 - CVE-2025-0840: fix stack-buffer-overflow at objdump disassemble_bytes Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-0840: fix stack-buffer-overflow at objdump disassemble_bytes

0 tuxcare-rhel7-els binutils-2.27-44.base.el7_9.1.tuxcare.els2.x86_64.rpm 12f5d462b41024a18746470a7915c6a9b46077a262c9e2e9150f9b36067c4cb3 binutils-devel-2.27-44.base.el7_9.1.tuxcare.els2.i686.rpm b20356f1627971e3278dd82ee258c94eb6e9f16f22886d67795ecc516a30dae1 binutils-devel-2.27-44.base.el7_9.1.tuxcare.els2.x86_64.rpm b3462596940e6124bb06ffb0bf8cbed67b8c758546689fc83b716e0b500fe275 CLSA-2025:1748001506 krb5: Fix of CVE-2024-3596 TuxCare License Agreement 0 - CVE-2024-3596: implement support for Message-Authenticator in libkrad Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-3596: implement support for Message-Authenticator in libkrad

0 tuxcare-rhel7-els krb5-devel-1.15.1-55.el7_9.tuxcare.els2.i686.rpm b1ef69cb404be09e41e2d7e45ada2ffbe5466062da921b5bb302d06439210854 krb5-devel-1.15.1-55.el7_9.tuxcare.els2.x86_64.rpm b35e40382632dd7f7dbea8b9c00c600f47bf21f0e016ea3fd55c24b40913d8a9 krb5-libs-1.15.1-55.el7_9.tuxcare.els2.i686.rpm 714cbee8571cf916db119a18cd6c2a569767087500c8d6cc1a301d4548a6d883 krb5-libs-1.15.1-55.el7_9.tuxcare.els2.x86_64.rpm 65c60ee1a0246f087d1eee6754fe140936682b56e9284ffd1e9010eaf46a7368 krb5-pkinit-1.15.1-55.el7_9.tuxcare.els2.x86_64.rpm a806c5ab20ee5a86edabbd4e9e798e5f62d047a82b684544f82c69eceeef0f7e krb5-server-1.15.1-55.el7_9.tuxcare.els2.i686.rpm 3ae582b57b596800b40fe326ddaab29ebce214ff14eb41721fdc589d4d47c15a krb5-server-1.15.1-55.el7_9.tuxcare.els2.x86_64.rpm 279775e32546479108b5062b9303a0247b040b507a0705d5ad8aea461fede5cf krb5-server-ldap-1.15.1-55.el7_9.tuxcare.els2.i686.rpm 10ce711a969d49f460edd1cc87a97d26ae091322873881368310a9fdef3032a1 krb5-server-ldap-1.15.1-55.el7_9.tuxcare.els2.x86_64.rpm 762bf2ee09cd81cbc0a98233fa07a4d6b0f6472195f73f973464d5d779434421 krb5-workstation-1.15.1-55.el7_9.tuxcare.els2.x86_64.rpm 37b2a837ff2fe38c8293094b77979b3938b766879c41044ff0af017b35b768f5 libkadm5-1.15.1-55.el7_9.tuxcare.els2.i686.rpm 8c5b3059042924e61a8f5113bb3dbd94475d0b94ebceb139fe4ac9ce04c0c509 libkadm5-1.15.1-55.el7_9.tuxcare.els2.x86_64.rpm 9deff2e8902465b3ddf20d054f0087ecf95e31c7a099fb5f6137e2b129567308 CLSA-2025:1748282366 libxml2: Fix of CVE-2025-32415 TuxCare License Agreement 0 - CVE-2025-32415: fix heap buffer overflow in xmlSchemaIDCFillNodeTables Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-32415: fix heap buffer overflow in xmlSchemaIDCFillNodeTables

0 tuxcare-rhel7-els libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els4.i686.rpm 99221d43ac28338891b54b94b998a95d9e779ed8baffc006270175a039825aeb libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els4.x86_64.rpm 06d73a4ee0488a3ef2b314efaf39ba137670f5e89fb4e328df0fc11b5603bede libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els4.i686.rpm 41fc70fb2aeeb38507c3a7c39b985a8a26b22f6562b223e085fd3e956009b9db libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els4.x86_64.rpm 06b5e981c71e3aa8e48b0345407248f52feb4044d1cc6f4853dea6dfa605ca15 libxml2-python-2.9.1-6.0.3.el7_9.6.tuxcare.els4.x86_64.rpm 8f19f123718ff16aaa06e6a52f3b816ac69fc2693093dc4112a909aacd873bf5 libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els4.i686.rpm 38610c2f66c644bef3e08b335c3db935e66b07e8892535511a0045f57abb2d04 libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els4.x86_64.rpm 4e721ded3bc0a95e0520a394980004197847af37ac7853d33e5c5a5025b97b10 CLSA-2025:1748365696 sudo: Fix of CVE-2023-42465 TuxCare License Agreement 0 - CVE-2023-42465: Make sudo less vulnerable to ROWHAMMER attacks Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2023-42465: Make sudo less vulnerable to ROWHAMMER attacks

0 tuxcare-rhel7-els sudo-1.8.23-10.el7_9.3.tuxcare.els2.x86_64.rpm e61c9ac60d4ccbe9a04814011de964df41c34a2d725183bbe8a148b79c3ca572 sudo-devel-1.8.23-10.el7_9.3.tuxcare.els2.i686.rpm f770863b9e111b4fd0bdc863194b24187f5e7660b25385c43f77ebbdc296bb9f sudo-devel-1.8.23-10.el7_9.3.tuxcare.els2.x86_64.rpm 23869fcc0bf40a4eef7e3fc03a9ed5ff4691b4180d7e2fa9a1790575d2138ad2 CLSA-2025:1748464675 git: Fix of CVE-2024-32004 TuxCare License Agreement 0 - CVE-2024-32004: detect dubious ownership of local repositories, backport the necessary functions Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-32004: detect dubious ownership of local repositories, backport the necessary functions

0 tuxcare-rhel7-els emacs-git-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm d1563a98192f8622c85dc210068ea7c4416cb9c97950c9cc424ff1f463a9b8ac emacs-git-el-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm 24a25fbf32290fc260435f39d11460b943cf07489a2f1f2ce05332f323b810ce git-1.8.3.1-25.el7_9.tuxcare.els3.x86_64.rpm 8d58a866f7db084f541888f937f70641aece93a841cb5249f506a43ab186d09a git-all-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm 21512c19f5db0b2515abefea66968eed347ad5a108e0c7799317f3a97e919026 git-bzr-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm e874b3f26ad5fd08f196d87aeb99656d06dd1f1425f27c08715e3e1338c384fd git-cvs-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm 5bb2da69fccb698e72e4be2cd8cbaeec8309f44b316b83320894d7675f10ae28 git-daemon-1.8.3.1-25.el7_9.tuxcare.els3.x86_64.rpm df2393541f17cbf83a820b81d4b43586241a61b19eb8ff13f8c721816e3465be git-email-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm d5e27545f640a31ff533ff7dce1ff21d4773f89641edfcef68d1932d12df573c git-gnome-keyring-1.8.3.1-25.el7_9.tuxcare.els3.x86_64.rpm 748f6d005f895b4eceba037cf062c5725f207b186cb6469f396ed8a8261d5017 git-gui-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm cd180a1729ae5cd358631faf7a2d5c52e876ca5d63069210b643f77e6d6032c1 git-hg-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm cfabff1d9739acdaa91b557919a702c505e444959d50682f019a95ab92e92431 git-instaweb-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm 184739b0f11f8c813578899bd7b48e22115c3edc6d25d364da840b326beee281 git-p4-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm 2f267dd8adb1589edbcb198a8be76e2b39a99c3bbb1f9fa17d9f9cdeb6c0e86c git-svn-1.8.3.1-25.el7_9.tuxcare.els3.x86_64.rpm 1edb7e1fc5a7c2b721f49f2fe38f437bdf5eeb32d2c632f7e9140edc6473d5b8 gitk-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm 6160e47d122ef06b55c21a7e32034a558cfd5e1fc628dfd4d1bfe5474e4eb338 gitweb-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm 17b1f6719b3d437dae1618c1b53b3b64bf09f05be9fb6a9fd7bfc97a39e89fef perl-Git-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm cd898948ce418e85761fb03fc6692ebe4fda3c7bb0baf5f0e4173827879488e2 perl-Git-SVN-1.8.3.1-25.el7_9.tuxcare.els3.noarch.rpm 2d5a1d5397b84e8877ef3656b96da61be354f5468164f03684959eff23773b88 CLSA-2025:1748638011 Update of httpd TuxCare License Agreement 0 - ELS-1267: merge spec for centos7, rhel7 and oracle7 Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- ELS-1267: merge spec for centos7, rhel7 and oracle7

0 tuxcare-rhel7-els httpd-2.4.6-99.0.5.el7_9.1.tuxcare.els2.x86_64.rpm 99df0212f417b458e4085bb0a0e9cf7d11a799156deb44ba55aaa6e5e54aee1b httpd-devel-2.4.6-99.0.5.el7_9.1.tuxcare.els2.x86_64.rpm 3c54cdb53e6776a426c6f0273dec2dc12fd9d3ff9cf42f73e9f1a2650da3559a httpd-manual-2.4.6-99.0.5.el7_9.1.tuxcare.els2.noarch.rpm ab74d3d4304743c5c29bd16886f909dea233cb56cfc6a193a757e0ca90835746 httpd-tools-2.4.6-99.0.5.el7_9.1.tuxcare.els2.x86_64.rpm c0b36104826838f9fde355a166357c2e0124b8eb2c50994f53e9e5c0d1db09ee mod_ldap-2.4.6-99.0.5.el7_9.1.tuxcare.els2.x86_64.rpm af3829fdfbea4764267b2e24110dd2ccdccc6e353228e11560f26a893b5a9f81 mod_proxy_html-2.4.6-99.0.5.el7_9.1.tuxcare.els2.x86_64.rpm b78866b6ff0c308ae24872653fc3f3d61e526b23fabcbb3ca5bff39d361b4e7d mod_session-2.4.6-99.0.5.el7_9.1.tuxcare.els2.x86_64.rpm 429ce65f011759bf2ae35021fc9fab2910da5be975a98cc3a87283bf86500256 mod_ssl-2.4.6-99.0.5.el7_9.1.tuxcare.els2.x86_64.rpm b392326e9f0a13baeb5986f4928e91a28ae445ae15bddbc8a1e18b48cf66b7d7 CLSA-2025:1748638245 python3: Fix of CVE-2024-9287 TuxCare License Agreement 0 - CVE-2024-9287: fix path names quoting to prevent command injection in virtual environment activation scripts Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-9287: fix path names quoting to prevent command injection in virtual environment activation scripts

0 tuxcare-rhel7-els python3-3.6.8-21.0.1.el7_9.tuxcare.els2.i686.rpm f9d7bcafcd72e0508e9eafc0859dea08a3ff686ab7baf4ca96603c540c68f539 python3-3.6.8-21.0.1.el7_9.tuxcare.els2.x86_64.rpm 57cb7ede9e8a0fffa5085d298357e0762f0fe902971f19e7e19264825d6caab1 python3-debug-3.6.8-21.0.1.el7_9.tuxcare.els2.i686.rpm a1af3ae06a3df3d4dbd4ab3ea551731483eeebb1617cdb48f14cb8d8c1476e1d python3-debug-3.6.8-21.0.1.el7_9.tuxcare.els2.x86_64.rpm 52c2ff1bcb8715e768ecb2aefe90508be40a112f0b914f76b8ff39a89f72f6fa python3-devel-3.6.8-21.0.1.el7_9.tuxcare.els2.i686.rpm e81d8e756f8dd9c1c88848d9e29f053eb18ee467335660e1c796e72d91e16666 python3-devel-3.6.8-21.0.1.el7_9.tuxcare.els2.x86_64.rpm 26d20fbc55fb1e8df51a3080f303fcecc55113828d7b645de62805e75e2a774a python3-idle-3.6.8-21.0.1.el7_9.tuxcare.els2.i686.rpm 8ecc0884e961ab78440bc60857d0d0d3c253d7c2e79e2c1df8fff4a64a98b1ef python3-idle-3.6.8-21.0.1.el7_9.tuxcare.els2.x86_64.rpm 8ac9fdb33a1da1cd2e1c8c4471d87428e6ce4afaf0857c9fc12de4652658ff93 python3-libs-3.6.8-21.0.1.el7_9.tuxcare.els2.i686.rpm fa69655737eac654fdf8588fc3b1c32e9247c9fc2007fc9e1e80d2931768cc01 python3-libs-3.6.8-21.0.1.el7_9.tuxcare.els2.x86_64.rpm 999e008c695df926df18873cc0b7dea110572c13f76d0474ff2cde946dd59107 python3-test-3.6.8-21.0.1.el7_9.tuxcare.els2.i686.rpm 987f54f74d0d268ea50737006697f6106ca258bd26dfc477c3569334cfdd031b python3-test-3.6.8-21.0.1.el7_9.tuxcare.els2.x86_64.rpm 1442c40ac7e8c9b68a8b77720bb3289dff0caba21945a7c0ca1813837dff67c9 python3-tkinter-3.6.8-21.0.1.el7_9.tuxcare.els2.i686.rpm e8313d56eb8ee1e843a823d7cffcffe40795be6f699dd42bb726f0e987dff490 python3-tkinter-3.6.8-21.0.1.el7_9.tuxcare.els2.x86_64.rpm 9b2c451848bb6f33a0aae4347a508c3a3045d7bae641c83291719a92891d57af CLSA-2025:1748639500 php: Fix of 3 CVEs TuxCare License Agreement 0 - CVE-2025-1217: fix handling of folded headers by the http stream parser - CVE-2025-1734: fix validation of http headers with missing colon - CVE-2025-1861: fix incorrect http redirect location truncation Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-1217: fix handling of folded headers by the http stream parser - CVE-2025-1734: fix validation of http headers with missing colon - CVE-2025-1861: fix incorrect http redirect location truncation

0 tuxcare-rhel7-els php-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 0267b02a00f0f7653cf18ac70b3846f726f97fe8661a921fd06230c70a357f4c php-bcmath-5.4.16-48.el7.tuxcare.els9.x86_64.rpm f0d63ccd1a0b12a43cc0131757da4b7f57ede79e9307c95a756cbb899fd6376f php-cli-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 45fc65d92b7535ee98aceea9b2fb2378c7c53ded33e124afb6b53cd891ee258b php-common-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 383e81fc2217c83c2ba8977270fc819a40ac57892e866a6463612748ffb65c23 php-dba-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 4dce60ae08dab86a276f1169ad21a8526662c19fb9ca997978c582b3a215f511 php-devel-5.4.16-48.el7.tuxcare.els9.x86_64.rpm bdbb8ad53e76957efc59a46380df98c67a9268b3e8474b8d32dce660a918d237 php-embedded-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 86331d4949b85d03767749786d629c00270b89ae4a4b0366925e1b54d6a5079b php-enchant-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 463d23d347c96d12bae754b3006002f1568c2b9d93439ad3b818f2087aaf7efd php-fpm-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 9650331c9391116edbeffffecf65b873ba0b709d225191a84b46bb82ff2a38a3 php-gd-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 2234daef919c96a7071f05cc6dbb85b3d72a38332fb04afc30e6a30a0167fb6f php-intl-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 04f2960cb98c183f0ac6e1e713029ff3b9bad581bb8f8d764f456c0caa707820 php-ldap-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 5171c4833854c96b5c4d3addd9b0efbe5be148db35a228f8c5fa9bcfdd715d6b php-mbstring-5.4.16-48.el7.tuxcare.els9.x86_64.rpm b95974b9aa4460aff9a41e96d538533ffdd4cf9d8d5477dbd3e78d0fbd286328 php-mysql-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 6c9cb79d0910f08453dfb95517ceee369c6daaf4d0cfcbec1a464319c40f43a4 php-mysqlnd-5.4.16-48.el7.tuxcare.els9.x86_64.rpm e93a1b51ba798bbdd3f1b81d49d6eaf373024b00acc94384af75e732b328d0c3 php-odbc-5.4.16-48.el7.tuxcare.els9.x86_64.rpm e176c124839789112b015407113ac36cd5a22aea421751607f0872359453383f php-pdo-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 992f7216ddff001f76f88d96dacf792d0d394914bc42eadb3d8ff78cd0fd1014 php-pgsql-5.4.16-48.el7.tuxcare.els9.x86_64.rpm e4cd35bc5f4080d29e3711789c43bbe573a81ed6c273de21463756a5f1063cd9 php-process-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 19e7e7a11b8c6baf4218b9ce69e6fff1cdf4092b84a85729ddf2b3399873b8fd php-pspell-5.4.16-48.el7.tuxcare.els9.x86_64.rpm c1b435128b63f2533081664f6b75d93ff7f43c26b59d634c2b8d013fc1b9e452 php-recode-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 6d2942263c6c5fadc9146840effb021553a5dadb7be4665d9bd263a4d86f407d php-snmp-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 5e151466abce704d03a31fcfb106aa4fb9a06829ba9b7d6bcbe2c6e97e070f2f php-soap-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 21619f83318a19a9bddfc4a032295a334d8c910e81b66a5c03b180c8ccd5bd6a php-xml-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 528d3e04a0b22ba6a3bdc4ce8571668ad57105bf57e3bc8358370aa4a45cd6c8 php-xmlrpc-5.4.16-48.el7.tuxcare.els9.x86_64.rpm 06968668a5883deef2a9cf50886815d57344da99fb2d88b6c464f464e8c44033 CLSA-2025:1749479602 gnutls: Fix of 3 CVEs TuxCare License Agreement 0 - Keep the broken pkcs11 tests disabled. - Added CVE-2024-0567 PoC test. - CVE-2023-5981-pre1: improve level of randomness for each operations, always use _gnutls_switch_lib_state for pk wrappers. - CVE-2023-5981-pre2: add constant time/cache operations to prevent or minimaze timining or cache side channel attacks. - CVE-2023-5981: removes branching that depends on secret data to prevent potential side-channel attack. - CVE-2024-0553: minimize branching after decryption. Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Keep the broken pkcs11 tests disabled. - Added CVE-2024-0567 PoC test. - CVE-2023-5981-pre1: improve level of randomness for each operations, always use _gnutls_switch_lib_state for pk wrappers. - CVE-2023-5981-pre2: add constant time/cache operations to prevent or minimaze timining or cache side channel attacks. - CVE-2023-5981: removes branching that depends on secret data to prevent potential side-channel attack. - CVE-2024-0553: minimize branching after decryption.

0 tuxcare-rhel7-els gnutls-3.3.29-9.el7_6.tuxcare.els1.i686.rpm d5bf0696d773b7441b8fb1018d3d2e9070e86b2366f8782b793c879c92aa051a gnutls-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm 7dfb0534f7cbf5686fb904b7115fb6b2f7f56b0c35716e65e33197cf9566f3ae gnutls-c++-3.3.29-9.el7_6.tuxcare.els1.i686.rpm 197d9b2ce621b1d0c83e5353457d9b0bf5bd468f3edeccaeb4f5591f64412f73 gnutls-c++-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm e8275b6af9bfd9bfff4dced62cdccf6e077a6707d4f0b80f3891cb72058c6a26 gnutls-dane-3.3.29-9.el7_6.tuxcare.els1.i686.rpm 06682831492f1b05d0f56aaf0dd20e89e3157f1e4d6d75435209802055e31645 gnutls-dane-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm 9f7a01039aca3a7c82eced86053c51dbdbcf3ab0692266a712a3c6f88c98281a gnutls-devel-3.3.29-9.el7_6.tuxcare.els1.i686.rpm 35fbb7093d9a4da1f1b6de893e6a126788f78572c3d3b73c1f40569d625a29cb gnutls-devel-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm fc294a5c4ca515ca75d3f659484da85130459d75da564073df1cdd5687feb8a0 gnutls-utils-3.3.29-9.el7_6.tuxcare.els1.x86_64.rpm 1bb958c0f5875aff64a5141dc020306ae79ef066329394e4223ec52b4faa6836 CLSA-2025:1749568472 java-1.8.0-openjdk: Fix of 3 CVEs TuxCare License Agreement 0 - Upgrade openjdk-shenandoah-jdk8u-shenandoah-jdk8u452-b09. That fixes the following CVE: CVE-2025-21587, CVE-2025-30691 and CVE-2025-30698 Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Upgrade openjdk-shenandoah-jdk8u-shenandoah-jdk8u452-b09. That fixes the following CVE: CVE-2025-21587, CVE-2025-30691 and CVE-2025-30698

0 tuxcare-rhel7-els java-1.8.0-openjdk-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm ed97436d29a46ba91402a8a15354792e43cbaefdadfc441614c157d603e362b8 java-1.8.0-openjdk-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 31a77c8ea1f51b37d57a8becf42403f87b1f4929ebfb65f7aead1193cbe91a89 java-1.8.0-openjdk-accessibility-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 43242e464b0c7c312c81447870cc03a4aa276e746f9b7af738b1fb085b3b7bbc java-1.8.0-openjdk-accessibility-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm a7fc4e3dc5b5d127b537e88e572e44b6f88108af61dcd2d9c561a8e156589508 java-1.8.0-openjdk-accessibility-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 03a016b7d1e79fe91eb74484dc32e2f9ad17595255f7e845baa133fdca83cb1b java-1.8.0-openjdk-accessibility-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 620754bf47ba9ed0a8b37e78bd760bd77e189688c38afe679954c5251db92505 java-1.8.0-openjdk-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 9b64191687fde048a2a2779da88b4a2cc82db4cdfaa1ff2739608aa65ed67647 java-1.8.0-openjdk-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 420d8ff5ade0446fa647cd0155bfcc4e92f1f1afeb7376c8e7a874d91188a62b java-1.8.0-openjdk-demo-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm ac2018f95ca2e577ece9dd5a53e637733f2f80d768491907b9dd2175af61e08f java-1.8.0-openjdk-demo-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm ec62b613f9e6536e3021a24d764070d91a0864762e6855b2e865f42560698318 java-1.8.0-openjdk-demo-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 8267a740dc930bb01e6e04280c4612915e30e1f6fab47ada656b5c3907919496 java-1.8.0-openjdk-demo-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 32e8e6f53adb050be48c05d70a7799130365219a04bb580c782c9d8f1d59129e java-1.8.0-openjdk-devel-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 0c679beeabe44851c759cbd466f8e1f428538b25c21dbcb70235d6225c545c4e java-1.8.0-openjdk-devel-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 2f3ba902350e87dea88180ec4b0692384b4d8a16b128eb5e9cc0b4a1c7ff3714 java-1.8.0-openjdk-devel-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 1365bce9af4137cabbb9d6ea92ca7083a16f40020f1e1c0644d8549ec3321f6c java-1.8.0-openjdk-devel-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 4f11096e48289543d9bc5b6d084eabbde709e6cad25e4c5293c644cd45ab9c37 java-1.8.0-openjdk-headless-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm cf6ccf874a7d01308f9ea1502e5df88f95ee869e9932a990d2692a1547a67407 java-1.8.0-openjdk-headless-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 13c86254d4c1b54a4a6f153c4d9158e1f4fe6f1bf6b529f3f34057a9ea5a4b42 java-1.8.0-openjdk-headless-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 04f8ce51c6d2309268c4ac7c7ada7419defab060232f3fd9fa74568abd275b03 java-1.8.0-openjdk-headless-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 392a15c849b5084db6afdc87c78a93077950c9f20f6bf172ec34cd9463af87c5 java-1.8.0-openjdk-javadoc-1.8.0.452.b09-1.el7_9.tuxcare.els1.noarch.rpm 2f7b5f36973fdbb77fb8ba6a89d65eccc051c509299a59adedd9246c91e513de java-1.8.0-openjdk-javadoc-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.noarch.rpm 3990157a8ce6197379699929a5b3e76bc18cbe2b3d6489ea3619705ac62ab009 java-1.8.0-openjdk-javadoc-zip-1.8.0.452.b09-1.el7_9.tuxcare.els1.noarch.rpm 3d09175bfa24231fd4dada6a9b9c3ca69554b0e6c46b414dbf12ae05f3b10305 java-1.8.0-openjdk-javadoc-zip-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.noarch.rpm dfc226ec5b993ad7765e6004bad81d8526d0b7ababfe58b1029ff2de8e4cabf6 java-1.8.0-openjdk-src-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 23f4af0855a2a0e3c616fe39c37b2a485fdaa4a53ef1de5bd1d2b486cac9b47b java-1.8.0-openjdk-src-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm 8b3ad522f8080a78ac68d4548746b3745a3dd15d65b052598da280bd3ea627c1 java-1.8.0-openjdk-src-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.i686.rpm 6b7154b0034f8c004dc80597a665954bce9fe375960f48a5a1828b993ea5f959 java-1.8.0-openjdk-src-debug-1.8.0.452.b09-1.el7_9.tuxcare.els1.x86_64.rpm e1536617eb7912a34421a8f4cf145820780a5b9d50867fd25a9b45fec276b613 CLSA-2025:1749570465 pam: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2024-10041: fix possibility of leakage of secret information stored in memory - CVE-2024-22365: fix potential DoS via mkfifo because the openat call lacks O_DIRECTORY Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-10041: fix possibility of leakage of secret information stored in memory - CVE-2024-22365: fix potential DoS via mkfifo because the openat call lacks O_DIRECTORY

0 tuxcare-rhel7-els pam-1.1.8-23.0.1.el7.tuxcare.els1.i686.rpm 5970602e0f3c2b8126c931d68d7cb5b5e86fca837e5491bf478b7380031c0091 pam-1.1.8-23.0.1.el7.tuxcare.els1.x86_64.rpm b921d0fbbc4afd12b6fb65f37dcc6874916f28eb9927e6b2dca6861aa111e9e2 pam-devel-1.1.8-23.0.1.el7.tuxcare.els1.i686.rpm 01a5280225c448920dced1c578683a56dd9658ce4d3faa187d13ddda680b2970 pam-devel-1.1.8-23.0.1.el7.tuxcare.els1.x86_64.rpm 16934c93d1eab9eabe1640e40c84f1af144451928588603f6a6ddebbc1d17b7c CLSA-2025:1749821936 openssh: Fix of CVE-2025-32728 TuxCare License Agreement 0 - CVE-2025-32728: fix logic error in DisableForwarding option Low Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-32728: fix logic error in DisableForwarding option

0 tuxcare-rhel7-els openssh-7.4p1-23.0.3.el7_9.tuxcare.els2.x86_64.rpm fa09131d77d27f190885abdeb7740d39032e38299c3d20358555265320861345 openssh-askpass-7.4p1-23.0.3.el7_9.tuxcare.els2.x86_64.rpm f6f5366ae736f82cc5e7edcff836c6c6c93bb63bf20ea87e337dc5016319dcf4 openssh-cavs-7.4p1-23.0.3.el7_9.tuxcare.els2.x86_64.rpm 1ec3127bf711f1daa53acbebed6bffe7688302f997333998540f93b15da6926e openssh-clients-7.4p1-23.0.3.el7_9.tuxcare.els2.x86_64.rpm b33843bc0905dfe5d05ed236e4befa4b0071d456fd08b7680f34dcd2f3f5809e openssh-keycat-7.4p1-23.0.3.el7_9.tuxcare.els2.x86_64.rpm 99b0597c59a7069cc57018b4159b020f980573d25253ca388823696b35a56218 openssh-ldap-7.4p1-23.0.3.el7_9.tuxcare.els2.x86_64.rpm 8d503e849ca252fd0fee6f632745e504304fab33c8db73b02e50d1da01462895 openssh-server-7.4p1-23.0.3.el7_9.tuxcare.els2.x86_64.rpm 4a7f2824ead02724a30ed60818c9a7ff06edc9c9b89319b6ffaeac9a19dd7817 openssh-server-sysvinit-7.4p1-23.0.3.el7_9.tuxcare.els2.x86_64.rpm e8088793ed75aeccb269febf4ac3dfd17f137a76efe548574313955fa87b5e6f pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.tuxcare.els2.i686.rpm fdf231b40c7052c5165fcd19fd6b52eed32c1f7ed734a09033534029fd3ed0bd pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.tuxcare.els2.x86_64.rpm f4cb824ee25214792561a5b2e363a6f5c79d849cec0af0fc77f05648303f2487 CLSA-2025:1750353839 kernel: Fix of 6 CVEs TuxCare License Agreement 0 - pfifo_tail_enqueue: Drop new packet when sch->limit == 0 {CVE-2025-21702} - xfs: add bounds checking to xlog_recover_process_data {CVE-2024-41014} - netfilter: validate user input for expected length {CVE-2024-35896} - nfs: fix UAF in direct writes {CVE-2024-26958} - Squashfs: check the inode number is not the invalid value of zero {CVE-2024-26982} - RDMA/srpt: Do not register event handler until srpt device is fully setup {CVE-2024-26872} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- pfifo_tail_enqueue: Drop new packet when sch->limit == 0 {CVE-2025-21702} - xfs: add bounds checking to xlog_recover_process_data {CVE-2024-41014} - netfilter: validate user input for expected length {CVE-2024-35896} - nfs: fix UAF in direct writes {CVE-2024-26958} - Squashfs: check the inode number is not the invalid value of zero {CVE-2024-26982} - RDMA/srpt: Do not register event handler until srpt device is fully setup {CVE-2024-26872}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm 23a82a722988b15ab3f1aa2a12c0f951484cb516ff3cae4c69e2a443405702bc kernel-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm 5a81535d57c56ea35b9aeaa1d0ab783223c56f7c21a08e0e3da2664925ee5cef kernel-debug-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm f1fa80deae2ce67f86a50149105d04823885e9509fbf75b15278b76e8c27bc90 kernel-debug-devel-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm 6f1654eb27d01da046da79423228c3a3e457d730954f1a188eb28ac242033ba5 kernel-devel-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm 95cc336139742d471f3fcce876b4b16c71491b1da9555762b155c36daa17645e kernel-headers-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm 9d18548b28d21223b3fdba4280d3c69c74bc77f846be5283eb05c6222bc87456 kernel-tools-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm 6412501458227266c1cc5e386d28b1fbce4398bff35c46eb8372fbef58b916df kernel-tools-libs-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm 578cebdac0a1e6296cb342bd7f5de7e3c78701aa433a0914aee0ca079e99b1ca kernel-tools-libs-devel-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm badd860550395e240a0fe876fa1d9af92812e0412cb7197a2583a04cee54abb9 perf-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm ee47ea868dedfb871486a202e65e46cf50b68f889c65124432d98bd70347966a python-perf-3.10.0-1160.119.1.el7.tuxcare.els21.x86_64.rpm 395935a06197e491a7f8894bdb22cb1da16cd29438ed16879c266ab16807f546 CLSA-2025:1750688636 gcc: Fix of CVE-2020-11023 TuxCare License Agreement 0 - CVE-2020-11023: sanitize HTML content passed to DOM manipulation methods to prevent execution of untrusted code Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2020-11023: sanitize HTML content passed to DOM manipulation methods to prevent execution of untrusted code

0 tuxcare-rhel7-els cpp-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm ed0ed788e9c87cadbb6ab57d66c1031091e541d6e8bdbcdab2a869af5c564857 gcc-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 4325433d9e1073a6b456b95f3ce07f62eb64d4be4a951aad88bf72b47d76edac gcc-c++-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm add537422c16757f2c6aaf50a888ebe5f955d1af8ea81d035ebcacaee1baf8b5 gcc-gfortran-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm a14fcaac5530fa9e9f4c2960dba170a9d3f169151b41e430506ef24168c89f4d gcc-gnat-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm e1e6725b8bf558b4083563b3e4c5e9b8037a633790bf13c7028bbf7b0ad06bae gcc-go-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm a22de3331d05d29f53edf41bda8296f53b885b97f4af31cd066b5fd4de59122f gcc-objc++-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 3af06dba16d0cd951607e8f5920efef6a63975599380514b7b1287e54d37910e gcc-objc-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 795ffd20a9f179671be5ef8dd081d675f9ee994d0bba6a755863baeae551be37 gcc-plugin-devel-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 14686377df8158f57fd3e7b1d4067202bd35ad194e8956cba71c55074bacde31 libasan-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm b3c66181d9c2af8ec1f89ae9fe8c2af3fefb00fdb15f03537d2efc8c746eb2c1 libasan-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 3b7c368b84f6ee7d42a528d2df25dd3864cc4ec7ad1c245bf7e297b4c15cdf7e libasan-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm a20742d68c9d5d998c12310be8e9704c6123d5fe052b316be4fe3b3b662d7dfc libasan-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 1955df8aa53cce5865fdf44f828373913a995a97a609f029f07cf213436763e9 libatomic-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm b22134041b1436248b4ad8ae49dc5bd91fe393dca5e0a09f9f064e8631efca34 libatomic-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm da6b69512fa6fb40f70ab9171eb73769aee3257815e7a71f7ef9c2cf90a630c1 libatomic-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 586daaa69bdf578bb7b500a255dadfcf93b85411148ed445bcba473a2d8830c1 libatomic-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 78a257ea3614fc8995833f88e2bd6f820dcf2d45e4d3ba389b61f9647386cba5 libgcc-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 113dfab17cf41e3abd51e57493d0ee72e8881f44ace24d4b6a0cd1c21b6405af libgcc-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm b57d1ed5aec545474977ca88ed972aae2cd94c85eaf1d865fc998769401447bf libgfortran-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm a8eb229c150979f018adc8ea6e9fd8c717b2726e4cf00ee0c03211eca8f85ffc libgfortran-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 5745a55b836de89b52a64746cf24bcc5ed635277af9951ea7f84d2b4ca5be604 libgfortran-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm d7a2f824b0712b4611c87931d8b0c9bdedb886d12b0e763ade9ee7bc4cd3d6bd libgfortran-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm f044fcc3b0ab721ba37ae6b632a26e461dde32bc6fe04499593e2a218242dfb9 libgnat-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 3d7098b56588dd9eddef59b8849706f456f7f9ee75503a77d60d643db292ab43 libgnat-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 6baad10f54fd2a84645f722d3a82fe5d3844659889e5adf38c5cbdeca9c66ced libgnat-devel-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 34437de5f6a5e418066a5f7b3d18e3e8f738475ff09adc2aadc4f1b1a41c971b libgnat-devel-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm f6acdf1f19bf3edb9d17034491cbccff61256e3a98c3ebfb309241ad4f1469c6 libgnat-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm aff9091e24745c72dc5f3f482a372bacd888144adc9dbaf66a19fa18aa87b516 libgnat-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 9154eb286f86036438eb0a9b48fb8c927c9f81a7aff1b794f113739839ddaf35 libgo-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 70155a5cf4eb78c389de66bbdf5ae5717865467dd847eacc820c71cd3e2e99b5 libgo-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 347dbba53375b9a5ea38ce234891f7df99731b98ceb35d5682d41620590543f1 libgo-devel-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 459212800fffaf63f7b660982ec1cd355f10635ef6fa4207dba62b5e3e40b2d8 libgo-devel-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 5d813ec3c64924666a009f1e0b484b4c25b3f4d17b01a9f5040fd1ef7e2431cc libgo-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm d39e14c766c105d7a140bb593ac828dc8896cc08c2c848b7aa61c8bc6d082ea6 libgo-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 61f081d1c34a6cf67d1d02a1571c361a85e8854c4383487fb64a4bf06e5556e8 libgomp-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm a7196b90df9f2694f29bec141918336973f1d818c05a55a4b9ffc22d87c0b545 libgomp-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 61a85e0bc9166916f665bfb608ab940dc773c8e1b2d06e2fd694e3e77693bbab libitm-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm e693064509663ea3c5ca4ab87bb8afe721ccad186e734f5299ed70d06d9f1633 libitm-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 26e1d7918a871ff4ec5353ddb4583cd42f1a39c9206630d18f0014324c7421d7 libitm-devel-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 9da4ff6acb603b488330d46722e25639bbc47ae8908f0a071384e37034932d2d libitm-devel-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 84b199602d1ea77768d0959bb5f79f23d224fc0fe6d5e810201c7fe699896649 libitm-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 59497c1dacc3fe6fd47eb19b0569b57060d83436397bfd57f14475f00359547e libitm-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 2ef40b8b643b1b68c2069c76292b6dafb3400998e4a4c3107e53ced169ade6ad libmudflap-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm ae488c443038b5961e900272baf9e13d56c6f930c9dbdd82c444695757189bc5 libmudflap-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 8189631815c24ac8622aefe30f67a233746ff2b7e70070a1159775f2d201ba3f libmudflap-devel-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 189d00a2fb9dd3444aed7b5e8cc874bff09e06e300139a45fc5e4f0a8c5754c2 libmudflap-devel-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm b56fe06d1ee9035f719415205ba488d7643a79178ba4e2c50ba46c4aeee72667 libmudflap-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 9c9ecb808b2a4ade7736abf9f95beb5c3b70b358855cdd06ad529c90127d9efb libmudflap-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm b06fc9b345175cf62e71dab2e4532cc674b3b23cd3929191a646d633e28629fc libobjc-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 7722c5e17299a53a4fe937c9e86fd78caf18b952e8fbad2a9f2bbfa488a53607 libobjc-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 9ed3020fb0505732dcc10b27a212f0821127be6f50a36e2ec1881ac02aa84f19 libquadmath-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 742b5eb819ae283b7f440d86693888bd1bf2ea901f8339a97ac9bc11ec58d93a libquadmath-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 7f1935b0ce86629141323c86d6e7780aafada8d234b176fcff7b2f01064b41ad libquadmath-devel-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm cb0b2b31cd24c91184c164c202c1e9f0f3b06f6c36e05266149d6310f91d796d libquadmath-devel-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 90a7d9be6c5e645984adf4dddc327b00cea909c26f60990c7acffe95cc1869d2 libquadmath-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 4818c14cd92de28bd7f3dba698cc3d3c26dd03eae929518232830df50839520e libquadmath-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 694c7611084e666550d759d881ff48a0dc1cf6585c72301f31530a83f596416e libstdc++-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm e479f0698aed9dbd65305002685750143cf3830a79004252cbd6da9312dbb647 libstdc++-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm f981d3df5a27f7ec2901166e14ce0bf3c248140b9f68390089661f3d5063b808 libstdc++-devel-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 4293ad38de83a8580fa6fd357b8a165695eb682cde2e13a2e6d34d1fded8a89b libstdc++-devel-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 4069086ff3c6110e5cfeed96c5d6653a46317948eda3af607e428c22f66c482e libstdc++-docs-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm a66181720d017910875b4873aed936ad483a8a3bc16cb3bd7ba4f9b0bfd29134 libstdc++-static-4.8.5-44.0.3.el7.tuxcare.els1.i686.rpm 05e02f6cc89d45ce6f8c818404560aea44a5eb5c0778fb166ab1421d4dd7fb41 libstdc++-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 53003fc6db55551e9ea9a313d06964716a27112a318d7fb33dd26db264269af7 libtsan-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm b6b6ab60723bc1bc9d7e9fe4302239bc4e265df4d8ac21310bb0df105936716b libtsan-static-4.8.5-44.0.3.el7.tuxcare.els1.x86_64.rpm 09326bb8e117065fb56c85f0cb53e32c4f82ed7fc85aadabd37545731bc13521 CLSA-2025:1751142056 rsync: Fix of CVE-2024-12747 TuxCare License Agreement 0 - CVE-2024-12747: fix symlink race condition in sender Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-12747: fix symlink race condition in sender

0 tuxcare-rhel7-els rsync-3.1.2-12.el7_9.tuxcare.els4.x86_64.rpm 43067c362f3fecf2d694271a321a656605a6e550e4741d27b9d4c6836048a964 CLSA-2025:1751285777 grub2: Fix of 5 CVEs TuxCare License Agreement 0 - CVE-2024-45781: fs/ufs: OOB write in the heap - CVE-2024-45782: fs/hfs: strcpy() using the volume name - CVE-2024-56737: fs/hfs: Fix stack OOB write with grub_strcpy() - CVE-2025-0678: squash4: Integer overflow may lead to heap based out-of-bounds write when reading data - CVE-2025-1125: fs/hfs: Integer overflow may lead to heap based out-of-bounds write - Debrand to Cloudlinux Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-45781: fs/ufs: OOB write in the heap - CVE-2024-45782: fs/hfs: strcpy() using the volume name - CVE-2024-56737: fs/hfs: Fix stack OOB write with grub_strcpy() - CVE-2025-0678: squash4: Integer overflow may lead to heap based out-of-bounds write when reading data - CVE-2025-1125: fs/hfs: Integer overflow may lead to heap based out-of-bounds write - Debrand to Cloudlinux

0 tuxcare-rhel7-els grub2-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm aa879bb970a9264d02ffa79150dab454d8b4d43774e8e4a399c05be36ba6f451 grub2-common-2.02-0.87.el7_9.14.tuxcare.els1.noarch.rpm 6159bc1a02b89bb6c9c35f1b43eaf457c5881c372ce11aaa4d90629f8331b22f grub2-efi-ia32-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm a6860873b0f07f66c32ce5f8a3a8de04ba1b7b051b38df2202058ab9eaadeacb grub2-efi-ia32-cdboot-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm 4b5aae16cdf115512561b1efd70728a922926f159809b648f16568cd8f17f076 grub2-efi-ia32-modules-2.02-0.87.el7_9.14.tuxcare.els1.noarch.rpm b9f95802ea336dc896d97324a5d1c762c43e343d288cea5cdaee34b6c1db6f55 grub2-efi-x64-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm 1013385ece8b29912f85f8430c78330bef0052f9e1104d09ab9360b605b4a04a grub2-efi-x64-cdboot-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm f461702cea7db46621ddec0ea4067143bdada6cb325faa603ca16b36d1ed02f1 grub2-efi-x64-modules-2.02-0.87.el7_9.14.tuxcare.els1.noarch.rpm ce5b683d424fec40480fd5b0f2713b2030139ce6c7347c95619c37b60567bc1c grub2-pc-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm badbccde4c961dbd0ecf0ce95aba698e49659714b828c077f28a612cdc71e835 grub2-pc-modules-2.02-0.87.el7_9.14.tuxcare.els1.noarch.rpm 7a05093f90aa6ea7b4e908beff2cd6afb80de408815d710040245b0e11b140da grub2-tools-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm ce5b6eb27f096ffe71ff64bd23dcb8f27b700d34355a75a5c41b45c2848eea4a grub2-tools-extra-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm a88ec640a8fac474eb9104ec5128ee3bdad0f661450b5c70ea499a23bd1e23e4 grub2-tools-minimal-2.02-0.87.el7_9.14.tuxcare.els1.x86_64.rpm 46238ea0083efb5b3bdb7beda7d73b822c58fda2035c6aa31fe2e2c95a0567b7 CLSA-2025:1751297888 Update of shim-signed TuxCare License Agreement 0 - Make this package installable on a system having an either Cloudlinux or RHEL7 signed kernel - SBAT variables are used now None Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Make this package installable on a system having an either Cloudlinux or RHEL7 signed kernel - SBAT variables are used now

0 tuxcare-rhel7-els mokutil-15.8-2.el7.tuxcare.els1.x86_64.rpm f9fbf9d6adeaa20a6fdcc55e6ff27900a17ffba5732dfb584abfbc6f33842abd shim-ia32-15.8-2.el7.tuxcare.els1.x86_64.rpm 2274d8a2968709d7a344d48506ffccf711aeeaada35062acc0ba628a25168437 shim-x64-15.8-2.el7.tuxcare.els1.x86_64.rpm 8ec9980aa7ae5f59c4d411b0622fde823d528e906e4f9145d4aa96307916a9df CLSA-2025:1751895848 sudo: Fix of CVE-2025-32462 TuxCare License Agreement 0 - CVE-2025-32462: fix privilege escalation vulnerability by restricting unauthorized users from gaining elevated system privileges via the Sudo host option Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-32462: fix privilege escalation vulnerability by restricting unauthorized users from gaining elevated system privileges via the Sudo host option

0 tuxcare-rhel7-els sudo-1.8.23-10.el7_9.3.tuxcare.els3.x86_64.rpm 56a8790f88d8dc948aff5fab324d76e694a2f329e2e9e0e36c41a6283bad98dc sudo-devel-1.8.23-10.el7_9.3.tuxcare.els3.i686.rpm 1d8472e978139fc955ac5275b9bc0f69699a26c2612ef8f3476b804e0b70005e sudo-devel-1.8.23-10.el7_9.3.tuxcare.els3.x86_64.rpm 0b3d075951d471ed718b367ee4f0454ab47d8445bc403ecbb932cd415e852abf CLSA-2025:1752089185 libsoup: Fix of 3 CVEs TuxCare License Agreement 0 - CVE-2025-32906: fix out-of-bound read vulnerability - CVE-2025-32911: fix use-after-free vulnerability - CVE-2025-32913: fix NULL pointer dereference Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-32906: fix out-of-bound read vulnerability - CVE-2025-32911: fix use-after-free vulnerability - CVE-2025-32913: fix NULL pointer dereference

0 tuxcare-rhel7-els libsoup-2.62.2-2.0.1.el7.tuxcare.els4.i686.rpm f88e734688d2ed76bdd8a94c0684f52de6921bf782b6dfc0f4a338229e58a1a2 libsoup-2.62.2-2.0.1.el7.tuxcare.els4.x86_64.rpm d1527781349216334112abbb1aa6277387c65c856ef14042dd46fd0374017b1c libsoup-devel-2.62.2-2.0.1.el7.tuxcare.els4.i686.rpm 616b522967ac44d7d056e2df46b1b35dacbd44bc79e8300b73a7f4749139a855 libsoup-devel-2.62.2-2.0.1.el7.tuxcare.els4.x86_64.rpm 4bb97fe69f4d727e2d9f65de1f9e24311a80e4753973f8baffd2c8d0128df2c9 CLSA-2025:1752655539 git: Fix of CVE-2025-48384 TuxCare License Agreement 0 - CVE-2025-48384: config: quote values containing CR character Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-48384: config: quote values containing CR character

0 tuxcare-rhel7-els emacs-git-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 5014ed3270a3afe9271fba032149191e7a1fabeaa4d1e3436250349977712894 emacs-git-el-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm e0babd5794443623d7030ce73f00a3ed3e62c5aa1dd04f4a1dd1c7f942a5ff31 git-1.8.3.1-25.el7_9.tuxcare.els4.x86_64.rpm a7c84fb91f5903381c142442f14140b98aa60284afee6d980bc066c7b1c70342 git-all-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 4441707e087f080a8fb8ba6b9bd8a49402bead3e103671e23b17f2885d38fc1c git-bzr-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 9590e61df591f0a1a16e0693e98179d1e04bdb32d0ee8788869db6e9d5a430d8 git-cvs-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 420507d2650da8adbf9ab5495a970b804e65e8dcb8e7509fd50313a9de5ccc78 git-daemon-1.8.3.1-25.el7_9.tuxcare.els4.x86_64.rpm 013f7bd785b48b0c41320c730454fb64e991760e4fc4906cb0112ffb33be8c50 git-email-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm d6a1821c6ef437f85d3bf744ae4f9a67ec4f92bc3dd03602d8d5a8e8ea9cce82 git-gnome-keyring-1.8.3.1-25.el7_9.tuxcare.els4.x86_64.rpm 2596d940a3d6435f6bfbfcc24aaca68ee995ec32c5ae363fcb1d9821938fcf7a git-gui-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 98caadec69f0e412000e4235636b66d4bd89104564e73dbeb635829460d08fa8 git-hg-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 31da69db01d2c5452347d672e4e055e82fb64cd803a7bbbc472edb3983901f24 git-instaweb-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 58f9e4edb21382c31a09b3a01f2ce124cbc895d1195ff441a6d867d8c07fc8fc git-p4-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 36c53961568b6a8e6f2c4a036e8ec8262c8a2f3200e05e139519f8a3242e1a96 git-svn-1.8.3.1-25.el7_9.tuxcare.els4.x86_64.rpm b156960e5544fc93709b25c18918cb35efb68ed64f0c0ab70578db3c43e87127 gitk-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 7ffddf61193d206f60ae35a488c6b45b6fd3dfe368d10cdd877d87bf255a4ee9 gitweb-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm b0c056c157d6ca52cec43b0cf487e6c78aa3929f8ad081b506402573aa51ada8 perl-Git-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 41235c44800907b1df802036a01a6cc9842b894a876dda5e1401f5b292067fb5 perl-Git-SVN-1.8.3.1-25.el7_9.tuxcare.els4.noarch.rpm 59166a7124c3bafbc6a0d9de3103f8198c96b43d14eefa2c62d177881fdb90b9 CLSA-2025:1753124055 libsoup: Fix of 7 CVEs TuxCare License Agreement 0 - CVE-2025-32050: fix overflow in append_param_quoted() - CVE-2025-32052: fix heap buffer overflow in soup_content_sniffer_sniff() - CVE-2025-32053: fix heap buffer overflow in sniff_feed_or_html() - CVE-2025-32907: soup-message-headers: correct merge of ranges - CVE-2025-46420: fix leak in soup_header_parse_quality_list() - CVE-2025-46421: strip authentication credentails on cross-origin redirect - CVE-2025-2784: fix heap buffer over-read when sniffing content via the skip_insight_whitespace() function Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-32050: fix overflow in append_param_quoted() - CVE-2025-32052: fix heap buffer overflow in soup_content_sniffer_sniff() - CVE-2025-32053: fix heap buffer overflow in sniff_feed_or_html() - CVE-2025-32907: soup-message-headers: correct merge of ranges - CVE-2025-46420: fix leak in soup_header_parse_quality_list() - CVE-2025-46421: strip authentication credentails on cross-origin redirect - CVE-2025-2784: fix heap buffer over-read when sniffing content via the skip_insight_whitespace() function

0 tuxcare-rhel7-els libsoup-2.62.2-2.0.1.el7.tuxcare.els5.i686.rpm 0e9d03d86bd7ec30b6c8518f8773c19b1c60c128937f334f7819cdcd834dd62b libsoup-2.62.2-2.0.1.el7.tuxcare.els5.x86_64.rpm e971544f7919856913fb5a9f1b97a8385878e9aa02f13ed5c83e77395e1777c1 libsoup-devel-2.62.2-2.0.1.el7.tuxcare.els5.i686.rpm 2514a5ee4be562ec0f8bfdc749d2d58aab1e9ccfb1bc09b33d151fd0f1388869 libsoup-devel-2.62.2-2.0.1.el7.tuxcare.els5.x86_64.rpm 0e00813f9df6aecc87828d5e716401ac965039328fae6e15e817b81d8fc98ca8 CLSA-2025:1753298958 libxml2: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-49794: fix memory safety issues in xmlSchematronReportOutput when parsing XPath elements - CVE-2025-49796: fix memory corruption issue triggered by processing sch:name elements in input XML file

0 tuxcare-rhel7-els libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els5.i686.rpm 306b5f5fae3675a83ca8b093d2214985c80f13efd056c22c723f2d333c545b43 libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els5.x86_64.rpm 414ac3c14631ad5effee9d90d77d45073ba9dfdc990f433244add2d54ccf122b libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els5.i686.rpm cfe4bcda91c3466ce67a08bb9597b4777682fd3fbe765481c0745cb700d7153a libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els5.x86_64.rpm f5b4146836cdb44d0da37e9f4298eed7611e504092ff1d68183206dcc57dac03 libxml2-python-2.9.1-6.0.3.el7_9.6.tuxcare.els5.x86_64.rpm 39cdc6585db15f06f6340b70b4b3cd00a4cf7db90e58c63dd655b159233990c4 libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els5.i686.rpm 3e4a888eaf5c4da8819c19da34f9d91529889e2afed5427fd399742fdd3994cb libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els5.x86_64.rpm 7d7281cdffdd484a0db33907969475fddad0e8eecb842af3d63fa311f02d00c6 CLSA-2025:1753769145 php: Fix of CVE-2025-1220 TuxCare License Agreement 0 - CVE-2025-1220: error if host contains null bytes in the middle of the string Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-1220: error if host contains null bytes in the middle of the string

0 tuxcare-rhel7-els php-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 4469fa08ede98b2cd81fcb31ff49cc2cee6bde52d2864ef9c8ec963ed8fa53af php-bcmath-5.4.16-48.el7.tuxcare.els10.x86_64.rpm d140c871dd6eead638a396faee380dc329747bce1efb6c77fdfd29d446a1b08b php-cli-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 7e5cdbeff273ff2647f05f4936061ba8dcb74d3704b89b4e135a99d1565527c8 php-common-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 47525bb537d9a40895c38cf9dabdd4f6bd368efefe6cf5b1c8c08d7b5ba6e5a0 php-dba-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 6873cd2061db841e58da34d75b5e086e82b693c6cd4e8d3de4db51eff064b991 php-devel-5.4.16-48.el7.tuxcare.els10.x86_64.rpm d57b740537db66e35731ae9c3110dacf55606725d17a33799ff54e360da1bad9 php-embedded-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 9b04f4ed951f71ae3a98c9f402ab2d5fb7619992b69dc1b693f054d9ac04980e php-enchant-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 6a123942fd6a07ee43215a22e8d078cc9dbe7291c4a0f5262f080408bcd83ac7 php-fpm-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 3dc8e6e91eb54eebf94d8357665361ca3e06c520cce7ac941411af9bfa7ae7e1 php-gd-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 1c6cc69ca3df0da85eeee0e0bd9fbeb63d7270b6a47e562d7aeaeea3dfa0a314 php-intl-5.4.16-48.el7.tuxcare.els10.x86_64.rpm d92cb501a34bc43a87cea653f224df6e9f708ca0f258e177cc0855aaf7ff6e65 php-ldap-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 3812ccdc57396706d933f96caa49f658eee9ff94f4b68ec5672e6748cf3b82f3 php-mbstring-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 28d293da0b4bb403b1ba1f4372813113dbdb9f2c57761e3f4f8e8e4b86c7b553 php-mysql-5.4.16-48.el7.tuxcare.els10.x86_64.rpm e5c25a3a5c544b9919670db965e0199b04f7e13bfed7770982f463b96e93ed62 php-mysqlnd-5.4.16-48.el7.tuxcare.els10.x86_64.rpm f082bd20c68f22e7ab7c7a99986086aa781e87a80fe1508a664b7df07e798d6e php-odbc-5.4.16-48.el7.tuxcare.els10.x86_64.rpm a7d5f7166528aea143ee22127e97b45dc4e928491529399e0f1deb8c96a170c1 php-pdo-5.4.16-48.el7.tuxcare.els10.x86_64.rpm c93baf261dd8cba8a32ce78336a946a5f5564bb32a37f75d16a6818f20f43826 php-pgsql-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 70c2795e7e0d9650f14fe75c9d7fe770aac29f74ccb13deba91c31c6f95b9ac6 php-process-5.4.16-48.el7.tuxcare.els10.x86_64.rpm e3977702b42af7b3e3ca90661511a37e746698a34b66f875c658386c4cbefff3 php-pspell-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 502a9d48bdca8c71fb7e17cd789c24be4cd6957a853c1e343d3308ee9742d034 php-recode-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 667cce2f785ec29545c99aab2665262b0e5646e53dd8bd95204b0e81e1dd2515 php-snmp-5.4.16-48.el7.tuxcare.els10.x86_64.rpm a526a80c3733be58dff3fa1fe15a9dfb54ce1eb2098e3a21a2a6728cca15be9f php-soap-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 980e1c5e3989a4b7e9a7d6db11d259be49628be2f1715fb086253b63a20069b0 php-xml-5.4.16-48.el7.tuxcare.els10.x86_64.rpm ed0bb42522cf2daee0a4e9bfa280c62ebc039f0a6fb0d7e1c22ce22050066e94 php-xmlrpc-5.4.16-48.el7.tuxcare.els10.x86_64.rpm 1fbb7d27669431ebc4c873207a0e68228a5231c674dc3607dec597f4b41cb08c CLSA-2025:1753963973 php: Fix of CVE-2025-1735 TuxCare License Agreement 0 - CVE-2025-1735: add error checking for pgsql extension escape functions, mainly to fix possible issues with multi-byte encoding of Postgres databases Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-1735: add error checking for pgsql extension escape functions, mainly to fix possible issues with multi-byte encoding of Postgres databases

0 tuxcare-rhel7-els php-5.4.16-48.el7.tuxcare.els11.x86_64.rpm bf7f322eec230979f073081204141fd06c56c42fc0aa28be18aa213976d08091 php-bcmath-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 4e52b5e0f48229e16b8440d30c2d081aa72ce7f015ff5314f2b696ada612c73b php-cli-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 99c511ccf5954bbfc1dc102e7af8d9f865a1635ba2ba41086444077fd09b5738 php-common-5.4.16-48.el7.tuxcare.els11.x86_64.rpm fb151bf08cfa99e2444a542b8b2d9525ea5b3ce9c32307be86c82605da914fc6 php-dba-5.4.16-48.el7.tuxcare.els11.x86_64.rpm e43d8a6429a9b1cd884037401f833658324a184685884ad18a0ee639d5fd2398 php-devel-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 730665d29ab34b97d94569168b335c701e6e5fce7ae9dd41d5e3315a4031c552 php-embedded-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 6e1c067fbe1ce26f9cb58196b78877081319ff4242353a621cf9233cd529e0d6 php-enchant-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 58df820d9d3e24d9304f056b8f162e1c02d3f6445d767ace22fa8b604d06f892 php-fpm-5.4.16-48.el7.tuxcare.els11.x86_64.rpm edda9b2c7945185ed577f374954e9efaaa55b9f68672472484eee0cb77aa2979 php-gd-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 4709ffc462459158bfb56ea26e2bacce4e7bbb684607095dff8c26759983da6f php-intl-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 5f8eb483b0d79edf7fb57a34ad753b21be2080f409bff1ff1267f13b43a78675 php-ldap-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 4c07fef2ba2a0519d125fdac95f62455a78a066747d36f937ac35168ed1e3ccc php-mbstring-5.4.16-48.el7.tuxcare.els11.x86_64.rpm d51e2d5168c0dfa11dd3e14adf5da09df00c739ddf379b0769b687167a7aad9b php-mysql-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 1aa585c3f9ba7d26d5638d3d688128f1395657c2d2c1895ff67605ef2a7c76aa php-mysqlnd-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 836d36e79938d934dbf56224ebd9200cf6e335286845dac264524ab7f74db291 php-odbc-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 3dee9cab5ae4dadbc8018b809c35d39a939f783abdd95c50f3772d65118a200b php-pdo-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 9a08b12d9045375b6ccf153a056ab75755d2614582a131c8f1c3c0c8ed6455be php-pgsql-5.4.16-48.el7.tuxcare.els11.x86_64.rpm c1cec31fb4585be4905ce5dd3f8cc0b8c8da510304e4790c45e117535961586b php-process-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 4c95cc5d8e915c7a8ea6fad792dd7b9409fd069bd923b503862558873c10b78b php-pspell-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 380c607374dcdd6efd2375996b8e5ff66da5b57a1e76cd8a72502940fb36a0fc php-recode-5.4.16-48.el7.tuxcare.els11.x86_64.rpm f8d9a1fbbf5f5995fcbbc6b8ba0a63b5762a5dd0e7c3e897deb7d6069a841933 php-snmp-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 937ee388682949d754f00bec036d0026a8844b61ea720e24132d07c1274e50a3 php-soap-5.4.16-48.el7.tuxcare.els11.x86_64.rpm 5b0b2780e475d98651b010ca42f6142d6b7fa8d4c979225b3dc566fdd7e10c37 php-xml-5.4.16-48.el7.tuxcare.els11.x86_64.rpm d326a6057db4a814ce58909c1a18a8825aeea6f34e77b40ceeeb8d3d893e22df php-xmlrpc-5.4.16-48.el7.tuxcare.els11.x86_64.rpm f09d1f614b18f30c80018413257a2e284c395c805ccb38252b8e72870d89072e CLSA-2025:1753966983 java-1.8.0-openjdk: Fix of 4 CVEs TuxCare License Agreement 0 - Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u462-b08 (GA). That fixes following CVEs: - CVE-2025-30749: better Glyph drawing - CVE-2025-30754: enhance TLS protocol support - CVE-2025-30761: improve scripting supports - CVE-2025-50106: glyph out-of-memory access and crash Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u462-b08 (GA). That fixes following CVEs: - CVE-2025-30749: better Glyph drawing - CVE-2025-30754: enhance TLS protocol support - CVE-2025-30761: improve scripting supports - CVE-2025-50106: glyph out-of-memory access and crash

0 tuxcare-rhel7-els java-1.8.0-openjdk-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm 262d978f0c659e527b1a3a7825ae15c19f5ce92da93a2a908cb6dc2453fcea08 java-1.8.0-openjdk-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm 40962baf3bdf93e194a17863f181ffd94fab3b3dd3736d2901994cf2f300512b java-1.8.0-openjdk-accessibility-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm cff53b3947220d3d2009cf15631bbb7d76bf4a9de9847fc51c7dd35647e7eb9a java-1.8.0-openjdk-accessibility-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm ee3866b5ec822bf94de6ea3e10c5bd364faf1e49ce8f82073e227a4e4348426b java-1.8.0-openjdk-accessibility-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm 3203e01c3d0314dfd202deac4e26e11000b1ddc1b37e63d31cf81a6fbf0fc635 java-1.8.0-openjdk-accessibility-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm b7c995252db2d2e7a4bcc32bd0b8549e9e1c75d439625bf36a590b03acf8d817 java-1.8.0-openjdk-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm f543aa059048678352b2c2cd42bb7bc204e45bcac0477243c8a3b6cf36893ac9 java-1.8.0-openjdk-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm 9f77c20d2386087619d2616937b11e710e62b0ca42d8283202be95d6f3b61d25 java-1.8.0-openjdk-demo-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm f2424380e6b4fb68389e6ad47c8e6aaf3e51fa9e17df5e98e6caafee6e03a48e java-1.8.0-openjdk-demo-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm 45cf2ce60289364866e103953eb40f81c0a10e2e2d5b4c6d1c0352ae2c668d02 java-1.8.0-openjdk-demo-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm 4717aea2aebbb8e57b6106a9083d5170b4bd7019f7901a930b41ca4ef92295ce java-1.8.0-openjdk-demo-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm 011bf456119141648de1c6a1c5d43cc40ea13a69183dfcc7e3c42d75a5dff308 java-1.8.0-openjdk-devel-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm 49de84abc122defcde7fab863f664039e66b457d7a8da7d63b5b263b33a03bbf java-1.8.0-openjdk-devel-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm 04b9eb21ff8f7d7bff3fcfd14643d71509e8cd76a1fa879bcf49f947af2b4297 java-1.8.0-openjdk-devel-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm 3cf87e13875b6ffd700f78a6d124022371ec7c2ce88fe7486b51f82efa0aea3d java-1.8.0-openjdk-devel-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm 8510b936fd922ca999ce51a947ad5c6114a8b660502e4f12fd30926acd5e734d java-1.8.0-openjdk-headless-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm 785e01bc73047daeb45dfafd1b28f4da4cfa22583737ffbb362000c5ffb3301b java-1.8.0-openjdk-headless-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm 1bbea8c136562208bc2c02a204fa46c39eda00bddb6e1664b3d551b8cd266cd6 java-1.8.0-openjdk-headless-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm fa80aae040a53b5f6436707077fe5db7586d44e4a657655bdff85f0c56eb09df java-1.8.0-openjdk-headless-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm c0f726477cf4b2586ab33c10bd4bf7d2dd879922dc33377ada89b2744f8445f5 java-1.8.0-openjdk-javadoc-1.8.0.462.b08-1.el7_9.tuxcare.els1.noarch.rpm a1c71bea48e6d3842a0356f23fac04f36380e4b0d25301721193d0f6eba6af8a java-1.8.0-openjdk-javadoc-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.noarch.rpm b93f64d6f3d7733f6c7fd9d4903b5f59af3856d065d874df5403e7d8b9992daa java-1.8.0-openjdk-javadoc-zip-1.8.0.462.b08-1.el7_9.tuxcare.els1.noarch.rpm 4ce00b66d37bfb8d368bf9b00e5d16e9a1b0e8bb5d344d15d07a34251b806201 java-1.8.0-openjdk-javadoc-zip-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.noarch.rpm 86982a01a8f80a0f1f4f3b9e262e6af39dceb8368b62840362254fa488218091 java-1.8.0-openjdk-src-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm 656331377aa2cb96177c70974c7774682698479b47c42643e078cd30434e1989 java-1.8.0-openjdk-src-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm 10a5855fbda01774832bb40864501c8d499983673001bd5aa04a6c6e89ef5f3b java-1.8.0-openjdk-src-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.i686.rpm 29048a6edd4cef17fb0f56c815256c45fe612ebb5b0f0d9fab4f9a85f439b816 java-1.8.0-openjdk-src-debug-1.8.0.462.b08-1.el7_9.tuxcare.els1.x86_64.rpm f3b604aa28a8e1d982dcd90aea78553a73e981181fcb61a1c9c4ab82e518b140 CLSA-2025:1754337993 sqlite: Fix of CVE-2025-6965 TuxCare License Agreement 0 - CVE-2025-6965: fix memory corruption issue caused by a query where the number of aggregate terms could exceed the number of columns available. Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-6965: fix memory corruption issue caused by a query where the number of aggregate terms could exceed the number of columns available.

0 tuxcare-rhel7-els lemon-3.7.17-8.el7_7.1.tuxcare.els2.x86_64.rpm 9b545d984bcc2f896cc5fae23cff7074d19778f5378874fae5a8b96e2c3efa95 sqlite-3.7.17-8.el7_7.1.tuxcare.els2.i686.rpm dabb5248cb16ace66749c9b6872f6463fae2ed6609f3055089a938b966da842b sqlite-3.7.17-8.el7_7.1.tuxcare.els2.x86_64.rpm b46a80dcdfb59b19b11db7586acc99fbaad54d86db42fbd8408cc8242c4ae5c1 sqlite-devel-3.7.17-8.el7_7.1.tuxcare.els2.i686.rpm 0660b8fc7d5f63d334e75ab15a7f8e51ddd686975ef0503e53d74711667d6f0e sqlite-devel-3.7.17-8.el7_7.1.tuxcare.els2.x86_64.rpm 8856b9708bad92f8c3555c2a3d7c334e0fde54cf98bdfaf647b49cb032a8bbb7 sqlite-doc-3.7.17-8.el7_7.1.tuxcare.els2.noarch.rpm 3292bf8b272073f753c8827821fdb1103807e9742a63643508b1da1c9a08ec23 sqlite-tcl-3.7.17-8.el7_7.1.tuxcare.els2.x86_64.rpm d6fd94977852ab978653fb717021d6a67eee34184bab9f2046206a721ee3ca0b CLSA-2025:1754381195 php: Fix of CVE-2025-6491 TuxCare License Agreement 0 - CVE-2025-6491: fix buffer overflow vulnerability Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-6491: fix buffer overflow vulnerability

0 tuxcare-rhel7-els php-5.4.16-48.el7.tuxcare.els12.x86_64.rpm b29349b5526f35d71ad8494e2346d2a6af1f8f636b0f0ee61fbaca19ce62f2e9 php-bcmath-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 1a581ef1a04066a1a0aec4dfd7f79bdd02bdbeb0cae792063f6e9ee5847eba2d php-cli-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 15435f5e59176093cf7528ab012594407cb4481aed7435f2853c25e4a6b8d4ac php-common-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 32a98290f461ffa82bee16efdfb2f387e1a112b1936c7a6be6b24c4eca576623 php-dba-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 44e1e9290932b9bc92783af21da177371308dc84d569acfe8b1ccaf57d4fe3d1 php-devel-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 71f080695ce66f3b946780e1fca1e0cf067bd1bcbb3fedee64642936a2dd13de php-embedded-5.4.16-48.el7.tuxcare.els12.x86_64.rpm a86195d587034a16b930c54e7c8f9f0fd55fcd20394ba110439662a3c98d43b6 php-enchant-5.4.16-48.el7.tuxcare.els12.x86_64.rpm f84c6982b6dc5639cced3b8ae7befadaf56dc5557f5dc6b17b3e9e89687c82d1 php-fpm-5.4.16-48.el7.tuxcare.els12.x86_64.rpm cc0906ca3f994a8cd543c1116d2fb5e47ebf509fa133956ae978f235b300e226 php-gd-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 0ce922757494b89e7bc679f029d924c94596b3e2e40f961c7d895169e83a171e php-intl-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 8dca0c141e87127c1010c6871558f7c03856efbde78dffd88ceb09482c06d894 php-ldap-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 562b2c3d74eabfef310cd4337388f07b232aab449703fddbb6fbaee94fcc904c php-mbstring-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 9ee64e65e716551105e9252b690d42620456ccf1d1adb39d654ae358bb5d722c php-mysql-5.4.16-48.el7.tuxcare.els12.x86_64.rpm afceb13b44a51dd0daee73a8c8274a30ad51cb03ee8667d915949872b814b217 php-mysqlnd-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 82c84df90481aedd55627f99c679eda75e95583ca0b1979228f090d0e7857023 php-odbc-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 3ca87c55e361ad598d692879a1672348c80d1a5c85601887c7e10d32c527666a php-pdo-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 90dce41c6835efc2a405b171c05ea820a00bfa739dce77d28edc4152448f106e php-pgsql-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 52035322e068374504936d97b41ad1d2bcfd899d9ea47a4fe970aceca2524c12 php-process-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 4d5f51acfbbad9ac37f11c997c0946b6568d12d4f0ca4d9db3b726af06276497 php-pspell-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 65d088c86eb2523c0dc7d7a4e0290c7e7781ea1d51c154ada0212ab2a322fb13 php-recode-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 2ee664e1ef9169a206e940b14510f45bdf553a1d2195556be0b9692d56040da6 php-snmp-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 9f8739a00fdd7c5efe44f8bc3fb8119e022835dbc4dc14954d64cf86936c00eb php-soap-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 5a09e2937ecd885358470050f4605903980cc2f79d317162df4dcf2088edabab php-xml-5.4.16-48.el7.tuxcare.els12.x86_64.rpm 2fad76a40fe05703ae10d3130ed443a3455bf22d1f1ec2760644acea31e3bed7 php-xmlrpc-5.4.16-48.el7.tuxcare.els12.x86_64.rpm cd2976da0eae657168b713d96fa9e135d922b6e8ac23f1314e744d1116effad5 CLSA-2025:1754649298 subversion: Fix of CVE-2024-46901 TuxCare License Agreement 0 - CVE-2024-46901: fix mod_dav_svn denial-of-service via control characters in paths Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-46901: fix mod_dav_svn denial-of-service via control characters in paths

0 tuxcare-rhel7-els mod_dav_svn-1.7.14-16.el7.tuxcare.els1.x86_64.rpm ba28206012444d13de4139d6cf87399771a56e9a1c1b11c5ad88240da5358334 subversion-1.7.14-16.el7.tuxcare.els1.i686.rpm 849186ea9845fdf1fcd0232b019343f731477b04a186d4c3dbd505f6e3ff2d17 subversion-1.7.14-16.el7.tuxcare.els1.x86_64.rpm 94e93361ded19a6f66b92a51673558acf63ac2af733eb535f62418a03d062df5 subversion-devel-1.7.14-16.el7.tuxcare.els1.i686.rpm d11081f124bafdb139276ced55c8d1c8bd8ef113906304695560cd52a9883d0d subversion-devel-1.7.14-16.el7.tuxcare.els1.x86_64.rpm cc4d106c52cdec325ec447d984f6797f7911ac7a045b991d33eccab81644a308 subversion-gnome-1.7.14-16.el7.tuxcare.els1.i686.rpm 7b83f3f0cb65956fb2a14115ca8526d2f5ae91296810917efd94ea61334f6b13 subversion-gnome-1.7.14-16.el7.tuxcare.els1.x86_64.rpm fa1eb7aff0a9e2cb4f42feb7e67f626553108e8ebba63fc6327e9d95781c33c5 subversion-javahl-1.7.14-16.el7.tuxcare.els1.i686.rpm 14cee34198637ee2f338531236c81454c4d37b03fdeea489980f1e686dbbe502 subversion-javahl-1.7.14-16.el7.tuxcare.els1.x86_64.rpm 0f41c117df0feaed8cf95c468add573388a624d067d28846a455f5f279bf7ebc subversion-kde-1.7.14-16.el7.tuxcare.els1.i686.rpm 536e761a4faafa0c793b6409ec7127c0f70386ff889fc4b4fd3013a21edf487d subversion-kde-1.7.14-16.el7.tuxcare.els1.x86_64.rpm a93ebdda7ffd43e5abb0d74b1a97cc87756bbbf2df560c1a949a9a671f110ba7 subversion-libs-1.7.14-16.el7.tuxcare.els1.i686.rpm 71ef66eb24b970c2ad2f5d9dbd3e9618a8aea5ba91428b73baacfd4fb5cbb6ca subversion-libs-1.7.14-16.el7.tuxcare.els1.x86_64.rpm c6248c775053631f1d8a35d6ae0f3a14639459d52b96b2e3b422d5f3968b068e subversion-perl-1.7.14-16.el7.tuxcare.els1.i686.rpm 0d4e764d3eb735848c310257baaec9cc61ed64b2a1353ca44da636b37cfa9d72 subversion-perl-1.7.14-16.el7.tuxcare.els1.x86_64.rpm d08f7c099a213db30c4e4ee4209f85938e07344bb5e1671c096173f16f7dafc5 subversion-python-1.7.14-16.el7.tuxcare.els1.x86_64.rpm 95573753e142a85341d26ac9b7961111d8464a6e134ab1ddf071e335693a0ba9 subversion-ruby-1.7.14-16.el7.tuxcare.els1.i686.rpm 9cc02c0c4d7010b334c71b6d5ff90f093cfe0ee1e7215fe7d94aa01fe788ea4b subversion-ruby-1.7.14-16.el7.tuxcare.els1.x86_64.rpm 96be8c88015c1751e5cd9f9d5199cc8b11642627e5a1eca7865bbf4710eb6add subversion-tools-1.7.14-16.el7.tuxcare.els1.x86_64.rpm 6317680caf7f518bf383b2425e9c94e2853fc3dbea4b0c2122849d37273d4445 CLSA-2025:1754940505 git: Fix of CVE-2025-27613 TuxCare License Agreement 0 - CVE-2025-27613: fix issue where untrusted repositories could create and truncate files, with the fix implemented in versions 2.43.7 and later Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-27613: fix issue where untrusted repositories could create and truncate files, with the fix implemented in versions 2.43.7 and later

0 tuxcare-rhel7-els emacs-git-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 31313136d6b52d93c8849d08cd35a55b118865c0b17202c728272f6b5be4bb4a emacs-git-el-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 4db94612bf3c45bde46301d9103877c4cac245924c4d37f40c269e2ed8f88ff0 git-1.8.3.1-25.el7_9.tuxcare.els5.x86_64.rpm fdb662c598a013cb278335567697bac51839286aee28612325c2a572d223237d git-all-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm eeed9168209b896c2a2aae7b0e110f4a9940dc4583e73ce3cfbde323ea451a0a git-bzr-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm bc8d6255f1523a3f9930a5915fd830bcbb5f4f3bc3cabeb03a806c5520af1d74 git-cvs-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 6e0a58b07f2c2a5bda51b206deaf53e23862874b82f16d064ad42823da860ccd git-daemon-1.8.3.1-25.el7_9.tuxcare.els5.x86_64.rpm 8f6064a96387c60dd2de970a1870bb573f99efcc8ca84e79b70b5eb85c6a5a54 git-email-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm e9e1453709f72a14939f2d97a0e2e15ebe0e0026f8f4c944882a69cc3c04b66d git-gnome-keyring-1.8.3.1-25.el7_9.tuxcare.els5.x86_64.rpm 04e38b659bb474c7b272a8c7473f9863bfdb1f848fc3459e8807c3c0b4670b6f git-gui-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm d7664a6c92ef43412e32388560fb2f2b44c8dbd4b291a55d8d13a779f026ab64 git-hg-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 14707a64dc9bbb678cda3c1e4b1fea1b819043a650368595dabda01b8e8b6ee4 git-instaweb-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 54497f98855b21d5a3670d11711e63201ce5acb227012196e3a4d15b31597813 git-p4-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 40f6de56ad0d05b9e367d131403b31f5dff49dba80737ecab70db9bb4ef28afc git-svn-1.8.3.1-25.el7_9.tuxcare.els5.x86_64.rpm 711541ec508be26de06d8e97b124c4e36fee5bfb9db14d4910b79c7a58ac7770 gitk-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 60df83390d2f366b0fbd06d924014ba882ad71936bb1a5e5866e2f09e91a61e9 gitweb-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 24b0164a07b7416ca0a0e1f83193fc956ba2ec6f768bed1333cf3c47a1a07c17 perl-Git-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm dab1aa02260eb14dd81cd29a4153b93043d812ebbef4fd5984221f2766a9c7f6 perl-Git-SVN-1.8.3.1-25.el7_9.tuxcare.els5.noarch.rpm 089aebb1b0b80b2140647f7f7d76c9f49bb644180b97be8127e7cc01a107ae6f CLSA-2025:1755512368 bind: Fix of CVE-2023-4408 TuxCare License Agreement 0 - CVE-2023-4408: reapply patch without dns_name_t ABI change. Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2023-4408: reapply patch without dns_name_t ABI change.

0 tuxcare-rhel7-els bind-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm eb43fcdc9733fb75b6a643cc54bb4b1bb4f52d7c45be4fc60d85ee64c3ed8e60 bind-chroot-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm c866e03e0661ee4321d06b7390028eaddc913251ac1f9cee8749261224069dfb bind-devel-9.11.4-26.P2.el7_9.16.tuxcare.els10.i686.rpm 5a1f7efcd56dfebc6cd33ea1dba08a75ffa8640f0e967b7b62ddaa52732f5d7b bind-devel-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm ac9faca3936d40870b8f329f7c8f9385e37e8ef8554c178ad242b2e75b5127dd bind-export-devel-9.11.4-26.P2.el7_9.16.tuxcare.els10.i686.rpm 308c33133c9a440a1bd628c89f1b4ae19b5af743805200e63688455e608d004a bind-export-devel-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 7809275bf5ebd9654521f57d269841f53a48eaa02afa3b5d73dc3dfb70caea60 bind-export-libs-9.11.4-26.P2.el7_9.16.tuxcare.els10.i686.rpm 633db18bbb8e49c58e389bd0676793c5061d333a4bdc1b1a5d64e5345b0aeedf bind-export-libs-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 89b1f8eaa65a91f76231f6e7f48a6bc4fc8a775de13ddca6663cf23ef1adbc54 bind-libs-9.11.4-26.P2.el7_9.16.tuxcare.els10.i686.rpm 11aa8903f5622a56649ff1331a161bbbf01bd287e6f3052ec2651e3256f1e83a bind-libs-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 39dbcb726e16012c2d12afc8f8167db82f3f181c544e01519d9e55fe13c7bf2a bind-libs-lite-9.11.4-26.P2.el7_9.16.tuxcare.els10.i686.rpm 39eec3321ccb1337364a87e6e06f76c5fe8c87cfefb349578d464968c14efd0a bind-libs-lite-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 4ab29abc1185cdd691aded93d0f00c8b948faf02133822da782449d67a9f03a3 bind-license-9.11.4-26.P2.el7_9.16.tuxcare.els10.noarch.rpm f378f7e0453277d5cd048f68408ad9b20df4a171dcbac92dcc909ad76f3c513b bind-lite-devel-9.11.4-26.P2.el7_9.16.tuxcare.els10.i686.rpm a72182ba60016b4fa7b3aa9743379203a9189553139fc2c2a57c4c7a90af2d94 bind-lite-devel-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm a56534c43e07d4d2ebaad82b2cdec9b654202d376c732a9e7b44296097d6fc7f bind-pkcs11-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 3ae7b8f32271e0cdbf03dce9944c4135492b4e6f9b2c57909f2cf686cdaa9035 bind-pkcs11-devel-9.11.4-26.P2.el7_9.16.tuxcare.els10.i686.rpm ea1409d6315539f55e52dabc727c621dd9cacd76f92491b69a2e7ac76c8c44a9 bind-pkcs11-devel-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 6a7c32b08a213916ebffe6675935a410da66c69af892271f8120fa5daca92242 bind-pkcs11-libs-9.11.4-26.P2.el7_9.16.tuxcare.els10.i686.rpm dd013392a623d477049b33f69f99c3c2f6ee44af2475e4fb087f5644101ec204 bind-pkcs11-libs-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm a3cbca979f2a98453cc90f1b0f1fcf2992db1875f44fa70b938bf876a26b46f4 bind-pkcs11-utils-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 540cb100891f15026fc407fde3e9f0a1f0054edd2f41e52ff81c1b2375dca6e0 bind-sdb-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 6aa3fbd830efd49fecc12cb90d7ab0c85d715f69f03eb9fa8243ee2d1cd7154d bind-sdb-chroot-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm 0553add7e76025be498a48050b46b376196080a2a42dfb05a8279ac7aca11a4a bind-utils-9.11.4-26.P2.el7_9.16.tuxcare.els10.x86_64.rpm ccc33f71a7d25f16ba8549f6526574fdde545c45377a477218f9d7047a80d0d7 CLSA-2025:1755617495 libxslt: Fix of CVE-2024-55549 TuxCare License Agreement 0 - CVE-2024-55549: fix use-after-free issue related to exclusion of result prefixes Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-55549: fix use-after-free issue related to exclusion of result prefixes

0 tuxcare-rhel7-els libxslt-1.1.28-6.el7.tuxcare.els3.i686.rpm 35ff27503a5ddfe6d2c48830e360adf2d33463ac87b8e49e3164284f60feb7e7 libxslt-1.1.28-6.el7.tuxcare.els3.x86_64.rpm fb91423b32d8c690a68278e734c847c8dce7f14aa1e0db60faa9532dadfaf18c libxslt-devel-1.1.28-6.el7.tuxcare.els3.i686.rpm 29340f8ca8426ded1c91e95dab6d8802bf57862035ade965ea9d2557fffc9cac libxslt-devel-1.1.28-6.el7.tuxcare.els3.x86_64.rpm 8ec92f80176941734a3c8d4b5d5c79d089a20183e4d5d93cc936a653a235b50f libxslt-python-1.1.28-6.el7.tuxcare.els3.x86_64.rpm b49cc9cb045741116aeb63890bc819b2197043d5e86a9e13e5cd514ac7f3e4da CLSA-2025:1755617684 libndp: Fix of CVE-2024-5564 TuxCare License Agreement 0 - CVE-2024-5564: validate route information option length Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-5564: validate route information option length

0 tuxcare-rhel7-els libndp-1.2-9.el7.tuxcare.els1.i686.rpm b365f1631ed4bce6ffad04bf0e69d5f3977f6a6421b7844e067eda1b7211f5d8 libndp-1.2-9.el7.tuxcare.els1.x86_64.rpm e0328a4d4d863525944b1a1b69fc25a8656d5e0cbc4f5c8e210972d2cfce5454 libndp-devel-1.2-9.el7.tuxcare.els1.i686.rpm 5f59dd55edcf72e37a7c28a84a442b2ddc3fa975ac74713e41abd9150fc44e93 libndp-devel-1.2-9.el7.tuxcare.els1.x86_64.rpm 1387635c616878121f44214e52a4effb1e692acddce402c48c319df0650683aa CLSA-2025:1755681073 Update of systemd TuxCare License Agreement 0 - Fix deleting job when iSCSi used - /dev/lve is added into the list of private devices Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Fix deleting job when iSCSi used - /dev/lve is added into the list of private devices

0 tuxcare-rhel7-els libgudev1-219-78.el7_9.9.tuxcare.els2.i686.rpm 13565443afc9da14c5c95a7fef126d0301419e12543a819922982c0acc179180 libgudev1-219-78.el7_9.9.tuxcare.els2.x86_64.rpm d1a822a949ea3a221df69134e750a5c9cb8eb0816de6f26502061fd5a9c6bc2e libgudev1-devel-219-78.el7_9.9.tuxcare.els2.i686.rpm 568786acac1bfcf3d5c80379159fa816fa1e6a4c6a6cb46b862f3e1bdbde8ed7 libgudev1-devel-219-78.el7_9.9.tuxcare.els2.x86_64.rpm 1ab701fc0cc60a4cb4b70064f9f39f6cddcf59bb7a03ae79509ba04ffc2fb523 systemd-219-78.el7_9.9.tuxcare.els2.x86_64.rpm 453038a6921d2f4484461adf33ac1ac14491e7c629d388b2dad3e6ddda92a56d systemd-devel-219-78.el7_9.9.tuxcare.els2.i686.rpm 012c8fa9eebbd75e445f4b74c75a1664564b0e5c1ac0cae3b5109c748c3ef9ab systemd-devel-219-78.el7_9.9.tuxcare.els2.x86_64.rpm 1658613c8eba924e96f20807128fcfde82db829e8007bff56932a4efb384426f systemd-journal-gateway-219-78.el7_9.9.tuxcare.els2.x86_64.rpm fc66849747974f0d456fe16f5f089a0f4d3897594e824365f5ad95f0ec27c202 systemd-libs-219-78.el7_9.9.tuxcare.els2.i686.rpm f8cee6f8e3b4a4ddaffa2e2ddd1fb679d3b29e9812277ac2abfdbfa6950b305f systemd-libs-219-78.el7_9.9.tuxcare.els2.x86_64.rpm 0dafe6c5b9b17a0d4b43f2491128033aa6e0c9c5c724230aa523341cfba6539d systemd-networkd-219-78.el7_9.9.tuxcare.els2.x86_64.rpm c49545aa15dbd98fa57e54bbf0d8c0e86232a18fd4d0c14d98f884ea1ab1f621 systemd-python-219-78.el7_9.9.tuxcare.els2.x86_64.rpm 5884af119d851adc778664ef88dd4b18a039bb48c27c3617634b6de9e6b2f4df systemd-resolved-219-78.el7_9.9.tuxcare.els2.i686.rpm 83bb26a10f568dd241e599eefcbadd0499c5d8dae1324045496ec4d607c8445e systemd-resolved-219-78.el7_9.9.tuxcare.els2.x86_64.rpm fff5c3e8a20b5c3c2c520775ff3b29c237959cb8b326bc72f1f4252acdd16b5e systemd-sysv-219-78.el7_9.9.tuxcare.els2.x86_64.rpm 96643362b4c517084f49f5b7386e534545236fb7b153e553d0a6cef1229fb4f0 CLSA-2025:1755681299 freetype: Fix of CVE-2025-27363 TuxCare License Agreement 0 - CVE-2025-27363: fix OOB write when parsing font subglyph structures Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-27363: fix OOB write when parsing font subglyph structures

0 tuxcare-rhel7-els freetype-2.8-14.el7_9.1.tuxcare.els2.i686.rpm 3895cdf3e8500d8d12517933d5b2d42e850eeeb32a8cc2275a44786407f20c04 freetype-2.8-14.el7_9.1.tuxcare.els2.x86_64.rpm 55c5e3a154785ba6c407dbc1f2e1b68a0b192ca66e1bbc55946230a56bae49ee freetype-demos-2.8-14.el7_9.1.tuxcare.els2.x86_64.rpm 2d839fee9a0572a392930fbdecbedffb531101a99557f9d523104dd1b38265b7 freetype-devel-2.8-14.el7_9.1.tuxcare.els2.i686.rpm c97db6f24f18a35a8b9e1e1f18c7c791ba6df5618e82760d30f463f03874319c freetype-devel-2.8-14.el7_9.1.tuxcare.els2.x86_64.rpm 294fc2b91bac1219a32efe9fac1726fde7632dad289a7d2153c4e33daf8c32d7 CLSA-2025:1755708215 kernel: Fix of 2 CVEs TuxCare License Agreement 0 - can: bcm: Fix UAF in bcm_proc_show() {CVE-2023-52922} - udmabuf: fix a buf size overflow issue during udmabuf creation {CVE-2025-37803} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- can: bcm: Fix UAF in bcm_proc_show() {CVE-2023-52922} - udmabuf: fix a buf size overflow issue during udmabuf creation {CVE-2025-37803}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm 4f01dd990efb6b8de16c34064b0be0c27690c9b0c5f447ec6b097f38d6480180 kernel-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm 03478fceeb861e4ca428f4216fd4adbf8b2b01f8e435fd029c518ab6649c3192 kernel-debug-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm f1a3184d430ab87bbf70d136f8891b1962fb602251156a3d6dc16332b0c9ebbe kernel-debug-devel-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm 224b5e487d81997778b4a9edca5bc8250c19d075615b01f06caf282b79cf13e2 kernel-devel-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm 55225668a159567924b5cf023b4690fb74ec62a57675beb7544c472aecfbdcbd kernel-headers-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm 3fc8e10ca9ab7070d9113b791bd00fadd7a1b5c89d8a34636bb2dc944070c9d4 kernel-tools-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm aef1cd4ae57f33a20f2e74da6120c5654b59c09b9aaac78f2a48e0d4fa57b33d kernel-tools-libs-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm 4c118a3cdcce044b8f2650aa7400e1ddaec7899527dcadcb81b6e44cacb529b7 kernel-tools-libs-devel-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm 97e96205a0f966f36d3d44a8b854706833b603abab724274b8e332192db7cac8 perf-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm e94b82d2f3f9bd1e390371265a54fd24b635d5531194cc8ae8cdafd6a4067de0 python-perf-3.10.0-1160.119.1.el7.tuxcare.els22.x86_64.rpm d17c32cb5ee8b3b8164c72c50f8adda6a2d3754224c95f80e28f99459bc22109 CLSA-2025:1755708467 libxml2: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2025-24928: fix stack-based buffer overflow in xmlSnprintfElements in valid.c - CVE-2024-56171: fix use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-24928: fix stack-based buffer overflow in xmlSnprintfElements in valid.c - CVE-2024-56171: fix use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c

0 tuxcare-rhel7-els libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els6.i686.rpm dc864906be4101dd04d6fca279fb967d0978fe79d7d33618393d55a7fa8b2f2b libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els6.x86_64.rpm 13bed8c486ec8cc68cd4a856503df78d2461e3b85aef2b8cec9ba6434f1b8888 libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els6.i686.rpm cd87b220ed78e346326fec3a0d2f2a207928612b817a6f0a7a22214583a9f65f libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els6.x86_64.rpm 36d81b5411d789cd208616c07705a2893804ead35cc48f9e29ff4e22d3b9d80b libxml2-python-2.9.1-6.0.3.el7_9.6.tuxcare.els6.x86_64.rpm 4033af7c80c08d66d416624cb0f866d61482cd06e609c8cad04b2401e84d1d0e libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els6.i686.rpm 9aafb1856f0dbc8271420e3016a2f4f3d70795a586577437839fab67d6324595 libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els6.x86_64.rpm 9b2a256ccb07a10b1d61f6942f3ef98fb2465dd1714083cc4bd709196d0ef57a CLSA-2025:1755791708 Update of linux-firmware TuxCare License Agreement 0 - Addition AMD CPU microcode for processor family 0x19: cpuid:0x00A70FC0(ver:0x0A70C005), cpuid:0x00A70F52(ver:0x0A705206), cpuid:0x00A00F82(ver:0x0A00820C), cpuid:0x00A40F41(ver:0x0A404107), cpuid:0x00A70F80(ver:0x0A708007), cpuid:0x00A20F10(ver:0x0A20102D), cpuid:0x00A70F41(ver:0x0A704107), cpuid:0x00A60F12(ver:0x0A601209), cpuid:0x00A10F81(ver:0x0A108108), cpuid:0x00A50F00(ver:0x0A500011), cpuid:0x00A20F12(ver:0x0A201210); - Addition AMD CPU microcode for processor family 0x17: cpuid:0x00870F10(ver:0x08701034), cpuid:0x00860F01(ver:0x0860010D), cpuid:0x00860F81(ver:0x08608108); - Update AMD CPU microcode for processor family 0x17: cpuid:0x008A0F00(ver:0x08A0000A); Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Addition AMD CPU microcode for processor family 0x19: cpuid:0x00A70FC0(ver:0x0A70C005), cpuid:0x00A70F52(ver:0x0A705206), cpuid:0x00A00F82(ver:0x0A00820C), cpuid:0x00A40F41(ver:0x0A404107), cpuid:0x00A70F80(ver:0x0A708007), cpuid:0x00A20F10(ver:0x0A20102D), cpuid:0x00A70F41(ver:0x0A704107), cpuid:0x00A60F12(ver:0x0A601209), cpuid:0x00A10F81(ver:0x0A108108), cpuid:0x00A50F00(ver:0x0A500011), cpuid:0x00A20F12(ver:0x0A201210); - Addition AMD CPU microcode for processor family 0x17: cpuid:0x00870F10(ver:0x08701034), cpuid:0x00860F01(ver:0x0860010D), cpuid:0x00860F81(ver:0x08608108); - Update AMD CPU microcode for processor family 0x17: cpuid:0x008A0F00(ver:0x08A0000A);

0 tuxcare-rhel7-els iwl100-firmware-39.31.5.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm bd4848cabcfd195eb4bfd0da74c43e1d28bffad764014477df76a05a54d034b9 iwl1000-firmware-39.31.5.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm 4a10a06c3f0b3291df8199acb214296778a24a4773d0bf894335c03d1f57253e iwl105-firmware-18.168.6.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm 02bab4a19b2f096464487ee4eeaa60a860d912459d546ec70b3512876f3723d3 iwl135-firmware-18.168.6.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm b07daa9ab280734c43d247a5a39f300798518961860e46339e629a948d1a21ca iwl2000-firmware-18.168.6.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm 2cfe58f3257ceea948317797c475c2183f4d02ea87a78bdd7040773f9372acdd iwl2030-firmware-18.168.6.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm c4a1bee7c47299978f524adac6efbd7cf161890c60aef739f4ecbbe7d3991b86 iwl3160-firmware-25.30.13.0-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm fe4298b4077de629ca38f57ad91942e083e1c8f0ce0b407f1f6a7d2e2f584d7b iwl3945-firmware-15.32.2.9-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm 4f3c2fb79c1b8cdbeb6e8ba8e7eb4533bdce56bd43e4dba1e0bb6567afa9c1f6 iwl4965-firmware-228.61.2.24-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm 446e2a6eb18dce049683cdf32c823eb3f10d9e2dc853377930ddc07daa9ad871 iwl5000-firmware-8.83.5.1_1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm b874869ae24862c85aff02323ce66db2ff3f4db11b0b8b26dec8ad4e6a5d0f29 iwl5150-firmware-8.24.2.2-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm ee195b53c74b465e1c99a3edfcab639b8dbd34a9b1ee62e5de04550c8552c278 iwl6000-firmware-9.221.4.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm b915645b6aa15c81e1c9fa48210fb7787e8a83f0f3687445b55087223cfa1f4d iwl6000g2a-firmware-18.168.6.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm aacc49cf076192a82204d076c935fd91d87df2c9ed2cbde07f3d337ab4bb375b iwl6000g2b-firmware-18.168.6.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm da1eba259bd666b5b0e955ca7a2cd47b7a985c48c01e9fbf5d0b9f99841bd628 iwl6050-firmware-41.28.5.1-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm 07cff7f3d40c965dc188c81c889b998a0fe59ae126484f155724b206183d9754 iwl7260-firmware-25.30.13.0-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm b07160ac1010a9630f7de73ffa27d1679f1905ef750b753a61085a76ccb17dfc linux-firmware-20200421-83.git78c0348.el7_9.tuxcare.els3.noarch.rpm 7bb816c1a8bfe1ba85cc1f04d3ee00f0fcd2556a6f12212242b00dfdb610b37b CLSA-2025:1755791979 krb5: Fix of CVE-2025-24528 TuxCare License Agreement 0 - CVE-2025-24528: fix buffer overflow vulnerability in iprop log file writing Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-24528: fix buffer overflow vulnerability in iprop log file writing

0 tuxcare-rhel7-els krb5-devel-1.15.1-55.el7_9.99.tuxcare.els3.i686.rpm e994409c1d948fac5bbd95248839336c6789730d12ca026a1d2945bc7965aa1f krb5-devel-1.15.1-55.el7_9.99.tuxcare.els3.x86_64.rpm aeee6ae53052bf8b497475783e0a9375a19d8a26abb596bbb2da34f1e1cd9662 krb5-libs-1.15.1-55.el7_9.99.tuxcare.els3.i686.rpm b2cf8f171956f297cfdc1fd0cb5a41242a6c2f8bcce0346f4c164b9a5c60fe90 krb5-libs-1.15.1-55.el7_9.99.tuxcare.els3.x86_64.rpm c2221226ed0ccb7b593884995004a7413f0acf62ef539508cf6c22c317280da8 krb5-pkinit-1.15.1-55.el7_9.99.tuxcare.els3.x86_64.rpm bfa50e14d85dd2896786ed002e14e18b0e08aa3629af05dcddb47d09d76175bb krb5-server-1.15.1-55.el7_9.99.tuxcare.els3.i686.rpm 50e4cc44b17eb70bd86fee1d7cd29e6c760f8131c4c36d1d58bdba2823830526 krb5-server-1.15.1-55.el7_9.99.tuxcare.els3.x86_64.rpm 8e044df69f81d2c628b45df8a0d93bad8197dd667dc1f7633dfec13d8628f655 krb5-server-ldap-1.15.1-55.el7_9.99.tuxcare.els3.i686.rpm eb158f66f4aa47820a2803e553a9a356929b68947f64743c7cddebc39dfe0fa8 krb5-server-ldap-1.15.1-55.el7_9.99.tuxcare.els3.x86_64.rpm 827051cdce6e514b7008c2d0724b99fdf887fa853d35af11b3f9bf28302145a0 krb5-workstation-1.15.1-55.el7_9.99.tuxcare.els3.x86_64.rpm 694a2eb53adcc1e1c6ca6511bca2446e3792ce0f50fc205289d8700d7b82f467 libkadm5-1.15.1-55.el7_9.99.tuxcare.els3.i686.rpm c60950d68254bb88177fadf8b0ff2ef3bb279576f57063599ddeba56acf29b6f libkadm5-1.15.1-55.el7_9.99.tuxcare.els3.x86_64.rpm 61ecf18bc180ca4642be02bda8fc5839f1c0e1133ea4beab98cf3a2ba6710d91 CLSA-2025:1755886078 tuned: Fix of CVE-2024-52337 TuxCare License Agreement 0 - CVE-2024-52337: sanitize API arguments to prevent log spoofing by both escaping ' characters and restricting newlines from being inserted Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-52337: sanitize API arguments to prevent log spoofing by both escaping ' characters and restricting newlines from being inserted

0 tuxcare-rhel7-els tuned-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 835a99d58d1647baf57b728fc6d8370a7dc076248d551adc767a20f72fabb049 tuned-gtk-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 66d5d0c182fa30291b7d1e68360505d1b1edb92f25d98da9a3cc416d348a6437 tuned-profiles-atomic-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 7327f5e171c772a4e032c500a0962998480e45859effbdde056784b1b54e81b8 tuned-profiles-compat-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm e8ccb83b99299f62da196ae094cd51d8ca0dd6650e89681e7fe3023dd86aea8e tuned-profiles-cpu-partitioning-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 8f8c1b58acf08568b67394067156adfc4604ed309e03eccb6bc90f188ec4260f tuned-profiles-mssql-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 451d25e316b44ad4c60ddb52a7a160a207f3dfd27d7464182f66e52ad8b9646b tuned-profiles-nfv-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 1349e23c038f2b218b65ac96701cc6c8ea1e73b44e5acf2568c311331b44c1a0 tuned-profiles-nfv-guest-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm ada10e11d1a990bf5a42c712ceedd58e7ddc23859d2fc7ae164a617d4dc1c97c tuned-profiles-nfv-host-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 46bf90268863bfaa51d9fc3ad3e9d3792ae09d18dda1b39e99ffce2226dd63be tuned-profiles-oracle-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 1e1c71a808b1635bc28485b1fe5ff4591d22aaf2f38533f3b013aefcfd58573b tuned-profiles-realtime-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm a9b655cd5cc92bfb2aca1260fe36784a413e3273601ec7663d568a587e3240a5 tuned-profiles-sap-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm b2fad922ba0ab385bf713f1fd39a80e0a1c03542147111519356b42b71fc9f20 tuned-profiles-sap-hana-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 4fbf930e59d963f9a58c0cbe6ba4ef2fc8308dc47a1428ca5d2fd70e2536c83e tuned-utils-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 3837db04a8d82c9770bd4d3e883bf85b24d8bd163993e6e5bd518435afa507df tuned-utils-systemtap-2.11.0-99.el7_9.tuxcare.els1.noarch.rpm 8b05ab90ba6065e0394024980859ba91a7a5a5c6dbcd25ca12be414721308bda CLSA-2025:1756230743 unbound: Fix of CVE-2023-50868 TuxCare License Agreement 0 - CVE-2023-50868: avoid availabiluty of the remote attackers to cause a denial of service using DNSSEC Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2023-50868: avoid availabiluty of the remote attackers to cause a denial of service using DNSSEC

0 tuxcare-rhel7-els unbound-1.6.6-5.el7_8.tuxcare.els3.x86_64.rpm 210262c7fc4806a089917de2219577157e18eb3e642b630c957500d57cd0b644 unbound-devel-1.6.6-5.el7_8.tuxcare.els3.i686.rpm 2bc8c04c5f1e07f8c2c6028c13bffd68fbce3b4531dd1e0c867289986346b3ba unbound-devel-1.6.6-5.el7_8.tuxcare.els3.x86_64.rpm 50b08a865c1c065a2afa8db461258e048749939b9ac02a909f5cf589175bbec8 unbound-libs-1.6.6-5.el7_8.tuxcare.els3.i686.rpm 25199a797ed4da534a96042ce43e97c4e8d21d1b46d5599187573df8c4d26729 unbound-libs-1.6.6-5.el7_8.tuxcare.els3.x86_64.rpm c123a8e68f6ec2fe6957d1979c52e186afddae795502b191789c4569a84e6e3a unbound-python-1.6.6-5.el7_8.tuxcare.els3.x86_64.rpm 660dbce95f6d6637c5b4a10240784c6b894e4552d990e02120d9aed771138c55 CLSA-2025:1756231459 grub2: Fix of CVE-2025-0624 TuxCare License Agreement 0 - CVE-2025-0624: net: Fix OOB write in grub_net_search_config_file() Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-0624: net: Fix OOB write in grub_net_search_config_file()

0 tuxcare-rhel7-els grub2-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm 429e7b0d56f1712d66a82ffd6897102501edddb6a6d406ddd70ef2c6155b9be6 grub2-common-2.02-0.87.el7_9.14.tuxcare.els2.noarch.rpm 2bfa5cf02d45b76c66d5977d430cc088b3c8d29205c7af9da212d068a8a2f07e grub2-efi-ia32-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm 85e8eb2a997a52ad9fbd2cfcfadc745368db2b8cb8a46c593b8fb9061b96e20b grub2-efi-ia32-cdboot-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm 2ec34fc45500d43e0a04009a005a2bf5218ad05be848672813f5275d851e596c grub2-efi-ia32-modules-2.02-0.87.el7_9.14.tuxcare.els2.noarch.rpm 55cb850a2bc05f9223a9fc8fb807def1bd3d1bb153dfe5c020cf8f6cd3175691 grub2-efi-x64-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm c269fdfaa9bd5c909534e9550088ad4a3ab41aa50bb85f5099198fbeff9af70e grub2-efi-x64-cdboot-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm 7c7afd3338b4861ab19c52b640af4a846ae21104ae6f707ba2f05f5938610c33 grub2-efi-x64-modules-2.02-0.87.el7_9.14.tuxcare.els2.noarch.rpm 6c8dc93b00380e80ae65a48d848a9500270db7767fe078b797a54f173472794b grub2-pc-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm 102efa5b8ca9af12591935885f8e06494e13cc31349e157fb410b21163b56926 grub2-pc-modules-2.02-0.87.el7_9.14.tuxcare.els2.noarch.rpm f580daea60982cecafec9c57810dfb05b04a911eb1cc01d8ef0c6de41e11f2b5 grub2-tools-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm de46a1b729ad53831b2e6f28e1e53a1efb3ab6be42cad268a34458be8970c3da grub2-tools-extra-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm 2e9210c5a119fc23d5d42b5050eb25d3a070ea469a7e694c72140fdc5f8461ea grub2-tools-minimal-2.02-0.87.el7_9.14.tuxcare.els2.x86_64.rpm a15253a6437edfc690a9c85e25c5c0d7b0d031a34615026a693757d0acd8dc88 CLSA-2025:1756233744 Update of gcc TuxCare License Agreement 0 - Bump the release None Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Bump the release

0 tuxcare-rhel7-els cpp-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 173fbd3ccefa6fdfd9862ea2498e8d12fd7e7e9c7009cb1e43664d628546d3d8 gcc-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm ed904448efb182333bb71594e4c8a138b1ad8c9077069bd7e474bc41f8d18e70 gcc-c++-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 45ff240b44d9ce49dc12c490e71540630a912c8e4b10d4ca072a05c5294b1843 gcc-gfortran-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm d74aaa97ca5c0db0a28d7ba18c427867f5c8798490802a385901c686340ec2a2 gcc-gnat-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 0189b831ed389222e00634145a926bdc1564ff379a630805a8533362f0125454 gcc-go-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm cfe9de785eaf5de3e7122998e5789156a825e73aae7684c070012ea2fb1c0524 gcc-objc++-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm fe36e2a3809bf61e51fd5ac87483fe2773e436f6d1e936579549bbf36a88a072 gcc-objc-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 226b5aba5ac7e2a5fc94be419950a678ca82cfd6d31db344c75d9c7bcbed2680 gcc-plugin-devel-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 92e9ffac42b959f63368a144712ad00dbfe0d0dc88aae3bcb4245c8ea4b4619d libasan-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm c18c6017e9aae76db494a1b1e97403d8a5793bcd0b5e6bf2f3b061c2de0b333f libasan-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm ed2116944315ff0d173e9d1b376ba4c30b96908c9e869191c06f99d2002992b4 libasan-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm d42cc9c81a28242d8ddc4f57f92a69288566a838933bb10c68605fbf66e9cc3d libasan-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 295f21ac72285f90569c9ee99d9e7cda8031493ace4a57fda56709952e817c09 libatomic-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 551401726e0a270347e324ac4711372e1dfdb89f5fe67b7d498fd9a6cd54facc libatomic-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 3d137fe037a202df88dbf0dcb08300516c8fd372a28a3539eedd2f3ba76d566c libatomic-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm f7492f6905cf41d2c5f9365c4b3572245c00b8b30813bf169562f6483b0aebd7 libatomic-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm d1de7b0ec804c5e0dcf9beaced9c2350460f1aa772e8eb9fe93f0c567d36c570 libgcc-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 048f46057ee4c36c9be8d44f9aca454ca0bda7679aa76e7d73b2b173dbd34c4a libgcc-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 9593ba23cf979252d02a92ef06c00accc1689392fc40f21861c1887b4f1b52c9 libgfortran-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm eded663b91a4d0f6a1e46a25d0c4223229d2cda8123fd546a61088d5b3a867d5 libgfortran-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm f4cfd607ed28fd0e8fae9dc308798a08a1cf45b4010a8509698e1503f387416f libgfortran-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 31aea94510441dbc20435dee4a79aefd1be7d60804dcb484439affc0245dbc09 libgfortran-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 35b6e02a8d8ee8059241aac556183d7df0f681eabf13efe52923508559ee0384 libgnat-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 8121e186798c5f667614f30fb51aeec44b1e5b348485ca691510849f8c8c895f libgnat-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm b07a42b01150743c640380893f095faf49efab71815154625039c0edef6d11f4 libgnat-devel-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 77bcf32e2a34d44669cc01966213997b2da35b55e92f139383a1831daaf071d7 libgnat-devel-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 43f95cb0e5b91f3aba6de2f05bab5c699eb16c7dc29c1640bc5f309fe2df7ea9 libgnat-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 197c1675ba27a7abdb6564b441bd52677506b5706d56f380c2c1bf99f9f8fcd3 libgnat-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 30ebdb4514832586e745f87116bd5c623f2ec62795187d61e943347ee6fc4321 libgo-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 99f12826a5677d1b3649198f1eb15afe1f0bede616c903321db6528ad9960471 libgo-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm d01b329e672d3f95374f14ba2ce7513505cfbc0633f7d831dda7c90ff693082e libgo-devel-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 959a8e51c9aa01f2fc209717c5699a4145722a998a209523dd6e0f65e5242961 libgo-devel-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm d8ecb3bb4389d6fbae622cde92ed8b4f751acf6045d532a45363b1d40342a7e5 libgo-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm bad31ec41a7cfdad799b8c2317baef272aaf9a9b8b42861c156b8402c803b511 libgo-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 2591249ead934a395ced8b8434ceb946986d0367e9891493045969d29f2921e0 libgomp-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm f911241b4b323f73fb9d18f9356b010c5ea719197104b3dc11121dc10acbace6 libgomp-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 4b446bf9b6bf10fcb28f0dbdb5ebcf218a13d7a3b92867db7e3c984ea558f322 libitm-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm d4dfb468f0444653d278ff42567e9aedfcf76dfb44bc9f0940e00384821f2dfe libitm-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm a18252205531d9ef82a4e8adbe238479f50410f73802f1c6c2f1cc6d8ed08377 libitm-devel-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 8e7657e23f325757f4cede81b45b88cb562c0c277e8260354f682357b413199e libitm-devel-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 365256f6f6d33360375bec6837786578def06919c1b9c97ac8888fd7dba15d8f libitm-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 1307776880ae6dba6b5b6185dc93f0dd05f1b93eda0a4cc06ed23001825cc623 libitm-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 94367919c1a39f3d64b8b4201d5cc8bd3fd75ec0d057d858e26bf33fdc16fc42 libmudflap-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm b451e8c3d13ae8686e904fdcfa68a9cbd91637e87985ce1ad096fe56358732b7 libmudflap-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm ba41035440323da2367398c74a3df1157f60ccfd2282d2b827cf5152faa76d7f libmudflap-devel-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm d2ae40392880781fdfe522ab4fa5cdaf2a9e2ba3e5f4aad2bb1af35afce97024 libmudflap-devel-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm cc556e0aaf55b1cd1a53a67754515d64fce9f66282760d796331c6aac84dd77d libmudflap-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm b8da73c4e50c09b304998b53fd7ff50c345d6f9f1bb7844f4d015101fa9b4b17 libmudflap-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 5e517972c594bb9d8a197af0ec780b3f5ce1cc03610bae5f68af6242e4a4b850 libobjc-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm ce3367368115eddb3d22f7421dbd8e41f9df7e80cde45ea8875e9e3b5d09fede libobjc-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 83f1a208fac15791b9a68f2e8cba523fe4e3a788f28f70579e5d0f7d5cb6c8d8 libquadmath-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 558b4ed946a99c55132079eb986320f8f6bb02b93afc60b45e6448f6a95e07ba libquadmath-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 43c3f64556bc5b395b7042899c959d6503085d379b9f29080a9711d211eb6c7d libquadmath-devel-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 235b1879e2e263807e7494d4dafd6886c3eb72e23ff3abd5413f0ef7f8ed8368 libquadmath-devel-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 082409358952d64b4b93988f615617ced82285dfb520fb94b0296b8a12dbd935 libquadmath-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 5fecc9e64da4993aa90637a3070ff2a3b528a8713e348430eebb91ffdfdfb33e libquadmath-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 47776e2cb9049646e038b6bc8c4a3a562e0cba57aa1efa6ed8e961e7c247fd11 libstdc++-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 7cc820e7db4888577bebbd4640a3bba9bbf9aec55aa28abebd00021b3b573c3f libstdc++-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 2ac1702fc72ae2405b3ca53dac3a9c8666aa0d5d19285150de8f8cce43e0656e libstdc++-devel-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 6500b2bfd4d817bf238e3a198b4b730d4d8a56f63f144a2c7dfe33fb769ddfd4 libstdc++-devel-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 98ca3700d907ecb4e738cb65b4e38736a113a1856d64ba262d848f805bef500e libstdc++-docs-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 8db50dc724c662603c75e904c4e179c31d68fed7da92c7694c3a1e76984df98e libstdc++-static-4.8.5-45.0.3.el7.tuxcare.els1.i686.rpm 549476297c52adf7cf3869fb17eab2bdebc2bd3d9370f11da078c2125e53645e libstdc++-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 3e4e1b61d8283f974f4c415a3a7af42c5e4e423514522c5d0a20e0ad62f82ba9 libtsan-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 2998b5ee6fe139fea986119ab43b9f15dddd50d423f844b37c7da1c3c9b8515a libtsan-static-4.8.5-45.0.3.el7.tuxcare.els1.x86_64.rpm 98e238a22da87c59b19eb1600090a891b2d17cdbcdb4eab9a56c037f20fcd762 CLSA-2025:1756317560 emacs: Fix of CVE-2025-1244 TuxCare License Agreement 0 - CVE-2025-1244: fix man.el shell injection vulnerability Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-1244: fix man.el shell injection vulnerability

0 tuxcare-rhel7-els emacs-24.3-23.el7_9.1.tuxcare.els4.x86_64.rpm 2839b4f8cf693972bdf02366e7f66b5dce80a5797ec3d5a52953292233621e88 emacs-common-24.3-23.el7_9.1.tuxcare.els4.x86_64.rpm a8945a03f405a3c40b3dee5a9ca82f49ead2012b54e7a374170d2c382762a887 emacs-el-24.3-23.el7_9.1.tuxcare.els4.noarch.rpm 867128003a0055415c1dc46c02827be4ad0049541569c500a067acc6aa6551ad emacs-filesystem-24.3-23.el7_9.1.tuxcare.els4.noarch.rpm cd21097f44a12fbbf9d8331a2a84d17b2595d97b2c89b4b3a6029592a4408bc4 emacs-nox-24.3-23.el7_9.1.tuxcare.els4.x86_64.rpm ba6707fcbd691396a83a83e47d51923da03d922e182f9d5aed54dd01909841bc emacs-terminal-24.3-23.el7_9.1.tuxcare.els4.noarch.rpm 6cd2063ad55a22b713dac8526b55f6eb6938a404ed3e173c16dd2df3351e6db0 CLSA-2025:1756323821 php: Fix of CVE-2025-1736 TuxCare License Agreement 0 - CVE-2025-1736: fix incorrect validation of CRLF in http headers Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-1736: fix incorrect validation of CRLF in http headers

0 tuxcare-rhel7-els php-5.4.16-48.el7.tuxcare.els13.x86_64.rpm c746e53173532ddf8c83c885bd6b0ba4d427eed088318c7c4b4c4e4ad8c4afa0 php-bcmath-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 00e03de70c679529126469d5530b064d144dfefbc06030648d18561ba5f74f29 php-cli-5.4.16-48.el7.tuxcare.els13.x86_64.rpm f8f417914c1547e44dff761b644b6335ff0e5accd35a828691e379c81470093a php-common-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 51b5b8f9b4ace10ed144a62e4bcf71e42e8b3f0b34e0b68246e61894d53b9e31 php-dba-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 6dc358c919c7992ea6c92c230d5b1a086e5920eaaaa99f7bf7beffa173c25967 php-devel-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 284582ec90084df5d211e95218a615096aef1809d3a6ea208531cad07bd843dc php-embedded-5.4.16-48.el7.tuxcare.els13.x86_64.rpm c8985e385caeac22c8ec3457892216f20f742532f8fd1fdee936054d7639d9b0 php-enchant-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 9f8e5821d3113048c2b76cd6f1c8437754989cb1ddcd92c6856d8d5a813cb164 php-fpm-5.4.16-48.el7.tuxcare.els13.x86_64.rpm a90ec0a4609a7a3fe7bf649b61df35fdf404c82517168f640018532f703cb231 php-gd-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 00e555cdbe2fad0bec946e3ece7d2751d06440f0ae5da8351d487c431e2c75a2 php-intl-5.4.16-48.el7.tuxcare.els13.x86_64.rpm d37da7652ba72af9acbd568f2f1d4ca5c9bbe7ac8966a756bd7266e4434aeeb4 php-ldap-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 3aff3ed99401b33521021723e996648d9439e9d61d1304f3465145e8c1213ce6 php-mbstring-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 43892912028377a5f89736244dfbbd89f130011dda8e3ac8e5124ab002a9f624 php-mysql-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 30ea45947098230654cab6bbdba822fea7911e75a654f0bfcfa00747f6a14162 php-mysqlnd-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 027be81d038805805337e5b0c0e7f3a5aa1675ee303dc3f347b94a0e8ff74174 php-odbc-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 51b79b85b514c9dc9c641bc874038e2ae38d31e6182b3622829d7d4841def547 php-pdo-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 2f3ff355a2cf33a8f8580640126ce91efd066bf8e3f23edcd2de66ae9e4c8e53 php-pgsql-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 333bcb76a833f45c80348989b5706d2469cad5d0cc14206c4fbcebaad0d27f51 php-process-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 92af23e8c4275088e83153c58e6e513d970e75095f4c13df5015a5bcc433d797 php-pspell-5.4.16-48.el7.tuxcare.els13.x86_64.rpm af648852204effc4234c836900bd674a8c9f36cb58cebb896f611e8683f6d9ef php-recode-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 4012e6625e5855795f0618fe62dc4199e7a380304ac0b60d2e276800e6eda1cf php-snmp-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 8132d75f42c4f0597b050d60f720caadd59403070ccfd478f708071a9d05823d php-soap-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 5bae0658d4a1abbc2dc2b92877f8f0b38c072984c369ee57dab04b00f297df64 php-xml-5.4.16-48.el7.tuxcare.els13.x86_64.rpm 24c99aed7f6a4479ef515f6ad43fe9fde516ef83f346e766c27c83806ff58dd7 php-xmlrpc-5.4.16-48.el7.tuxcare.els13.x86_64.rpm ef825d864ef2ec9218062d624c9bc01d437f1b4abb0ff91782453a8fc5e7bed7 CLSA-2025:1756408410 xorg-x11-server: Fix of 8 CVEs TuxCare License Agreement 0 - CVE-2025-26594: refuse to free the root cursor and keep its ref - CVE-2025-26595: fix buffer overflow in XkbVModMaskText() - CVE-2025-26596: xkb: fix computation of XkbSizeKeySyms - CVE-2025-26597: xkb: fix buffer overflow in XkbChangeTypesOfKey() - CVE-2025-26598: Xi: Fix barrier device search - CVE-2025-26599: always initialize the border clip in compAllocPixmap() - CVE-2025-26600: dix: Dequeue pending events on frozen device on removal - CVE-2025-26601: postpone actual changes in SyncChangeAlarmAttributes() Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-26594: refuse to free the root cursor and keep its ref - CVE-2025-26595: fix buffer overflow in XkbVModMaskText() - CVE-2025-26596: xkb: fix computation of XkbSizeKeySyms - CVE-2025-26597: xkb: fix buffer overflow in XkbChangeTypesOfKey() - CVE-2025-26598: Xi: Fix barrier device search - CVE-2025-26599: always initialize the border clip in compAllocPixmap() - CVE-2025-26600: dix: Dequeue pending events on frozen device on removal - CVE-2025-26601: postpone actual changes in SyncChangeAlarmAttributes()

0 tuxcare-rhel7-els xorg-x11-server-Xdmx-1.20.4-99.el7_9.tuxcare.els1.x86_64.rpm 01489236ed2a9309f72334b49844669d7fa8bdff94ef2c4f17621c594fb5b470 xorg-x11-server-Xephyr-1.20.4-99.el7_9.tuxcare.els1.x86_64.rpm bcea2c9e926e4fe697d561bb6124fd9712afafc5e64ff5d82ab53f904f05959a xorg-x11-server-Xnest-1.20.4-99.el7_9.tuxcare.els1.x86_64.rpm ebd7fd5ca9f6294c11090180038ed2d3ad6e095e9ba5ee0668b25c119bfe85e1 xorg-x11-server-Xorg-1.20.4-99.el7_9.tuxcare.els1.x86_64.rpm 4fbb79d5ec7a80f024f2a72ba26f2ea7c3b489744beaa437a9866935facb0984 xorg-x11-server-Xvfb-1.20.4-99.el7_9.tuxcare.els1.x86_64.rpm 0514046b7c404868ebc78508bb595ad7e12e9698eaa29346ff1227359e64c078 xorg-x11-server-Xwayland-1.20.4-99.el7_9.tuxcare.els1.x86_64.rpm b87497feaacc1daccfdfaf2139bbf3074dcabda134c3011d2e8b4653c5a66e0f xorg-x11-server-common-1.20.4-99.el7_9.tuxcare.els1.x86_64.rpm 4c3d2d8648f7bd635df2d5ac341efe89213ab7a7770095dfd4dfc2dece0dab76 xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els1.i686.rpm 16a184bf86c4be04d843dffbb8d122c6b8dd1865a13609b1e5361baeff3874ee xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els1.x86_64.rpm 72f37fc74c7fcdd1ca5776932a9550ecce5b9029ea9bdbd21058f5fba8d33e1e xorg-x11-server-source-1.20.4-99.el7_9.tuxcare.els1.noarch.rpm a73196918f73e6f81ce03e813a33cbbaf216cb3a7565802b7ef704f75293f770 CLSA-2025:1756751473 squid: Fix of CVE-2023-46846 TuxCare License Agreement 0 - CVE-2023-46846: fix Request/Response chunk smuggling in HTTP/1.1 and ICAP Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2023-46846: fix Request/Response chunk smuggling in HTTP/1.1 and ICAP

0 tuxcare-rhel7-els squid-3.5.20-17.0.5.el7_9.13.tuxcare.els1.x86_64.rpm 2f61849536da6672ee4b7c3999fa698a32f311e8e470dc103cf9d06ba58d4681 squid-migration-script-3.5.20-17.0.5.el7_9.13.tuxcare.els1.x86_64.rpm b9530480916ed2f99b43f21a825064e3c9df6677e30edce3816d5a4ab1ebf4b1 squid-sysvinit-3.5.20-17.0.5.el7_9.13.tuxcare.els1.x86_64.rpm 68c9340c82ca00f6d93c98652d0613bdecec6415f4a3df85cabfc4179a2f3797 CLSA-2025:1757010850 squid: Fix of CVE-2025-54574 TuxCare License Agreement 0 - CVE-2025-54574: fix heap buffer overflow in URN parsing Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-54574: fix heap buffer overflow in URN parsing

0 tuxcare-rhel7-els squid-3.5.20-17.0.5.el7_9.13.tuxcare.els2.x86_64.rpm 69499f8c7279fcb1c59cf82e68643ab4dab3d420ede8fcbf46e6a4aaf1e2dbeb squid-migration-script-3.5.20-17.0.5.el7_9.13.tuxcare.els2.x86_64.rpm 0b7100c56549e2039f725aa3e0204466f8cfb92e9ef40531d0b589e575440bf8 squid-sysvinit-3.5.20-17.0.5.el7_9.13.tuxcare.els2.x86_64.rpm df409d78eff70409b98092a17b88430e0edcbf32ed63ea4a920e459019d5e3c5 CLSA-2025:1757246101 zlib: Fix of CVE-2016-9840 TuxCare License Agreement 0 - CVE-2016-9840: fix undefined behavior in inftrees.c Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2016-9840: fix undefined behavior in inftrees.c

0 tuxcare-rhel7-els minizip-1.2.7-21.el7_9.tuxcare.els2.i686.rpm 232863b43a7760f093dd3d4dbd8a4cb9b005ef2a47335c49c8eb7a3d5e934894 minizip-1.2.7-21.el7_9.tuxcare.els2.x86_64.rpm ef551f1219bfb71cff4e1f81c957229b6d17fa2a5d113e5a955f686c76d55046 minizip-devel-1.2.7-21.el7_9.tuxcare.els2.i686.rpm 32f0aed9790e8131870642f9c0aaf0ebaac4cff02aaefa6e156a5f56e72d3a9b minizip-devel-1.2.7-21.el7_9.tuxcare.els2.x86_64.rpm d0aae0135f0cc1c378cdf5989d6946a95d485daacdefcbbc506f233689265656 zlib-1.2.7-21.el7_9.tuxcare.els2.i686.rpm d705b8a5b4fb08f04d5f3f140d95fd15fd8f7dd620380e4161456fbba6e8f81d zlib-1.2.7-21.el7_9.tuxcare.els2.x86_64.rpm 3651601d6a47b84bd58aa32f0942949133c37f611e757565c77052021485c524 zlib-devel-1.2.7-21.el7_9.tuxcare.els2.i686.rpm ab831472a85bb65276dffccf4d20129c13f9e4b7e41bd09131fb078375e8d98e zlib-devel-1.2.7-21.el7_9.tuxcare.els2.x86_64.rpm 21e09dfb6dbf280295d2d09fec5b7049db05dadf886c95f6768b67b63148a513 zlib-static-1.2.7-21.el7_9.tuxcare.els2.i686.rpm c13f444c54fa882887bc9ff4ad4fd324d833843f6b6298c096d0c1ffe27cc723 zlib-static-1.2.7-21.el7_9.tuxcare.els2.x86_64.rpm 0f92c516ff5c5607dfe95a37bef7368a0e2552b745e49ffd0621571751940fbc CLSA-2025:1757409276 mpfr: Fix of CVE-2014-9474 TuxCare License Agreement 0 - CVE-2014-9474: Fix of a buffer overflow due to incorrect GMP documentation for mpn_set_str Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2014-9474: Fix of a buffer overflow due to incorrect GMP documentation for mpn_set_str

0 tuxcare-rhel7-els mpfr-3.1.1-4.el7.tuxcare.els1.i686.rpm 28a0fa812701032c676657d0b1a96261631c9a95e9d56c7f1cb666c66b64ba32 mpfr-3.1.1-4.el7.tuxcare.els1.x86_64.rpm a521250a2fb7bd126f3b90be2f9af2221b3c792fd18ac44b3c3703ec9a897acc mpfr-devel-3.1.1-4.el7.tuxcare.els1.i686.rpm 49685b52d1225371fcc4749a9958d300c6830a2d291db9b0d0d96a7047ba88c2 mpfr-devel-3.1.1-4.el7.tuxcare.els1.x86_64.rpm 82820558837760559be9783d5f46c84eb30bcba059e48fd7006d6cd113caa259 CLSA-2025:1757413554 libxml2: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2025-7425: fix heap-use-after-free in xmlFreeID caused by 'atype' corruption - CVE-2025-6021: fix integer overflows in buffer size calculations Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-7425: fix heap-use-after-free in xmlFreeID caused by 'atype' corruption - CVE-2025-6021: fix integer overflows in buffer size calculations

0 tuxcare-rhel7-els libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els7.i686.rpm e6c8302b1f9c7367f70b19d065265d1429e980e6c9ed49cac6af7693be68f29e libxml2-2.9.1-6.0.3.el7_9.6.tuxcare.els7.x86_64.rpm 3233501a4c46f7bc126ef99eb925217ef0082b6f81499940c4374c830ad81556 libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els7.i686.rpm e9725f3b53e88c1f6c174d0eb49ebda8784e93f79bd01b97b679e42f807ea6c1 libxml2-devel-2.9.1-6.0.3.el7_9.6.tuxcare.els7.x86_64.rpm b8bd9b1cd590ddca334898a30d13bf6c248a0e18e3de8d51510b7cc178db1bd9 libxml2-python-2.9.1-6.0.3.el7_9.6.tuxcare.els7.x86_64.rpm ea943904cc8be62cfa802d90f8d45e874f44c91cf66bb6af20f6569427a5556a libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els7.i686.rpm eed511eb5ddb220134cf02988150b0c156f7666fa5662e75bd9963601821aefa libxml2-static-2.9.1-6.0.3.el7_9.6.tuxcare.els7.x86_64.rpm 40b6a9f6a45374e55d540e2f872bc404672f52269dc8e93676dd5ccf3348306b CLSA-2025:1757499160 xorg-x11-server: Fix of CVE-2025-49180 TuxCare License Agreement 0 - CVE-2025-49180: fix integer overflow in the RandR extension affecting the RRChangeProviderProperty function Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-49180: fix integer overflow in the RandR extension affecting the RRChangeProviderProperty function

0 tuxcare-rhel7-els xorg-x11-server-Xdmx-1.20.4-99.el7_9.tuxcare.els4.x86_64.rpm 5918bd4875186f8a2c0bbe5b6e7ff6330e217f750bdcf94b97fb5f69102f283d xorg-x11-server-Xephyr-1.20.4-99.el7_9.tuxcare.els4.x86_64.rpm 346e38a6ee344626a5ce126479d53c2cc7bc827a807877c800c7e71b80182006 xorg-x11-server-Xnest-1.20.4-99.el7_9.tuxcare.els4.x86_64.rpm dc1ba7dc244c6837559924c02b7695020b69cf841d0d08f1f33032794602b1fa xorg-x11-server-Xorg-1.20.4-99.el7_9.tuxcare.els4.x86_64.rpm 8122e6db5f71c8ccec3c8d2a19232998052843ce721bac5bef1bdf2ceb9e5703 xorg-x11-server-Xvfb-1.20.4-99.el7_9.tuxcare.els4.x86_64.rpm 82f7ac0ef1fffacfde658d1b99ddbbacf9084648b52ba56b9e7af3997adf2da1 xorg-x11-server-Xwayland-1.20.4-99.el7_9.tuxcare.els4.x86_64.rpm 2d64233a52b8197145b68a6b7180c0a9511a781a61296c98204223a63c909400 xorg-x11-server-common-1.20.4-99.el7_9.tuxcare.els4.x86_64.rpm e76c6410f16333cca8ee22b1751e2510722d5d3a2fe8d18f20689fbfd7f1b5fa xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els4.i686.rpm 64bef251bd53b96ecd25172254c94d702f3481bfb7053cc6dbb0607430808d5f xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els4.x86_64.rpm 0bc2a96e6b15318a2c7ade8a42a1c6588f96ac1933a8eba6a087ca5897492067 xorg-x11-server-source-1.20.4-99.el7_9.tuxcare.els4.noarch.rpm 21f5b766f57564a53ff4bbc582e30eccd5250f202f43d2ff67b8b15e94cf9620 CLSA-2025:1757574151 pam: Fix of CVE-2025-6020 TuxCare License Agreement 0 - CVE-2025-6020: fix potential privilege escalation in pam_namspace Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-6020: fix potential privilege escalation in pam_namspace

0 tuxcare-rhel7-els pam-1.1.8-23.0.1.el7.tuxcare.els2.i686.rpm 6fde53d80a9d58a41377aef5bac34108781c2c66e9b2d975429af786e8e5c5b9 pam-1.1.8-23.0.1.el7.tuxcare.els2.x86_64.rpm 72e64fa784d0db46bb4a41d1b300adc88e3bed9b37fb07b993a33f7ee51310fd pam-devel-1.1.8-23.0.1.el7.tuxcare.els2.i686.rpm 195517cbd0fe02ee289df0de868034d13352c8fd43a61f90d18961a61132898c pam-devel-1.1.8-23.0.1.el7.tuxcare.els2.x86_64.rpm 92d3104eea081f22f3e23dfaac12fa210aaa7fda3a252a35b6edfba4543e8656 CLSA-2025:1757662405 xorg-x11-server: Fix of CVE-2025-49178 TuxCare License Agreement 0 - CVE-2025-49178: fix request handling flaw causing potential denial of service Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-49178: fix request handling flaw causing potential denial of service

0 tuxcare-rhel7-els xorg-x11-server-Xdmx-1.20.4-99.el7_9.tuxcare.els6.x86_64.rpm 4577c7199254afdd856417642f94daf1165dc2ea1f99120464951cbdca777974 xorg-x11-server-Xephyr-1.20.4-99.el7_9.tuxcare.els6.x86_64.rpm 8d0493af965ce82e3836d3352c782eef072834a983ba01f5a57f0f45b76c517d xorg-x11-server-Xnest-1.20.4-99.el7_9.tuxcare.els6.x86_64.rpm 42e41fcd3895772a282e67c19be6651ddc6a4ea7a016ef13ad5342df609f95f6 xorg-x11-server-Xorg-1.20.4-99.el7_9.tuxcare.els6.x86_64.rpm b828f6367762b2b14b61961c49e9cb642260e5b5e3dce437f5d11198c047c92b xorg-x11-server-Xvfb-1.20.4-99.el7_9.tuxcare.els6.x86_64.rpm c1b55725c1e6486ff70a5c2c088ca26b3e1f8c77d6f057db28565aab56345466 xorg-x11-server-Xwayland-1.20.4-99.el7_9.tuxcare.els6.x86_64.rpm 23aa3ab0b24bd9cb3f0de96d014678fc5964ece2d6cffa18486ff1ec4fefd0a3 xorg-x11-server-common-1.20.4-99.el7_9.tuxcare.els6.x86_64.rpm 5f682770e37af94ea1d7236a882a3a01acfc2e35c68db3bdbb580869127e6d32 xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els6.i686.rpm aae9e4f3472988df5984f29a8ae50415f0dd8e52b4fa255a5f05923d6ad1463b xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els6.x86_64.rpm 50be146e409cce95e485e65aaa44eaa285a7cd5c8212cd711ee683472391efdc xorg-x11-server-source-1.20.4-99.el7_9.tuxcare.els6.noarch.rpm ba1af8bc1ef51636409a399857cc2c56b3ede5443391149e44582d0bf8a55afa CLSA-2025:1757662580 Update of microcode_ctl TuxCare License Agreement 0 - Update Intel CPU microcode to 20250812: - Addition of cpuid:806F8/0x10 (SPR-HBM B3) microcode (in microcode.dat) at revision 0x2c000401; - Addition of cpuid:806F8/0x87 (SPR-SP E5/S3) microcode (in microcode.dat) at revision 0x2b000643; - Addition of cpuid:90672/0x07 (ADL-HX/S 8+8 C0) microcode (in microcode.dat) at revision 0x3a; - Addition of cpuid:906A3/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in microcode.dat) at revision 0x437; - Addition of cpuid:A06D1/0x20 (GNR-AP/SP H0) microcode (in microcode.dat) at revision 0xa000100; - Addition of cpuid:A06D1/0x95 (GNR-AP/SP B0) microcode (in microcode.dat) at revision 0x10003d0; - Addition of cpuid:B0650/0x80 (ARL-U A1) microcode (in microcode.dat) at revision 0xa; - Addition of cpuid:B0671/0x32 (RPL-S B0) microcode (in microcode.dat) at revision 0x12f; - Addition of cpuid:B06A2/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in microcode.dat) at revision 0x4129; - Addition of cpuid:B06D1/0x80 (LNL B0) microcode (in microcode.dat) at revision 0x123; - Addition of cpuid:C0652/0x82 (ARL-H A1) microcode (in microcode.dat) at revision 0x119; - Addition of cpuid:C0662/0x82 (ARL-HX 8P/S B0) microcode (in microcode.dat) at revision 0x119; - Addition of cpuid:C0664/0x82 microcode (in microcode.dat) at revision 0x119; - Addition of cpuid:C06A2/0x82 microcode (in microcode.dat) at revision 0x119; - Addition of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x210002b3; - Removal of cpuid:50656/0xbf (CLX-SP B0) microcode (in microcode.dat) at revision 0x4003605; - Removal of cpuid:806F8/0x10 (SPR-HBM B3) microcode (in microcode.dat) at revision 0x2c0003e0; - Removal of cpuid:806F8/0x87 (SPR-SP E5/S3) microcode (in microcode.dat) at revision 0x2b000620; - Removal of cpuid:90672/0x07 (ADL-HX/S 8+8 C0) microcode (in microcode.dat) at revision 0x38; - Removal of cpuid:906A3/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in microcode.dat) at revision 0x436; - Removal of cpuid:B0671/0x32 (RPL-S B0) microcode (in microcode.dat) at revision 0x12c; - Removal of cpuid:B06A2/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in microcode.dat) at revision 0x4124; - Removal of cpuid:C06F1/0x87 (EMR-SP A0) microcode (in microcode.dat) at revision 0x21000291; - Removal of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x21000291; - Update of cpuid:50657/0xbf (CLX-SP/W/X B1/L1) microcode (in microcode.dat) from revision 0x5003707 up to 0x5003901; - Update of cpuid:5065B/0xbf (CPX-SP A1) microcode (in microcode.dat) from revision 0x7002904 up to 0x7002b01; - Update of cpuid:606A6/0x87 (ICX-SP D0) microcode (in microcode.dat) from revision 0xd0003f5 up to 0xd000410; - Update of cpuid:606C1/0x10 (ICL-D B0) microcode (in microcode.dat) from revision 0x10002c0 up to 0x10002e0; - Update of cpuid:706A8/0x01 (GLK-R R0) microcode (in microcode.dat) from revision 0x24 up to 0x26; - Update of cpuid:706E5/0x80 (ICL-U/Y D1) microcode (in microcode.dat) from revision 0xc6 up to 0xca; - Update of cpuid:806C1/0x80 (TGL-UP3/UP4 B1) microcode (in microcode.dat) from revision 0xb8 up to 0xbc; - Update of cpuid:806C2/0xc2 (TGL-R C0) microcode (in microcode.dat) from revision 0x38 up to 0x3c; - Update of cpuid:806D1/0xc2 (TGL-H R0) microcode (in microcode.dat) from revision 0x52 up to 0x56; - Update of cpuid:806EC/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:806F4/0x10 microcode (in microcode.dat) from revision 0x2c0003e0 up to 0x2c000401; - Update of cpuid:806F4/0x87 (SPR-SP E0/S1) microcode (in microcode.dat) from revision 0x2b000620 up to 0x2b000643; - Update of cpuid:806F5/0x10 (SPR-HBM B1) microcode (in microcode.dat) from revision 0x2c0003e0 up to 0x2c000401; - Update of cpuid:806F5/0x87 (SPR-SP E2) microcode (in microcode.dat) from revision 0x2b000620 up to 0x2b000643; - Update of cpuid:806F6/0x10 microcode (in microcode.dat) from revision 0x2c0003e0 up to 0x2c000401; - Update of cpuid:806F6/0x87 (SPR-SP E3) microcode (in microcode.dat) from revision 0x2b000620 up to 0x2b000643; - Update of cpuid:806F7/0x87 (SPR-SP E4/S2) microcode (in microcode.dat) from revision 0x2b000620 up to 0x2b000643; - Update of cpuid:90675/0x07 (ADL-S 6+0 K0) microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:906A4/0x40 (AZB A0) microcode (in microcode.dat) from revision 0x9 up to 0xa; - Update of cpuid:906A4/0x80 (ADL-P 2+8 R0) microcode (in microcode.dat) from revision 0x436 up to 0x437; - Update of cpuid:906ED/0x22 (CFL-H/S/Xeon E R0) microcode (in microcode.dat) from revision 0x102 up to 0x104; - Update of cpuid:A0652/0x20 (CML-H R1) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:A0653/0x22 (CML-S 6+2 G1) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:A0655/0x22 (CML-S 10+2 Q0) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:A0660/0x80 (CML-U 6+2 A0) microcode (in microcode.dat) from revision 0xfe up to 0x102; - Update of cpuid:A0661/0x80 (CML-U 6+2 v2 K1) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:A0671/0x02 (RKL-S B0) microcode (in microcode.dat) from revision 0x63 up to 0x64; - Update of cpuid:A06A4/0xe6 (MTL-H/U C0) microcode (in microcode.dat) from revision 0x20 up to 0x25; - Update of cpuid:A06F3/0x01 (SRF-SP C0) microcode (in microcode.dat) from revision 0x3000330 up to 0x3000362; - Update of cpuid:B0674/0x32 microcode (in microcode.dat) from revision 0x12c up to 0x12f; - Update of cpuid:B06A3/0xe0 (RPL-U 2+8 Q0) microcode (in microcode.dat) from revision 0x4124 up to 0x4129; - Update of cpuid:B06A8/0xe0 microcode (in microcode.dat) from revision 0x4124 up to 0x4129; - Update of cpuid:B06E0/0x19 (ADL-N A0) microcode (in microcode.dat) from revision 0x1c up to 0x1d; - Update of cpuid:B06F2/0x07 (ADL C0) microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:B06F5/0x07 (ADL C0) microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:B06F6/0x07 microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:B06F7/0x07 microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:C06F1/0x87 (EMR-SP A0) microcode (in microcode.dat) from revision 0x21000291 up to 0x210002b3; Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Update Intel CPU microcode to 20250812: - Addition of cpuid:806F8/0x10 (SPR-HBM B3) microcode (in microcode.dat) at revision 0x2c000401; - Addition of cpuid:806F8/0x87 (SPR-SP E5/S3) microcode (in microcode.dat) at revision 0x2b000643; - Addition of cpuid:90672/0x07 (ADL-HX/S 8+8 C0) microcode (in microcode.dat) at revision 0x3a; - Addition of cpuid:906A3/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in microcode.dat) at revision 0x437; - Addition of cpuid:A06D1/0x20 (GNR-AP/SP H0) microcode (in microcode.dat) at revision 0xa000100; - Addition of cpuid:A06D1/0x95 (GNR-AP/SP B0) microcode (in microcode.dat) at revision 0x10003d0; - Addition of cpuid:B0650/0x80 (ARL-U A1) microcode (in microcode.dat) at revision 0xa; - Addition of cpuid:B0671/0x32 (RPL-S B0) microcode (in microcode.dat) at revision 0x12f; - Addition of cpuid:B06A2/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in microcode.dat) at revision 0x4129; - Addition of cpuid:B06D1/0x80 (LNL B0) microcode (in microcode.dat) at revision 0x123; - Addition of cpuid:C0652/0x82 (ARL-H A1) microcode (in microcode.dat) at revision 0x119; - Addition of cpuid:C0662/0x82 (ARL-HX 8P/S B0) microcode (in microcode.dat) at revision 0x119; - Addition of cpuid:C0664/0x82 microcode (in microcode.dat) at revision 0x119; - Addition of cpuid:C06A2/0x82 microcode (in microcode.dat) at revision 0x119; - Addition of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x210002b3; - Removal of cpuid:50656/0xbf (CLX-SP B0) microcode (in microcode.dat) at revision 0x4003605; - Removal of cpuid:806F8/0x10 (SPR-HBM B3) microcode (in microcode.dat) at revision 0x2c0003e0; - Removal of cpuid:806F8/0x87 (SPR-SP E5/S3) microcode (in microcode.dat) at revision 0x2b000620; - Removal of cpuid:90672/0x07 (ADL-HX/S 8+8 C0) microcode (in microcode.dat) at revision 0x38; - Removal of cpuid:906A3/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in microcode.dat) at revision 0x436; - Removal of cpuid:B0671/0x32 (RPL-S B0) microcode (in microcode.dat) at revision 0x12c; - Removal of cpuid:B06A2/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in microcode.dat) at revision 0x4124; - Removal of cpuid:C06F1/0x87 (EMR-SP A0) microcode (in microcode.dat) at revision 0x21000291; - Removal of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x21000291; - Update of cpuid:50657/0xbf (CLX-SP/W/X B1/L1) microcode (in microcode.dat) from revision 0x5003707 up to 0x5003901; - Update of cpuid:5065B/0xbf (CPX-SP A1) microcode (in microcode.dat) from revision 0x7002904 up to 0x7002b01; - Update of cpuid:606A6/0x87 (ICX-SP D0) microcode (in microcode.dat) from revision 0xd0003f5 up to 0xd000410; - Update of cpuid:606C1/0x10 (ICL-D B0) microcode (in microcode.dat) from revision 0x10002c0 up to 0x10002e0; - Update of cpuid:706A8/0x01 (GLK-R R0) microcode (in microcode.dat) from revision 0x24 up to 0x26; - Update of cpuid:706E5/0x80 (ICL-U/Y D1) microcode (in microcode.dat) from revision 0xc6 up to 0xca; - Update of cpuid:806C1/0x80 (TGL-UP3/UP4 B1) microcode (in microcode.dat) from revision 0xb8 up to 0xbc; - Update of cpuid:806C2/0xc2 (TGL-R C0) microcode (in microcode.dat) from revision 0x38 up to 0x3c; - Update of cpuid:806D1/0xc2 (TGL-H R0) microcode (in microcode.dat) from revision 0x52 up to 0x56; - Update of cpuid:806EC/0x94 (AML-Y 4+2 V0, CML-U 4+2 V0, WHL-U V0) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:806F4/0x10 microcode (in microcode.dat) from revision 0x2c0003e0 up to 0x2c000401; - Update of cpuid:806F4/0x87 (SPR-SP E0/S1) microcode (in microcode.dat) from revision 0x2b000620 up to 0x2b000643; - Update of cpuid:806F5/0x10 (SPR-HBM B1) microcode (in microcode.dat) from revision 0x2c0003e0 up to 0x2c000401; - Update of cpuid:806F5/0x87 (SPR-SP E2) microcode (in microcode.dat) from revision 0x2b000620 up to 0x2b000643; - Update of cpuid:806F6/0x10 microcode (in microcode.dat) from revision 0x2c0003e0 up to 0x2c000401; - Update of cpuid:806F6/0x87 (SPR-SP E3) microcode (in microcode.dat) from revision 0x2b000620 up to 0x2b000643; - Update of cpuid:806F7/0x87 (SPR-SP E4/S2) microcode (in microcode.dat) from revision 0x2b000620 up to 0x2b000643; - Update of cpuid:90675/0x07 (ADL-S 6+0 K0) microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:906A4/0x40 (AZB A0) microcode (in microcode.dat) from revision 0x9 up to 0xa; - Update of cpuid:906A4/0x80 (ADL-P 2+8 R0) microcode (in microcode.dat) from revision 0x436 up to 0x437; - Update of cpuid:906ED/0x22 (CFL-H/S/Xeon E R0) microcode (in microcode.dat) from revision 0x102 up to 0x104; - Update of cpuid:A0652/0x20 (CML-H R1) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:A0653/0x22 (CML-S 6+2 G1) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:A0655/0x22 (CML-S 10+2 Q0) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:A0660/0x80 (CML-U 6+2 A0) microcode (in microcode.dat) from revision 0xfe up to 0x102; - Update of cpuid:A0661/0x80 (CML-U 6+2 v2 K1) microcode (in microcode.dat) from revision 0xfc up to 0x100; - Update of cpuid:A0671/0x02 (RKL-S B0) microcode (in microcode.dat) from revision 0x63 up to 0x64; - Update of cpuid:A06A4/0xe6 (MTL-H/U C0) microcode (in microcode.dat) from revision 0x20 up to 0x25; - Update of cpuid:A06F3/0x01 (SRF-SP C0) microcode (in microcode.dat) from revision 0x3000330 up to 0x3000362; - Update of cpuid:B0674/0x32 microcode (in microcode.dat) from revision 0x12c up to 0x12f; - Update of cpuid:B06A3/0xe0 (RPL-U 2+8 Q0) microcode (in microcode.dat) from revision 0x4124 up to 0x4129; - Update of cpuid:B06A8/0xe0 microcode (in microcode.dat) from revision 0x4124 up to 0x4129; - Update of cpuid:B06E0/0x19 (ADL-N A0) microcode (in microcode.dat) from revision 0x1c up to 0x1d; - Update of cpuid:B06F2/0x07 (ADL C0) microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:B06F5/0x07 (ADL C0) microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:B06F6/0x07 microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:B06F7/0x07 microcode (in microcode.dat) from revision 0x38 up to 0x3a; - Update of cpuid:C06F1/0x87 (EMR-SP A0) microcode (in microcode.dat) from revision 0x21000291 up to 0x210002b3;

0 tuxcare-rhel7-els microcode_ctl-2.1-73.25.el7_9.tuxcare.els1.x86_64.rpm 152c1ff16e8314b942a921a9eea420c6542f24359334370b46e1fdf5a561d1b7 CLSA-2025:1757662747 gdk-pixbuf2: Fix of CVE-2025-7345 TuxCare License Agreement 0 - CVE-2025-7345: fix heap buffer overflow during base64 encoding in gdk_pixbuf__jpeg_image_load_increment() Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-7345: fix heap buffer overflow during base64 encoding in gdk_pixbuf__jpeg_image_load_increment()

0 tuxcare-rhel7-els gdk-pixbuf2-2.36.12-3.el7.tuxcare.els1.i686.rpm ffe3f5d0a221393576c5c8009300a00e3a8f71cd1efa98ee0002e5fdc48f11c8 gdk-pixbuf2-2.36.12-3.el7.tuxcare.els1.x86_64.rpm 9eefcda8ac9723bf5ff7b537bb6f08fe9e6fc8cc33f75b4a9d308f88adb45e42 gdk-pixbuf2-devel-2.36.12-3.el7.tuxcare.els1.i686.rpm 3bed593db5e0ea15e2bccf0b663922779b99b158a254ed94c4d0c0356c6be4c4 gdk-pixbuf2-devel-2.36.12-3.el7.tuxcare.els1.x86_64.rpm ac23b2130bb07541aaf839fc84b757569bfbc2146a066f4450730eb643084ff9 gdk-pixbuf2-tests-2.36.12-3.el7.tuxcare.els1.x86_64.rpm 8f721e64aec2ebc2c724cfa51435b82950be342831be8d22e5d0b68dd14318c9 CLSA-2025:1757690477 glibc: Fix of CVE-2025-4802 TuxCare License Agreement 0 - CVE-2025-4802: prevent untrusted LD_LIBRARY_PATH from loading dynamically shared libraries in statically compiled binaries that call dlopen Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-4802: prevent untrusted LD_LIBRARY_PATH from loading dynamically shared libraries in statically compiled binaries that call dlopen

0 tuxcare-rhel7-els glibc-2.17-326.el7_9.99.tuxcare.els1.i686.rpm 299fda485885ce321db133bcc1a12a20f5a3ce2d5c1bb214139eb8f580d9eb02 glibc-2.17-326.el7_9.99.tuxcare.els1.x86_64.rpm 8bc2baa7bddd0ed0ef21516b7227eee99b8744e1e73f25d46cad7569e51b06d5 glibc-common-2.17-326.el7_9.99.tuxcare.els1.x86_64.rpm bd4c5728341ecec876e5038b0e73c571969ff6e69214bd6422cb2256631b22d2 glibc-devel-2.17-326.el7_9.99.tuxcare.els1.i686.rpm 8f1e6daf78e067c06dc27510fb8d2c92c34532a1badfcc25a356b43bc2328b2b glibc-devel-2.17-326.el7_9.99.tuxcare.els1.x86_64.rpm c1aa8b0b86e667f70214dccafcc06de22b052b33d338bbda3a57f14245f20a3d glibc-headers-2.17-326.el7_9.99.tuxcare.els1.x86_64.rpm 8d38261532bca8906efe36c845d739284f10d942159b6abd449d4719ff4d02c4 glibc-static-2.17-326.el7_9.99.tuxcare.els1.i686.rpm 90ad769650bb1d420d610bd286c7dfeeca6b4f7359879d5101df201e7c39c845 glibc-static-2.17-326.el7_9.99.tuxcare.els1.x86_64.rpm 52463f218f08cbb3dc433d3fd82862c565a83e998cb45d4773e696de261999fc glibc-utils-2.17-326.el7_9.99.tuxcare.els1.x86_64.rpm 8ee8cd6a31b25a0a852b6400c3344e32de0cf9f52e125131edba6979f269a3dc nscd-2.17-326.el7_9.99.tuxcare.els1.x86_64.rpm 4730db6e75a47b2d663115e81b690c7ec64cb2a3bc29752f50ad0794df6bb1d4 CLSA-2025:1757693980 kernel: Fix of 40 CVEs TuxCare License Agreement 0 - x86/kvm: Disable kvmclock on all CPUs on shutdown {CVE-2021-47110} - posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() {CVE-2025-38352} - cifs: fix double free race when mount fails in cifs_get_root() {CVE-2022-48919} - aio: mark AIO pseudo-fs noexec {CVE-2016-10044} - cifs: potential buffer overflow in handling symlinks {CVE-2022-49058} - NFSD: fix race between nfsd registration and exports_proc {CVE-2025-38232} - nfsd: register pernet ops last, unregister first {CVE-2025-38232} - do_change_type(): refuse to operate on unmounted/not ours mounts {CVE-2025-38498} - net: atm: fix /proc/net/atm/lec handling {CVE-2025-38180} - net: atm: add lec_mutex {CVE-2025-38180} - SUNRPC: make sure cache entry active before cache_show {CVE-2024-53174} - scsi: target: Fix NULL pointer dereference in core_scsi3_decode_spec_i_port() {CVE-2025-38399} - scsi: target: Fix crash during SPEC_I_PT handling {CVE-2025-38399} - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race {CVE-2025-38085} - drivers:md:fix a potential use-after-free bug {CVE-2022-50022} - ext4: avoid resizing to a partial cluster size {CVE-2022-50020} - HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() {CVE-2025-21928} - net/sched: Abort __tc_modify_qdisc if parent class does not exist {CVE-2025-38457} - misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() {CVE-2022-49788} - dlm: fix plock invalid read {CVE-2022-49407} - net: usb: smsc75xx: Limit packet length to skb->len {CVE-2023-53125} - scsi: libfc: Fix use after free in fc_exch_abts_resp() {CVE-2022-49114} - crypto: algif_hash - fix double free in hash_accept {CVE-2025-38079} - HID: core: Harden s32ton() against conversion to 0 bits {CVE-2025-38556} - HID: core: ensure the allocated report buffer can contain the reserved report ID {CVE-2025-38495} - ext4: Fix possible corruption when moving a directory {CVE-2023-53137} - ceph: avoid putting the realm twice when decoding snaps fails {CVE-2022-49770} - vsock/vmci: Clear the vmci transport packet properly when initializing it {CVE-2025-38403} - HID: core: do not bypass hid_hw_raw_request {CVE-2025-38494} - sch_hfsc: make hfsc_qlen_notify() idempotent {CVE-2025-38177} - ext4: check dot and dotdot of dx_root before making dir indexed {CVE-2024-42305} - ALSA: bcd2000: Fix a UAF bug on the error path of probing {CVE-2022-50229} - dm ioctl: prevent potential spectre v1 gadget {CVE-2022-49122} - net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too {CVE-2025-37823} - md-raid10: fix KASAN warning {CVE-2022-50211} - scsi: lpfc: Use memcpy() for BIOS version {CVE-2025-38332} - ACPICA: Refuse to evaluate a method if arguments are missing {CVE-2025-38386} - media: cxusb: no longer judge rbuf when the write fails {CVE-2025-38229} - ipc: fix to protect IPCS lookups using RCU {CVE-2025-38212} - ext4: fix off-by-one error in do_split {CVE-2025-23150} - perf/core: Fix WARN_ON(!ctx) in __free_event() for partial init {CVE-2025-37878} - sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() {CVE-2025-38000} - i40e: fix MMIO write access to an invalid page in i40e_clear_hw {CVE-2025-38200} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- x86/kvm: Disable kvmclock on all CPUs on shutdown {CVE-2021-47110} - posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() {CVE-2025-38352} - cifs: fix double free race when mount fails in cifs_get_root() {CVE-2022-48919} - aio: mark AIO pseudo-fs noexec {CVE-2016-10044} - cifs: potential buffer overflow in handling symlinks {CVE-2022-49058} - NFSD: fix race between nfsd registration and exports_proc {CVE-2025-38232} - nfsd: register pernet ops last, unregister first {CVE-2025-38232} - do_change_type(): refuse to operate on unmounted/not ours mounts {CVE-2025-38498} - net: atm: fix /proc/net/atm/lec handling {CVE-2025-38180} - net: atm: add lec_mutex {CVE-2025-38180} - SUNRPC: make sure cache entry active before cache_show {CVE-2024-53174} - scsi: target: Fix NULL pointer dereference in core_scsi3_decode_spec_i_port() {CVE-2025-38399} - scsi: target: Fix crash during SPEC_I_PT handling {CVE-2025-38399} - mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race {CVE-2025-38085} - drivers:md:fix a potential use-after-free bug {CVE-2022-50022} - ext4: avoid resizing to a partial cluster size {CVE-2022-50020} - HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove() {CVE-2025-21928} - net/sched: Abort __tc_modify_qdisc if parent class does not exist {CVE-2025-38457} - misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram() {CVE-2022-49788} - dlm: fix plock invalid read {CVE-2022-49407} - net: usb: smsc75xx: Limit packet length to skb->len {CVE-2023-53125} - scsi: libfc: Fix use after free in fc_exch_abts_resp() {CVE-2022-49114} - crypto: algif_hash - fix double free in hash_accept {CVE-2025-38079} - HID: core: Harden s32ton() against conversion to 0 bits {CVE-2025-38556} - HID: core: ensure the allocated report buffer can contain the reserved report ID {CVE-2025-38495} - ext4: Fix possible corruption when moving a directory {CVE-2023-53137} - ceph: avoid putting the realm twice when decoding snaps fails {CVE-2022-49770} - vsock/vmci: Clear the vmci transport packet properly when initializing it {CVE-2025-38403} - HID: core: do not bypass hid_hw_raw_request {CVE-2025-38494} - sch_hfsc: make hfsc_qlen_notify() idempotent {CVE-2025-38177} - ext4: check dot and dotdot of dx_root before making dir indexed {CVE-2024-42305} - ALSA: bcd2000: Fix a UAF bug on the error path of probing {CVE-2022-50229} - dm ioctl: prevent potential spectre v1 gadget {CVE-2022-49122} - net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too {CVE-2025-37823} - md-raid10: fix KASAN warning {CVE-2022-50211} - scsi: lpfc: Use memcpy() for BIOS version {CVE-2025-38332} - ACPICA: Refuse to evaluate a method if arguments are missing {CVE-2025-38386} - media: cxusb: no longer judge rbuf when the write fails {CVE-2025-38229} - ipc: fix to protect IPCS lookups using RCU {CVE-2025-38212} - ext4: fix off-by-one error in do_split {CVE-2025-23150} - perf/core: Fix WARN_ON(!ctx) in __free_event() for partial init {CVE-2025-37878} - sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() {CVE-2025-38000} - i40e: fix MMIO write access to an invalid page in i40e_clear_hw {CVE-2025-38200}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm ca8c30363f0eb3455fb004bc0750a6a2c0f3f2d25ad7aed7201d1dbc34576fff kernel-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm 280b89c4a0f9758f2157b1b6365d649691ffdc9473747d1109fd49025fc26e21 kernel-debug-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm 17818bc2aa3775e6ed595eed722b4a60dafc6f324b27880856808fcdc5a74ee4 kernel-debug-devel-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm 005927f40da8a7ad27eed445ea7bf0d29e74227bc30203553f9fd624bdcf9fea kernel-devel-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm 957419bae847d382aa1f8ef25a0f21741c90e15c1fd7d8a292f8ad4377d40492 kernel-headers-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm 31284fd321da6925413726b3478ddd5063b399f98a2fec77cf304817ddd11e8b kernel-tools-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm 0b05d46fe5db2a958abbc3a0423768948aea091289d84dfd368c3de6f1cb87f4 kernel-tools-libs-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm b623ed43f45406648bcb774197ddd10a54d904cf453ff8352255b38f24100fcd kernel-tools-libs-devel-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm 3c78b5dffcbe4d8639df603a3390faad1f4e2385cf47ee34fa8f946a6a62515c perf-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm bf98461a6cab328cf7bd512f9e0734e76d83ce1dc0f8d445cbf6c5751c06a630 python-perf-3.10.0-1160.136.1.el7.tuxcare.els24.x86_64.rpm 2410cb129d8725eccbebee1bba46f1e14b390b7a8f02be72e9101f4ba2b61634 CLSA-2025:1757698482 Update of squid TuxCare License Agreement 0 - Bump release to override the rhel els Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Bump release to override the rhel els

0 tuxcare-rhel7-els squid-3.5.20-17.0.5.el7_9.99.tuxcare.els1.x86_64.rpm 4cc9252264a52fd5caf41356f8bb7f50f9e64991f959a72df88a5863d74f3c89 squid-migration-script-3.5.20-17.0.5.el7_9.99.tuxcare.els1.x86_64.rpm 6aaf4ba3a588425ee23f41798cd163302e9d2826512de6a8e05b63261c68c806 squid-sysvinit-3.5.20-17.0.5.el7_9.99.tuxcare.els1.x86_64.rpm 51abc0fd6bd7cb9090698cd112a3f7d71041f81abcf4bd07b72b64ed05e3e8e1 CLSA-2025:1757922878 kernel: Fix of 4 CVEs TuxCare License Agreement 0 - net/sched: Always pass notifications when child class becomes empty {CVE-2025-38350} - sch_cbq: make cbq_qlen_notify() idempotent {CVE-2025-38000} - sch_htb: make htb_qlen_notify() idempotent {CVE-2025-37932} - codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() {CVE-2025-37798} - sch_qfq: make qfq_qlen_notify() idempotent {CVE-2025-38350} - sch_drr: make drr_qlen_notify() idempotent {CVE-2025-38350} - sch_htb: make htb_deactivate() idempotent {CVE-2025-38350} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- net/sched: Always pass notifications when child class becomes empty {CVE-2025-38350} - sch_cbq: make cbq_qlen_notify() idempotent {CVE-2025-38000} - sch_htb: make htb_qlen_notify() idempotent {CVE-2025-37932} - codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() {CVE-2025-37798} - sch_qfq: make qfq_qlen_notify() idempotent {CVE-2025-38350} - sch_drr: make drr_qlen_notify() idempotent {CVE-2025-38350} - sch_htb: make htb_deactivate() idempotent {CVE-2025-38350}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm 6df80d4cd764b089eeac1d1d4fc7fbbb2433322fa79cd0267ec220bbd4429211 kernel-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm 9ba472427fbdaa6b81bb37e25c7e4e632d22f7bd6db4bf73a17b101ab84032a0 kernel-debug-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm 5639b925667ae4d01e2d037874a71de642b26f370d6481dd4c7e8e176809bece kernel-debug-devel-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm 2e98e5e6de6a26180ecddd7cbcfb4387014c7a56dc9e13c108b09a0860030124 kernel-devel-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm aafc76f48be70d6f364a5865c722e51bc29ca0275b369a1c57616902a5ec5830 kernel-headers-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm 3cc404960e057c067cdc0ff643949ae4a3fc63c5dc5690b5f9b8a449110c1660 kernel-tools-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm f8f535b943e08faafdfbe1ebdcc6a38b7871c92d7c61060260f54957354d121d kernel-tools-libs-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm 1688d9e914b10b102ef21341ab16095b11c946b877d719890708b46cc146b73c kernel-tools-libs-devel-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm 41e3370b47c8b380f68436725bd91a65de797b0a8613e84c2a29984b18f9cad7 perf-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm d624d74df3afaa0f5af1c04175bc9b4f54ba2275932b56b5213f5b463a4bf061 python-perf-3.10.0-1160.137.1.el7.tuxcare.els24.x86_64.rpm a81dde906ec21eb16402d87a2d7e7eb3df9ae79eb54d72a3526f9866ec0fe2c6 CLSA-2025:1757923104 glibc: Fix of CVE-2019-9169 TuxCare License Agreement 0 - CVE-2019-9169: fix heap-based buffer over-read in proceed_next_node function in posix/regexec.c Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2019-9169: fix heap-based buffer over-read in proceed_next_node function in posix/regexec.c

0 tuxcare-rhel7-els glibc-2.17-326.el7_9.99.tuxcare.els2.i686.rpm e3cd11781fb64b740798115dcb1772de2c1b6a5d535466703ec2b1a2ba00134c glibc-2.17-326.el7_9.99.tuxcare.els2.x86_64.rpm 8421905031677d23d1b523888189c0952399743d5765968f661285a2dd634eb6 glibc-common-2.17-326.el7_9.99.tuxcare.els2.x86_64.rpm 16adb63d6aef514c6936d437ce8422c2140701510fc988847dfc6e6f7cd3658a glibc-devel-2.17-326.el7_9.99.tuxcare.els2.i686.rpm 41878ec2f03dba9fe87c21a7c227e749d6cf2c599e1b126dd3205b5790069773 glibc-devel-2.17-326.el7_9.99.tuxcare.els2.x86_64.rpm 4fb0ebb5f2945bdcb64ec03d8f60764efb6a464f3d84561b328e0748ace92857 glibc-headers-2.17-326.el7_9.99.tuxcare.els2.x86_64.rpm 56bd4e2f7d48764b58a0310df3cbacb56a5e4acfdb440697cb09d4c962824974 glibc-static-2.17-326.el7_9.99.tuxcare.els2.i686.rpm ce7b5c126c0e595dc388bdbe832e416e8e7fe5c6c2a4acccb8be47838a9ea952 glibc-static-2.17-326.el7_9.99.tuxcare.els2.x86_64.rpm e0458148c0dde724a736a70d6b7d22836d8cd934f544e9ea1143355523313b7d glibc-utils-2.17-326.el7_9.99.tuxcare.els2.x86_64.rpm a2b24ff7fa7cfaa766d63f28d41bc1503896a4c01b000d0f559e799bae63d81e nscd-2.17-326.el7_9.99.tuxcare.els2.x86_64.rpm dd8ec03da3a52e9350befd87570be6e5318e26026de7fcdf996adbc888ec4451 CLSA-2025:1757944976 php: Fix of 3 CVEs TuxCare License Agreement 0 - CVE-2017-9224: fix out-of-bounds read of a stack in match_at function - CVE-2017-9226: fix out-of-bounds write or read of a heap in next_state_val function - CVE-2017-9227: fix out-of-bounds read of a stack in mbc_enc_len function Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2017-9224: fix out-of-bounds read of a stack in match_at function - CVE-2017-9226: fix out-of-bounds write or read of a heap in next_state_val function - CVE-2017-9227: fix out-of-bounds read of a stack in mbc_enc_len function

0 tuxcare-rhel7-els php-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 102e78f0bb2a850705c5a2c68100041b33e7fbcf1853ffd2517884a52f3860da php-bcmath-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 9c4db490f62e526b6cc3ca802862cac2302aeec5e6a254fd0628f07420f16549 php-cli-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 464d0276e699787caa9e92a42eb59bab9b504db97f90b484a1482ef633087fde php-common-5.4.16-48.el7.tuxcare.els14.x86_64.rpm d5b9c5e77c7c87fae18763a3cbf60a7a09cab5f4e6bd5188aa0aab86fa940b0d php-dba-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 91d18c58cd47234fcaff68c750e326259a4e766c67650862918069aac5633336 php-devel-5.4.16-48.el7.tuxcare.els14.x86_64.rpm f7e0693d56a1fed21d859069778063a344b67a71b3f489162360e12b63ad5a16 php-embedded-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 20bc8833cefea394f5cd5c30e0977c0cbcc7d9db01359ac9873df8008d86eada php-enchant-5.4.16-48.el7.tuxcare.els14.x86_64.rpm ba81d4dcc805dc7514653eb8e81f71d3257cfcc61735b131f0a731877fdfa920 php-fpm-5.4.16-48.el7.tuxcare.els14.x86_64.rpm bd06d055feb0803ace34325f74fdf30f2762df43d3fb7965c8409b99af7c95b0 php-gd-5.4.16-48.el7.tuxcare.els14.x86_64.rpm dae996a7fac77bc286df17b520ab69728e000e8a8b135a19574ee150c54d0617 php-intl-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 83055f1b5be88f6a7a4fac968cbe177b4691b05b1334ffc53fa0d7b81aa111cb php-ldap-5.4.16-48.el7.tuxcare.els14.x86_64.rpm b423c2d6b1c1b77e589f6ab5b643caf77f26e5d8acdc53f64b853d023bdcd909 php-mbstring-5.4.16-48.el7.tuxcare.els14.x86_64.rpm d778c0e563d1adece8fbaf0f5e8294c7b2346821ddebc538f087aabc22601742 php-mysql-5.4.16-48.el7.tuxcare.els14.x86_64.rpm b45abbae8a1faee33aeb63653eb415d94e7327d673a854f4c2d9243fe2494b27 php-mysqlnd-5.4.16-48.el7.tuxcare.els14.x86_64.rpm da753d61efd63bb52c86dd361ddffbf299687dcc180c19d8f18df7f766632a75 php-odbc-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 9bbb8bec3f61d2bba23f48d0f2981bef486ca590bf1b5aa943b7490309d02b7a php-pdo-5.4.16-48.el7.tuxcare.els14.x86_64.rpm fb638f11dec161261360e72cd2947b37aaaa904f01f0b1ecb657b7c13a872863 php-pgsql-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 4e62cea8f727106c060c629b4ba4b443897d0ba9cf23a809bd35fa7b70f81b61 php-process-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 84cc473d1f530a2045b58a73228285c9202f2efd5ab87cf8d7a4c0c6fa5a2a03 php-pspell-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 7cd8300a58cbdeff96952c64d4143e64d215071055668502a681ba4254444b83 php-recode-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 5e58d9fac438af313295317feda5474ed5396750434165b6658c57dffc55a78e php-snmp-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 64814f28ec91559e5eefb7e02a25d54b9465e720f1ea540d7710b4d0e3074183 php-soap-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 346aa8d0adfb3846f49664fd7db06fafc1de7af1b8dbfb5b1dd8b4040b860a39 php-xml-5.4.16-48.el7.tuxcare.els14.x86_64.rpm b2558b26b0bb33c4c7f361a21d80b08970c63d32008f407bffa1d1729bd49931 php-xmlrpc-5.4.16-48.el7.tuxcare.els14.x86_64.rpm 6a32398bd58b9b97ec3e8f54cf2c1092e50dd256ff697ad8705d9f3a76b22078 CLSA-2025:1757947030 nettle: Fix of CVE-2018-16869 TuxCare License Agreement 0 - Port side-channel silent functions from 3.4.1. Partially fix for CVE-2018-16869 - CVE-2018-16869: Add side-channel silent memory, math, PKCS1, RSA functions - Added tests for side-channel silent implementations Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Port side-channel silent functions from 3.4.1. Partially fix for CVE-2018-16869 - CVE-2018-16869: Add side-channel silent memory, math, PKCS1, RSA functions - Added tests for side-channel silent implementations

0 tuxcare-rhel7-els nettle-2.7.1-9.el7_9.tuxcare.els1.i686.rpm c6fc31f74cb8f69ea3d2bc5b58a965460d5c85b00c9976cfa7e3191e248d8830 nettle-2.7.1-9.el7_9.tuxcare.els1.x86_64.rpm 633003b0a93c376705063b1381ab1a0237b9483c6b31563c36556e1b80280bd0 nettle-devel-2.7.1-9.el7_9.tuxcare.els1.i686.rpm 961618b4f3b2cf840d6f8dd878b4417870657571dd6f473fb627e2a81d9b21d8 nettle-devel-2.7.1-9.el7_9.tuxcare.els1.x86_64.rpm 519d4feb6025b49fd07daf413c73557ce197515e58c49902524194310519551a CLSA-2025:1758022425 gnutls: Fix of CVE-2025-32990 TuxCare License Agreement 0 - CVE-2025-32990: fix memory corruption in when parsing a template file Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-32990: fix memory corruption in when parsing a template file

0 tuxcare-rhel7-els gnutls-3.3.29-9.el7_6.tuxcare.els2.i686.rpm 77d0dcee178a9a70c2659eb2390b76f9df616a0d316f11d7b46b2c7da3c49f2e gnutls-3.3.29-9.el7_6.tuxcare.els2.x86_64.rpm 22d9f23a9e1f02f8de3c61250d050117811c3f9b5a353fe046c14a19fc6b9192 gnutls-c++-3.3.29-9.el7_6.tuxcare.els2.i686.rpm cba3bb24cc2c9550e8e4daa7b07e0e5c701782472c42eeaa94cc3ff29a37ddb7 gnutls-c++-3.3.29-9.el7_6.tuxcare.els2.x86_64.rpm d42c054914a42a9c5844b1a2233a500e6aa22da22d442e20ce356e455d5b0890 gnutls-dane-3.3.29-9.el7_6.tuxcare.els2.i686.rpm f02185dd04931a92df8621ec4c021552dade8efb536093d96de41d65cd044470 gnutls-dane-3.3.29-9.el7_6.tuxcare.els2.x86_64.rpm a8baab5f46fe4e50963248889fd17c869e389922029c8cf7ac24e7ebab767720 gnutls-devel-3.3.29-9.el7_6.tuxcare.els2.i686.rpm 059629f7348023e68554ee07dea4af741be6d4667b89ed8313f6e2c65460e1f3 gnutls-devel-3.3.29-9.el7_6.tuxcare.els2.x86_64.rpm 793c3ca0c04f0e8043d0ca137fb7b28a16c7a1b7c6e9748bfdf71d724ba591de gnutls-utils-3.3.29-9.el7_6.tuxcare.els2.x86_64.rpm 4df35d7c597854bb824494f8124c0bd80e3d427f9f7069e166ddbd39b8acab0a CLSA-2025:1758031287 httpd: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2024-47252: escape user-supplied data in mod_ssl to prevent untrusted SSL/TLS clients from inserting escape characters into log files - CVE-2025-49812: remove support for TLS upgrade to prevent HTTP desynchronisation attack Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-47252: escape user-supplied data in mod_ssl to prevent untrusted SSL/TLS clients from inserting escape characters into log files - CVE-2025-49812: remove support for TLS upgrade to prevent HTTP desynchronisation attack

0 tuxcare-rhel7-els httpd-2.4.6-99.0.5.el7_9.1.tuxcare.els6.x86_64.rpm 4565e4c0edd672a71fdebbbb2f77207b6338d0969b77ad97325a5b79b2edcfb8 httpd-devel-2.4.6-99.0.5.el7_9.1.tuxcare.els6.x86_64.rpm 918607e6bdeaa463a690493a5e989893637c419db4c3ac0edfc313f597be416b httpd-manual-2.4.6-99.0.5.el7_9.1.tuxcare.els6.noarch.rpm f4f2818391af51e67aa196ed8727c8870ac621d9c94ceb42aca59e4aaff80cf8 httpd-tools-2.4.6-99.0.5.el7_9.1.tuxcare.els6.x86_64.rpm 939702658a60415da964013835ca4d8aa728edfaf115fb8086e5de0efe0b0925 mod_ldap-2.4.6-99.0.5.el7_9.1.tuxcare.els6.x86_64.rpm 8dc11afbecdbfb9312c4d400c832dd6a0d69f9b4630ace471552f01842c77eef mod_proxy_html-2.4.6-99.0.5.el7_9.1.tuxcare.els6.x86_64.rpm 8229cddc38c3bc7829bbe4b2243353423c196e38ddecf03e3f3786a0dbeea1d1 mod_session-2.4.6-99.0.5.el7_9.1.tuxcare.els6.x86_64.rpm a25009e6240ed05e4e653bfb462fb6bc1c0609ef562505d30597b3d4a6e0f9b7 mod_ssl-2.4.6-99.0.5.el7_9.1.tuxcare.els6.x86_64.rpm f33e0925e7b5f0900964032ca3b36eb04f45ef869327a8126ebd1cf46eac38dc CLSA-2025:1756482270 kernel: Fix of CVE-2024-2201 TuxCare License Agreement 0 - spec: up spec/misc to 1160.136.1, spectre mitigation is off by default - hugetlb, mempolicy: fix the mbind hugetlb migration - net: atm: fix use after free in lec_send() - net: atlantic: fix aq_vec index out of range error - block: initialize flush request via blk_mq_rq_ctx_init() - ALSA: usb-audio: Fix a DMA to stack memory bug - namei: ->d_inode of a pinned dentry is stable only for positives - namei: results of d_is_negative() should be checked after dentry revalidation - namei: d_is_negative() should be checked before ->d_seq validation - VFS: Combine inode checks with d_is_negative() and d_is_positive() in pathwalk - scsi: smartpqi: Fix DMA direction for RAID requests - scsi: smartpqi: Fix duplicate device nodes for tape changers - VFS: Impose ordering on accesses of d_inode and d_flags - neighbour: fix data-races around n->output - cipso: make cipso_v4_skbuff_delattr() fully remove the CIPSO options - cipso: fix total option length computation - proc: Use new_inode not new_inode_pseudo - lockd: skip shutdown of rpc clients with outstanding notifications - SUNRPC: ECONNRESET might require a rebind - SUNRPC: ECONNREFUSED should cause a rebind - x86/fpu: Prevent FPU state corruption - x86, fpu: Introduce per-cpu in_kernel_fpu state - x86/bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with CONFIG_MITIGATION_SPECTRE_BHI {CVE-2024-2201} - x86/bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto {CVE-2024-2201} - x86/bugs: Fix BHI handling of RRSBA - x86/bugs: Fix BHI documentation {CVE-2024-2201} - x86/bugs: Fix return type of spectre_bhi_state() {CVE-2024-2201} - x86/bugs: Make CONFIG_SPECTRE_BHI_ON the default {CVE-2024-2201} - x86/bhi: Add BHI mitigation knob {CVE-2024-2201} - x86/bhi: Enumerate Branch History Injection (BHI) bug {CVE-2024-2201} - x86/bhi: Define SPEC_CTRL_BHI_DIS_S {CVE-2024-2201} - x86/bhi: Add support for clearing branch history at syscall entry {CVE-2024-2201} - Documentation/hw-vuln: Document the interaction between IBRS and STIBP - x86/bugs: Add X86_FEATURE_RETPOLINE - x86/bugs: Extend VMware Retbleed workaround to Nehalem - gfs2: Fix length of holes reported at end-of-file - gfs2: Only do glock put in gfs2_create_inode for free inodes - gfs2: Fix use-after-free in gfs2_logd after withdraw - gfs2: fix use-after-free in trans_drain - gfs2: Clean up revokes on normal withdraws - GFS2: gfs2_free_extlen can return an extent that is too long - gfs2: Wipe jdata and ail1 in gfs2_journal_wipe, formerly gfs2_meta_wipe - GFS2: Refactor gfs2_remove_from_journal - GFS2: Only set PageChecked for jdata pages - gfs2: keep bios separate for each journal - gfs2: Remove active journal side effect from gfs2_write_log_header - gfs2: clean_journal improperly set sd_log_flush_head - partial "GFS2: Introduce new gfs2_log_header_v2" - gfs2: change from write to read lock for sd_log_flush_lock in journal replay - GFS2: Reduce code redundancy writing log headers - gfs2: Grab glock reference sooner in gfs2_add_revoke - gfs2: fix glock reference problem in gfs2_trans_remove_revoke - gfs2: Fix occasional glock use-after-free - gfs2: Make sure we don't miss any delayed withdraws - gfs2: Fix bad comment for trans_drain - gfs2: add some much needed cleanup for log flushes that fail - gfs2: fix trans slab error when withdraw occurs inside log_flush - gfs2: initialize transaction tr_ailX_lists earlier - GFS2: Remove extra "if" in gfs2_log_flush() - gfs2: fix use-after-free on transaction ail lists - gfs2: Trim the ordered write list in gfs2_ordered_write() - GFS2: Clean up releasepage - gfs2: Only set PageChecked if we have a transaction - gfs2: Fix case in which ail writes are done to jdata holes - gfs2: simplify gfs2_block_map - gfs2: Remove unused gfs2_iomap_alloc argument - netfilter: ipset: fix ip_set_list allocation failure - gfs2: Be more careful with the quota sync generation - gfs2: Get rid of some unnecessary quota locking - gfs2: Add some missing quota locking - gfs2: Fold qd_fish into gfs2_quota_sync - gfs2: quota need_sync cleanup - gfs2: Fix and clean up function do_qc - gfs2: Revert "Add quota_change type" - gfs2: Revert "ignore negated quota changes" - gfs2: qd_check_sync cleanups - gfs2: Check quota consistency on mount - gfs2: Minor gfs2_quota_init error path cleanup - gfs2: fix kernel BUG in gfs2_quota_cleanup - gfs2: Clean up quota.c:print_message - gfs2: Clean up gfs2_alloc_parms initializers - gfs2: Two quota=account mode fixes - gfs2: Remove useless assignment - gfs2: simplify slot_get - gfs2: Simplify qd2offset - gfs2: Remove quota allocation info from quota file - gfs2: use constant for array size - gfs2: Set qd_sync_gen in do_sync - gfs2: Remove useless err set - gfs2: Small gfs2_quota_lock cleanup - gfs2: move qdsb_put and reduce redundancy - gfs2: Don't try to sync non-changes - gfs2: Simplify function need_sync - gfs2: remove unneeded pg_oflow variable - gfs2: remove unneeded variable done - gfs2: pass sdp to gfs2_write_buf_to_page - gfs2: pass sdp in to gfs2_write_disk_quota - gfs2: Pass sdp to gfs2_adjust_quota - gfs2: remove dead code for quota writes - gfs2: Use qd_sbd more consequently - gfs2: replace 'found' with dedicated list iterator variable - gfs2: Some whitespace cleanups - gfs2: Fix gfs2_qa_get imbalance in gfs2_quota_hold - tcp: fix zero cwnd in tcp_cwnd_reduction - epoll: fix use-after-free in eventpoll_release_file - kernel.spec: run initramfs generation in %post (not only in %posttrans) Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- spec: up spec/misc to 1160.136.1, spectre mitigation is off by default - hugetlb, mempolicy: fix the mbind hugetlb migration - net: atm: fix use after free in lec_send() - net: atlantic: fix aq_vec index out of range error - block: initialize flush request via blk_mq_rq_ctx_init() - ALSA: usb-audio: Fix a DMA to stack memory bug - namei: ->d_inode of a pinned dentry is stable only for positives - namei: results of d_is_negative() should be checked after dentry revalidation - namei: d_is_negative() should be checked before ->d_seq validation - VFS: Combine inode checks with d_is_negative() and d_is_positive() in pathwalk - scsi: smartpqi: Fix DMA direction for RAID requests - scsi: smartpqi: Fix duplicate device nodes for tape changers - VFS: Impose ordering on accesses of d_inode and d_flags - neighbour: fix data-races around n->output - cipso: make cipso_v4_skbuff_delattr() fully remove the CIPSO options - cipso: fix total option length computation - proc: Use new_inode not new_inode_pseudo - lockd: skip shutdown of rpc clients with outstanding notifications - SUNRPC: ECONNRESET might require a rebind - SUNRPC: ECONNREFUSED should cause a rebind - x86/fpu: Prevent FPU state corruption - x86, fpu: Introduce per-cpu in_kernel_fpu state - x86/bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with CONFIG_MITIGATION_SPECTRE_BHI {CVE-2024-2201} - x86/bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto {CVE-2024-2201} - x86/bugs: Fix BHI handling of RRSBA - x86/bugs: Fix BHI documentation {CVE-2024-2201} - x86/bugs: Fix return type of spectre_bhi_state() {CVE-2024-2201} - x86/bugs: Make CONFIG_SPECTRE_BHI_ON the default {CVE-2024-2201} - x86/bhi: Add BHI mitigation knob {CVE-2024-2201} - x86/bhi: Enumerate Branch History Injection (BHI) bug {CVE-2024-2201} - x86/bhi: Define SPEC_CTRL_BHI_DIS_S {CVE-2024-2201} - x86/bhi: Add support for clearing branch history at syscall entry {CVE-2024-2201} - Documentation/hw-vuln: Document the interaction between IBRS and STIBP - x86/bugs: Add X86_FEATURE_RETPOLINE - x86/bugs: Extend VMware Retbleed workaround to Nehalem - gfs2: Fix length of holes reported at end-of-file - gfs2: Only do glock put in gfs2_create_inode for free inodes - gfs2: Fix use-after-free in gfs2_logd after withdraw - gfs2: fix use-after-free in trans_drain - gfs2: Clean up revokes on normal withdraws - GFS2: gfs2_free_extlen can return an extent that is too long - gfs2: Wipe jdata and ail1 in gfs2_journal_wipe, formerly gfs2_meta_wipe - GFS2: Refactor gfs2_remove_from_journal - GFS2: Only set PageChecked for jdata pages - gfs2: keep bios separate for each journal - gfs2: Remove active journal side effect from gfs2_write_log_header - gfs2: clean_journal improperly set sd_log_flush_head - partial "GFS2: Introduce new gfs2_log_header_v2" - gfs2: change from write to read lock for sd_log_flush_lock in journal replay - GFS2: Reduce code redundancy writing log headers - gfs2: Grab glock reference sooner in gfs2_add_revoke - gfs2: fix glock reference problem in gfs2_trans_remove_revoke - gfs2: Fix occasional glock use-after-free - gfs2: Make sure we don't miss any delayed withdraws - gfs2: Fix bad comment for trans_drain - gfs2: add some much needed cleanup for log flushes that fail - gfs2: fix trans slab error when withdraw occurs inside log_flush - gfs2: initialize transaction tr_ailX_lists earlier - GFS2: Remove extra "if" in gfs2_log_flush() - gfs2: fix use-after-free on transaction ail lists - gfs2: Trim the ordered write list in gfs2_ordered_write() - GFS2: Clean up releasepage - gfs2: Only set PageChecked if we have a transaction - gfs2: Fix case in which ail writes are done to jdata holes - gfs2: simplify gfs2_block_map - gfs2: Remove unused gfs2_iomap_alloc argument - netfilter: ipset: fix ip_set_list allocation failure - gfs2: Be more careful with the quota sync generation - gfs2: Get rid of some unnecessary quota locking - gfs2: Add some missing quota locking - gfs2: Fold qd_fish into gfs2_quota_sync - gfs2: quota need_sync cleanup - gfs2: Fix and clean up function do_qc - gfs2: Revert "Add quota_change type" - gfs2: Revert "ignore negated quota changes" - gfs2: qd_check_sync cleanups - gfs2: Check quota consistency on mount - gfs2: Minor gfs2_quota_init error path cleanup - gfs2: fix kernel BUG in gfs2_quota_cleanup - gfs2: Clean up quota.c:print_message - gfs2: Clean up gfs2_alloc_parms initializers - gfs2: Two quota=account mode fixes - gfs2: Remove useless assignment - gfs2: simplify slot_get - gfs2: Simplify qd2offset - gfs2: Remove quota allocation info from quota file - gfs2: use constant for array size - gfs2: Set qd_sync_gen in do_sync - gfs2: Remove useless err set - gfs2: Small gfs2_quota_lock cleanup - gfs2: move qdsb_put and reduce redundancy - gfs2: Don't try to sync non-changes - gfs2: Simplify function need_sync - gfs2: remove unneeded pg_oflow variable - gfs2: remove unneeded variable done - gfs2: pass sdp to gfs2_write_buf_to_page - gfs2: pass sdp in to gfs2_write_disk_quota - gfs2: Pass sdp to gfs2_adjust_quota - gfs2: remove dead code for quota writes - gfs2: Use qd_sbd more consequently - gfs2: replace 'found' with dedicated list iterator variable - gfs2: Some whitespace cleanups - gfs2: Fix gfs2_qa_get imbalance in gfs2_quota_hold - tcp: fix zero cwnd in tcp_cwnd_reduction - epoll: fix use-after-free in eventpoll_release_file - kernel.spec: run initramfs generation in %post (not only in %posttrans)

0 tuxcare-rhel7-els bpftool-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm 2f6f72edbf7e9f49d0abde1c7ceb68e754d61b542ad2e9d850dc91662d1630c5 kernel-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm cc892c13464640b4b27a863286488c1cfe4bd091c01aef229c99d635cf0fcfb3 kernel-debug-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm a9e32331fe80dc68fb28ecefe4e0edf064d904201ae7b128389745062fb9c777 kernel-debug-devel-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm 82ddc324d1bc2a46248c6f9b271cdaf63b7544624a14c62285d0d9154aafbbfe kernel-devel-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm 99b5dbda73473da297c6ba803e6c754f1a7b39f3d34d20faef663545404ac697 kernel-headers-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm e0ba607430c2961c7080dd8e4e787394e39f42ef9bcba2cf7182e276300d7e72 kernel-tools-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm 65a61431c8f6976e922b583ead914c24c3d6631d56ef779cd17c62cdeadc83f0 kernel-tools-libs-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm 52435dae5c52ce818c20f233e92d5f57187a67a30a1f3be21167b3c87714293b kernel-tools-libs-devel-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm 02f7b4b95375ffc63e906f5ac75ea0f2c995963c2e8b8e46826449c3f85a1ee2 perf-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm f29a88ee7eb59b5c76cde0ea76f916f36690b64ee2d76639e9ef785bf9ac5547 python-perf-3.10.0-1160.136.1.el7.tuxcare.els23.x86_64.rpm 9e5ec132eda8c9cfa86df5f5a639d88c93da076fe00646e43a6cce008b6ef6de CLSA-2025:1758228486 glibc: Fix of CVE-2019-9169 TuxCare License Agreement 0 - Fix spec-file for CVE-2019-9169 Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Fix spec-file for CVE-2019-9169

0 tuxcare-rhel7-els glibc-2.17-326.el7_9.99.tuxcare.els3.i686.rpm 09872619cf9b5b19b35f8e87a105af4bd94f593d833ccc534fedf7940bff79c5 glibc-2.17-326.el7_9.99.tuxcare.els3.x86_64.rpm cfe15af5ae28f89829dbcb82fa34ef6001f44890cf55ae9c2a577bfee4d3a261 glibc-common-2.17-326.el7_9.99.tuxcare.els3.x86_64.rpm bb32c1d064019066a3cb89cd23df1e9dd909266e783bd5f13646ab1c5e7c217e glibc-devel-2.17-326.el7_9.99.tuxcare.els3.i686.rpm c0a8cc48f33bdd64df4dd567943c95febf548d1630bf078de9f92e38dbd6898f glibc-devel-2.17-326.el7_9.99.tuxcare.els3.x86_64.rpm ccb2f6c054ce6ffb6be4b62419ccc13c24b05add38edf8a1c67873626767ab15 glibc-headers-2.17-326.el7_9.99.tuxcare.els3.x86_64.rpm c90d20d35496cbed24b6497fcba9848218b29b15150c6d15c4f4acfae7f46832 glibc-static-2.17-326.el7_9.99.tuxcare.els3.i686.rpm b8f9bb33a417564124be09a316bde55e8d5538cfc804c63e194756811f7e194d glibc-static-2.17-326.el7_9.99.tuxcare.els3.x86_64.rpm 9f832128528ec0cffdf6dee35798688debc2db9681fb0941303bc597774dc62a glibc-utils-2.17-326.el7_9.99.tuxcare.els3.x86_64.rpm cd32f7155ea796fc435eef96b4de118afcd9b34f0d65f4bf650a5cee3504a020 nscd-2.17-326.el7_9.99.tuxcare.els3.x86_64.rpm 9a7761b92d49ee13feb1f006a92a668f89f183d66fa8acf0759bb6eba8ca8a05 CLSA-2025:1758705749 glib2: Fix of CVE-2024-52533 TuxCare License Agreement 0 - CVE-2024-52533: fix off-by-one error leading to buffer overflow in gsocks4aproxy.c Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-52533: fix off-by-one error leading to buffer overflow in gsocks4aproxy.c

0 tuxcare-rhel7-els glib2-2.56.1-9.el7_9.tuxcare.els3.i686.rpm 1d78ea4b07dbdaaeb9111a87f51f1b4e5a840afba49cbcedc7891e97db245965 glib2-2.56.1-9.el7_9.tuxcare.els3.x86_64.rpm 9b8d91ff7b3e254dc3c98557bd92b90b214f86225a2fa958ad6056fc77bcbb7e glib2-devel-2.56.1-9.el7_9.tuxcare.els3.i686.rpm a8a30c45dbea077ac75d247c6cc8debd6f1cf15bf93db36ef5fe30d74696ca6d glib2-devel-2.56.1-9.el7_9.tuxcare.els3.x86_64.rpm 677671aa29556adac6d017efcd5b134a6a4054eaeef40fa79bc6a72aa441a0dc glib2-doc-2.56.1-9.el7_9.tuxcare.els3.noarch.rpm 9c999595fc21c3f298375ac1a6d1cc7d913ad12230b8cae823890f69314405d4 glib2-fam-2.56.1-9.el7_9.tuxcare.els3.x86_64.rpm 71277bfe5dd39361a36e9f6a2b82213b4a670c65e1465fe642da362dc9931be1 glib2-static-2.56.1-9.el7_9.tuxcare.els3.i686.rpm b3dab99d26791e6340ef28bf8dfa3ce2e161dbc4116cb169d784073c3bf3c408 glib2-static-2.56.1-9.el7_9.tuxcare.els3.x86_64.rpm 46403462557268ad2a5b8a1b17e485560570555694e40fdc93defe0fd303dff0 glib2-tests-2.56.1-9.el7_9.tuxcare.els3.x86_64.rpm 5036ad95faad071dc153fe3e68cfb7bc52501ab4b64fa30af7c3709606836e14 CLSA-2025:1758892974 php: Fix of CVE-2017-9228 TuxCare License Agreement 0 - CVE-2017-9228: fix heap out-of-bounds write in bitset_set_range() and parse_char_class() functions Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2017-9228: fix heap out-of-bounds write in bitset_set_range() and parse_char_class() functions

0 tuxcare-rhel7-els php-5.4.16-48.el7.tuxcare.els15.x86_64.rpm f1ee137c7fb5ffc3819975b71ae42c2b95c03466dbf559f766466df73bbbfb47 php-bcmath-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 28343d947b0442a87e31ab81325e36c3153cb5f5246f727b0a94f4ea3ce2c348 php-cli-5.4.16-48.el7.tuxcare.els15.x86_64.rpm f73bf87efd86777ff9fe7889129abbf071bf4c55f0b8ae2eeeb4202d9a32f7e6 php-common-5.4.16-48.el7.tuxcare.els15.x86_64.rpm d21b53188fc0ea5b9769fe0876b3dc679b252abb99647edd51d54b4fc4d4fcb4 php-dba-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 8a3f966ce503aaad1c7eb85acce679f03d13429219f3777ee8d0deb4e2fc5bed php-devel-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 129fb24d930788a4bfe8a1910460338d9e8d6f9441e8a321acd17d21eb9086b4 php-embedded-5.4.16-48.el7.tuxcare.els15.x86_64.rpm e37eb0c4da10d3ea4eba684ab7b76e05ea8355f4cfe88972d2b98c3af2aa46a6 php-enchant-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 9da4e28e2f76b51423b2a176bda8f8490d2f4149aa5b91978ec415f260f80a87 php-fpm-5.4.16-48.el7.tuxcare.els15.x86_64.rpm fe680c285ed7654c62127b9aa6b19fcb853be071c84ac526534ccf4bf760aeee php-gd-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 190694cc6eab0b52ae26da1698abcdf8fa520ffc5245965e0a43e3c989a86f94 php-intl-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 0bca87d9235d81236d502447a871748d2e0f6181218f6a69dc14f1a340c74a30 php-ldap-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 79b53611e9a791e70391a4e334b35df510ea2aef918348a0eb774ce3c1d6ed2d php-mbstring-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 664edaa21dccd3eb0549c9194cf1ed1504170df3ec21b137ed7288744c35a6ad php-mysql-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 1348477cd51a5f344ac93faa5264385d8d6331eb8765dd3a92efc34be7638f3e php-mysqlnd-5.4.16-48.el7.tuxcare.els15.x86_64.rpm f80fbd10df570280b0d7ba6db2f75d9df1182bf261f53982cf7d5923ddbe28fc php-odbc-5.4.16-48.el7.tuxcare.els15.x86_64.rpm f9f4c47ccb5af9df3466512fa63caedce3fe77a50f473fb3f26147c983c3fd59 php-pdo-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 2f8a199b3daa677cdbca3e2a66102d3d8b79d19b776db349c891f62fa8045ab7 php-pgsql-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 9b55270fe0790bce155ee865f4f3804d227e70b178802fb33d142569468913d2 php-process-5.4.16-48.el7.tuxcare.els15.x86_64.rpm a8db7af15c25da4458f507c8a31131f0847e24c7299fe4e12dd7e4e8b6bb9c1e php-pspell-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 739c5043453f3ee96a38f3b4fa0a55587f12834f0d85badc6cfcf228ed2d3107 php-recode-5.4.16-48.el7.tuxcare.els15.x86_64.rpm e5cb06685f01c31dbc58ab90546fe5d1872c357c6f0e144c21383c386544f98b php-snmp-5.4.16-48.el7.tuxcare.els15.x86_64.rpm ceabcdef18cdf74fa6cc87347e001625ec7581dcb4a54d4f7b437f6ebb1b1b10 php-soap-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 865d3484cc9872f789ae87a9cdf5412aa54fbfdb0512420601254ff935b1a1b5 php-xml-5.4.16-48.el7.tuxcare.els15.x86_64.rpm 39779111ffa04334718f67dec60251286d2427b5696b8a7de84465c5f550f9a7 php-xmlrpc-5.4.16-48.el7.tuxcare.els15.x86_64.rpm b3363cbd92db11f4821a29c8a324623e6c3354478e4a731ea64d50197cad3117 CLSA-2025:1759167915 git: Fix of CVE-2025-46835 TuxCare License Agreement 0 - CVE-2025-46835: prevent malicious creating and overwriting of user's files Low Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-46835: prevent malicious creating and overwriting of user's files

0 tuxcare-rhel7-els emacs-git-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm 19bc5b25ef9da0e8d777c60a3e50bbad15f2c5a7bc4942f8ce07f3fe832ca9ad emacs-git-el-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm 50f9ac915986d6ef6bf344162d7723179bc37338cec268098095ce617f8031e5 git-1.8.3.1-25.el7_9.tuxcare.els6.x86_64.rpm 0eabeadd384b8d9359bc68cea0b22712774b6469408cf696be13ddafd3be60ea git-all-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm ee504bbd6dc31721cae6f16876e3702d8f6dae13a459c9142edce5bfc3033087 git-bzr-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm 33f5bf24dc227b6d0271597cb8c140f3920e7544ffbf1ddde8b8d622a846d085 git-cvs-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm 8ab5c7b12dcf156811974ad4f8f1d6075b7057ac81359b922da5ce108b2fc31d git-daemon-1.8.3.1-25.el7_9.tuxcare.els6.x86_64.rpm 952befc1b7c88d03854fa1a4436b428c0b3861a3c5666ffcae8554efde19162a git-email-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm f175cc631c078deb43a763dbcbf75c2344576fbd6ee3881b974ffe5bf40c734d git-gnome-keyring-1.8.3.1-25.el7_9.tuxcare.els6.x86_64.rpm b3d657a47137b5f60bd189df5d92b527751cb5f8a1a5033170e049284542a806 git-gui-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm ddd35dc99ab43bbf8ba421e4e9a1c23417b7dcb6513a637ceed61f3f6062b7eb git-hg-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm b44c6b97a8e6a041e232cfb2dd5cd13ce245d73b1daa82ca3a1258a4af8d2c72 git-instaweb-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm 7e13713f7768a543a4c0e4587724ca71f888b54e15ecc10d6c1f32fb7e71ecee git-p4-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm 1ca7fdf90ecf4218e43a6541317051247cba9f1fef3cb56159054fd18501887a git-svn-1.8.3.1-25.el7_9.tuxcare.els6.x86_64.rpm b0bcdb71f38db866f7145d42d48bb281326191d0beef3037994f3042d6bf2ebe gitk-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm b3634dc94c1214816530d327b3f4356cd7eea3ba3fb29e01595ffd5c4dffe4e0 gitweb-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm a43ae57ffda8b3f1cac64586e4de83d447eed7c09a9f73b566e57264f59b10a0 perl-Git-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm 65741a1a3e2ed9c11997868d7bafc7a4b22c5745145970f5e5871b8d3a060408 perl-Git-SVN-1.8.3.1-25.el7_9.tuxcare.els6.noarch.rpm db12012a13d006e21a2b8bc148829a6926f07b694b69fdef6c77fd9fc45b5ef4 CLSA-2025:1759432250 kernel: Fix of 36 CVEs TuxCare License Agreement 0 - ASoC: topology: Clean up route loading {CVE-2024-41069} - ASoC: topology: Fix references to freed memory {CVE-2024-41069} - drm/dp_mst: Fix MST sideband message body length check {CVE-2024-56616} - Bluetooth: L2CAP: Fix not validating setsockopt user input {CVE-2024-35965} - Bluetooth: L2CAP: uninitialized variables in l2cap_sock_setsockopt() {CVE-2024-35965} - usb: cdc-acm: Check control transfer buffer size before access {CVE-2025-21704} - igb: Fix potential invalid memory access in igb_init_module() {CVE-2024-52332} - vfio/pci: Properly hide first-in-list PCIe extended capability {CVE-2024-53214} - Bluetooth: RFCOMM: Fix not validating setsockopt user input {CVE-2024-35966} - Bluetooth: SCO: Fix not validating setsockopt user input {CVE-2024-35966} - media: stk1160: fix bounds checking in stk1160_copy_video() {CVE-2024-38621} - inet: fully convert sk->sk_rx_dst to RCU rules {CVE-2021-47103} - scsi: mpt3sas: Fix use-after-free warning {CVE-2022-48695} - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory {CVE-2024-40901} - vmci: prevent speculation leaks by sanitizing event in event_deliver() {CVE-2024-39499} - USB: core: Fix hang in usb_kill_urb by adding memory barriers {CVE-2022-48760} - nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells {CVE-2021-47497} - virtio-net: Add validation for used length {CVE-2021-47352} - watchdog: Fix possible use-after-free by calling del_timer_sync() {CVE-2021-47321} - scsi: qedi: Fix crash while reading debugfs attribute {CVE-2024-40978} - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids {CVE-2024-40929} - wifi: iwlwifi: mvm: guard against invalid STA ID on removal {CVE-2024-36921} - mac802154: fix llsec key resources release in mac802154_llsec_key_del {CVE-2024-26961} - platform/x86: wmi: Fix opening of char device {CVE-2023-52864} - media: gspca: cpia1: shift-out-of-bounds in set_flicker {CVE-2023-52764} - wifi: mac80211: fix potential key use-after-free {CVE-2023-52530} - net: fix information leakage in /proc/net/ptype {CVE-2022-48757} - crypto: qat - resolve race condition during AER recovery {CVE-2024-26974} - perf/core: Bail out early if the request AUX area is out of bound {CVE-2023-52835} - net: ti: fix UAF in tlan_remove_one {CVE-2021-47310} - wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() {CVE-2023-52594} - net: bridge: use DEV_STATS_INC() {CVE-2023-52578} - net: add atomic_long_t to net_device_stats fields {CVE-2023-52578} - media: dvb-core: Fix use-after-free due to race at dvb_register_device() {CVE-2022-45884} - media: dvb-core: Fix use-after-free on race condition at dvb_frontend {CVE-2022-45885} - xen/gntalloc: don't use gnttab_query_foreign_access() {CVE-2022-23039} - xen/netfront: don't use gnttab_query_foreign_access() for mapped status {CVE-2022-23037} - xen/grant-table: add gnttab_try_end_foreign_access() {CVE-2022-23038} - ovl: fail on invalid uid/gid mapping at copy up {CVE-2023-0386} - ALSA: oss: Fix PCM OSS buffer allocation overflow {CVE-2022-49292} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- ASoC: topology: Clean up route loading {CVE-2024-41069} - ASoC: topology: Fix references to freed memory {CVE-2024-41069} - drm/dp_mst: Fix MST sideband message body length check {CVE-2024-56616} - Bluetooth: L2CAP: Fix not validating setsockopt user input {CVE-2024-35965} - Bluetooth: L2CAP: uninitialized variables in l2cap_sock_setsockopt() {CVE-2024-35965} - usb: cdc-acm: Check control transfer buffer size before access {CVE-2025-21704} - igb: Fix potential invalid memory access in igb_init_module() {CVE-2024-52332} - vfio/pci: Properly hide first-in-list PCIe extended capability {CVE-2024-53214} - Bluetooth: RFCOMM: Fix not validating setsockopt user input {CVE-2024-35966} - Bluetooth: SCO: Fix not validating setsockopt user input {CVE-2024-35966} - media: stk1160: fix bounds checking in stk1160_copy_video() {CVE-2024-38621} - inet: fully convert sk->sk_rx_dst to RCU rules {CVE-2021-47103} - scsi: mpt3sas: Fix use-after-free warning {CVE-2022-48695} - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory {CVE-2024-40901} - vmci: prevent speculation leaks by sanitizing event in event_deliver() {CVE-2024-39499} - USB: core: Fix hang in usb_kill_urb by adding memory barriers {CVE-2022-48760} - nvmem: Fix shift-out-of-bound (UBSAN) with byte size cells {CVE-2021-47497} - virtio-net: Add validation for used length {CVE-2021-47352} - watchdog: Fix possible use-after-free by calling del_timer_sync() {CVE-2021-47321} - scsi: qedi: Fix crash while reading debugfs attribute {CVE-2024-40978} - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids {CVE-2024-40929} - wifi: iwlwifi: mvm: guard against invalid STA ID on removal {CVE-2024-36921} - mac802154: fix llsec key resources release in mac802154_llsec_key_del {CVE-2024-26961} - platform/x86: wmi: Fix opening of char device {CVE-2023-52864} - media: gspca: cpia1: shift-out-of-bounds in set_flicker {CVE-2023-52764} - wifi: mac80211: fix potential key use-after-free {CVE-2023-52530} - net: fix information leakage in /proc/net/ptype {CVE-2022-48757} - crypto: qat - resolve race condition during AER recovery {CVE-2024-26974} - perf/core: Bail out early if the request AUX area is out of bound {CVE-2023-52835} - net: ti: fix UAF in tlan_remove_one {CVE-2021-47310} - wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() {CVE-2023-52594} - net: bridge: use DEV_STATS_INC() {CVE-2023-52578} - net: add atomic_long_t to net_device_stats fields {CVE-2023-52578} - media: dvb-core: Fix use-after-free due to race at dvb_register_device() {CVE-2022-45884} - media: dvb-core: Fix use-after-free on race condition at dvb_frontend {CVE-2022-45885} - xen/gntalloc: don't use gnttab_query_foreign_access() {CVE-2022-23039} - xen/netfront: don't use gnttab_query_foreign_access() for mapped status {CVE-2022-23037} - xen/grant-table: add gnttab_try_end_foreign_access() {CVE-2022-23038} - ovl: fail on invalid uid/gid mapping at copy up {CVE-2023-0386} - ALSA: oss: Fix PCM OSS buffer allocation overflow {CVE-2022-49292}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 9010034a9786c1ae295688c7b4903a33432cb80ed0975e968140cea79ec14615 kernel-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 7cccede6ccb68947b64663a21d706f63b6100f7017c18d80e9d0e815f026e566 kernel-debug-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 10c7ffb54ff322ba7fed358d1714e157be8155bcc86903dfd984a873c6c33f97 kernel-debug-devel-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 3aa6ee2bd5998acfe8c7644b517b1388586d44991bd98b8c16766b9a80db0e28 kernel-devel-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 0cf1480536253528ac4156e3f9efe26dc37ab6f10a5d141aadfe6810fef3c183 kernel-headers-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 0b2235e9231206dbf7f37da699ffef2c57bd7e022b0df237a9fa0f3b5b77739b kernel-tools-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 3798beed89b188d186afe7fda88a42528231d9c29d08e644a7e8b4971471b878 kernel-tools-libs-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 828fd5a62b9cf8cbbd51015632c596d2feeb066d55bc12faad7c37e004fe5c25 kernel-tools-libs-devel-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 5bb5b64f24ece1a99da6db2ed79811d84c3d34c0db5c515777102b19310cd1ef perf-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 58941d21ce7c1a147d0f9fe796a2d0117c1d2a354987e65ba22abbf3bdcd1662 python-perf-3.10.0-1160.137.1.el7.tuxcare.els25.x86_64.rpm 63f215b8db6f940065469730e348625ea48a3e098db34af6ccb69fe9df0e7c71 CLSA-2025:1759780820 python3: Fix of CVE-2007-4559 TuxCare License Agreement 0 - CVE-2007-4559: implement PEP 706 - a filter in the tarfile module to prevent directory traversal vulnerability Low Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2007-4559: implement PEP 706 - a filter in the tarfile module to prevent directory traversal vulnerability

0 tuxcare-rhel7-els python3-3.6.8-21.0.1.el7_9.tuxcare.els3.i686.rpm 5a5d8c1d45049491ed1ff4a74aa7ded443026df1713a83d312f9a7f9ba60c31c python3-3.6.8-21.0.1.el7_9.tuxcare.els3.x86_64.rpm 01c08f14a027a026ad005b545d9f151998bf3d1b3fc06e8758bf48c53f1bd48e python3-debug-3.6.8-21.0.1.el7_9.tuxcare.els3.i686.rpm fe394f9dc57600bd9c77b4ac713831a8a961994654b04a6a8c280b30d0eadef9 python3-debug-3.6.8-21.0.1.el7_9.tuxcare.els3.x86_64.rpm 84a772aefd858c19d953bc74c037d933cc7b6b53629c26d551fc7f7eb96cd457 python3-devel-3.6.8-21.0.1.el7_9.tuxcare.els3.i686.rpm 6036b314221633c906e7806f8bd0ab91bb062ddaee10efa048b901444c3da817 python3-devel-3.6.8-21.0.1.el7_9.tuxcare.els3.x86_64.rpm 2a8e99c2ed28ea53a1a9ab977fd0d372dd0e1e0bdad96ed557670afb980a1350 python3-idle-3.6.8-21.0.1.el7_9.tuxcare.els3.i686.rpm 20d7fb23da53996c6edb8377c6ceb33cb1018d3cf09b2ef80ee7cf97859d236b python3-idle-3.6.8-21.0.1.el7_9.tuxcare.els3.x86_64.rpm e3c9a7e0c1b1cf24c5c60a5fc6cb27580124bd33bbacc515fd12a859a8e46eff python3-libs-3.6.8-21.0.1.el7_9.tuxcare.els3.i686.rpm 6f58a9a5124dd479afd2374376e1a46e6ecd8b0467ddd0775c18977133ae27f4 python3-libs-3.6.8-21.0.1.el7_9.tuxcare.els3.x86_64.rpm 5c89f6f2afd2511a347cc345eec21512cda8023f5ab39a7aac7e5d08f47f145b python3-test-3.6.8-21.0.1.el7_9.tuxcare.els3.i686.rpm 7604dc0ac4304c08fe3d25283a407942bb841f1b8dfef7fe5d6735b1052e8c87 python3-test-3.6.8-21.0.1.el7_9.tuxcare.els3.x86_64.rpm 7183a13f9eb1ccd75166c67e8daf265f7a0b31fb1aa00d40b578a5a75fa35d03 python3-tkinter-3.6.8-21.0.1.el7_9.tuxcare.els3.i686.rpm 508725699110daf1628e5e13792b3c74002aeb3b4dd11f9e71cc5f2e28843731 python3-tkinter-3.6.8-21.0.1.el7_9.tuxcare.els3.x86_64.rpm c4ccdb768b4bf18500c7a2fd94f74f99a0d51111765b605a84ddc59f45f36369 CLSA-2025:1760023124 openssl: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2019-1547: fix side-channel vulnerability in ECDSA when using explicit EC parameters without cofactor - CVE-2025-9230: fix incorrect check of unwrapped key size Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2019-1547: fix side-channel vulnerability in ECDSA when using explicit EC parameters without cofactor - CVE-2025-9230: fix incorrect check of unwrapped key size

0 tuxcare-rhel7-els openssl-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm cec2ae28670c8a47e810b9fc2015ce54b4b782a598009e1eec82bbd3097cdb7f openssl-devel-1.0.2k-26.el7_9.tuxcare.els6.i686.rpm b4fa75d20745d311fd4f101311360c1ad3821de12be6899ec0b9d5ca89332a76 openssl-devel-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm 9ef7c5f18497c547c333cd03aac4dc251c87e209f895648e0c9c3115a98b00e4 openssl-libs-1.0.2k-26.el7_9.tuxcare.els6.i686.rpm 22a14141b3afb5f3a7c6eaa18276868c715dcd70ceb2dcdde83571c330884c2b openssl-libs-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm 74ed13859b102f7207790de30c7267dbdd96f5b8d09ea0c2194854d66c1cc52e openssl-perl-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm 4375a49c195589f0776b4874a82b8bae4cf2c3372340bf14f8a50d50b276774e openssl-static-1.0.2k-26.el7_9.tuxcare.els6.i686.rpm 33ad539cae681fe23b9e65fad69993ea6193d4c94090beab7514a8c4baa5250a openssl-static-1.0.2k-26.el7_9.tuxcare.els6.x86_64.rpm adf0171533f5fa9339c08306a25a60148b601ff7c23f5821baa1c11d4eb83b9d CLSA-2025:1760983006 python3: Fix of CVE-2025-8194 TuxCare License Agreement 0 - Bump package Release to 21.0.5 - CVE-2025-8194: tarfile: validate archives to ensure member offsets are non-negative Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Bump package Release to 21.0.5 - CVE-2025-8194: tarfile: validate archives to ensure member offsets are non-negative

0 tuxcare-rhel7-els python3-3.6.8-21.0.5.el7_9.tuxcare.els1.i686.rpm 966f25a6b7a01da503bd1307c96c467d73a2a1100f2a2458bca0769c209bd6de python3-3.6.8-21.0.5.el7_9.tuxcare.els1.x86_64.rpm 754cadbfa36e92439c2fca3b5160a4684c155ff54ab3e732c4833c157aff57d2 python3-debug-3.6.8-21.0.5.el7_9.tuxcare.els1.i686.rpm 52cb26874b076729de6458f9ac296150ad915d2e92643c7142b3a47a28ef9c4f python3-debug-3.6.8-21.0.5.el7_9.tuxcare.els1.x86_64.rpm 0439630d5800fb3499d2a2666988c01b1e53ac7e93c75009d57e99929d174df4 python3-devel-3.6.8-21.0.5.el7_9.tuxcare.els1.i686.rpm d06c5969811ee4561cd410a5f6a22bddc5a4d84b74225b20aa4d7f2013100825 python3-devel-3.6.8-21.0.5.el7_9.tuxcare.els1.x86_64.rpm 8b272b9d427b06218eead3ad18f3f65928f8e56fbfd89c5849925a65e56587d3 python3-idle-3.6.8-21.0.5.el7_9.tuxcare.els1.i686.rpm 5bbca323a1fe9b14e7cab63b0c983fcba550447594cb362536443352c99d8836 python3-idle-3.6.8-21.0.5.el7_9.tuxcare.els1.x86_64.rpm 2a8fb992dfcf1b111c1545f9b70246024255466fe253d4e13c2b158b6c814224 python3-libs-3.6.8-21.0.5.el7_9.tuxcare.els1.i686.rpm fddab031e6f4d1a526cc6d7d05b7beb6effd41628b1466ba1ec41c0c3570f400 python3-libs-3.6.8-21.0.5.el7_9.tuxcare.els1.x86_64.rpm 68cf7b7ff903a377a4239cb6312e5e21bd15668551d72d398c30c11d96dd2f03 python3-test-3.6.8-21.0.5.el7_9.tuxcare.els1.i686.rpm 33fa2bde157ef4bf028ab1fc09273f45c7d86644191646047952d7f541f78b74 python3-test-3.6.8-21.0.5.el7_9.tuxcare.els1.x86_64.rpm a9e9f64b1976c548d3ef9204ac7b70f4307b006b105d2af32de52de998224e4f python3-tkinter-3.6.8-21.0.5.el7_9.tuxcare.els1.i686.rpm d52b1e7953bfd3f110ca7aa9f7226df9b01d606c31489d29dfff0d15d28c301b python3-tkinter-3.6.8-21.0.5.el7_9.tuxcare.els1.x86_64.rpm 4c70d0801e090712f7e4a89e7602723daa1032f7eb5bb7051eac7e48cbc64823 CLSA-2025:1761056680 xorg-x11-server: Fix of CVE-2025-49176 TuxCare License Agreement 0 - Additional fix for CVE-2025-49176 None Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Additional fix for CVE-2025-49176

0 tuxcare-rhel7-els xorg-x11-server-Xdmx-1.20.4-99.el7_9.tuxcare.els7.x86_64.rpm d93a98e521764aca3d5ab22b1e988ebe067f8e1a8ea7ea60eff62a501dcdee96 xorg-x11-server-Xephyr-1.20.4-99.el7_9.tuxcare.els7.x86_64.rpm 03866130b46aadf05ced3d06ff8fcbf8d6bee0d55cb188a9e6afaf7b6247fec2 xorg-x11-server-Xnest-1.20.4-99.el7_9.tuxcare.els7.x86_64.rpm ecd4f70712b9bd974be30db36190a3cef4d7519459013491b51e65835c848e20 xorg-x11-server-Xorg-1.20.4-99.el7_9.tuxcare.els7.x86_64.rpm a110719febfe9482abbb5b1842d9578dfaaba8ea49cf255a41f70df2dd902e3e xorg-x11-server-Xvfb-1.20.4-99.el7_9.tuxcare.els7.x86_64.rpm 89e9c0236a7a4f9d32cdec3521bb8c9f8cb2d79765047ce03da7e7ec6fd43132 xorg-x11-server-Xwayland-1.20.4-99.el7_9.tuxcare.els7.x86_64.rpm 69be50830ca987d20a61ef3673b8bb5e057e991fd8edfd456fcef53d2983377d xorg-x11-server-common-1.20.4-99.el7_9.tuxcare.els7.x86_64.rpm e5556e006cc43e651b2ffcf255b3ccec20ba099e98d1e651588e0d5cdccbcf0b xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els7.i686.rpm ba34bb243ddbaac09b61fe6985860efe6a7b63cf6fe956951eb4d87d524d5a1f xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els7.x86_64.rpm eee665455e10e01abe61d4e7d355e619d92f40f3b2d62d098812c2166ff50d10 xorg-x11-server-source-1.20.4-99.el7_9.tuxcare.els7.noarch.rpm ccb4849ac401e11bdfc4059ca31cb3a0bebee9956cbdd369fc441def5dd96426 CLSA-2025:1762244848 kernel: Fix of 5 CVEs TuxCare License Agreement 0 - ext4: fix possible UAF when remounting r/o a mmp-protected file system {CVE-2021-47342} - ext4: fix memory leak in ext4_fill_super - net: defer final 'struct net' free in netns dismantle {CVE-2024-56658} - net/sched: sch_qfq: Fix race condition on qfq_aggregate {CVE-2025-38477} - ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() {CVE-2022-48701} - fix: virtio-net: Add validation for used length {CVE-2021-47352} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- ext4: fix possible UAF when remounting r/o a mmp-protected file system {CVE-2021-47342} - ext4: fix memory leak in ext4_fill_super - net: defer final 'struct net' free in netns dismantle {CVE-2024-56658} - net/sched: sch_qfq: Fix race condition on qfq_aggregate {CVE-2025-38477} - ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() {CVE-2022-48701} - fix: virtio-net: Add validation for used length {CVE-2021-47352}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm 87a8e1628eac9153c4e34b36c6726d5587de40ffcc13c76a892af49512cda643 kernel-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm 21d788c3b761aaab098510c5e307f98771485a1751859cc5e8fca079f4e6100e kernel-debug-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm 80a1582afab10549a9b49cf21442a3bc831c5b16f0360b9f1de162ba9db63101 kernel-debug-devel-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm a85de6ff808fb434219b39c037b383b78809e956b059ad0b5601a684ed15f8a0 kernel-devel-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm 7e6777b21988a419922de0186d0b7bab670a5e572720bb6fe60b111b0ec787db kernel-headers-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm 94292ca800ffbb6106621e1480f57ee4cee9000d38478f286e87d75b03e0ca99 kernel-tools-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm 5f672c14c3280938772f6f00b7be83947000116a30159e522de22a51d7571d65 kernel-tools-libs-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm e42b699655be5bcb8cf4792295d27c12b8f307d9ba638e3deeaf930935eff17d kernel-tools-libs-devel-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm c1f543ac351ef6b6ea98ab0b6bd9004fda01b6b8a0f819bd23901e9009b90c7c perf-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm efb166ddcbb8ce03c851e9cdd46fca1366463c68c34cffbb31ec06070c2fc501 python-perf-3.10.0-1160.139.1.el7.tuxcare.els2.x86_64.rpm ca58e2d8dbd252983fff938a3dd5f9ee1c39b05e0d5b66be1c43970f813b88bc CLSA-2025:1762422944 cups: Fix of CVE-2025-58060 TuxCare License Agreement 0 - CVE-2025-58060: fix authentication bypass by checking password when AuthType is set to anything but Basic. Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-58060: fix authentication bypass by checking password when AuthType is set to anything but Basic.

0 tuxcare-rhel7-els cups-1.6.3-52.el7_9.tuxcare.els2.x86_64.rpm e1616c22d2a3f59e037e780fad0118627d77e34def6cff1013196062325f36c9 cups-client-1.6.3-52.el7_9.tuxcare.els2.x86_64.rpm 70bb53b5ddc122b2a8700646d6d89c71f3075d5e75865bd4a0ab94d1df3d4507 cups-devel-1.6.3-52.el7_9.tuxcare.els2.i686.rpm 2cb6f3af72fc66efaca690ddca669ff6b923312054bffb8fce65b41a15e4c996 cups-devel-1.6.3-52.el7_9.tuxcare.els2.x86_64.rpm 41937efa5d78b37dd5ec0507f57a8cd23d78941008d8b92579b2439c1b652675 cups-filesystem-1.6.3-52.el7_9.tuxcare.els2.noarch.rpm a0579b335d5d11c861ab7a68d2cbc678738b841d8002f6f6d1cf798ad029a5b9 cups-ipptool-1.6.3-52.el7_9.tuxcare.els2.x86_64.rpm 4c76fac7498247c33ac706191b8ab15e76293e5ab211120893e51158ee72de1d cups-libs-1.6.3-52.el7_9.tuxcare.els2.i686.rpm 99f3a8fde6aa7f02fbd96d77d75ace15f6fb053ede83a87c92c3b9c7cd591a7e cups-libs-1.6.3-52.el7_9.tuxcare.els2.x86_64.rpm 558c476df3f7c16a469e6ed1d2ca92c4429ff058dc2ca4bbe18bf233d31cee9b cups-lpd-1.6.3-52.el7_9.tuxcare.els2.x86_64.rpm 91310c7c8949e837907a803619922093b252a6a37cae850569894c4d0c65e592 CLSA-2025:1762537354 cups: Fix of CVE-2024-35235 TuxCare License Agreement 0 - CVE-2024-35235: patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-35235: patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item

0 tuxcare-rhel7-els cups-1.6.3-52.el7_9.tuxcare.els3.x86_64.rpm 9ba8126f86ad1f68fb8e45940135f2487439d170fde6c18bbddad0c1c00c139f cups-client-1.6.3-52.el7_9.tuxcare.els3.x86_64.rpm 67a588e44d8da6ca7f600ef81e74768a84e9c62b687df1ed475acb53178abea3 cups-devel-1.6.3-52.el7_9.tuxcare.els3.i686.rpm 1719f4c6efd99a5496fe04048d868a82311df1dfbf3d8ec29dfea7677979e984 cups-devel-1.6.3-52.el7_9.tuxcare.els3.x86_64.rpm 2445d52aeb98f42e48bc58d3b5cafcec0f73afc2bef1cb04814f222580edaf97 cups-filesystem-1.6.3-52.el7_9.tuxcare.els3.noarch.rpm 0761709574b77892559fd178ad7174b8c299bdf8636c3f5300571193e01b6e17 cups-ipptool-1.6.3-52.el7_9.tuxcare.els3.x86_64.rpm d50f712cc75ef227a37053dedf2ea91e5cd6b518a42a25e5d54cb3518da2add6 cups-libs-1.6.3-52.el7_9.tuxcare.els3.i686.rpm 8bcb41ed35993fc49b24815ce80037a56471319bec120ac6cb8ed5caf6723ec6 cups-libs-1.6.3-52.el7_9.tuxcare.els3.x86_64.rpm 753f62a9703a8718bab2173e015c5483b2fcc537a656effa91f4c3786bbd4122 cups-lpd-1.6.3-52.el7_9.tuxcare.els3.x86_64.rpm aeea92ebcbbb127201786fdc32187cfd8030511e1a6a940c234d56cd6b390cde CLSA-2025:1762540173 rsync: Fix of CVE-2016-9840 TuxCare License Agreement 0 - CVE-2016-9840: fix improper pointer arithmetic in inftrees.c Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2016-9840: fix improper pointer arithmetic in inftrees.c

0 tuxcare-rhel7-els rsync-3.1.2-12.0.1.el7_9.tuxcare.els2.x86_64.rpm f042f8ebcce505d60337261666bb2c35f9304e967ebda92f67cd120c836e5194 CLSA-2025:1762784629 libsoup: Fix of 3 CVEs TuxCare License Agreement 0 - CVE-2025-4948: fix integer underflow in soup_multipart_new_from_message() - CVE-2025-32049: fix Denial of Service attack to websocket server - CVE-2025-32914: fix OOB Read through soup_multipart_new_from_message() Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-4948: fix integer underflow in soup_multipart_new_from_message() - CVE-2025-32049: fix Denial of Service attack to websocket server - CVE-2025-32914: fix OOB Read through soup_multipart_new_from_message()

0 tuxcare-rhel7-els libsoup-2.62.2-2.0.5.el7.tuxcare.els1.i686.rpm dfd5773c7577f9cb2a297efa0cfff632c79cdcd378dd8dfd3e075e80dd6cea60 libsoup-2.62.2-2.0.5.el7.tuxcare.els1.x86_64.rpm da1eee49d4fe85e37404864864fd1ef7a32030652072bca7bc1850872bc6835f libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els1.i686.rpm 7893b61e8afc592103b9b1be088b35c0845f04ef646da8eca5f1555ed6e1af1d libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els1.x86_64.rpm a9182f7d24d55f483a702828e5c500204f2b922a53f9871f36ba3bba86f9de5c CLSA-2025:1762958892 python3: Fix of 5 CVEs TuxCare License Agreement 0 - CVE-2024-12718, CVE-2025-4138, CVE-2025-4330, CVE-2025-4435, CVE-2025-4517: fix multiple tarfile extraction filter bypasses (filter="tar"/filter="data") Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-12718, CVE-2025-4138, CVE-2025-4330, CVE-2025-4435, CVE-2025-4517: fix multiple tarfile extraction filter bypasses (filter="tar"/filter="data")

0 tuxcare-rhel7-els python3-3.6.8-21.0.5.el7_9.tuxcare.els2.i686.rpm c7930e706c78afb43ea8e77dc01d0573445c922ca236d824c6bc937a8a54fa62 python3-3.6.8-21.0.5.el7_9.tuxcare.els2.x86_64.rpm 29fb18b576b7ff69cf1c27b880df6bbc377e101ae8b18a31aac7c41324d4398a python3-debug-3.6.8-21.0.5.el7_9.tuxcare.els2.i686.rpm c5603fd786488e19a878016c5711c4eaaca7a9611c9671830d96fe25384fd749 python3-debug-3.6.8-21.0.5.el7_9.tuxcare.els2.x86_64.rpm f0ea874a31002a38b1dd03a3967ba398b7d970e00bec4794cc716d1d69a13c0f python3-devel-3.6.8-21.0.5.el7_9.tuxcare.els2.i686.rpm fb11a56e151db7edafc1cc999282a1b43e5f1427b7650557b22de3d72335663a python3-devel-3.6.8-21.0.5.el7_9.tuxcare.els2.x86_64.rpm e4bc5e638d002ef8a12487662a8faa8e90f084d83265e3481155c337db7f0d2a python3-idle-3.6.8-21.0.5.el7_9.tuxcare.els2.i686.rpm a5f188bd879162dce56aaec0cff115e7af4648efa34a22423dc5b9bec3486978 python3-idle-3.6.8-21.0.5.el7_9.tuxcare.els2.x86_64.rpm aa30d6d6e3c5bd8da2ebb0539b193e06d25038400efeaad36e5a8cd094069888 python3-libs-3.6.8-21.0.5.el7_9.tuxcare.els2.i686.rpm f1ecd8fbf27f42532d06464dfed0e174e6a20d1b40b6f86b0167497da74409a5 python3-libs-3.6.8-21.0.5.el7_9.tuxcare.els2.x86_64.rpm d865e10e6c2155dfdd4de91b0cab951d158dc310322eda06fe7fe4d7c240d555 python3-test-3.6.8-21.0.5.el7_9.tuxcare.els2.i686.rpm 26c09d2d71ae419d749ecdcb73b64e01188d95c75c90fe5430fa510211b0d243 python3-test-3.6.8-21.0.5.el7_9.tuxcare.els2.x86_64.rpm 84aaa22586162e699fdd2e4e8d1122c3b0a1b487c6920d4ec22d64f5c1bf4912 python3-tkinter-3.6.8-21.0.5.el7_9.tuxcare.els2.i686.rpm 8ee9848a16c84121b0236d0a987ec2dc3de0341e8112f0feb91645cd39ef8a38 python3-tkinter-3.6.8-21.0.5.el7_9.tuxcare.els2.x86_64.rpm 43076a018f108ed7bce3d58b3b3168067fd68bbc176ba59221bc4b499f31cfe5 CLSA-2025:1763033941 python: Fix of CVE-2025-8194 TuxCare License Agreement 0 - CVE-2025-8194: fix infinite loop and deadlock in TarFile extraction and entry enumeration APIs Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-8194: fix infinite loop and deadlock in TarFile extraction and entry enumeration APIs

0 tuxcare-rhel7-els python-2.7.5-94.0.1.el7_9.tuxcare.els2.x86_64.rpm e8aa5334d92dec763330714258e0f5cf4c103c2f9d80b028637798ab214b79be python-debug-2.7.5-94.0.1.el7_9.tuxcare.els2.x86_64.rpm 826c3a451a0be1c58deb73f524097e802a8a630d583b29be2da6c3528c8cab38 python-devel-2.7.5-94.0.1.el7_9.tuxcare.els2.x86_64.rpm 7dc761d884edba4a33a567a5b225e13d8af6d812287176dccb0b476a01b755f2 python-libs-2.7.5-94.0.1.el7_9.tuxcare.els2.i686.rpm a3400b1e363e6e589454780f8a8b4f32016e421ff7c1a2981978135de5f64fb4 python-libs-2.7.5-94.0.1.el7_9.tuxcare.els2.x86_64.rpm 8989cefdb206a06edd804db6e428b95fd94fe27aaad14da8c8302fcd0f5197fd python-test-2.7.5-94.0.1.el7_9.tuxcare.els2.x86_64.rpm e75996848ec1d36f2593bc2a35b4c43ca8e3da8be186c2d781cb0e8e9b3224cf python-tools-2.7.5-94.0.1.el7_9.tuxcare.els2.x86_64.rpm 9fe156f4d84b63ba60689ca698d609dd77b12872b8af691dd1c7768c66dbcaff tkinter-2.7.5-94.0.1.el7_9.tuxcare.els2.x86_64.rpm a2dda192c914ffd5716295b5bb57c0183e18416f8d41f4eb233fcdae2eb808f7 CLSA-2025:1764152160 squid: Fix of CVE-2025-62168 TuxCare License Agreement 0 - CVE-2025-62168: fix failure to redact HTTP authentication credentials in error handling to prevent information disclosure - email_err_data directive now defaults to 'off' for security (previously 'on') Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-62168: fix failure to redact HTTP authentication credentials in error handling to prevent information disclosure - email_err_data directive now defaults to 'off' for security (previously 'on')

0 tuxcare-rhel7-els squid-3.5.20-17.0.5.el7_9.99.tuxcare.els2.x86_64.rpm 7c19c191901a6c5d3ae91b6f6f28e819544224b7e2a04fdc520bdfa0a6d4afc6 squid-migration-script-3.5.20-17.0.5.el7_9.99.tuxcare.els2.x86_64.rpm dbfcf82de63d3a418f86ce8a98c016291aafccba2d6dc461290da1f3c6d2a461 squid-sysvinit-3.5.20-17.0.5.el7_9.99.tuxcare.els2.x86_64.rpm ddff5a5cca530154d44af24ebea810cf087dd150e36a772b3a786d63aa4076e6 CLSA-2025:1764678192 libsoup: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2025-4945: fix integer overflow vulnerability in date/time parsing - CVE-2025-11021: fix out-of-bounds memory read in cookie date handling logic Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-4945: fix integer overflow vulnerability in date/time parsing - CVE-2025-11021: fix out-of-bounds memory read in cookie date handling logic

0 tuxcare-rhel7-els libsoup-2.62.2-2.0.5.el7.tuxcare.els2.i686.rpm 1758d22c9e8fb60ecbee27a6d9611e44ef7904e90cfc179ae53c2c6f61dbead1 libsoup-2.62.2-2.0.5.el7.tuxcare.els2.x86_64.rpm 4055d23787c104fe2958ee100c9a5ebf78ad2b0c12c05e8d35fd25dbf91df791 libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els2.i686.rpm ed341ea436e068976fe2de90e3b80c17521589768cec8768b54b086f2d96f9db libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els2.x86_64.rpm f4e262948a7523d4fd3c16a5c25efbf75707338bb7dd506d2aa15a521a316e86 CLSA-2025:1765209523 xorg-x11-server: Fix of 4 CVEs TuxCare License Agreement 0 - CVE-2025-9632: fix buffer overflow in _XkbSetCompatMap() - CVE-2025-62229: fix use-after-free condition due improper error handling during notification creation leading to DoS - CVE-2025-62230: fix use-after-free condition due freeing certain data structures without properly detaching related resources - CVE-2025-62231: fix unsigned short overflow in XkbSetCompatMap() function Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-9632: fix buffer overflow in _XkbSetCompatMap() - CVE-2025-62229: fix use-after-free condition due improper error handling during notification creation leading to DoS - CVE-2025-62230: fix use-after-free condition due freeing certain data structures without properly detaching related resources - CVE-2025-62231: fix unsigned short overflow in XkbSetCompatMap() function

0 tuxcare-rhel7-els xorg-x11-server-Xdmx-1.20.4-99.el7_9.tuxcare.els8.x86_64.rpm 3bf095304e76860708729cc40a0bcb1b19fd629435a9a71f3c5cdacab07cb055 xorg-x11-server-Xephyr-1.20.4-99.el7_9.tuxcare.els8.x86_64.rpm c07c8a1763938fdb81bfa77608b0afb3eb23bf8d08a725a4b5654706021173c1 xorg-x11-server-Xnest-1.20.4-99.el7_9.tuxcare.els8.x86_64.rpm 96bfe9ee16923351a97fda093aa43b33e01ce6c94a6b3cccd2d138ca1e00466f xorg-x11-server-Xorg-1.20.4-99.el7_9.tuxcare.els8.x86_64.rpm 47df6c4b1d5eaa646db9990c47bc6f39b18d127cf6635c84631876411c984612 xorg-x11-server-Xvfb-1.20.4-99.el7_9.tuxcare.els8.x86_64.rpm f439615b112074e48503dc08848a446a4ca948e427fa39d9b8f0ecbaf8f09606 xorg-x11-server-Xwayland-1.20.4-99.el7_9.tuxcare.els8.x86_64.rpm ebe15308269395c42ee1e14405c37afd546e0d27c2965f5f5e28a8c36fc2b420 xorg-x11-server-common-1.20.4-99.el7_9.tuxcare.els8.x86_64.rpm 6829ba0f62ff2e87afd2ed166184a567b645e1050e8a5a0765ea26098b25cabf xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els8.i686.rpm f863a3c2c87cf3e9cefe96b73f3c42cf28f39aa27f693eb3362c2e14435e92cf xorg-x11-server-devel-1.20.4-99.el7_9.tuxcare.els8.x86_64.rpm 77613d97a128256f7d86966bf1342b9c5b322a02c142c1868a918c0d7b385eb6 xorg-x11-server-source-1.20.4-99.el7_9.tuxcare.els8.noarch.rpm 2d21f1227ff554acbc252f5073afefe90bb9b82df8f62a2779e3382b9636adbb CLSA-2025:1765214354 Update of java-1.8.0-openjdk TuxCare License Agreement 0 - Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u472-b08 (GA). Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Upgrade to openjdk-shenandoah-jdk8u-shenandoah-jdk8u472-b08 (GA).

0 tuxcare-rhel7-els java-1.8.0-openjdk-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm c06f1978fd828f4e0ed23ec220a48ae03dd6eea179c1f574c97540f1986c3cc0 java-1.8.0-openjdk-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm 59e7d6936db148fa237f4a73931987ee8488403f4f3e745bd875e58515633b27 java-1.8.0-openjdk-accessibility-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm 8401da2f64c0c64aec23ecbad7b85fff76cf20fc6d7d43ffb77b995a793c0b11 java-1.8.0-openjdk-accessibility-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm 0aeee43e2dfc40e4221ee44492bc6a8a577f7d3ae95559cfdf182d094b324a92 java-1.8.0-openjdk-accessibility-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm 3c65a771ba542e9cb7139dabba0f22cb9d158241fd932468c1d4505f24fc39d2 java-1.8.0-openjdk-accessibility-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm cf32ceca2e80c426cc5b338bd704579543fc5873f82052306b855f9c06fc2888 java-1.8.0-openjdk-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm a0028f5d0e533114e7f3d3af96d9aecfe74361cc1fb3dbc9e9f175c4a5b6b3ae java-1.8.0-openjdk-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm 4016ff2c40f82e5895aec68dcdc5e318902dc27e41d0c1aae94260d0ebd1751e java-1.8.0-openjdk-demo-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm 6bcbdb173e6bc29b96875374ee180bd4df37ab029ef8c761d5065c7a6bf5e432 java-1.8.0-openjdk-demo-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm d1d57f006d0bfb3a7facdd64a63ca45f706522c1bca9f0835feabbf22ea4965b java-1.8.0-openjdk-demo-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm 37631b65b74bc43973e02b4051db18149e9efcebec0a13231ee3cf9c6dddfd28 java-1.8.0-openjdk-demo-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm a9de36e7c9ce274f3f0eb0efd093f7dc775ed1e788d6ee9f3433e3cdae20b521 java-1.8.0-openjdk-devel-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm be39a11de6c60d711c21f4cd843c4998bbedd37f8ea5473bdfddff8c3bdceaf7 java-1.8.0-openjdk-devel-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm 08e6ae8fa2c4376575d0ea3fe66a7d0d410e93ada6a623eb1ae1d457508253eb java-1.8.0-openjdk-devel-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm ebd03b41318c46a01da6adff665936093ded29c66a73e6b14884e153a68ff54b java-1.8.0-openjdk-devel-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm f1f0c84d2f95ab5399313073a16661a97622bbfbf3a13d2bf85fb0d5bf9173ef java-1.8.0-openjdk-headless-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm c5dfa67f17b7e47713b7f784205e4fc1e7a673cbdef624c166355c57ba80cd16 java-1.8.0-openjdk-headless-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm 2e3f9e603b67dfe531b2b3ed8685eb9b3dcee248c2b7c6d6a3275a0d6f443e8b java-1.8.0-openjdk-headless-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm 273a067c4a60d227462a99f5a9a6939e9bd70aacaf30a370bf166037279604a1 java-1.8.0-openjdk-headless-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm d476604177e218156793f8eeef25aa5947483b4a16ba64790f0afbc6a19810e5 java-1.8.0-openjdk-javadoc-1.8.0.472.b08-1.el7_9.tuxcare.els1.noarch.rpm 12854a24e4cd7167ca569ea6be9cd3689d2a0b51ce9fbb8aab68656c774b9046 java-1.8.0-openjdk-javadoc-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.noarch.rpm f075a843bb6bef9161c9fa8ce97a3313003df9848a1ec23f57eb15562480b292 java-1.8.0-openjdk-javadoc-zip-1.8.0.472.b08-1.el7_9.tuxcare.els1.noarch.rpm 45a4921fe05eb050ac7368a21fde3b2e017ebec9d33bc0d1db39c5cb910fd796 java-1.8.0-openjdk-javadoc-zip-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.noarch.rpm f7161de4ecf1de26b23daefc6ebc06935ceb3bd12c23d7f7832cd4d982cc905d java-1.8.0-openjdk-src-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm 88d24d1fecfb2d8d202cc5e3542d88a0b1eac9a0cea37adfa6ef296089bc8d05 java-1.8.0-openjdk-src-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm a1028ba5d0e0833d469864166b59a85a79e63115e76ebf507378ecec79716962 java-1.8.0-openjdk-src-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.i686.rpm 9e2ef1103f4523755a29d3649f6d6670b9e8bc1b98eb15f3478a78d4699800a3 java-1.8.0-openjdk-src-debug-1.8.0.472.b08-1.el7_9.tuxcare.els1.x86_64.rpm efb96c052cccd00085d68dbfc167bca4277d9c8c9f45d6ee726b6fdcb1ab747b CLSA-2025:1765901537 unbound: Fix of CVE-2024-8508 TuxCare License Agreement 0 - CVE-2024-8508: limit number of name compression calculations per packet to prevent denial of service attacks. Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-8508: limit number of name compression calculations per packet to prevent denial of service attacks.

0 tuxcare-rhel7-els unbound-1.6.6-5.el7_8.tuxcare.els4.x86_64.rpm 7651cbc235b9db955ec6830e9f87b9daa92698484bc7388204e3dc0b5b4b2c43 unbound-devel-1.6.6-5.el7_8.tuxcare.els4.i686.rpm 82ff6700ef2b9aa284d5ce45de7bd77cd2f75becc275ca978d003e5497f50cc6 unbound-devel-1.6.6-5.el7_8.tuxcare.els4.x86_64.rpm 3c489886911610fced345dcca0c42fafdfcea9e4eb3167cb1f6d193a5f8a2614 unbound-libs-1.6.6-5.el7_8.tuxcare.els4.i686.rpm 30d950e0041a11923f262aecdc65eae4e6a5e17d17235ee75a73d70e31371f5b unbound-libs-1.6.6-5.el7_8.tuxcare.els4.x86_64.rpm 795f3d01914675cf490b54927373e3c9023d04f3c762475b7347c020f6ffe68f unbound-python-1.6.6-5.el7_8.tuxcare.els4.x86_64.rpm 531ca1af3a49d41a98532419acd6f97e511e068bd7d3be194cdcf684e2898ad0 CLSA-2025:1766600619 kernel: Fix of 27 CVEs TuxCare License Agreement 0 - xfrm: Duplicate SPI Handling {CVE-2025-39965} - xfrm: state: use atomic_inc_not_zero to increment refcount - padata: Fix pd UAF once and for all {CVE-2025-38584} - padata: Remove broken queue flushing {CVE-2023-52854} - padata: ensure padata_do_serial() runs on the correct CPU - Bluetooth: L2CAP: Fix use-after-free {CVE-2023-53305} - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() {CVE-2022-50408} - sctp: linearize cloned gso packets in sctp_rcv {CVE-2025-38718} - ip6mr: Fix skb_under_panic in ip6mr_cache_report() {CVE-2023-53365} - Bluetooth: L2CAP: Fix user-after-free {CVE-2022-50386} - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put {CVE-2022-3640} - ipvs: fix WARNING in ip_vs_app_net_cleanup() {CVE-2022-49917} - ipvs: fix WARNING in __ip_vs_cleanup_batch() {CVE-2022-49918} - ipvs: use explicitly signed chars - vt: Clear selection before changing the font {CVE-2022-49948} - fs: prevent out-of-bounds array speculation when closing a file descriptor {CVE-2023-53117} - xen/netfront: react properly to failing gnttab_end_foreign_access_ref() {CVE-2022-48900} - netlink: prevent potential spectre v1 gadgets {CVE-2023-53000} - igb: Do not free q_vector unless new one was allocated {CVE-2022-50252} - scsi: target: Fix WRITE_SAME No Data Buffer crash {CVE-2022-21546} - net: mdio: fix undefined behavior in bit shift for __mdiobus_register {CVE-2022-49907} - dm raid: fix address sanitizer warning in raid_status {CVE-2022-50084} - dm raid: fix address sanitizer warning in raid_resume {CVE-2022-50085} - capabilities: fix undefined behavior in bit shift for CAP_TO_MASK {CVE-2022-49870} - wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds() {CVE-2022-50258} - usb: xhci: Fix isochronous Ring Underrun/Overrun event handling {CVE-2025-37882} - Bluetooth: hci_core: Fix use-after-free in vhci_flush() {CVE-2025-38250} - ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control {CVE-2025-39751} - jbd2: remove wrong sb->s_sequence check {CVE-2025-37839} - net_sched: hfsc: Fix a UAF vulnerability in class handling - crypto: seqiv - Handle EBUSY correctly {CVE-2023-53373} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- xfrm: Duplicate SPI Handling {CVE-2025-39965} - xfrm: state: use atomic_inc_not_zero to increment refcount - padata: Fix pd UAF once and for all {CVE-2025-38584} - padata: Remove broken queue flushing {CVE-2023-52854} - padata: ensure padata_do_serial() runs on the correct CPU - Bluetooth: L2CAP: Fix use-after-free {CVE-2023-53305} - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() {CVE-2022-50408} - sctp: linearize cloned gso packets in sctp_rcv {CVE-2025-38718} - ip6mr: Fix skb_under_panic in ip6mr_cache_report() {CVE-2023-53365} - Bluetooth: L2CAP: Fix user-after-free {CVE-2022-50386} - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put {CVE-2022-3640} - ipvs: fix WARNING in ip_vs_app_net_cleanup() {CVE-2022-49917} - ipvs: fix WARNING in __ip_vs_cleanup_batch() {CVE-2022-49918} - ipvs: use explicitly signed chars - vt: Clear selection before changing the font {CVE-2022-49948} - fs: prevent out-of-bounds array speculation when closing a file descriptor {CVE-2023-53117} - xen/netfront: react properly to failing gnttab_end_foreign_access_ref() {CVE-2022-48900} - netlink: prevent potential spectre v1 gadgets {CVE-2023-53000} - igb: Do not free q_vector unless new one was allocated {CVE-2022-50252} - scsi: target: Fix WRITE_SAME No Data Buffer crash {CVE-2022-21546} - net: mdio: fix undefined behavior in bit shift for __mdiobus_register {CVE-2022-49907} - dm raid: fix address sanitizer warning in raid_status {CVE-2022-50084} - dm raid: fix address sanitizer warning in raid_resume {CVE-2022-50085} - capabilities: fix undefined behavior in bit shift for CAP_TO_MASK {CVE-2022-49870} - wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds() {CVE-2022-50258} - usb: xhci: Fix isochronous Ring Underrun/Overrun event handling {CVE-2025-37882} - Bluetooth: hci_core: Fix use-after-free in vhci_flush() {CVE-2025-38250} - ALSA: hda/ca0132: Fix buffer overflow in add_tuning_control {CVE-2025-39751} - jbd2: remove wrong sb->s_sequence check {CVE-2025-37839} - net_sched: hfsc: Fix a UAF vulnerability in class handling - crypto: seqiv - Handle EBUSY correctly {CVE-2023-53373}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm 4c671b611f37bb602d4c30526bd52a2aa70b60bbce8d5982c54f8dd15bceb508 kernel-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm 8d997e64944a60f8cb471ba08aae18810d09ed7a4c23d6ce2c821a872072ee08 kernel-debug-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm d83c015f1d692e0e78e19b18316fba37f84fe1e04acce167079308ff2f5ecd58 kernel-debug-devel-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm 3a1ef6a2667f072a8bf9a290c8cdbcaad6901656e86cf6080bc19dbe8e905c6b kernel-devel-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm a35607e04b438a23cba0894c28f7c72ded7e84d99021ed6da1edbe06fe8fc532 kernel-headers-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm d7fe2f78edcff1d7eb168fe53f4cd56e7122c6cafb30568e1d91a5d41c06e3c5 kernel-tools-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm 06f34408df7499d00ff0795bde1dd7bce6664714c96f3a6cfe9024fad47857e0 kernel-tools-libs-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm a63200cd9fa78d39b052bde62c36d8ac20616d24efefb8b4ff6fc1ba0e322f22 kernel-tools-libs-devel-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm 36ba87986a4c92bea99c7f718e3ff04cc658ca9304f035fd224f88d07a7f7849 perf-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm 8ff09a1d66b0b4a024974e7158eefcd05a3e15893fae8d2a3f90eca11a16f8cf python-perf-3.10.0-1160.139.1.el7.tuxcare.els3.x86_64.rpm 8a5937c699b5f94efd31a9ab78245f3af6704f36c7ef0d2597f52ee3dba50493 CLSA-2025:1767098038 Update of java-11-openjdk TuxCare License Agreement 0 - Upgrade to openjdk-11.0.29+7 (GA). Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Upgrade to openjdk-11.0.29+7 (GA).

0 tuxcare-rhel7-els java-11-openjdk-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm e7e7531c4b781926257ceb9dddd86d964851527fa7f6d93939b780bec8cf26b9 java-11-openjdk-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 60cf3e0ad79b751e17aff75498a55fca3f975664ef6deb681807eef00ad2a98c java-11-openjdk-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm a1cd5a4b8bd43da99edea51cc285ea8d400bf533e57200c97b21731523dfddc0 java-11-openjdk-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 34ca42f27ac2aaebe44aece559e6c270c993f86fbe93a661a5f857f7cf24418c java-11-openjdk-demo-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm f725bdcecec524ea61773fc3c13126f303025814401e921db6a52a07ff8b1b05 java-11-openjdk-demo-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 9de855855b66f49e7aa7f28e78300fa6d7a45a9c73a80a565f654b9bd2f2702a java-11-openjdk-demo-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 5c2b8224fefcf48aeab9291b427a083fb697bfee6284b9c58a19eee57d4748d9 java-11-openjdk-demo-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 5c9daff215720cdcfeb4c9746e8757ac80494e101672d2ea1168b8d867ee0944 java-11-openjdk-devel-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm c03d6e966c1aebfcc43f4efef7db56c7020dc1d81879138f0bdd531739d65955 java-11-openjdk-devel-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm d30d542e4d3d69562e69b34f265e0d06a926a1c79591a1447ac1ccf31b4e3a65 java-11-openjdk-devel-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm b277a89997330f9b124659527fc08ddc1b86fd1961a849f5664d83d80416bd5c java-11-openjdk-devel-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm b4ede31cbefcd100cea84cefc7532c6a3e60e11fbc551b564db72c82c3eb3c52 java-11-openjdk-headless-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 3292695d001e57b8f9619781aeb8c3cc2e6d7b0deb64f736d5060e9cb4923ba6 java-11-openjdk-headless-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 4cae128130abfb9c303a87934cc6232de1fd93ad6207b369c71523be05ff1e98 java-11-openjdk-headless-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 4d88fba3cb1943e6e092bd514701492a02a639085923a3e6814a1e0ed08e8f46 java-11-openjdk-headless-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 8e41a7a95739457f5e227eb00c52b9a3c5fe80cd4d607df2ba75872afbe335aa java-11-openjdk-javadoc-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 883f4c58ee73d74d0fb76c3e0d0f870681d52402381488b9c086fb48731932a5 java-11-openjdk-javadoc-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 3d63c1df6eae4accabf6727654e75241db4d20b1c6f01db7448dc0752706f1ce java-11-openjdk-javadoc-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm a9d3b710f0327cfef9ee4c703ac674593b73d9b168160695815570fb150cff5b java-11-openjdk-javadoc-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 175c66b369e718cd98127060fe345aad6246222e5a5fb743768874ba75f6c789 java-11-openjdk-javadoc-zip-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 6d83bad4daffbecc273ebbfede625c5dc720c9620c8491ca98ee28115bb347b9 java-11-openjdk-javadoc-zip-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 230b1aa8847b635170a7920da97a615b8c5460ed8ca2a9b554050cedb037ca05 java-11-openjdk-javadoc-zip-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm a9da94711d26283d62778a3a25355403dc954ce2f28b49ac20d547085f38dc33 java-11-openjdk-javadoc-zip-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 6d94ae83055ee79ca72121a4c23fec1f85fa5ca023b577633e68bbbecfd6c056 java-11-openjdk-jmods-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 9bc8871ec0c33036602a976d06bf977f286e4b88518164d3775c33eeacf3eded java-11-openjdk-jmods-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm d2bf85b50a098493ff0e8ecda969586c8f9f95230a29965c6eb6a9ba1d26863c java-11-openjdk-jmods-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm bbf17a75655871dea8a351f9d4ab99e12508acd373888ceea1f8c7af33c00822 java-11-openjdk-jmods-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 7db26844b5a97b3658c6ac4b56c9a1b61de1090fc469ff7197b29ae464b08e55 java-11-openjdk-src-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 2901f4e2e00f9c656f4820beffaf05b670efc5fdc7d02d3e29444b5b1a5cbb60 java-11-openjdk-src-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm e5e86eb31d9274b80b4cdd6ad670285e88aa8c7f9072c4e888e0d811e19c879e java-11-openjdk-src-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 8fce1328f8f996cb6f64d83b808e2e9eca22858948c2426900f7d03d9819df7d java-11-openjdk-src-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 69239d73c34feb22c610e57957d2bb0a52b15e5f71acdbfe27ca686a011c5458 java-11-openjdk-static-libs-11.0.29.0.7-1.el7_9.tuxcare.els1.i686.rpm 2eb90762cfe88dbd559e8328f9fe7cff2e657690ddd0ceff6c2534666574dfcf java-11-openjdk-static-libs-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 17d979c9664615845ee06c7e9b8f2f4ed04f0de5cf2559b4c7604e6fd86e695f java-11-openjdk-static-libs-debug-11.0.29.0.7-1.el7_9.tuxcare.els1.x86_64.rpm 22628d6571046996fcd84a05cf67724680f16bd5115ddca15d8b10a92651e89a CLSA-2026:1767867718 kernel: Fix of 16 CVEs TuxCare License Agreement 0 - crypto: lzo - Fix compression buffer overrun {CVE-2025-38068} - wifi: brcmfmac: fix use-after-free when rescheduling brcmf_btcoex_info work {CVE-2025-39863} - NFSD: Protect against send buffer overflow in NFSv2 READ {CVE-2022-43945} - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect(). {CVE-2025-40186} - can: bcm: add locking for bcm_op runtime updates {CVE-2025-38004} - Squashfs: check return result of sb_min_blocksize {CVE-2025-38415} - ALSA: usb-audio: Validate UAC3 cluster segment descriptors {CVE-2025-39757} - ext4: fix undefined behavior in bit shift for ext4_check_flag_values {CVE-2022-50403} - scsi: qla2xxx: Wait for io return on terminate rport {CVE-2023-53322} - fs: fix UAF/GPF bug in nilfs_mdt_destroy {CVE-2022-2978} - ALSA: usb-audio: Validate UAC3 power domain descriptors, too {CVE-2025-38729} - ipv6: Fix infinite recursion in fib6_dump_done(). {CVE-2024-35886} - wifi: ath9k_htc: Abort software beacon handling if disabled {CVE-2025-38157} - atm: Release atm_dev_mutex after removing procfs in atm_dev_deregister(). {CVE-2025-38245} - atm: clip: Fix infinite recursive call of clip_push(). {CVE-2025-38459} - smb: client: Fix use-after-free in cifs_fill_dirent {CVE-2025-38051} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- crypto: lzo - Fix compression buffer overrun {CVE-2025-38068} - wifi: brcmfmac: fix use-after-free when rescheduling brcmf_btcoex_info work {CVE-2025-39863} - NFSD: Protect against send buffer overflow in NFSv2 READ {CVE-2022-43945} - tcp: Clear tcp_sk(sk)->fastopen_rsk in tcp_disconnect(). {CVE-2025-40186} - can: bcm: add locking for bcm_op runtime updates {CVE-2025-38004} - Squashfs: check return result of sb_min_blocksize {CVE-2025-38415} - ALSA: usb-audio: Validate UAC3 cluster segment descriptors {CVE-2025-39757} - ext4: fix undefined behavior in bit shift for ext4_check_flag_values {CVE-2022-50403} - scsi: qla2xxx: Wait for io return on terminate rport {CVE-2023-53322} - fs: fix UAF/GPF bug in nilfs_mdt_destroy {CVE-2022-2978} - ALSA: usb-audio: Validate UAC3 power domain descriptors, too {CVE-2025-38729} - ipv6: Fix infinite recursion in fib6_dump_done(). {CVE-2024-35886} - wifi: ath9k_htc: Abort software beacon handling if disabled {CVE-2025-38157} - atm: Release atm_dev_mutex after removing procfs in atm_dev_deregister(). {CVE-2025-38245} - atm: clip: Fix infinite recursive call of clip_push(). {CVE-2025-38459} - smb: client: Fix use-after-free in cifs_fill_dirent {CVE-2025-38051}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm be32fdf0933f47fb73e9fc23014dfa1cda02acfd95a1fa6557b1317ca7d392a6 kernel-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm 30b75fe02d8efbae4a14cd52cc1bf152ab02daa0a34b3f8ff208684ddbc93903 kernel-debug-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm f40b59817bac3ddbfad8089000223a1b712ba4f6ba263369842fecaa386f4ae5 kernel-debug-devel-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm d9c89492fcf7134244691de9f7d7401f06bdccd3f8401c367b099f65c156d324 kernel-devel-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm 3890c194cb5b0d08336001b937aa102f1753e0428a7c39acb2b9690985c9ce1a kernel-headers-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm 8fe1272656ef884507c1f418c6be16fa47bc47e57eb2d5e6978a4e0641aa8d8d kernel-tools-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm b10c2de73839da95d9c647eba3e086a4de2c34015b5f4aad682c38bace5f757b kernel-tools-libs-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm 3ec8e9ec2b384591c265f3d1df469e9c612ca12e5997bd109b232f4cc663a2f5 kernel-tools-libs-devel-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm 81264e7cb15783751a88a600f2419b2e28313e8099757754425be19c69cc56e2 perf-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm ebe5a6d4613214b760aa5b2d8b8b0464d0da0e26f95423ead7022db2927a36a6 python-perf-3.10.0-1160.139.1.el7.tuxcare.els4.x86_64.rpm 53d4094a3b09bc5e70e07c27506fca00a8d940f86325ec77944517626c3370fd CLSA-2026:1767950193 httpd: Fix of CVE-2025-58098 TuxCare License Agreement 0 - CVE-2025-58098: fix passes the shell-escaped query string to #exec cmd="..." directives Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-58098: fix passes the shell-escaped query string to #exec cmd="..." directives

0 tuxcare-rhel7-els httpd-2.4.6-99.0.5.el7_9.1.tuxcare.els7.x86_64.rpm 72690b8c1e00440b8ff6ee2f9c1c11e5e6a6b0f76f8b10d47d62386f797732da httpd-devel-2.4.6-99.0.5.el7_9.1.tuxcare.els7.x86_64.rpm 4fd8eaf368d8a9cdf409b075775bb6632c000e811880f3cc9a7e2c7f33187a5e httpd-manual-2.4.6-99.0.5.el7_9.1.tuxcare.els7.noarch.rpm 310f3e3ca90375424e27ee274aec5a3fe72ac5145662d76aad32af9b825e3938 httpd-tools-2.4.6-99.0.5.el7_9.1.tuxcare.els7.x86_64.rpm a879b9576d90ceadc305ea02df5bfc3aadfe3006642372236b0b0127b667f7c4 mod_ldap-2.4.6-99.0.5.el7_9.1.tuxcare.els7.x86_64.rpm d3cc68142e6b8cfab1fe5d49093f9096fc39315ab182012f80876c1c73911e05 mod_proxy_html-2.4.6-99.0.5.el7_9.1.tuxcare.els7.x86_64.rpm 8c742e0d336187ec4e095f3c978590bb6a52a9c336014615e38a3e64b420a911 mod_session-2.4.6-99.0.5.el7_9.1.tuxcare.els7.x86_64.rpm 624e1900ea35d672c1bca362721aee1eefc1699766dbafe843de95774235c422 mod_ssl-2.4.6-99.0.5.el7_9.1.tuxcare.els7.x86_64.rpm 3793b915690f900e58f9b9095c2df45119adfeac2fa1646cecb2b44442a76f5a CLSA-2026:1768211438 git: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2025-52005: add sideband.allowControlCharacters config which gives a possibility to avoid control characters in sideband - CVE-2024-52006: fix newline confusion in credential helpers that can lead to credential exfiltration Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-52005: add sideband.allowControlCharacters config which gives a possibility to avoid control characters in sideband - CVE-2024-52006: fix newline confusion in credential helpers that can lead to credential exfiltration

0 tuxcare-rhel7-els emacs-git-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm ac13754f4caf75ad063c497ec97fe1bdff2fa534e043270d89868cfc641fdd65 emacs-git-el-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm 7b2b5c39d18275022b8294f9fd2772fd5ef2c6e312c2fdfdbb112989d2ed6e17 git-1.8.3.1-25.el7_9.tuxcare.els7.x86_64.rpm 8d74928bed592d671ab0c54ded861fc740b241f801b481b5163057bc1a379831 git-all-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm 2a0166d023d1695b3959dc44ee247e1b56d62153690031a56e1655aa7ff37e5d git-bzr-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm c5160eaeb497ec6dc4a65e31183ff0ed49b119f9cdf3198b1885ce04f5639c26 git-cvs-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm 81feabfeff7e37f6f779c325da03ec3e61cde8c8e9cba00fb0c78ec18b68015c git-daemon-1.8.3.1-25.el7_9.tuxcare.els7.x86_64.rpm 77c8f620bf0a3b90878e4cee1e9b358305c702216efed1b0f3e0aeb45671c83d git-email-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm c40dd43a216f46a49d001b7c9c333dabce779b5a77f8d880675d399199a4cbb0 git-gnome-keyring-1.8.3.1-25.el7_9.tuxcare.els7.x86_64.rpm e878e7cd05c5f3e31cd08d9a529d7f3165ad6a5a8d08b31d6de51a3e0b3a638c git-gui-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm 7d256bb1d4542f59c6c1fbf59f430cb27ef81015558b53677954514eb9c2e2d9 git-hg-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm 90c167186a3604486e026b096fea67baf97a5d56ff3a4925266a52175eaff18e git-instaweb-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm f52999b722fda05cb0cee70639bb6889eaaf073e4bcb28771e607f1fbf800074 git-p4-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm 84a1d960600e4ca283a893bdceb6467a8f18a01ac6a30d245d26c5d286a2df14 git-svn-1.8.3.1-25.el7_9.tuxcare.els7.x86_64.rpm beb907408a628c1e13baa3820a756db69b530e2e1f6b08b8ac2cbf034e7865a9 gitk-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm a913a6a3a2e8f2808a4babe501d327bd794bf4c4809e27071e58a45a732def32 gitweb-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm b61b2fa18d464bbcba3e4d1c0ce05533dc6b4aebeed58744f3201dde152047a5 perl-Git-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm db56099f41a97a96bd8767353eb91cd3351d2deb4f0de6b9e1effd1e438599a8 perl-Git-SVN-1.8.3.1-25.el7_9.tuxcare.els7.noarch.rpm aa49d220962d030f7b4ccbe4417d97332aac5ef2b4ae7a1b4919974b1c2f7288 CLSA-2026:1768223578 git: Fix of CVE-2024-32021 TuxCare License Agreement 0 - CVE-2024-32021: fix symlink bypass, abort when hardlinked source and target file differ Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-32021: fix symlink bypass, abort when hardlinked source and target file differ

0 tuxcare-rhel7-els emacs-git-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm c045c409457f0f5754cf62b8074a41152149e5a9e10f5ad407819e53f42b936c emacs-git-el-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm cd49feae314e0ddcd349890eefe2a03922bb70e38d34ee9e8c1de9f831fd5689 git-1.8.3.1-25.el7_9.tuxcare.els8.x86_64.rpm b561b39099b226717b8700a0d315d8cc9d673084e6b7624dd20b5d4ee55097e7 git-all-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm 4e1bfdcf04dcf78a581fc548bbd4367f27bc4e52b10e08dde9b4c6d54368200e git-bzr-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm a5b53010c80210bfb436ca368c37a4af386aaf1b503ff6a9cb2013e7fc770acb git-cvs-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm 0e77467a0b94cf800d844edcca58f5a217813621762d8cd238b2c68d60a7e765 git-daemon-1.8.3.1-25.el7_9.tuxcare.els8.x86_64.rpm f8c4fa55822b57ccbf8b7aeba7f067fa2a7d31c9b9fbad41cbe6eb3d05692ede git-email-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm 1fe9eb354110a5bd8c73b23d2e25ab62b55ae79f1c86ff874e793574fac5319b git-gnome-keyring-1.8.3.1-25.el7_9.tuxcare.els8.x86_64.rpm b2cdba6a7bf4220fe3dc1dcf5b7e1c8eee596ec44e233a0b3bc3a13549f33e37 git-gui-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm 29db8a668b44e0f6f4689382e8cde7d18758892a1fc04e53ff9242723a76e45f git-hg-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm 4f7baaad76f75203d5c60c690a7383dbe8e560bb8aabaeecbb2b42d6c65ba878 git-instaweb-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm ca6e6034c35e5dc92c4b114e8ade43677c3b354f37740871de2a0ee5218f88e2 git-p4-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm ac65da863f276d176a7fa6c36db595025f16119437a12a5bd16e3feab4ff96a3 git-svn-1.8.3.1-25.el7_9.tuxcare.els8.x86_64.rpm eabd5606f1736f1fbd07292f76be52e6b821d8172633cc84831a8023cac53128 gitk-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm ff0956e1539f281eeb615ab01e8bb7a4cdd193f4e29056ca3eaba77a313748cf gitweb-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm 55a93cd6fe17ec100d7eb559b9f04802ffcd66e22d4843d3c23ef85636ef0c08 perl-Git-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm 62fa46fa5d1fae950da3367b72c65a20f9eb93b79f6a3969088d2552b444af62 perl-Git-SVN-1.8.3.1-25.el7_9.tuxcare.els8.noarch.rpm 27d898479f0fda1977dc10f9218ba8c280d6b77dd31ec0a56654314b512aaecd CLSA-2026:1768224107 perl: Fix of CVE-2023-31484 TuxCare License Agreement 0 - CVE-2023-31484: add verify_SSL=>1 to HTTP::Tiny to verify https server identity Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2023-31484: add verify_SSL=>1 to HTTP::Tiny to verify https server identity

0 tuxcare-rhel7-els perl-5.16.3-299.el7_9.tuxcare.els1.x86_64.rpm e8f09cdc912a7a3a8bd353de86ffb49abf5633e5d7dd2202546f83dd338f1453 perl-CPAN-1.9800-299.el7_9.tuxcare.els1.noarch.rpm b1f784adba1f355062b7343c8196dde7b2149485a5b5f868b2399a2448fd5cc4 perl-ExtUtils-CBuilder-0.28.2.6-299.el7_9.tuxcare.els1.noarch.rpm c7af63fe91fe6744d3ffb97904c2ee332a810c8551538fd7cad582a71159ebce perl-ExtUtils-Embed-1.30-299.el7_9.tuxcare.els1.noarch.rpm e8d8c01b896d5968ab15d59ed230e1a228ba84626fb7bd7652a082abd43f9d5c perl-ExtUtils-Install-1.58-299.el7_9.tuxcare.els1.noarch.rpm 21ed3c7c46757c7ce0598d9172d3fabeb6e3a9cbf635a205572b14543ed1446e perl-IO-Zlib-1.10-299.el7_9.tuxcare.els1.noarch.rpm 0fcc559a869547cbfa2b0ed1b75e28eaeb8cda8b791256e93120d15c0410bd5b perl-Locale-Maketext-Simple-0.21-299.el7_9.tuxcare.els1.noarch.rpm 367b697dab28ba896d07136688d532aaef470d1f98f2c3a75a3c5cfe8872091e perl-Module-CoreList-2.76.02-299.el7_9.tuxcare.els1.noarch.rpm 4f508ac816e2c4cc770ac63300b30eabe6af1ee0cda3e8f69280c5141f061f2a perl-Module-Loaded-0.08-299.el7_9.tuxcare.els1.noarch.rpm 8b4c98cf56efbaa7c4b0d85915dcd846274eeeb36829167d08461c8a002144d3 perl-Object-Accessor-0.42-299.el7_9.tuxcare.els1.noarch.rpm bff5d9c63e7afaf6862b09df52517f10f1ea781eb380f459094e4f2af778bec4 perl-Package-Constants-0.02-299.el7_9.tuxcare.els1.noarch.rpm 5d6d91aec46e8682861b4403dc24c987cf7e9e040dcd411436631de4a2146b69 perl-Pod-Escapes-1.04-299.el7_9.tuxcare.els1.noarch.rpm c8a8cfd703028e45aa4696cb2e7b65e34635ca7d93d35cd80c530b39637aba48 perl-Time-Piece-1.20.1-299.el7_9.tuxcare.els1.x86_64.rpm e34e689168c693e277bfa4893a6946ca026a553d6242bc2dff67489a0c768c8b perl-core-5.16.3-299.el7_9.tuxcare.els1.x86_64.rpm e98d7ffb711c55c073296c9d8302db12e5c6d7faec5d91cc709042b6f941cc05 perl-devel-5.16.3-299.el7_9.tuxcare.els1.i686.rpm 3195e5052e4c49dae2747032ad9252f1504c24be7096cd8fcfc9f8546ce207c1 perl-devel-5.16.3-299.el7_9.tuxcare.els1.x86_64.rpm a425c43f07f8483730db563ca21460b1249b2bdbea63d066d3d7b2020bf2e89c perl-libs-5.16.3-299.el7_9.tuxcare.els1.i686.rpm 3119892397d65992e8d5168f02781e03954e115736fda5e44a523f6cf28afc93 perl-libs-5.16.3-299.el7_9.tuxcare.els1.x86_64.rpm e1105a6888fe53493515a2495711ab78757a9eeb1992192777d5b2573dd28e6a perl-macros-5.16.3-299.el7_9.tuxcare.els1.x86_64.rpm 5a65c3cefe7985b69f1e5c8022c588783d7d0389de52f3f9f7f91f8895b2b731 perl-tests-5.16.3-299.el7_9.tuxcare.els1.x86_64.rpm 5c6e9a9ee12181ba05b20ff6b482ef6d76e3d7ad20c3cdd1ebda013d98c6a1fb CLSA-2026:1768825166 kernel: Fix of 7 CVEs TuxCare License Agreement 0 - fs/proc: fix uaf in proc_readdir_de() {CVE-2025-40271} - fs: fix UAF/GPF bug in nilfs_mdt_destroy {CVE-2022-2978} - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp {CVE-2023-53297} - net: sched: sfb: fix null pointer access issue when sfb_init() fails {CVE-2022-50356} - ALSA: usb-audio: Fix size validation in convert_chmap_v3() - nfsd: don't ignore the return code of svc_proc_register() {CVE-2025-22026} - net: usb: smsc75xx: Move packet length check to prevent kernel panic in skb_pull {CVE-2023-53104} - net/sched: sch_qfq: Avoid triggering might_sleep in atomic context in qfq_delete_class - HID: stop exporting hid_snto32() - HID: simplify snto32() - HID: core: fix shift-out-of-bounds in hid_report_raw_event {CVE-2022-48978} - HID: core: detect and skip invalid inputs to snto32() - HID: core: don't use negative operands when shift Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- fs/proc: fix uaf in proc_readdir_de() {CVE-2025-40271} - fs: fix UAF/GPF bug in nilfs_mdt_destroy {CVE-2022-2978} - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp {CVE-2023-53297} - net: sched: sfb: fix null pointer access issue when sfb_init() fails {CVE-2022-50356} - ALSA: usb-audio: Fix size validation in convert_chmap_v3() - nfsd: don't ignore the return code of svc_proc_register() {CVE-2025-22026} - net: usb: smsc75xx: Move packet length check to prevent kernel panic in skb_pull {CVE-2023-53104} - net/sched: sch_qfq: Avoid triggering might_sleep in atomic context in qfq_delete_class - HID: stop exporting hid_snto32() - HID: simplify snto32() - HID: core: fix shift-out-of-bounds in hid_report_raw_event {CVE-2022-48978} - HID: core: detect and skip invalid inputs to snto32() - HID: core: don't use negative operands when shift

0 tuxcare-rhel7-els bpftool-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm bb37dc50cdd1313b7740482fcba764447efe328dc777c8bd66aae9724445511d kernel-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm 2977c85c0028d7c517fc25c2c83f4ba04227b5e470c0e0e7158d0aeb648b9cb4 kernel-debug-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm 942c5b232e1662a38573738d0c985592cea3332cb24a07b85bc0f850f327b1f3 kernel-debug-devel-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm 4f56d43b4c98185e3121bf541e0fa362768e02a4c96fb6366c35939258b6dd17 kernel-devel-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm c490282d40f665223c29894edcad350558ef065807ecbdceea0fd538a2e59ef6 kernel-headers-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm d6b42fa89716a03b58d059561e35673f756d6ee4117cdcd598ace9980dd64688 kernel-tools-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm 1c3c3e304142089ff67a941e6e715a9c43e575da0636c14a325a46c871864d96 kernel-tools-libs-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm b81484e62efdb189954a12672891089c5dab1d02e89652071845b69334ea4900 kernel-tools-libs-devel-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm c097e9f91ca8726866710caa62c96eb592a0c008e251dbcf7707b25b17b1b793 perf-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm b2c858cd0b2c024d87fd467fb8dc07ea0c31556808dca5f3714a13dcabe556e2 python-perf-3.10.0-1160.142.1.el7.tuxcare.els1.x86_64.rpm 5f022cca1599cbf1fdfcd70b2b8cdf75a106ad0beda53ebe3284d45b1392a7e8 CLSA-2026:1769182554 gnupg2: Fix of CVE-2025-68973 TuxCare License Agreement 0 - CVE-2025-68973: fix memory corruption in the armor parser that leads to out-of-bounds write for malicious input Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-68973: fix memory corruption in the armor parser that leads to out-of-bounds write for malicious input

0 tuxcare-rhel7-els gnupg2-2.0.22-5.el7_5.tuxcare.els1.x86_64.rpm 56101522630cf30ea746d9a3f7ff7deb9e500acdeda7ae44a1d0f8ace39ca9a8 gnupg2-smime-2.0.22-5.el7_5.tuxcare.els1.x86_64.rpm 49470072b0c8e60a0edcc83b46af907db5d4cbbf123e25067e2421c87aed263b CLSA-2026:1769598900 libsoup: Fix of CVE-2025-14523 TuxCare License Agreement 0 - CVE-2025-14523: reject duplicate Host headers to prevent request smuggling, cache poisoning, and host-based access control bypass attacks Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-14523: reject duplicate Host headers to prevent request smuggling, cache poisoning, and host-based access control bypass attacks

0 tuxcare-rhel7-els libsoup-2.62.2-2.0.5.el7.tuxcare.els3.i686.rpm f73cb5783554fcd97561961b580983faa8541d32568b32b42da807adf6ef43c9 libsoup-2.62.2-2.0.5.el7.tuxcare.els3.x86_64.rpm f65eecdbe8ec27bd537ef628b8329014c0815c7664db079dea61fe65e4ee751f libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els3.i686.rpm cf43fe918aebafbbce1fb5922a6947cd12de0b69fe26d3adaa7766a29c2a3e4b libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els3.x86_64.rpm 189103e3489ea27d77aa3193336b41ae91dd20d2c66d1b616bd198521b49ea0a CLSA-2026:1770028764 kernel: Fix of 14 CVEs TuxCare License Agreement 0 - efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare {CVE-2025-39817} - scsi: ses: Fix possible desc_ptr out-of-bounds accesses {CVE-2023-53675} - ipv6: Fix out-of-bounds access in ipv6_find_tlv() {CVE-2023-53705} - libceph: fix potential use-after-free in have_mon_and_osd_map() {CVE-2025-68285} - scsi: lpfc: Fix use-after-free KFENCE violation during sysfs firmware write {CVE-2023-53282} - Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times {CVE-2022-50419} - firewire: net: fix use after free in fwnet_finish_incoming_packet() {CVE-2023-53432} - net: openvswitch: fix nested key length validation in the set() action - wifi: mac80211_hwsim: drop short frames {CVE-2023-53321} - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() {CVE-2022-50422} - fix: crypto: lzo - Fix compression buffer overrun - fix: NFSD: Protect against send buffer overflow in NFSv2 READ - cifs: fix oops during encryption {CVE-2022-50341} - SMB3: Kernel oops mounting a encryptData share with CONFIG_DEBUG_VIRTUAL - fix smb3-encryption breakage when CONFIG_DEBUG_SG=y - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp {CVE-2023-53297} - iomap: iomap: fix memory corruption when recording errors during writeback {CVE-2022-50406} - mm: zswap: fix missing folio cleanup in writeback race path {CVE-2024-26832} - mm: fix zswap writeback race condition - Bluetooth: prefetch channel before killing sock - Bluetooth: Fix l2cap_disconnect_req deadlock - Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} {CVE-2023-53827} - Bluetooth: Fix refcount use-after-free issue - Bluetooth: Check state in l2cap_disconnect_rsp - Bluetooth: L2CAP: Fix build errors in some archs - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression - Bluetooth: use the correct print format for L2CAP debug statements - i40e: fix Jumbo Frame support after iPXE boot - i40e: Report MFS in decimal base instead of hex - i40e: Fix unexpected MFS warning message - i40e: Add a check to see if MFS is set - bitops: Add non-atomic bitops for pointers - bitfield: Add FIELD_MODIFY() helper Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- efivarfs: Fix slab-out-of-bounds in efivarfs_d_compare {CVE-2025-39817} - scsi: ses: Fix possible desc_ptr out-of-bounds accesses {CVE-2023-53675} - ipv6: Fix out-of-bounds access in ipv6_find_tlv() {CVE-2023-53705} - libceph: fix potential use-after-free in have_mon_and_osd_map() {CVE-2025-68285} - scsi: lpfc: Fix use-after-free KFENCE violation during sysfs firmware write {CVE-2023-53282} - Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times {CVE-2022-50419} - firewire: net: fix use after free in fwnet_finish_incoming_packet() {CVE-2023-53432} - net: openvswitch: fix nested key length validation in the set() action - wifi: mac80211_hwsim: drop short frames {CVE-2023-53321} - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() {CVE-2022-50422} - fix: crypto: lzo - Fix compression buffer overrun - fix: NFSD: Protect against send buffer overflow in NFSv2 READ - cifs: fix oops during encryption {CVE-2022-50341} - SMB3: Kernel oops mounting a encryptData share with CONFIG_DEBUG_VIRTUAL - fix smb3-encryption breakage when CONFIG_DEBUG_SG=y - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp {CVE-2023-53297} - iomap: iomap: fix memory corruption when recording errors during writeback {CVE-2022-50406} - mm: zswap: fix missing folio cleanup in writeback race path {CVE-2024-26832} - mm: fix zswap writeback race condition - Bluetooth: prefetch channel before killing sock - Bluetooth: Fix l2cap_disconnect_req deadlock - Bluetooth: L2CAP: Fix use-after-free in l2cap_disconnect_{req,rsp} {CVE-2023-53827} - Bluetooth: Fix refcount use-after-free issue - Bluetooth: Check state in l2cap_disconnect_rsp - Bluetooth: L2CAP: Fix build errors in some archs - Bluetooth: L2CAP: Fix l2cap_global_chan_by_psm regression - Bluetooth: use the correct print format for L2CAP debug statements - i40e: fix Jumbo Frame support after iPXE boot - i40e: Report MFS in decimal base instead of hex - i40e: Fix unexpected MFS warning message - i40e: Add a check to see if MFS is set - bitops: Add non-atomic bitops for pointers - bitfield: Add FIELD_MODIFY() helper

0 tuxcare-rhel7-els bpftool-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm ab8ff2381af1343aa4544dcfb6e91b0345837b3eb2e17702b4ebca7c7e1a4633 kernel-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm 3bf4e636d04f40a27a4bdc4be4accf338dc36072232f7cffa886cfea3715e3bc kernel-debug-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm 7aeaca79b9d6a93503ac6ba1577978041c91ab5a4fe01a3a7f5825fe9e2eb2ee kernel-debug-devel-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm f0b9bf99ccae1b8b01cfa7a54b90a427975cc161eca12dfa22a5ba748f1c9141 kernel-devel-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm e6716e2aee667b352da5af7ee1cf574ef5c070f88cbe996aa3bd082ad3209bab kernel-headers-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm 3329cc59d97683f51933cd39d3e2c287cd8a661ea46bb5411f4aae719bcde44b kernel-tools-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm 57b70f1cf5b448292a4150b9c5e58750280ebc11ab3fcc97e520a225c69527b8 kernel-tools-libs-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm ebc853a8fc9100179d05b57434383c89997b684165ec34fe34ea4a598ca22769 kernel-tools-libs-devel-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm 1a5d4b012134319156a225db1cadeecb98028c83b23a6887bbffd339ad89715b perf-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm 74dcf918087392e50b7836aaf7aec585a0305b59ca3b6287912743268e8ba774 python-perf-3.10.0-1160.144.1.el7.tuxcare.els1.x86_64.rpm 7177cf697b85a208ceae112a043f883ba22b4628790a0f2242c8f88bc3b9a55c CLSA-2026:1770118623 java-1.8.0-openjdk: Fix of CVE-2026-21945 TuxCare License Agreement 0 - Update to openjdk-shenandoah-jdk8u-shenandoah-jdk8u482-b03. - CVE-2026-21945: Security component vulnerability allowing unauthenticated attacker with network access to cause hang or crash (DoS). Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Update to openjdk-shenandoah-jdk8u-shenandoah-jdk8u482-b03. - CVE-2026-21945: Security component vulnerability allowing unauthenticated attacker with network access to cause hang or crash (DoS).

0 tuxcare-rhel7-els java-1.8.0-openjdk-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm b4801475fc4f6c2a504fafb2a133b5d13bdf57b4f147da06b44d0955ff3435cc java-1.8.0-openjdk-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm 016f2fcefd7a11f65ad6673eeeb7aba2904856ac3ae1b1c9e8d48f0bdd63f21e java-1.8.0-openjdk-accessibility-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm c0b18da3486bcfa72222e21678c8ebfed63587a3d128a97cc43c0fd5aaf1d27e java-1.8.0-openjdk-accessibility-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm 45640c2c9a5a89cbcd320f34742b36763b60cb9afb7c7499f7b3be1f2885f6b4 java-1.8.0-openjdk-accessibility-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm cf75ee5822a8b520b0a0f4104e0edfd7b93ec2999f4bba310ba6b36f4f538a89 java-1.8.0-openjdk-accessibility-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm 21dce738a0f7d789500fc2b70a037e47572df4224374ecda354b28ba4251494c java-1.8.0-openjdk-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm edfb2a38d0c9e3e472fa3a9a3c7391163d04fac4f2af454e9c2f52c5a02ee869 java-1.8.0-openjdk-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm 681bd1aaab58de85602e52566645b54a249c49068cd36e7e2544ae4bd0f45459 java-1.8.0-openjdk-demo-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm 030196dd1ff8852094b2be790f3b0abb5db16abffbb6f3bca0a9e4966c26a107 java-1.8.0-openjdk-demo-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm 9750228435b227edd0a20a73c009b5c605efed11919dae2c4e3cc3f1167d7bb4 java-1.8.0-openjdk-demo-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm 9684ccf06f0092bf7ebe644f0cf4046bec8a6b29f469c010a071b2b4889c75e0 java-1.8.0-openjdk-demo-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm b015f6957e9b4a3a1953bd6ec4d769cae64d7885ef406d11cd1d5145b7741497 java-1.8.0-openjdk-devel-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm e59cd2bf435f037d8b6b2fde8b51dc40a07c25232e3532e09f82ba3591332005 java-1.8.0-openjdk-devel-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm bde717f8073f297c661c205f480c749b91f65fc2be7acd6a47b9e98751a45d4c java-1.8.0-openjdk-devel-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm 2a01d1548ef15127610f149a8638784077de8aa3092da53b1f1450b716379e75 java-1.8.0-openjdk-devel-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm e5035d1b4e10bd5d8ce1d3161bdb87218c013471054d34bd929948a0b3cf64f1 java-1.8.0-openjdk-headless-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm 455d6d8ce347a30ee1cdcbab9f0396c85adc453f9fdc338aa70a6791168cf03b java-1.8.0-openjdk-headless-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm c81396d1a1be20c7b860ff4fce393950ee33b1646f6530e86234a2f410d29633 java-1.8.0-openjdk-headless-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm 9f85773323287eefb66e138ecadc12074617487ca863c719144740da28323b40 java-1.8.0-openjdk-headless-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm 293f3419b00b063b0fe218ba3168e2545f80e99fc5e5088dc813e1a78cdde2ff java-1.8.0-openjdk-javadoc-1.8.0.482.b03-1.el7_9.tuxcare.els1.noarch.rpm 64bd18bb37e7084c2c244c4ee847f98628480945eb5767a2a5e95e9f11c1ebab java-1.8.0-openjdk-javadoc-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.noarch.rpm ec79ca698442f790aea0374b60614e07e6419b10cf9b74d4368466c148ccaf92 java-1.8.0-openjdk-javadoc-zip-1.8.0.482.b03-1.el7_9.tuxcare.els1.noarch.rpm cc7c9ddb9d76c8c7346045f4d6e58834306a297b567b8a10aee63abf34baca48 java-1.8.0-openjdk-javadoc-zip-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.noarch.rpm 5de27a85f538de4da3d61b4b36e6179ca5309c83b84f298d966fc9798087e772 java-1.8.0-openjdk-src-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm d7bf61919ee855c6cb5354ad553a496bca6bc591aae7c0eb5a3b9e1b95fd094c java-1.8.0-openjdk-src-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm 6a0c8da34121328ccfe1dcb7a2aa5b4a19a5506df449fa5a46b128775d23783b java-1.8.0-openjdk-src-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.i686.rpm 9ed3a8cc9f75b017edb318e466ea9edbcbd5aace2e7d1544c259c75b9bdd5940 java-1.8.0-openjdk-src-debug-1.8.0.482.b03-1.el7_9.tuxcare.els1.x86_64.rpm 9e739c66c4df6ba42b2f51ad2e7467f712a5a814d27af0a3dcfe623d82194786 CLSA-2026:1770213583 Update of microcode_ctl TuxCare License Agreement 0 - Update Intel CPU microcode to 20251111: - Addition of cpuid:806F8/0x10 (SPR-HBM B3) microcode (in microcode.dat) at revision 0x2c000410; - Addition of cpuid:806F8/0x87 (SPR-SP E5/S3) microcode (in microcode.dat) at revision 0x2b000650; - Addition of cpuid:90672/0x07 (ADL-HX/S 8+8 C0) microcode (in microcode.dat) at revision 0x3d; - Addition of cpuid:906A3/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in microcode.dat) at revision 0x43a; - Addition of cpuid:A06E1/0x97 microcode (in microcode.dat) at revision 0x1000273; - Addition of cpuid:B0671/0x32 (RPL-S B0) microcode (in microcode.dat) at revision 0x132; - Addition of cpuid:B06A2/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in microcode.dat) at revision 0x6133; - Addition of cpuid:C0662/0x82 (ARL-HX 8P/S B0) microcode (in microcode.dat) at revision 0x11a; - Addition of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x210002c0; - Removal of cpuid:50656/0xbf (CLX-SP B0) microcode (in microcode.dat) at revision 0x4003605; - Removal of cpuid:806F8/0x10 (SPR-HBM B3) microcode (in microcode.dat) at revision 0x2c000401; - Removal of cpuid:806F8/0x87 (SPR-SP E5/S3) microcode (in microcode.dat) at revision 0x2b000643; - Removal of cpuid:90672/0x07 (ADL-HX/S 8+8 C0) microcode (in microcode.dat) at revision 0x3a; - Removal of cpuid:906A3/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in microcode.dat) at revision 0x437; - Removal of cpuid:B0671/0x32 (RPL-S B0) microcode (in microcode.dat) at revision 0x12f; - Removal of cpuid:B06A2/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in microcode.dat) at revision 0x4129; - Removal of cpuid:C0662/0x82 (ARL-HX 8P/S B0) microcode (in microcode.dat) at revision 0x119; - Removal of cpuid:C06F1/0x87 (EMR-SP A0) microcode (in microcode.dat) at revision 0x21000291; - Removal of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x21000291; - Removal of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x210002b3; - Update of cpuid:806F4/0x10 microcode (in microcode.dat) from revision 0x2c000401 up to 0x2c000410; - Update of cpuid:806F4/0x87 (SPR-SP E0/S1) microcode (in microcode.dat) from revision 0x2b000643 up to 0x2b000650; - Update of cpuid:806F5/0x10 (SPR-HBM B1) microcode (in microcode.dat) from revision 0x2c000401 up to 0x2c000410; - Update of cpuid:806F5/0x87 (SPR-SP E2) microcode (in microcode.dat) from revision 0x2b000643 up to 0x2b000650; - Update of cpuid:806F6/0x10 microcode (in microcode.dat) from revision 0x2c000401 up to 0x2c000410; - Update of cpuid:806F6/0x87 (SPR-SP E3) microcode (in microcode.dat) from revision 0x2b000643 up to 0x2b000650; - Update of cpuid:806F7/0x87 (SPR-SP E4/S2) microcode (in microcode.dat) from revision 0x2b000643 up to 0x2b000650; - Update of cpuid:90675/0x07 (ADL-S 6+0 K0) microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:906A4/0x40 (AZB A0) microcode (in microcode.dat) from revision 0xa up to 0xb; - Update of cpuid:906A4/0x80 (ADL-P 2+8 R0) microcode (in microcode.dat) from revision 0x437 up to 0x43a; - Update of cpuid:A06D1/0x20 (GNR-AP/SP H0) microcode (in microcode.dat) from revision 0xa000100 up to 0xa000124; - Update of cpuid:A06D1/0x95 (GNR-AP/SP B0) microcode (in microcode.dat) from revision 0x10003d0 up to 0x10003f0; - Update of cpuid:A06F3/0x01 (SRF-SP C0) microcode (in microcode.dat) from revision 0x3000362 up to 0x3000382; - Update of cpuid:B0674/0x32 microcode (in microcode.dat) from revision 0x12f up to 0x132; - Update of cpuid:B06A3/0xe0 (RPL-U 2+8 Q0) microcode (in microcode.dat) from revision 0x4129 up to 0x6133; - Update of cpuid:B06A8/0xe0 microcode (in microcode.dat) from revision 0x4129 up to 0x6133; - Update of cpuid:B06D1/0x80 (LNL B0) microcode (in microcode.dat) from revision 0x123 up to 0x125; - Update of cpuid:B06E0/0x19 (ADL-N A0) microcode (in microcode.dat) from revision 0x1d up to 0x1e; - Update of cpuid:B06F2/0x07 (ADL C0) microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:B06F5/0x07 (ADL C0) microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:B06F6/0x07 microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:B06F7/0x07 microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:C0652/0x82 (ARL-H A1) microcode (in microcode.dat) from revision 0x119 up to 0x11a; - Update of cpuid:C0664/0x82 microcode (in microcode.dat) from revision 0x119 up to 0x11a; - Update of cpuid:C06A2/0x82 microcode (in microcode.dat) from revision 0x119 up to 0x11a; - Update of cpuid:C06F1/0x87 (EMR-SP A0) microcode (in microcode.dat) from revision 0x210002b3 up to 0x210002c0; None Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Update Intel CPU microcode to 20251111: - Addition of cpuid:806F8/0x10 (SPR-HBM B3) microcode (in microcode.dat) at revision 0x2c000410; - Addition of cpuid:806F8/0x87 (SPR-SP E5/S3) microcode (in microcode.dat) at revision 0x2b000650; - Addition of cpuid:90672/0x07 (ADL-HX/S 8+8 C0) microcode (in microcode.dat) at revision 0x3d; - Addition of cpuid:906A3/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in microcode.dat) at revision 0x43a; - Addition of cpuid:A06E1/0x97 microcode (in microcode.dat) at revision 0x1000273; - Addition of cpuid:B0671/0x32 (RPL-S B0) microcode (in microcode.dat) at revision 0x132; - Addition of cpuid:B06A2/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in microcode.dat) at revision 0x6133; - Addition of cpuid:C0662/0x82 (ARL-HX 8P/S B0) microcode (in microcode.dat) at revision 0x11a; - Addition of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x210002c0; - Removal of cpuid:50656/0xbf (CLX-SP B0) microcode (in microcode.dat) at revision 0x4003605; - Removal of cpuid:806F8/0x10 (SPR-HBM B3) microcode (in microcode.dat) at revision 0x2c000401; - Removal of cpuid:806F8/0x87 (SPR-SP E5/S3) microcode (in microcode.dat) at revision 0x2b000643; - Removal of cpuid:90672/0x07 (ADL-HX/S 8+8 C0) microcode (in microcode.dat) at revision 0x3a; - Removal of cpuid:906A3/0x80 (ADL-P 6+8/U 9W L0/R0) microcode (in microcode.dat) at revision 0x437; - Removal of cpuid:B0671/0x32 (RPL-S B0) microcode (in microcode.dat) at revision 0x12f; - Removal of cpuid:B06A2/0xe0 (RPL-H 6+8/P 6+8 J0) microcode (in microcode.dat) at revision 0x4129; - Removal of cpuid:C0662/0x82 (ARL-HX 8P/S B0) microcode (in microcode.dat) at revision 0x119; - Removal of cpuid:C06F1/0x87 (EMR-SP A0) microcode (in microcode.dat) at revision 0x21000291; - Removal of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x21000291; - Removal of cpuid:C06F2/0x87 (EMR-SP A1) microcode (in microcode.dat) at revision 0x210002b3; - Update of cpuid:806F4/0x10 microcode (in microcode.dat) from revision 0x2c000401 up to 0x2c000410; - Update of cpuid:806F4/0x87 (SPR-SP E0/S1) microcode (in microcode.dat) from revision 0x2b000643 up to 0x2b000650; - Update of cpuid:806F5/0x10 (SPR-HBM B1) microcode (in microcode.dat) from revision 0x2c000401 up to 0x2c000410; - Update of cpuid:806F5/0x87 (SPR-SP E2) microcode (in microcode.dat) from revision 0x2b000643 up to 0x2b000650; - Update of cpuid:806F6/0x10 microcode (in microcode.dat) from revision 0x2c000401 up to 0x2c000410; - Update of cpuid:806F6/0x87 (SPR-SP E3) microcode (in microcode.dat) from revision 0x2b000643 up to 0x2b000650; - Update of cpuid:806F7/0x87 (SPR-SP E4/S2) microcode (in microcode.dat) from revision 0x2b000643 up to 0x2b000650; - Update of cpuid:90675/0x07 (ADL-S 6+0 K0) microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:906A4/0x40 (AZB A0) microcode (in microcode.dat) from revision 0xa up to 0xb; - Update of cpuid:906A4/0x80 (ADL-P 2+8 R0) microcode (in microcode.dat) from revision 0x437 up to 0x43a; - Update of cpuid:A06D1/0x20 (GNR-AP/SP H0) microcode (in microcode.dat) from revision 0xa000100 up to 0xa000124; - Update of cpuid:A06D1/0x95 (GNR-AP/SP B0) microcode (in microcode.dat) from revision 0x10003d0 up to 0x10003f0; - Update of cpuid:A06F3/0x01 (SRF-SP C0) microcode (in microcode.dat) from revision 0x3000362 up to 0x3000382; - Update of cpuid:B0674/0x32 microcode (in microcode.dat) from revision 0x12f up to 0x132; - Update of cpuid:B06A3/0xe0 (RPL-U 2+8 Q0) microcode (in microcode.dat) from revision 0x4129 up to 0x6133; - Update of cpuid:B06A8/0xe0 microcode (in microcode.dat) from revision 0x4129 up to 0x6133; - Update of cpuid:B06D1/0x80 (LNL B0) microcode (in microcode.dat) from revision 0x123 up to 0x125; - Update of cpuid:B06E0/0x19 (ADL-N A0) microcode (in microcode.dat) from revision 0x1d up to 0x1e; - Update of cpuid:B06F2/0x07 (ADL C0) microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:B06F5/0x07 (ADL C0) microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:B06F6/0x07 microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:B06F7/0x07 microcode (in microcode.dat) from revision 0x3a up to 0x3d; - Update of cpuid:C0652/0x82 (ARL-H A1) microcode (in microcode.dat) from revision 0x119 up to 0x11a; - Update of cpuid:C0664/0x82 microcode (in microcode.dat) from revision 0x119 up to 0x11a; - Update of cpuid:C06A2/0x82 microcode (in microcode.dat) from revision 0x119 up to 0x11a; - Update of cpuid:C06F1/0x87 (EMR-SP A0) microcode (in microcode.dat) from revision 0x210002b3 up to 0x210002c0;

0 tuxcare-rhel7-els microcode_ctl-2.1-73.26.el7_9.tuxcare.els1.x86_64.rpm 9f2c319b012e0e6c64630ccc97f88986fd32f5c4652fb15fe796a66b14171755 CLSA-2026:1770392948 glib2: Fix of CVE-2025-13601 TuxCare License Agreement 0 - CVE-2025-13601: Fix heap-based buffer overflow by correcting buffer size calculation in g_escape_uri_string() function Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-13601: Fix heap-based buffer overflow by correcting buffer size calculation in g_escape_uri_string() function

0 tuxcare-rhel7-els glib2-2.56.1-9.el7_9.tuxcare.els4.i686.rpm 9293101618e8386b2d5d7a5f8b61b36c28c01b57d1d71d439f4635573027aa8e glib2-2.56.1-9.el7_9.tuxcare.els4.x86_64.rpm 2618ca7632ce14a8a3a2ca92bf91017263b487bcf46e5f5c9dc324aca741b1f5 glib2-devel-2.56.1-9.el7_9.tuxcare.els4.i686.rpm cd1faf98c640c415fb720847f24a2ebb57c6b844911c80447b552a5ecb290031 glib2-devel-2.56.1-9.el7_9.tuxcare.els4.x86_64.rpm 8bb3cad5cf0248b41fb4f8d7d419254b2b2152be3037b65f6bf4f89a5dc47f05 glib2-doc-2.56.1-9.el7_9.tuxcare.els4.noarch.rpm 3d8d2df079b34479d6e768afb736f2aba2aceab58a67380318e269500d944aae glib2-fam-2.56.1-9.el7_9.tuxcare.els4.x86_64.rpm 848f2e492732b93e96bfb2364ad4d72f186e2f3076f65946890bf0ca150ca365 glib2-static-2.56.1-9.el7_9.tuxcare.els4.i686.rpm 092288e13f1b3d0f99d82d863347bbcb17e7aa5e67972a4e0909aa76578c2536 glib2-static-2.56.1-9.el7_9.tuxcare.els4.x86_64.rpm b4133f601a8abbcbba6f249e3cd2f4bdec64cc3709532c5abd525cd219cef8af glib2-tests-2.56.1-9.el7_9.tuxcare.els4.x86_64.rpm 1fa71930f10a7ab4aaff7aba6d00860ca7dbda58ec883483c9d200c9ca573dba CLSA-2026:1770735752 expat: Fix of CVE-2026-24515 TuxCare License Agreement 0 - CVE-2026-24515: Fix a null pointer dereference in the XML parser caused by the failure to copy user data for unknown encoding handlers Low Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2026-24515: Fix a null pointer dereference in the XML parser caused by the failure to copy user data for unknown encoding handlers

0 tuxcare-rhel7-els expat-2.1.0-15.0.1.el7_9.tuxcare.els2.i686.rpm d3422fa4041df0a1720f25e6bf7adb1d3822b5955142f44ffe22b750610cd2f8 expat-2.1.0-15.0.1.el7_9.tuxcare.els2.x86_64.rpm 4cd3269fc4892edaed6f9f4d3ac122debdedede9f003b5667ff491fc604f0da3 expat-devel-2.1.0-15.0.1.el7_9.tuxcare.els2.i686.rpm 1583d089f6a378e42af724cfa442700d296d755796af4f05841e06373d298b60 expat-devel-2.1.0-15.0.1.el7_9.tuxcare.els2.x86_64.rpm 40b9d31f66a9702cb2cabab3a281681d00bcfd9dd0866abeb56a89152e5ad742 expat-static-2.1.0-15.0.1.el7_9.tuxcare.els2.i686.rpm 1ed52359cc63878d531f1dcc6c6a3ebe1141364284a7ae801f372d9a1acfec62 expat-static-2.1.0-15.0.1.el7_9.tuxcare.els2.x86_64.rpm cf74d0b293fb358daee69e8f50e93dbba091c16e4856c3f95e9b3c346c8784ef CLSA-2026:1770821221 openssl: Fix of CVE-2025-69421 TuxCare License Agreement 0 - CVE-2025-69421: fix NULL dereference in PKCS12_item_decrypt_d2i_ex() Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-69421: fix NULL dereference in PKCS12_item_decrypt_d2i_ex()

0 tuxcare-rhel7-els openssl-1.0.2k-26.el7_9.tuxcare.els7.x86_64.rpm 5ddd5dcb9ff2b9cd7717ca904ffff03bf243f5bdca5c9aa57775b8f0aff58720 openssl-devel-1.0.2k-26.el7_9.tuxcare.els7.i686.rpm 1194b2ffffc35e5d349d334d03b8cd4e2c518493f5221af036387fe7f2fb8122 openssl-devel-1.0.2k-26.el7_9.tuxcare.els7.x86_64.rpm c287b3152e92cd4bda4c54cb00abdb839ff38368e4ddc08535a557dfe6f52534 openssl-libs-1.0.2k-26.el7_9.tuxcare.els7.i686.rpm a661952fcd21e80c7bccd63f39e773124f2d804b7032b16c4f3ca6f82046832e openssl-libs-1.0.2k-26.el7_9.tuxcare.els7.x86_64.rpm 9ea0424e09879238fc9471dfbcd23a0a9b53db4fcdb05e89861b5e15b0b204f8 openssl-perl-1.0.2k-26.el7_9.tuxcare.els7.x86_64.rpm 838676f395b7a8454457859492676537d159f9edc6b4ca76ac13d45798c9e27d openssl-static-1.0.2k-26.el7_9.tuxcare.els7.i686.rpm 492fb8b158bfed5d4f45b6c7889d3963fed29ef00009459572b4d6466a10aef5 openssl-static-1.0.2k-26.el7_9.tuxcare.els7.x86_64.rpm cf5c8559c9abd6bd6f2457693e5f37c2a60905c1d83218b83c1dfcb19275a2dd CLSA-2026:1771009112 Update of nss TuxCare License Agreement 0 - update to CKBI 2.82 from NSS 3.120 - updated certificates: - # Certificate "ePKI Root Certification Authority" - # Certificate "GlobalSign Root CA" - # Certificate "Entrust.net Premium 2048 Secure Server CA" - # Certificate "Comodo AAA Services root" - # Certificate "XRamp Global CA Root" - # Certificate "Go Daddy Class 2 CA" - # Certificate "Starfield Class 2 CA" - removed certificates: - # Certificate "Baltimore CyberTrust Root" - added certificates: - # Certificate "TrustAsia SMIME ECC Root CA" - # Certificate "TrustAsia SMIME RSA Root CA" - # Certificate "TrustAsia TLS ECC Root CA" - # Certificate "TrustAsia TLS RSA Root CA" - # Certificate "SwissSign RSA SMIME Root CA 2022 - 1" - # Certificate "SwissSign RSA TLS Root CA 2022 - 1" - # Certificate "OISTE Client Root ECC G1" - # Certificate "OISTE Client Root RSA G1" - # Certificate "OISTE Server Root ECC G1" - # Certificate " OISTE Server Root RSA G1" None Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- update to CKBI 2.82 from NSS 3.120 - updated certificates: - # Certificate "ePKI Root Certification Authority" - # Certificate "GlobalSign Root CA" - # Certificate "Entrust.net Premium 2048 Secure Server CA" - # Certificate "Comodo AAA Services root" - # Certificate "XRamp Global CA Root" - # Certificate "Go Daddy Class 2 CA" - # Certificate "Starfield Class 2 CA" - removed certificates: - # Certificate "Baltimore CyberTrust Root" - added certificates: - # Certificate "TrustAsia SMIME ECC Root CA" - # Certificate "TrustAsia SMIME RSA Root CA" - # Certificate "TrustAsia TLS ECC Root CA" - # Certificate "TrustAsia TLS RSA Root CA" - # Certificate "SwissSign RSA SMIME Root CA 2022 - 1" - # Certificate "SwissSign RSA TLS Root CA 2022 - 1" - # Certificate "OISTE Client Root ECC G1" - # Certificate "OISTE Client Root RSA G1" - # Certificate "OISTE Server Root ECC G1" - # Certificate " OISTE Server Root RSA G1"

0 tuxcare-rhel7-els nss-3.90.0-2.el7_9.tuxcare.els4.i686.rpm 7bca88194a66021dd5c807475ea7bb57f72894b7f6bbdfd7594eac7bdb76e072 nss-3.90.0-2.el7_9.tuxcare.els4.x86_64.rpm 76a16375372aef1d9a08bb4a5e9e0f9256b0dee0030739922c77ec1a183da30c nss-devel-3.90.0-2.el7_9.tuxcare.els4.i686.rpm d9e1c434a01242e0987b19c22271657884fca24227b6047b10467dfa9aca276e nss-devel-3.90.0-2.el7_9.tuxcare.els4.x86_64.rpm 04b9a068bea406bb082cd8b67bca25264ce0de88fe1c86f95365a780e44799a7 nss-pkcs11-devel-3.90.0-2.el7_9.tuxcare.els4.i686.rpm 24f43e145959be72be3b4ec6cefb81449054be6f5d5066a0b6f064a90db4655a nss-pkcs11-devel-3.90.0-2.el7_9.tuxcare.els4.x86_64.rpm 5f5fb37e891491b36d5120713f48fa2eb49d8d36cfb30908b0dd11430f14ad08 nss-sysinit-3.90.0-2.el7_9.tuxcare.els4.x86_64.rpm 3cfdc004ff59545d3978653b981b4aff0e748c31bc8497335ee709d53cc00896 nss-tools-3.90.0-2.el7_9.tuxcare.els4.x86_64.rpm 5ec77033c6d32307ddff38c5d6d157687e4cbcafce538213bbe5b1d4e64d24f4 CLSA-2026:1771240859 kernel: Fix of 13 CVEs TuxCare License Agreement 0 - vsock: Do not allow binding to VMADDR_PORT_ANY {CVE-2025-38618} - cnic: Fix use-after-free bugs in cnic_delete_task {CVE-2025-39945} - scsi: bfa: Double-free fix {CVE-2025-38699} - pptp: ensure minimal skb length in pptp_xmit() {CVE-2025-38574} - ipv6: reject malicious packets in ipv6_gso_segment() {CVE-2025-38572} - fbdev: Fix vmalloc out-of-bounds write in fast_imageblit {CVE-2025-38685} - fbdev: fix potential buffer overflow in do_register_framebuffer() {CVE-2025-38702} - scsi: ses: Fix slab-out-of-bounds in ses_intf_remove() {CVE-2023-53521} - usb: core: config: Prevent OOB read in SS endpoint companion parsing {CVE-2025-39760} - media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format() {CVE-2025-38680} - fs/buffer: fix use-after-free when call bh_read() helper {CVE-2025-39691} - bna: ensure the copied buf is NUL terminated {CVE-2024-36934} - i40e: fix idx validation in config queues msg {CVE-2025-39971} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- vsock: Do not allow binding to VMADDR_PORT_ANY {CVE-2025-38618} - cnic: Fix use-after-free bugs in cnic_delete_task {CVE-2025-39945} - scsi: bfa: Double-free fix {CVE-2025-38699} - pptp: ensure minimal skb length in pptp_xmit() {CVE-2025-38574} - ipv6: reject malicious packets in ipv6_gso_segment() {CVE-2025-38572} - fbdev: Fix vmalloc out-of-bounds write in fast_imageblit {CVE-2025-38685} - fbdev: fix potential buffer overflow in do_register_framebuffer() {CVE-2025-38702} - scsi: ses: Fix slab-out-of-bounds in ses_intf_remove() {CVE-2023-53521} - usb: core: config: Prevent OOB read in SS endpoint companion parsing {CVE-2025-39760} - media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format() {CVE-2025-38680} - fs/buffer: fix use-after-free when call bh_read() helper {CVE-2025-39691} - bna: ensure the copied buf is NUL terminated {CVE-2024-36934} - i40e: fix idx validation in config queues msg {CVE-2025-39971}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm ab8a992e7de3ecb7660fb47583273e78fb734ac8a57c74b1b1283486b24fea5f kernel-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm 06ea9aa6ecbc46bc0a1c8c1702431dc7be47b17329597826e6ac73017ffd65bf kernel-debug-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm fe6d7e05c57d27f5072f1f06761b2fd437e0ba6195aec10d8773e0bf0f371dff kernel-debug-devel-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm 5482f6e7803e4222cd97be746c5b3ef514d4e0f781c95bdda17412a38cacdd7e kernel-devel-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm dc43f3090a96cf9fc5486f56c5845e629752bf0799dad926412764fd4382db23 kernel-headers-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm cb3e8afdb05978acd917b85b433adbd0b494fc266f4fe0fb928bd0c4fbf1bf01 kernel-tools-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm 61cf9f0c7a3170270dcff0a2676455f2d15c3c29e2640a03e00bdce72b4be7ce kernel-tools-libs-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm 4e024557023924bd2fc08833257fa15cd0b00fffef73750711d6fa89f462ad14 kernel-tools-libs-devel-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm faa5ebef9b2bc2aae03899d2376c6f8dbb29282b2e6e8c8451d44f79399425d9 perf-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm 71710524cb7d551c49b71fa4e34bc420b403bd29a255026bc9c9d5f8048303e3 python-perf-3.10.0-1160.144.1.el7.tuxcare.els2.x86_64.rpm 73cf698a60075c4e21baa903618bd439304ebfabb9743ca3f73469aae3089498 CLSA-2026:1771417949 grub2: Fix of CVE-2025-61662 TuxCare License Agreement 0 - CVE-2025-61662: fix use-after-free in gettext/gettext due to unregistered gettext command on module unload Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-61662: fix use-after-free in gettext/gettext due to unregistered gettext command on module unload

0 tuxcare-rhel7-els grub2-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm 1eecab826354099f721ed63d1468c293a1fdf4da1264589d7e44a4d372128f5a grub2-common-2.02-0.87.el7_9.14.tuxcare.els4.noarch.rpm 065cab611c36259ea358d1f91473a56844a0295a535f2051d3cd786af1c5af41 grub2-efi-ia32-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm 5168b0962136c5e2624a1196f23da2965bfadd45555a5a9a3e23cf0aa7d831d4 grub2-efi-ia32-cdboot-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm 8f5d0167b8a97ce521faee3d6d12646d89e9e0af51372a32deaf9cf6c1a59aad grub2-efi-ia32-modules-2.02-0.87.el7_9.14.tuxcare.els4.noarch.rpm b598f9aff08c7a9d57299da10288ee66cd355934fd2079a55ab100c9767532ca grub2-efi-x64-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm caae58d73b9ed128bf40fb730e208a8954dc6472602a9f904d49ac007134306c grub2-efi-x64-cdboot-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm 3902dbaaa718f9ceb11acc7c0579891024b401faad459bfeecd9e430f60488a7 grub2-efi-x64-modules-2.02-0.87.el7_9.14.tuxcare.els4.noarch.rpm 68d7c0a597946d07685845781889ba596c40227c20a353cc697a16442b9b5702 grub2-pc-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm 043592c66ac5865cf7824651c8fa2164839dc35efdbbdfed8dbb8c896ad7bba4 grub2-pc-modules-2.02-0.87.el7_9.14.tuxcare.els4.noarch.rpm 9ec0aedea2d30d3c25e234d193bd90f1d9bb82a800ffaff8011d8b2d42514bb7 grub2-tools-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm cc05ae7e000ae779a1f0b74f2182de466fc8871368db86c8dfae568e214c9b92 grub2-tools-extra-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm 674234af861d101bb17dd38cb2a0f07d1a25fd35c53634afa4b25067555be20a grub2-tools-minimal-2.02-0.87.el7_9.14.tuxcare.els4.x86_64.rpm dc3c66f4f786fc2c9a4350b815b979e61561918abb7532d54822edd94b49945f CLSA-2026:1771519029 libsoup: Fix of 2 CVEs TuxCare License Agreement 0 - CVE-2026-1761: fix stack-based buffer overflow in multipart HTTP response parsing caused by incorrect length calculation in soup_filter_input_stream_read_until() - CVE-2026-0719: fix stack-based buffer overflow in NTLM authentication caused by integer overflow in md4sum() with excessively long passwords Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2026-1761: fix stack-based buffer overflow in multipart HTTP response parsing caused by incorrect length calculation in soup_filter_input_stream_read_until() - CVE-2026-0719: fix stack-based buffer overflow in NTLM authentication caused by integer overflow in md4sum() with excessively long passwords

0 tuxcare-rhel7-els libsoup-2.62.2-2.0.5.el7.tuxcare.els4.i686.rpm c9dd5f3ffdf19ed371af478a1934ddb1e800a58b5d6d4d3a513d71774fc45d8d libsoup-2.62.2-2.0.5.el7.tuxcare.els4.x86_64.rpm d8bb5a0056a67e16fd7651872edb4904b19fbf6a7cc7341391adf9c417123259 libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els4.i686.rpm 6c7e4fddc6866bfdb1414dd0cf3809a0a5e480cbbcd488d025ff62f2f3f26fbe libsoup-devel-2.62.2-2.0.5.el7.tuxcare.els4.x86_64.rpm 1b76ca1196977ceb6fc11a949ef332b66538a5ba4234c27af825acf4353b1762 CLSA-2026:1771854105 glib2: Fix of CVE-2025-14087 TuxCare License Agreement 0 - CVE-2025-14087: fix integer overflow in GVariant parser leading to heap corruption via buffer underflow when processing malicious input strings Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-14087: fix integer overflow in GVariant parser leading to heap corruption via buffer underflow when processing malicious input strings

0 tuxcare-rhel7-els glib2-2.56.1-9.el7_9.tuxcare.els5.i686.rpm ec42d9fd3253b80ec0c2857d93f776b9d40b0619f154d3ea64ef22a3c027ab0d glib2-2.56.1-9.el7_9.tuxcare.els5.x86_64.rpm 695474e066da584f3b9ad51b47fcd5caad5296ebebbce8a9dfd796bed50b3415 glib2-devel-2.56.1-9.el7_9.tuxcare.els5.i686.rpm 7626fcfd3779f535a90fdaff70243c1e5b836c420f8f41b7ec2357cc9aabb211 glib2-devel-2.56.1-9.el7_9.tuxcare.els5.x86_64.rpm febe0aa14f4322454a771e1570ad53618844d56498d3a6abc82f956b41a54c76 glib2-doc-2.56.1-9.el7_9.tuxcare.els5.noarch.rpm 7de107f7944e9467ed11c44cfe1a31fafe204f7c2a788ed40344601f95534c1a glib2-fam-2.56.1-9.el7_9.tuxcare.els5.x86_64.rpm d6cc4d1762c14a0876dc46eb076db58272e3b30969081f8aea983afba77752b3 glib2-static-2.56.1-9.el7_9.tuxcare.els5.i686.rpm 363de67883db06fb3f91550124f881fdefa121ce78c66538ce6ce5bbd067cdb3 glib2-static-2.56.1-9.el7_9.tuxcare.els5.x86_64.rpm b843b370147a0dc44e8f5cd503ee06caf5bcc29f7e51aad63078b04fba93362b glib2-tests-2.56.1-9.el7_9.tuxcare.els5.x86_64.rpm ed1301e4d79f3adc6826d6212030e15cfd850fd74ec8f7d25d279b634a244c93 CLSA-2026:1772038463 python: Fix of CVE-2015-20107 TuxCare License Agreement 0 - CVE-2015-20107: fix shell command injection vulnerability in the mailcap module Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2015-20107: fix shell command injection vulnerability in the mailcap module

0 tuxcare-rhel7-els python-2.7.5-94.0.1.el7_9.tuxcare.els3.x86_64.rpm 402f3e1a2fd64c6c3839b8bac8d14d5006fe90aff1dfe6fa2e08b1d9081a02a6 python-debug-2.7.5-94.0.1.el7_9.tuxcare.els3.x86_64.rpm 9ecc7ac918b4e9e5f2bb704de73eec08c121ae6de3601b1f9a00d2456608070e python-devel-2.7.5-94.0.1.el7_9.tuxcare.els3.x86_64.rpm c665bf4dafca3f4917d501281919ae3f8002c7eb85e6b21ceaa0bc04ef165dfa python-libs-2.7.5-94.0.1.el7_9.tuxcare.els3.i686.rpm 6e8d7d054fc62b60543970af1aa9218112f1c83f6acd7f1706f279d134957fd0 python-libs-2.7.5-94.0.1.el7_9.tuxcare.els3.x86_64.rpm 141e0fc193854e307bff267452261270831bf9e2468056445cf1ad0db4c95904 python-test-2.7.5-94.0.1.el7_9.tuxcare.els3.x86_64.rpm 278b22a914d3d5867ebf9d64f64a4670cc51779b88bc9f9028886f6fd7bb08b5 python-tools-2.7.5-94.0.1.el7_9.tuxcare.els3.x86_64.rpm 77bcfd50e36a0218b7854275b7f2807f68fe9c06a79524d4939fbb4f44ca8751 tkinter-2.7.5-94.0.1.el7_9.tuxcare.els3.x86_64.rpm a8a31e9d041c35672b7d965c71c151e910d4a6db05f38203a400717fe528cbf1 CLSA-2026:1772101499 httpd: Fix of CVE-2024-42516 TuxCare License Agreement 0 - CVE-2024-42516: fix HTTP response splitting by reordering header validation to occur after full response header assembly. Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-42516: fix HTTP response splitting by reordering header validation to occur after full response header assembly.

0 tuxcare-rhel7-els httpd-2.4.6-99.0.5.el7_9.1.tuxcare.els8.x86_64.rpm 1a67538c30cace8d62752adf162181dd3e1dc4b500f9152fb30b73051daa7865 httpd-devel-2.4.6-99.0.5.el7_9.1.tuxcare.els8.x86_64.rpm 07cff1fc17b91b2fc4c3e74a878828f2b250c5843302fb5b40cc3a1359e02bdf httpd-manual-2.4.6-99.0.5.el7_9.1.tuxcare.els8.noarch.rpm dc4da070f38e78643c5fd42171193c06b6e7bc85944fa92124fdebfab569c43d httpd-tools-2.4.6-99.0.5.el7_9.1.tuxcare.els8.x86_64.rpm 3d93a9ddbf5feb7edc85ced6cbb112a5524b21fdd79fb613c270b3e8293ec827 mod_ldap-2.4.6-99.0.5.el7_9.1.tuxcare.els8.x86_64.rpm 523866d2c771b23eac045512e18742d4713a16099e1f00e98a6c570c7c944f7b mod_proxy_html-2.4.6-99.0.5.el7_9.1.tuxcare.els8.x86_64.rpm 1c0c463136abb5ae9cd10ad8cbc331690cf17299096ee4dfa3ac27e1af1fcc1e mod_session-2.4.6-99.0.5.el7_9.1.tuxcare.els8.x86_64.rpm 75f9d43c6ccadf3c95e62f945bbf983c2c62c66178f9bd6291a3609a1a393cc0 mod_ssl-2.4.6-99.0.5.el7_9.1.tuxcare.els8.x86_64.rpm 210d8e221d85e556c9992d725754777b1a77e5903186feabe4e93e8d977690e6 CLSA-2026:1772213835 zlib: Fix of CVE-2016-9843 TuxCare License Agreement 0 - CVE-2016-9843: avoid pre-decrement of pointer in big-endian CRC calculation Critical Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2016-9843: avoid pre-decrement of pointer in big-endian CRC calculation

0 tuxcare-rhel7-els minizip-1.2.7-21.0.1.el7_9.tuxcare.els2.i686.rpm 1fb6c03da56cd1365b38dfc9e4f859e21806b97cb49d6cf3e82774beb034a36f minizip-1.2.7-21.0.1.el7_9.tuxcare.els2.x86_64.rpm b7d41c13748280253b72d6f497ba0dea708b9dc84f7d70260138613afeaba583 minizip-devel-1.2.7-21.0.1.el7_9.tuxcare.els2.i686.rpm f47425c57f7714ad0dbfcb63373b2f90285edf022559b89b9bf38699c6a43d53 minizip-devel-1.2.7-21.0.1.el7_9.tuxcare.els2.x86_64.rpm 19ca101980cb364c7ca91707cdf2ae013e48f3dfa6a56c3659a74d1f6d481187 zlib-1.2.7-21.0.1.el7_9.tuxcare.els2.i686.rpm 4253eaf2d071f6a0b1e4e38d99e590a5911235e086e1fc52133671bdb8e83072 zlib-1.2.7-21.0.1.el7_9.tuxcare.els2.x86_64.rpm f5653d8445835f71e442c717aa7240f5117f8a2ffb96e2c84e35be382523edd4 zlib-devel-1.2.7-21.0.1.el7_9.tuxcare.els2.i686.rpm 4678a149e86fa494b8de9f5103eb8257d33790de669b066faa2a83ce2f7a0cb2 zlib-devel-1.2.7-21.0.1.el7_9.tuxcare.els2.x86_64.rpm e5718f3ab5cc98d260fdc380c63434447dfd7f2994e8833a70af111a8ae2e362 zlib-static-1.2.7-21.0.1.el7_9.tuxcare.els2.i686.rpm c869f713dcd265836533f9590ded9c23386ccb28a5e647af18416e5cf42036a9 zlib-static-1.2.7-21.0.1.el7_9.tuxcare.els2.x86_64.rpm ac13774efd08d7399929168f97e693a7e3e005dc0fcc2e93b97d7060f5d50cee CLSA-2026:1772644297 Update of ca-certificates TuxCare License Agreement 0 - update to CKBI 2.82 from NSS 3.120 - updated certificates: - # Certificate "GlobalSign Root CA" - # Certificate "Entrust.net Premium 2048 Secure Server CA" - # Certificate "Comodo AAA Services root" - # Certificate "XRamp Global CA Root" - # Certificate "Go Daddy Class 2 CA" - # Certificate "Starfield Class 2 CA" - removed certificates: - # Certificate "Baltimore CyberTrust Root" - # Certificate "Autoridad Certificadora Raiz de la Secretaria de Economia" - # Certificate "Certipost E-Trust TOP Root CA" - # Certificate "Swisscom Root CA 1" - # Certificate "A-Trust-nQual-03" - # Certificate "KISA RootCA 1" - added certificates: - # Certificate "TrustAsia SMIME ECC Root CA" - # Certificate "TrustAsia SMIME RSA Root CA" - # Certificate "TrustAsia TLS ECC Root CA" - # Certificate "TrustAsia TLS RSA Root CA" - # Certificate "SwissSign RSA SMIME Root CA 2022 - 1" - # Certificate "SwissSign RSA TLS Root CA 2022 - 1" - # Certificate "OISTE Client Root ECC G1" - # Certificate "OISTE Client Root RSA G1" - # Certificate "OISTE Server Root ECC G1" - # Certificate " OISTE Server Root RSA G1" None Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- update to CKBI 2.82 from NSS 3.120 - updated certificates: - # Certificate "GlobalSign Root CA" - # Certificate "Entrust.net Premium 2048 Secure Server CA" - # Certificate "Comodo AAA Services root" - # Certificate "XRamp Global CA Root" - # Certificate "Go Daddy Class 2 CA" - # Certificate "Starfield Class 2 CA" - removed certificates: - # Certificate "Baltimore CyberTrust Root" - # Certificate "Autoridad Certificadora Raiz de la Secretaria de Economia" - # Certificate "Certipost E-Trust TOP Root CA" - # Certificate "Swisscom Root CA 1" - # Certificate "A-Trust-nQual-03" - # Certificate "KISA RootCA 1" - added certificates: - # Certificate "TrustAsia SMIME ECC Root CA" - # Certificate "TrustAsia SMIME RSA Root CA" - # Certificate "TrustAsia TLS ECC Root CA" - # Certificate "TrustAsia TLS RSA Root CA" - # Certificate "SwissSign RSA SMIME Root CA 2022 - 1" - # Certificate "SwissSign RSA TLS Root CA 2022 - 1" - # Certificate "OISTE Client Root ECC G1" - # Certificate "OISTE Client Root RSA G1" - # Certificate "OISTE Server Root ECC G1" - # Certificate " OISTE Server Root RSA G1"

0 tuxcare-rhel7-els ca-certificates-2026.2.82_v7.0.306-72.el7_9.tuxcare.els1.noarch.rpm 889341f9c487c276c497d2c8883c51390cf47d56b13fb7d79c2660e98b756876 CLSA-2026:1773046740 kernel: Fix of 21 CVEs TuxCare License Agreement 0 - i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path {CVE-2025-39911} - media: rc: fix races with imon_disconnect() {CVE-2025-39993} - VMCI: fix race between vmci_host_setup_notify and vmci_ctx_unset_notify {CVE-2025-38102} - partitions: mac: fix handling of bogus partition table {CVE-2025-21772} - tracing: Fix oob write in trace_seq_to_buffer() {CVE-2025-37923} - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE {CVE-2025-40277} - Bluetooth: fix use-after-free in device_for_each_child() {CVE-2024-53237} - net/atm: remove the atmdev_ops {get, set}sockopt methods {CVE-2022-50410} - i40e: add validation for ring_len param {CVE-2025-39973} - vsock: Ignore signal/timeout on connect() if already established {CVE-2025-40248} - sctp: avoid NULL dereference when chunk data buffer is missing {CVE-2025-40240} - nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() {CVE-2025-38724} - VMCI: check context->notify_page after call to get_user_pages_fast() to avoid GPF {CVE-2023-53259} - wifi: brcmsmac: add gain range check to wlc_phy_iqcal_gainparams_nphy() {CVE-2024-58014} - isofs: Prevent the use of too small fid {CVE-2025-37780} - net: ppp: Add bound checking for skb data on ppp_sync_txmung {CVE-2025-37749} - Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen() {CVE-2025-39860} - i40e: Fix potential invalid access when MAC list is empty {CVE-2025-39853} - ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3() {CVE-2025-38249} - fbdev: bitblit: bound-check glyph index in bit_putcs* {CVE-2025-40322} - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds {CVE-2025-40304} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- i40e: fix IRQ freeing in i40e_vsi_request_irq_msix error path {CVE-2025-39911} - media: rc: fix races with imon_disconnect() {CVE-2025-39993} - VMCI: fix race between vmci_host_setup_notify and vmci_ctx_unset_notify {CVE-2025-38102} - partitions: mac: fix handling of bogus partition table {CVE-2025-21772} - tracing: Fix oob write in trace_seq_to_buffer() {CVE-2025-37923} - drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE {CVE-2025-40277} - Bluetooth: fix use-after-free in device_for_each_child() {CVE-2024-53237} - net/atm: remove the atmdev_ops {get, set}sockopt methods {CVE-2022-50410} - i40e: add validation for ring_len param {CVE-2025-39973} - vsock: Ignore signal/timeout on connect() if already established {CVE-2025-40248} - sctp: avoid NULL dereference when chunk data buffer is missing {CVE-2025-40240} - nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm() {CVE-2025-38724} - VMCI: check context->notify_page after call to get_user_pages_fast() to avoid GPF {CVE-2023-53259} - wifi: brcmsmac: add gain range check to wlc_phy_iqcal_gainparams_nphy() {CVE-2024-58014} - isofs: Prevent the use of too small fid {CVE-2025-37780} - net: ppp: Add bound checking for skb data on ppp_sync_txmung {CVE-2025-37749} - Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen() {CVE-2025-39860} - i40e: Fix potential invalid access when MAC list is empty {CVE-2025-39853} - ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3() {CVE-2025-38249} - fbdev: bitblit: bound-check glyph index in bit_putcs* {CVE-2025-40322} - fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds {CVE-2025-40304}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm 03ae4e67e8956b7c1f38d9ecedea0436c79684e47c105e0a61f800df70673e58 kernel-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm 286e6bfd55f5c09a9a177536e76eb4b2dfdd6e10154a7613eb431439b0b98897 kernel-debug-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm d0e452216b05886ddc2f1ebf5eb83bbbe4a114919cfd255341886f29882cbc99 kernel-debug-devel-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm efa3b61b8d235c10d8fb681e2588b4dea72325139400d914231417db5d1467f9 kernel-devel-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm e5d2eddc89d84fdc0c5961044002ffa5286a1bfb4a5a25e4dc33daf6924f2719 kernel-headers-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm 032176a4d3229e5e510f748b397b1b8cb5892608199f0da7cebf33c9e786dd36 kernel-tools-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm 7ba2dead295b0f1a3c1fbd1ea610eb2cc96660251ec3916c56282a17873225d7 kernel-tools-libs-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm bf614d71b6c2562bc150fa0f59a49418f4286668c7bd35dfec6d29ce919c9c4f kernel-tools-libs-devel-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm 1c2a2b58ce09e292dccdbdb0cb1d8250f73843e54c01032134fe4e762e8e30ae perf-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm 30d9e79fe05988df7e9818ef14bd3f15112964847b940b9fd316e9b8da0debdb python-perf-3.10.0-1160.144.1.el7.tuxcare.els3.x86_64.rpm 4196f39c95b05d6141e838e116bec476f9c9aa78d1f37336136f308456eb77d9 CLSA-2026:1773479849 python: Fix of CVE-2025-12084 TuxCare License Agreement 0 - CVE-2025-12084: fix quadratic algorithm when building nested XML elements with appendChild Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-12084: fix quadratic algorithm when building nested XML elements with appendChild

0 tuxcare-rhel7-els python-2.7.5-94.0.1.el7_9.tuxcare.els4.x86_64.rpm b8127b5c617531f045a8ee0f4ba781fb520af3398586c794890f6646761fdd19 python-debug-2.7.5-94.0.1.el7_9.tuxcare.els4.x86_64.rpm 4abc0790f1790e267fef0210ebb1ddd78eb7c913b3566927aa9073e5cdb72a4c python-devel-2.7.5-94.0.1.el7_9.tuxcare.els4.x86_64.rpm 727c1fc5af20f80f89a596e90e71f615be7c3153221d4dd320f7684cfb6f800a python-libs-2.7.5-94.0.1.el7_9.tuxcare.els4.i686.rpm 8b70a84e62a0d5ec5da1b92a7ca7573217c0a2e56fcbe163633b1836c19d23c2 python-libs-2.7.5-94.0.1.el7_9.tuxcare.els4.x86_64.rpm f9cc68d312daf4f6f192b266f63fbf4640ac8bfc83c0a9c0fde7738faa273c72 python-test-2.7.5-94.0.1.el7_9.tuxcare.els4.x86_64.rpm 521b827e0bd571f111c75b2547e8c013ceee747cec21efecd27d181ba8d5bbdc python-tools-2.7.5-94.0.1.el7_9.tuxcare.els4.x86_64.rpm 54a59c7c4497ccca1afdca4d8236a3785507c501d99035235a7ddaf572aa9b4f tkinter-2.7.5-94.0.1.el7_9.tuxcare.els4.x86_64.rpm b476e2353df8a164c63cdbd650089fe1786c43a55c33803a7c57159e5ae4151e CLSA-2026:1773924658 expat: Fix of CVE-2026-25210 TuxCare License Agreement 0 - Fix CVE-2026-25210: integer overflow in doContent tag buffer reallocation Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Fix CVE-2026-25210: integer overflow in doContent tag buffer reallocation

0 tuxcare-rhel7-els expat-2.1.0-15.0.1.el7_9.tuxcare.els3.i686.rpm f946612021d1f5e4cb4dd6ed00c98b50ca6c29db246645f4cdc5ea734b72db0c expat-2.1.0-15.0.1.el7_9.tuxcare.els3.x86_64.rpm 013814ab4ef546ac6f4f2937264200e369e710fed5e8f2a4c42bf810a151550b expat-devel-2.1.0-15.0.1.el7_9.tuxcare.els3.i686.rpm 538066e18c99968edd4f25170d3857f0992ea7ffa2b960bdbd3f61f07bafd285 expat-devel-2.1.0-15.0.1.el7_9.tuxcare.els3.x86_64.rpm 1b6d6d8f4de26c4415f827e4504b3401d85772903042e5e82542ac0007877667 expat-static-2.1.0-15.0.1.el7_9.tuxcare.els3.i686.rpm 1fc3a4aad6e2b14809f5f9b7d9e27b4fb9360a8afbf04a6f086e47a01d86ccb5 expat-static-2.1.0-15.0.1.el7_9.tuxcare.els3.x86_64.rpm 3b94c75b0cfa57069ca16b3328bf17e9bb721983b4ae570408c75c22b9dde416 CLSA-2026:1774028594 Update of postgresql11 TuxCare License Agreement 0 - Initial backport of PostgreSQL 11.22 for RHEL 7 - Based on Fedora/RHEL 8 spec files for PostgreSQL 10 and 12 - Adapted for RHEL 7 compatibility: - Disabled ICU support by default (not readily available on RHEL 7) - Disabled plpython3 by default (may need SCL for Python 3) - Removed perl-generators BuildRequires - Removed multilib-rpm-config BuildRequires - Added libs, devel subpackages for libpq and other shared libraries None Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Initial backport of PostgreSQL 11.22 for RHEL 7 - Based on Fedora/RHEL 8 spec files for PostgreSQL 10 and 12 - Adapted for RHEL 7 compatibility: - Disabled ICU support by default (not readily available on RHEL 7) - Disabled plpython3 by default (may need SCL for Python 3) - Removed perl-generators BuildRequires - Removed multilib-rpm-config BuildRequires - Added libs, devel subpackages for libpq and other shared libraries

0 tuxcare-rhel7-els postgresql11-11.22-1.el7.tuxcare.els1.x86_64.rpm 5b2d5b5cf948216a8f55dd75bcb90f61b059361143c17e989fc0a71a4b208d9d postgresql11-contrib-11.22-1.el7.tuxcare.els1.x86_64.rpm 25a359ab41fd7b97d615f24c67439b5ad7e8f442e3d00946eebefddabf3c7006 postgresql11-devel-11.22-1.el7.tuxcare.els1.x86_64.rpm 41432845ada614ca4f87b35ed3e05dc8bf223ad8243490eb73dd81fd94cf346b postgresql11-docs-11.22-1.el7.tuxcare.els1.x86_64.rpm 45fb34b984159f5e3b29745cd21585d6ce332cb4a5d38bb06c3151cb9c5e164d postgresql11-libs-11.22-1.el7.tuxcare.els1.x86_64.rpm 2f3e864e29c6e0602853f69d773b928097162c667ea2e716d4c3d1a65487245f postgresql11-plperl-11.22-1.el7.tuxcare.els1.x86_64.rpm 29c931b5cd70b2547b2f8c219380bb83e3c44d50dc80bc4eb0d1c7de4bc06f9d postgresql11-plpython-11.22-1.el7.tuxcare.els1.x86_64.rpm 0250000306ba6551827ac791b9f74a967137bcfff96c4d01f5d13c59b676793b postgresql11-pltcl-11.22-1.el7.tuxcare.els1.x86_64.rpm 04a72dcea00245c28f10ac74780501e63a4932a4ab19c4c399571e921993db47 postgresql11-server-11.22-1.el7.tuxcare.els1.x86_64.rpm 7f58f8487e93084898a357e70310262bdc40c88d7d4ef5aee6f55e9aa9d28466 postgresql11-server-devel-11.22-1.el7.tuxcare.els1.x86_64.rpm e8f653e12c9535351cd39109ab22b85e40a07ff5ce924809b418dac47a2910c5 postgresql11-static-11.22-1.el7.tuxcare.els1.x86_64.rpm 05001f65fbeb91f12aeac84995f0033433bdebae25b009ced0a4533de7ffcbb6 postgresql11-test-11.22-1.el7.tuxcare.els1.x86_64.rpm ff8b9415b82246a21c00e570d3d26fb0b207f0990af3e7107341eb7ac296a6b4 postgresql11-test-rpm-macros-11.22-1.el7.tuxcare.els1.noarch.rpm 21725381a066aa292cab225cbc1c0579234b7c69988e4fe05442e1c004ecac81 postgresql11-upgrade-11.22-1.el7.tuxcare.els1.x86_64.rpm e90c33d2a6f691850595bf1ff3517c8b4f4cdfd4e8afdb9f70bc0248e9faced2 postgresql11-upgrade-devel-11.22-1.el7.tuxcare.els1.x86_64.rpm beb5592677987e429a8049aa99f08aefd8593a05a645356378efe1f8d50ae7f5 CLSA-2026:1774460378 postgresql11: Fix of 4 CVEs TuxCare License Agreement 0 - Fix CVE-2025-1094: Improper neutralization of quoting syntax in libpq escape functions allowing SQL injection. - Fix CVE-2024-7348: TOCTOU race condition in pg_dump allows arbitrary SQL function execution via view/foreign table replacement. - Fix CVE-2024-10979: Block environment variable mutations from trusted PL/Perl to prevent arbitrary code execution by unprivileged users. - Fix CVE-2025-8714: Restrict psql meta-commands in plain-text dumps to prevent restore-time code injection. Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- Fix CVE-2025-1094: Improper neutralization of quoting syntax in libpq escape functions allowing SQL injection. - Fix CVE-2024-7348: TOCTOU race condition in pg_dump allows arbitrary SQL function execution via view/foreign table replacement. - Fix CVE-2024-10979: Block environment variable mutations from trusted PL/Perl to prevent arbitrary code execution by unprivileged users. - Fix CVE-2025-8714: Restrict psql meta-commands in plain-text dumps to prevent restore-time code injection.

0 tuxcare-rhel7-els postgresql11-11.22-1.el7.tuxcare.els2.x86_64.rpm e419b2295508ba9e63c691d45b2066d02cf6508347975ddbc87a187ba7f2ec94 postgresql11-contrib-11.22-1.el7.tuxcare.els2.x86_64.rpm a7cd1d54982ce1bbde3c6120f3c14770080a795c0dd9ab0b857a312f24acb0fc postgresql11-devel-11.22-1.el7.tuxcare.els2.x86_64.rpm 4c6fc780b219b298c236e146ae99bd840e50375c1173310c205b6bdb560de155 postgresql11-docs-11.22-1.el7.tuxcare.els2.x86_64.rpm b591cba2d50f3a3b6eaad2a768516680988edc236049e908d9d98eabc81489c6 postgresql11-libs-11.22-1.el7.tuxcare.els2.x86_64.rpm 7f86e56c2b41215731ecf9d0b7a3a2cb54eaa1930af80b954196913f3a561dd3 postgresql11-plperl-11.22-1.el7.tuxcare.els2.x86_64.rpm 52245996f9fbef09da178492e92e81298aa4352987e1cdb3e711f7a0aa658d93 postgresql11-plpython-11.22-1.el7.tuxcare.els2.x86_64.rpm f1c30a5db43deb401555b7c21e91f278debf261f7326a8d34f749eba8a7d2273 postgresql11-pltcl-11.22-1.el7.tuxcare.els2.x86_64.rpm e2ffbdf256b88fd2dc44ba86886f1f3a4f6d46a0e76013f3b498339861e8ddfd postgresql11-server-11.22-1.el7.tuxcare.els2.x86_64.rpm 07984c99472c0fd160247d4d7bcea41a61692bb1033b749b5b807b2f366874a1 postgresql11-server-devel-11.22-1.el7.tuxcare.els2.x86_64.rpm b1774c1361b5c1c400b1ed502a1e592111576e05d21d5ad9d121a49313e4a2be postgresql11-static-11.22-1.el7.tuxcare.els2.x86_64.rpm 4172a174a9a9ab53170b6a789dfc8142676a7265db5a7d0de4d7f0a0271b4bde postgresql11-test-11.22-1.el7.tuxcare.els2.x86_64.rpm d9ffc173fa0d1c1e9e9c628efbc76b05a88b741d3009b40881484170a3ae9d79 postgresql11-test-rpm-macros-11.22-1.el7.tuxcare.els2.noarch.rpm 3cb076f68745ccf6d11604ee3aa361f2afe50717c99aad870230a98dd116ba81 postgresql11-upgrade-11.22-1.el7.tuxcare.els2.x86_64.rpm f05e4836fae1544978a1a76590135bf7f2eae6cd9fea1c4b4fe9b1b6cd47e683 postgresql11-upgrade-devel-11.22-1.el7.tuxcare.els2.x86_64.rpm 02aaefc233e2b4fec89717de801d046394143b8dd0ed36fa427141fea2073efe CLSA-2026:1774528630 openssh: Fix of 3 CVEs TuxCare License Agreement 0 - CVE-2018-20685: fix a vulnerability scp client where a malicious server could bypass intended access restrictions and modify target directory permissions via crafted filenames - CVE-2019-6109: fix scp client where a malicious server could manipulate the client's progress display output due to missing character encoding - CVE-2019-6111: fix scp client vulnerability that allowed a malicious server to overwrite arbitrary files in the client's target directory, including subdirectories, when performing transfers Moderate Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2018-20685: fix a vulnerability scp client where a malicious server could bypass intended access restrictions and modify target directory permissions via crafted filenames - CVE-2019-6109: fix scp client where a malicious server could manipulate the client's progress display output due to missing character encoding - CVE-2019-6111: fix scp client vulnerability that allowed a malicious server to overwrite arbitrary files in the client's target directory, including subdirectories, when performing transfers

0 tuxcare-rhel7-els openssh-7.4p1-23.0.3.el7_9.tuxcare.els3.x86_64.rpm c7dc5bf9d8d408afce072d0fad3b48436a691d266a9eff9e4a50656e4d36759b openssh-askpass-7.4p1-23.0.3.el7_9.tuxcare.els3.x86_64.rpm cabcc3cc6a8abb849e3b78b64fa13b813694d5a8e7dbce9152db57f2773650cf openssh-cavs-7.4p1-23.0.3.el7_9.tuxcare.els3.x86_64.rpm ff94e6b0a3ef519ee34674681c74efa407857a51e8e96db7410514925c05dd18 openssh-clients-7.4p1-23.0.3.el7_9.tuxcare.els3.x86_64.rpm 32ac4a032722117092fa7af36fa231c4599e93de45b34aa126e5b4455215cb1c openssh-keycat-7.4p1-23.0.3.el7_9.tuxcare.els3.x86_64.rpm 514534a9b958ac3d4151c102af44bf1dee11e9686b8a54a5e0c9356df7e6dd60 openssh-ldap-7.4p1-23.0.3.el7_9.tuxcare.els3.x86_64.rpm 143ece639c77b5adc6d0e89b7b481414fd7c0c28aaaec1957ada7cc44eacbf69 openssh-server-7.4p1-23.0.3.el7_9.tuxcare.els3.x86_64.rpm 056804c520937f7d58e5768db5a10a30158de54a203aa0a78f22d19c3eb371d3 openssh-server-sysvinit-7.4p1-23.0.3.el7_9.tuxcare.els3.x86_64.rpm 78c0ceaccb909a5d7aaa4e2553a8a68a8cf5e74a47bfd3aaace7eb9c5420887b pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.tuxcare.els3.i686.rpm 19d52075d0dd20c71f7a640eccb90799d494486e1d82232d3a5cdfd21e9085ea pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.tuxcare.els3.x86_64.rpm 999a52bcac2ecfe58ce01c8f7b682a6d2e868609a72c4cff7670333a48a0f737 CLSA-2026:1774613805 python3: Fix of CVE-2025-15366 TuxCare License Agreement 0 - CVE-2025-15366: reject control characters in IMAP commands Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-15366: reject control characters in IMAP commands

0 tuxcare-rhel7-els python3-3.6.8-21.0.5.el7_9.tuxcare.els5.i686.rpm 3d5e70ccc721840cde489ecf7c7746f247913913279bdb54c35bebcfdbd457cd python3-3.6.8-21.0.5.el7_9.tuxcare.els5.x86_64.rpm d8cff552236f0452166e1cefa76aefb7887b56ad1393995dbe317a793ae300e7 python3-debug-3.6.8-21.0.5.el7_9.tuxcare.els5.i686.rpm a72e0cd847aa0f5269c9bab8b06ac82c9c299085a8e74df32d2552eb9e11afad python3-debug-3.6.8-21.0.5.el7_9.tuxcare.els5.x86_64.rpm 814c269b1eccf1c12d0458d0ae999b990a570d628e13aa276814c4a215c91cad python3-devel-3.6.8-21.0.5.el7_9.tuxcare.els5.i686.rpm 7e765090430c47f35fb739ac1992b3a5ed930ef9a0de324e410386a96269c889 python3-devel-3.6.8-21.0.5.el7_9.tuxcare.els5.x86_64.rpm 01f62460306549241f0b10cd3349a284cf1f72008d12c2496a648e5109fedd40 python3-idle-3.6.8-21.0.5.el7_9.tuxcare.els5.i686.rpm 0f1846c6218c73309843073d1c060ea030e7b40f7cbd0f2dae71fe5c5cccbcee python3-idle-3.6.8-21.0.5.el7_9.tuxcare.els5.x86_64.rpm 2ff3fb94bd2b2bde857d4f497f1bc2fe78bc9f198edc7e6d87b4f2348a5cff04 python3-libs-3.6.8-21.0.5.el7_9.tuxcare.els5.i686.rpm ffbac9bcfc15877dc3c8e95444645b88cf109282537a8a7e7428481a5628c41a python3-libs-3.6.8-21.0.5.el7_9.tuxcare.els5.x86_64.rpm c45e0fc5d4986907f6a6aacc77fbfda1d57f846a576cd331fa4492032b079206 python3-test-3.6.8-21.0.5.el7_9.tuxcare.els5.i686.rpm ae91de03eb536febe56f46cee963a7702a9ec943d28cd580a4772007253aece5 python3-test-3.6.8-21.0.5.el7_9.tuxcare.els5.x86_64.rpm cf5c472c9a9544532cec68ffc0d1a21ec21740dd6a8a52e987bfbe610fd5b65d python3-tkinter-3.6.8-21.0.5.el7_9.tuxcare.els5.i686.rpm 4a4cf251825fd51573d2547a4b927620a38f5cbba145db592f5f9bea9cefd5fb python3-tkinter-3.6.8-21.0.5.el7_9.tuxcare.els5.x86_64.rpm f08f8f76eab601e310c3128475ec1befb261ab5a2e6ffadca6ddbce0dee4b006 CLSA-2026:1774877548 squid: Fix of 3 CVEs TuxCare License Agreement 0 - CVE-2026-33526: fix heap use-after-free due to double rfc1738_escape in ICP error handling - CVE-2026-33515: fix validation of ICP packet sizes and URLs to prevent out-of-bounds reads - CVE-2026-32748: fix HttpRequest use-after-free in ICP v3 query handling Low Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2026-33526: fix heap use-after-free due to double rfc1738_escape in ICP error handling - CVE-2026-33515: fix validation of ICP packet sizes and URLs to prevent out-of-bounds reads - CVE-2026-32748: fix HttpRequest use-after-free in ICP v3 query handling

0 tuxcare-rhel7-els squid-3.5.20-17.0.5.el7_9.99.tuxcare.els4.x86_64.rpm dcde70f7f75c8e6c5236abd5f7094e6b9c1c030eef944d9a02f3b159837b11e6 squid-migration-script-3.5.20-17.0.5.el7_9.99.tuxcare.els4.x86_64.rpm 34a2baa3e3f0af4eaa8339463fbc532f9d2c5ebd812cbeefc9f6270c5663ae9f squid-sysvinit-3.5.20-17.0.5.el7_9.99.tuxcare.els4.x86_64.rpm e0145b12177722f7c6c40451e99b17c11c3f6e9b8f4e7c11a29c0322ea94a463 CLSA-2026:1775058202 python: Fix of CVE-2025-15366 TuxCare License Agreement 0 - CVE-2025-15366: reject control characters in IMAP commands to prevent command injection Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-15366: reject control characters in IMAP commands to prevent command injection

0 tuxcare-rhel7-els python-2.7.5-94.0.1.el7_9.tuxcare.els5.x86_64.rpm 3d8e49f63881be0978344f33230b55135d19c611e49ef7155d1102535290cf1a python-debug-2.7.5-94.0.1.el7_9.tuxcare.els5.x86_64.rpm c0f0e952a786c58f971f07658428320df9b04d9478439eeb665b51adfaf871df python-devel-2.7.5-94.0.1.el7_9.tuxcare.els5.x86_64.rpm 9807637e129b26304833a504165bd9d192f021b485b472451158a7ec3283b685 python-libs-2.7.5-94.0.1.el7_9.tuxcare.els5.i686.rpm 90a716c86dfcb5bdaf41cdb3fed8d6775ad8c85663ebe1dc7e285152d01531ad python-libs-2.7.5-94.0.1.el7_9.tuxcare.els5.x86_64.rpm 887e65e7cb1159fa4738fbef8274c7dc16b55e15b294919fc358ea4ef8ff0f42 python-test-2.7.5-94.0.1.el7_9.tuxcare.els5.x86_64.rpm 4b0ee6af9e4d78a3423d863739048923231b9656e6238ec752e30e0801cb7c02 python-tools-2.7.5-94.0.1.el7_9.tuxcare.els5.x86_64.rpm 186cc9ea056a5de4cc703fa57d3790b345c07096caae05e5484aa1111ad8f6c8 tkinter-2.7.5-94.0.1.el7_9.tuxcare.els5.x86_64.rpm f848b921710137b0a9ce1640e6c5ed86fd8487e62e951020157e1d583017e829 CLSA-2026:1775059689 python: Fix of CVE-2025-15367 TuxCare License Agreement 0 - CVE-2025-15367: reject control characters in POP3 commands to prevent command injection via newlines Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-15367: reject control characters in POP3 commands to prevent command injection via newlines

0 tuxcare-rhel7-els python-2.7.5-94.0.1.el7_9.tuxcare.els6.x86_64.rpm c7cf75b38381e0c1de8fca7c5a91f65df0f06484dc11af37ce80aa87a8b60bf8 python-debug-2.7.5-94.0.1.el7_9.tuxcare.els6.x86_64.rpm 295aa0113ba620014f7e7e94f671bf5c62883720af56041cc2a7421b046f52ac python-devel-2.7.5-94.0.1.el7_9.tuxcare.els6.x86_64.rpm 2b9e276b199ede2915acea16771af868d03436daa72f56d68f2b27121f94f5b9 python-libs-2.7.5-94.0.1.el7_9.tuxcare.els6.i686.rpm 327bd89b4b1a2aacca1d3cc384669cc3e2c33cbb391b8c416a4bc126ed7d6e69 python-libs-2.7.5-94.0.1.el7_9.tuxcare.els6.x86_64.rpm c8f828b18bdf7b8b1bdad3c3f4167b93ab23e16373e8daa64b4832a56170cc2f python-test-2.7.5-94.0.1.el7_9.tuxcare.els6.x86_64.rpm 2e3dc4423e051503b31520ca63ecf7d39e044a321113f380ea205b31582c7ce0 python-tools-2.7.5-94.0.1.el7_9.tuxcare.els6.x86_64.rpm d703299f778e3ee7da6938edbe97280ec5c86f88a51f1a5e222196e70d193916 tkinter-2.7.5-94.0.1.el7_9.tuxcare.els6.x86_64.rpm c945eab3390325f566f11661b4e368942b2ef21c70e9c9188f8b471f3b437481 CLSA-2026:1775657177 kernel: Fix of 9 CVEs TuxCare License Agreement 0 - ovl: Filter invalid inodes with missing lookup function {CVE-2024-56570} - ALSA: aloop: Fix racy access at PCM trigger {CVE-2026-23191} - media: imon: reorganize serialization {CVE-2025-39993} - usb: xhci: Fix inverted ring_xrun_event check in handle_tx_event() {CVE-2025-37882} - Revert "VFS: Impose ordering on accesses of d_inode and d_flags" - Revert "VFS: Combine inode checks with d_is_negative() and d_is_positive() in pathwalk" - Revert "namei: d_is_negative() should be checked before ->d_seq validation" - Revert "namei: results of d_is_negative() should be checked after dentry revalidation" - Revert "namei: ->d_inode of a pinned dentry is stable only for positives" - scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() {CVE-2026-23193} - net/sched: cls_u32: use skb_header_pointer_careful() {CVE-2026-23204} - net: add skb_header_pointer_careful() helper {CVE-2026-23204} - ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() {CVE-2026-23089} - NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid {CVE-2025-68349} - net/sched: Enforce that teql can only be used as root qdisc {CVE-2026-23074} Important Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- ovl: Filter invalid inodes with missing lookup function {CVE-2024-56570} - ALSA: aloop: Fix racy access at PCM trigger {CVE-2026-23191} - media: imon: reorganize serialization {CVE-2025-39993} - usb: xhci: Fix inverted ring_xrun_event check in handle_tx_event() {CVE-2025-37882} - Revert "VFS: Impose ordering on accesses of d_inode and d_flags" - Revert "VFS: Combine inode checks with d_is_negative() and d_is_positive() in pathwalk" - Revert "namei: d_is_negative() should be checked before ->d_seq validation" - Revert "namei: results of d_is_negative() should be checked after dentry revalidation" - Revert "namei: ->d_inode of a pinned dentry is stable only for positives" - scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_count() {CVE-2026-23193} - net/sched: cls_u32: use skb_header_pointer_careful() {CVE-2026-23204} - net: add skb_header_pointer_careful() helper {CVE-2026-23204} - ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() {CVE-2026-23089} - NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid {CVE-2025-68349} - net/sched: Enforce that teql can only be used as root qdisc {CVE-2026-23074}

0 tuxcare-rhel7-els bpftool-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm 798d21a03ff2204285405c30cf2c91ce2c913ff3a9ca47e49505b67bf962b735 kernel-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm bf369f1e583b5f19c0a7cfaa546eef02f357a1d216b8836725f21acfe1809f17 kernel-debug-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm 5fa08bb8858c6169d1d54664be1fb8545be417df0c5ae920a4068a98784d04bf kernel-debug-devel-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm 211d14336e82da64bbc68425b81f057b3d0577443510364794fd59f0023fa8da kernel-devel-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm dbdb82b98b09d8374ebda2e708443bba2fb5d63853e436eef0da149b4a0fa6b6 kernel-headers-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm 717e132f9073154e7dad7d83788c1418a391db6f44a26c2049ede0f490c409b7 kernel-tools-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm c09099332b78081469e3f726bc50ed7edc046a60172f33267f8965bd3d741540 kernel-tools-libs-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm dbe5acf882be4d2fb242f55643d13d684faca03c42e127f7e142a706409a985b kernel-tools-libs-devel-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm 33ff89ecfd3775f23bc1f2125b26f821dbbf9dbed71370f2b97b130607819261 perf-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm 519538cc05ee813c0b6145f480e178d057ade16e8a622797a1ca889de7ecae7d python-perf-3.10.0-1160.144.1.el7.tuxcare.els4.x86_64.rpm c80c09ac413a80a9f6287fa6627537f8e97e8962e3c0b7fcbb727fbd793e95a6 CLSA-2026:1776331045 binutils: Fix of 5 CVEs TuxCare License Agreement 0 - CVE-2025-11082: fix heap buffer overflow in _bfd_elf_parse_eh_frame - CVE-2025-5244: fix NULL deref in elf_gc_sweep for empty SEC_GROUP - CVE-2025-5245: fix SEGV in debug_type_samep / debug_write_type - CVE-2025-7545: fix heap buffer issue in objcopy copy_section - CVE-2025-7546: fix corrupted group section handling in elf.c ('Important', ['ELSCVE-84037', 'ELSCVE-84015', 'ELSCVE-80434', 'ELSCVE-80417']) Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2025-11082: fix heap buffer overflow in _bfd_elf_parse_eh_frame - CVE-2025-5244: fix NULL deref in elf_gc_sweep for empty SEC_GROUP - CVE-2025-5245: fix SEGV in debug_type_samep / debug_write_type - CVE-2025-7545: fix heap buffer issue in objcopy copy_section - CVE-2025-7546: fix corrupted group section handling in elf.c

0 tuxcare-rhel7-els binutils-2.27-44.base.el7_9.1.tuxcare.els4.x86_64.rpm 48146bb88569b940a5cfbce636fa3bafc87442910a4a0497407001a4113a9f94 binutils-devel-2.27-44.base.el7_9.1.tuxcare.els4.i686.rpm f40c3858095361f9b229e2b4985b2fa2d3ea23f7276225ca037a4be981ec7724 binutils-devel-2.27-44.base.el7_9.1.tuxcare.els4.x86_64.rpm 86522fbffd39a9f0c9c98b901bf61860b29607ea958301f96114faa43c31c0b3 CLSA-2026:1776343034 haproxy: Fix of CVE-2023-45539 TuxCare License Agreement 0 - CVE-2023-45539: reject '#' as part of the URI to prevent ACL bypass via path_end rules ('Important', ['ELSCVE-86963']) Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2023-45539: reject '#' as part of the URI to prevent ACL bypass via path_end rules

0 tuxcare-rhel7-els haproxy-1.5.18-9.el7_9.1.tuxcare.els1.x86_64.rpm f6cbbe2a4d09009332b0ed072322906f212c66b31077a2071a3145803aeb55fc CLSA-2026:1768300651 git: Fix of CVE-2024-50349 TuxCare License Agreement 0 - CVE-2024-50349: fix ANSI escape sequence vulnerability that occurs when asking for credentials interactively ('Important', ['ELSCVE-86207', 'ELSCVE-85873']) Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2024-50349: fix ANSI escape sequence vulnerability that occurs when asking for credentials interactively

0 tuxcare-rhel7-els emacs-git-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm d22899535c8bbafaf31a3cb8e26c52264e23d84e36fa0929c9bb459731ed65e6 emacs-git-el-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 15057c212f02a7ebe3a19829d9483184635f00bdeb8079f2f337bf6e66369969 git-1.8.3.1-25.el7_9.tuxcare.els9.x86_64.rpm 39637f0a2dc65fe992c08ee475f7b0f7134f8e67cbbc0f16a95814cbdbdc5c27 git-all-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm cb0bab54cf8fd7c0fce2d3399c57d787800d2caf5b0a2d0af3ff1611d49ecf65 git-bzr-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm dc98a7a82526632d5a9339a222c6daf985d5b71e3fad2fca4bcd0973f036fb8f git-cvs-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 6e26949e22f604107fed6de44873719489d6fadf54905b678847b153d97a09bc git-daemon-1.8.3.1-25.el7_9.tuxcare.els9.x86_64.rpm 283ddb1776f66888a14c25e9b188abf964be9df0ae46060f7eaa8931329e2bd0 git-email-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 0303dd02a23c056fee9007dd933ffb07168a33674a60212a964761b26d907e69 git-gnome-keyring-1.8.3.1-25.el7_9.tuxcare.els9.x86_64.rpm a0faebcd4c28a4d0a9c5087c94f4737500e283a6d18c3e3516079142cadd678d git-gui-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 4f43a333140d6cfdfc581c6ab7a57ad1db351369fa086f224298f00793e2c038 git-hg-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 5d9d03a84f1a12e67ba24a80c032e5353cd736c7cdd179492d79066c6bbf30e0 git-instaweb-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 88e91597906ac6729b067c331c449bd66c5fddc459924540e277eaede0fad9b5 git-p4-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm b903500bbf4799204131f2e129251667e3ee2b99cfc1f9f91bdc50104d33c59b git-svn-1.8.3.1-25.el7_9.tuxcare.els9.x86_64.rpm f6bf7be3d6893fa038e49c6dbcb26a33239e2499ec4cf9c85601b6a7f6237303 gitk-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 7d713ae2ecc76baf6e6ed78ba57b373bbd74293144885b34318edf161c25064b gitweb-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 6f0ddbe850decb2bfcef7c0c43c280878018d93bf719981af13acd2ce05ade86 perl-Git-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm 99c07ed71eb499657a73f33b04d1814c00bb14069cee9375f2e19cde24962843 perl-Git-SVN-1.8.3.1-25.el7_9.tuxcare.els9.noarch.rpm c910a81553f067bd11ae4f829a56fcff574e27fbcee69e5cf6a40d97b5b8d1d0 CLSA-2026:1776441769 expat: Fix of 4 CVEs TuxCare License Agreement 0 - CVE-2017-9233: fix external entity infinite loop in entityValueInitProcessor and entityValueProcessor - CVE-2023-52425: add reparse deferral heuristic to prevent O(n^2) parsing of large tokens in small buffer refills; fix buffer growth calculation - CVE-2013-0340: add billion laughs (entity expansion bomb) attack protection with amplification limit (100x max, 8 MiB activation threshold); includes fix for isolated external parser bypass (CVE-2024-28757) - CVE-2024-28757: add billion laughs (entity expansion bomb) attack protection with amplification limit (100x max, 8 MiB activation threshold); includes fix for isolated external parser bypass (CVE-2024-28757) ('Important', ['ELSCVE-95519', 'ELSCVE-95518', 'ELSCVE-85082', 'ELSCVE-48544']) Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the CLN.

- CVE-2017-9233: fix external entity infinite loop in entityValueInitProcessor and entityValueProcessor - CVE-2023-52425: add reparse deferral heuristic to prevent O(n^2) parsing of large tokens in small buffer refills; fix buffer growth calculation - CVE-2013-0340: add billion laughs (entity expansion bomb) attack protection with amplification limit (100x max, 8 MiB activation threshold); includes fix for isolated external parser bypass (CVE-2024-28757) - CVE-2024-28757: add billion laughs (entity expansion bomb) attack protection with amplification limit (100x max, 8 MiB activation threshold); includes fix for isolated external parser bypass (CVE-2024-28757)

0 tuxcare-rhel7-els expat-2.1.0-15.0.7.el7_9.tuxcare.els1.i686.rpm 2ab704f1f93aecedf9114eafe271b2c4b3a705f286236a641c197b18d249d06a expat-2.1.0-15.0.7.el7_9.tuxcare.els1.x86_64.rpm 37de151dc3f4a53fbe0cf2bca3bda6711f755a21e333601240d08cbce6b8bcf0 expat-devel-2.1.0-15.0.7.el7_9.tuxcare.els1.i686.rpm 5480fc17783a572f119217c0440a96b3c7a679b6b228a0df41f32e9094531fa8 expat-devel-2.1.0-15.0.7.el7_9.tuxcare.els1.x86_64.rpm e4c85cfe5b0dd2aa875a672657fab5cd2f4139295e09893cd9c91cb6bcacd506 expat-static-2.1.0-15.0.7.el7_9.tuxcare.els1.i686.rpm 45b7d811d33ad374230c3e6a03532144bc65dfa93506c44e053155fa0b4302c0 expat-static-2.1.0-15.0.7.el7_9.tuxcare.els1.x86_64.rpm 84bb60d8ebfd36d4186be2231a272893097991a0459e70373fbab14d698c649f