new packages: protobuf-c

RLBA-2022:2682 new packages: protobuf-c For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for protobuf-c. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms protobuf-c-compiler-1.3.3-12.el9.aarch64.rpm 0bc397b9f0b8857be4d5343145bcfbc04980a67f3e076ab9adcec1ec166bf803 protobuf-c-devel-1.3.3-12.el9.aarch64.rpm 840520e9c9508da5f049775d11e6cbff79ff21bf0cbc7ff76f5aa7edd5a77570 RLBA-2022:3906 new packages: ModemManager For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ModemManager. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ModemManager-devel-1.18.2-3.el9.aarch64.rpm 1fe67e5b70614609813a9dbddee95ae0958a738d6c4200afdd05ead439b15093 ModemManager-glib-devel-1.18.2-3.el9.aarch64.rpm c5a24d1c988edd58c330f3cf363409f75affab52c159d424599bd6e9f2c1fea2 RLBA-2022:3916 new packages: fonts-rpm-macros For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fonts-rpm-macros. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms fonts-rpm-macros-2.0.5-7.el9.1.noarch.rpm 8ccbcc8437fc2e6bdb7da7e914d733ca4440d972b906d970449ccf2a09f079ad RLBA-2022:3931 new packages: glib2 For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glib2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms glib2-static-2.68.4-5.el9.aarch64.rpm 278d682e5a196a09bbdd9467edec31038f713272960286276a10a9540971e301 RLBA-2022:3935 new packages: fuse For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fuse. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms fuse-devel-2.9.9-15.el9.aarch64.rpm 6bedd93d92c52b432a3c0721eb75a1a2e8f270738e1592f62c5a8ae898eaa336 RLBA-2022:3938 new packages: libxmlb For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libxmlb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libxmlb-devel-0.3.3-1.el9.aarch64.rpm 44d261431d269f3e0f57fffaba6bc38c0e5e83269b7a7b5b133a9f6b6ed751ca RLBA-2022:3939 new packages: libgusb For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgusb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgusb-devel-0.3.8-1.el9.aarch64.rpm 96f8508367bc21a71db00436f70c7252c335299d700af00b938315704e91ca53 RLBA-2022:3940 new packages: gobject-introspection For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gobject-introspection. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gobject-introspection-devel-1.68.0-10.el9.aarch64.rpm fe01b4f18764d52fb0e32874eeb7183e8169f2fba918a28bf14974c990efd3d9 RLEA-2022:3950 new packages: RDMA stack For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mpitests, ucx, rdma-core, mstflint, libvma, libpsm2, fabtests, openmpi, perftest, eth-tools, mpich, libfabric. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3-mpich-3.4.2-1.el9.aarch64.rpm 2c8b8183141106518a29a86143840dba4001eb03462457343378a9ed24edc343 python3-openmpi-4.1.1-5.el9.aarch64.rpm 1dae40124be5836fc7fdd5142d2d844c911a9ffc39c9489953c83d335035b8d9 RLBA-2022:3962 new packages: libcomps For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libcomps. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libcomps-devel-0.1.18-1.el9.aarch64.rpm befe750022326c41944dff24c3a762f8324dd7df6b08db30b8dc5b51cc9d99d1 RLBA-2022:3964 new packages: kmod For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for kmod. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms kmod-devel-28-7.el9.aarch64.rpm ad6e2b995bba79ab33e55135bd4edc91eb4f07862a3868d0970c2da4b5e4026d RLBA-2022:3975 new packages: json-c For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for json-c. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms json-c-devel-0.14-11.el9.aarch64.rpm 52c07a5031940eeb45f353a6deb1e5d4a4e1e77daf7f7299880ecdcab326913c json-c-doc-0.14-11.el9.noarch.rpm e3b3c4fb56fcd74820d10d0c5fca18529c7c9f0c519dc4f891813b826b7030e0 RLBA-2022:3983 new packages: pcsc-lite For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pcsc-lite. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms pcsc-lite-devel-1.9.4-1.el9.aarch64.rpm 7f09b1875311f47a0e9520110050dbfdd286914e08d50953ab37122cbb8188ff RLEA-2022:3986 new packages: ipset For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipset. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ipset-devel-7.11-6.el9.aarch64.rpm 464e3e352999d8d24f68c0c57bea04077023bc83008074e331b24239b391fce0 RLBA-2022:3987 new packages: libdb For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libdb-cxx-5.3.28-53.el9.aarch64.rpm 2a143edbbf1fd2c1cf1efcd42ecfede84b9bcd2c2c389c8b81dd15085a217495 libdb-cxx-devel-5.3.28-53.el9.aarch64.rpm 7ddfedc21b66b95ac74315f983926936c4e5a793c0ef0eabe3a5a4b1c5e43417 libdb-devel-doc-5.3.28-53.el9.noarch.rpm b743f2065d46a14b686c79f9d02b49d149ce3519d7921192f324a886852ca4da libdb-sql-5.3.28-53.el9.aarch64.rpm a01e21fc94924541ebe73dd2a75945291a0a2f5dd6b3103cc69dedd78c3162fd libdb-sql-devel-5.3.28-53.el9.aarch64.rpm ee8f142192baac07e310eeb9dd442cdb05956baa58c2568c206e9e6eceee1ee8 RLBA-2022:3990 new packages: trace-cmd For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for trace-cmd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtracecmd-devel-0-9.el9.aarch64.rpm 984a0cd9cf93a9690fb14328369c80145dd10f26bdabace12790a4f66aa9503c RLBA-2022:4002 new packages: jansson For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jansson. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms jansson-devel-2.14-1.el9.aarch64.rpm 44a5e28010e474ba9198f8fb388cec47063f10bd384975d245a81a3e2ce60bb5 RLBA-2022:4008 new packages: snappy For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for snappy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms snappy-devel-1.1.8-8.el9.aarch64.rpm 5a2e128482e0bd70641fb5734d70213c03dcec1c8aef955328f18d9efa519acd RLBA-2022:4011 new packages: libtalloc For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtalloc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtalloc-devel-2.3.3-1.el9.aarch64.rpm f62ab82d4f893dd8e8a8768af547c429f0b461cddf762ee453b13ea87bcc15f6 RLEA-2022:4019 new packages: ima-evm-utils For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ima-evm-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ima-evm-utils-devel-1.4-4.el9.aarch64.rpm ddafbe1a3dd1212e4d4ba9643a61844ee0e66312da5276432a182bfe87719645 RLBA-2022:4031 new packages: libtraceevent For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtraceevent. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtraceevent-devel-1.1.1-8.el9.aarch64.rpm 0788d05b6005414278dd2d097414b6f36778d448a0ba08e728a9c2a2c0750db1 RLBA-2022:4034 new packages: libtracefs For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtracefs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtracefs-devel-1.0.2-7.el9.aarch64.rpm e0ccf68f513e1d6514f05db1cb0c267c631f1489d7d45d088573a8462b255d0e RLBA-2022:4038 new packages: sysfsutil For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sysfsutils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsysfs-devel-2.1.1-10.el9.aarch64.rpm 199122d6f6f9261d6436671bce55139047e4c9cd89280920f64a7e5330b2fecd RLBA-2022:4050 new packages: efivar For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for efivar. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms efivar-devel-38-2.el9.aarch64.rpm 1720a6938e1f8eee99017fae30506726c6db2354487fdb17b4004143d43023c3 RLBA-2022:4066 new packages: pyparsing For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pyparsing. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms pyparsing-doc-2.4.7-9.el9.noarch.rpm ee650b7b67ae573560cefd33806bbc7a89aaa33e7c4808688118417e664c5b09 RLBA-2022:4068 new packages: gpgme For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gpgme. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gpgme-devel-1.15.1-6.el9.aarch64.rpm 581249f1c79ff9dc3b0adab83016c3141e2d58f8bcf3fb4553895214a62aa3f6 gpgmepp-devel-1.15.1-6.el9.aarch64.rpm 9ba99b8b04518c50be112bd8613dd0c09a3c8787671d9a268a596b83d9616606 qgpgme-1.15.1-6.el9.aarch64.rpm cd7b7727c0fbdb22a32975f6282c8c314a0390813f2864f64e83e68898f3a9d1 qgpgme-devel-1.15.1-6.el9.aarch64.rpm ada57a4687de825aa0ba218eca12e41187e1aecabb92e96f8c71427d90cd5c9d RLBA-2022:4075 new packages: texinfo For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for texinfo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms texinfo-6.7-15.el9.aarch64.rpm bd22b8b7cf89ceaca45578de22a5c5dbf7c490c438a3ec1ec27c75318fde4a46 texinfo-tex-6.7-15.el9.aarch64.rpm d62941fac442d30d35b0a84d0531783ec443b1a04c542828052f109021c4f95b RLBA-2022:4091 new packages: avahi For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for avahi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms avahi-compat-howl-0.8-12.el9.aarch64.rpm dd20371ba6e0346f84ef7ba50797dda280cb3c802f940d0912f81192c770f71d avahi-compat-howl-devel-0.8-12.el9.aarch64.rpm c5b20cfe6a9262ccf89131fe2a178ac948df53ec1e7e14436be0537e74fdca81 avahi-compat-libdns_sd-0.8-12.el9.aarch64.rpm 4bd8a2973c17eb5916bafc977b676d92b5dd1196d86cffe7994fb3374a9bead6 avahi-compat-libdns_sd-devel-0.8-12.el9.aarch64.rpm 22894092eeba8b6fbab255de788393864212169326bbb9d575851741561178a6 avahi-devel-0.8-12.el9.aarch64.rpm 9f923bb904376a07dc967b3d90ceca4d72c7e78cdb025147d96bd88bb9ba25bf RLBA-2022:4105 new packages: cracklib For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cracklib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms cracklib-devel-2.9.6-27.el9.aarch64.rpm d7d07290226b44c9731e43fcc8f474dab7a099ae235e3877096bb6cc72c7a465 RLBA-2022:4124 new packages: gcab For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gcab. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgcab1-devel-1.4-6.el9.aarch64.rpm 8c99983b18e29777d2b6f3e41ac7c792c5abee04fc923e32c5a861874c377ebc RLBA-2022:4125 new packages: gdbm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gdbm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gdbm-1.19-4.el9.aarch64.rpm 413de3ee07befc30e9396651dd3b88bc7d0b5cdbc6935f8546ecf32baf2125c8 gdbm-devel-1.19-4.el9.aarch64.rpm 399d5205373f8eddb398f9cb03424ea264055d84d5c0fe8ce918ba670567d19a RLBA-2022:4151 new packages: libassuan For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libassuan. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libassuan-devel-2.5.5-3.el9.aarch64.rpm be5ab544beb936c661e944314e63a315faa5011de27463882238853e72606c9b RLBA-2022:4153 new packages: libconfig For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libconfig. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libconfig-devel-1.7.2-9.el9.aarch64.rpm c5c3d996271003c6a386a83e7a0a0c507b2671504e9dd518c6978ad9d0b3345b RLBA-2022:4154 new packages: libdaemon For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdaemon. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libdaemon-devel-0.14-23.el9.aarch64.rpm ca16205c4a22e0cb80b90ae91813a7e5e0ea065a7a4424a162cf3c530e36f85d RLBA-2022:4160 new packages: libfido2 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libfido2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libfido2-devel-1.6.0-7.el9.aarch64.rpm b88aa35ab7ce8f87d2b80ea6d2981c9ed34811275916c6409e6c6ce51117c9ea RLBA-2022:4161 new packages: libgudev For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgudev. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgudev-devel-237-1.el9.aarch64.rpm 5811bf5bf3a291edca5073d3e079130cd3a3f00efe29efe8feb67eb13a9a6a9c RLBA-2022:4163 new packages: libjcat For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libjcat. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libjcat-devel-0.1.6-3.el9.aarch64.rpm 93281c9948e1112f4a790feb043d6916ead422447ea6286e44061404fd2df23d RLBA-2022:4166 new packages: libmnl For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmnl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libmnl-devel-1.0.4-15.el9.aarch64.rpm 537319e8a7e149ce67db46c7cc67d7884174766bbbdbcbf3a61478af32b10a1b RLBA-2022:4167 new packages: libmodulemd For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmodulemd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libmodulemd-devel-2.13.0-2.el9.aarch64.rpm 3307dfef53335d970e4aeddb5333b371cefb51778303c241d5f46c40d448e1de RLBA-2022:4169 new packages: libnetfilter_conntrack For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnetfilter_conntrack. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnetfilter_conntrack-devel-1.0.8-4.el9.aarch64.rpm febdd3e936a5c1da24c6fd89f1968630d1ce9d4480fdc20483e9ddd4afe9846c RLBA-2022:4170 new packages: libnfnetlink For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnfnetlink. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnfnetlink-devel-1.0.1-21.el9.aarch64.rpm 605ee0d54953a4b3712abad47c4e412fb97b2255b657b4e8a491d0b9d80c85f9 RLBA-2022:4173 new packages: libpcap For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpcap. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libpcap-devel-1.10.0-4.el9.aarch64.rpm 62371e7be85b3fce3a8c9453573b7344bc88a59ceb0ba005800176092b1e04a4 RLBA-2022:4174 new packages: libpciaccess For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpciaccess. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libpciaccess-devel-0.16-6.el9.aarch64.rpm 85144d14a9e3fef1eba1078143f50a0d165d58bd03f212353e63d643f580af07 RLBA-2022:4175 new packages: libpeas For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpeas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libpeas-devel-1.30.0-4.el9.aarch64.rpm ae03e0dcff186e6a03413bb4bf11208dca900affa82c11bfcc75e27c071e56de RLBA-2022:4178 new packages: libproxy For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libproxy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libproxy-devel-0.4.15-35.el9.aarch64.rpm 1ca721f88249fa2b2afc493f6f442f79aaba6371278265ef2105bdb7b22846bc RLBA-2022:4180 new packages: libpwquality For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpwquality. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libpwquality-devel-1.4.4-8.el9.aarch64.rpm f678130b964895379652e6933473bc81500ffcd19b7579779209ffdba8222efb RLBA-2022:4181 new packages: librhsm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librhsm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms librhsm-devel-0.0.3-7.el9.aarch64.rpm a54c20f5dd9a76eb633106f5740f2e75fb23ad5597aa57911209f9cb16ed8690 RLBA-2022:4182 new packages: libsigsegv For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsigsegv. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsigsegv-devel-2.13-4.el9.aarch64.rpm 31debd2babded01c6691b652f5c16c16578956b9c976c8600d2442526ae08b29 RLBA-2022:4187 new packages: libunistring For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libunistring. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libunistring-devel-0.9.10-15.el9.aarch64.rpm 472a482e80ef97036cd6fdaac3a2208bd867ce66b79d5a0305d166ff542e7d99 RLBA-2022:4189 new packages: libutempter For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libutempter. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libutempter-devel-1.2.1-6.el9.aarch64.rpm b2bdd860bc4c1472057b3184ea1d8508d0691bc35046fa1e69486a6958efb0ca RLBA-2022:4192 new packages: libxcrypt For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libxcrypt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libxcrypt-static-4.4.18-3.el9.aarch64.rpm c1790a96e11c0765290f824166edfb77dd9fc2c973cb874b0afac8fd1314b574 RLBA-2022:4193 new packages: libyaml For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libyaml. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libyaml-devel-0.2.5-7.el9.aarch64.rpm 2512b5b36b27cf8705e8fc1e2d4c708e258fb2c8ad3217eca4eb24ae28c08c8b RLBA-2022:4196 new packages: lmdb For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lmdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms lmdb-0.9.29-3.el9.aarch64.rpm 846546ba41b2eabb949ee93db70416dfe8bfd8318b8b9c62906d2c0ee83f8abc lmdb-devel-0.9.29-3.el9.aarch64.rpm f4b943d457913a364bd363486778c34543b2129b306d3169a2e0dce367020233 RLBA-2022:4197 new packages: lockdev For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lockdev. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms lockdev-devel-1.0.4-0.37.20111007git.el9.aarch64.rpm 81dcf3ecd4b3bc9ff54f4a913368f889cee695e6431eae514e979efa167be31d RLBA-2022:4225 new packages: nghttp2 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nghttp2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnghttp2-devel-1.43.0-5.el9.aarch64.rpm f03cd5f7c042ea047e2bcac1ecbde07139eeec273abad8e0680940d672fd3858 nghttp2-1.43.0-5.el9.aarch64.rpm 5e1846967e2aa4e514cf4bc424539ee1f0bef739815329ffdb1e8edc8b00f8e2 RLBA-2022:4226 new packages: npth For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for npth. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms npth-devel-1.6-8.el9.aarch64.rpm 081cdc61adc218712667adf8fad1b777ebca8ca68b398e2f1efb679477405ef0 RLBA-2022:4229 new packages: opensm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for opensm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms opensm-devel-3.3.24-2.el9.aarch64.rpm 177bb0c064469155aa466a97747f194ab303622f147a452645e0f32d7a39488f RLBA-2022:4235 new packages: pcre For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pcre. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms pcre-static-8.44-3.el9.3.aarch64.rpm a4b8547cb47d5d9c44205415756f1c61b5ccc76de42301fa49c24ab231457f8d RLBA-2022:4241 new packages: ppp For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ppp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ppp-devel-2.4.9-5.el9.aarch64.rpm aab32272dc5030423e525096a7713e5899bafeaf6a4a9cb82d36d52e00529031 RLBA-2022:4247 new packages: python-dateutil For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for python-dateutil. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python-dateutil-doc-2.8.1-6.el9.noarch.rpm 57077af0d69a9a75a996c43ef30010623b7ececc4679ef0fe1d310a0135ef879 RLBA-2022:4258 new packages: quota For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for quota. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms quota-devel-4.06-6.el9.aarch64.rpm bafde90c487a785150a617b9d8389c71488b574c3a105d3e05c5aaa23f7ef801 RLBA-2022:4282 new packages: userspace-rcu For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for userspace-rcu. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms userspace-rcu-devel-0.12.1-6.el9.aarch64.rpm 569246da397e8b8ccffce4838dab0add53f3bf7efa1ea54e5649325820964deb RLEA-2022:4570 new packages: libreoffice:flatpak For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for zaf, hyphen-uk, libpagemaker, hyphen-ca, hunspell-et, hyphen-eu, hyphen-ga, libvisio, raptor2, hunspell-ta, mythes-nl, hunspell-lt, hunspell-sk, ongres-scram, hunspell-hu, libshout, hunspell-nso, poppler, hunspell-nl, hunspell-hi, openjpeg2, libabw, hunspell-es, hunspell-sv, hyphen-sv, hyphen-te, google-carlito-fonts, hunspell-br, hunspell-ml, hyphen-pl, hunspell-pl, hyphen-el, hyphen-ru, hunspell-bg, hyphen-es, mythes-ro, hyphen-as, libloader, libmspub, dconf, mythes-en, libreoffice-voikko, hunspell-de, hunspell-id, hunspell-eu, libexttextcat, hyphen-da, pentaho-libxml, redland, hunspell-kn, libcmis, libepubgen, libodfgen, hunspell-fr, hunspell-th, hunspell-zu, xmlsec1, libnumbertext, hyphen-gu, libreoffice, hyphen-nl, hyphen-ro, libfontenc, librevenge, libwpg, hyphen-it, mythes-it, libmwaw, ttmkfdir, postgresql-jdbc, hunspell-sr, hunspell-ga, hunspell-ro, openoffice-lv, lksctp-tools, mythes-sk, mythes-cs, hyphen-cy, libformula, liblayout, clucene, hunspell-hr, mythes-ru, hunspell-gl, hyphen-ta, mythes-da, hunspell-tn, libqxp, lpsolve, hunspell-gu, mythes-pt, mythes-sl, libetonyek, hyphen-lt, google-noto-fonts, hunspell-ar, neon, librtas, hyphen-sk, hunspell-cy, boost, hunspell-ko, hunspell-si, flute, hunspell-pt, hyphen-fa, libzmf, hunspell-nr, hunspell-pa, hunspell-ve, mythes-ca, sac, hunspell-it, hyphen-bg, gstreamer1-plugins-good, openoffice.org-dict-cs_CZ, hyphen-gl, hyphen-hu, taglib, bitmap-fonts, libwps, hyphen-de, libbase, hunspell-af, hunspell-or, mythes-ga, xorg-x11-fonts, hunspell-no, hunspell-kk, libvoikko, mythes-sv, hunspell-el, hyphen-id, hunspell-da, libwpd, hunspell-ss, hunspell-ts, hyphen-bn, hyphen-sl, libeot, mythes-fr, hunspell-te, mythes-pl, pentaho-reporting-flow-engine, mythes-de, mythes-es, hunspell-as, hunspell-fa, hyphen, hunspell-uk, mythes-el, hyphen-hi, mythes-hu, hyphen-or, hyphen-mr, hunspell-xh, hyphen-pa, libserializer, poppler-data, hunspell-mr, hspell, hunspell-st, hunspell-ru, libfreehand, hunspell-ca, hyphen-fr, hunspell-bn, gstreamer1-plugins-base, twolame, libcdr, Box2D, liborcus, hyphen-ml, hunspell-sl, javapackages-tools, librepository, libstaroffice, libfonts, v4l-utils, rasqal, voikko-fi, hyphen-kn, mythes-uk, mythes-bg, hyphen-pt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms clucene-core-devel-2.3.3.4-42.20130812.e8e3d20git.el9.aarch64.rpm 407136bfdb2c11ce5109e5f9128d5eb7d818448b473703d8925e0ca9222a8d8f dconf-devel-0.40.0-6.el9.aarch64.rpm 27d14f0cd3ae3269e2a9e7a7a66ef68ced5f1d3fa4193ad6440e60c9e27dc6c4 javapackages-generators-6.0.0-3.el9.noarch.rpm 317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30 javapackages-local-6.0.0-3.el9.noarch.rpm 8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8 libeot-0.01-18.el9.aarch64.rpm 6dcd26e7b498b9a3c2078f56b45cfd27f834ab1d4210a791aa79a05c8574638d libetonyek-devel-0.1.10-2.el9.aarch64.rpm 3c8b67169ab92eff65836175033a57ac3229d0d4bd1586ff9cfaf4ce544ac01f libfontenc-devel-1.1.3-17.el9.aarch64.rpm 631c347fe7a67e2621617d249289b1ea5071a1af64c91f1091df0157141c67a3 libodfgen-devel-0.1.8-4.el9.aarch64.rpm 2906fa4bb807a7423b51aa22d8fa9a887192c3f6ca068846a1b05db9868b146e librevenge-devel-0.0.4-22.el9.aarch64.rpm c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4 libshout-devel-2.4.3-7.el9.aarch64.rpm 5e1af2e46a5301c9f34626483516dcb9c430885952855157f5c14c593f63ab84 libv4l-devel-1.20.0-5.el9.aarch64.rpm 885378d8783da55b5a7a64deb5745f61d5b89b7ac9911faecc4b9205364309bd libvisio-devel-0.1.7-9.el9.aarch64.rpm f4bf5d016f918afdc7ee62beee2b83a70657f87d3ff4f11f33cdba50de42bcec libvoikko-devel-4.3-7.el9.aarch64.rpm 70053a0d076781af4e9847b1d01e24a714bbd1b1f531412b52a1899a1e426521 libwpd-devel-0.10.3-10.el9.aarch64.rpm d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 libwpg-devel-0.3.3-8.el9.aarch64.rpm ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326 libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 libwps-devel-0.4.12-4.el9.aarch64.rpm 5f623d9ec9c1ae83ee39cddd18b6ac35d5be99e463abb665946d247d1f5018d3 libwps-doc-0.4.12-4.el9.noarch.rpm a57cc3f098bec98c980281bf98395ecd53c2f63d364e03fabd653f02ca29a8cf maven-local-6.0.0-3.el9.noarch.rpm 1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878 neon-devel-0.31.2-11.el9.aarch64.rpm 095a73f8063bdf20163211c8e44ee6284d8b153c3d056240ef8c90404d60fbef python3-javapackages-6.0.0-3.el9.noarch.rpm 899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2 raptor2-devel-2.0.15-30.el9.aarch64.rpm 74d2f985d35631ff6803faf444eb6e288ca168f46546601c1a4c33f6d50018ea rasqal-devel-0.9.33-18.el9.aarch64.rpm 428a21bf2f1fff8485f24f87a97fa75c86b4ab791a55e92bead0240cd15804ec redland-devel-1.0.17-29.el9.aarch64.rpm 20b31c37d1699bda5d3f395d3426a4685b2350ee13386e36ac900fc092363eb7 taglib-devel-1.12-6.el9.aarch64.rpm 302edef8009de60952bbea22d4192bc70db6406445db778ffc8a4b9921def0d7 twolame-devel-0.3.13-19.el9.aarch64.rpm 86ba074c8dabc035c21e7e9842ea4ab318ad15647596fe8782795937a0ce4d98 xmlsec1-devel-1.2.29-9.el9.aarch64.rpm 173bf7b0b92fd87a1ba2a9de8cb7393970990e79024ccc4985b4588b28358132 xmlsec1-gcrypt-1.2.29-9.el9.aarch64.rpm bbcf0e81746775754d83c3f06b59b85dcede2324085a8f487a9acbb9b3f52ad7 xmlsec1-gnutls-1.2.29-9.el9.aarch64.rpm 76784a298ad5c53ebca60c66969ad00049d793cf214c60d2f2bb9ce588221485 xmlsec1-gnutls-devel-1.2.29-9.el9.aarch64.rpm 23867d3938ab3d16a854caaee7a20b8226e245bcf48126d553704d612c3c5086 xmlsec1-openssl-devel-1.2.29-9.el9.aarch64.rpm 732db3fe3592e36b933dcab625764bb6197e4a26be755f2c026fe13b6ee0fc66 RLSA-2022:7090 Important: libksba security update KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix(es): * libksba: integer overflow may lead to remote code execution (CVE-2022-3515) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for libksba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix(es): * libksba: integer overflow may lead to remote code execution (CVE-2022-3515) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libksba-devel-1.5.1-5.el9_0.aarch64.rpm 6ecbdb1abb0442b36741379899d6504501699ee02d37728875c5f4bd0f2e8538 RLSA-2022:7329 Moderate: lua security update The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language. Security Fix(es): * lua: heap buffer overflow in luaG_errormsg() in ldebug.c due to uncontrolled recursion in error handling (CVE-2022-33099) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for lua. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language. Security Fix(es): * lua: heap buffer overflow in luaG_errormsg() in ldebug.c due to uncontrolled recursion in error handling (CVE-2022-33099) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms lua-devel-5.4.2-4.el9_0.3.aarch64.rpm 126101238e19657c9c15bc6d8e14c36b385c19369d02d62f8ba9b1ff60405adc RLBA-2022:8265 NetworkManager bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for NetworkManager. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms NetworkManager-libnm-devel-1.40.0-1.el9.aarch64.rpm 2e99a8d8d06a2c2e5bfa157c5863bda710652862965275d1efca4d99801fbde0 RLBA-2022:8277 gcc bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gcc-plugin-devel-11.3.1-2.1.el9.aarch64.rpm ce70992e30a85a8023e290387b4fcfcb39787d624c3cb7beaaee24ba3e8e6a59 libstdc++-static-11.3.1-2.1.el9.aarch64.rpm d3090fe40606ebfddf0ec36a3819f23e6f425f6636cde8b1d0d35a12ccfd708e RLBA-2022:8280 trace-cmd bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtracecmd-devel-0-9.el9.aarch64.rpm 984a0cd9cf93a9690fb14328369c80145dd10f26bdabace12790a4f66aa9503c RLBA-2022:8289 shadow-utils bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for shadow-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms shadow-utils-subid-devel-4.9-5.el9.aarch64.rpm 7e039c421839a6da651a7d465f3168db586509b2156a97d37cd4c8a7841c7ae6 RLBA-2022:8293 libsemanage bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsemanage. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsemanage-devel-3.4-2.el9.aarch64.rpm d6886c823bd56aa1fe59c5de44ae9bd526b6c87093a5b3a6d5c89769deb643fe RLBA-2022:8295 libdnf bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdnf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libdnf-devel-0.67.0-3.el9.aarch64.rpm fcadd9e6b99a10dc5dc46452dcbffe963f169aa0f590fb14746a4f5f924c6fc8 RLBA-2022:8298 libsolv bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsolv. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsolv-devel-0.7.22-1.el9.aarch64.rpm 4d8266245c95049387d11cf84204248e9edcee4a48cf85fffba326d6983b92bf libsolv-tools-0.7.22-1.el9.aarch64.rpm ea2c79aaa34e859e5579fbeba264cc73522c30811cafdf50b0f56f0608d2a804 RLBA-2022:8309 jitterentropy bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jitterentropy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms jitterentropy-devel-3.4.0-1.el9.aarch64.rpm 514a939cc4c958c102c47143f7f08a5bdf0720a8badb6ad4acef09ae84d29b8f RLBA-2022:8312 ding-libs bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ding-libs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libbasicobjects-devel-0.1.1-53.el9.aarch64.rpm 2b95f148aa7e1a5d97a3635532c99ce9e250327312b74123708bc1679b8e2541 libcollection-devel-0.7.0-53.el9.aarch64.rpm 578c8adf4a2cd52c11445ad72c306b3dd47af997032573c941384672c4ad5975 libini_config-devel-1.3.1-53.el9.aarch64.rpm f29de0f527da45c8883db99de8c66f64e5e34efffd9d26ba6b4314775c0461c9 libpath_utils-devel-0.2.1-53.el9.aarch64.rpm bf7cf5f73375c2fd5e4c4becc674d240c439cacd531a79b749e465d0d7430841 libref_array-devel-0.1.5-53.el9.aarch64.rpm 6426019bb72f84cba28eedf114b1de5a1c815e02a6c65e1898fe89dcaa5114b3 RLSA-2022:8317 Moderate: samba security, bug fix, and enhancement update Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba (4.16.4). (BZ#2077487) Security Fix(es): * samba: server memory information leak via SMB1 (CVE-2022-32742) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for samba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. The following packages have been upgraded to a later upstream version: samba (4.16.4). (BZ#2077487) Security Fix(es): * samba: server memory information leak via SMB1 (CVE-2022-32742) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsmbclient-devel-4.16.4-101.el9.aarch64.rpm e4b0538611c9e7188bf2ac164c88cbc35d9708d0fa24867b6d0f86d3ebd12ed2 libwbclient-devel-4.16.4-101.el9.aarch64.rpm 824e2672512bf4d48e81d6e901e3f41fe3af512850ef753d7938e124ff90ef90 samba-devel-4.16.4-101.el9.aarch64.rpm 1e5197fd38f29e2382b359aa57629ef24b4baeaa767b263324e45477367196ac samba-pidl-4.16.4-101.el9.noarch.rpm 2a62fd23b7bc67bd4c85fd7ff2f748493c82ff8de5b0b1958238a9826188a7b4 samba-test-4.16.4-101.el9.aarch64.rpm bcbe62bba90ab7869d852288d834cdce5e1ebe34a82879fbda94991320775f89 samba-test-libs-4.16.4-101.el9.aarch64.rpm 830b9e50b5e057dd46115c25ff820672d07b0e22bad408ce066088a49e2d6873 RLSA-2022:8318 Moderate: libldb security, bug fix, and enhancement update The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. The following packages have been upgraded to a later upstream version: libldb (2.5.2). (BZ#2077490) Security Fix(es): * samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request (CVE-2022-32746) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libldb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libldb packages provide an extensible library that implements an LDAP-like API to access remote LDAP servers, or use local TDB databases. The following packages have been upgraded to a later upstream version: libldb (2.5.2). (BZ#2077490) Security Fix(es): * samba: AD users can induce a use-after-free in the server process with an LDAP add or modify request (CVE-2022-32746) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libldb-devel-2.5.2-1.el9.aarch64.rpm fc3276a2ad90ac6e57b098d4e4f4e3323d4691194106c135e8b0fb1f3f7a1f80 RLBA-2022:8319 libtdb bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtdb-devel-1.4.6-1.el9.aarch64.rpm 154708b3b438b0d357e605125968329ccf71e0eb75e92bb39dc16056b47fbb3c RLBA-2022:8320 libtevent bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtevent. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtevent-devel-0.12.0-0.el9.aarch64.rpm 5b5042eb586128c53eff42f0767550c92fc53aff9cf6752e01323ef4f792bc54 RLBA-2022:8336 libselinux bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libselinux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libselinux-static-3.4-3.el9.aarch64.rpm 00b54625ffd1173eb90d90d9fec8feef4da1b1ec2c961bb8bdaa58dad449c593 RLBA-2022:8337 libsepol bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsepol. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsepol-static-3.4-1.1.el9.aarch64.rpm 637c436c284453ec74126c02bab3ac058fe9edd539a4c1ece64114b3930fd50f RLBA-2022:8342 parted bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for parted. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms parted-devel-3.5-2.el9.aarch64.rpm 7e68b971bf33daf5601bbf1b6b37731ca400edcb51faefa5ceb7aeaec53b1a58 RLBA-2022:8343 libnftnl bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnftnl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnftnl-devel-1.2.2-1.el9.aarch64.rpm af0bb9e1ec97af4c612fdd8a6dcb598a1b8e24f908f0d01a1984d22c97d33882 RLBA-2022:8352 pygobject3 bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pygobject3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3-gobject-devel-3.40.1-6.el9.aarch64.rpm 9ef2b559e2ec8e7addd15d8ca89488dbbfaf5189ea2b4caf9da4bb09126af2a7 RLBA-2022:8357 ndctl bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ndctl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms daxctl-devel-71.1-7.el9.aarch64.rpm fb73c5d6c8fe8645aeefb69c67b930998c0d30bad77e59c6aa5f29a58f1874c8 ndctl-devel-71.1-7.el9.aarch64.rpm a30bc14fdcaaa0e661228dcebc4e1eb0a5448b087c29ec856c168cf1059b4204 RLEA-2022:8359 inih bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for inih. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms inih-devel-49-6.el9.aarch64.rpm bc1832816a3c9437dd5495e8b9dc769c6abbcc826d68d4389d83fe89d1aa5e5d RLBA-2022:8358 lvm2 bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lvm2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms device-mapper-devel-1.02.185-3.el9.aarch64.rpm b2ed58c0877fad5f9a645a45003427f2e888cce8c2c072f33dac92244d490fd1 device-mapper-event-devel-1.02.185-3.el9.aarch64.rpm f384131de35a8a89b941e358648a23b28809836d3ddc8029023fc16faddf97c3 lvm2-devel-2.03.16-3.el9.aarch64.rpm d016572d254da60a44a4a9feae9abb9cee83f079f743651c582bfd6d2386ff7a RLBA-2022:8364 libbpf bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libbpf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libbpf-devel-0.6.0-1.el9.aarch64.rpm d2a7bead72c4c3725867f6a29dc1b546188bed8786e4d018e3711c84fb1644e0 libbpf-static-0.6.0-1.el9.aarch64.rpm 2bc10a7e9a6613d404f88ab0e52c9b0fdfad6f8a8cc5a4209b1e2f774453471e RLBA-2022:8373 librepo bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librepo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms librepo-devel-1.14.2-3.el9.aarch64.rpm da2f0fff2f7d9a7b1e5feacc4f5b893f8957103276a6f1296d82043a51d40216 RLBA-2022:8372 iproute bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for iproute. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms iproute-devel-5.18.0-1.el9.aarch64.rpm eaadacff9ded25d2e1b13d70e7328bdd6a6db5d8f18c08e21778b67170c385f4 RLBA-2022:8376 nfs-utils bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nfs-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnfsidmap-devel-2.5.4-15.el9.aarch64.rpm 6626eb62e5f887491d381143bf61d9474ffc0c85ccbac2c18812df6d1ac655c5 RLBA-2022:8377 libarchive bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libarchive. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libarchive-devel-3.5.3-3.el9.aarch64.rpm 34f5f62deeeb03ada9cc6d1ee7128fc6e0a1e37ff973ed4d9113b3105171c2c2 RLBA-2022:8381 nftables bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nftables. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms nftables-devel-1.0.4-2.el9.aarch64.rpm d36b7f8d7be9557bd3aefdf32d057e163627a39d8efb4439f10fd967ea295042 RLBA-2022:8388 bluez bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for bluez. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms bluez-libs-devel-5.64-2.el9.aarch64.rpm cd7dfedcd877fb373d11da2f628fd53766971520e8bb1309d7353937af0416ab RLEA-2022:8391 RDMA stack bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ucx, rdma-core, mstflint, libvma, libpsm2, fabtests, opa-fm, opa-ff, eth-tools, libfabric. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libfabric-devel-1.15.1-1.el9.aarch64.rpm 5f440db5ee05d31644c4d2681ee61b73c78b35b6e6182315b0fad91a5490cb58 RLBA-2022:8392 sg3_utils bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sg3_utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms sg3_utils-devel-1.47-9.el9.aarch64.rpm 9974a75662aa2f01681627e793c189a3a23ad208733733ec245af0141c1cc861 RLBA-2022:8394 libuser bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libuser. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libuser-devel-0.63-11.el9.aarch64.rpm 712518218891381aa01ab469f72e26f729c455588b75847b39688381097d480c RLBA-2022:8395 fwupd bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fwupd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms fwupd-devel-1.7.9-1.el9.aarch64.rpm fbb5b7cc3a57b4ecf51475180e0093166fc132511d059aab172c2239fef4e3b7 RLBA-2022:8396 tpm2-tss bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tpm2-tss. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms tpm2-tss-devel-3.0.3-8.el9.aarch64.rpm a067522f448f94c464613591f630ac798c1bbb4336edf33fe52676a45799d0ee RLBA-2022:8398 liblockfile bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for liblockfile. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms liblockfile-devel-1.14-10.el9.aarch64.rpm 044777b8e7d5afc31679f9416e2fa409d96c6909c3c7d6b068cd2afc71c08832 RLSA-2022:8400 Moderate: libtirpc security update The libtirpc packages contain SunLib's implementation of transport-independent remote procedure call (TI-RPC) documentation, which includes a library required by programs in the nfs-utils and rpcbind packages. Security Fix(es): * libtirpc: DoS vulnerability with lots of connections (CVE-2021-46828) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libtirpc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libtirpc packages contain SunLib's implementation of transport-independent remote procedure call (TI-RPC) documentation, which includes a library required by programs in the nfs-utils and rpcbind packages. Security Fix(es): * libtirpc: DoS vulnerability with lots of connections (CVE-2021-46828) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtirpc-devel-1.3.3-0.el9.aarch64.rpm c53e95bfdc9d7a1d62f96b0e5969e00f689457d51f313ed035bd6796d3fbdc5d RLBA-2022:8404 util-linux bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for util-linux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libfdisk-devel-2.37.4-9.el9.aarch64.rpm f25baa7c6905a72f02a60a496ff309c2da516e8a9c81f9abed252c1dd854c282 RLBA-2022:8406 file bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for file. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms file-devel-5.39-10.el9.aarch64.rpm 04baa145cb6323672fccbaa5670f17c4215cd1eb2acf4e22c6588a02fc5fe553 RLBA-2022:8424 libreoffice:flatpak bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for zaf, hyphen-uk, libpagemaker, hyphen-ca, hunspell-et, hyphen-eu, hyphen-ga, libvisio, raptor2, hunspell-ta, mythes-nl, hunspell-lt, hunspell-sk, ongres-scram, hunspell-hu, libshout, hunspell-nso, poppler, hunspell-nl, hunspell-hi, openjpeg2, libabw, hunspell-es, hunspell-sv, hyphen-sv, hyphen-te, google-carlito-fonts, hunspell-br, hunspell-ml, hyphen-pl, hunspell-pl, hyphen-el, hyphen-ru, hunspell-bg, mariadb-connector-c, hyphen-es, mythes-ro, hyphen-as, libloader, libmspub, dconf, mythes-en, libreoffice-voikko, hunspell-de, hunspell-id, hunspell-eu, libexttextcat, hyphen-da, pentaho-libxml, redland, hunspell-kn, libcmis, libepubgen, libodfgen, hunspell-fr, hunspell-th, hunspell-zu, xmlsec1, libnumbertext, hyphen-gu, hyphen-nl, hyphen-ro, libfontenc, librevenge, libwpg, hyphen-it, mythes-it, libmwaw, ttmkfdir, postgresql-jdbc, hunspell-sr, hunspell-ga, hunspell-ro, openoffice-lv, lksctp-tools, mythes-sk, mythes-cs, hyphen-cy, libformula, liblayout, clucene, hunspell-hr, yajl, mythes-ru, hunspell-gl, hyphen-ta, mythes-da, hunspell-tn, libqxp, lpsolve, hunspell-gu, mythes-pt, mythes-sl, libetonyek, hyphen-lt, google-noto-fonts, hunspell-ar, neon, librtas, hyphen-sk, hunspell-cy, boost, hunspell-ko, hunspell-si, flute, hunspell-pt, hyphen-fa, libzmf, hunspell-nr, hunspell-pa, hunspell-ve, mythes-ca, sac, hunspell-it, hyphen-bg, gstreamer1-plugins-good, openoffice.org-dict-cs_CZ, hyphen-gl, hyphen-hu, taglib, bitmap-fonts, libwps, hyphen-de, libbase, hunspell-af, hunspell-or, mythes-ga, xorg-x11-fonts, hunspell-no, hunspell-kk, libvoikko, mythes-sv, hunspell-el, hyphen-id, hunspell-da, libwpd, hunspell-ss, hunspell-ts, hyphen-bn, hyphen-sl, libeot, mythes-fr, hunspell-te, mythes-pl, pentaho-reporting-flow-engine, mythes-de, mythes-es, hunspell-as, hunspell-fa, hyphen, hunspell-uk, mythes-el, hyphen-hi, mythes-hu, hyphen-or, hyphen-mr, hunspell-xh, hyphen-pa, libserializer, poppler-data, hunspell-mr, hspell, hunspell-st, hunspell-ru, libfreehand, hunspell-ca, hyphen-fr, hunspell-bn, gstreamer1-plugins-base, twolame, libcdr, Box2D, liborcus, hyphen-ml, hunspell-sl, javapackages-tools, librepository, libstaroffice, libfonts, v4l-utils, rasqal, voikko-fi, hyphen-kn, mythes-uk, mythes-bg, hyphen-pt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms boost-b2-1.75.0-8.el9.aarch64.rpm a24522fdbc70095eb4eeb10a564da4dc75893646acc633d1903b20b752c93fc6 boost-build-1.75.0-8.el9.noarch.rpm 7434dfea46f9bd571b3675bb4c303de6597ad7ba8de42b4faef7e5824e9a36e8 boost-doc-1.75.0-8.el9.noarch.rpm e5080e6bb50f4ae84b97ff3681e6d5d80b6337ca035c88b4f2f3770a1205cf0c boost-doctools-1.75.0-8.el9.aarch64.rpm 6e257845b697fec568039506a5dc9dc92a208816107fc9008cf97bc77df40ee3 boost-examples-1.75.0-8.el9.noarch.rpm f3904eec06577458543173a6e0b913a0baae3f378e034fa6b63eadb46b3e17f2 boost-static-1.75.0-8.el9.aarch64.rpm 8d7c864fdb7e625560d6b315fd41f3eeca677e7ca07cf85ce25ebe5a441e64a6 clucene-core-devel-2.3.3.4-42.20130812.e8e3d20git.el9.aarch64.rpm 407136bfdb2c11ce5109e5f9128d5eb7d818448b473703d8925e0ca9222a8d8f dconf-devel-0.40.0-6.el9.aarch64.rpm 27d14f0cd3ae3269e2a9e7a7a66ef68ced5f1d3fa4193ad6440e60c9e27dc6c4 google-noto-sans-symbols2-fonts-20201206-4.el9.noarch.rpm dd615d5f24abcfa7b0cd668e079d1cc26472634251956c335daac0e57eb4cdf7 javapackages-generators-6.0.0-3.el9.noarch.rpm 317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30 javapackages-local-6.0.0-3.el9.noarch.rpm 8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8 libeot-0.01-18.el9.aarch64.rpm 6dcd26e7b498b9a3c2078f56b45cfd27f834ab1d4210a791aa79a05c8574638d libetonyek-devel-0.1.10-2.el9.aarch64.rpm 3c8b67169ab92eff65836175033a57ac3229d0d4bd1586ff9cfaf4ce544ac01f libfontenc-devel-1.1.3-17.el9.aarch64.rpm 631c347fe7a67e2621617d249289b1ea5071a1af64c91f1091df0157141c67a3 libodfgen-devel-0.1.8-4.el9.aarch64.rpm 2906fa4bb807a7423b51aa22d8fa9a887192c3f6ca068846a1b05db9868b146e librevenge-devel-0.0.4-22.el9.aarch64.rpm c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4 libshout-devel-2.4.3-7.el9.aarch64.rpm 5e1af2e46a5301c9f34626483516dcb9c430885952855157f5c14c593f63ab84 libv4l-devel-1.20.0-5.el9.aarch64.rpm 885378d8783da55b5a7a64deb5745f61d5b89b7ac9911faecc4b9205364309bd libvisio-devel-0.1.7-9.el9.aarch64.rpm f4bf5d016f918afdc7ee62beee2b83a70657f87d3ff4f11f33cdba50de42bcec libvoikko-devel-4.3-7.el9.aarch64.rpm 70053a0d076781af4e9847b1d01e24a714bbd1b1f531412b52a1899a1e426521 libwpd-devel-0.10.3-10.el9.aarch64.rpm d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 libwpg-devel-0.3.3-8.el9.aarch64.rpm ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326 libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 libwps-devel-0.4.12-4.el9.aarch64.rpm 5f623d9ec9c1ae83ee39cddd18b6ac35d5be99e463abb665946d247d1f5018d3 libwps-doc-0.4.12-4.el9.noarch.rpm a57cc3f098bec98c980281bf98395ecd53c2f63d364e03fabd653f02ca29a8cf mariadb-connector-c-test-3.2.6-1.el9_0.aarch64.rpm 70a7f3b9ebd83354bfa326a99cfbfb147c9fec27e057383ce6f61b0fbc4d851b maven-local-6.0.0-3.el9.noarch.rpm 1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878 neon-devel-0.31.2-11.el9.aarch64.rpm 095a73f8063bdf20163211c8e44ee6284d8b153c3d056240ef8c90404d60fbef openjpeg2-devel-2.4.0-7.el9.aarch64.rpm d20aa82d5d912b0ec93f1553b41fd0a5b27361013e3aa06bf3653a8dcc5fd772 openjpeg2-tools-2.4.0-7.el9.aarch64.rpm 6b936ef4371c66d1e9d5f75fb495e1a9a99fea7b4a38e4140cb40c8755ab0670 poppler-cpp-devel-21.01.0-13.el9.aarch64.rpm 9a2896a421dc2ee82b5555e9ae90d224374cd2bd75ca1011c63cb3a95734cbe4 poppler-devel-21.01.0-13.el9.aarch64.rpm 634cf93dc3b3ac595c7a11ca70e7e2407fa7cfa1ffabcc740c07ab4a93ed37da poppler-glib-devel-21.01.0-13.el9.aarch64.rpm fa2a249be5c93f6a38560b6aa094f9244ad09ab2a0d11b5452897355e97a2bc6 poppler-qt5-devel-21.01.0-13.el9.aarch64.rpm 94c2a935dfa7b09f0faff2de2efaa492f5d54a5d723a454904379ebd53162ff3 python3-javapackages-6.0.0-3.el9.noarch.rpm 899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2 raptor2-devel-2.0.15-30.el9.aarch64.rpm 74d2f985d35631ff6803faf444eb6e288ca168f46546601c1a4c33f6d50018ea rasqal-devel-0.9.33-18.el9.aarch64.rpm 428a21bf2f1fff8485f24f87a97fa75c86b4ab791a55e92bead0240cd15804ec redland-devel-1.0.17-29.el9.aarch64.rpm 20b31c37d1699bda5d3f395d3426a4685b2350ee13386e36ac900fc092363eb7 taglib-devel-1.12-6.el9.aarch64.rpm 302edef8009de60952bbea22d4192bc70db6406445db778ffc8a4b9921def0d7 twolame-devel-0.3.13-19.el9.aarch64.rpm 86ba074c8dabc035c21e7e9842ea4ab318ad15647596fe8782795937a0ce4d98 xmlsec1-devel-1.2.29-9.el9.aarch64.rpm 173bf7b0b92fd87a1ba2a9de8cb7393970990e79024ccc4985b4588b28358132 xmlsec1-gcrypt-1.2.29-9.el9.aarch64.rpm bbcf0e81746775754d83c3f06b59b85dcede2324085a8f487a9acbb9b3f52ad7 xmlsec1-gnutls-1.2.29-9.el9.aarch64.rpm 76784a298ad5c53ebca60c66969ad00049d793cf214c60d2f2bb9ce588221485 xmlsec1-gnutls-devel-1.2.29-9.el9.aarch64.rpm 23867d3938ab3d16a854caaee7a20b8226e245bcf48126d553704d612c3c5086 xmlsec1-openssl-devel-1.2.29-9.el9.aarch64.rpm 732db3fe3592e36b933dcab625764bb6197e4a26be755f2c026fe13b6ee0fc66 yajl-devel-2.1.0-21.el9.aarch64.rpm 5bff3a63b4bd5036cc6578b512181be1062df6c7beb303fd578cb7259b744fb7 RLSA-2022:8453 Important: device-mapper-multipath security update The device-mapper-multipath packages provide tools that use the device-mapper multipath kernel module to manage multipath devices. Security Fix(es): * device-mapper-multipath: Regression of CVE-2022-41974 fix in Rocky Linux (CVE-2022-3787) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for device-mapper-multipath. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The device-mapper-multipath packages provide tools that use the device-mapper multipath kernel module to manage multipath devices. Security Fix(es): * device-mapper-multipath: Regression of CVE-2022-41974 fix in Rocky Linux (CVE-2022-3787) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms device-mapper-multipath-devel-0.8.7-12.el9_1.1.aarch64.rpm db0c13a8ead6c48f3f1f705f87d017c621d2207be662cf9f294d03dc0051367c RLSA-2022:8493 Important: python3.9 security update Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: local privilege escalation via the multiprocessing forkserver start method (CVE-2022-42919) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.9. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

An update is available for opencryptoki. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The opencryptoki packages contain version 2.11 of the PKCS#11 API, implemented for IBM Cryptocards, such as IBM 4764 and 4765 crypto cards. These packages includes support for the IBM 4758 Cryptographic CoProcessor (with the PKCS#11 firmware loaded), the IBM eServer Cryptographic Accelerator (FC 4960 on IBM eServer System p), the IBM Crypto Express2 (FC 0863 or FC 0870 on IBM System z), and the IBM CP Assist for cryptographic Function (FC 3863 on IBM System z). The opencryptoki packages also bring a software token implementation that can be used without any cryptographic hardware. These packages contain the Slot Daemon (pkcsslotd) and general utilities. Bug Fix: * opencryptoki C_GenerateKeyPair() fails after generating > 500 RSA keys with CEX7 and CEX8 crypto cards (BZ#2128611) rocky-linux-9-aarch64-crb-rpms opencryptoki-devel-3.18.0-5.el9_1.aarch64.rpm 27175a8891b6b877355c8018f87ecd9287b81e70398234e5def6be986019dd42 RLBA-2023:0332 zlib bug fix update The zlib packages provide a general-purpose lossless data compression library that is used by many different programs. Bug Fix: * Rocky Linux9.0 - zlib: inflate() does not update strm.adler if DFLTCC is used (BZ#2135745) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for zlib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The zlib packages provide a general-purpose lossless data compression library that is used by many different programs. Bug Fix: * Rocky Linux9.0 - zlib: inflate() does not update strm.adler if DFLTCC is used (BZ#2135745) rocky-linux-9-aarch64-crb-rpms zlib-static-1.2.11-35.el9_1.aarch64.rpm 36bc3dc2dd8f16e08c2699ae3d617fcb10c3a33e6a03fa17631f146e791d21fa RLSA-2023:0340 Moderate: bash security update The bash packages provide Bash (Bourne-again shell), which is the default shell for Rocky Linux. Security Fix(es): * bash: a heap-buffer-overflow in valid_parameter_transform (CVE-2022-3715) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for bash. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The bash packages provide Bash (Bourne-again shell), which is the default shell for Rocky Linux. Security Fix(es): * bash: a heap-buffer-overflow in valid_parameter_transform (CVE-2022-3715) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms bash-devel-5.1.8-6.el9_1.aarch64.rpm cf7eef232920a2409bc29a70db59233bc6050aa8a7cd087165e4e66e1f214f09 RLBA-2023:0342 glibc bug fix and enhancement update The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Bug Fix: * glibc: Restore IPC_64 support in sysvipc *ctl functions (BZ#2142111) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glibc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Bug Fix: * glibc: Restore IPC_64 support in sysvipc *ctl functions (BZ#2142111) rocky-linux-9-aarch64-crb-rpms glibc-benchtests-2.34-40.el9_1.1.aarch64.rpm b2d340e2be83362c55d70dbd95f02b45df37e372c173399083ef34561df5bebd glibc-nss-devel-2.34-40.el9_1.1.aarch64.rpm 4fddf8453a93fac81f3ae08648c03c1af428bda2b94caa9932daf5f7036982e1 glibc-static-2.34-40.el9_1.1.aarch64.rpm a4a815e06c461e395d547a33cf149f4bb507d7eb9a17cedde2a29b71bda30917 nss_db-2.34-40.el9_1.1.aarch64.rpm 721d9c76f10c8607f904bdce0cbb0868d1afa1e866daf1e5ae70c78a31790b44 nss_hesiod-2.34-40.el9_1.1.aarch64.rpm c56a60d73880f6c5a07059afdc574baff9ebf253413925d4d8f1d6983611e652 RLBA-2023:0347 sssd bug fix and enhancement update The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Bug Fix(es) and Enhancement(s): * Analyzer: Optimize and remove duplicate messages in verbose list (BZ#2139870) * SSS_CLIENT: fix thread unsafe access to get*ent structs. (BZ#2141830) * SSSD: `sssctl analyze` command shouldn't require 'root' privileged (BZ#2142960) * UPN check cannot be disabled explicitly but requires krb5_validate = false' as a work-around (BZ#2148988) * authenticating against external IdP services okta (native app) with OAuth client secret failed (BZ#2152884) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sssd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Bug Fix(es) and Enhancement(s): * Analyzer: Optimize and remove duplicate messages in verbose list (BZ#2139870) * SSS_CLIENT: fix thread unsafe access to get*ent structs. (BZ#2141830) * SSSD: `sssctl analyze` command shouldn't require 'root' privileged (BZ#2142960) * UPN check cannot be disabled explicitly but requires krb5_validate = false' as a work-around (BZ#2148988) * authenticating against external IdP services okta (native app) with OAuth client secret failed (BZ#2152884) rocky-linux-9-aarch64-crb-rpms libsss_nss_idmap-devel-2.7.3-4.el9_1.3.aarch64.rpm 5f7bcafeb2b8220d0035ec5dd4213b3ff61dc6a96bc8e143acd891523063c9ef RLBA-2023:0349 cryptsetup bug fix and enhancement update The cryptsetup packages provide a utility for setting up disk encryption using the dm-crypt kernel module. Bug Fix(es) and Enhancement(s): * Fix FIPS related issues in PBKDF2 (BZ#2151576) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cryptsetup. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The cryptsetup packages provide a utility for setting up disk encryption using the dm-crypt kernel module. Bug Fix(es) and Enhancement(s): * Fix FIPS related issues in PBKDF2 (BZ#2151576) rocky-linux-9-aarch64-crb-rpms cryptsetup-devel-2.4.3-5.el9_1.1.aarch64.rpm f2db664998a7e53e14a5f21555751be4a0ead1244c2fdc4b407d40812af25914 RLBA-2022:2309 new packages: python-psutil For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for python-psutil. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3-psutil-tests-5.8.0-12.el9.aarch64.rpm 101ca1fc4a7b53b9793a59df2480fb47570e78a8f3f059590ba471d68ebcd77b RLBA-2022:2319 new packages: devhelp For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for devhelp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms devhelp-devel-40.1-1.el9.aarch64.rpm 13116c0e7d17c89d825324d5cffa969589e3b456dc283494f662f383c66c2747 RLBA-2022:2321 new packages: hivex For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for hivex. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms hivex-devel-1.3.21-3.el9.aarch64.rpm 1000ad345a370b7ba03ab8ebc1223ec926ad1664293fdb348b4d25128272ca56 ocaml-hivex-1.3.21-3.el9.aarch64.rpm 6f0ee55a9a96e1b6d9d8ce639673571385bc03f0e368b89ef712c9737a8c1cac ocaml-hivex-devel-1.3.21-3.el9.aarch64.rpm 807afcf1e72a6b33c1cdf2163b602995c27822e515deef23c82a762687e99a93 python3-hivex-1.3.21-3.el9.aarch64.rpm b3250fe89c7f2afc86de2b129f2e263aaae9145556418cebc9a2887c0a5a8412 ruby-hivex-1.3.21-3.el9.aarch64.rpm 0db61f29a469edf522a525a19e43228f71b63fe0d6cec96b26d93fc398e57847 RLBA-2022:2332 new packages: libuv For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libuv. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libuv-devel-1.42.0-1.el9.aarch64.rpm 616121dd2debc65c95f68c7beead5e37d50b99024de8eabedcb476dceb27e71d RLBA-2022:2377 new packages: memkind For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for memkind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms memkind-devel-1.11.0-2.el9.aarch64.rpm 083b1bb019032baf111b65e72cef5bbbb761838b5a1308725687f7bc15afe873 RLBA-2022:2400 new packages: libjpeg-turbo For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libjpeg-turbo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms turbojpeg-2.0.90-5.el9.aarch64.rpm 0c09f7db5e80becfe99bd64eb05e5a6c570ad66890903c71bdf1b8af86440d79 turbojpeg-devel-2.0.90-5.el9.aarch64.rpm 63c9ad031f08aed106501ffafc4ee784782e9774767c8436c79db4bf1924b8a1 RLBA-2022:2403 new packages: accountsservice For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for accountsservice. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms accountsservice-devel-0.6.55-10.el9.aarch64.rpm 909ac1f5d8e9103ba29fc5433611f25628c6dc11b94445c2b2dc51b7fb8fed3b RLBA-2022:2413 new packages: udisks2 For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for udisks2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libudisks2-devel-2.9.4-3.el9.aarch64.rpm b12779e3a5e06de46d82d611aa476ca22d78d96ae9d267c833b14bbc85e100cf RLBA-2022:2420 new packages: createrepo_c For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for createrepo_c. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms createrepo_c-devel-0.17.7-4.el9_0.aarch64.rpm 033e1f1b0aa7be78ae69cd29c202258f74829ec015117d68df5c86f16fc7757d RLBA-2022:2433 new packages: exiv2 For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for exiv2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms exiv2-devel-0.27.5-2.el9.aarch64.rpm ce62a4e167df161b4578491b0d01d09c13f5f8b5f2da91c49a7ba75c1da4c70a exiv2-doc-0.27.5-2.el9.noarch.rpm b04417d500d5766489e6e86a4bb99e2c0af04fe0f0cc1db519ca68984be2507b RLBA-2022:2438 new packages: exempi For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for exempi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms exempi-devel-2.6.0-0.2.20211007gite23c213.el9.aarch64.rpm 0d016996af86f39ffb16acce0f74b97ea680e925e0ec3260f78de6e6e0ba3dd4 RLBA-2022:2444 new packages: jq For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jq. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms jq-devel-1.6-12.el9.aarch64.rpm d3f4b43b825e77a829a81a081bd4666fcfb8f18c7bdc79094f8fc1de3d5f0841 RLBA-2022:2445 new packages: maven For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for javapackages-tools, maven. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms javapackages-generators-6.0.0-3.el9.noarch.rpm 317fc46d3cc3e33dcfe658399f568188524051eaa2e11422ebda2b054b7c0d30 javapackages-local-6.0.0-3.el9.noarch.rpm 8eabb02f23814c7dd3fcd61acef39ed52fd559d11161e6366fa3c9cce30586a8 maven-local-6.0.0-3.el9.noarch.rpm 1ba14e27ad8c7fa5b901dd6301622a414cca16776ecf2e76fd06d80c523d3878 python3-javapackages-6.0.0-3.el9.noarch.rpm 899b9fe1a14b98ebda8c57b4624ec45ce522e8683e2a8b987932c8aadb5eb8a2 RLBA-2022:2450 new packages: liblangtag For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for liblangtag. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms liblangtag-devel-0.6.3-8.el9.1.aarch64.rpm 0bd086196ed7686a324f2e37d634b3e75c0ebdbd342feb63c88c47dabeba3c5a liblangtag-doc-0.6.3-8.el9.1.noarch.rpm 1a0ed0c38239839fd2b7e7482cb0360a77ad6e196c981bdd6429863025417452 liblangtag-gobject-0.6.3-8.el9.1.aarch64.rpm c8291a9422a1911ad4ebf127b8abe9b732811acbb0ef9c14d0fd62a8d8278812 RLBA-2022:2456 new packages: adwaita-icon-theme For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for adwaita-icon-theme. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms adwaita-icon-theme-devel-40.1.1-3.el9.noarch.rpm a071cd3ad8a47153b16e9224404f1117a8fc7ca47d383e446b51f65ab441f7a0 RLBA-2022:2466 new packages: libecpg For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libecpg. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libecpg-devel-13.5-1.el9.aarch64.rpm 512a5bcacbdd2855e8bc450b7fece1ded81814d6ffe5355e4074fa91418981bd RLBA-2022:2480 new packages: texlive For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for texlive. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms texlive-gnu-freefont-20200406-25.el9.noarch.rpm 70371ec649772c941a33208d8932379d07d09884e01786a091e208ac62a17aae texlive-lib-devel-20200406-25.el9.aarch64.rpm 84a963e3c4f5c8a61679b13a505619ae5c37d938a4848ccae085a444325f3ccc RLBA-2022:2516 new packages: brasero For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for brasero. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms brasero-devel-3.12.2-19.el9.aarch64.rpm 64c3d397403764c53d3b53cbbb6d3fead717fe8d8be72bb743bcbce53401ec5d brasero-libs-3.12.2-19.el9.aarch64.rpm 29badd136606ad210f931cbb5e6e136dad89f5b853e0ff67ca71f0ab59613246 RLBA-2022:2525 new packages: libspectre For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libspectre. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libspectre-devel-0.2.9-6.el9.aarch64.rpm 15b526933b773ed8c69a236a8d0c28a2434865a5484232d3725b3904e626b8e3 RLBA-2022:2529 new packages: fltk For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fltk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms fltk-devel-1.3.8-1.el9.aarch64.rpm 568f2c2e585faef7971353c40d6e2d3e0fc4912bcbec4e0c9d69e8d4c42f8038 RLBA-2022:2532 new packages: libdecor For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdecor. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libdecor-devel-0.1.0-3.el9.aarch64.rpm 4a6ac491ceb58fbace6e054c99ec213f9c883bba55b293d34d20fdaaaeef19ca RLBA-2022:2547 new packages: SDL2 For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for SDL2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms SDL2-static-2.0.20-2.el9.aarch64.rpm 3074dc2a6419e3ec8ff9fc6f1aba0a3312c33576bbc2233e47811706baadd47f RLBA-2022:2549 new packages: wireshark For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for wireshark. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms wireshark-devel-3.4.10-1.el9.aarch64.rpm 09ee736f538f4fac01f354c98145fcc98fdeca2b611e82f4db90b3c727f23d8f RLBA-2022:2550 new packages: oniguruma For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for oniguruma. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms oniguruma-devel-6.9.6-1.el9.5.aarch64.rpm a94ef600c237154869111f422fc87f66077645bb123ec4dde5f4b9ea9c9117c9 RLBA-2022:2564 new packages: ghostscript For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ghostscript. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgs-devel-9.54.0-7.el9.aarch64.rpm e00025e4ba4759de304918321a821d8003b96a2db8362c6e4b59e8b132a7cb03 RLBA-2022:2571 new packages: geoclue2 For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for geoclue2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms geoclue2-demos-2.5.7-5.el9.aarch64.rpm 822a2cc5b5dcfa857ae4fc44456a5afa4364a240eac53653ed517047ec862f24 geoclue2-devel-2.5.7-5.el9.aarch64.rpm 0b001b30ef84e94a1abad6c4f2ec3438724d4480e5c630dc54d9855d03ee80d3 RLBA-2022:2578 new packages: graphviz For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for graphviz. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms graphviz-devel-2.44.0-25.el9.aarch64.rpm 85619e1ca081356613d1c18adf4b270b934e556089924a80e67ca0d5ba42ba05 RLBA-2022:2579 new packages: libnsl2 For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for slapi-nis, libnsl2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnsl2-devel-2.0.0-1.el9.aarch64.rpm 1403640e618e485b81d71e725c7917992fd078f2db120aefffe1720bd7b137d0 RLBA-2022:2589 new packages: libtool For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtool. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtool-ltdl-devel-2.4.6-45.el9.aarch64.rpm 88549e5da08c623313323d77a01edb5a0d55fe52d8fa58d26fc824ad1cdece7b RLBA-2022:2594 new packages: flite For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for flite. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms flite-devel-1.3-40.el9.aarch64.rpm be0f99babf5820243fcbd6f590075865a97b83ef68205ef119731d768947bb07 RLBA-2022:2600 new packages: OpenIPMI For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for OpenIPMI. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms OpenIPMI-devel-2.0.32-3.el9.aarch64.rpm 36446c13df354d78278e81576269f88dd034a27b8a47c3df4582f6e3f96181d2 RLBA-2022:2611 new packages: libwacom For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libwacom. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwacom-devel-1.12.1-2.el9.aarch64.rpm c63fb269670797f06ea4de2194e077577ec2def42a11dfae2010b57f2154bb99 RLBA-2022:2616 new packages: gsl For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gsl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gsl-devel-2.6-7.el9.aarch64.rpm 24fc361650a83474da76ed400b6d73ed1f915ebf38e6216c70e71e49391fa0b5 RLBA-2022:2620 new packages: librdkafka For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librdkafka. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms librdkafka-devel-1.6.1-102.el9.aarch64.rpm 911e78f9926efb5f1fb287c3453a028d639c6cb45813fc5ef8f064b6fe194691 RLBA-2022:2624 new packages: freeipmi For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for freeipmi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms freeipmi-devel-1.6.9-1.el9.aarch64.rpm 69a6ae406eeff1313d1cf6ec84bb4e3e344b17a7c373c2a8c291383af8786c10 RLBA-2022:2629 new packages: xorg-x11-drv-evdev For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xorg-x11-drv-evdev. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xorg-x11-drv-evdev-devel-2.10.6-12.el9.aarch64.rpm dbe17b3c3bcc74168c8b0d06420358381a8a7ffe5997fcd3a5a5da9dce6c1fcb RLBA-2022:2631 new packages: libburn For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libburn. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libburn-devel-1.5.4-4.el9.aarch64.rpm de60433c139cbc2e4939e08cbf907582df2d224eba23fbfcf97349fd65b703d5 RLBA-2022:2636 new packages: libisoburn For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libisoburn. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libisoburn-devel-1.5.4-4.el9.aarch64.rpm 4600efc41d1a2a30cd0e4144364815b23372d216848ca5196868249188452909 RLBA-2022:2639 new packages: python-packaging For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for python-packaging. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python-packaging-doc-20.9-5.el9.noarch.rpm 36ea560d9697d43d4f77cc47b6a9c87517e13b4490da4da840a7b528f103f2a0 RLBA-2022:2642 new packages: tinycdb For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tinycdb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms tinycdb-devel-0.78-18.el9.aarch64.rpm aba0691190e82e8302eaaf9c188be3b648e5e20fd964caa016e1bdc6eb62798c RLBA-2022:2644 new packages: libisofs For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libisofs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libisofs-devel-1.5.4-4.el9.aarch64.rpm 9d7b8bc077c318572ad8bcda430c2400a47e17e2ebcde45d7e2bbea3cfdb2afc RLBA-2022:2649 new packages: tog-pegasus For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tog-pegasus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms tog-pegasus-devel-2.14.1-64.el9.aarch64.rpm 3efc0bc8bf26bb0d194c7c9fc67782c6c84033850de09be480a71397c2a4cb52 RLBA-2022:2663 new packages: plotnetcfg For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for plotnetcfg. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms plotnetcfg-0.4.1-18.el9.aarch64.rpm 8588c3fda8d1a6cc8226b9d604f7ffeefc2bef65f0fa6f46967afb15aaca7caf RLBA-2022:2681 new packages: zziplib For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for zziplib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms zziplib-devel-0.13.71-9.el9.aarch64.rpm 1e89d6f5241d197ddb5b7f4a91c1c82d0a4928abc8edb60f3ab9610bb7ce2a4e RLBA-2022:2684 new packages: flexiblas For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for flexiblas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms flexiblas-devel-3.0.4-8.el9.aarch64.rpm 4b12e0a2f8cf09092a63a317dbf2b0cec6a0b13bb9d88912414c8ac3c6096a4d flexiblas-netlib64-3.0.4-8.el9.aarch64.rpm f907848e3f9d4ea3f5fb5c970f1521831aac302465e47f09683432983ace73e7 flexiblas-openblas-openmp64-3.0.4-8.el9.aarch64.rpm 01ff831bef56d4654083a59f3312cb817cc04e78c674e124789be73959dd8e41 RLBA-2022:2685 new packages: suitesparse For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for suitesparse. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms suitesparse-devel-5.4.0-10.el9.aarch64.rpm e960d0f0581b7c92d29560a4460d0d615c0723fc9bf3f7c68c206fb73936cb59 RLBA-2022:2686 new packages: uuid For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for uuid. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms uuid-devel-1.6.2-55.el9.aarch64.rpm 5435593a3a503904227607a027340097cc966fc22c383b3d7107d9f8654e98b0 RLBA-2022:2687 new packages: xorg-x11-drv-wacom For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xorg-x11-drv-wacom. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xorg-x11-drv-wacom-devel-1.0.0-1.el9.aarch64.rpm b537e5b073200c585087e1259fb116405765f2616a0ad1f1cf03b3e048a9d312 RLBA-2022:2688 new packages: openblas For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openblas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms openblas-devel-0.3.15-3.el9.aarch64.rpm 8878261848bdbc17bb0b7689651acc117c4202f94fa47eedeed564bc5c051347 openblas-openmp64_-0.3.15-3.el9.aarch64.rpm 46092fdbda9def956eaea9955e358ede474b2a17c426aac3da179e81d35f450d openblas-openmp64-0.3.15-3.el9.aarch64.rpm a26d72dc934d857daee95512b9370dd96addb2f6d1c6980e700b0f53f62915cd openblas-serial64_-0.3.15-3.el9.aarch64.rpm 1ce6907f7bacdc243135a1840b8bfd65c822193779055d6606d0b70ad6b6372f openblas-serial64-0.3.15-3.el9.aarch64.rpm 56368b3cb3502b91d79f4b93204cfe3d82ea05aa10379159b23e3542e2927cf4 openblas-static-0.3.15-3.el9.aarch64.rpm 6fdfb9685251d7de67ca2c8576600bd1883d8914d76e305d317a29da5ac04b65 openblas-threads-0.3.15-3.el9.aarch64.rpm 8c8b0253535dc62af63a993145487a712203601b91845baea18dcb092ce250f3 openblas-threads64_-0.3.15-3.el9.aarch64.rpm 7a58726891d025d0c7b24410f027af39d2d895506b9c66ebb1433fdee0765cd9 openblas-threads64-0.3.15-3.el9.aarch64.rpm c2eda7cc357a74b06458fea32ecc09c65cc6bccbd8a9a40bd1384ae835c724ea RLBA-2022:2695 new packages: libsndfile For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsndfile. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsndfile-devel-1.0.31-7.el9.aarch64.rpm e709abce3c4b421fde35823ce6b76374c5580e2405c603728a6f7684709b7a1d RLBA-2022:2706 new packages: CUnit For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for CUnit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms CUnit-devel-2.1.3-25.el9.aarch64.rpm 63d3df3ebe79c1d359f17ce9fafa90162f6f8cf7baf7517e8417bd46b5b5b57f RLBA-2022:2708 new packages: Judy For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for Judy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms Judy-devel-1.0.5-28.el9.aarch64.rpm fb429ea2943fe70c2963a1a8bcb59f94a48336e6bb375c4d0033ef6cfa293e35 RLBA-2022:2710 new packages: PackageKit For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for PackageKit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms PackageKit-glib-devel-1.2.4-2.el9.aarch64.rpm ac0383b7c6fe1836abf246d150599e04c6429312615dbd4cce62dae079ec119f RLBA-2022:2712 new packages: Xaw3d For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for Xaw3d. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms Xaw3d-devel-1.6.3-7.el9.aarch64.rpm bfdf0e373db2f43f8829492cb43123813d3d9ca3d3c553e50a083279d83d8a94 RLBA-2022:2713 new packages: a52dec For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for a52dec. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms liba52-devel-0.7.4-42.el9.aarch64.rpm 9ce1572978da056e513b31ad9b1a1d55e54119450c00499b7b67455d076d6c1f RLBA-2022:2724 new packages: antlr For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for antlr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms antlr-C++-2.7.7-68.el9.aarch64.rpm 64c2a169c893655f4c9b185cdb22a791015943ffd001fa002403962e0a16a1ef RLBA-2022:2732 new packages: asciidoc For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for asciidoc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms asciidoc-doc-9.1.0-3.el9.noarch.rpm c0889b41b4001012e858083acdd264e2c780000d44b4eeeb867e3f85e2059fdb RLBA-2022:2738 new packages: atkmm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for atkmm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms atkmm-devel-2.28.2-2.el9.aarch64.rpm 24d118eda1d60da59c6de1859a4ec64d3e9f07ff7c50a8fd3bc8caadcc4e0a41 atkmm-doc-2.28.2-2.el9.noarch.rpm 56521e83bec50b0c679f98ebb9eed867a2f8733d0a2a6f161c76dcd2d5105765 RLBA-2022:2742 new packages: babel For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for babel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms babel-doc-2.9.1-2.el9.noarch.rpm c31cd341fe2d8db018d7c51cfff8f1da00f07efd479b0fb2fefcee4b553c0510 RLBA-2022:2747 new packages: bison For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for bison. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms bison-devel-3.7.4-5.el9.aarch64.rpm 15b6e59d5acee5bdeae87949014db47603130a0c0b18a7386f50b7091ec37a9d RLBA-2022:2753 new packages: brltty For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for brltty. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms brlapi-devel-0.8.2-4.el9.aarch64.rpm 8cdbd36b9dcba79dc61b8f2f07c1fd08502879ee2ffa829c00f01bbad68a5936 RLBA-2022:2756 new packages: byte-buddy For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for byte-buddy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms byte-buddy-agent-1.10.20-5.el9.noarch.rpm 935078f879e607a466cc92b91d0c66cb251f49f41d00ed09bba8b1956343871d RLBA-2022:2759 new packages: cairomm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cairomm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms cairomm-devel-1.14.2-10.el9.aarch64.rpm 43a3a4bf22a8e57cdca64d8eac465a4977848726137aa582c9d60001d8c16e94 cairomm-doc-1.14.2-10.el9.noarch.rpm 383bbbc516adade85cecf9956a9810d533fc5c5acaefb80b1b23edf5bd82b58e RLBA-2022:2761 new packages: ceph For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ceph. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms librados-devel-16.2.4-5.el9.aarch64.rpm f4f5c62248f67499afdbea749891774eb5ffcee9c69436049c60988df428ad4d libradospp-devel-16.2.4-5.el9.aarch64.rpm 83cae0327b4085ec37ead6c5ae7e80d28406fadbb0ffb89e27b028e6fd4e4552 librbd-devel-16.2.4-5.el9.aarch64.rpm f1c8ab91a0920ae5daaeee53948865129cf37cba4e59ac0cf60333edc0ff1b35 RLBA-2022:2769 new packages: clucene For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for clucene. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms clucene-core-devel-2.3.3.4-42.20130812.e8e3d20git.el9.aarch64.rpm 407136bfdb2c11ce5109e5f9128d5eb7d818448b473703d8925e0ca9222a8d8f RLBA-2022:2771 new packages: xmlrpc-c For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xmlrpc-c. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xmlrpc-c-c++-1.51.0-16.el9.aarch64.rpm fc6107e9ccd741b3cdb387941f862bd5ccac910684268118c1175521c79ee73d xmlrpc-c-client++-1.51.0-16.el9.aarch64.rpm b0428ee93d2d1ad4199ce76bad6a2eb63615cc198afdf8f0418985e7676a85b0 xmlrpc-c-devel-1.51.0-16.el9.aarch64.rpm 7ad1baa7ccfa0a63fbcd38b24c43f2bf98ee158fdbb1f9aa9bee926b9c0b37f6 RLBA-2022:2775 new packages: colord For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for colord. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms colord-devel-1.4.5-4.el9.aarch64.rpm db2ac9de2e627578f298df8506183adeb8028fa2deb2490cc84cdf12177aa9cb colord-devel-docs-1.4.5-4.el9.noarch.rpm f0e687a0dd5bb9274d913228d27488b3871a2116ef1c38331baf315e7a3c8d95 RLBA-2022:2776 new packages: colord-gtk For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for colord-gtk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms colord-gtk-devel-0.2.0-7.el9.aarch64.rpm 6348ce2dd92c98085fb48ddbac000f09d4a09e833d43ad11368901b60ee85ebf RLBA-2022:2783 new packages: cups-filters For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for cups-filters. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms cups-filters-devel-1.28.7-10.el9.aarch64.rpm a126d265cf327f9070475cc15e7e24c6d056727503a32371574623502bf02db0 RLBA-2022:2786 new packages: dconf For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dconf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms dconf-devel-0.40.0-6.el9.aarch64.rpm 27d14f0cd3ae3269e2a9e7a7a66ef68ced5f1d3fa4193ad6440e60c9e27dc6c4 RLBA-2022:2796 new packages: dotconf For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotconf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms dotconf-devel-1.3-28.el9.aarch64.rpm 2dcb595f1c306c06374cb7843a39879ba500843da18f71a0b84132ddccc33407 RLBA-2022:2799 new packages: dtc For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dtc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libfdt-devel-1.6.0-7.el9.aarch64.rpm b5f4d024be76bc6a2346a9b496e4290a4ce0e3e2c1ea7cb0f8d3924064158962 RLBA-2022:2802 new packages: enchant For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for enchant. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms enchant-devel-1.6.0-30.el9.aarch64.rpm fcdf68eedffead95823d70528b962cc0200f2209a24cdb37324cf71dfec587e1 RLBA-2022:2803 new packages: enchant2 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for enchant2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms enchant2-devel-2.2.15-6.el9.aarch64.rpm 6c00302aaf964eadd79a95a00f26092325a8841a6fa4ff086220315ed9926535 RLBA-2022:2810 new packages: fftw For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fftw. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms fftw-doc-3.3.8-12.el9.noarch.rpm 93eb256ae6969eb9fb1424fcd601e19f63fcd279b6a96c8974b3808c63c75a62 RLBA-2022:2814 new packages: flex For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for flex. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libfl-static-2.6.4-9.el9.aarch64.rpm e2a80f63dfbd85ba6571244f80c96ed36ac3c3ea2cea704cb81eeef0c5de32b7 RLBA-2022:2816 new packages: fontawesome-fonts For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fontawesome-fonts. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms fontawesome-fonts-web-4.7.0-13.el9.noarch.rpm 86ae6cb7afc9e18def5b38dc94eec606f02609b3a65a0cf59c0ec8c95889e71e RLBA-2022:2822 new packages: fstrm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fstrm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms fstrm-devel-0.6.1-3.el9.aarch64.rpm d57811af359cad979a9d966ddbd43a258d10160845640c1cbfdf8b4fb9d59474 fstrm-utils-0.6.1-3.el9.aarch64.rpm a262b237c0630b0d14471577e4bc1faf0320fd93c179d9dfb78b097d1757a863 RLBA-2022:2825 new packages: gc For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gc-devel-8.0.4-7.el9.aarch64.rpm 01420ab8f632ae57dfce1bcdcedeaef0d2f709338713c3f1fb4d2d74e0d373c2 RLBA-2022:2834 new packages: giflib For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for giflib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms giflib-devel-5.2.1-9.el9.aarch64.rpm f1a27d5a3a41b8de95a8219bf0bef9eb20d0d3c011285522708b1ac71272b42f RLBA-2022:2838 new packages: glade For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glade. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms glade-devel-3.38.2-4.el9.aarch64.rpm f2791f187af3c9be52d76c53c38ea72e8033f52535a0d4a2bdf8d85ca5e763cd RLBA-2022:2839 new packages: glibmm24 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for glibmm24. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms glibmm24-devel-2.66.1-1.el9.aarch64.rpm 2f841a8632fcf0d53b501759bf08f7f93498596f70a6afdc934493cd62d36d8c glibmm24-doc-2.66.1-1.el9.noarch.rpm bfbcd163138501fa996ad0aa4dda44619ae3b7205390023646364b3fac404ec0 RLBA-2022:2842 new packages: gnome-bluetooth For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gnome-bluetooth. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gnome-bluetooth-libs-devel-3.34.5-3.el9.aarch64.rpm ba5f11b6a9cf0d543d46d88d02c58b56d20465829bc4dede5321a550cab636b0 RLBA-2022:2865 new packages: gnu-efi For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gnu-efi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gnu-efi-compat-3.0.11-8.el9.aarch64.rpm 4257a42c0afa15b3210b91a2ede32f2091730b75353045acdabb9bec57d56956 gnu-efi-devel-3.0.11-8.el9.noarch.rpm bf1efb6661c93b550ea8cbe4af98c6d1124c3359406ca3eef7d754ce138d695a RLBA-2022:2869 new packages: google-noto-cjk-fonts For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for google-noto-cjk-fonts. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms google-noto-sans-cjk-jp-fonts-20201206-4.el9.noarch.rpm c68de2962092861c2fea9e284bb877f2e26f8e17f04c6aa66fe9b217753e590f RLBA-2022:2876 new packages: grilo For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for grilo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms grilo-0.3.13-7.el9.aarch64.rpm 24aab8ddc30ef4674afdb031f5e932221b3e5ccb440d1751c385a07e399044b3 grilo-devel-0.3.13-7.el9.aarch64.rpm bdced1d90b46da2e81817e476f70c78ea9afacc614921a2b5d62c7add27812a3 RLBA-2022:2878 new packages: gsm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gsm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gsm-devel-1.0.19-6.el9.aarch64.rpm 5f6501d4fee612ae686ae8732592099286027b97a4042da8b9f51275fe3c5838 RLBA-2022:2880 new packages: gspell For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gspell. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gspell-devel-1.9.1-3.el9.aarch64.rpm 4b1174183a306caf41134434be5cdd9dbd25b2332d1f46a179fe39f093d04843 gspell-doc-1.9.1-3.el9.noarch.rpm 208a6225b69d9c50c7e695b818c3e5d04182e3fe5ce49d1147f2a886eb1edd23 RLBA-2022:2882 new packages: gstreamer1-plugins-bad-free For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gstreamer1-plugins-bad-free. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gstreamer1-plugins-bad-free-devel-1.18.4-5.el9.aarch64.rpm 20540aabe895797deaf8ba392ade58b6a865192ddda93faada6e90b05239a953 RLBA-2022:2885 new packages: gtkmm30 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gtkmm30. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gtkmm30-devel-3.24.5-1.el9.aarch64.rpm b48a541a65de3092b2828261b69f139297e04209bd3f87e8b575f147ea527d49 gtkmm30-doc-3.24.5-1.el9.noarch.rpm abe9d8f8b5cc7a7d8cfa3e70e35cf283930d6cdf18dd0c8254d86cc7a06ed99c RLBA-2022:2892 new packages: hesiod For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for hesiod. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms hesiod-devel-3.2.1-16.el9.aarch64.rpm 7e6f44a8cfb96f4895f017ff7cba59f1af47f5f49601935c654f9bcb6dc24ffd RLBA-2022:2899 new packages: http-parser For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for http-parser. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms http-parser-devel-2.9.4-6.el9.aarch64.rpm c2359a85d317bd6de791a1d33ee71f240b9c5d853c6079079f504485fe2bd4bb RLBA-2022:3071 new packages: imath For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for imath. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms imath-devel-3.1.2-1.el9.aarch64.rpm 95de0261cbdc1bf655007fbc77ff27aea980bd9427702806ea493a86873f7dc2 RLBA-2022:3076 new packages: irssi For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for irssi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms irssi-devel-1.2.2-12.el9.aarch64.rpm 2a36723c24b18a39a88ed2af37b144da952566e190e7d31491cf5a52bd08e3f7 RLBA-2022:3089 new packages: jasper For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jasper. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms jasper-devel-2.0.28-3.el9.aarch64.rpm 8088630c1e27fadce6e8797edfe9c4a4c8f4d7aca7e8c652169ebf421166cf28 RLBA-2022:3092 new packages: jbigkit For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jbigkit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms jbigkit-devel-2.1-23.el9.aarch64.rpm 475396d67c64dc228287d584d9e433ca8e783c73a2b61eb2f1f424ebab284765 RLBA-2022:3101 new packages: jose For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for jose. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libjose-devel-11-3.el9.aarch64.rpm bcb56e16fd400abde0ead3003f274138e2581a4a2b5daa3c66d1d3f992555aec RLBA-2022:3112 new packages: keybinder3 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for keybinder3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms keybinder3-devel-0.3.2-13.el9.aarch64.rpm 8f483817dcf6104f8065a1de996a2f0c2cb60e9bc73efefa5f3aa415423403df keybinder3-doc-0.3.2-13.el9.noarch.rpm f3613c5de156b4e2ce64f166f4e511b99dffae7561473111a3dbd197430ce4b1 RLBA-2022:3116 new packages: lame For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lame. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms lame-devel-3.100-12.el9.aarch64.rpm 09cd51d72db82dddfcc48d4af4ab9f62468ab13e0fbabe419394854b7f361ea7 RLBA-2022:3119 new packages: lapack For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lapack. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms blas64_-3.9.0-8.el9.aarch64.rpm 451cddd3d399c9025ec7d6e38baafd5afcac82bfb6d20f52f53078450198f199 blas-devel-3.9.0-8.el9.aarch64.rpm 35602e6858bbc2158f4cd586339913e198e9449696c30c2c8fa025438d00bc94 lapack64_-3.9.0-8.el9.aarch64.rpm 9a6fce0825e2c44dca3d21cd866b689b5cc0e6733ab5a3d54f0fec693e7cd921 lapack-devel-3.9.0-8.el9.aarch64.rpm b412570e7c6be25ccd34ba2adb6837429231ccb7477ef7f54ed75d92b47e41ec lapack-static-3.9.0-8.el9.aarch64.rpm f88d90b5f290a55822af51458ce1fcbaf491f27d7dda8910ef93cd34224701a9 RLBA-2022:3120 new packages: lasso For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lasso. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms lasso-devel-2.7.0-8.el9.aarch64.rpm da3a3902d0f88cc7d5a415179efa8ca3f8004d8d366f916f1b66099c13c7caaf RLBA-2022:3123 new packages: leptonica For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for leptonica. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms leptonica-devel-1.80.0-4.el9.1.aarch64.rpm 393ba38e9a97766468552fe6855c0f788296c3baccb42a8a2f8871e0fa069806 RLBA-2022:3134 new packages: libXdmcp For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libXdmcp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libXdmcp-devel-1.1.3-8.el9.aarch64.rpm 900a7f7d18bc3beb7e2a1dc5c06a95a3aba3cc50075ed36e0124030fcec540e7 RLBA-2022:3137 new packages: libXfont2 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libXfont2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libXfont2-devel-2.0.3-12.el9.aarch64.rpm 55b4e045d2c7022b0ba5d055bbc0bcfb8d25cc4d32b15a976167ac9f970e854c RLBA-2022:3146 new packages: libXres For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libXres. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libXres-devel-1.2.0-14.el9.aarch64.rpm 754d8229f42524a276c9319072276a62008d7eb518328a84f10bc2e6718adcf9 RLBA-2022:3151 new packages: libXxf86vm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libXxf86vm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libXxf86vm-devel-1.1.4-18.el9.aarch64.rpm 0566fb8cfcec2a65bc831d271c89a237666994b8b4fadade3bb6161d68b2bd03 RLBA-2022:3153 new packages: libao For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libao. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libao-devel-1.2.0-22.el9.aarch64.rpm 982380811520b02b433c52716e241e03d2b2b9f06dfe7d7d19f9f0543fa67e7e RLBA-2022:3154 new packages: libappstream-glib For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libappstream-glib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libappstream-glib-devel-0.7.18-4.el9.aarch64.rpm ddf28963add03e22e80a4dc1a67c45164ce5defda94ef1db300de54d395b49b9 RLBA-2022:3155 new packages: libasyncns For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libasyncns. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libasyncns-devel-0.8-22.el9.aarch64.rpm ab9d7b17c19b703f3f5ad31cc944532677dda5bc233df5fc053aadcc5b3ec74d RLBA-2022:3156 new packages: libatasmart For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libatasmart. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libatasmart-devel-0.19-22.el9.aarch64.rpm ae6ad28db5f800b9425ec15e0249dd3496532237e0a6b88346a266c4abcc084c RLBA-2022:3160 new packages: libcdio For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libcdio. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libcdio-devel-2.1.0-6.el9.aarch64.rpm b6a99915999f3ed239c28ae082f81c687a0e955a7715593546db80fdaa4cbdfa RLBA-2022:3161 new packages: libcdio-paranoia For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libcdio-paranoia. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libcdio-paranoia-devel-10.2+2.0.1-6.el9.aarch64.rpm eb8ee1ddd7c623dbe072200c9e17dd766d6e5ca07320e865fe1c999b170c4abb RLBA-2022:3168 new packages: libdvdread For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdvdread. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libdvdread-devel-6.1.1-4.el9.aarch64.rpm f607af51759adba7ec7bd747006818df5a935ffaf409075e29856ee618e20265 RLBA-2022:3176 new packages: libetonyek For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libetonyek. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libetonyek-devel-0.1.10-2.el9.aarch64.rpm 3c8b67169ab92eff65836175033a57ac3229d0d4bd1586ff9cfaf4ce544ac01f RLBA-2022:3177 new packages: libevdev For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libevdev. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libevdev-devel-1.11.0-3.el9.aarch64.rpm 5e9c2e8a2fcd597a2683d99a855e24f9feeb00f89128a2e4114bd8321da93ec0 RLBA-2022:3178 new packages: libexif For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libexif. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libexif-devel-0.6.22-6.el9.aarch64.rpm 8ba6d9ced27ac971444747da0341fbcf22d8d188430d8f7d95e8d1b1e4fd6e77 RLBA-2022:3181 new packages: libfontenc For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libfontenc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libfontenc-devel-1.1.3-17.el9.aarch64.rpm 631c347fe7a67e2621617d249289b1ea5071a1af64c91f1091df0157141c67a3 RLBA-2022:3187 new packages: libgee For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgee. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgee-devel-0.20.4-3.el9.aarch64.rpm bbdd1f8e2ff31795f3c8e86022fe701cd25444b5fe195f3652c0891d39c9f28a RLBA-2022:3188 new packages: libgexiv2 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgexiv2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgexiv2-devel-0.12.3-1.el9.aarch64.rpm 8b506b8896c722b24d438953a91a920a389f3d6a1149c77c898f62e24bec81d1 RLBA-2022:3189 new packages: libgnomekbd For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgnomekbd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgnomekbd-devel-3.26.1-7.el9.aarch64.rpm 3d0a6dec8d2708974387432de4521a7a714998e60d307e17ef65f30bb71f4ece RLBA-2022:3190 new packages: libgphoto2 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgphoto2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgphoto2-devel-2.5.27-3.el9.aarch64.rpm 1cc1b1c6cc63dbaf66fd0f44c00d45ff268c53aa490a7da64c73e1582ecfe0e0 RLBA-2022:3191 new packages: libgsf For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgsf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgsf-devel-1.14.47-5.el9.aarch64.rpm 6fee383e5340dcc73a4b8063f91f86f07e5348e0b65ea68cb66cfbcb751d2de0 RLBA-2022:3194 new packages: libgxps For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgxps. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgxps-devel-0.3.2-3.el9.aarch64.rpm 848192ed50df988447091a5839bfc449cdaefc7724976b56c5e139aec7175387 RLBA-2022:3201 new packages: libiscsi For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libiscsi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libiscsi-devel-1.19.0-5.el9.aarch64.rpm 0d8a4d7347ef9b916e540a5843a9d1e8131d8e8c9524f6621d21fbf80ea9c83c RLBA-2022:3209 new packages: libmad For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmad. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libmad-0.15.1b-33.el9.aarch64.rpm 3c235d6dae271af3ca94f4b8009632608d92dcc34d2a3aad0b75dd9ba632c00d libmad-devel-0.15.1b-33.el9.aarch64.rpm 9c4fca2c49ffeb9f53edfcdd96cecbae7dee2b98c95e6ff6ed760198a7541f0f RLBA-2022:3211 new packages: libmaxminddb For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmaxminddb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libmaxminddb-devel-1.5.2-3.el9.aarch64.rpm 23e6a95a15ed6ec8d60a4d9b988d740dc7edadaf7e6591bba4b66e35f314583e RLBA-2022:3213 new packages: libmicrohttpd For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmicrohttpd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libmicrohttpd-devel-0.9.72-4.el9.aarch64.rpm 2d81331282644de607098d507ac768d9456a933493e09987e5e9405b1f907feb libmicrohttpd-doc-0.9.72-4.el9.noarch.rpm 5c3003cb4fc9ccd2d5f272605bfbac9a4336e1a7a86a139906ec32bc713810f6 RLBA-2022:3216 new packages: libmspack For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libmspack. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libmspack-devel-0.10.1-0.7.alpha.el9.aarch64.rpm d5f7156538439b4a45c1fbc2f9318547fbd80e1237ce38b744cf41f65a44bc49 RLBA-2022:3218 new packages: libnet For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnet. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnet-devel-1.2-6.el9.aarch64.rpm 536e881bc3af9cf664ab25326b0d23b9e2ba0e8a8d3b91924bf175c2545a066e RLBA-2022:3220 new packages: libnetfilter_queue For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnetfilter_queue. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnetfilter_queue-devel-1.0.5-1.el9.aarch64.rpm 630a1dfb53f1028e3edef4993ceeeb08af3e76aa705354cf685e4683f385a65d RLBA-2022:3224 new packages: libodfgen For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libodfgen. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libodfgen-devel-0.1.8-4.el9.aarch64.rpm 2906fa4bb807a7423b51aa22d8fa9a887192c3f6ca068846a1b05db9868b146e RLBA-2022:3225 new packages: libogg For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libogg. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libogg-devel-1.3.4-6.el9.aarch64.rpm 875004ab16eeb05da5dd644a1e805ee95f3a12a23ea254e57ee7de347817bfcd libogg-devel-docs-1.3.4-6.el9.noarch.rpm ead61612a51fc20fc066192d54f3140432eb42eaf3ce28c75c50333df707a3bc RLBA-2022:3226 new packages: libopenraw For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libopenraw. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libopenraw-devel-0.1.3-11.el9.aarch64.rpm 1b498f19d6ab47c6913b02af2e543367ebf422af0a54faef5aeb32bfbb784234 libopenraw-gnome-0.1.3-11.el9.aarch64.rpm b36ad3ff263ac4d41a44a1d0addf5a8d929b83c44cfb1a4133f6a84d5704d68d libopenraw-gnome-devel-0.1.3-11.el9.aarch64.rpm 9e60e9f38a255c7a4a9a176007a1c85292ba817e9ae4f9f4cf8531db5ae406fa RLBA-2022:3229 new packages: libotr For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libotr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libotr-devel-4.1.1-13.el9.aarch64.rpm c001166959038afb4e541a520d3363ac1b79804a9b2745ae55dcd3193d66df12 RLBA-2022:3231 new packages: libpaper For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpaper. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libpaper-devel-1.1.28-4.el9.aarch64.rpm 4756dea927df2fc78a0925e3c0f9efbbaaa02d2284b26ba6a7a8aa223a3591dc RLBA-2022:3232 new packages: libpfm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpfm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3-libpfm-4.11.0-6.el9.aarch64.rpm 24608a8546f2e354718f2918ffe52a317dadd6e44a089c53b224be5e5c859415 RLBA-2022:3233 new packages: libpinyin For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libpinyin. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libpinyin-devel-2.6.0-4.el9.aarch64.rpm d955c538989cb5896ab4c230dc6218ca742a68ac7cfbe968db35edb01639f372 RLBA-2022:3237 new packages: librabbitmq For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librabbitmq. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms librabbitmq-devel-0.11.0-5.el9.aarch64.rpm 6b8debbd7cdb8663785a85c755d5a5e4785368e0671ce1daeecdd98ced536fc9 RLBA-2022:3241 new packages: librevenge For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for librevenge. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms librevenge-devel-0.0.4-22.el9.aarch64.rpm c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4 RLBA-2022:3243 new packages: libsamplerate For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsamplerate. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsamplerate-devel-0.1.9-10.el9.aarch64.rpm c9891a34d1144a73e3cddcf61beed9e3a49ea524fb55e028c306b47c71e12847 RLBA-2022:3246 new packages: libshout For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libshout. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libshout-devel-2.4.3-7.el9.aarch64.rpm 5e1af2e46a5301c9f34626483516dcb9c430885952855157f5c14c593f63ab84 RLBA-2022:3247 new packages: libsigc++20 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsigc++20. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsigc++20-devel-2.10.7-2.el9.aarch64.rpm cc4915b8c5d5678d0f595fed564f4991801594ed670046c7af84d7db666dac22 libsigc++20-doc-2.10.7-2.el9.noarch.rpm 29487250f3f83163d9b2b19379dc1437e3ad90db099286cb698d375effee094b RLBA-2022:3251 new packages: libsrtp For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsrtp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsrtp-devel-2.3.0-7.el9.aarch64.rpm 18a402aed4f18ee2a86ce811ca3229606442239950cb4b2f0adc447ec33cb3c7 RLBA-2022:3253 new packages: libstemmer For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libstemmer. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libstemmer-devel-0-18.585svn.el9.aarch64.rpm adcb1c8f619591bbc8d6cc7ba85dfc50f5bbd27b6ab77409241a49151a6a42fd RLBA-2022:3255 new packages: libtheora For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libtheora. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtheora-devel-1.1.1-31.el9.aarch64.rpm c1b0803057d3abe8ac365340a1d5c2a8e18f4036f0b0793945d38b80c1084319 RLBA-2022:3259 new packages: libusb For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libusb. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libusb-devel-0.1.7-5.el9.aarch64.rpm bfcb6a33b69558ee17df5da7d8de638585192250fff02819939ab021ebd3088c RLBA-2022:3260 new packages: libvdpau For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvdpau. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libvdpau-devel-1.4-6.el9.aarch64.rpm f08048afc28127cc509cebf506d2dc42ab6dc2d01fec6bbdb7ea770ec6ce4ebb RLBA-2022:3263 new packages: libvisio For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvisio. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libvisio-devel-0.1.7-9.el9.aarch64.rpm f4bf5d016f918afdc7ee62beee2b83a70657f87d3ff4f11f33cdba50de42bcec RLBA-2022:3264 new packages: libvisual For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvisual. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libvisual-devel-0.4.0-34.el9.aarch64.rpm eaa7276a525193b9c01fd1e82586435b1851ab985fd054d882acb51468ba88ec RLBA-2022:3265 new packages: libvoikko For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvoikko. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libvoikko-devel-4.3-7.el9.aarch64.rpm 70053a0d076781af4e9847b1d01e24a714bbd1b1f531412b52a1899a1e426521 RLBA-2022:3266 new packages: libvorbis For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvorbis. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libvorbis-devel-1.3.7-5.el9.aarch64.rpm 63406c2061cde5b934e88d01de414902391595569c5255d02940da40e083fde4 libvorbis-devel-docs-1.3.7-5.el9.noarch.rpm 88dbd56deb6298a7db65a0dc60a00554a52f7ac2cb9129ff034cdd82e71437f4 RLBA-2022:3267 new packages: libvpx For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvpx. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libvpx-devel-1.9.0-5.el9.aarch64.rpm 2d53499f6f88fb1d8d58a7454521b74bb1c0d8585cf11e31287b758d8d963274 RLBA-2022:3269 new packages: libwnck3 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libwnck3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwnck3-devel-40.0-2.el9.aarch64.rpm 3a53b3500844776dc6f94fb0bcee78a3203b894f83752d1aa94f3d2ce7ec76fb RLBA-2022:3270 new packages: libwpd For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libwpd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwpd-devel-0.10.3-10.el9.aarch64.rpm d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 RLBA-2022:3272 new packages: libwpg For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libwpg. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwpg-devel-0.3.3-8.el9.aarch64.rpm ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326 libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 RLBA-2022:3273 new packages: libwps For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libwps. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwps-devel-0.4.12-4.el9.aarch64.rpm 5f623d9ec9c1ae83ee39cddd18b6ac35d5be99e463abb665946d247d1f5018d3 libwps-doc-0.4.12-4.el9.noarch.rpm a57cc3f098bec98c980281bf98395ecd53c2f63d364e03fabd653f02ca29a8cf RLBA-2022:3275 new packages: libxkbcommon For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libxkbcommon. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libxkbcommon-x11-devel-1.0.3-4.el9.aarch64.rpm 000bec1a04f7e90a091c68edf4cf7ad1c8fe32cea2017f6a92743dd641676341 RLBA-2022:3276 new packages: libxkbfile For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libxkbfile. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libxkbfile-devel-1.1.0-8.el9.aarch64.rpm e9a9020e096badadb639ad9caf4a024ea366e50f238e7d8753ec03c429f27b0c RLBA-2022:3277 new packages: libxklavier For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libxklavier. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libxklavier-devel-5.4-20.el9.aarch64.rpm c8c69f96e269f96eacd095c9114a2e0962eb40b85992e961d97335b4b7bc79b6 RLBA-2022:3280 new packages: libzip For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libzip. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libzip-devel-1.7.3-7.el9.aarch64.rpm 79148b95900c7945d8ba952a3f3c46c9c234376b8ceb1d413d1c713f2bdf0715 RLBA-2022:3301 new packages: lttng-ust For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for lttng-ust. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms lttng-ust-devel-2.12.0-6.el9.aarch64.rpm ae38e80e3eaa8bc56be4f78aa47d2718b937826ad6670f0d78bf135cd942d085 RLBA-2022:3303 new packages: luksmeta For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for luksmeta. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libluksmeta-devel-9-12.el9.aarch64.rpm 49f9cc10c33b8b2245700314466b58c618c41c86e5bc326ced3b79e42055cdd2 RLBA-2022:3309 new packages: mariadb-connector-c For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mariadb-connector-c. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms mariadb-connector-c-test-3.2.6-1.el9_0.aarch64.rpm 70a7f3b9ebd83354bfa326a99cfbfb147c9fec27e057383ce6f61b0fbc4d851b RLBA-2022:3327 new packages: mobile-broadband-provider-info For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mobile-broadband-provider-info. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms mobile-broadband-provider-info-devel-20210805-2.el9.noarch.rpm c6fdae51207ec225e88f7e03d14f788eabd179c596ac97848e7859b90268945e RLBA-2022:3341 new packages: mpg123 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mpg123. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms mpg123-devel-1.26.2-5.el9.aarch64.rpm b4c0935d6eb82b4e0e0ce4b335386bb1df7550a6716a932beb6a78530f8e3b15 RLBA-2022:3344 new packages: mtdev For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mtdev. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms mtdev-devel-1.1.5-22.el9.aarch64.rpm a4764c20cabea97cbf70a1d957cedcf98361fbaabf05e0a2e875b24ff73bf316 RLBA-2022:3346 new packages: munge For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for munge. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms munge-devel-0.5.13-13.el9.aarch64.rpm e307e58e70ef2a11681c59b599c75a0f7f572dd1ba0475dfd57cd8171e0a59ab RLBA-2022:3349 new packages: mythes For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mythes. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms mythes-devel-1.2.4-18.el9.aarch64.rpm da65dbf41e2adab8bc39c2067aa551dfdb0726d7180fe7cb21f251fe1284bcc4 RLBA-2022:3373 new packages: neon For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for neon. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms neon-devel-0.31.2-11.el9.aarch64.rpm 095a73f8063bdf20163211c8e44ee6284d8b153c3d056240ef8c90404d60fbef RLBA-2022:3374 new packages: netpbm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for netpbm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms netpbm-devel-10.95.00-2.el9.aarch64.rpm c6000a3d67d3d8a34fb7c2b82c87779b42ba6de509615ce868bec7e2d118635b netpbm-doc-10.95.00-2.el9.aarch64.rpm 8bcee303f7da20e605f861b50ed98aa92a770b2c31d2947005d6e8dc0832309f RLBA-2022:3382 new packages: ocl-icd For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ocl-icd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ocl-icd-devel-2.2.13-4.el9.aarch64.rpm a749f0057c6cd1fad675dfde31ccb8885124aaed13cd2aefb3197ea7face9bdd RLBA-2022:3386 new packages: openal-soft For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openal-soft. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms openal-soft-devel-1.19.1-16.el9.aarch64.rpm f1157c819cadda856888807b58b89ff95878ae9517a2209fcfe717fd7c6164e8 RLBA-2022:3391 new packages: openexr For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openexr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms openexr-devel-3.1.1-2.el9.aarch64.rpm 0960a0eb8c4fa9f3e0f6c0b0460703e43803b0b0100c06e2132c9fbcdf4d864f RLBA-2022:3395 new packages: openslp For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openslp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms openslp-devel-2.0.0-30.el9.aarch64.rpm d4dbf4b34a87c42579cedd65a3dae418f132b15f4815c6987da1e75f5ff68dee RLBA-2022:3397 new packages: openwsman For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openwsman. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwsman-devel-2.6.8-22.el9.aarch64.rpm 161d43f437e66b0eb80b1ed089c7641b271a18e74c2273cd939e4b8192ff6a73 openwsman-client-2.6.8-22.el9.aarch64.rpm 17f0c84fffd0dc94824604848e5e274762da6428fea7dd2be3e1e086eb5f3e45 RLBA-2022:3398 new packages: opus For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for opus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms opus-devel-1.3.1-10.el9.aarch64.rpm 17d9d99dc596934ac25284fe5ddebdd08a7946e2e14ae70c9cc023e876ce55bc RLBA-2022:3408 new packages: pangomm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pangomm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms pangomm-devel-2.46.1-1.el9.aarch64.rpm 293d63cce96944ad2864d805c6fc865b51d09ecf9760aac23de90512963d9097 pangomm-doc-2.46.1-1.el9.noarch.rpm 77ecd2fc1fc2c70f00abf9262894aaa56cbb8d2a8938e862109d8873e6e47607 RLBA-2022:3588 new packages: perl-Tk For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for perl-Tk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms perl-Tk-devel-804.035-7.el9.aarch64.rpm 0c7d7f711b51f80edf0449beb0f87dfcfc2e8c206f3514ec03f28882e78d5a62 RLBA-2022:3634 new packages: plexus-containers For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for plexus-containers. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms plexus-containers-container-default-2.1.0-9.el9.noarch.rpm f62fa55d0e98d2db0874892c53483db149a758a2a3d64ae3eee23fafce561023 RLBA-2022:3638 new packages: plotutils For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for plotutils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms plotutils-devel-2.6-28.el9.aarch64.rpm 68f12d87eed73716c05c8ab4a7892f80491800c377a79bead2e3a4860674e82c RLBA-2022:3640 new packages: pmix For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pmix. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms pmix-pmi-devel-3.2.3-3.el9.aarch64.rpm 2349158b4a13a48d07f8cfc2a0266b1929dddfe44e0d702ef841f0d4005dc74a RLBA-2022:3733 new packages: raptor2 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for raptor2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms raptor2-devel-2.0.15-30.el9.aarch64.rpm 74d2f985d35631ff6803faf444eb6e288ca168f46546601c1a4c33f6d50018ea RLBA-2022:3734 new packages: rasqal For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for rasqal. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms rasqal-devel-0.9.33-18.el9.aarch64.rpm 428a21bf2f1fff8485f24f87a97fa75c86b4ab791a55e92bead0240cd15804ec RLBA-2022:3737 new packages: redland For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for redland. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms redland-devel-1.0.17-29.el9.aarch64.rpm 20b31c37d1699bda5d3f395d3426a4685b2350ee13386e36ac900fc092363eb7 RLBA-2022:3741 new packages: rpcsvc-proto For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for rpcsvc-proto. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms rpcsvc-proto-devel-1.4-9.el9.aarch64.rpm 37ed8ad94b1358a77c8e5a462e6c53bee433bad7acfd839b5719b78d4d56a324 RLBA-2022:3743 new packages: rrdtool For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for rrdtool. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3-rrdtool-1.7.2-21.el9.aarch64.rpm a7133f911318ea09ee531b76219e83019a41c5c7f868a86131e66233707b9a63 rrdtool-devel-1.7.2-21.el9.aarch64.rpm aabbc48f264ba66553cce2de743c4d4e1be4ed88498ce5261366148f3acd27d1 rrdtool-doc-1.7.2-21.el9.aarch64.rpm a5fdf704101e191ffa054a8c0659695fdf73ec2ba64cae49d4d6115f1c70a657 rrdtool-lua-1.7.2-21.el9.aarch64.rpm 78632d27a764601c48889a19216b0197eac699d2c9fffa9585c8b174fa51e1f8 rrdtool-ruby-1.7.2-21.el9.aarch64.rpm 540a193a16c696318c24c04b5ead8e650ee387255772daf3c590d55569df83f2 rrdtool-tcl-1.7.2-21.el9.aarch64.rpm 0af29077c06b40b2448b37cc28fb57663a16c33eac2ee0fc28ca86b2bbd3a3bc RLBA-2022:3746 new packages: rubygem-mysql2 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for rubygem-mysql2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms rubygem-mysql2-doc-0.5.3-11.el9_0.noarch.rpm b07fd77158220c7e2c1dde123acaa399f89667ff061f4855c1331b4d28007a40 RLBA-2022:3747 new packages: rubygem-pg For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for rubygem-pg. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms rubygem-pg-doc-1.2.3-7.el9.noarch.rpm 2e5c03877e34fe8154a2873a62f11071a415beb15844139c914e9053b6e78ad0 RLBA-2022:3758 new packages: sblim-cmpi-devel For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sblim-cmpi-devel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms sblim-cmpi-devel-2.0.3-24.el9.aarch64.rpm 1ecef6fae6c957c6363dc217ff318e3d2d987a8326d65d98d8102cbf265938f9 RLBA-2022:3761 new packages: sblim-sfcc For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sblim-sfcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms sblim-sfcc-devel-2.2.8-18.el9.aarch64.rpm 97231c0a3b009c2e0e4beb1e7a414b5e844aabe5060a5bcc1017561353e78956 RLBA-2022:3767 new packages: sendmail For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sendmail. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms sendmail-milter-8.16.1-10.el9.aarch64.rpm 7321aa21682878b531f457b44fa756ac1e829ec3a9df5b5af1ad428d801fbccf sendmail-milter-devel-8.16.1-10.el9.aarch64.rpm 583d16a358a0fe6f4e4b1f282aaad4c920901420763cd40b20a8adfef59715af RLBA-2022:3785 new packages: sombok For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sombok. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms sombok-devel-2.4.0-16.el9.aarch64.rpm 41180afa47fe4342a3022ce00aab3d943a653a220bc70f74ed2b55978d89cf9c RLBA-2022:3787 new packages: soundtouch For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for soundtouch. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms soundtouch-devel-2.1.1-8.el9.aarch64.rpm 4c27cfa3e079cb79713a6415375f770e2f368f77394c13b7e63cfd91cf171ab7 RLBA-2022:3789 new packages: speech-dispatcher For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for speech-dispatcher. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms speech-dispatcher-devel-0.10.2-4.el9.aarch64.rpm 77280940d55b701ccc304b4e048d713a5a25c54d356e68e802b82a551b93f6a8 RLBA-2022:3791 new packages: speexdsp For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for speexdsp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms speexdsp-devel-1.2.0-5.el9.aarch64.rpm 32edbaa82c3249f3ed611ba94b6a439c5123265d6623f0c71f2ec976b5a4af50 RLBA-2022:3803 new packages: taglib For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for taglib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms taglib-devel-1.12-6.el9.aarch64.rpm 302edef8009de60952bbea22d4192bc70db6406445db778ffc8a4b9921def0d7 RLBA-2022:3809 new packages: tesseract For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tesseract. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms tesseract-devel-4.1.1-7.el9.aarch64.rpm 0ad2849d39fa92cf638a859d1ecebb76877de8035284022869380dfb3267b257 RLBA-2022:3816 new packages: tokyocabinet For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tokyocabinet. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms tokyocabinet-devel-1.4.48-19.el9.aarch64.rpm 49619eadeee953dea0a11145c4186f8a7d4126a23091464fda202fe0fe0c6584 RLBA-2022:3818 new packages: tpm2-abrmd For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tpm2-abrmd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms tpm2-abrmd-devel-2.4.0-3.el9.aarch64.rpm eb34a28ee7586e46490a8398bc2a591c4a8a9cc00b53af622d554e6c2a22d34f RLBA-2022:3824 new packages: twolame For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for twolame. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms twolame-devel-0.3.13-19.el9.aarch64.rpm 86ba074c8dabc035c21e7e9842ea4ab318ad15647596fe8782795937a0ce4d98 RLBA-2022:3827 new packages: unicode-ucd For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for unicode-ucd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms unicode-ucd-unihan-13.0.0-5.el9.noarch.rpm 55ccfa8dff19859c50a3a2a39b7f88ad262f218356e761df412d5a80a9d26d06 RLBA-2022:3829 new packages: unixODBC For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for unixODBC. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms unixODBC-devel-2.3.9-4.el9.aarch64.rpm 8da8d57da18f1910dde607b2fdab4d044c6d1427c238396cd55f20348449b0a3 RLBA-2022:3830 new packages: upower For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for upower. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms upower-devel-0.99.13-2.el9.aarch64.rpm dbeeca06e85c88a10741cbb5ea3c5eba98a476147f9fc8c8267b796106396307 upower-devel-docs-0.99.13-2.el9.noarch.rpm e52346e002217a1fac455447bc87e43ef725a24ffc529e881e29ff87f6281c32 RLBA-2022:3833 new packages: urw-base35-fonts For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for urw-base35-fonts. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms urw-base35-fonts-devel-20200910-6.el9.noarch.rpm fa8bd9b4fb0c1dec11a6cb673044403ececced3bc0c9801f542d225ffe8ca1ee RLBA-2022:3834 new packages: utf8proc For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for utf8proc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms utf8proc-devel-2.6.1-4.el9.aarch64.rpm 24982597f7891c686173f5f8bae25aa579339c654d3da9c34308542af98ddd97 RLBA-2022:3835 new packages: v4l-utils For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for v4l-utils. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libv4l-devel-1.20.0-5.el9.aarch64.rpm 885378d8783da55b5a7a64deb5745f61d5b89b7ac9911faecc4b9205364309bd RLBA-2022:3839 new packages: volume_key For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for volume_key. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms volume_key-devel-0.3.12-15.el9.aarch64.rpm 77459c33be602c5c0c4d41a633223cf2f9d0acf6f4862e49433638e09b04ba8e RLBA-2022:3840 new packages: vte291 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for vte291. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms vte291-devel-0.64.2-2.el9.aarch64.rpm 1f81db8ce645649029ea68927b631153796ef48b1326663fba8de56255403353 RLBA-2022:3853 new packages: xapian-core For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xapian-core. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xapian-core-devel-1.4.18-5.el9.aarch64.rpm 1210e5f81da2384353d1c161c7b9159f5d3b94ed52f64a3ac03cfe6ded62caba RLBA-2022:3854 new packages: xcb-util For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xcb-util. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xcb-util-devel-0.4.0-19.el9.aarch64.rpm 656b866a70e958d066e4b3bbe4d05d55da61350bc864296892c180f09666d5c9 RLBA-2022:3855 new packages: xcb-util-image For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xcb-util-image. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xcb-util-image-devel-0.4.0-19.el9.aarch64.rpm 6ef21f61847dad6271273a9d4cfab190a86bca557e97b4d04162746143d9ef39 RLBA-2022:3856 new packages: xcb-util-keysyms For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xcb-util-keysyms. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xcb-util-keysyms-devel-0.4.0-17.el9.aarch64.rpm d70ca652795f00988aa67b41d9184f2351e4200ffd8b7854c8178910807bbc84 RLBA-2022:3857 new packages: xcb-util-renderutil For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xcb-util-renderutil. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xcb-util-renderutil-devel-0.3.9-20.el9.aarch64.rpm 82f712eef408d9a7cf23df8c82c98359320dd902793f5df71331fe0fbd425b8d RLBA-2022:3858 new packages: xcb-util-wm For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xcb-util-wm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xcb-util-wm-devel-0.4.1-22.el9.aarch64.rpm 8cb3412be89c130244c54202bfe3a86a1a8f5a97730a401f3bf4f1b7174ea1b5 RLBA-2022:3869 new packages: xmlsec1 For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xmlsec1. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xmlsec1-devel-1.2.29-9.el9.aarch64.rpm 173bf7b0b92fd87a1ba2a9de8cb7393970990e79024ccc4985b4588b28358132 xmlsec1-gcrypt-1.2.29-9.el9.aarch64.rpm bbcf0e81746775754d83c3f06b59b85dcede2324085a8f487a9acbb9b3f52ad7 xmlsec1-gnutls-1.2.29-9.el9.aarch64.rpm 76784a298ad5c53ebca60c66969ad00049d793cf214c60d2f2bb9ce588221485 xmlsec1-gnutls-devel-1.2.29-9.el9.aarch64.rpm 23867d3938ab3d16a854caaee7a20b8226e245bcf48126d553704d612c3c5086 xmlsec1-openssl-devel-1.2.29-9.el9.aarch64.rpm 732db3fe3592e36b933dcab625764bb6197e4a26be755f2c026fe13b6ee0fc66 RLBA-2022:3872 new packages: xorg-x11-drv-libinput For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xorg-x11-drv-libinput. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xorg-x11-drv-libinput-devel-1.0.1-3.el9.aarch64.rpm 57f5bbd02238f327d96185695b084881968f94e63e1c409a8a6c6dfd514adfac RLBA-2022:3883 new packages: yelp For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for yelp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms yelp-devel-40.3-2.el9.aarch64.rpm 733fae43d7ad85ad322ebd461702699a0ea7795468bef4e14e4791ebb82ac96e RLBA-2022:4571 new packages: inkscape-flatpak module For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libsigc++20, gc, poppler, inkscape, poppler-data, python-scour, libwpd, librevenge, libwpg, pangomm, python-lxml, potrace, gtkmm30, double-conversion, gtkspell3, python-appdirs, numpy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms double-conversion-devel-3.1.5-6.el9.aarch64.rpm f08034f3e663e69e81b440998e46e515ab5e2cca4bdbd2cb1467daa9d0405c55 gc-devel-8.0.4-7.el9.aarch64.rpm 01420ab8f632ae57dfce1bcdcedeaef0d2f709338713c3f1fb4d2d74e0d373c2 gtkmm30-devel-3.24.5-1.el9.aarch64.rpm b48a541a65de3092b2828261b69f139297e04209bd3f87e8b575f147ea527d49 gtkmm30-doc-3.24.5-1.el9.noarch.rpm abe9d8f8b5cc7a7d8cfa3e70e35cf283930d6cdf18dd0c8254d86cc7a06ed99c gtkspell3-3.0.10-9.el9.aarch64.rpm a11b324e2af3998cbb891a215106f455d5640f9083cd1f2c431f77289a9fd1ff gtkspell3-devel-3.0.10-9.el9.aarch64.rpm 3eafdee78b67ee972a7688baec3b54acf6f67c812a09e7c0bd9246163e757440 librevenge-devel-0.0.4-22.el9.aarch64.rpm c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4 libsigc++20-devel-2.10.7-2.el9.aarch64.rpm cc4915b8c5d5678d0f595fed564f4991801594ed670046c7af84d7db666dac22 libsigc++20-doc-2.10.7-2.el9.noarch.rpm 29487250f3f83163d9b2b19379dc1437e3ad90db099286cb698d375effee094b libwpd-devel-0.10.3-10.el9.aarch64.rpm d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 libwpg-devel-0.3.3-8.el9.aarch64.rpm ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326 libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 pangomm-devel-2.46.1-1.el9.aarch64.rpm 293d63cce96944ad2864d805c6fc865b51d09ecf9760aac23de90512963d9097 pangomm-doc-2.46.1-1.el9.noarch.rpm 77ecd2fc1fc2c70f00abf9262894aaa56cbb8d2a8938e862109d8873e6e47607 RLSA-2022:4771 Important: postgresql security update PostgreSQL is an advanced object-relational database management system (DBMS). The following packages have been upgraded to a later upstream version: postgresql (13.7). Security Fix(es): * postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox (CVE-2022-1552) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for postgresql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

PostgreSQL is an advanced object-relational database management system (DBMS). The following packages have been upgraded to a later upstream version: postgresql (13.7). Security Fix(es): * postgresql: Autovacuum, REINDEX, and others omit "security restricted operation" sandbox (CVE-2022-1552) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms postgresql-private-devel-13.7-1.el9_0.aarch64.rpm 5412d0c70f4ca556f5d06ab5e6850891b84e021bd9ea0a208dae5d83cee19450 postgresql-server-devel-13.7-1.el9_0.aarch64.rpm 9921e62b1a009972d9f734abd6dbc9d409a9a4f047a42825130cafd16c7cc202 postgresql-test-13.7-1.el9_0.aarch64.rpm c5279d6b77167cec36498ea11d3bbad413718c3c33feb4bdc523b42d800bc6f0 RLSA-2022:5257 Moderate: libinput security update libinput is a library that handles input devices for display servers and other applications that need to directly deal with input devices. Security Fix(es): * libinput: format string vulnerability may lead to privilege escalation (CVE-2022-1215) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libinput. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

libinput is a library that handles input devices for display servers and other applications that need to directly deal with input devices. Security Fix(es): * libinput: format string vulnerability may lead to privilege escalation (CVE-2022-1215) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libinput-devel-1.19.3-2.el9_0.aarch64.rpm 94f81435a466bfcbb0c450b599f30f5f02ee7d3de8cf3ef467d15cf0b823f1b3 RLSA-2022:5948 Moderate: galera, mariadb, and mysql-selinux security, bug fix, and enhancement update MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: galera (26.4.11), mariadb (10.5.16), mysql-selinux (1.0.5). Security Fix(es): * mariadb: MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used (CVE-2021-46669) * mariadb: lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer (CVE-2022-24048) * mariadb: lack of validating the existence of an object prior to performing operations on the object (CVE-2022-24050) * mariadb: lack of proper validation of a user-supplied string before using it as a format specifier (CVE-2022-24051) * mariadb: CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability (CVE-2022-24052) * mariadb: assertion failure in Item_args::walk_arg (CVE-2022-27376) * mariadb: use-after-poison when complex conversion is involved in blob (CVE-2022-27377) * mariadb: server crash in create_tmp_table::finalize (CVE-2022-27378) * mariadb: server crash in component arg_comparator::compare_real_fixed (CVE-2022-27379) * mariadb: server crash at my_decimal::operator= (CVE-2022-27380) * mariadb: server crash at Field::set_default via specially crafted SQL statements (CVE-2022-27381) * mariadb: assertion failure via component Item_field::used_tables/update_depend_map_for_order (CVE-2022-27382) * mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c (CVE-2022-27383) * mariadb: crash via component Item_subselect::init_expr_cache_tracker (CVE-2022-27384) * mariadb: server crashes in query_arena::set_query_arena upon SELECT from view (CVE-2022-27386) * mariadb: assertion failures in decimal_bin_size (CVE-2022-27387) * mariadb: crash when using HAVING with NOT EXIST predicate in an equality (CVE-2022-27444) * mariadb: assertion failure in compare_order_elements (CVE-2022-27445) * mariadb: crash when using HAVING with IS NULL predicate in an equality (CVE-2022-27446) * mariadb: use-after-poison in Binary_string::free_buffer (CVE-2022-27447) * mariadb: crash in multi-update and implicit grouping (CVE-2022-27448) * mariadb: assertion failure in sql/item_func.cc (CVE-2022-27449) * mariadb: crash via window function in expression in ORDER BY (CVE-2022-27451) * mariadb: assertion failure in sql/item_cmpfunc.cc (CVE-2022-27452) * mariadb: use-after-free when WHERE has subquery with an outer reference in HAVING (CVE-2022-27455) * mariadb: assertion failure in VDec::VDec at /sql/sql_type.cc (CVE-2022-27456) * mariadb: incorrect key in "dup value" error after long unique (CVE-2022-27457) * mariadb: use-after-poison in Binary_string::free_buffer (CVE-2022-27458) * mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc (CVE-2022-31622) * mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc (CVE-2022-31623) * mariadb: Crash executing query with VIEW, aggregate and subquery (CVE-2021-46659) * mariadb: MariaDB allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE) (CVE-2021-46661) * mariadb: MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements (CVE-2021-46663) * mariadb: MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value of aggr (CVE-2021-46664) * mariadb: MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations (CVE-2021-46665) * mariadb: MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements (CVE-2021-46668) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for mysql-selinux, mariadb, galera. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: galera (26.4.11), mariadb (10.5.16), mysql-selinux (1.0.5). Security Fix(es): * mariadb: MariaDB through 10.5.9 allows attackers to trigger a convert_const_to_int use-after-free when the BIGINT data type is used (CVE-2021-46669) * mariadb: lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer (CVE-2022-24048) * mariadb: lack of validating the existence of an object prior to performing operations on the object (CVE-2022-24050) * mariadb: lack of proper validation of a user-supplied string before using it as a format specifier (CVE-2022-24051) * mariadb: CONNECT Storage Engine Heap-based Buffer Overflow Privilege Escalation Vulnerability (CVE-2022-24052) * mariadb: assertion failure in Item_args::walk_arg (CVE-2022-27376) * mariadb: use-after-poison when complex conversion is involved in blob (CVE-2022-27377) * mariadb: server crash in create_tmp_table::finalize (CVE-2022-27378) * mariadb: server crash in component arg_comparator::compare_real_fixed (CVE-2022-27379) * mariadb: server crash at my_decimal::operator= (CVE-2022-27380) * mariadb: server crash at Field::set_default via specially crafted SQL statements (CVE-2022-27381) * mariadb: assertion failure via component Item_field::used_tables/update_depend_map_for_order (CVE-2022-27382) * mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c (CVE-2022-27383) * mariadb: crash via component Item_subselect::init_expr_cache_tracker (CVE-2022-27384) * mariadb: server crashes in query_arena::set_query_arena upon SELECT from view (CVE-2022-27386) * mariadb: assertion failures in decimal_bin_size (CVE-2022-27387) * mariadb: crash when using HAVING with NOT EXIST predicate in an equality (CVE-2022-27444) * mariadb: assertion failure in compare_order_elements (CVE-2022-27445) * mariadb: crash when using HAVING with IS NULL predicate in an equality (CVE-2022-27446) * mariadb: use-after-poison in Binary_string::free_buffer (CVE-2022-27447) * mariadb: crash in multi-update and implicit grouping (CVE-2022-27448) * mariadb: assertion failure in sql/item_func.cc (CVE-2022-27449) * mariadb: crash via window function in expression in ORDER BY (CVE-2022-27451) * mariadb: assertion failure in sql/item_cmpfunc.cc (CVE-2022-27452) * mariadb: use-after-free when WHERE has subquery with an outer reference in HAVING (CVE-2022-27455) * mariadb: assertion failure in VDec::VDec at /sql/sql_type.cc (CVE-2022-27456) * mariadb: incorrect key in "dup value" error after long unique (CVE-2022-27457) * mariadb: use-after-poison in Binary_string::free_buffer (CVE-2022-27458) * mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc (CVE-2022-31622) * mariadb: improper locking due to the unreleased lock in extra/mariabackup/ds_compress.cc (CVE-2022-31623) * mariadb: Crash executing query with VIEW, aggregate and subquery (CVE-2021-46659) * mariadb: MariaDB allows an application crash in find_field_in_tables and find_order_in_list via an unused common table expression (CTE) (CVE-2021-46661) * mariadb: MariaDB through 10.5.13 allows a ha_maria::extra application crash via certain SELECT statements (CVE-2021-46663) * mariadb: MariaDB through 10.5.9 allows an application crash in sub_select_postjoin_aggr for a NULL value of aggr (CVE-2021-46664) * mariadb: MariaDB through 10.5.9 allows a sql_parse.cc application crash because of incorrect used_tables expectations (CVE-2021-46665) * mariadb: MariaDB through 10.5.9 allows an application crash via certain long SELECT DISTINCT statements (CVE-2021-46668) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms mariadb-devel-10.5.16-2.el9_0.aarch64.rpm 4182ec0539c96f346a00eb4b6b6b3a7b3062240e3d70b613d513238771f54ef9 mariadb-embedded-devel-10.5.16-2.el9_0.aarch64.rpm 43f75a00920b3ae1b7f8546bb9ce00012f5c839b635bba4d4c0d2308d9223739 mariadb-test-10.5.16-2.el9_0.aarch64.rpm 390578a5632baab76aab67d2168878e627ba5d836bc30e86a0c7b06b612791b3 RLBA-2022:5962 yajl bug fix and enhancement update Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. * Regular rebuild for 9.0.0.2 (QR) - yajl (BZ#2111628) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for yajl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. * Regular rebuild for 9.0.0.2 (QR) - yajl (BZ#2111628) rocky-linux-9-aarch64-crb-rpms yajl-devel-2.1.0-21.el9.aarch64.rpm 5bff3a63b4bd5036cc6578b512181be1062df6c7beb303fd578cb7259b744fb7 RLSA-2022:6585 Moderate: ruby security, bug fix, and enhancement update Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. The following packages have been upgraded to a later upstream version: ruby (3.0.4). (BZ#2109428) Security Fix(es): * Ruby: Double free in Regexp compilation (CVE-2022-28738) * Ruby: Buffer overrun in String-to-Float conversion (CVE-2022-28739) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for ruby. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. The following packages have been upgraded to a later upstream version: ruby (3.0.4). (BZ#2109428) Security Fix(es): * Ruby: Double free in Regexp compilation (CVE-2022-28738) * Ruby: Buffer overrun in String-to-Float conversion (CVE-2022-28739) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms ruby-doc-3.0.4-160.el9_0.noarch.rpm c506029c15725b138655537c19ab15429c8b24a61b919f5088ac93c5efdc1645 RLSA-2022:6590 Moderate: mysql security, bug fix, and enhancement update MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql (8.0.30). (BZ#2122589) Security Fix(es): * mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21412, CVE-2022-21414, CVE-2022-21435, CVE-2022-21436, CVE-2022-21437, CVE-2022-21438, CVE-2022-21440, CVE-2022-21452, CVE-2022-21459, CVE-2022-21462, CVE-2022-21478, CVE-2022-21479) * mysql: Server: DML unspecified vulnerability (CPU Apr 2022) (CVE-2022-21413) * mysql: Server: Replication unspecified vulnerability (CPU Apr 2022) (CVE-2022-21415) * mysql: InnoDB multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21417, CVE-2022-21418, CVE-2022-21451, CVE-2022-21423) * mysql: Server: DDL multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21425, CVE-2022-21444) * mysql: Server: FTS unspecified vulnerability (CPU Apr 2022) (CVE-2022-21427) * mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21454) * mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Jul 2022) (CVE-2022-21455) * mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21457) * mysql: Server: Logging unspecified vulnerability (CPU Apr 2022) (CVE-2022-21460) * mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21509, CVE-2022-21525, CVE-2022-21526, CVE-2022-21527, CVE-2022-21528, CVE-2022-21529, CVE-2022-21530, CVE-2022-21531, CVE-2022-21553, CVE-2022-21556, CVE-2022-21569) * mysql: Server: Options unspecified vulnerability (CPU Jul 2022) (CVE-2022-21515) * mysql: InnoDB multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21517, CVE-2022-21537, CVE-2022-21539) * mysql: Server: Stored Procedure multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21522, CVE-2022-21534) * mysql: Server: Federated unspecified vulnerability (CPU Jul 2022) (CVE-2022-21547) * mysql: Server: Security: Encryption unspecified vulnerability (CPU Jul 2022) (CVE-2022-21538) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Default logrotate set to wrong log file (BZ#2122592) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for mysql. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon (mysqld) and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql (8.0.30). (BZ#2122589) Security Fix(es): * mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21412, CVE-2022-21414, CVE-2022-21435, CVE-2022-21436, CVE-2022-21437, CVE-2022-21438, CVE-2022-21440, CVE-2022-21452, CVE-2022-21459, CVE-2022-21462, CVE-2022-21478, CVE-2022-21479) * mysql: Server: DML unspecified vulnerability (CPU Apr 2022) (CVE-2022-21413) * mysql: Server: Replication unspecified vulnerability (CPU Apr 2022) (CVE-2022-21415) * mysql: InnoDB multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21417, CVE-2022-21418, CVE-2022-21451, CVE-2022-21423) * mysql: Server: DDL multiple unspecified vulnerabilities (CPU Apr 2022) (CVE-2022-21425, CVE-2022-21444) * mysql: Server: FTS unspecified vulnerability (CPU Apr 2022) (CVE-2022-21427) * mysql: Server: Group Replication Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21454) * mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Jul 2022) (CVE-2022-21455) * mysql: Server: PAM Auth Plugin unspecified vulnerability (CPU Apr 2022) (CVE-2022-21457) * mysql: Server: Logging unspecified vulnerability (CPU Apr 2022) (CVE-2022-21460) * mysql: Server: Optimizer multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21509, CVE-2022-21525, CVE-2022-21526, CVE-2022-21527, CVE-2022-21528, CVE-2022-21529, CVE-2022-21530, CVE-2022-21531, CVE-2022-21553, CVE-2022-21556, CVE-2022-21569) * mysql: Server: Options unspecified vulnerability (CPU Jul 2022) (CVE-2022-21515) * mysql: InnoDB multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21517, CVE-2022-21537, CVE-2022-21539) * mysql: Server: Stored Procedure multiple unspecified vulnerabilities (CPU Jul 2022) (CVE-2022-21522, CVE-2022-21534) * mysql: Server: Federated unspecified vulnerability (CPU Jul 2022) (CVE-2022-21547) * mysql: Server: Security: Encryption unspecified vulnerability (CPU Jul 2022) (CVE-2022-21538) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Default logrotate set to wrong log file (BZ#2122592) rocky-linux-9-aarch64-crb-rpms mysql-devel-8.0.30-3.el9_0.aarch64.rpm 9bbe7602c921fb1012de8673e41a23fc23ea9f7cf736d9b2e11d4d652b0a5c49 mysql-libs-8.0.30-3.el9_0.aarch64.rpm 9c9261e4818ab57917a622f9bd55f2bc8b23b191349faebce40a09a0ed157ee5 mysql-test-8.0.30-3.el9_0.aarch64.rpm 7c265994951c89798917a26439b7071c312a321ac3b6373df58a599b4320de9b RLEA-2022:7320 ostree bug fix and enhancement update OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es) and Enhancement(s): * Update ostree to latest upstream version 2022.5 (BZ#2127868) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ostree. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es) and Enhancement(s): * Update ostree to latest upstream version 2022.5 (BZ#2127868) rocky-linux-9-aarch64-crb-rpms ostree-devel-2022.5-1.el9.aarch64.rpm a20d30f4c880d863b873ae9d121c47498f70c008f1362c415fe456685a5a0eb3 RLBA-2022:7944 libnbd bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnbd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnbd-devel-1.12.6-1.el9.aarch64.rpm 07847a430539e0d97685427d06d4677a7722451781593bf68bb14e0b9c5a3ce5 ocaml-libnbd-1.12.6-1.el9.aarch64.rpm 0443a319fdb14faff769bf930c571ea81d302f8fa04501ebc08d2e023871a477 ocaml-libnbd-devel-1.12.6-1.el9.aarch64.rpm 0bd0b71353e813b860c9a73a4e7520c48f9c061f40b3235ddf164f73fcabcf95 RLBA-2022:7948 libwpe bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libwpe. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwpe-devel-1.10.0-4.el9.aarch64.rpm 4392bb82312ed771181b3722565bfd25f0f46e5fd147ae1f44027f60ef2ba70f RLBA-2022:7947 wpebackend-fdo bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for wpebackend-fdo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms wpebackend-fdo-devel-1.10.0-3.el9.aarch64.rpm 5af2a1ba118897f61353e6ca3e6b4112acc54c0ec54eb1b597a1c019ff2a4639 RLBA-2022:7952 flatpak bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for flatpak. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms flatpak-devel-1.12.7-2.el9.aarch64.rpm 844eb8e71febdff9f8da60b81c7001c7c35a0f1521a8cb6fe8d1d0085308c9b5 RLBA-2022:7953 gdm bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gdm. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gdm-devel-40.1-17.el9_1.aarch64.rpm e7d81a301439810eddc7da37a05c6172837e961cfaded0a1d71feee4bfd20714 gdm-pam-extensions-devel-40.1-17.el9_1.aarch64.rpm 5837393c1b0c64dc2834ea8b3f4a84d7a5d2ed361df033c39ac17cc2134e16ff RLSA-2022:7958 Low: libguestfs security, bug fix, and enhancement update The libguestfs packages contain a library used for accessing and modifying virtual machine disk images. Security Fix(es): * libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for libguestfs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libguestfs packages contain a library used for accessing and modifying virtual machine disk images. Security Fix(es): * libguestfs: Buffer overflow in get_keys leads to DoS (CVE-2022-2211) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libguestfs-devel-1.48.4-2.el9.aarch64.rpm 437e590fb60e055eea4737e40e91538381a063b67721fb4b78bb3f334f1a42c3 libguestfs-gobject-1.48.4-2.el9.aarch64.rpm fff41093e2f7108666f9ae3578a8d4c664bfc7d80c78d57f97be27bb54791c8a libguestfs-gobject-devel-1.48.4-2.el9.aarch64.rpm ba04802ef5a122a3f02680fd0f2d59613399daab3cad68ca9a951d8f34de5e13 libguestfs-man-pages-ja-1.48.4-2.el9.noarch.rpm ce5bbcb3fe01b5f5e05f39666cfddeb102a532accd3cd71add956bb88cb6c3c5 libguestfs-man-pages-uk-1.48.4-2.el9.noarch.rpm 3942c50c33e5ec41deb55131b8c31e0aecefa48688ca4d5140ab542cfd6de24a lua-guestfs-1.48.4-2.el9.aarch64.rpm 6b6232908befb54419b4f3dbd87c270592ffaffa8b7e2c256eee5de3886f8c3b ocaml-libguestfs-1.48.4-2.el9.aarch64.rpm d413b83fe738c948787bbde37dfc6e0cdaf8fa47c7cd3ade87aaf14e3bd44812 ocaml-libguestfs-devel-1.48.4-2.el9.aarch64.rpm 7eab8c3ed4e8092d19ee48497d3b6092058e1632a785fdfa3fd1d97576e471b2 php-libguestfs-1.48.4-2.el9.aarch64.rpm 14fd6274afd9993b26dca02a3221cb884d5dd466b95a1e9ca5d7b4fb192965cc ruby-libguestfs-1.48.4-2.el9.aarch64.rpm faaafe06e45c75f0976030eca4c1fc5cce279c99e48124a3e199d58f9a21b5d8 RLBA-2022:7964 babeltrace bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for babeltrace. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libbabeltrace-devel-1.5.8-10.el9.aarch64.rpm ef9c017670fdc185e86dda3d1266d10553a94808a08895dd5b7d15f4b3e7b8b7 python3-babeltrace-1.5.8-10.el9.aarch64.rpm 6d3bf2cac4e62a15bfe3a2bd66608021748496d6e1d6e521a0a276f822d7944a RLBA-2022:7965 supermin bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for supermin. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms supermin-devel-5.2.1-8.el9.aarch64.rpm aec12bf39fe17203f52593fb783aac52a8ad0a818d0a3641ac9fa2ef9540bcf1 RLSA-2022:7970 Moderate: protobuf security update The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data. Security Fix(es): * protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference (CVE-2021-22570) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for protobuf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The protobuf packages provide Protocol Buffers, Google's data interchange format. Protocol Buffers can encode structured data in an efficient yet extensible format, and provide a flexible, efficient, and automated mechanism for serializing structured data. Security Fix(es): * protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference (CVE-2021-22570) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms protobuf-compiler-3.14.0-13.el9.aarch64.rpm 8231c5feadbf67dbb41c09e1f92e101c62b51efb69992c9c5d495770844c8093 protobuf-devel-3.14.0-13.el9.aarch64.rpm ef740652326428a2819f84d86c320c366ff0a750996ee74763b6ad55de707ec0 protobuf-lite-devel-3.14.0-13.el9.aarch64.rpm 7e8a2cc266f6b6fc251600dc253e7b2ad2c7bce3505f5233c9b9d0ac45db8797 RLBA-2022:7976 libnma bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnma. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnma-devel-1.8.40-1.el9.aarch64.rpm 01732f3a50a5dc94404ac439136d190c5f8a53a300bf28b3b984032ab3531638 RLSA-2022:7979 Low: speex security update Speex is a patent-free compression format designed especially for speech. It is specialized for voice communications at low bit-rates. Security Fix(es): * speex: divide by zero in read_samples() via crafted WAV file (CVE-2020-23903) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for speex. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Speex is a patent-free compression format designed especially for speech. It is specialized for voice communications at low bit-rates. Security Fix(es): * speex: divide by zero in read_samples() via crafted WAV file (CVE-2020-23903) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms speex-devel-1.2.0-11.el9.aarch64.rpm 9aaa612b89f3dbe623b3f53809def05816ae7b02f40d08f1f654b4969d30ecdb RLEA-2022:7983 ostree bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ostree-devel-2022.5-1.el9.aarch64.rpm a20d30f4c880d863b873ae9d121c47498f70c008f1362c415fe456685a5a0eb3 RLBA-2022:7985 nautilus bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nautilus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms nautilus-devel-40.2-9.el9_1.aarch64.rpm e57e0fa3424d40b3ece2e5dfecb415d12975a167e6cfae2bcc54259d0ea99bbf RLBA-2022:7992 libestr bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libestr. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libestr-devel-0.1.11-4.el9.aarch64.rpm 703b31c2b05d99ce8992b6c50753359f990babaa6088d722a7d7ebb22c03049e RLBA-2022:7994 evolution bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for evolution. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms evolution-devel-3.40.4-6.el9.aarch64.rpm 90bfb3d58bb37051151a605d5365a7b2c6d38ed8ec88272aa9e819098355d3c2 RLBA-2022:8006 gjs bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gjs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gjs-devel-1.68.6-1.el9.aarch64.rpm 6da08b2cd2c52b35c2e85eaebc828cde307844939f34f73ae6ac5770de997ef5 RLBA-2022:8016 nss_wrapper bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nss_wrapper, uid_wrapper. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms uid_wrapper-1.2.9-2.el9.aarch64.rpm 2e9c1aa9a3445f0c9902ebd19c2c106c43ee529d28426efc6a0288e2f1bff636 RLBA-2022:8017 augeas bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for augeas. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms augeas-devel-1.13.0-2.el9.aarch64.rpm 2921c77f6f8b1e9de13432ae72020f121dc8cb1c4754e6ccad443f435e289b6e RLSA-2022:8022 Moderate: qt5 security and bug fix update The Qt5 libraries packages provide Qt 5, version 5 of the Qt cross-platform application framework. Security Fix(es): * qt: QProcess could execute a binary from the current working directory when not found in the PATH (CVE-2022-25255) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for qt5. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Qt5 libraries packages provide Qt 5, version 5 of the Qt cross-platform application framework. Security Fix(es): * qt: QProcess could execute a binary from the current working directory when not found in the PATH (CVE-2022-25255) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms qt5-devel-5.15.3-1.el9.noarch.rpm 0c7ecd814cae18753f7f6ba4f83aba303c482aab8194ccdbacb9a87d59576b5d RLBA-2022:8025 qt5-qtbase bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qt5-qtbase. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms qt5-qtbase-static-5.15.3-1.el9.aarch64.rpm 38109116319f50008fd6670700162f5d812551f86c8bcf70ddc360d34eab3b4a RLBA-2022:8026 qt5-qtdeclarative bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qt5-qtdeclarative. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms qt5-qtdeclarative-static-5.15.3-1.el9.aarch64.rpm 7ef6fcb66b20a47a62a2f1f7bf42f2afbbe7675f87f7082492551ab574f18ed5 RLBA-2022:8045 qt5-qttools bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qt5-qttools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms qt5-qttools-static-5.15.3-3.el9.aarch64.rpm 909569a33844a814900fecabb482bbe9a494c690de222cae34bd677257123aba RLBA-2022:8046 sip bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sip. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3-sip-devel-4.19.25-1.el9.aarch64.rpm 617d992195778dbc6c419df370f1a17957950ae4a74888b0497ac7c3a2040299 sip-4.19.25-1.el9.aarch64.rpm 21cc940ba2d0396e65f83710d7c42de265dbf076dad5a43c7424b10b458aedc9 RLBA-2022:8047 python-qt5 bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for python-qt5. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3-qt5-devel-5.15.6-1.el9.aarch64.rpm 2f795724e7f4004d75df79d68f755f04a14e977c67c7e710bc56aeaa4d8e78e3 RLBA-2022:8058 dyninst bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dyninst. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms dyninst-devel-12.1.0-1.el9.aarch64.rpm 23b30c299d2ac865f4926b755c9b0ee49b8126e5edce5688333798f6bca27b1f dyninst-doc-12.1.0-1.el9.aarch64.rpm b5060d6186ba1c938e6e5dd72bb5c2c62f73d339492c7b372e1e1561a4fdf2e5 dyninst-testsuite-12.1.0-1.el9.aarch64.rpm 9f97aa8820f06abe7057276f2bdb68055be373bfd8e40e2817d10791e70df3ed RLSA-2022:8062 Moderate: unbound security, bug fix, and enhancement update The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. The following packages have been upgraded to a later upstream version: unbound (1.16.2). (BZ#2087120) Security Fix(es): * unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30698) * unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30699) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for unbound. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. The following packages have been upgraded to a later upstream version: unbound (1.16.2). (BZ#2087120) Security Fix(es): * unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30698) * unbound: novel ghost domain attack that allows attackers to trigger continued resolvability of malicious domain names (CVE-2022-30699) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms unbound-devel-1.16.2-2.el9.aarch64.rpm e2b30973eaa05c7d8d7cb86ec7943333830d822e0b3975507768de5d52a89eea RLSA-2022:8068 Moderate: bind security update The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: DNS forwarders - cache poisoning vulnerability (CVE-2021-25220) * bind: DoS from specifically crafted TCP packets (CVE-2022-0396) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

An update is available for anthy-unicode. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms anthy-unicode-devel-1.0.0.20201109-9.el9.aarch64.rpm 81e06a972c9dfb87ca59abf1674bfd18791ec20456b1b0a2648f8084fffa2bbe RLSA-2022:8078 Moderate: flac security update FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files. Security Fix(es): * flac: out of bound write in append_to_verify_fifo_interleaved_ of stream_encoder.c (CVE-2021-0561) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for flac. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

FLAC stands for Free Lossless Audio Codec. FLAC is similar to Ogg Vorbis, but lossless. The FLAC project consists of the stream format, reference encoders and decoders in library form, a command-line program to encode and decode FLAC files, and a command-line metadata editor for FLAC files. Security Fix(es): * flac: out of bound write in append_to_verify_fifo_interleaved_ of stream_encoder.c (CVE-2021-0561) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms flac-1.3.3-10.el9.aarch64.rpm 7181ea52f233500edc2d411202fedbdd8565bf25d11c6accbf68f674ea6537cd flac-devel-1.3.3-10.el9.aarch64.rpm 9baae7cdeee7020b2986b799b8a23470b7f8008c421a3b14773385a052dd07c3 RLBA-2022:8095 crash bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for crash. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms crash-devel-8.0.1-2.el9.aarch64.rpm ebd3e2e01eace31f82fafbecc97465c45e6da9b7962cc93abd051a7628f89f81 RLBA-2022:8109 bcc bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for bcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms bcc-devel-0.24.0-4.el9.aarch64.rpm 930a8055d1d2ba0dc2dad3d167cff034d01a001e7b7bf0686135ca4a4eab1c77 bcc-doc-0.24.0-4.el9.noarch.rpm 0c503c00b79e77cc426e76fd84713f6d3608e085db2436600f5a739cb52ee5eb RLBA-2022:8116 google-noto-fonts bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for google-noto-fonts. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms google-noto-sans-symbols2-fonts-20201206-4.el9.noarch.rpm dd615d5f24abcfa7b0cd668e079d1cc26472634251956c335daac0e57eb4cdf7 RLBA-2022:8127 corosync bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for corosync. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms corosynclib-3.1.5-4.el9.aarch64.rpm 85937e01d260594d071b271d92d8836f893c78a2f8d5a1404e18d24a87251a8b corosync-vqsim-3.1.5-4.el9.aarch64.rpm b65d2686dc696bbc2ea64e154c089a6ede4b86077bf84804996bfb465f78f111 RLBA-2022:8129 papi bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for papi. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms papi-6.0.0-12.el9.aarch64.rpm f2ce8e5aa3e1f8398f76047c93f52490bcb7f8ce8b961e12f2ba965a61b6cf17 papi-testsuite-6.0.0-12.el9.aarch64.rpm 061d54827b129d4c5c645376bd009b048af0fa4fceb421d2dec59ef982b56fe9 RLBA-2022:8130 criu bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for criu. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms criu-devel-3.17-4.el9.aarch64.rpm fa7ae77bbe70bd1677397f2272a13793be412da9ba842416e177fc08389097f3 RLBA-2022:8132 libgtop2 bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libgtop2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libgtop2-devel-2.40.0-9.el9.aarch64.rpm cf2c8ac932b7099c6fcc3e3e7e24c5dd79f4d89363bc5ed23619e33149d64839 RLSA-2022:8139 Low: wavpack security update WavPack is a completely open audio compression format providing lossless, high-quality lossy, and a unique hybrid compression mode. Security Fix(es): * wavpack: Heap out-of-bounds read in WavpackPackSamples() (CVE-2021-44269) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for wavpack. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

WavPack is a completely open audio compression format providing lossless, high-quality lossy, and a unique hybrid compression mode. Security Fix(es): * wavpack: Heap out-of-bounds read in WavpackPackSamples() (CVE-2021-44269) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms wavpack-devel-5.4.0-5.el9.aarch64.rpm 63ed219f15104423d19eb51ba52eee07fe2ca6020a4ca7a318c51ee43c7b39f8 RLBA-2022:8142 yara bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for yara. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms yara-devel-4.2.3-1.el9.aarch64.rpm ccf72e289c76bc848ac843fe1196bc3c00671b32e1c8fd58f836957d4fa6f405 RLSA-2022:8151 Moderate: poppler security and bug fix update Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince. Security Fix(es): * poppler: A logic error in the Hints::Hints function can cause denial of service (CVE-2022-27337) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for poppler. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince. Security Fix(es): * poppler: A logic error in the Hints::Hints function can cause denial of service (CVE-2022-27337) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms poppler-cpp-devel-21.01.0-13.el9.aarch64.rpm 9a2896a421dc2ee82b5555e9ae90d224374cd2bd75ca1011c63cb3a95734cbe4 poppler-devel-21.01.0-13.el9.aarch64.rpm 634cf93dc3b3ac595c7a11ca70e7e2407fa7cfa1ffabcc740c07ab4a93ed37da poppler-glib-devel-21.01.0-13.el9.aarch64.rpm fa2a249be5c93f6a38560b6aa094f9244ad09ab2a0d11b5452897355e97a2bc6 poppler-qt5-devel-21.01.0-13.el9.aarch64.rpm 94c2a935dfa7b09f0faff2de2efaa492f5d54a5d723a454904379ebd53162ff3 RLBA-2022:8155 nginx bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nginx. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms nginx-mod-devel-1.20.1-13.el9.aarch64.rpm b93c44432e1ea69f93497bc3bf4930ab1d4531d23f769676665e44d92a1ad3ca RLEA-2022:8157 libdrm and mesa bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libdrm, mesa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms mesa-libgbm-devel-22.1.5-2.el9.aarch64.rpm cc5cdc91799732a2d99285a72e6ca1f2a8cd7d927e76132151c7c81d0cfc3c7d mesa-libOSMesa-22.1.5-2.el9.aarch64.rpm 7237fcf84f2f251a3eee72c39a539fad91ed6b326fd29530164ae08dc340f555 mesa-libOSMesa-devel-22.1.5-2.el9.aarch64.rpm 272f8ac4ac0475a82989a9ec6f3ccc9512a2bf1ca7d4f8eeb5038024b5c955e3 RLBA-2022:8158 sdl12-compat bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sdl12-compat. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms sdl12-compat-devel-1.2.52-1.el9.aarch64.rpm 25e43cfbf1d4e4795589bbb9c15ed61109d04f9f049546f32ef729bc02f79960 RLBA-2022:8160 freerdp bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for freerdp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms freerdp-devel-2.4.1-3.el9.aarch64.rpm e85ae9adba743351c686d079a685635e7a4fa49df4d8a9b7f5169094e11244c7 libwinpr-devel-2.4.1-3.el9.aarch64.rpm cb479314cca1597be1655e20609f769e7c5b526bf249545a07697aa5878aa423 RLBA-2022:8169 pycairo bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for pycairo. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3-cairo-devel-1.20.1-1.el9.aarch64.rpm a1f9a08e6d2e2f4c88c5d97e74d41ee7117c2d6831f6a99e1ec6cbe5bae1e4ab RLBA-2022:8170 nispor bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nispor. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms nispor-devel-1.2.7-1.el9.aarch64.rpm e6248c2668e548ba423e756d9a5c740f01a8b5230cf6ff1ca6824bf19340fe2a RLBA-2022:8176 ldns bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ldns. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ldns-devel-1.7.1-11.el9.aarch64.rpm bc7f8b6a2a6777036a2dd7e4e83112be45878b32074ae9f2e640d2030a912999 ldns-doc-1.7.1-11.el9.noarch.rpm 9b10ac31884afbefbf610d8280e6e585ef3c88fd2fca8a1e4c2cb55c903e8c0d ldns-utils-1.7.1-11.el9.aarch64.rpm 37881177af33df3e5fb92e6e00bbaadc291765ad4de8222d83ed886612cb67aa perl-ldns-1.7.1-11.el9.aarch64.rpm 82a1c349e7e3309d54cbd7899f3663433ec1ab9d64fc3a88eeb7c37f9fcf17a2 python3-ldns-1.7.1-11.el9.aarch64.rpm b14470d7e4839f1f6e0cc8b25d19005e3a70186181d062847d2551d9bde594e4 RLBA-2022:8178 xxhash bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xxhash. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xxhash-devel-0.8.1-3.el9.aarch64.rpm aa85f2dab0755adf697bdaa57b3dd64f255f06e40f8588cda77c2456c88b3d44 xxhash-doc-0.8.1-3.el9.noarch.rpm 1b1802afd44bd91211ca8fa5521cdcebbbf2dee0b409802774c42e5398dbe90d RLBA-2022:8184 woff2 bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for woff2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms woff2-devel-1.0.2-15.el9.aarch64.rpm 7f3fe01aff32013cff9f31b5b8a230b09656793641300ba1856ffdc58297d9d5 RLBA-2022:8201 i2c-tools bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for i2c-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libi2c-devel-4.3-3.el9.aarch64.rpm cf9215c426879c6e0c2667e560ac458e69fe9a9f720356cf8ee437e7f91df831 RLBA-2022:8200 qpdf bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for qpdf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms qpdf-10.3.1-6.el9.aarch64.rpm 067b07d07ef658c3adc29bd98c93052c0e6c378c743712b5f56320a48f229fe9 RLBA-2022:8206 babl bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for babl. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms babl-devel-0.1.86-4.el9.aarch64.rpm 35d3a2e86bebcbfe94ba40a642e7253b0ddff5ea4188d141da31e48d131f09f1 babl-devel-docs-0.1.86-4.el9.noarch.rpm da71bd45d0b0541bb52b1951611071ff0362ad8d856f2799adbea0bafb4a8f1e RLSA-2022:8207 Low: openjpeg2 security update OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. Security Fix(es): * openjpeg: segmentation fault in opj2_decompress due to uninitialized pointer (CVE-2022-1122) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

An update is available for openjpeg2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

OpenJPEG is an open source library for reading and writing image files in JPEG2000 format. Security Fix(es): * openjpeg: segmentation fault in opj2_decompress due to uninitialized pointer (CVE-2022-1122) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms openjpeg2-devel-2.4.0-7.el9.aarch64.rpm d20aa82d5d912b0ec93f1553b41fd0a5b27361013e3aa06bf3653a8dcc5fd772 openjpeg2-tools-2.4.0-7.el9.aarch64.rpm 6b936ef4371c66d1e9d5f75fb495e1a9a99fea7b4a38e4140cb40c8755ab0670 RLSA-2022:8208 Moderate: dovecot security and enhancement update Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fix(es): * dovecot: Privilege escalation when similar master and non-master passdbs are used (CVE-2022-30550) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for dovecot. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fix(es): * dovecot: Privilege escalation when similar master and non-master passdbs are used (CVE-2022-30550) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms dovecot-devel-2.3.16-7.el9.aarch64.rpm 524e7e29974dcd3c9affdbbaa3c6d62ea4da0edccc30bd4bd8970c64bf301d64 RLBA-2022:8209 boost bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for boost. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

An update is available for xorg-x11-server. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Security Fix(es): * xorg-x11-server: X.Org Server ProcXkbSetGeometry out-of-bounds access (CVE-2022-2319) * xorg-x11-server: out-of-bounds access in ProcXkbSetDeviceInfo request handler of the Xkb extension (CVE-2022-2320) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms xorg-x11-server-devel-1.20.11-11.el9.aarch64.rpm 5a56549dd0ac90215cad0cb6799ab56787d96c095e39a7a95a3b3f01540ac01a xorg-x11-server-source-1.20.11-11.el9.noarch.rpm 9b7ef85d732e8fb5a3712ea75167a3d9a4a39f443b0fe0a6dbaca49841467178 RLBA-2022:8239 sanlock bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for sanlock. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms sanlock-devel-3.8.4-4.el9.aarch64.rpm 59b349b4a23c95ad408e969e846b6ff051314b733fe3e3f1be016affb0c8eaf9 RLBA-2022:8240 libwmf bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libwmf. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwmf-devel-0.2.12-10.el9.aarch64.rpm 9939a7b21aecced28f9e2d54a3c09795fe478d1616b40e85b677de4c664449e1 RLBA-2022:8248 xdp-tools bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for xdp-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libxdp-devel-1.2.6-1.el9.aarch64.rpm 57603d01ee91da1190ca729c700125fe7d0290ec0bcb195dd39e08d3839eec5b libxdp-static-1.2.6-1.el9.aarch64.rpm a6dc4e9058e1aa14fcf2381da3eccca8cbfd306062db3d208ff82f26e8240293 RLBA-2022:8251 vulkan bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for shaderc, glslang, spirv-tools, vulkan-loader, vulkan-headers, vulkan-validation-layers, vulkan-tools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms glslang-devel-11.9.0-3.el9.aarch64.rpm 548ceab5f033e4760cfab364896464e4f8a898461fd3d07d4d3933e01def55b9 libshaderc-devel-2022.2-2.el9.aarch64.rpm 8b9017dc96bbd1e9d9e99749017d28c5c9a22f5a5030a8665a25276817dcdce8 spirv-tools-devel-2022.2-3.el9.aarch64.rpm a0abc3f9fe6ec36383a4c7415baf9c62784056fdfac0c9b1ba4b1305d8f89d16 RLSA-2022:8252 Moderate: yajl security update Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. Security Fix(es): * yajl: heap-based buffer overflow when handling large inputs due to an integer overflow (CVE-2022-24795) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. Security Fix(es): * yajl: heap-based buffer overflow when handling large inputs due to an integer overflow (CVE-2022-24795) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms yajl-devel-2.1.0-21.el9.aarch64.rpm 5bff3a63b4bd5036cc6578b512181be1062df6c7beb303fd578cb7259b744fb7 RLBA-2022:8423 inkscape:flatpak bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for enchant2, cairomm, gc, libwpd, gsl, python-lxml, boost, potrace, python-appdirs, poppler, inkscape, python-scour, librevenge, libwpg, lapack, gspell, libsigc++20, poppler-data, double-conversion, gtkmm30, openblas, pangomm, atkmm, glibmm24, numpy. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms atkmm-devel-2.28.2-2.el9.aarch64.rpm 24d118eda1d60da59c6de1859a4ec64d3e9f07ff7c50a8fd3bc8caadcc4e0a41 atkmm-doc-2.28.2-2.el9.noarch.rpm 56521e83bec50b0c679f98ebb9eed867a2f8733d0a2a6f161c76dcd2d5105765 blas64_-3.9.0-8.el9.aarch64.rpm 451cddd3d399c9025ec7d6e38baafd5afcac82bfb6d20f52f53078450198f199 blas-devel-3.9.0-8.el9.aarch64.rpm 35602e6858bbc2158f4cd586339913e198e9449696c30c2c8fa025438d00bc94 boost-b2-1.75.0-8.el9.aarch64.rpm a24522fdbc70095eb4eeb10a564da4dc75893646acc633d1903b20b752c93fc6 boost-build-1.75.0-8.el9.noarch.rpm 7434dfea46f9bd571b3675bb4c303de6597ad7ba8de42b4faef7e5824e9a36e8 boost-doc-1.75.0-8.el9.noarch.rpm e5080e6bb50f4ae84b97ff3681e6d5d80b6337ca035c88b4f2f3770a1205cf0c boost-doctools-1.75.0-8.el9.aarch64.rpm 6e257845b697fec568039506a5dc9dc92a208816107fc9008cf97bc77df40ee3 boost-examples-1.75.0-8.el9.noarch.rpm f3904eec06577458543173a6e0b913a0baae3f378e034fa6b63eadb46b3e17f2 boost-static-1.75.0-8.el9.aarch64.rpm 8d7c864fdb7e625560d6b315fd41f3eeca677e7ca07cf85ce25ebe5a441e64a6 cairomm-devel-1.14.2-10.el9.aarch64.rpm 43a3a4bf22a8e57cdca64d8eac465a4977848726137aa582c9d60001d8c16e94 cairomm-doc-1.14.2-10.el9.noarch.rpm 383bbbc516adade85cecf9956a9810d533fc5c5acaefb80b1b23edf5bd82b58e double-conversion-devel-3.1.5-6.el9.aarch64.rpm f08034f3e663e69e81b440998e46e515ab5e2cca4bdbd2cb1467daa9d0405c55 enchant2-devel-2.2.15-6.el9.aarch64.rpm 6c00302aaf964eadd79a95a00f26092325a8841a6fa4ff086220315ed9926535 gc-devel-8.0.4-7.el9.aarch64.rpm 01420ab8f632ae57dfce1bcdcedeaef0d2f709338713c3f1fb4d2d74e0d373c2 glibmm24-devel-2.66.1-1.el9.aarch64.rpm 2f841a8632fcf0d53b501759bf08f7f93498596f70a6afdc934493cd62d36d8c glibmm24-doc-2.66.1-1.el9.noarch.rpm bfbcd163138501fa996ad0aa4dda44619ae3b7205390023646364b3fac404ec0 gsl-devel-2.6-7.el9.aarch64.rpm 24fc361650a83474da76ed400b6d73ed1f915ebf38e6216c70e71e49391fa0b5 gspell-devel-1.9.1-3.el9.aarch64.rpm 4b1174183a306caf41134434be5cdd9dbd25b2332d1f46a179fe39f093d04843 gspell-doc-1.9.1-3.el9.noarch.rpm 208a6225b69d9c50c7e695b818c3e5d04182e3fe5ce49d1147f2a886eb1edd23 gtkmm30-devel-3.24.5-1.el9.aarch64.rpm b48a541a65de3092b2828261b69f139297e04209bd3f87e8b575f147ea527d49 gtkmm30-doc-3.24.5-1.el9.noarch.rpm abe9d8f8b5cc7a7d8cfa3e70e35cf283930d6cdf18dd0c8254d86cc7a06ed99c lapack64_-3.9.0-8.el9.aarch64.rpm 9a6fce0825e2c44dca3d21cd866b689b5cc0e6733ab5a3d54f0fec693e7cd921 lapack-devel-3.9.0-8.el9.aarch64.rpm b412570e7c6be25ccd34ba2adb6837429231ccb7477ef7f54ed75d92b47e41ec lapack-static-3.9.0-8.el9.aarch64.rpm f88d90b5f290a55822af51458ce1fcbaf491f27d7dda8910ef93cd34224701a9 librevenge-devel-0.0.4-22.el9.aarch64.rpm c2d197beba2cb75239af5cbe9bca70db2f05c9d9314891e3f1d5343dcc70bfc4 libsigc++20-devel-2.10.7-2.el9.aarch64.rpm cc4915b8c5d5678d0f595fed564f4991801594ed670046c7af84d7db666dac22 libsigc++20-doc-2.10.7-2.el9.noarch.rpm 29487250f3f83163d9b2b19379dc1437e3ad90db099286cb698d375effee094b libwpd-devel-0.10.3-10.el9.aarch64.rpm d913a91f5e225b883aa517d8b05d4e8e411a755d6391336bc267b51ce40204de libwpd-doc-0.10.3-10.el9.noarch.rpm cf1cafa034c873ca0728f3d265a585a12f2fe820388cf525b9407d7a7ff7d3b4 libwpg-devel-0.3.3-8.el9.aarch64.rpm ea1d595370cb449e69909f4873f3b2767b4fff7395c2cbfee6318fb652c0c326 libwpg-doc-0.3.3-8.el9.noarch.rpm 612575a87c0c960172ba28ba334437243e5e8df6ae17b42d55d999fe31dac0a0 openblas-devel-0.3.15-3.el9.aarch64.rpm 8878261848bdbc17bb0b7689651acc117c4202f94fa47eedeed564bc5c051347 openblas-openmp64_-0.3.15-3.el9.aarch64.rpm 46092fdbda9def956eaea9955e358ede474b2a17c426aac3da179e81d35f450d openblas-openmp64-0.3.15-3.el9.aarch64.rpm a26d72dc934d857daee95512b9370dd96addb2f6d1c6980e700b0f53f62915cd openblas-serial64_-0.3.15-3.el9.aarch64.rpm 1ce6907f7bacdc243135a1840b8bfd65c822193779055d6606d0b70ad6b6372f openblas-serial64-0.3.15-3.el9.aarch64.rpm 56368b3cb3502b91d79f4b93204cfe3d82ea05aa10379159b23e3542e2927cf4 openblas-static-0.3.15-3.el9.aarch64.rpm 6fdfb9685251d7de67ca2c8576600bd1883d8914d76e305d317a29da5ac04b65 openblas-threads-0.3.15-3.el9.aarch64.rpm 8c8b0253535dc62af63a993145487a712203601b91845baea18dcb092ce250f3 openblas-threads64_-0.3.15-3.el9.aarch64.rpm 7a58726891d025d0c7b24410f027af39d2d895506b9c66ebb1433fdee0765cd9 openblas-threads64-0.3.15-3.el9.aarch64.rpm c2eda7cc357a74b06458fea32ecc09c65cc6bccbd8a9a40bd1384ae835c724ea pangomm-devel-2.46.1-1.el9.aarch64.rpm 293d63cce96944ad2864d805c6fc865b51d09ecf9760aac23de90512963d9097 pangomm-doc-2.46.1-1.el9.noarch.rpm 77ecd2fc1fc2c70f00abf9262894aaa56cbb8d2a8938e862109d8873e6e47607 poppler-cpp-devel-21.01.0-13.el9.aarch64.rpm 9a2896a421dc2ee82b5555e9ae90d224374cd2bd75ca1011c63cb3a95734cbe4 poppler-devel-21.01.0-13.el9.aarch64.rpm 634cf93dc3b3ac595c7a11ca70e7e2407fa7cfa1ffabcc740c07ab4a93ed37da poppler-glib-devel-21.01.0-13.el9.aarch64.rpm fa2a249be5c93f6a38560b6aa094f9244ad09ab2a0d11b5452897355e97a2bc6 poppler-qt5-devel-21.01.0-13.el9.aarch64.rpm 94c2a935dfa7b09f0faff2de2efaa492f5d54a5d723a454904379ebd53162ff3 RLBA-2022:8440 mutter bug fix and enhancement update Mutter is a compositing window manager that displays and manages desktop through OpenGL. It combines the window-management logic inherited from the Metacity window manager with a display engine that uses the Clutter toolkit. Bug Fix(es) and Enhancement(s): * [AMDCLIENT 9.1 Bug] [Lenovo]When switch to some resolutions will be black screen [Rocky Linux-9.1.0.z] (BZ#2136747) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mutter. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Mutter is a compositing window manager that displays and manages desktop through OpenGL. It combines the window-management logic inherited from the Metacity window manager with a display engine that uses the Clutter toolkit. Bug Fix(es) and Enhancement(s): * [AMDCLIENT 9.1 Bug] [Lenovo]When switch to some resolutions will be black screen [Rocky Linux-9.1.0.z] (BZ#2136747) rocky-linux-9-aarch64-crb-rpms mutter-devel-40.9-10.el9_1.aarch64.rpm b63a2e8644ee10e1f2467ed4bf526733f74eba968d4d41445861b651c27a300f RLSA-2022:8643 Important: varnish security update Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fix(es): * varnish: Request Forgery Vulnerability (CVE-2022-45060) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for varnish. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fix(es): * varnish: Request Forgery Vulnerability (CVE-2022-45060) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms varnish-devel-6.6.2-2.el9_1.1.aarch64.rpm 6aecc646ff7854945a799cf7614e202096aeb71644b38d244d391e0fb7eb89f2 RLSA-2023:0077 Moderate: .NET 6.0 security, bug fix, and enhancement update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.113 and .NET Runtime 6.0.13. The following packages have been upgraded to a later upstream version: dotnet6.0 (6.0.113). (BZ#2154459) Security Fix(es): * dotnet: Parsing an empty HTTP response as a JSON.NET JObject causes a stack overflow and crashes a process (CVE-2023-21538) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for dotnet6.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

An update is available for dotnet7.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

An update is available for java-11-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411) (CVE-2023-21835) * OpenJDK: soundbank URL remote loading (Sound, 8293742) (CVE-2023-21843) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Prepare for the next quarterly OpenJDK upstream release (2023-01, 11.0.18) [Rocky Linux-9] (BZ#2157798) rocky-linux-9-aarch64-crb-rpms java-11-openjdk-demo-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm 91e56cc89dc766b28d0e7cc936b79f3436de73c9d9596747290fa1468cda5e92 java-11-openjdk-demo-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm f4295fc0aff94101baa1e761cce3a6303d28d39f9b86c2212b55b321839b4f66 java-11-openjdk-devel-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm 4a5fc8cc34e1b0670a10b1bb113535b1854aebc438a39237e6fd01e6fd762481 java-11-openjdk-devel-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm abf6ffe41ec42311c373b78025af7bcc7dba35e40c9db71be071b0af1122b17d java-11-openjdk-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm f57d3b17a2f2a7d1a4ad7f022118bbf9041461ee9a2e26cbef80a6f3e7eeebb5 java-11-openjdk-headless-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm 75a2b21d5f4239fcb351b3758830a798180647369beed9c1c749afd5f6a576bb java-11-openjdk-headless-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm fd48584e0c05edc9733653603e7055ce87093b534597f83fc57e76b319937513 java-11-openjdk-jmods-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm da929adeac5d18a05a394388741175685aa7dcdb03690459f91c3c6d38e5e400 java-11-openjdk-jmods-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm 2a6a22993a8e74f365dd0a3c7d22384bd47adb2e1be13e92140ba13dbbd8bc23 java-11-openjdk-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm 6e4c4bcb0048c38b25313847ef1d2626149b04bae9d17fea32a3d949adaf173f java-11-openjdk-src-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm 2f04882da16cca19adcd9fd379d6b2a2b9cdc98706e92a19835f75446b13ab3a java-11-openjdk-src-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm 469c68247c56e6246d06116a736391d052c3a42011f6331a1dc24581b2716d63 java-11-openjdk-static-libs-fastdebug-11.0.18.0.10-2.el9_1.aarch64.rpm 4019dfd288ec6a49dba8e1d603daebf39fd12f8f92564167415f836a0026bb3e java-11-openjdk-static-libs-slowdebug-11.0.18.0.10-2.el9_1.aarch64.rpm c151e0f2e85fd4cb3c44eee64d4b750f852138e68486da70fadabdadfd6401a7 RLSA-2023:0194 Moderate: java-17-openjdk security and bug fix update The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411) (CVE-2023-21835) * OpenJDK: soundbank URL remote loading (Sound, 8293742) (CVE-2023-21843) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * In FIPS mode, the use of a SQLite database provided by NSS was assumed, which was opened in read-only mode and with no PIN expected. This prevented the use of other databases or setting a PIN on the NSS database. This update allows more control over database use using two new properties - fips.nssdb.path and fips.nssdb.pin - which can be configured permanently in the java.security file or temporarily via command-line arguments to the Java virtual machine (RHBZ#2147476) * Prepare for the next quarterly OpenJDK upstream release (2023-01, 17.0.6) [Rocky Linux-9] (BZ#2153097) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-17-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * OpenJDK: handshake DoS attack against DTLS connections (JSSE, 8287411) (CVE-2023-21835) * OpenJDK: soundbank URL remote loading (Sound, 8293742) (CVE-2023-21843) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * In FIPS mode, the use of a SQLite database provided by NSS was assumed, which was opened in read-only mode and with no PIN expected. This prevented the use of other databases or setting a PIN on the NSS database. This update allows more control over database use using two new properties - fips.nssdb.path and fips.nssdb.pin - which can be configured permanently in the java.security file or temporarily via command-line arguments to the Java virtual machine (RHBZ#2147476) * Prepare for the next quarterly OpenJDK upstream release (2023-01, 17.0.6) [Rocky Linux-9] (BZ#2153097) rocky-linux-9-aarch64-crb-rpms java-17-openjdk-demo-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm df37904c3b61a2a9fbbc87cb8bd893672cdc4c57d1e70b35359d6d499a0b194a java-17-openjdk-demo-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm 2c4dab700a24f0b9677ab85b4259079fdb33ca3a3297d56d3438acebac403a3c java-17-openjdk-devel-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm 5d141d2d6b79677e1ce578609c776080a03ea9cdc4d676686204e8faed790f15 java-17-openjdk-devel-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm b4ac5f42f2bf451624c3c9fd753e6ce2be3d241cfd35c494df3dc34e7cc121ff java-17-openjdk-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm 5df7036c7a5f351cad465b0e881f3234e4fb72c8d224b63543548363b7988492 java-17-openjdk-headless-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm ba734c9dd79216922bafea6c30e5e0b201e87d28d613a62e5a7a5b27ce5849cf java-17-openjdk-headless-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm fbda24e65c651020fc0addf3aefaca9c425bf918ead31078efa13c4be1267c81 java-17-openjdk-jmods-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm 2cda95a74d93b0d33ec45ab88da74c4303de7d0abc82348ae5ed746ec136f3f3 java-17-openjdk-jmods-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm 6360a2785da3a4b2403654e130923c9ee1d3d296d48168ace9aa70f189eb75c6 java-17-openjdk-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm 2aa585957b810124b3936a0662651b2d496419d313bc0af1100256668c9cce4e java-17-openjdk-src-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm a01eea24063a117132a997de1bb8145540bdc7b012d98a25ed9bd913219a4663 java-17-openjdk-src-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm d2467f67e66676f99045b1195ecf6d37f06be2d175a22661bc564d5ad1ef3538 java-17-openjdk-static-libs-fastdebug-17.0.6.0.10-3.el9_1.aarch64.rpm 543edcf041bad9c99bf7e785409556a74043040a93b75231242904ff12d4ec57 java-17-openjdk-static-libs-slowdebug-17.0.6.0.10-3.el9_1.aarch64.rpm a8671708fb4e12af4bc305ed2764131b788eb5aceb3547515d602e91c4bd99bc RLSA-2023:0302 Moderate: libtiff security update The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * LibTiff: DoS from Divide By Zero Error (CVE-2022-2056, CVE-2022-2057, CVE-2022-2058) * libtiff: Double free or corruption in rotateImage() function at tiffcrop.c (CVE-2022-2519) * libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c (CVE-2022-2953) * libtiff: Assertion fail in rotateImage() function at tiffcrop.c (CVE-2022-2520) * libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c (CVE-2022-2521) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for libtiff. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * LibTiff: DoS from Divide By Zero Error (CVE-2022-2056, CVE-2022-2057, CVE-2022-2058) * libtiff: Double free or corruption in rotateImage() function at tiffcrop.c (CVE-2022-2519) * libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c (CVE-2022-2953) * libtiff: Assertion fail in rotateImage() function at tiffcrop.c (CVE-2022-2520) * libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c (CVE-2022-2521) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libtiff-tools-4.4.0-5.el9_1.aarch64.rpm 7c923ecc66ba36aa2323f5353c57af80378c48ed0a783c86329adb92e03bf079 RLBA-2023:0312 tracker bug fix update Tracker is a powerful desktop-neutral first class object database, tag and metadata database, search tool, and indexer. It consists of a common object database that allows entities to have an almost infinite number of properties, metadata (both embedded and harvested, as well as user definable), a comprehensive database of keywords and tags, and links to other entities. It provides additional features for file-based objects including context linking and audit trails for a file object. It has the ability to index, store, and harvest metadata, retrieve and search all types of files and other first class objects. Bug Fix: * GTK 3 directly depends on libsoup 2 (BZ#2141023) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for tracker. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Tracker is a powerful desktop-neutral first class object database, tag and metadata database, search tool, and indexer. It consists of a common object database that allows entities to have an almost infinite number of properties, metadata (both embedded and harvested, as well as user definable), a comprehensive database of keywords and tags, and links to other entities. It provides additional features for file-based objects including context linking and audit trails for a file object. It has the ability to index, store, and harvest metadata, retrieve and search all types of files and other first class objects. Bug Fix: * GTK 3 directly depends on libsoup 2 (BZ#2141023) rocky-linux-9-aarch64-crb-rpms tracker-devel-3.1.2-3.el9_1.aarch64.rpm ceda233807b75d21d7a024395e67fc993b9e67ae034027f0d2dfe1d681c511ad RLBA-2023:0311 libvirt bug fix and enhancement update The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fixes: * libvirt doesn't catch mdevs created thru sysfs (BZ#2141364) * libvirt kills virtual machine on restart when 2M and 1G hugepages are mounted (BZ#2152083) * qemuAgentGetDisks cannot parse response from a guest agent running in Windows VM (BZ#2154410) Enhancement: * Backport the qemuDomainGetStatsCpu fallback Implementation (BZ#2157094) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fixes: * libvirt doesn't catch mdevs created thru sysfs (BZ#2141364) * libvirt kills virtual machine on restart when 2M and 1G hugepages are mounted (BZ#2152083) * qemuAgentGetDisks cannot parse response from a guest agent running in Windows VM (BZ#2154410) Enhancement: * Backport the qemuDomainGetStatsCpu fallback Implementation (BZ#2157094) rocky-linux-9-aarch64-crb-rpms libvirt-devel-8.5.0-7.3.el9_1.aarch64.rpm 7aa2a477b7185171070343da752fa84d48a158621b064677a7781d35f7fe05f0 libvirt-docs-8.5.0-7.3.el9_1.aarch64.rpm 27d253a1a391014ae1d2daf24217849894cab1c407d7f7f5bfff186d81855822 libvirt-lock-sanlock-8.5.0-7.3.el9_1.aarch64.rpm c5b8351a4fb990e6b3a6eee2332e85bf10d5e0f08683e7b4e272a3729c48d019 RLBA-2023:0313 nmstate bug fix update Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound. Bug Fix: * Cannot move bridge port to bond (BZ#2148394) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nmstate. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound. Bug Fix: * Cannot move bridge port to bond (BZ#2148394) rocky-linux-9-aarch64-crb-rpms nmstate-devel-2.1.4-2.el9_1.aarch64.rpm 2e43aeba85326d6820874bee279994d090657bb9ff33bc39c7ca51286a9820ec nmstate-static-2.1.4-2.el9_1.aarch64.rpm 6ea90fdd1c97b2621dc5d499bf49c0d52d0ff0dbcad203d6043d1cc500d8bcef RLBA-2023:0316 nbdkit bug fix update Network Block Device (NBD) is a protocol for accessing hard disks and other disk-like devices over the network. The nbdkit toolkit utilizes NBD to create servers with minimal dependencies. The package contains plug-in support for the C and Python programming languages. Bug Fix: * nbdkit: error: /home/vddk8.0.0/lib64/libvixDiskLib.so.7: cannot open shared object file: No such file or directory (BZ#2148498) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for nbdkit. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Network Block Device (NBD) is a protocol for accessing hard disks and other disk-like devices over the network. The nbdkit toolkit utilizes NBD to create servers with minimal dependencies. The package contains plug-in support for the C and Python programming languages. Bug Fix: * nbdkit: error: /home/vddk8.0.0/lib64/libvixDiskLib.so.7: cannot open shared object file: No such file or directory (BZ#2148498) rocky-linux-9-aarch64-crb-rpms nbdkit-devel-1.30.8-2.el9_1.aarch64.rpm fd8e24745d1065ff269c9ae1dee5f77307c108e5b2b520dafb7e409c7dc1b46d nbdkit-example-plugins-1.30.8-2.el9_1.aarch64.rpm 9abb1acbc71fe75c292a8b92a545d895bd8c7d204f0f6883144c3702daa7323c nbdkit-srpm-macros-1.30.8-2.el9_1.noarch.rpm 341e29ed559ac990037aaa739d3148e8b7efbacb71528ef4706444f24ab24f69 RLBA-2023:0320 ipa bug fix and enhancement update Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fix(es) and Enhancement(s): * vault interoperability with older Rocky Linux systems is broken (BZ#2149274) * ipa-client-install does not maintain server affinity during installation (BZ#2150270) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ipa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fix(es) and Enhancement(s): * vault interoperability with older Rocky Linux systems is broken (BZ#2149274) * ipa-client-install does not maintain server affinity during installation (BZ#2150270) rocky-linux-9-aarch64-crb-rpms python3-ipatests-4.10.0-8.el9_1.noarch.rpm 2f5153a5fdb52d80da4c1461d827ee67ff894532d0c85d9fcf44be5e9901a719 RLBA-2023:0319 fontconfig bug fix update The fontconfig packages contain the font configuration and customization library, which is designed to locate fonts within the system and select them according to the requirements specified by the applications. Bug fix: * need to fix remap-dir behavior (BZ#2150227) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for fontconfig. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The fontconfig packages contain the font configuration and customization library, which is designed to locate fonts within the system and select them according to the requirements specified by the applications. Bug fix: * need to fix remap-dir behavior (BZ#2150227) rocky-linux-9-aarch64-crb-rpms fontconfig-devel-doc-2.14.0-2.el9_1.noarch.rpm d030938eeb9fff0af88752dc9d6dd4a23a2a9feffc69caca469f25d12ebb2429 RLBA-2022:8419 kronosnet bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for kronosnet. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libknet1-1.24-2.el9.aarch64.rpm 242fab96e478e7bd55e25182ef2a0845e10fd06c8bfa01aa73aef7fadde3f1a0 libknet1-devel-1.24-2.el9.aarch64.rpm c63509f4e26a352a898a6f95e4237f0bd7e130ebe6435a51f78d5217396a4b2c RLBA-2022:2496 new packages: opencsd For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for opencsd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms opencsd-devel-1.2.0-2.el9.aarch64.rpm 86e3a01294fda19d75d1fd2aaef63a18641c684aa3b8a3128b710cf07a525416 RLBA-2022:2343 new packages: mutter For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms mutter-devel-40.9-10.el9_1.aarch64.rpm b63a2e8644ee10e1f2467ed4bf526733f74eba968d4d41445861b651c27a300f RLBA-2022:2672 new packages: varnish For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms varnish-devel-6.6.2-2.el9_1.1.aarch64.rpm 6aecc646ff7854945a799cf7614e202096aeb71644b38d244d391e0fb7eb89f2 RLBA-2022:4203 new packages: lua For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms lua-devel-5.4.2-4.el9_0.3.aarch64.rpm 126101238e19657c9c15bc6d8e14c36b385c19369d02d62f8ba9b1ff60405adc RLBA-2022:8272 glibc bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms glibc-benchtests-2.34-40.el9_1.1.aarch64.rpm b2d340e2be83362c55d70dbd95f02b45df37e372c173399083ef34561df5bebd glibc-nss-devel-2.34-40.el9_1.1.aarch64.rpm 4fddf8453a93fac81f3ae08648c03c1af428bda2b94caa9932daf5f7036982e1 glibc-static-2.34-40.el9_1.1.aarch64.rpm a4a815e06c461e395d547a33cf149f4bb507d7eb9a17cedde2a29b71bda30917 nss_db-2.34-40.el9_1.1.aarch64.rpm 721d9c76f10c8607f904bdce0cbb0868d1afa1e866daf1e5ae70c78a31790b44 nss_hesiod-2.34-40.el9_1.1.aarch64.rpm c56a60d73880f6c5a07059afdc574baff9ebf253413925d4d8f1d6983611e652 RLBA-2022:8313 device-mapper-multipath bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms device-mapper-multipath-devel-0.8.7-12.el9_1.1.aarch64.rpm db0c13a8ead6c48f3f1f705f87d017c621d2207be662cf9f294d03dc0051367c RLBA-2022:8325 sssd bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsss_nss_idmap-devel-2.7.3-4.el9_1.3.aarch64.rpm 5f7bcafeb2b8220d0035ec5dd4213b3ff61dc6a96bc8e143acd891523063c9ef RLSA-2022:8353 Moderate: python3.9 security, bug fix, and enhancement update Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. The following packages have been upgraded to a later upstream version: python3.9 (3.9.14). (BZ#2128249) Security Fix(es): * python: mailcap: findmatch() function does not sanitize the second argument (CVE-2015-20107) * python: open redirection vulnerability in lib/http/server.py may lead to information disclosure (CVE-2021-28861) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms cryptsetup-devel-2.4.3-5.el9_1.1.aarch64.rpm f2db664998a7e53e14a5f21555751be4a0ead1244c2fdc4b407d40812af25914 RLSA-2023:0334 Important: kernel security and bug fix update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: watch queue race condition can lead to privilege escalation (CVE-2022-2959) * kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964) * kernel: i915: Incorrect GPU TLB flush can lead to random memory access (CVE-2022-4139) * kernel: nfsd buffer overflow by RPC message over TCP with garbage data (CVE-2022-43945) * kernel: i2c: unbounded length leads to buffer overflow in ismt_access() (CVE-2022-3077) * kernel: Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option (CVE-2022-30594) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Intel 9.2: Important iavf bug fixes (BZ#2127884) * vfio zero page mappings fail after 2M instances (BZ#2128514) * nvme-tcp automatic reconnect fails intermittently during EMC powerstore NDU operation (BZ#2131359) * ice: Driver Update to 5.19 (BZ#2132070) * WARNING: CPU: 116 PID: 3440 at arch/x86/mm/extable.c:105 ex_handler_fprestore+0x3f/0x50 (BZ#2134588) * drm: duplicated call of drm_privacy_screen_register_notifier() in drm_connector_register() (BZ#2134619) * updating the appid field through sysfs is returning an -EINVAL error (BZ#2136914) * DELL EMC: System is not booting into RT Kernel with perc12. (BZ#2139213) * No signal showed in the VGA monitor when installing Rocky Linux9 in the legacy bios mode (BZ#2140153) * Practically limit "Dummy wait" workaround to old Intel systems (BZ#2142168) * ppc64le: unexpected oom panic when there's enough memory left in zswap test (BZ#2143976) * fatal error: error in backend: Branch target out of insn range (BZ#2144902) * AMdCLIENT: The kernel command line parameter "nomodeset" not working properly (BZ#2145217) * Azure: PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (BZ#2150910) * Azure z-stream: Sometimes newly deployed VMs are not getting accelerated network during provisioning (BZ#2151605) * DELL 9.0 RT - On PE R760 system, call traces are observed dmesg when system is running stress (BZ#2154407) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for kernel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: watch queue race condition can lead to privilege escalation (CVE-2022-2959) * kernel: memory corruption in AX88179_178A based USB ethernet device. (CVE-2022-2964) * kernel: i915: Incorrect GPU TLB flush can lead to random memory access (CVE-2022-4139) * kernel: nfsd buffer overflow by RPC message over TCP with garbage data (CVE-2022-43945) * kernel: i2c: unbounded length leads to buffer overflow in ismt_access() (CVE-2022-3077) * kernel: Unprivileged users may use PTRACE_SEIZE to set PTRACE_O_SUSPEND_SECCOMP option (CVE-2022-30594) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Intel 9.2: Important iavf bug fixes (BZ#2127884) * vfio zero page mappings fail after 2M instances (BZ#2128514) * nvme-tcp automatic reconnect fails intermittently during EMC powerstore NDU operation (BZ#2131359) * ice: Driver Update to 5.19 (BZ#2132070) * WARNING: CPU: 116 PID: 3440 at arch/x86/mm/extable.c:105 ex_handler_fprestore+0x3f/0x50 (BZ#2134588) * drm: duplicated call of drm_privacy_screen_register_notifier() in drm_connector_register() (BZ#2134619) * updating the appid field through sysfs is returning an -EINVAL error (BZ#2136914) * DELL EMC: System is not booting into RT Kernel with perc12. (BZ#2139213) * No signal showed in the VGA monitor when installing Rocky Linux9 in the legacy bios mode (BZ#2140153) * Practically limit "Dummy wait" workaround to old Intel systems (BZ#2142168) * ppc64le: unexpected oom panic when there's enough memory left in zswap test (BZ#2143976) * fatal error: error in backend: Branch target out of insn range (BZ#2144902) * AMdCLIENT: The kernel command line parameter "nomodeset" not working properly (BZ#2145217) * Azure: PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (BZ#2150910) * Azure z-stream: Sometimes newly deployed VMs are not getting accelerated network during provisioning (BZ#2151605) * DELL 9.0 RT - On PE R760 system, call traces are observed dmesg when system is running stress (BZ#2154407) rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-162.12.1.el9_1.0.2.aarch64.rpm 73eb74956d5798dcab6b939bd797ebc45669e94a8100abacac36e9fe2abb8d78 kernel-tools-libs-devel-5.14.0-162.12.1.el9_1.0.2.aarch64.rpm d32e9129be0c0a8ac2512d65ce0804a7f20f9ad4dadef0ef7d3f8b98e6497ee9 RLBA-2022:2402 new packages: ibus For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ibus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ibus-devel-1.5.25-2.el9.rocky.0.1.aarch64.rpm c1408bbb479399a40054cc8f88314af76ddb2c726a145da2be6e5598e0b1cb76 ibus-devel-docs-1.5.25-2.el9.rocky.0.1.noarch.rpm c0d02d296b1aa2728924a81b223bb37aa249d57101648b9dc3d2b47c518b9ce2 RLBA-2022:2856 new packages: gnome-menus For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gnome-menus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.0 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gnome-menus-devel-3.36.0-8.el9.0.1.aarch64.rpm 3f0439239b432154bb43448472bf689d4b8c88ec28f87ec9ac30849f94eb035f RLBA-2022:7977 anaconda bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for anaconda. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms anaconda-widgets-devel-34.25.1.14-1.el9.rocky.0.3.aarch64.rpm 9a99ef344623a1de032a27b6cc7f03d5230982eddbd97d5ee0e8f04f28d75255 RLSA-2022:8003 Low: libvirt security, bug fix, and enhancement update The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. The following packages have been upgraded to a later upstream version: libvirt (8.5.0). (BZ#2060313) Security Fix(es): * libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service (CVE-2022-0897) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. The following packages have been upgraded to a later upstream version: libvirt (8.5.0). (BZ#2060313) Security Fix(es): * libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service (CVE-2022-0897) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libvirt-devel-8.5.0-7.3.el9_1.aarch64.rpm 7aa2a477b7185171070343da752fa84d48a158621b064677a7781d35f7fe05f0 libvirt-docs-8.5.0-7.3.el9_1.aarch64.rpm 27d253a1a391014ae1d2daf24217849894cab1c407d7f7f5bfff186d81855822 libvirt-lock-sanlock-8.5.0-7.3.el9_1.aarch64.rpm c5b8351a4fb990e6b3a6eee2332e85bf10d5e0f08683e7b4e272a3729c48d019 RLBA-2022:8216 openscap bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for openscap. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms openscap-engine-sce-devel-1.3.6-4.el9.rocky.0.2.aarch64.rpm 27263207024ff9c6fc189229d570e2b6c92f05cc880e4605b0c20d05fed6e38c RLSA-2023:0626 Important: libksba security update KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix(es): * libksba: integer overflow to code executiona (CVE-2022-47629) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

KSBA (pronounced Kasbah) is a library to make X.509 certificates as well as the CMS easily accessible by other applications. Both specifications are building blocks of S/MIME and TLS. Security Fix(es): * libksba: integer overflow to code executiona (CVE-2022-47629) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libksba-devel-1.5.1-6.el9_1.aarch64.rpm 42a75fb30626c16a573482ecdb5b95bd1d6a1a0eeafeab7d9447584ad5955966 RLBA-2023:0781 .NET 7.0 bugfix update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address bugs are now available. The updated versions are .NET SDK 7.0.103 and .NET Runtime 7.0.3. Bug Fix(es) and Enhancement(s): * 2166776 - Update .NET 7.0 to SDK 7.0.103 and Runtime 7.0.3 [rhel-9.1.0.z] Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address bugs are now available. The updated versions are .NET SDK 7.0.103 and .NET Runtime 7.0.3. Bug Fix(es) and Enhancement(s): * 2166776 - Update .NET 7.0 to SDK 7.0.103 and Runtime 7.0.3 [rhel-9.1.0.z] rocky-linux-9-aarch64-crb-rpms dotnet-sdk-7.0-source-built-artifacts-7.0.103-1.el9_1.aarch64.rpm 612883d9c34556c876991cf512a59ab13c815e0b80b6ae3c80a02ca4bd634119 RLBA-2023:0782 .NET 6.0 bugfix update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address bugs are now available. The updated versions are .NET SDK 6.0.114 and .NET Runtime 6.0.14. Bug Fix(es) and Enhancements : * 2166770 - Update .NET 6.0 to SDK 6.0.114 and Runtime 6.0.14 [rhel-9.1.0.z] Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address bugs are now available. The updated versions are .NET SDK 6.0.114 and .NET Runtime 6.0.14. Bug Fix(es) and Enhancements : * 2166770 - Update .NET 6.0 to SDK 6.0.114 and Runtime 6.0.14 [rhel-9.1.0.z] rocky-linux-9-aarch64-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.114-1.el9_1.aarch64.rpm 61bf1fcf10127ea63cb028e17f8296252675aa0bf07854648483c3a25c1e012a RLSA-2023:1068 Moderate: libjpeg-turbo security update The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix(es): * libjpeg-turbo: heap buffer overflow in get_word_rgb_row() in rdppm.c (CVE-2021-46822) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix(es): * libjpeg-turbo: heap buffer overflow in get_word_rgb_row() in rdppm.c (CVE-2021-46822) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms turbojpeg-2.0.90-6.el9_1.aarch64.rpm e0d059c2562c74fc4b4b25286ea4b5bd11619e8d456844713e60f4e9e84d6870 turbojpeg-devel-2.0.90-6.el9_1.aarch64.rpm 571817f091ac55d04a620de27e28c4a3a1af1e5aa5ff1a7765c80446565b04dc RLBA-2023:1244 .NET 7.0 bugfix update .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 7.0 to SDK 7.0.104 and Runtime 7.0.4 [rhel-9.1.0.z] (BZ#2175027) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 6.0 to SDK 6.0.115 and Runtime 6.0.15 [rhel-9.1.0.z] (BZ#2174986) rocky-linux-9-aarch64-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.115-1.el9_1.aarch64.rpm 98927ece0f867a40e91d04c9175cda7aac303a7cd7e4d80a28022147ca219886 RLSA-2023:1470 Important: kernel security, bug fix, and enhancement update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: tun: avoid double free in tun_free_netdev (CVE-2022-4744) * ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF (CVE-2023-0266) * kernel: net: CPU soft lockup in TC mirred egress-to-ingress action (CVE-2022-4269) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Rocky Linux9.0 - zfcp: fix missing auto port scan and thus missing target ports (BZ#2127880) * Cgroups_v2, when creating new cgroup/container, resets the cpu affinity masks for all usr processes on the system. (BZ#2143766) * Rocky Linux9.0 - boot: Add secure boot trailer (BZ#2151528) * kernel-rt-debug: WARNING: possible circular locking dependency detected (&n->list_lock->&p->pi_lock->&lock->wait_lock) (BZ#2160614) * Support cpuset.sched_load_balance by changing default CPUset directory structure (BZ#2161105) * Rocky Linux9.0 - s390/kexec: fix ipl report address for kdump (BZ#2166903) * libgpiod doesn't seem to work with Interphase gpiochip (BZ#2166956) * Azure Rocky Linux9 scsi: storvsc: Fix swiotlb bounce buffer leak in confidential VM (BZ#2170227) Enhancement(s): * IBM 9.2 FEAT: Upgrade the QETH driver to latest from upstream, e.g. kernel 6.0 (BZ#2166304) * Intel 9.2 FEAT SPR CPU: AMX: Improve the init_fpstate setup code (BZ#2168382) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: tun: avoid double free in tun_free_netdev (CVE-2022-4744) * ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF (CVE-2023-0266) * kernel: net: CPU soft lockup in TC mirred egress-to-ingress action (CVE-2022-4269) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Rocky Linux9.0 - zfcp: fix missing auto port scan and thus missing target ports (BZ#2127880) * Cgroups_v2, when creating new cgroup/container, resets the cpu affinity masks for all usr processes on the system. (BZ#2143766) * Rocky Linux9.0 - boot: Add secure boot trailer (BZ#2151528) * kernel-rt-debug: WARNING: possible circular locking dependency detected (&n->list_lock->&p->pi_lock->&lock->wait_lock) (BZ#2160614) * Support cpuset.sched_load_balance by changing default CPUset directory structure (BZ#2161105) * Rocky Linux9.0 - s390/kexec: fix ipl report address for kdump (BZ#2166903) * libgpiod doesn't seem to work with Interphase gpiochip (BZ#2166956) * Azure Rocky Linux9 scsi: storvsc: Fix swiotlb bounce buffer leak in confidential VM (BZ#2170227) Enhancement(s): * IBM 9.2 FEAT: Upgrade the QETH driver to latest from upstream, e.g. kernel 6.0 (BZ#2166304) * Intel 9.2 FEAT SPR CPU: AMX: Improve the init_fpstate setup code (BZ#2168382) rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-162.22.2.el9_1.aarch64.rpm d926ac30c2a5cec83b9edd0587907b24cf10beffed4595906241094bdb7acdc6 kernel-tools-libs-devel-5.14.0-162.22.2.el9_1.aarch64.rpm 27761e972150575125464e400534aea4446d5f98cc2f68e713a4881450236376 RLBA-2023:0947 ipset bug fix and enhancement advisory The ipset packages provide the ipset utility and the ipset service to manage IP sets in the Linux kernel. Depending on the type, an IP set may store IP addresses, networks, (TCP/UDP) port numbers, MAC addresses, interface names or combinations of them in a way that ensures high speed when matching an entry against a set. Bug Fix(es) and Enhancement(s): * systemctl restart ipset extremely slow restoring large saved set (BZ#2043008) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The ipset packages provide the ipset utility and the ipset service to manage IP sets in the Linux kernel. Depending on the type, an IP set may store IP addresses, networks, (TCP/UDP) port numbers, MAC addresses, interface names or combinations of them in a way that ensures high speed when matching an entry against a set. Bug Fix(es) and Enhancement(s): * systemctl restart ipset extremely slow restoring large saved set (BZ#2043008) rocky-linux-9-aarch64-crb-rpms ipset-devel-7.11-7.el9_1.aarch64.rpm aeb27ce0c56e56a7f11167f299af2a841ab7bb36c89b8be4b91fed5c6eb8eb06 RLBA-2023:0948 libnetfilter_conntrack bug fix and enhancement update libnetfilter_conntrack is a userspace library providing a programming interface (API) to the in-kernel connection tracking state table. Bug Fix(es) and Enhancement(s): * conntrack -D with filters sometimes ignores the filters and deletes all connection state (BZ#2122641) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

libnetfilter_conntrack is a userspace library providing a programming interface (API) to the in-kernel connection tracking state table. Bug Fix(es) and Enhancement(s): * conntrack -D with filters sometimes ignores the filters and deletes all connection state (BZ#2122641) rocky-linux-9-aarch64-crb-rpms libnetfilter_conntrack-devel-1.0.8-5.el9_1.aarch64.rpm 1b7b2bb1cc8118714f555e7d5308485b14397d0b28830bed196dcce5674b49a0 RLBA-2023:0950 nftables bug fix and enhancement update nftables provides a packet-filtering tool, with numerous improvements in convenience, features, and performance. It is the designated successor to iptables, ip6tables, arptables and ebtables. Bug Fix(es) and Enhancement(s): * RFE: Document why nft ipsec out ip daddr fail to match with xfrmi topo (BZ#1806431) * Make upstream test suite pass (BZ#1973687) * Prevent port-shadow attacks in sample nat config (BZ#2061940) * nftables set concatenation match (ether saddr . vlan id) displays wrong (BZ#2094887) * nftables denies rule with explicit ether type match and VLAN ID in set concatenation (BZ#2094890) * nft asserts if set concatenation contains a constant (BZ#2094894) * nftables add ipsec rule fail (BZ#2113874) * NFT delete element rule return false value. (BZ#2115627) * nft: netlink_delinearize.c:2695: netlink_delinearize_rule: Assertion `pctx->table != NULL' failed. (BZ#2130721) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

nftables provides a packet-filtering tool, with numerous improvements in convenience, features, and performance. It is the designated successor to iptables, ip6tables, arptables and ebtables. Bug Fix(es) and Enhancement(s): * RFE: Document why nft ipsec out ip daddr fail to match with xfrmi topo (BZ#1806431) * Make upstream test suite pass (BZ#1973687) * Prevent port-shadow attacks in sample nat config (BZ#2061940) * nftables set concatenation match (ether saddr . vlan id) displays wrong (BZ#2094887) * nftables denies rule with explicit ether type match and VLAN ID in set concatenation (BZ#2094890) * nft asserts if set concatenation contains a constant (BZ#2094894) * nftables add ipsec rule fail (BZ#2113874) * NFT delete element rule return false value. (BZ#2115627) * nft: netlink_delinearize.c:2695: netlink_delinearize_rule: Assertion `pctx->table != NULL' failed. (BZ#2130721) rocky-linux-9-aarch64-crb-rpms nftables-devel-1.0.4-9.el9_1.aarch64.rpm 3d9bc1638f97b56384cd0005cc394be62a955b6e793ee310bdaa557be4cf758b RLSA-2023:0953 Moderate: python3.9 security update Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * Python: CPU denial of service via inefficient IDNA decoder (CVE-2022-45061) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language. Security Fix(es): * lua: use after free allows Sandbox Escape (CVE-2021-44964) * lua: stack overflow in lua_resume of ldo.c allows a DoS via a crafted script file (CVE-2021-43519) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms lua-devel-5.4.4-2.el9_1.aarch64.rpm 6ecd81929a1e5bea1728e9d8ab3dfd7eccbb0441a394e4fec0f1fa7854746c82 RLBA-2023:0964 libvirt bug fix and enhancement update The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fixes: * libvirt doesn't catch mdevs created thru sysfs (BZ#2141364) * libvirt kills virtual machine on restart when 2M and 1G hugepages are mounted (BZ#2152083) * qemuAgentGetDisks cannot parse response from a guest agent running in Windows VM (BZ#2154410) Enhancement: * Backport the qemuDomainGetStatsCpu fallback Implementation (BZ#2157094) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fixes: * libvirt doesn't catch mdevs created thru sysfs (BZ#2141364) * libvirt kills virtual machine on restart when 2M and 1G hugepages are mounted (BZ#2152083) * qemuAgentGetDisks cannot parse response from a guest agent running in Windows VM (BZ#2154410) Enhancement: * Backport the qemuDomainGetStatsCpu fallback Implementation (BZ#2157094) rocky-linux-9-aarch64-crb-rpms libvirt-devel-8.5.0-7.4.el9_1.aarch64.rpm e906fe09d7075072fa59d657f9400b8f7df8df507f90ac2ca7020e4e2d1bbc81 libvirt-docs-8.5.0-7.4.el9_1.aarch64.rpm 8b1fc933f6f3fc21605446ff9cfdd7257da804108e76aafdffad2a67c4af0ddb libvirt-lock-sanlock-8.5.0-7.4.el9_1.aarch64.rpm eb6da5cf3ec3fd31455082895374319113973e2fc8c484eb4919e786e17c790c RLBA-2023:1756 .NET 7.0 bugfix update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es): * Update .NET 7.0 to SDK 7.0.105 and Runtime 7.0.5 [rhel-9.1.0.z] (BZ#2183592) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es): * Update .NET 7.0 to SDK 7.0.105 and Runtime 7.0.5 [rhel-9.1.0.z] (BZ#2183592) rocky-linux-9-aarch64-crb-rpms dotnet-sdk-7.0-source-built-artifacts-7.0.105-1.el9_1.aarch64.rpm 79bac036ff8a12f27dbc2db8195a1135a8c1117bb33a9ded8028b051b19bc854 RLSA-2023:1879 Important: java-17-openjdk security and bug fix update The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939) * OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954) * OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967) * OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937) * OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938) * OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * In FIPS mode, the list of cryptographic services and algorithms available is limited to those that are FIPS compliant. It was found that this filtering was too strict and was also excluding service attributes. These attributes are now made available in FIPS mode, as they are in non-FIPS mode. (RHBZ#2186804) * Previously, the XML signature provider was unable to operate in FIPS mode. Following recent enhancements to FIPS mode support, the XML signature provider can now be supported. It is now enabled in FIPS mode. (RHBZ#2186811) * The PKCS#11 provider used by FIPS mode can be supported by different PKCS#11 tokens. It was found that some PKCS#11 tokens may not be initialised fully before use, leading to an exception being thrown by the provider. With this release, this exception is now expected and handled by the FIPS support code. (RHBZ#2186807) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939) * OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954) * OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967) * OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937) * OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938) * OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * In FIPS mode, the list of cryptographic services and algorithms available is limited to those that are FIPS compliant. It was found that this filtering was too strict and was also excluding service attributes. These attributes are now made available in FIPS mode, as they are in non-FIPS mode. (RHBZ#2186804) * Previously, the XML signature provider was unable to operate in FIPS mode. Following recent enhancements to FIPS mode support, the XML signature provider can now be supported. It is now enabled in FIPS mode. (RHBZ#2186811) * The PKCS#11 provider used by FIPS mode can be supported by different PKCS#11 tokens. It was found that some PKCS#11 tokens may not be initialised fully before use, leading to an exception being thrown by the provider. With this release, this exception is now expected and handled by the FIPS support code. (RHBZ#2186807) rocky-linux-9-aarch64-crb-rpms java-17-openjdk-demo-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm b1b7e7b424e8106b8bc9a54103f446f6b90ed8e205ca71223cbf1810c43f63b2 java-17-openjdk-demo-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 3a111989cc8ced89bf1331c7f0edb6410f4028499a7f7012919b650cba2b019f java-17-openjdk-devel-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm f8f4d6c396ac03bfd25a5676237f44ab0c4a1f9042d252021b2dfa26239a42db java-17-openjdk-devel-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 3b5f77c2a02e9f42924998bb600de2445aea603080f3790f91e5dc16d7a81895 java-17-openjdk-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 4553b2e908c5e492d38c160014b59e66ef7198ebb3419aac8ab3a75e027db2b9 java-17-openjdk-headless-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 5313949dc67e93f8236228dacd783577104a0041584d0ae6bae2b605e33aea3c java-17-openjdk-headless-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 18325762279b117c5cff91ea7cb6085c1fbd4c39396e88f79ad506db909197d0 java-17-openjdk-jmods-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm da38267a7186f00330fc0b283d99a5dc302c4eba30b3b0539138e12f106c5d1d java-17-openjdk-jmods-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 7f6a850970b2a5a3bba427752ecbf51c9077f91389366bec6ad8da3633dd3076 java-17-openjdk-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 650fcd886ad2a6c5b2dd485324b56c11778f8e4d2db5f7053d3267d96676be61 java-17-openjdk-src-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 1c50a344b368829868ec05dcac46ce8f373d8fee0aeb59754bf80cd1c055e0f0 java-17-openjdk-src-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm d3b3ee5b26f7f5970f5514286a26b3abb960e5df0712f25398413fc6cef36f77 java-17-openjdk-static-libs-fastdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 655ae96f43236a61fcef303b20e0100d85ec9485e7cacf7fd9ae6a6804551fa0 java-17-openjdk-static-libs-slowdebug-17.0.7.0.7-1.el9_1.aarch64.rpm 409fd6409a8829cb20b368a85bd086b85890dbbea8b5cd73eb6153583a3cb78f RLSA-2023:1880 Important: java-11-openjdk security update The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939) * OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954) * OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967) * OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937) * OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938) * OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939) * OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954) * OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967) * OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937) * OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938) * OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-11-openjdk-demo-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm 583870d759b1f4bfe28f31218ed23b6cf658fef3779ad9bd2637b2fa887cb488 java-11-openjdk-demo-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm af5d641225bc5a82426a91f6e18e7e57bef1aa005cc442eb9b982514eec99e5d java-11-openjdk-devel-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm 0184be94c12cd8074d93dafe2809364cfb01cc29acd72543e1780ad0e46f8f64 java-11-openjdk-devel-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm 9b354634c0393dd6269f1aaed47ecbe81302d3901b3216a6717c75dc2a8ce369 java-11-openjdk-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm d34e391fe4b5dbcd78159973995a7e45855841745b2389c8c14b324f6d9772a0 java-11-openjdk-headless-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm f94af326b11333ec07460d51e79decc22c5c9fc838ac651df4fb784b0bcfb852 java-11-openjdk-headless-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm be408373e7402f6214dbc537147c8228410a112d799c56e79da1b4fcb9ad1d49 java-11-openjdk-jmods-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm 8ff15c578508aa1e2c330471c716c32d6fbcf96a30fd8521410a5ddc1e4af3b8 java-11-openjdk-jmods-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm 6e4cf9599de2f7c1e414de75fe56ae96a17b03b830b3d53b70dfe370b3db3e70 java-11-openjdk-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm 900977816fef5a518e7d6fa1033f275833f013741104046d022d2170e4ee76b9 java-11-openjdk-src-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm e2f424e9e6c817944d027a6ed8c2512825d8f4c63e75a4d6e62a0a5781579d2b java-11-openjdk-src-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm cd5c95eef1339ee8452b0078bbf2e0223f7d34686b6d530180b872736e444d8c java-11-openjdk-static-libs-fastdebug-11.0.19.0.7-1.el9_1.aarch64.rpm 2a87df4bed9cba42107cab5aa2d922710dc48b24ea9381c5d8e0a857a34f9ed6 java-11-openjdk-static-libs-slowdebug-11.0.19.0.7-1.el9_1.aarch64.rpm 3cfcafb3b588e355b832aa1df6f26315eb7b22a821dcb09b8a58f41d6ffc0d1a RLSA-2023:1909 Important: java-1.8.0-openjdk security and bug fix update The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939) * OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954) * OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967) * OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937) * OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938) * OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * The RSAPSSSignature implementation works with RSA keys via the SunRSASign provider. However, it did not fully check that the RSA key could be used by the provider before attempting to do so, leading to the possibility of errors being returned with custom security providers. The implementation now validates RSA keys and will allow other providers to handle such keys where it cannot. (RHBZ#2188024) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for java-1.8.0-openjdk. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * OpenJDK: improper connection handling during TLS handshake (8294474) (CVE-2023-21930) * OpenJDK: Swing HTML parsing issue (8296832) (CVE-2023-21939) * OpenJDK: incorrect enqueue of references in garbage collector (8298191) (CVE-2023-21954) * OpenJDK: certificate validation issue in TLS session negotiation (8298310) (CVE-2023-21967) * OpenJDK: missing string checks for NULL characters (8296622) (CVE-2023-21937) * OpenJDK: incorrect handling of NULL characters in ProcessBuilder (8295304) (CVE-2023-21938) * OpenJDK: missing check for slash characters in URI-to-path conversion (8298667) (CVE-2023-21968) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * The RSAPSSSignature implementation works with RSA keys via the SunRSASign provider. However, it did not fully check that the RSA key could be used by the provider before attempting to do so, leading to the possibility of errors being returned with custom security providers. The implementation now validates RSA keys and will allow other providers to handle such keys where it cannot. (RHBZ#2188024) rocky-linux-9-aarch64-crb-rpms java-1.8.0-openjdk-demo-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm a80a1f577f8f92d37c88f553deb7d9c1ba27c0785c429fc16a1274e6d025210c java-1.8.0-openjdk-demo-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm 352941ceb2f51d6171f0d198c14aaa045b57232b0947a419e7cc4609e6662ed6 java-1.8.0-openjdk-devel-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm 7111f6997fd0319da1120c1be887b96ae6e8d233fdbc6598bfc5b8a390b10d2b java-1.8.0-openjdk-devel-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm d87e93ea96c27e90ec5919d9a51ca1c6800be01a0139df3764322df2094a606e java-1.8.0-openjdk-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm 876430ed858b1e37e3411abb45581f2e2107e1fce911269c64b02e260a7b06df java-1.8.0-openjdk-headless-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm 853b037cccd10d56d4ff9b7c3a3c73e0537d72c15ea93a2875835d53e6166cd6 java-1.8.0-openjdk-headless-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm a1172208ff05d8808c0f243301264fcd87bc20ec0f459987ba9917f3aa2ffc59 java-1.8.0-openjdk-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm f4b2ae7ec1d3d173f6e1bd2fa671bebbbf5e1765979a564513966a3bf3cfcc48 java-1.8.0-openjdk-src-fastdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm 047e6346428a62d329cbf236562343723c9fffab4b6c3d0ef5b85eb24447aa98 java-1.8.0-openjdk-src-slowdebug-1.8.0.372.b07-1.el9_1.aarch64.rpm 82e49a1430a55e73d8cdf9ca93290f5fdb8f11eef87ecaae4e1a41b4ba2384ba RLSA-2023:2127 Important: samba security update Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix(es): * samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided (CVE-2022-38023) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

Samba is an open-source implementation of the Server Message Block (SMB) protocol and the related Common Internet File System (CIFS) protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fix(es): * samba: RC4/HMAC-MD5 NetLogon Secure Channel is weak and should be avoided (CVE-2022-38023) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libsmbclient-devel-4.16.4-103.el9_1.aarch64.rpm ecbc5b34ccf2bb7ad2eec9a4db6953358c2ae725782ed4add9b3b00beda2cf8d libwbclient-devel-4.16.4-103.el9_1.aarch64.rpm b05e035515f718a6a12b37119b02b98c1141ef449b450435e1d8985f76741a3a samba-devel-4.16.4-103.el9_1.aarch64.rpm 4445dcc6cb1cfea711ab02a78a52f59b6115a3069cacb484ef0088fdb632af9c samba-pidl-4.16.4-103.el9_1.noarch.rpm d37af99927d8d78941c6e456156317a42c6ec42358e0c9c154068d1ec62808dc samba-test-4.16.4-103.el9_1.aarch64.rpm 8ef4347d2ec9b334dfb4d897b7081e044fd9bfec40f39256cd15a61339309404 samba-test-libs-4.16.4-103.el9_1.aarch64.rpm 96b634654a1097b700986a9c63a35677d624b074d84f8f13dc2a10e8ca4d9786 RLBA-2023:2480 libsepol bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsepol-static-3.5-1.el9.aarch64.rpm 42f2bb2df1777af64f28877e63439a0538ddea9ff5744d5280ae2671912df08a RLBA-2023:2489 librepo bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms librepo-devel-1.14.5-1.el9.aarch64.rpm a61f0ee7326a32151e970da46bf071ba449399692dcb9aaddbea55b667a76a99 RLBA-2023:2501 gobject-introspection bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gobject-introspection-devel-1.68.0-11.el9.aarch64.rpm 35484e01bb3301594b9eb95f6965ab40cfea47d3c54804550895912b6b6d1206 RLBA-2023:2514 sssd bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsss_nss_idmap-devel-2.8.2-2.el9.aarch64.rpm 8f9ccb753854d9073f7b9e9508353489effae337951c816c8e7e2ef320703be3 RLBA-2023:2549 libbpf bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libbpf-devel-1.0.0-2.el9.aarch64.rpm 59bf1f602173defda3c6bb5bab07854f4df3d9084121db6888ea261e001975d1 libbpf-static-1.0.0-2.el9.aarch64.rpm dde2fffe70195d9080679405b42e5f76fabd79eb0e64ba24529f26f21669043f RLBA-2023:2558 libselinux bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libselinux-static-3.5-1.el9.aarch64.rpm fd50a8e1331e38597f29e20788784e9586819d9639680eed5a96c2ac19acdd52 RLBA-2023:2586 ipset bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ipset-devel-7.11-8.el9.aarch64.rpm 5bb87c900bfb575bc009c12852e8d38a791c227dea7c4c83f3f0234f8b24d11c RLBA-2023:2223 anaconda bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms anaconda-widgets-devel-34.25.2.10-1.el9_2.rocky.0.3.aarch64.rpm 6dea849b4b4ed0095047ffb61a6c3d349eb4bd18bc10134d5b26035813a99275 RLBA-2023:2388 python3.11-wheel bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for python3.11-wheel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3.11-wheel-wheel-0.38.4-3.el9.noarch.rpm 6afa76447518ad48a5e66097bdd791983b63bac806c73949c8d75d1b77b3eed1 RLBA-2023:2160 capstone bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for capstone. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms capstone-devel-4.0.2-10.el9.aarch64.rpm aa04b80d04fbd248c82e17ebc0d8aa53b8a4075d4e46b243a0cb10513766ecbe capstone-java-4.0.2-10.el9.noarch.rpm e9da5f1c2ebce2390774a72927ab09d1d88f19f630a2afa6f682ac71d5d48841 python3-capstone-4.0.2-10.el9.aarch64.rpm 2220080cb6733457527dcec022ededaa8024b0be1e1ca81d1fc373015177a7a4 RLBA-2023:2186 augeas bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms augeas-devel-1.13.0-3.el9.aarch64.rpm 3d0fb4a3c22827201b27e4bfff81dce868ceaf899cf1d7742cd263d30fc68602 RLBA-2023:2390 varnish bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms varnish-devel-6.6.2-3.el9.aarch64.rpm 98385a78ead407cab59d5ea75ba89d4407bb7986ae361107c84481083e083d35 RLBA-2023:2402 maven bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for plexus-interpolation, httpcomponents-core, maven-wagon, maven, google-guice, jsoup, jansi, apache-commons-io, apache-commons-lang3, maven-shared-utils, plexus-utils, plexus-classworlds, jakarta-annotations, httpcomponents-client, apache-commons-codec, plexus-cipher, atinject, javapackages-tools, maven-resolver, plexus-containers, jsr-305, cdi-api, apache-commons-cli, slf4j, guava, plexus-sec-dispatcher, sisu. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms javapackages-generators-6.0.0-4.el9.noarch.rpm 658d14adcf1518041ff90ee238d485193ab92f5601fd24e2767d1531c6503d4f javapackages-local-6.0.0-4.el9.noarch.rpm 4677a41640859d83cc0b2a102a60e3eb34dd4c3d6bfef0d14cc9d5e28dc7eabd maven-local-6.0.0-4.el9.noarch.rpm acf5acd8478e2aadedf45db80699b349b03b9605b5f7eaed790572b7683dc65b plexus-containers-container-default-2.1.0-10.el9.noarch.rpm f95f3671e7d93035d083cbfdbb4b14ebc3bfe295a1bbe738036da6f103f5c54a python3-javapackages-6.0.0-4.el9.noarch.rpm 02090a36a022def69bb135f2d30b92f1f322719adc0a3c0993038500d74dfb5e RLBA-2023:2430 python3.11-psycopg2 bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for python3.11-psycopg2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python3.11-psycopg2-debug-2.9.3-1.el9.aarch64.rpm 9cc9af7176f7f2894257e512ac2c2aade090b00a001b1abcf48cc7949ad90e62 python3.11-psycopg2-tests-2.9.3-1.el9.aarch64.rpm ae7fb9471b7e779a001ec7cb6542e49d7b06dc88825da4729cd8cb74f5171659 RLBA-2023:2608 kronosnet bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libknet1-1.25-2.el9.aarch64.rpm 3e59ab4b7e94f604026d92c77dc89defdcb7fb6df4fb3444a84f3a31a2d276d8 libknet1-devel-1.25-2.el9.aarch64.rpm f1c96955d260fa6146706119ea24d03b355332cfd8285b6c1b602fc592fa44b5 RLBA-2023:2635 .NET 7.0 bugfix update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 7.0 to SDK 7.0.105 and Runtime 7.0.5 [rhel-9.2.0.z] (BZ#2183591) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 7.0 to SDK 7.0.105 and Runtime 7.0.5 [rhel-9.2.0.z] (BZ#2183591) rocky-linux-9-aarch64-crb-rpms dotnet-sdk-7.0-source-built-artifacts-7.0.105-2.el9_2.aarch64.rpm fcf0d93543792ee2714848431b61adf0552868fb0576dae3666e9458846a799f RLBA-2023:2639 java-17-openjdk bug fix update The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Bug Fix(es): * All Rocky Linux versions now share a single OpenJDK build (RHBZ#2189326) * In FIPS mode, the list of cryptographic services and algorithms available is limited to those that are FIPS compliant. It was found that this filtering was too strict and was also excluding service attributes. These attributes are now made available in FIPS mode, as they are in non-FIPS mode. (RHBZ#2186803) * Previously, the XML signature provider was unable to operate in FIPS mode. Following recent enhancements to FIPS mode support, the XML signature provider can now be supported. It is now enabled in FIPS mode. (RHBZ#2186810) * The PKCS#11 provider used by FIPS mode can be supported by different PKCS#11 tokens. It was found that some PKCS#11 tokens may not be initialised fully before use, leading to an exception being thrown by the provider. With this release, this exception is now expected and handled by the FIPS support code. (RHBZ#2186806) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Bug Fix(es): * All Rocky Linux versions now share a single OpenJDK build (RHBZ#2189326) * In FIPS mode, the list of cryptographic services and algorithms available is limited to those that are FIPS compliant. It was found that this filtering was too strict and was also excluding service attributes. These attributes are now made available in FIPS mode, as they are in non-FIPS mode. (RHBZ#2186803) * Previously, the XML signature provider was unable to operate in FIPS mode. Following recent enhancements to FIPS mode support, the XML signature provider can now be supported. It is now enabled in FIPS mode. (RHBZ#2186810) * The PKCS#11 provider used by FIPS mode can be supported by different PKCS#11 tokens. It was found that some PKCS#11 tokens may not be initialised fully before use, leading to an exception being thrown by the provider. With this release, this exception is now expected and handled by the FIPS support code. (RHBZ#2186806) rocky-linux-9-aarch64-crb-rpms java-17-openjdk-demo-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm f1516104118bd0eb02b0920fdd4dd0ba46ad8a58f53f76722a18ff4f4b09a464 java-17-openjdk-demo-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm f33dc1ccfcd4d3e850c198d8004f502ec5f229a400bea5667ea36b353725a6f7 java-17-openjdk-devel-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm 58fed1222e7250c5a57963bd8361de158bce00d0fce0e196df98b370642b666d java-17-openjdk-devel-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm 33e6e47429084c5ef159f63835cd412045010ddc89b89d6a4000b7ada200fdd9 java-17-openjdk-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm 48cf2cef9334901418d84eb277475c0967a632283f4319745fc632968870ccf3 java-17-openjdk-headless-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm 05d6cbcd37857e311f1bca692e59ebfe0e70fad4003e1f898d2297c8f7b438ad java-17-openjdk-headless-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm fe91ce7f60ac21cb6c13eba8d53bc41570ea0a3f503dcdb53a7b199f717c2f73 java-17-openjdk-jmods-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm ac88e8b3db9b25b485a94fab42bb06bfb878c19d49ec7969d7db9cdf4d782897 java-17-openjdk-jmods-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm 348c503a9ccc8a5ccd50099ac5fb025dcdcaf92865d7c1e4ff3fcdf4e10ac5df java-17-openjdk-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm 6b0086fc23b5a86fb20122b7c1b78f2b634591bdaad4bfe93e2dcca442520631 java-17-openjdk-src-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm fd8453c3d96e871129a6cb94137c07778205a9c7930b3068f49d541e193a87ca java-17-openjdk-src-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm a0d33191b6db668aa4249ffe68f3b6147e25aa4c3bd9958a55b4ecd898f888ba java-17-openjdk-static-libs-fastdebug-17.0.7.0.7-3.el9.aarch64.rpm a7d34409e99b819f51cb5f84ae202f050002f89f1383f5c646a46ef417680a4f java-17-openjdk-static-libs-slowdebug-17.0.7.0.7-3.el9.aarch64.rpm 8a3521aa46cd6b34689726d80a59dfeb8a234aed496724c65ed01ed27fcf4e0a RLBA-2023:2640 java-11-openjdk bug fix update The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Bug Fix(es): * All Rocky Linux versions now share a single OpenJDK build (RHBZ#2189325) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Bug Fix(es): * All Rocky Linux versions now share a single OpenJDK build (RHBZ#2189325) rocky-linux-9-aarch64-crb-rpms java-11-openjdk-demo-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm c0ef8fb12d4ac8875ef35a1b89c55b1f569d7fbf0024a830cdf398a4ad1d8177 java-11-openjdk-demo-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm 0fed820197a0985bc0fdf55b0c75cd9140780fcbb00d42e26557f325ec7769da java-11-openjdk-devel-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm d3bdd62be32a2b674c0c09dd9b3a446216717493974e96c22c5f0e9535588cfe java-11-openjdk-devel-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm 3f0fd3bd2224355f21340c73110331bd58e496591ee75d64f30d91d212a606f9 java-11-openjdk-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm a5a30dc3f76af3e37bafec49c54848eb3dea63500f9f22945a869041a9a81922 java-11-openjdk-headless-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm d4ff181481422b957971464570bec93690b23706e7b3b5036bec8522fb77177c java-11-openjdk-headless-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm 0905d2f0c95551cb8965ffb134d5b14c26361a151ebc9d4da9e26936bfedab52 java-11-openjdk-jmods-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm 98afa4fbcca2697d6c970d4235005bc437237f1c1f695f14c73310371f42361a java-11-openjdk-jmods-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm b08c31fba4dd132e09b4c80ce8dbd6553f3a4e46502b967b0e009aa4345d2a3f java-11-openjdk-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm 9d166dc32f8614f2040debcc39a899f650452907552da2c50ce528a2a6fba8da java-11-openjdk-src-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm 91bd65782bc6108c0da3bae5312d95103edef22894183e74e5b9b08b39306f78 java-11-openjdk-src-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm 8f325045e7aafdb98c13567afc330188c4a32cda007a0e280caefdfe30e728b5 java-11-openjdk-static-libs-fastdebug-11.0.19.0.7-4.el9.aarch64.rpm 5282aaa42fa5702baa3435ef7fae4ad4dbbef7ea29e3a85be6e5152dfef52cea java-11-openjdk-static-libs-slowdebug-11.0.19.0.7-4.el9.aarch64.rpm c8a7e5076d0324f0b49205b860031653139ec53448ded8d76072eb580e588b32 RLBA-2023:2643 util-linux bug fix update The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Bug Fix(es): * Backport hint about systemd daemon-reload (BZ#2180441) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The util-linux packages contain a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, these include the fdisk configuration tool and the login program. Bug Fix(es): * Backport hint about systemd daemon-reload (BZ#2180441) rocky-linux-9-aarch64-crb-rpms libfdisk-devel-2.37.4-11.el9_2.aarch64.rpm 1d4cd2fc34ed529e84c7258f1b6ca32de28fb35f8ac73173fea3ef8970a9686b libsmartcols-devel-2.37.4-11.el9_2.aarch64.rpm cc5701282bfee91ed30d0b75474f95dd87c34997272bf64fb1810af88f311d84 RLBA-2023:2578 file bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms file-devel-5.39-12.el9.aarch64.rpm 68c2cbb552abd20eec15ab5eb11eac5f204bee8934e3712070f222acb1eeffef RLSA-2023:3661 Important: texlive security update The texlive packages contain TeXLive, an implementation of TeX for Linux or UNIX systems. Security Fix(es): * texlive: arbitrary code execution allows document complied with older version (CVE-2023-32700) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for texlive. This update affects Rocky Linux 9, Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The texlive packages contain TeXLive, an implementation of TeX for Linux or UNIX systems. Security Fix(es): * texlive: arbitrary code execution allows document complied with older version (CVE-2023-32700) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms texlive-gnu-freefont-20200406-26.el9_2.noarch.rpm e0b8de039e1774fb08334bad37b894f4408a40a857939705a3fddaead6fa6032 texlive-lib-devel-20200406-26.el9_2.aarch64.rpm e06a1e2a9cbb5f17a3107d9eab12757c2f50e2c198818fcb44ab044b45958c05 RLSA-2023:4099 Important: bind security update The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: named's configured cache size limit can be significantly exceeded (CVE-2023-2828) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * OpenJDK: improper handling of slash characters in URI-to-path conversion (8305312) (CVE-2023-22049) * OpenJDK: array indexing integer overflow issue (8304468) (CVE-2023-22045) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fix(es): * Prepare for the next quarterly OpenJDK upstream release (2023-07, 8u382) [rhel-9] (BZ#2220662) rocky-linux-9-aarch64-crb-rpms java-1.8.0-openjdk-demo-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm 91aa1e5a40f85a3f9423271831804b9907cb37e617c8a7bc46f74ffbf1d54169 java-1.8.0-openjdk-demo-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm a607448084f38c509f5b4b7397ae66d93fc0238a8ac4f241e60ae3adaed8a864 java-1.8.0-openjdk-devel-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm 403f3665a9dee9baeeee0896fa1a4692f15daf92597a488aa1453c23fb207650 java-1.8.0-openjdk-devel-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm 095870132a789fa2ae23af590611265412d4333a475ea581ff6cf6d6e747f991 java-1.8.0-openjdk-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm f78c10c1fa46a4d22fb26269980a0feed850a20109bce85be93383ead0b7d757 java-1.8.0-openjdk-headless-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm 32c1d8afbe6fc253873663e317c92cdc627381c2d5f7b20cdb9df3524e74f750 java-1.8.0-openjdk-headless-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm ffb6cb9bc46411c9163196cf242587e62907fc5a59596686048688f683cbb132 java-1.8.0-openjdk-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm c756080bfc2fa66f51b1a6435d88546d4780d2ac0b39a82de1b14046f40b7dfa java-1.8.0-openjdk-src-fastdebug-1.8.0.382.b05-2.el9.aarch64.rpm 995c7a7268ad09bdf0f92d1a270916d609c7a0a0de8a696f80ca841407917dfc java-1.8.0-openjdk-src-slowdebug-1.8.0.382.b05-2.el9.aarch64.rpm 793b2d7858291811af65d741f372978432286ef31be0ca3f493c3665c68296fc RLBA-2023:4374 java-11-openjdk bug fix update Bug Fix(es): * The recent OpenJDK 11.0.20 security update accidentally removed a runtime dependency on the tzdata-java package. Installations of the package on systems that did not already have tzdata-java installed were left with missing timezone data. This mistake is rectified in this build. (RHBZ#2224428) For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

Bug Fix(es): * The recent OpenJDK 11.0.20 security update accidentally removed a runtime dependency on the tzdata-java package. Installations of the package on systems that did not already have tzdata-java installed were left with missing timezone data. This mistake is rectified in this build. (RHBZ#2224428) For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms java-11-openjdk-demo-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm 4f026104dec02e7cb1385353fe4eaca25ca0ce4cba861362ee98051fb14dba67 java-11-openjdk-demo-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm ddf1c8d4e2a4174f44db23f0f4fbbdce11418da963d23d90e6090e0b027bdc19 java-11-openjdk-devel-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm d84d0ba4dbe749123c86245c181c69ad2281e305b8057c95b8e994eb44b15493 java-11-openjdk-devel-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm 864076b242ccad5f60eda0f98f5e3677708d7b04cc9fca4d5ca76cbe03d8f034 java-11-openjdk-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm c4d9a0a2c73c90f9c9f7bffe3663b31f809fc7055696b9fcbc2ff414c1627e8b java-11-openjdk-headless-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm 3c91a7211c04a0a2509ef60f55db94831cdb9509056fa7b21b2df91e6ea80838 java-11-openjdk-headless-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm c6a31c4035dd01a8a940e21ae80c9a243b74226ea841b5c038fc0533028cf4e0 java-11-openjdk-jmods-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm d9791f6c65689d98b7ab2a897f3d49b287aaf7ca3a90611a4f902037c25b5421 java-11-openjdk-jmods-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm d54ae86f9b84678b0fcdb0cba45e65f868875b1aae04658ece4ca478bf9efcc6 java-11-openjdk-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm bbf0392268832398919ae1cb364066618125dd03c400e393befbb0196e0c6131 java-11-openjdk-src-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm 8226b01413697d09e6de854344463e235a159f8d3acf5c341a98b11c3d534709 java-11-openjdk-src-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm b5e631e04b240b3cce626324d9dcb5264a0aa64f5decf6093a1ea36feaa1c31b java-11-openjdk-static-libs-fastdebug-11.0.20.0.8-3.el9.aarch64.rpm f7e423459d6c355cf9a9365a5e7ca53047b106a8117d134a09c498ea3e8acb38 java-11-openjdk-static-libs-slowdebug-11.0.20.0.8-3.el9.aarch64.rpm 649edf2af9d70bc34bbf84ee226363e389abee229b2956229b6c098f37b01231 RLBA-2023:4375 ostree bug fix update OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es): * backport https://github.com/ostreedev/ostree/pull/2874/commits/de6fddc6adee09a93901243dc7074090828a1912 (BZ#2224105) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es): * backport https://github.com/ostreedev/ostree/pull/2874/commits/de6fddc6adee09a93901243dc7074090828a1912 (BZ#2224105) rocky-linux-9-aarch64-crb-rpms ostree-devel-2023.1-6.el9_2.aarch64.rpm 42838b23ae067c8c6c3138ce121af6c639bf1bfc3f86612a0b226876eb5df51d RLSA-2023:3595 Important: python3.9 security update Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: urllib.parse url blocklisting bypass (CVE-2023-24329) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

Avahi is an implementation of the DNS Service Discovery and Multicast DNS specifications for Zero Configuration Networking. It facilitates service discovery on a local network. Avahi and Avahi-aware applications allow you to plug your computer into a network and, with no configuration, view other people to chat with, view printers to print with, and find shared files on other computers. Bug Fix(es): * [Rocky Linux-9] Avahi-tools package built but not shipped. (BZ#2204487) rocky-linux-9-aarch64-crb-rpms avahi-compat-howl-0.8-12.el9_2.1.aarch64.rpm 5c34408d5d8f623fb8e8a1ffc86d415c603446e57b96f4761e2d0ab0d6654838 avahi-compat-howl-devel-0.8-12.el9_2.1.aarch64.rpm fb014f3d4d65c3b14a10814ad1ca445709cf5d5bc2fcabf1fbab74302f770541 avahi-compat-libdns_sd-0.8-12.el9_2.1.aarch64.rpm c9e1efcba0f2bc2eb53ca68d47975f672d5562c9d056315baec0a8d4fb1a2304 avahi-compat-libdns_sd-devel-0.8-12.el9_2.1.aarch64.rpm 18dce30e7e38cbab9d65b1fcf521f382d22434731a80cf55aca9985ea78a58ee avahi-devel-0.8-12.el9_2.1.aarch64.rpm 05fc8952ed64ae5a687ff03d2937fd43aaf72ceacffee4be0a4db6abbbaf2810 RLSA-2023:3423 Important: cups-filters security update The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently. Security Fix(es): * cups-filters: remote code execution in cups-filters, beh CUPS backend (CVE-2023-24805) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently. Security Fix(es): * cups-filters: remote code execution in cups-filters, beh CUPS backend (CVE-2023-24805) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms cups-filters-devel-1.28.7-11.el9_2.1.aarch64.rpm 6290ab64c808d13975606c00b64c455d76827411d0402dca4ec23c7f57142bf7 RLSA-2023:3585 Important: python3.11 security update Python is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. Security Fix(es): * python: urllib.parse url blocklisting bypass (CVE-2023-24329) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.11. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Python is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. Security Fix(es): * python: urllib.parse url blocklisting bypass (CVE-2023-24329) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms python3.11-debug-3.11.2-2.el9_2.1.aarch64.rpm dbc125bd305458129c2b091d243517d46ce23f0bc5f0968beed0f4116095fb51 python3.11-idle-3.11.2-2.el9_2.1.aarch64.rpm eec45375f1839a1f6f3f6ae2b4ac7e841c04940840bc7f299c6c676c426e69ab python3.11-test-3.11.2-2.el9_2.1.aarch64.rpm 3bf5f7576ce9ce62787d8aaaacf4acbf88c5c6c91a530bcfd30cc7b1f0eb9cce RLSA-2023:3711 Moderate: libtiff security update The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * libtiff: heap-based buffer overflow in processCropSelections() in tools/tiffcrop.c (CVE-2022-48281) * libtiff: out-of-bounds read in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0795) * libtiff: out-of-bounds read in extractContigSamplesShifted24bits() in tools/tiffcrop.c (CVE-2023-0796) * libtiff: out-of-bounds read in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c (CVE-2023-0797) * libtiff: out-of-bounds read in extractContigSamplesShifted8bits() in tools/tiffcrop.c (CVE-2023-0798) * libtiff: use-after-free in extractContigSamplesShifted32bits() in tools/tiffcrop.c (CVE-2023-0799) * libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0800) * libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c (CVE-2023-0801) * libtiff: out-of-bounds write in extractContigSamplesShifted32bits() in tools/tiffcrop.c (CVE-2023-0802) * libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0803) * libtiff: out-of-bounds write in extractContigSamplesShifted24bits() in tools/tiffcrop.c (CVE-2023-0804) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * libtiff: heap-based buffer overflow in processCropSelections() in tools/tiffcrop.c (CVE-2022-48281) * libtiff: out-of-bounds read in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0795) * libtiff: out-of-bounds read in extractContigSamplesShifted24bits() in tools/tiffcrop.c (CVE-2023-0796) * libtiff: out-of-bounds read in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c (CVE-2023-0797) * libtiff: out-of-bounds read in extractContigSamplesShifted8bits() in tools/tiffcrop.c (CVE-2023-0798) * libtiff: use-after-free in extractContigSamplesShifted32bits() in tools/tiffcrop.c (CVE-2023-0799) * libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0800) * libtiff: out-of-bounds write in _TIFFmemcpy() in libtiff/tif_unix.c when called by functions in tools/tiffcrop.c (CVE-2023-0801) * libtiff: out-of-bounds write in extractContigSamplesShifted32bits() in tools/tiffcrop.c (CVE-2023-0802) * libtiff: out-of-bounds write in extractContigSamplesShifted16bits() in tools/tiffcrop.c (CVE-2023-0803) * libtiff: out-of-bounds write in extractContigSamplesShifted24bits() in tools/tiffcrop.c (CVE-2023-0804) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libtiff-tools-4.4.0-8.el9_2.aarch64.rpm 864a091f33cd8336e4d49d6e88a5d33db5b449b2272d7243d644f2febeb62d78 RLSA-2023:3715 Moderate: libvirt security update The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fix(es): * libvirt: Memory leak in virPCIVirtualFunctionList cleanup (CVE-2023-2700) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fix(es): * libvirt: Memory leak in virPCIVirtualFunctionList cleanup (CVE-2023-2700) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libvirt-client-qemu-9.0.0-10.2.el9_2.aarch64.rpm 471ee3cce885c8e91d1fed1305c3d535fe59eb24790ebba19ce92daa9a99f474 libvirt-devel-9.0.0-10.2.el9_2.aarch64.rpm 0cd310144dd6787aa27aae9797dc6d588375401d583135bf660d8d18a41bd1b6 libvirt-docs-9.0.0-10.2.el9_2.aarch64.rpm 6d2792603ab8e5cf72552d0993e60e4758671a1d6293ef31ee70fd2f6b259be3 libvirt-lock-sanlock-9.0.0-10.2.el9_2.aarch64.rpm a5ee3671441d7b5e0da8e5c325e22007090e48a006ecd170641432702c06cda2 RLSA-2023:3714 Moderate: postgresql security update PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: schema_element defeats protective search_path changes (CVE-2023-2454) * postgresql: row security policies disregard user ID changes after inlining. (CVE-2023-2455) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: schema_element defeats protective search_path changes (CVE-2023-2454) * postgresql: row security policies disregard user ID changes after inlining. (CVE-2023-2455) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms postgresql-docs-13.11-1.el9_2.aarch64.rpm 7a463f2f4a248d0c61847831218c6865215d0789904fe9adb8fe0e7ae71b4817 postgresql-private-devel-13.11-1.el9_2.aarch64.rpm b107d5432fa2003ec503643a2eebd0d130762cec4bfd9f0f7e7a7cb480e609a1 postgresql-server-devel-13.11-1.el9_2.aarch64.rpm 14bb94411884c12efdc59d77c4ad7ed0ebdba56144fc77c5527cca5a00c59ef0 postgresql-static-13.11-1.el9_2.aarch64.rpm 0c9e753d55deb4a800a5aead4b5bb14888b3d32959a7c6d1cfa89322509ca9e9 postgresql-test-13.11-1.el9_2.aarch64.rpm 9bf99b877780d9d58661979064b74f569c70cf71663eace9c14d2ba50c11bf57 postgresql-upgrade-devel-13.11-1.el9_2.aarch64.rpm cfdd742753906679745c70fe90df519a81c1eaed1541f7b2b26244866ffcb2f3 RLBA-2023:3720 criu bug fix and enhancement update The criu packages provide the Checkpoint/Restore in User Space (CRIU) function, which provides the possibility to checkpoint and restore processes or groups of processes. This in turn allows improved fault tolerance or high availability (HA) of a system by restoring a failed process to its state in an earlier point in time. Bug Fix(es) and Enhancement(s): * Containers migration "podman container checkpoint" doesn't work on Sapphire Rapids CPU. (BZ#2203235) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The criu packages provide the Checkpoint/Restore in User Space (CRIU) function, which provides the possibility to checkpoint and restore processes or groups of processes. This in turn allows improved fault tolerance or high availability (HA) of a system by restoring a failed process to its state in an earlier point in time. Bug Fix(es) and Enhancement(s): * Containers migration "podman container checkpoint" doesn't work on Sapphire Rapids CPU. (BZ#2203235) rocky-linux-9-aarch64-crb-rpms criu-devel-3.17-5.el9_2.aarch64.rpm 1884e950e86cf8923e5854e640a1deccf2e1e268d6bd9d30916104fab9f9e60a RLSA-2023:5214 Important: libwebp security update The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Security Fix(es): * libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for libwebp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libwebp packages provide a library and tools for the WebP graphics format. WebP is an image format with a lossy compression of digital photographic images. WebP consists of a codec based on the VP8 format, and a container based on the Resource Interchange File Format (RIFF). Webmasters, web developers and browser developers can use WebP to compress, archive, and distribute digital images more efficiently. Security Fix(es): * libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libwebp-tools-1.2.0-7.el9_2.aarch64.rpm 50a8de0613089b88caed1b2cc55827e31b86a08689d44884d4c483855ca1396e RLSA-2023:5459 Important: ghostscript security update The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fix(es): * ghostscript: vulnerable to OS command injection due to mishandles permission validation for pipe devices (CVE-2023-36664) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fix(es): * ghostscript: vulnerable to OS command injection due to mishandles permission validation for pipe devices (CVE-2023-36664) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libgs-devel-9.54.0-10.el9_2.aarch64.rpm a152128bcc497f8e7ddfbc8e58fcba40c6d90c0a0316dda5500b0b520f9401c9 RLSA-2023:5689 Important: bind security update The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: stack exhaustion in control channel code may lead to DoS (CVE-2023-3341) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C. Security Fix(es): * HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libnghttp2-devel-1.43.0-5.el9_2.1.aarch64.rpm d75938bdddad68af06d791d2e5a2231cc509cc417c12d4f2f801f7d09394bd9a nghttp2-1.43.0-5.el9_2.1.aarch64.rpm 5ef799bd79900de0e32e54af7796be1cff0fcc8b220ad3d30194007246336d9c RLSA-2023:6242 Moderate: .NET 6.0 security update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.124 and .NET Runtime 6.0.24. Security Fix(es): * dotnet: Denial of Service with Client Certificates using .NET Kestrel (CVE-2023-36799) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-1.8.0-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011) * OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068) * OpenJDK: Pack200 excessive memory allocation (8322114) (CVE-2024-21085) * OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507) (CVE-2024-21094) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-1.8.0-openjdk-demo-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm 6c30c46b3fea1bf064f2f8713660b3a6c28500b28510e553d99d14729eb7b83a java-1.8.0-openjdk-demo-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm 4611a2f3e76765fe48e3ea85d10325a9755a93365d125e916f18a4aaa56304ff java-1.8.0-openjdk-devel-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm 9379a3b81fc09cc30260c81013c232478eb2772b279f9690cba34442dddf99cf java-1.8.0-openjdk-devel-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm af0f5ee838fa969303083ee2854bcd9e7934821d6729bdaa18a87ca8aaf92e41 java-1.8.0-openjdk-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm 6d45b093d78f72bd4e6143d5a79dcbb4311901522a5309fe53eb6dac19206b36 java-1.8.0-openjdk-headless-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm 6c617c843b50e555107d427d55e70eea36e82aa821871eef4a605d6f1c7df2ef java-1.8.0-openjdk-headless-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm ca90c02bfa8edd34a3bee77e5f4a3c47812410cef5e5db11a55f8d62d8e3bb2c java-1.8.0-openjdk-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm e917ddb6d2f1ce3fd09c1f0166c78132e01d1f124a9500247b8a1080b9897fdd java-1.8.0-openjdk-src-fastdebug-1.8.0.412.b08-2.el9.aarch64.rpm f7f99c246245ccae2a69e22673ff88ef96b2ea262ee2e1d153a449eced1977f3 java-1.8.0-openjdk-src-slowdebug-1.8.0.412.b08-2.el9.aarch64.rpm dbb6351d79c06da6984a2f843cf9d4bca6eeedbe7fcf3ddd477408877890963f RLSA-2024:1828 Moderate: java-21-openjdk security update The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fix(es): * OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011) * OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068) * OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) (CVE-2024-21012) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-21-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fix(es): * OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011) * OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068) * OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) (CVE-2024-21012) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-21-openjdk-demo-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm b390428b6ca17effd05e117b30de0cec729ec0060e2213d77a46a7140ab6b91a java-21-openjdk-demo-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm 4eef3505a0a86b147a77e7adc78577aff217c242104ac4894c8a8e3425e410de java-21-openjdk-devel-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm 9344181c86ab2f702640e38583f8200532ea6656206808d886b192f290816c90 java-21-openjdk-devel-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm bda0633331e0552593d0bf15487d473b7d3d0026102f5b073596f304c099778f java-21-openjdk-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm 283297f98fad61e352994410b4ff72abea7514dec731f6cf68c76e752c99bf42 java-21-openjdk-headless-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm 5e81be33cc9fcc2123e8cc37263014fd68a2b0a94c4abecd23f16da9edeff959 java-21-openjdk-headless-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm 3f8ec051613768cfb90a5de37985d1a045becfc18644a104dd7a4e2b4f6fbb9c java-21-openjdk-jmods-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm a701fcafebd39e6e13f3be10ed96c2cd2e8d8d13d09e61085add9b30ac1dbe85 java-21-openjdk-jmods-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm 9cec839e1471bdc270c52131327d0af3f3369a99644843cae197a38c9414d04f java-21-openjdk-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm fa3a8424ed8f99693e974e2e37419e80d99da30a89f4157bddcb12d9961b8a8b java-21-openjdk-src-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm 5fdd61cabb7442c8a5cbbdc7d603e214a090eab8f2128958b33ebefdca492fae java-21-openjdk-src-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm 51309f1a5b43336adcc32aaec97c516dd1a7ffb19c0d42765027e7b04367093f java-21-openjdk-static-libs-fastdebug-21.0.3.0.9-1.el9.aarch64.rpm 14ee715591abf8477adfb45f66aa743a53f017104c4083d930c7531967098930 java-21-openjdk-static-libs-slowdebug-21.0.3.0.9-1.el9.aarch64.rpm 6fbfe176cea0a2dd6eed4e2660a28bc1c5ba17f87c414b2a773ab516bef23325 RLSA-2024:1822 Moderate: java-11-openjdk security update The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011) * OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068) * OpenJDK: Pack200 excessive memory allocation (8322114) (CVE-2024-21085) * OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507) (CVE-2024-21094) * OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) (CVE-2024-21012) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-11-openjdk. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * OpenJDK: long Exception message leading to crash (8319851) (CVE-2024-21011) * OpenJDK: integer overflow in C1 compiler address generation (8322122) (CVE-2024-21068) * OpenJDK: Pack200 excessive memory allocation (8322114) (CVE-2024-21085) * OpenJDK: C2 compilation fails with "Exceeded _node_regs array" (8317507) (CVE-2024-21094) * OpenJDK: HTTP/2 client improper reverse DNS lookup (8315708) (CVE-2024-21012) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-11-openjdk-demo-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm 5dc34c0280158f544e49a96df7c99365f7ada1955f075e7d4d5617e4e0c43ae3 java-11-openjdk-demo-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm afdd52cb0e786a4a36139e560f9ed2fb2be50dfdf01d003196b1c8b8cea346b8 java-11-openjdk-devel-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm 500bdfcea69ad1cf6eec15935ae24743bbda0c021f9f5592292d583a9c08c246 java-11-openjdk-devel-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm 8e5f09a51cdd9fc6419d772c5688c8dfe304a0256b7f511ffc3571ca503871f6 java-11-openjdk-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm 27b3ea31069b260b33a0313357a7b2e7cf54a9372de1d0592e0ce0beac87e157 java-11-openjdk-headless-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm b6e0606098253e6e7981ccd55160c894f023b211fd1b67b07ab1985c800e4ccf java-11-openjdk-headless-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm 7de904c6ce46d3ef7592f23d704b019d4941da2dcf78859cc6e00bfa3d68fcdf java-11-openjdk-jmods-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm 3536be9d976419bd8299621da88195b321de75b0f37c02d62c3fc315c24d6c3c java-11-openjdk-jmods-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm 28205616f7d3f58a61885b29cd97bf8a27a9cabde4fb90c90f347a4e3d3e0008 java-11-openjdk-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm b10fcd269ebd96928541d38c43be00543d4d79de77d1559dbaeb29e760559ca3 java-11-openjdk-src-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm 326ea92896df0ab391e7bcf7fbe24c3009ad46618b912dfc9b44c3186518024c java-11-openjdk-src-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm 2bbbd37ecfa37becf0f38a77b50b120517f232c5678d109c93362c03bccb06df java-11-openjdk-static-libs-fastdebug-11.0.23.0.9-3.el9.aarch64.rpm 159cc4533aef5e2d2b2a915c9ef5a0cddbcfcd77273c219b79e30df7e09229c2 java-11-openjdk-static-libs-slowdebug-11.0.23.0.9-3.el9.aarch64.rpm 0c71af97477f904157d399e2f6c6ac7f24fe5dcaea6fd0d41be058663b7f1257 RLSA-2024:2758 Moderate: kernel security and bug fix update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation (CVE-2023-6240) * CVE-2024-25743 hw: amd: Instruction raise #VC exception at exit (AMD-SN-3008,CVE-2024-25742,CVE-2024-25743) Bug Fix(es): * ffdhe* algortihms introduced in 0a2e5b909023 as .fips_allowed=1 lack pairwise consistency tests (JIRA:Rocky Linux-27009) * mm/mglru: fix underprotected page cache (JIRA:Rocky Linux-29235) * [EMR] [TBOOT OS] SUT could not go to S3 state with Rocky Linux 9.2 Tboot OS One CPU return -16 running BUSY (JIRA:Rocky Linux-29673) * system hangs completely - NMI not possible (JIRA:Rocky Linux-30678) * ice 0000:6f:00.0: PTP failed to get time (JIRA:Rocky Linux-30110) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Marvin vulnerability side-channel leakage in the RSA decryption operation (CVE-2023-6240) * CVE-2024-25743 hw: amd: Instruction raise #VC exception at exit (AMD-SN-3008,CVE-2024-25742,CVE-2024-25743) Bug Fix(es): * ffdhe* algortihms introduced in 0a2e5b909023 as .fips_allowed=1 lack pairwise consistency tests (JIRA:Rocky Linux-27009) * mm/mglru: fix underprotected page cache (JIRA:Rocky Linux-29235) * [EMR] [TBOOT OS] SUT could not go to S3 state with Rocky Linux 9.2 Tboot OS One CPU return -16 running BUSY (JIRA:Rocky Linux-29673) * system hangs completely - NMI not possible (JIRA:Rocky Linux-30678) * ice 0000:6f:00.0: PTP failed to get time (JIRA:Rocky Linux-30110) rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.16.1.el9_4.aarch64.rpm a2303864abb5003a91bb303b1ff80f5c6e3e29a1fdfd94ee2340f038e45c4ec1 kernel-tools-libs-devel-5.14.0-427.16.1.el9_4.aarch64.rpm 50893f8a488212587ef2816a61d4908ee5393664391900d4c96a29671ba3e4e2 libperf-5.14.0-427.16.1.el9_4.aarch64.rpm ae4ffdc1d1955a1af2c7ad7c3dadf8978f477b56288de4be3af000c2e0ac9188 RLBA-2023:6691 python-dateutil bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms python-dateutil-doc-2.8.1-7.el9.noarch.rpm af9856126e3747800d1c7b15d61a07b0fea3f05728e8fbbb7f39c02ffd2343c3 RLBA-2024:2403 gcc bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gcc-plugin-devel-11.4.1-3.el9.aarch64.rpm 366a60f2faafea70743d9e57319b0ba2c292f6216ab019658d605e5ef8059c7c libstdc++-static-11.4.1-3.el9.aarch64.rpm ad931b68350d5c9decfb2411245e00e72c0a72cfb89bac7f65b77c5760d84297 RLBA-2024:2411 e2fsprogs bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for e2fsprogs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libss-devel-1.46.5-5.el9.aarch64.rpm 2f57b2884e49479bdcc4dd1c3b058cc0dc21bfa0f464777b9595ec088061a62e RLEA-2024:2424 libnvme bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libnvme. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libnvme-devel-1.6-1.el9.aarch64.rpm 1af917c8fda97c37f251a7311e9c0060a0d89007b96bd7ae8961e4646a4b60c9 RLBA-2024:2428 glib2 bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms glib2-static-2.68.4-14.el9.aarch64.rpm cc725de7590fcb49c83b29b5822bdb6a80f24ed527f82507e812074eeb40369f RLBA-2024:2439 libsemanage bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsemanage-devel-3.6-1.el9.aarch64.rpm 901fd89d3c1e35338fef56066dcd7170a3b594dff87df268bc92cba68a0dd834 RLBA-2024:2440 libsepol bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libsepol-static-3.6-1.el9.aarch64.rpm 3a52a99d9b6500512bc2a5a1901e7216619202896432d0cc8a35914e2775e238 RLSA-2024:2463 Moderate: systemd security update The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fix(es): * systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes (CVE-2023-7008) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for systemd. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes using Linux cgroups. In addition, it supports snapshotting and restoring of the system state, maintains mount and automount points, and implements an elaborate transactional dependency-based service control logic. It can also work as a drop-in replacement for sysvinit. Security Fix(es): * systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes (CVE-2023-7008) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms systemd-boot-unsigned-252-32.el9_4.aarch64.rpm e57a72dbf78da5a6e8922163af116aedf1f85ed376ffd68be367eda46fdeeae4 RLBA-2024:2468 libtalloc bug fix and enhancement update For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtalloc-devel-2.4.1-1.el9.aarch64.rpm 8b8b0a654d9d23de727a4544c9f8c987e2cd8eb1d5c96364f1601b6902b159da RLBA-2024:2467 hwdata bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for hwdata. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms hwdata-devel-0.348-9.13.el9.noarch.rpm 58c4eaf9977c6f04c1eedc31774ca3ed6426326b913654fb73d5ba1d51944c92 RLBA-2024:2472 libtdb bug fix and enhancement update For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Enterprise Software Foundation Enterprise Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtdb-devel-1.4.9-1.el9.aarch64.rpm f9bdb710b97d0fd8f24315c4b949ef8a694434e6c7cc99363507da84b8026a25 RLBA-2024:2493 nftables bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms nftables-devel-1.0.9-1.el9.aarch64.rpm a706b6fbad7ea22f44e945a373e166e117fd6a018995c8f9b2c4b8effcab9181 RLBA-2024:2489 libbpf bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libbpf-devel-1.3.0-2.el9.aarch64.rpm b62816f4e0f5f1e70bae4c1227bda717207347349b0ec149a9d88eec4af71b24 libbpf-static-1.3.0-2.el9.aarch64.rpm f10d79687a4a2003583199327107c10fe5179942ee16642153d36e40bf41b023 RLBA-2024:2497 lvm2 bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms device-mapper-devel-1.02.197-2.el9.aarch64.rpm a7480d533806a01e097bc8ac9dcf9de5c5d87e2e49140b6e88344d20b8146f1b device-mapper-event-devel-1.02.197-2.el9.aarch64.rpm ec13788b53761e4796236ee97f564b5e4975cc11173cd33a5784b07afd71273c lvm2-devel-2.03.23-2.el9.aarch64.rpm 8173636a9263b732d775602027dc634ae38f7d5822a34931c283be5db553acbd RLBA-2024:2510 libtirpc bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libtirpc-devel-1.3.3-8.el9_4.aarch64.rpm b09d7d581c3bc85371c486ed33b525a055313eed45a7c5ebd5213b4e591482e3 RLSA-2024:2512 Low: file security update The file command is used to identify a particular file according to the type of data the file contains. It can identify many different file types, including Executable and Linkable Format (ELF) binary files, system libraries, RPM packages, and different graphics formats. Security Fix(es): * file: stack-based buffer over-read in file_copystr in funcs.c (CVE-2022-48554) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Low

The file command is used to identify a particular file according to the type of data the file contains. It can identify many different file types, including Executable and Linkable Format (ELF) binary files, system libraries, RPM packages, and different graphics formats. Security Fix(es): * file: stack-based buffer over-read in file_copystr in funcs.c (CVE-2022-48554) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms file-devel-5.39-16.el9.aarch64.rpm 3a9e960fccdd5ab63ccd68ceebbda13fcf487a48a8cb1ad686294cd1852d4f2f RLBA-2024:2515 iproute bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms iproute-devel-6.2.0-6.el9_4.aarch64.rpm ee8f5e97579b25cb5c70b797cac7c885f724b01777dd7b4d067f5c63f46a6790 RLSA-2024:2571 Moderate: sssd security and bug fix update The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Security Fix(es): * sssd: Race condition during authorization leads to GPO policies functioning inconsistently (CVE-2023-3758) Bug Fix(es): * socket leak (JIRA:Rocky Linux-22340) * Passkey cannot fall back to password (JIRA:Rocky Linux-28161) * sssd: Race condition during authorization leads to GPO policies functioning inconsistently (JIRA:Rocky Linux-27209) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The System Security Services Daemon (SSSD) service provides a set of daemons to manage access to remote directories and authentication mechanisms. It also provides the Name Service Switch (NSS) and the Pluggable Authentication Modules (PAM) interfaces toward the system, and a pluggable back-end system to connect to multiple different account sources. Security Fix(es): * sssd: Race condition during authorization leads to GPO policies functioning inconsistently (CVE-2023-3758) Bug Fix(es): * socket leak (JIRA:Rocky Linux-22340) * Passkey cannot fall back to password (JIRA:Rocky Linux-28161) * sssd: Race condition during authorization leads to GPO policies functioning inconsistently (JIRA:Rocky Linux-27209) rocky-linux-9-aarch64-crb-rpms libsss_nss_idmap-devel-2.9.4-6.el9_4.aarch64.rpm c2b12fef96033c146d9d7ecc48af5d54bfb6330910e5bb1adad4a64c60cfbe14 RLBA-2023:6326 libstoragemgmt bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libstoragemgmt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libstoragemgmt-devel-1.9.7-2.el9.aarch64.rpm 1aa3d48cf3fcf9762afacd7e903b9f08ccdaa3d2bea1e2a4f2bc5318c0a8e162 RLBA-2023:6381 libwebp bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libwebp-tools-1.2.0-8.el9.aarch64.rpm ae9f35a39792debeebadd9343ab9e53c38eb1e42b49062a1eccb811da39fdd87 RLEA-2023:6416 libblkio bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for libblkio. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libblkio-devel-1.3.0-1.el9.aarch64.rpm 5a848ffc0789c79898af473e9f1c92fc3f2f34eaf44a0f5010f0b897f1b3a82a RLSA-2023:6518 Moderate: flatpak security, bug fix, and enhancement update Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. The following packages have been upgraded to a later upstream version: flatpak (1.12.8). (BZ#2221792) Security Fix(es): * flatpak: TIOCLINUX can send commands outside sandbox if running on a virtual console (CVE-2023-28100) * flatpak: Metadata with ANSI control codes can cause misleading terminal output (CVE-2023-28101) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. The following packages have been upgraded to a later upstream version: flatpak (1.12.8). (BZ#2221792) Security Fix(es): * flatpak: TIOCLINUX can send commands outside sandbox if running on a virtual console (CVE-2023-28100) * flatpak: Metadata with ANSI control codes can cause misleading terminal output (CVE-2023-28101) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms flatpak-devel-1.12.8-1.el9.aarch64.rpm f1ff49352fa4149ce217d7164b0df7b50f269062a876c27ecb03532ed877d606 RLSA-2023:6551 Moderate: yajl security update Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. Security Fix(es): * yajl: Memory leak in yajl_tree_parse function (CVE-2023-33460) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator. Security Fix(es): * yajl: Memory leak in yajl_tree_parse function (CVE-2023-33460) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.3 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms yajl-devel-2.1.0-22.el9.aarch64.rpm ff2b161f27b1fba7d15f1a9fcd84a2a2698fd17aa027769bce1685fbb73193a9 RLSA-2024:0951 Important: postgresql security update PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL (CVE-2024-0985) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: non-owner 'REFRESH MATERIALIZED VIEW CONCURRENTLY' executes arbitrary SQL (CVE-2024-0985) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms postgresql-docs-13.14-1.el9_3.aarch64.rpm 04bb6a9df15528b6c7ee9ccda481367760b5524bacbedd78b8b575de57dfd749 postgresql-private-devel-13.14-1.el9_3.aarch64.rpm 1840df451971e46a65706cace81065b6117a89cef1cc1d1e1824f41d6bebbd25 postgresql-server-devel-13.14-1.el9_3.aarch64.rpm 077a6c7451ac480b3bead2dd6b412cb226a35a5458940593104ff0130e8cbddb postgresql-static-13.14-1.el9_3.aarch64.rpm acbd40059e17853b8abd62ae2c0a1b092d256d33b1c1c90ab9ab0907eb9128a0 postgresql-test-13.14-1.el9_3.aarch64.rpm c4a6a7910a43cb4098b1ee8d0a08712b309ab3bdde4fe983b8640d1051dcf97f postgresql-upgrade-devel-13.14-1.el9_3.aarch64.rpm 374856e4c684e558794ae4c8a87118478f0b57b929bab67f8ec101b1f74b65c0 RLSA-2024:1691 Important: varnish security update Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and over again, giving the website a significant speed up. Security Fix(es): * varnish: HTTP/2 Broken Window Attack may result in denial of service (CVE-2024-30156) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 7.0 to SDK 7.0.118 and Runtime 7.0.18 [rhel-9.3.0.z] (Rocky Linux-31202) rocky-linux-9-aarch64-crb-rpms dotnet-sdk-7.0-source-built-artifacts-7.0.118-1.el9_3.aarch64.rpm 043aeb523c026c31fa6bdd63edd092278b9bcba1eff0abe871d15e2873de6160 RLSA-2024:1750 Important: unbound security update The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix(es): * A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. The default combination of the "control-use-cert: no" option with either explicit or implicit use of an IP address in the "control-interface" option could allow improper access. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged local process to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether. To mitigate the vulnerability, a new file "/etc/unbound/conf.d/remote-control.conf" has been added and included in the main unbound configuration file, "unbound.conf". The file contains two directives that should limit access to unbound.conf: control-interface: "/run/unbound/control" control-use-cert: "yes" For details about these directives, run "man unbound.conf". Updating to the version of unbound provided by this advisory should, in most cases, address the vulnerability. To verify that your configuration is not vulnerable, use the "unbound-control status | grep control" command. If the output contains "control(ssl)" or "control(namedpipe)", your configuration is not vulnerable. If the command output returns only "control", the configuration is vulnerable because it does not enforce access only to the unbound group members. To fix your configuration, add the line "include: /etc/unbound/conf.d/remote-control.conf" to the end of the file "/etc/unbound/unbound.conf". If you use a custom "/etc/unbound/conf.d/remote-control.conf" file, add the new directives to this file. (CVE-2024-1488) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fix(es): * A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. The default combination of the "control-use-cert: no" option with either explicit or implicit use of an IP address in the "control-interface" option could allow improper access. If a process can connect over localhost to port 8953, it can alter the configuration of unbound.service. This flaw allows an unprivileged local process to manipulate a running instance, potentially altering forwarders, allowing them to track all queries forwarded by the local resolver, and, in some cases, disrupting resolving altogether. To mitigate the vulnerability, a new file "/etc/unbound/conf.d/remote-control.conf" has been added and included in the main unbound configuration file, "unbound.conf". The file contains two directives that should limit access to unbound.conf: control-interface: "/run/unbound/control" control-use-cert: "yes" For details about these directives, run "man unbound.conf". Updating to the version of unbound provided by this advisory should, in most cases, address the vulnerability. To verify that your configuration is not vulnerable, use the "unbound-control status | grep control" command. If the output contains "control(ssl)" or "control(namedpipe)", your configuration is not vulnerable. If the command output returns only "control", the configuration is vulnerable because it does not enforce access only to the unbound group members. To fix your configuration, add the line "include: /etc/unbound/conf.d/remote-control.conf" to the end of the file "/etc/unbound/unbound.conf". If you use a custom "/etc/unbound/conf.d/remote-control.conf" file, add the new directives to this file. (CVE-2024-1488) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms unbound-devel-1.16.2-3.el9_3.5.aarch64.rpm 1287eef05a7e09aa31e186c0c171d94a1741412689e0c993e7e9ab187d35a56a RLBA-2024:2152 poppler bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms poppler-cpp-devel-21.01.0-19.el9.aarch64.rpm 9db98e110d2420770cf17221a72ab4a2f0f95efce21497a1c9afd77dbdddcb99 poppler-devel-21.01.0-19.el9.aarch64.rpm a1218530c37c0177b1e5cb31465c0cd3fe85792053e6702466ff568f42582c54 poppler-glib-devel-21.01.0-19.el9.aarch64.rpm bc01254682a35910b0027898617e449799c48d42581572c14ed6c3333ac055df poppler-glib-doc-21.01.0-19.el9.noarch.rpm b98f8763e4028928b011007b9d32f354d13a37a5235f0a62892a4e70c62f66de poppler-qt5-devel-21.01.0-19.el9.aarch64.rpm 7a892e7650c2c363bee690250d78242dd14b360f95e38132babfd0ee7fa44707 RLBA-2024:2166 xdp-tools bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libxdp-devel-1.4.2-1.el9.aarch64.rpm fbbbc066d96cbf60ea2da3b01848589d57e8db230b8edb5eac6c8c046d64253b libxdp-static-1.4.2-1.el9.aarch64.rpm 5c69b7724a4876aa0eaf89509d9aeb2f2017a6a2879975ea9599bb748c9291fe RLBA-2024:2196 ibus bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for ibus-hangul, ibus. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ibus-devel-1.5.25-5.el9.aarch64.rpm 704621296b809e24bfe7b7e1655d5674434b9b3082059e869c70dd337f3911f3 ibus-devel-docs-1.5.25-5.el9.noarch.rpm 75cdb52a15b383071b1ff43187db29235b49d62f378a897344191a69d0d3b602 RLBA-2024:2235 ostree bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms ostree-devel-2024.4-3.el9_4.aarch64.rpm 43086d39b94a044915424ff6c2a5ec8013ef4fa92aeb756b00264ca85aaa43fc RLBA-2024:2256 criu bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms criu-devel-3.19-1.el9.aarch64.rpm 37c58becdb075fb2f960d10156cbe38a0f55aa7a7ca577c56ae7037c212147c9 RLSA-2024:2264 Important: edk2 security update EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix(es): * edk2: Buffer overflow when handling Server ID option from a DHCPv6 proxy Advertise message (CVE-2023-45235) * EDK2: heap buffer overflow in Tcg2MeasureGptTable() (CVE-2022-36763) * EDK2: heap buffer overflow in Tcg2MeasurePeImage() (CVE-2022-36764) * edk2: Integer underflow when processing IA_NA/IA_TA options in a DHCPv6 Advertise message (CVE-2023-45229) * edk2: Out of Bounds read when handling a ND Redirect message with truncated options (CVE-2023-45231) * edk2: Infinite loop when parsing unknown options in the Destination Options header (CVE-2023-45232) * edk2: Infinite loop when parsing a PadN option in the Destination Options header (CVE-2023-45233) * openssl: Excessive time spent checking DH keys and parameters (CVE-2023-3446) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for edk2. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix(es): * edk2: Buffer overflow when handling Server ID option from a DHCPv6 proxy Advertise message (CVE-2023-45235) * EDK2: heap buffer overflow in Tcg2MeasureGptTable() (CVE-2022-36763) * EDK2: heap buffer overflow in Tcg2MeasurePeImage() (CVE-2022-36764) * edk2: Integer underflow when processing IA_NA/IA_TA options in a DHCPv6 Advertise message (CVE-2023-45229) * edk2: Out of Bounds read when handling a ND Redirect message with truncated options (CVE-2023-45231) * edk2: Infinite loop when parsing unknown options in the Destination Options header (CVE-2023-45232) * edk2: Infinite loop when parsing a PadN option in the Destination Options header (CVE-2023-45233) * openssl: Excessive time spent checking DH keys and parameters (CVE-2023-3446) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms edk2-ovmf-20231122-6.el9.noarch.rpm 4c5983e3bd7aa795f76f6b36fbcb0c3b01e79b5829de3dc2cdf289e3b58d51d3 edk2-tools-20231122-6.el9.aarch64.rpm d8908939bbd7509a3c4ba6416f738262d47bb1087b4b4baac3b01efa89a986a7 edk2-tools-doc-20231122-6.el9.noarch.rpm 1106801a16134dcc67ff1c42cba9285d342482a0738571f69f6754e6c4fef1bb RLBA-2024:2263 mesa bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for mesa. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms mesa-libOSMesa-23.3.3-1.el9.aarch64.rpm 16d5d5c105160da9deffda1ae42ce6b11cabfaad59a24eb05a396b70f36e689e mesa-libOSMesa-devel-23.3.3-1.el9.aarch64.rpm df801828da67d0fafe88d1209f35f9128a80ab644c80955afdcf9884019a57b0 RLBA-2024:2268 anaconda bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms anaconda-widgets-devel-34.25.4.9-1.el9_4.rocky.0.3.aarch64.rpm 8f30b5a0baa0c3db71a2224fdf8c7e96d40ae266b5f75f53197eae10f7409964 RLEA-2024:2269 nbdkit enhancement and bugfix update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms nbdkit-devel-1.36.2-1.el9.0.1.aarch64.rpm caa8311edaa6c3eca6f7a48c1953ca20c001800f7ed20d1fb93f2e6db3d8c7fd nbdkit-example-plugins-1.36.2-1.el9.0.1.aarch64.rpm 046d9d387a998f3797356e08a053054485063d2038cdf0535f71318941554809 nbdkit-srpm-macros-1.36.2-1.el9.0.1.noarch.rpm e1342ca81938949694ea20a66d9e26068f058c2ca03b6b19320ffd076c71e0f7 RLSA-2024:2287 Moderate: gstreamer1-plugins-bad-free security update GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fix(es): * gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video (CVE-2023-40474) * gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with AES3 audio (CVE-2023-40475) * gstreamer-plugins-bad: Integer overflow in H.265 video parser leading to stack overwrite (CVE-2023-40476) * gstreamer-plugins-bad-free: buffer overflow vulnerability (CVE-2023-50186) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

GStreamer is a streaming media framework based on graphs of filters which operate on media data. The gstreamer1-plugins-bad-free package contains a collection of plug-ins for GStreamer. Security Fix(es): * gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with uncompressed video (CVE-2023-40474) * gstreamer-plugins-bad: Integer overflow leading to heap overwrite in MXF file handling with AES3 audio (CVE-2023-40475) * gstreamer-plugins-bad: Integer overflow in H.265 video parser leading to stack overwrite (CVE-2023-40476) * gstreamer-plugins-bad-free: buffer overflow vulnerability (CVE-2023-50186) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms gstreamer1-plugins-bad-free-devel-1.22.1-4.el9.aarch64.rpm de226e40e3153109849eb972c4ba098cdfba6af46642821c16317bb476fd03b5 RLSA-2024:2295 Moderate: libjpeg-turbo security update The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix(es): * libjpeg-turbo: heap-buffer-overflow vulnerability in decompress_smooth_data in jdcoefct.c (CVE-2021-29390) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fix(es): * libjpeg-turbo: heap-buffer-overflow vulnerability in decompress_smooth_data in jdcoefct.c (CVE-2021-29390) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms turbojpeg-2.0.90-7.el9.aarch64.rpm a3521daabc6689cb1ee8192e3dbd8efecf923de7dbd36db10081eced53ca332e turbojpeg-devel-2.0.90-7.el9.aarch64.rpm b0de766e023950983c1b3ae5f6fde87667319265c236931c2da8431af1e21d72 RLBA-2024:2305 graphviz bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms graphviz-devel-2.44.0-26.el9.aarch64.rpm 8f6498614ac7e0dc242965451e03119ce2e6a4dcf5f803974459033c1ab5a48d RLBA-2024:2327 PackageKit bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms PackageKit-glib-devel-1.2.6-1.el9.aarch64.rpm 6165c4e85e7938eeee76f470976b61b4054e0fe3728654ec7d72fa211585b209 RLBA-2024:2371 dovecot bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms dovecot-devel-2.3.16-11.el9.aarch64.rpm ec00c56969d47d424d13b96cb66fe17f44720e262c30861c51c1ab866b0aaf54 RLBA-2024:2383 freeipmi bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms freeipmi-devel-1.6.14-2.el9.aarch64.rpm 8cc8226009f04d6b7db97a9f01b8f273da458218ea08c67f5418d93c06287da1 RLBA-2024:2527 kronosnet bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.4 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libknet1-1.28-1.el9.aarch64.rpm 42625ebb17b41bde1cca2f86b23ca6161759035e802044eb8f9fe069753d71ec libknet1-devel-1.28-1.el9.aarch64.rpm ace5bc1b5021ddbd5e399639206e56b310884d3f629aed39495aa9e872127d20 RLEA-2024:2546 389-ds-base enhancement update 389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Enhancement * [RFE] allows plugins to log multi-factor authentication notification (JIRA:Rocky Linux-30588) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for 389-ds-base. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Enhancement * [RFE] allows plugins to log multi-factor authentication notification (JIRA:Rocky Linux-30588) rocky-linux-9-aarch64-crb-rpms 389-ds-base-devel-2.4.5-6.el9_4.aarch64.rpm d2eec6872e7e1fa91dc2272aa09742d6acf5d71d795675870c9e5f4938f915ff RLSA-2024:2551 Important: bind security update The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) * bind: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * bind: Specific recursive query patterns may lead to an out-of-memory condition (CVE-2023-6516) * bind: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution (CVE-2023-5679) * bind: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled (CVE-2023-5517) * bind: Parsing large DNS messages may cause excessive CPU load (CVE-2023-4408) Bug Fix(es): * bind-dyndb-ldap: rebuilt to adapt ABI changes in bind For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for bind-dyndb-ldap, bind. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: Preparing an NSEC3 closest encloser proof can exhaust CPU resources (CVE-2023-50868) * bind: KeyTrap - Extreme CPU consumption in DNSSEC validator (CVE-2023-50387) * bind: Specific recursive query patterns may lead to an out-of-memory condition (CVE-2023-6516) * bind: Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution (CVE-2023-5679) * bind: Querying RFC 1918 reverse zones may cause an assertion failure when “nxdomain-redirect” is enabled (CVE-2023-5517) * bind: Parsing large DNS messages may cause excessive CPU load (CVE-2023-4408) Bug Fix(es): * bind-dyndb-ldap: rebuilt to adapt ABI changes in bind For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms bind-devel-9.16.23-18.el9_4.1.aarch64.rpm d2f23758f84d4fea811f6671e88f422af8fc5243de4fa7be06b778168d4eacc8 bind-doc-9.16.23-18.el9_4.1.noarch.rpm 8b6ceb2cff4a31dbfd4549385ffa41f8832ea282433d2f6a2cd9c436da71218f RLBA-2024:2554 .NET 8.0 bug fix update .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 8 to RC2 (JIRA:Rocky Linux-13785) * Update .NET 8 to 8.0.0 GA (JIRA:Rocky Linux-15860) * Update .NET 8.0 to SDK 8.0.101 and Runtime 8.0.1 (JIRA:Rocky Linux-19803) * RFE: add -dbg packages to ship complete symbol files (JIRA:Rocky Linux-23070) * Update .NET 8.0 to SDK 8.0.102 and Runtime 8.0.2 (JIRA:Rocky Linux-23804) * Don't set a locale when running msbuild Exec on Unix (JIRA:Rocky Linux-23936) * Update .NET 8.0 to SDK 8.0.103 and Runtime 8.0.3 [rhel-9] (JIRA:Rocky Linux-27553) * Follow-up for Rocky Linux-22734: CheckCertificateRevocationList flag for SHA1 CAs [rhel-9.4.0.z] (JIRA:Rocky Linux-28344) * Update .NET 8.0 to SDK 8.0.104 and Runtime 8.0.4 [rhel-9.4.0.z] (JIRA:Rocky Linux-31208) * Update .NET 8 to RC1 (JIRA:Rocky Linux-4073) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for dotnet8.0. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 8 to RC2 (JIRA:Rocky Linux-13785) * Update .NET 8 to 8.0.0 GA (JIRA:Rocky Linux-15860) * Update .NET 8.0 to SDK 8.0.101 and Runtime 8.0.1 (JIRA:Rocky Linux-19803) * RFE: add -dbg packages to ship complete symbol files (JIRA:Rocky Linux-23070) * Update .NET 8.0 to SDK 8.0.102 and Runtime 8.0.2 (JIRA:Rocky Linux-23804) * Don't set a locale when running msbuild Exec on Unix (JIRA:Rocky Linux-23936) * Update .NET 8.0 to SDK 8.0.103 and Runtime 8.0.3 [rhel-9] (JIRA:Rocky Linux-27553) * Follow-up for Rocky Linux-22734: CheckCertificateRevocationList flag for SHA1 CAs [rhel-9.4.0.z] (JIRA:Rocky Linux-28344) * Update .NET 8.0 to SDK 8.0.104 and Runtime 8.0.4 [rhel-9.4.0.z] (JIRA:Rocky Linux-31208) * Update .NET 8 to RC1 (JIRA:Rocky Linux-4073) rocky-linux-9-aarch64-crb-rpms dotnet-sdk-8.0-source-built-artifacts-8.0.104-2.el9_4.aarch64.rpm ced46f12d6d9959bd5d4bbcc9966d87b793f4e141cb221068aa9127018d25455 RLBA-2024:2552 .NET 6.0 bug fix update .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 6.0 to SDK 6.0.123 and Runtime 6.0.23 (JIRA:Rocky Linux-11675) * Update .NET 6.0 to SDK 6.0.124 and Runtime 6.0.24 (JIRA:Rocky Linux-14451) * Update .NET 6.0 to SDK 6.0.125 and Runtime 6.0.25 (JIRA:Rocky Linux-15349) * Update .NET 6.0 to SDK 6.0.126 and Runtime 6.0.26 (JIRA:Rocky Linux-19801) * Update .NET 6.0 to SDK 6.0.122 and Runtime 6.0.22 (JIRA:Rocky Linux-1995) * Update .NET 6.0 to SDK 6.0.127 and Runtime 6.0.27 (JIRA:Rocky Linux-23785) * Update .NET 6.0 to SDK 6.0.128 and Runtime 6.0.28 [rhel-9] (JIRA:Rocky Linux-27541) * Update .NET 6.0 to SDK 6.0.129 and Runtime 6.0.29 [rhel-9.4.0.z] (JIRA:Rocky Linux-31198) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

.NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 6.0 to SDK 6.0.123 and Runtime 6.0.23 (JIRA:Rocky Linux-11675) * Update .NET 6.0 to SDK 6.0.124 and Runtime 6.0.24 (JIRA:Rocky Linux-14451) * Update .NET 6.0 to SDK 6.0.125 and Runtime 6.0.25 (JIRA:Rocky Linux-15349) * Update .NET 6.0 to SDK 6.0.126 and Runtime 6.0.26 (JIRA:Rocky Linux-19801) * Update .NET 6.0 to SDK 6.0.122 and Runtime 6.0.22 (JIRA:Rocky Linux-1995) * Update .NET 6.0 to SDK 6.0.127 and Runtime 6.0.27 (JIRA:Rocky Linux-23785) * Update .NET 6.0 to SDK 6.0.128 and Runtime 6.0.28 [rhel-9] (JIRA:Rocky Linux-27541) * Update .NET 6.0 to SDK 6.0.129 and Runtime 6.0.29 [rhel-9.4.0.z] (JIRA:Rocky Linux-31198) rocky-linux-9-aarch64-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.129-2.el9_4.aarch64.rpm 056992407e405436c35458186dee10ba68b383fac8fe236e9ce4f28fe00eba3f RLBA-2024:2556 nmstate bug fix update Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound. Bug Fix(es): * Support checkpoint on rollback when using global DNS of NetworkManager (JIRA:Rocky Linux-31190) * Include driver information in systemd network link file created by `nmstatectl persist-nic-names` (JIRA:Rocky Linux-32330) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

Nmstate is a library with an accompanying command line tool that manages host networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a northbound declarative API and multi provider support on the southbound. Bug Fix(es): * Support checkpoint on rollback when using global DNS of NetworkManager (JIRA:Rocky Linux-31190) * Include driver information in systemd network link file created by `nmstatectl persist-nic-names` (JIRA:Rocky Linux-32330) rocky-linux-9-aarch64-crb-rpms nmstate-devel-2.2.27-2.el9_4.aarch64.rpm 65706a19fe08593eaa887b45f8d5a990fc6f6561affcba86cefdf52d3e8f2514 nmstate-static-2.2.27-2.el9_4.aarch64.rpm 85cf95d9a57b5520b12226d79919e9395db67454e8aec7a1102f1bc3986262d3 RLBA-2024:2558 ipa bug fix update Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fix(es): * Enforce OTP for ldap bind (in some scenarios) (JIRA:Rocky Linux-23377) * Unable to re-add broken AD trust - NT_STATUS_INVALID_PARAMETER (JIRA:Rocky Linux-29745) * Backport latest test fixes in ipa (JIRA: Rocky Linux-30905) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Bug Fix(es): * Enforce OTP for ldap bind (in some scenarios) (JIRA:Rocky Linux-23377) * Unable to re-add broken AD trust - NT_STATUS_INVALID_PARAMETER (JIRA:Rocky Linux-29745) * Backport latest test fixes in ipa (JIRA: Rocky Linux-30905) rocky-linux-9-aarch64-crb-rpms python3-ipatests-4.11.0-10.el9_4.noarch.rpm 7725dac69c697105c653ca1561a9db64fc77128278183b1b7c5cb1efd9c3d65c RLBA-2024:2561 gnome-shell, gnome-menus, and gnome-shell-extensions bug fix update GNOME Shell acts as a compositing manager for the desktop, and displays both application windows and other objects. It provides core interface functions like switching windows, launching applications, and notifications. It takes advantage of the capabilities of modern graphics hardware and introduces innovative user interface concepts. GNOME Shell extensions allow for modifying the default GNOME Shell interface and its parts, such as window management and application launching. Bug Fix(es): * Qt5 custom window icons are not displayed in Activities overview or window list (JIRA:Rocky Linux-29659) * [RFE] Group GNOME Settings, Tweaks, Extensions in the same categories J (JIRA:Rocky Linux-32792) * [RFE] Prevent workspaces from collapsing when more than six are present (JIRA:Rocky Linux-31885) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

An update is available for gnome-menus, gnome-shell, gnome-shell-extensions. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

GNOME Shell acts as a compositing manager for the desktop, and displays both application windows and other objects. It provides core interface functions like switching windows, launching applications, and notifications. It takes advantage of the capabilities of modern graphics hardware and introduces innovative user interface concepts. GNOME Shell extensions allow for modifying the default GNOME Shell interface and its parts, such as window management and application launching. Bug Fix(es): * Qt5 custom window icons are not displayed in Activities overview or window list (JIRA:Rocky Linux-29659) * [RFE] Group GNOME Settings, Tweaks, Extensions in the same categories J (JIRA:Rocky Linux-32792) * [RFE] Prevent workspaces from collapsing when more than six are present (JIRA:Rocky Linux-31885) rocky-linux-9-aarch64-crb-rpms gnome-menus-devel-3.36.0-9.el9_4.aarch64.rpm 031bfe8eaabe9a25b87ca7bf7ee4db8a36600a9e0dd749cd85d199d264a1b68f RLSA-2024:2560 Moderate: libvirt security and bug fix update The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: * libvirt: off-by-one error in udevListInterfacesByStatus() (CVE-2024-1441) * libvirt: negative g_new0 length can lead to unbounded memory allocation (CVE-2024-2494) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fixes: * libvirt: off-by-one error in udevListInterfacesByStatus() [rhel-9] (JIRA:Rocky Linux-25081) * libvirt: negative g_new0 length can lead to unbounded memory allocation [rhel-9] (JIRA:Rocky Linux-29515) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Security Fixes: * libvirt: off-by-one error in udevListInterfacesByStatus() (CVE-2024-1441) * libvirt: negative g_new0 length can lead to unbounded memory allocation (CVE-2024-2494) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Bug Fixes: * libvirt: off-by-one error in udevListInterfacesByStatus() [rhel-9] (JIRA:Rocky Linux-25081) * libvirt: negative g_new0 length can lead to unbounded memory allocation [rhel-9] (JIRA:Rocky Linux-29515) rocky-linux-9-aarch64-crb-rpms libvirt-daemon-plugin-sanlock-10.0.0-6.2.el9_4.aarch64.rpm 83a5678d1015ff5eb3d7cc48a04aa75eabddc4eaa7e2dd29bb8b6766181af581 libvirt-devel-10.0.0-6.2.el9_4.aarch64.rpm a607417a1c72a948ea3e3959eeda7db130ed7799c823e2d0cbcec93eb4206131 libvirt-docs-10.0.0-6.2.el9_4.aarch64.rpm fad458e86d666869dbeacf3b58a1eab952a2005bffc1dcb0d2ac01344e0d3adb RLSA-2024:3619 Moderate: kernel security and bug fix update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: ipv6: sr: fix possible use-after-free and null-ptr-deref (CVE-2024-26735) * kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() (CVE-2024-26993) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: ipv6: sr: fix possible use-after-free and null-ptr-deref (CVE-2024-26735) * kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() (CVE-2024-26993) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.20.1.el9_4.aarch64.rpm 04727fcd6c12572de5c428fbada8928153a3249a3419ec9ce51f609b3a46502b kernel-tools-libs-devel-5.14.0-427.20.1.el9_4.aarch64.rpm fedb67b30da5e904c9984a01401cfe6dfeab9264f91c534c4ff7f24ca417cf1d libperf-5.14.0-427.20.1.el9_4.aarch64.rpm 206ebe3603ee5c6675467a65f11757120c4b21b8aaf2b1718bc654e39999b8c4 RLSA-2024:3339 Important: glibc security update The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix(es): * glibc: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (CVE-2024-2961) * glibc: stack-based buffer overflow in netgroup cache (CVE-2024-33599) * glibc: null pointer dereferences after failed netgroup cache insertion (CVE-2024-33600) * glibc: netgroup cache may terminate daemon on memory allocation failure (CVE-2024-33601) * glibc: netgroup cache assumes NSS callback uses in-buffer strings (CVE-2024-33602) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix(es): * glibc: Out of bounds write in iconv conversion to ISO-2022-CN-EXT (CVE-2024-2961) * glibc: stack-based buffer overflow in netgroup cache (CVE-2024-33599) * glibc: null pointer dereferences after failed netgroup cache insertion (CVE-2024-33600) * glibc: netgroup cache may terminate daemon on memory allocation failure (CVE-2024-33601) * glibc: netgroup cache assumes NSS callback uses in-buffer strings (CVE-2024-33602) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms glibc-benchtests-2.34-100.el9_4.2.aarch64.rpm 80300343b1fb0e3abab509f61d25e3ab972f62ddf3358f92f96bb36be1846bb7 glibc-nss-devel-2.34-100.el9_4.2.aarch64.rpm db9dabca64a60b776af30f6843d55dd26a65d17270ff7132f4b90074ec051165 glibc-static-2.34-100.el9_4.2.aarch64.rpm e4e635db05acf5c4f5e0360ddba45a0d11e2cdbd52e655eaec574b5f28563584 nss_db-2.34-100.el9_4.2.aarch64.rpm 892faf67f24feaaa7393f52ac431cc881f674d9565e5dfb83fb495c9665b9409 nss_hesiod-2.34-100.el9_4.2.aarch64.rpm 03ab1dfb6eb5dca737cfb4916fe22cb18a1c74761c1cd01dc0144df37f8260e5 RLSA-2024:3501 Moderate: nghttp2 security update libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C. Security Fix(es): * nghttp2: CONTINUATION frames DoS (CVE-2024-28182) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C. Security Fix(es): * nghttp2: CONTINUATION frames DoS (CVE-2024-28182) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libnghttp2-devel-1.43.0-5.el9_4.3.aarch64.rpm 4a0ec9eff49f0b1ffd3683892062c8032a38548b0bf406d0718cb4cf86852547 nghttp2-1.43.0-5.el9_4.3.aarch64.rpm 41cfa412d53a7a6534025dba606aafa45763a9f4770ea3bc93c4084305ef0f79 RLBA-2024:2841 .NET 6.0 bugfix update .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Bug Fix(es) and Enhancement(s): * Update .NET 6.0 to SDK 6.0.130 and Runtime 6.0.30 [rhel-9.4.z] (Rocky Linux-35310) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

Rocky Enterprise Software Foundation Identity Management (IdM) is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fix(es): * freeipa: delegation rules allow a proxy service to impersonate any user to access another target service (CVE-2024-2698) * freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force (CVE-2024-3183) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms python3-ipatests-4.11.0-15.el9_4.noarch.rpm 67e90e53fc46b5e151c183e4c5e16b75ca51e2d40f6c35b3ca4e54605abafc2e RLBA-2024:3828 libappstream-glib bug fix update The libappstream-glib package provides GObjects and helper methods for easy manipulation of AppStream metadata. It also provides a simple DOM (Document Object Model) implementation that simplifies editing nodes and converting to and from the standardized XML representation. Bug Fix(es): * flatpak / appstream compat issues [rhel-9.4.z] (JIRA:Rocky Linux-34564) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The libappstream-glib package provides GObjects and helper methods for easy manipulation of AppStream metadata. It also provides a simple DOM (Document Object Model) implementation that simplifies editing nodes and converting to and from the standardized XML representation. Bug Fix(es): * flatpak / appstream compat issues [rhel-9.4.z] (JIRA:Rocky Linux-34564) rocky-linux-9-aarch64-crb-rpms libappstream-glib-devel-0.7.18-5.el9_4.aarch64.rpm f9dda42b8850fce0c91f551de50c9c8c089a0013bb31f9c3a3c01507736ded1e RLBA-2024:3832 libvirt bug fix update The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fix(es): * live-migration with NBD TLS fails with "Certificate does not match the hostname " [rhel-9.4.z] (JIRA:Rocky Linux-33781) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems. Bug Fix(es): * live-migration with NBD TLS fails with "Certificate does not match the hostname " [rhel-9.4.z] (JIRA:Rocky Linux-33781) rocky-linux-9-aarch64-crb-rpms libvirt-daemon-plugin-sanlock-10.0.0-6.3.el9_4.aarch64.rpm e50528761e767c243d469aab6a234783eacbe94bed0f7de8ce824d9c3f5d272e libvirt-devel-10.0.0-6.3.el9_4.aarch64.rpm 03c632b092d6b34bac5ab6b3a94b4b6e504b4aa7b63130d25a7ba902470761bd libvirt-docs-10.0.0-6.3.el9_4.aarch64.rpm 3e9173449b264ac7075bd78155f4ee292bc768cab429a9b4505e441f600032a4 RLSA-2024:3837 Important: 389-ds-base security update 389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request (CVE-2024-3657) * 389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c (CVE-2024-2199) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: potential denial of service via specially crafted kerberos AS-REQ request (CVE-2024-3657) * 389-ds-base: Malformed userPassword may cause crash at do_modify in slapd/modify.c (CVE-2024-2199) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms 389-ds-base-devel-2.4.5-8.el9_4.aarch64.rpm 389704cffb212bc0e6460568de3391503e47e4f8cf63634a9e3d610ffb43bbea RLBA-2024:3839 ostree bug fix update OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es): * [9.4.z] Update ostree to 2024.6 (JIRA:Rocky Linux-36770) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

OSTree is a tool for managing bootable, immutable, versioned file system trees. Bug Fix(es): * [9.4.z] Update ostree to 2024.6 (JIRA:Rocky Linux-36770) rocky-linux-9-aarch64-crb-rpms ostree-devel-2024.6-1.el9_4.aarch64.rpm be7dbd827d29e70c88fba18e043b55abd4140f17dd22c3f388672d2a71390a4c RLBA-2024:3983 kernel bug fix update The kernel packages contain the Linux kernel, the core of any Linux operating system. Bug Fix(es): * [DELL 9.4 BUG] - Screen shows garbage sometimes [rhel-9.4.z] (JIRA:Rocky Linux-36534) * cifs - Unable to mount CIFS shares after upgrading to Rocky Linux9.4 (JIRA:Rocky Linux-36743) * [Azure][Rocky Linux-9][MANA]System crash at skbuff when set mtu=100 [rhel-9.4.z] (JIRA:Rocky Linux-37622) * selective backport from perf upstream v6.8 to fix AmpereOne and Nvidia support [rhel-9.4.z] (JIRA:Rocky Linux-34991) * [Intel 9.5 FEAT] [SRF] performance: hwmon: (coretemp) Fix core count limitation [rhel-9.4.z] (JIRA:Rocky Linux-35447) * CNB95: dpll: rebase DPLL to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-36572) * ice: IRQs being moved to isolated CPUs and causing latency issues [rhel-9.4.z] (JIRA:Rocky Linux-38512) * Bluetooth device disappears from the device list after a few minutes with AX211 [rhel-9.4.z] (JIRA:Rocky Linux-38524) * deadlock on dfs_cache_refresh [rhel-9.4.z] (JIRA:Rocky Linux-38904) * [DELL 9.3 BUG]Unexpected message "integrity: Problem loading X.509 certificate -126" occurred on boot screen. [rhel-9.4.z] (JIRA:Rocky Linux-39933) * [rhel9-rt-debug] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:46 ( clocksource_mark_unstable) (JIRA:Rocky Linux-9296) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The kernel packages contain the Linux kernel, the core of any Linux operating system. Bug Fix(es): * [DELL 9.4 BUG] - Screen shows garbage sometimes [rhel-9.4.z] (JIRA:Rocky Linux-36534) * cifs - Unable to mount CIFS shares after upgrading to Rocky Linux9.4 (JIRA:Rocky Linux-36743) * [Azure][Rocky Linux-9][MANA]System crash at skbuff when set mtu=100 [rhel-9.4.z] (JIRA:Rocky Linux-37622) * selective backport from perf upstream v6.8 to fix AmpereOne and Nvidia support [rhel-9.4.z] (JIRA:Rocky Linux-34991) * [Intel 9.5 FEAT] [SRF] performance: hwmon: (coretemp) Fix core count limitation [rhel-9.4.z] (JIRA:Rocky Linux-35447) * CNB95: dpll: rebase DPLL to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-36572) * ice: IRQs being moved to isolated CPUs and causing latency issues [rhel-9.4.z] (JIRA:Rocky Linux-38512) * Bluetooth device disappears from the device list after a few minutes with AX211 [rhel-9.4.z] (JIRA:Rocky Linux-38524) * deadlock on dfs_cache_refresh [rhel-9.4.z] (JIRA:Rocky Linux-38904) * [DELL 9.3 BUG]Unexpected message "integrity: Problem loading X.509 certificate -126" occurred on boot screen. [rhel-9.4.z] (JIRA:Rocky Linux-39933) * [rhel9-rt-debug] BUG: sleeping function called from invalid context at kernel/locking/spinlock_rt.c:46 ( clocksource_mark_unstable) (JIRA:Rocky Linux-9296) rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.22.1.el9_4.aarch64.rpm 53d4af5e43c223c6af55162d81222927aa52e22f840af7b31800d4ab9e728677 kernel-tools-libs-devel-5.14.0-427.22.1.el9_4.aarch64.rpm c9bfd841aaf5acb15cf7da7b809bf70b769b37d37ec37128c66dd71d04c4c932 libperf-5.14.0-427.22.1.el9_4.aarch64.rpm 6502c217cdd3e4b7bd2a9dfe6e71a6d54dfc642a97fe4cb169fe6879e9a39062 RLSA-2024:4078 Important: python3.9 security update Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: Path traversal on tempfile.TemporaryDirectory (CVE-2023-6597) * python: The zipfile module is vulnerable to zip-bombs leading to denial of service (CVE-2024-0450) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Security Fix(es): * flatpak: sandbox escape via RequestBackground portal (CVE-2024-32462) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms flatpak-devel-1.12.9-1.el9_4.aarch64.rpm cf451005b822d4c6de7325f647dee0851d3ce163cf25d7ad93a81e28384a1b69 RLSA-2024:3999 Important: ghostscript security update The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fix(es): * ghostscript: OPVP device arbitrary code execution via custom Driver library (CVE-2024-33871) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fix(es): * ghostscript: OPVP device arbitrary code execution via custom Driver library (CVE-2024-33871) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libgs-devel-9.54.0-16.el9_4.aarch64.rpm 2e85889839f73a0dbd559f8d083ef12d6ec7e4c19b8d691b273f7b7773c768bd RLSA-2024:4077 Important: python3.11 security update Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: Path traversal on tempfile.TemporaryDirectory (CVE-2023-6597) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: Path traversal on tempfile.TemporaryDirectory (CVE-2023-6597) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms python3.11-debug-3.11.7-1.el9_4.1.aarch64.rpm 92723b9e4de9bb79d9ad265cc3e9a044a040e2420d836c071e54f3707cc55d4d python3.11-idle-3.11.7-1.el9_4.1.aarch64.rpm 9cdff15ac601a5f69422982578abc0b0075edf20dab80b701a9e42ff0a961141 python3.11-test-3.11.7-1.el9_4.1.aarch64.rpm 66cac638f0a1a8597288ba5b31d2655b598a1fb90f482c3e3f99874706c4cea5 RLSA-2024:4349 Moderate: kernel security and bug fix update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context (CVE-2023-52626) * kernel: Bluetooth: Avoid potential use-after-free in hci_error_reset (CVE-2024-26801) * kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974) * kernel: xen-netfront: Add missing skb_mark_for_recycle (CVE-2024-27393) * kernel: net/mlx5e: fix a potential double-free in fs_any_create_groups (CVE-2023-52667) * kernel: smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870) * kernel: net/mlx5: Properly link new fs rules into the tree (CVE-2024-35960) * kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly (CVE-2021-47400) Bug Fix(es): * cifs - kernel panic with cifs_put_smb_ses (JIRA:Rocky Linux-28943) * BUG: unable to handle page fault for address: ff16bf752f593ff8 [rhel-9.4.z] (JIRA:Rocky Linux-35672) * [HPE 9.4 Bug] Request merge of AMD address translation library patch series [rhel-9.4.z] (JIRA:Rocky Linux-36220) * [Rocky Linux9] kernel BUG at lib/list_debug.c:51! [rhel-9.4.z] (JIRA:Rocky Linux-36687) * ice: DPLL-related fixes [rhel-9.4.z] (JIRA:Rocky Linux-36716) * CNB95: net/sched: update TC core to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-37641) * IPv6: SR: backport fixes from upstream [rhel-9.4.z] (JIRA:Rocky Linux-37669) * [RFE] Backport tmpfs noswap mount option [rhel-9.4.z] (JIRA:Rocky Linux-38252) * Isolated cores causing issues on latest Rocky Linux9.4 kernel and not functioning as desired. [rhel-9.4.z] (JIRA:Rocky Linux-38595) * [ice] Add automatic VF reset on Tx MDD events [rhel-9.4.z] (JIRA:Rocky Linux-39083) * [HPEMC Rocky Linux 9.4 REGRESSION] turbostat: turbostat broken on 10+ sockets. [rhel-9.4.z] (JIRA:Rocky Linux-34953) * bnx2x: fix crashes in PCI error handling, resource leaks [rhel-9.4.z] (JIRA:Rocky Linux-43272) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context (CVE-2023-52626) * kernel: Bluetooth: Avoid potential use-after-free in hci_error_reset (CVE-2024-26801) * kernel: crypto: qat - resolve race condition during AER recovery (CVE-2024-26974) * kernel: xen-netfront: Add missing skb_mark_for_recycle (CVE-2024-27393) * kernel: net/mlx5e: fix a potential double-free in fs_any_create_groups (CVE-2023-52667) * kernel: smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870) * kernel: net/mlx5: Properly link new fs rules into the tree (CVE-2024-35960) * kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly (CVE-2021-47400) Bug Fix(es): * cifs - kernel panic with cifs_put_smb_ses (JIRA:Rocky Linux-28943) * BUG: unable to handle page fault for address: ff16bf752f593ff8 [rhel-9.4.z] (JIRA:Rocky Linux-35672) * [HPE 9.4 Bug] Request merge of AMD address translation library patch series [rhel-9.4.z] (JIRA:Rocky Linux-36220) * [Rocky Linux9] kernel BUG at lib/list_debug.c:51! [rhel-9.4.z] (JIRA:Rocky Linux-36687) * ice: DPLL-related fixes [rhel-9.4.z] (JIRA:Rocky Linux-36716) * CNB95: net/sched: update TC core to upstream v6.8 [rhel-9.4.z] (JIRA:Rocky Linux-37641) * IPv6: SR: backport fixes from upstream [rhel-9.4.z] (JIRA:Rocky Linux-37669) * [RFE] Backport tmpfs noswap mount option [rhel-9.4.z] (JIRA:Rocky Linux-38252) * Isolated cores causing issues on latest Rocky Linux9.4 kernel and not functioning as desired. [rhel-9.4.z] (JIRA:Rocky Linux-38595) * [ice] Add automatic VF reset on Tx MDD events [rhel-9.4.z] (JIRA:Rocky Linux-39083) * [HPEMC Rocky Linux 9.4 REGRESSION] turbostat: turbostat broken on 10+ sockets. [rhel-9.4.z] (JIRA:Rocky Linux-34953) * bnx2x: fix crashes in PCI error handling, resource leaks [rhel-9.4.z] (JIRA:Rocky Linux-43272) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.24.1.el9_4.aarch64.rpm 363defeafcd25d8d4b329deb29b187ce8d7455e1c08897a7673011eb8a511962 kernel-tools-libs-devel-5.14.0-427.24.1.el9_4.aarch64.rpm fdb6b00396ae102d573c4b489febce333813993541195421bda69617e14ed851 libperf-5.14.0-427.24.1.el9_4.aarch64.rpm 9b56dc9309898083b99ecb41326ee5bdad47e7d6099317452ab1790a957f4559 RLSA-2024:4450 Important: dotnet8.0 security update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.107 and Runtime 8.0.7. Security Fix(es): * dotnet: DoS in System.Text.Json (CVE-2024-30105) * dotnet: DoS in ASP.NET Core 8 (CVE-2024-35264) * dotnet: DoS when parsing X.509 Content and ObjectIdentifiers (CVE-2024-38095) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for java-21-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-21-openjdk packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fix(es): * OpenJDK: RangeCheckElimination array index overflow (8323231) (CVE-2024-21147) * OpenJDK: potential UTF8 size overflow (8314794) (CVE-2024-21131) * OpenJDK: Excessive symbol length can lead to infinite loop (8319859) (CVE-2024-21138) * OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548) (CVE-2024-21140) * OpenJDK: Out-of-bounds access in 2D image handling (8324559) (CVE-2024-21145) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-21-openjdk-demo-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm 5055a202a9526066108c17b98f0ccb8815cb6aca963181f86b62f23ed91b06e5 java-21-openjdk-demo-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm 64de7fecbf97a103b47a87d710df8fc956fbde6ea2f739937708887ae32b5358 java-21-openjdk-devel-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm 79f48f2d748720325ddb0cab0aeb04a5493b56846bf4e9166eb823bb8df1b3f7 java-21-openjdk-devel-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm 00325e6f074bfc0b06acd666066cccdeb300dfd317cc7e6ffa0a5f77e9662ce8 java-21-openjdk-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm 09809fa490e0aa4f85b03f7a5d08f58ea8be2868bd5149709dcc45d6db6c38f4 java-21-openjdk-headless-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm 145a026fde386eda2e34fa487f11a44cdccea92735f2a8d7e71ebe4501e124be java-21-openjdk-headless-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm 65db11d5373a963aadc0eb58e76b9434dbb8135780cd2db3c784f6ca2b71ee9b java-21-openjdk-jmods-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm 2be668fc5b4aa5e3c7cc619d5e3871ec2d7188062804bd9a84abbbfd2c7bd0fa java-21-openjdk-jmods-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm c4a56e9457aa6d0a2be3d786b55ce30cfce805b681f911358eccb35d120247f6 java-21-openjdk-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm 33a95370a33d763f56c93954183b9d17f4acbaafdd4d39de37c9ca9479143fa0 java-21-openjdk-src-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm 75f2a457caa62ae172fead1953e27df1e1f28cfe3afa2ee3a71fd1a3afd936c3 java-21-openjdk-src-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm 08eb5508de3f956ddd842c96d3396559e5028f713771452b75805be285c39a42 java-21-openjdk-static-libs-fastdebug-21.0.4.0.7-1.el9.aarch64.rpm bb19a0177980833a348048d7ae95e8a195de66951190aee11e0a74df00f4f685 java-21-openjdk-static-libs-slowdebug-21.0.4.0.7-1.el9.aarch64.rpm bcccd202d12d57015d04cdc941287199cad90937a02e60cd1009fc4e1e95f4a7 RLSA-2024:4583 Important: kernel security update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: TIPC message reassembly use-after-free remote code execution vulnerability (CVE-2024-36886) * kernel: ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() (CVE-2021-47548) * kernel: net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (CVE-2021-47596) * kernel: vt: fix memory overlapping when deleting chars in the buffer (CVE-2022-48627) * kernel: can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock (CVE-2023-52638) * kernel: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index (CVE-2024-26783) * kernel: net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map (CVE-2024-26858) * kernel: netfilter: nf_tables: use timestamp to check for set element timeout (CVE-2024-27397) * kernel: nvme: fix reconnection fail due to reserved tag allocation (CVE-2024-27435) * kernel: net: ena: Fix incorrect descriptor free behavior (CVE-2024-35958) * kernel: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). (CVE-2024-36904) * kernel: lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (CVE-2024-38543) * kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets. (CVE-2024-38586) * kernel: net: micrel: Fix receiving the timestamp in the frame for lan8841 (CVE-2024-38593) * kernel: netfilter: tproxy: bail out if IP has been disabled on the device (CVE-2024-36270) * kernel: octeontx2-af: avoid off-by-one read from userspace (CVE-2024-36957) * kernel: blk-cgroup: fix list corruption from resetting io stat (CVE-2024-38663) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: TIPC message reassembly use-after-free remote code execution vulnerability (CVE-2024-36886) * kernel: ethernet: hisilicon: hns: hns_dsaf_misc: fix a possible array overflow in hns_dsaf_ge_srst_by_port() (CVE-2021-47548) * kernel: net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (CVE-2021-47596) * kernel: vt: fix memory overlapping when deleting chars in the buffer (CVE-2022-48627) * kernel: can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock (CVE-2023-52638) * kernel: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index (CVE-2024-26783) * kernel: net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map (CVE-2024-26858) * kernel: netfilter: nf_tables: use timestamp to check for set element timeout (CVE-2024-27397) * kernel: nvme: fix reconnection fail due to reserved tag allocation (CVE-2024-27435) * kernel: net: ena: Fix incorrect descriptor free behavior (CVE-2024-35958) * kernel: tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). (CVE-2024-36904) * kernel: lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure (CVE-2024-38543) * kernel: r8169: Fix possible ring buffer corruption on fragmented Tx packets. (CVE-2024-38586) * kernel: net: micrel: Fix receiving the timestamp in the frame for lan8841 (CVE-2024-38593) * kernel: netfilter: tproxy: bail out if IP has been disabled on the device (CVE-2024-36270) * kernel: octeontx2-af: avoid off-by-one read from userspace (CVE-2024-36957) * kernel: blk-cgroup: fix list corruption from resetting io stat (CVE-2024-38663) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.26.1.el9_4.aarch64.rpm 83deee8a444fe0bcfa1d83f8ea51bf20a70fd8937f06b6ce1c1ee9c083095b96 kernel-tools-libs-devel-5.14.0-427.26.1.el9_4.aarch64.rpm 29994e9df64fbe0f2a8eb039d99b5965cd561a5bf58e618f3b8c269392851040 libperf-5.14.0-427.26.1.el9_4.aarch64.rpm c02689a49e4b212201ff2fefb8a4cab201db425bbfa2589b43e192fcff135d62 RLSA-2024:4623 Important: qt5-qtbase security update Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Security Fix(es): * qtbase: qtbase: Delay any communication until encrypted() can be responded to (CVE-2024-39936) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

Qt is a software toolkit for developing applications. The qt5-base packages contain base tools for string, xml, and network handling in Qt. Security Fix(es): * qtbase: qtbase: Delay any communication until encrypted() can be responded to (CVE-2024-39936) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms qt5-qtbase-static-5.15.9-10.el9_4.aarch64.rpm c460cd6c550657adba4bf53f2d4bc5df8bc09c6f6bf946b980b74b9a43407e25 RLSA-2024:4928 Moderate: kernel security update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: block: null pointer dereference in ioctl.c when length and logical block size are misaligned (CVE-2023-52458) * kernel: ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() (CVE-2024-26773) * kernel: bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel (CVE-2024-26737) * kernel: dm: call the resume method on internal suspend (CVE-2024-26880) * kernel: net/ipv6: avoid possible UAF in ip6_route_mpath_notify() (CVE-2024-26852) * kernel: Squashfs: check the inode number is not the invalid value of zero (CVE-2024-26982) * kernel: nfp: flower: handle acti_netdevs allocation failure (CVE-2024-27046) * kernel: octeontx2-af: Use separate handlers for interrupts (CVE-2024-27030) * kernel: icmp: prevent possible NULL dereferences from icmp_build_probe() (CVE-2024-35857) * kernel: mlxbf_gige: call request_irq() after NAPI initialized (CVE-2024-35907) * kernel: mlxbf_gige: stop interface during shutdown (CVE-2024-35885) * kernel: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() (CVE-2023-52809) * kernel: can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv (CVE-2021-47459) * kernel: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (CVE-2024-36924) * kernel: scsi: lpfc: Move NPIV's transport unregistration to after resource clean up (CVE-2024-36952) * kernel: net: amd-xgbe: Fix skb data length underflow (CVE-2022-48743) * kernel: epoll: be better about file lifetimes (CVE-2024-38580) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: block: null pointer dereference in ioctl.c when length and logical block size are misaligned (CVE-2023-52458) * kernel: ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() (CVE-2024-26773) * kernel: bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel (CVE-2024-26737) * kernel: dm: call the resume method on internal suspend (CVE-2024-26880) * kernel: net/ipv6: avoid possible UAF in ip6_route_mpath_notify() (CVE-2024-26852) * kernel: Squashfs: check the inode number is not the invalid value of zero (CVE-2024-26982) * kernel: nfp: flower: handle acti_netdevs allocation failure (CVE-2024-27046) * kernel: octeontx2-af: Use separate handlers for interrupts (CVE-2024-27030) * kernel: icmp: prevent possible NULL dereferences from icmp_build_probe() (CVE-2024-35857) * kernel: mlxbf_gige: call request_irq() after NAPI initialized (CVE-2024-35907) * kernel: mlxbf_gige: stop interface during shutdown (CVE-2024-35885) * kernel: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() (CVE-2023-52809) * kernel: can: j1939: j1939_netdev_start(): fix UAF for rx_kref of j1939_priv (CVE-2021-47459) * kernel: scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() (CVE-2024-36924) * kernel: scsi: lpfc: Move NPIV's transport unregistration to after resource clean up (CVE-2024-36952) * kernel: net: amd-xgbe: Fix skb data length underflow (CVE-2022-48743) * kernel: epoll: be better about file lifetimes (CVE-2024-38580) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.28.1.el9_4.aarch64.rpm 1f6c79d139c8a594f6c49853d49307960b8859f0a1a8636242f763040efed33b kernel-tools-libs-devel-5.14.0-427.28.1.el9_4.aarch64.rpm c06f41658fe6d35ed518875a3a197f45c1ee2802a5d71ce38a8fa712b4ef6d0a libperf-5.14.0-427.28.1.el9_4.aarch64.rpm a018226a0c7d29537d401f21a9443292de0162db0b18ea4ea25417954e59057a RLSA-2024:4935 Important: freeradius security update FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service (RADIUS) server, designed to allow centralized authentication and authorization for a network. Security Fix(es): * freeradius: forgery attack (CVE-2024-3596) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for freeradius. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service (RADIUS) server, designed to allow centralized authentication and authorization for a network. Security Fix(es): * freeradius: forgery attack (CVE-2024-3596) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms freeradius-mysql-3.0.21-40.el9_4.aarch64.rpm 727224c8daf48483148ceea1d7513a778acdda5dd08b914d2b2869e7cec5b3db freeradius-perl-3.0.21-40.el9_4.aarch64.rpm 9bcce978fd081a0129e65a5eb543dec1a340d1a5dbcedf1ffac1e20f0f217b8b freeradius-postgresql-3.0.21-40.el9_4.aarch64.rpm 1859abc2c2822972cd63fa5dbba5a1d8d4a5ac0000f5910ab99efbf463af2e5d freeradius-rest-3.0.21-40.el9_4.aarch64.rpm 2c8b1976b64aedfe30e997e80f8684bc56e2b1ad00fd803bb15af82505109e5a freeradius-sqlite-3.0.21-40.el9_4.aarch64.rpm c50699e8edd2c935f745a8ee72f5a345accb9a4dd2bd8a7617096cf6f75955b5 freeradius-unixODBC-3.0.21-40.el9_4.aarch64.rpm 674db0b9bb0dfc911b7184f199c74a307b6bd8de9bb89ef3f42780c5a35b1da4 RLSA-2024:5363 Important: kernel security update Errata Tool Automation could not update the description because it is longer (4803) than ET limit of 4000 characters. (OSCI-6058) Please update the description manually. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

Errata Tool Automation could not update the description because it is longer (4803) than ET limit of 4000 characters. (OSCI-6058) Please update the description manually. rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.31.1.el9_4.aarch64.rpm 526e091284485c499095dd04ea6befcc862a31e739471dd93f3b118b69c11f97 kernel-tools-libs-devel-5.14.0-427.31.1.el9_4.aarch64.rpm 3458bf9d381a17aca65763edf19d7ce31151f51a51895b38a75e49b58d36b406 libperf-5.14.0-427.31.1.el9_4.aarch64.rpm 9a38fff5c6a7af7c34cbb48620f5d135052ddaad48aff70eaa4c6f64718283ff RLSA-2024:5192 Moderate: 389-ds-base security update 389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: Malformed userPassword hash may cause Denial of Service (CVE-2024-5953) * 389-ds-base: unauthenticated user can trigger a DoS by sending a specific extended search request (CVE-2024-6237) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

389 Directory Server is an LDAP version 3 (LDAPv3) compliant server. The base packages include the Lightweight Directory Access Protocol (LDAP) server and command-line utilities for server administration. Security Fix(es): * 389-ds-base: Malformed userPassword hash may cause Denial of Service (CVE-2024-5953) * 389-ds-base: unauthenticated user can trigger a DoS by sending a specific extended search request (CVE-2024-6237) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms 389-ds-base-devel-2.4.5-9.el9_4.aarch64.rpm 3914154e2565a0f83ed5be77e3da2dab11dbf6f76dc364e39ba74f504064ff34 RLSA-2024:5231 Important: bind and bind-dyndb-ldap security update The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam (CVE-2024-1737) * bind9: bind: SIG(0) can be used to exhaust CPU resources (CVE-2024-1975) * bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content (CVE-2024-4076) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. Security Fix(es): * bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam (CVE-2024-1737) * bind9: bind: SIG(0) can be used to exhaust CPU resources (CVE-2024-1975) * bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content (CVE-2024-4076) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms bind-devel-9.16.23-18.el9_4.6.aarch64.rpm 822ccfdf45ea3b7f56d84dd1cad6b79946540433418de6f038089557e502965f bind-doc-9.16.23-18.el9_4.6.noarch.rpm daeca2e33af99da35b03d30bf7ffd4190c0e147b87eda5f11bb716856d5a44fc RLSA-2024:5533 Important: python3.12-setuptools security update Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially ones that have dependencies on other packages. This package also contains the runtime components of setuptools, necessary to execute the software that requires pkg_resources. Security Fix(es): * pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

An update is available for python3.12-setuptools. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially ones that have dependencies on other packages. This package also contains the runtime components of setuptools, necessary to execute the software that requires pkg_resources. Security Fix(es): * pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools (CVE-2024-6345) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms python3.12-setuptools-wheel-68.2.2-3.el9_4.1.noarch.rpm 88392789f4736337f4f20525fb6a4654fa678b1f4697392906fcce12108172aa RLSA-2024:6567 Moderate: kernel security update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: efivarfs: force RO when remounting if SetVariable is not supported (CVE-2023-52463) * kernel: nfsd: fix RELEASE_LOCKOWNER (CVE-2024-26629) * kernel: mm: cachestat: fix folio read-after-free in cache walk (CVE-2024-26630) * kernel: mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (CVE-2024-26720) * kernel: Bluetooth: af_bluetooth: Fix deadlock (CVE-2024-26886) * kernel: kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address (CVE-2024-26946) * kernel: KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() (CVE-2024-35791) * kernel: mm: cachestat: fix two shmem bugs (CVE-2024-35797) * kernel: x86/coco: Require seeding RNG with RDRAND on CoCo systems (CVE-2024-35875) * kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (CVE-2024-36000) * kernel: iommufd: Fix missing update of domains_itree after splitting iopt_area (CVE-2023-52801) * kernel: net: fix out-of-bounds access in ops_init (CVE-2024-36883) * kernel: regmap: maple: Fix cache corruption in regcache_maple_drop() (CVE-2024-36019) * kernel: usb-storage: alauda: Check whether the media is initialized (CVE-2024-38619) * kernel: net: bridge: mst: fix vlan use-after-free (CVE-2024-36979) * kernel: scsi: qedf: Ensure the copied buf is NUL terminated (CVE-2024-38559) * kernel: xhci: Handle TD clearing for multiple streams case (CVE-2024-40927) * kernel: cxl/region: Fix memregion leaks in devm_cxl_add_region() (CVE-2024-40936) * kernel: net/sched: Fix UAF when resolving a clash (CVE-2024-41040) * kernel: ppp: reject claimed-as-LCP but actually malformed packets (CVE-2024-41044) * kernel: mm: prevent derefencing NULL ptr in pfn_section_valid() (CVE-2024-41055) * kernel: PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096) * kernel: xdp: Remove WARN() from __xdp_reg_mem_model() (CVE-2024-42082) * kernel: x86: stop playing stack games in profile_pc() (CVE-2024-42096) * kernel: Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" (CVE-2024-42102) * kernel: mm: avoid overflows in dirty throttling logic (CVE-2024-42131) * kernel: nvme: avoid double free special payload (CVE-2024-41073) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: efivarfs: force RO when remounting if SetVariable is not supported (CVE-2023-52463) * kernel: nfsd: fix RELEASE_LOCKOWNER (CVE-2024-26629) * kernel: mm: cachestat: fix folio read-after-free in cache walk (CVE-2024-26630) * kernel: mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again (CVE-2024-26720) * kernel: Bluetooth: af_bluetooth: Fix deadlock (CVE-2024-26886) * kernel: kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe address (CVE-2024-26946) * kernel: KVM: SVM: Flush pages under kvm->lock to fix UAF in svm_register_enc_region() (CVE-2024-35791) * kernel: mm: cachestat: fix two shmem bugs (CVE-2024-35797) * kernel: x86/coco: Require seeding RNG with RDRAND on CoCo systems (CVE-2024-35875) * kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge (CVE-2024-36000) * kernel: iommufd: Fix missing update of domains_itree after splitting iopt_area (CVE-2023-52801) * kernel: net: fix out-of-bounds access in ops_init (CVE-2024-36883) * kernel: regmap: maple: Fix cache corruption in regcache_maple_drop() (CVE-2024-36019) * kernel: usb-storage: alauda: Check whether the media is initialized (CVE-2024-38619) * kernel: net: bridge: mst: fix vlan use-after-free (CVE-2024-36979) * kernel: scsi: qedf: Ensure the copied buf is NUL terminated (CVE-2024-38559) * kernel: xhci: Handle TD clearing for multiple streams case (CVE-2024-40927) * kernel: cxl/region: Fix memregion leaks in devm_cxl_add_region() (CVE-2024-40936) * kernel: net/sched: Fix UAF when resolving a clash (CVE-2024-41040) * kernel: ppp: reject claimed-as-LCP but actually malformed packets (CVE-2024-41044) * kernel: mm: prevent derefencing NULL ptr in pfn_section_valid() (CVE-2024-41055) * kernel: PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096) * kernel: xdp: Remove WARN() from __xdp_reg_mem_model() (CVE-2024-42082) * kernel: x86: stop playing stack games in profile_pc() (CVE-2024-42096) * kernel: Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" (CVE-2024-42102) * kernel: mm: avoid overflows in dirty throttling logic (CVE-2024-42131) * kernel: nvme: avoid double free special payload (CVE-2024-41073) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.35.1.el9_4.aarch64.rpm 5eee1a84b4f4b280848fe87f2fc33cbc90860c6a7ed12fdad030d048611007ed kernel-tools-libs-devel-5.14.0-427.35.1.el9_4.aarch64.rpm bc39a13f30a85049d837d5bb6ad7a5dbe7fddcb947e2a22fd8587423c2b133aa libperf-5.14.0-427.35.1.el9_4.aarch64.rpm 3f29c044f1f6a92cd3e3a25871b4eaeab56a037ae3fb563ff5e062b56e46fe38 RLSA-2024:6464 Moderate: glib2 security update GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fix(es): * glib2: Signal subscription vulnerabilities (CVE-2024-34397) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fix(es): * glib2: Signal subscription vulnerabilities (CVE-2024-34397) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms glib2-static-2.68.4-14.el9_4.1.aarch64.rpm 13d70d746a4bafdc7f25e53fd98f0707a80df81ed5a09b37a19ff8aca8e434c1 RLSA-2024:5999 Important: postgresql security update PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: PostgreSQL relation replacement during pg_dump executes arbitrary SQL (CVE-2024-7348) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

PostgreSQL is an advanced object-relational database management system (DBMS). Security Fix(es): * postgresql: PostgreSQL relation replacement during pg_dump executes arbitrary SQL (CVE-2024-7348) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms postgresql-docs-13.16-1.el9_4.aarch64.rpm 079cbe9d62933ddae3fd540a9eee839fa2444d06290df3783b3e338132f9f328 postgresql-private-devel-13.16-1.el9_4.aarch64.rpm 86aaeacfda43e814dec4187bfaac179959ef6422bb2205b4aa0f99a8c077964c postgresql-server-devel-13.16-1.el9_4.aarch64.rpm 219bfde5f12b5798c01998c8d3e44433de8050d0a1e2b6688b388a44f7916581 postgresql-static-13.16-1.el9_4.aarch64.rpm 6fd086bb62ae859e9bfdcdb734c7d39ec542af2bb9bfd785a23ad0deaa28fe0e postgresql-test-13.16-1.el9_4.aarch64.rpm c747fa3a74262f871598566ec1e0dc991801aaf336027c4ac1caa4f25adb5370 postgresql-upgrade-devel-13.16-1.el9_4.aarch64.rpm d75ca5a5062444f6e4c9289162391d21c04b0dbd8572b47bad62a10d8ee6e381 RLSA-2024:6146 Moderate: python3.12 security update Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. Security Fix(es): * cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection (CVE-2024-6923) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for python3.12. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The libguestfs packages contain a library used for accessing and modifying virtual machine disk images. Bug Fix(es) and Enhancement(s): * sgdisk fails with "Invalid partition data!" for win2019, win2022, win2025 guests with three additional online disks [rhel-9.4.z] (JIRA:Rocky Linux-56697) rocky-linux-9-aarch64-crb-rpms libguestfs-devel-1.50.1-8.el9_4.aarch64.rpm 702467449c5e324a7d56bf08a6f4246754ed1ed5a22b82a83ea979903c6d7d13 libguestfs-gobject-1.50.1-8.el9_4.aarch64.rpm 21ee4c327b4df2225495e80e29ae4b6a27d6899773aab717f6d564c8378e8064 libguestfs-gobject-devel-1.50.1-8.el9_4.aarch64.rpm 6164cd9993d1ee5588c89bad0a7a7100169b16a30b9dd9b2cab3c467897e76c4 libguestfs-man-pages-ja-1.50.1-8.el9_4.noarch.rpm e4c9e9a41c1cd9d1ef0c9ec76a679ce2f017793fb4e2595f0acada92a479fa1c libguestfs-man-pages-uk-1.50.1-8.el9_4.noarch.rpm 28b763d121ae802142ecb91ecc4860f1c504c4aac15c284f9e5df6101bf6a504 lua-guestfs-1.50.1-8.el9_4.aarch64.rpm 0ad8c851572998cdf3db8a6723504e2d8542501849b1c799a4c09e11f7d2ed47 ocaml-libguestfs-1.50.1-8.el9_4.aarch64.rpm bcd81b175edd41e82a740cadf1d8beb299e41d4f03ce2471ae5cced2f5d1e9e8 ocaml-libguestfs-devel-1.50.1-8.el9_4.aarch64.rpm 250d223699508a6eb8d6ea3af83e9e975500d342474120a37596291200d61a9b php-libguestfs-1.50.1-8.el9_4.aarch64.rpm 373eee6e5ed96b28c2f8887628bbb8d68783d70d5275982db2e7610676061c10 ruby-libguestfs-1.50.1-8.el9_4.aarch64.rpm 22bebf7b2821eab02345e07b030ca1ee7bdccd3b01ca84658cb7c29cc7221771 RLBA-2024:6416 augeas bug fix and enhancement update Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by manipulating this tree and saving it back into native config files. Bug Fix(es) and Enhancement(s): * libguestfs pops up error when ?there is a trailing comma after character like nosuid in guest /etc/fstab [rhel-9.4.z] (JIRA:Rocky Linux-56992) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by manipulating this tree and saving it back into native config files. Bug Fix(es) and Enhancement(s): * libguestfs pops up error when ?there is a trailing comma after character like nosuid in guest /etc/fstab [rhel-9.4.z] (JIRA:Rocky Linux-56992) rocky-linux-9-aarch64-crb-rpms augeas-devel-1.13.0-6.el9_4.aarch64.rpm 79a76f0b6d2209dd8201eece8832f9cafe189bfc03c40c6e5eea3f5c0c62fab2 RLSA-2024:6529 Moderate: dovecot security update Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fix(es): * dovecot: using a large number of address headers may trigger a denial of service (CVE-2024-23184) * dovecot: very large headers can cause resource exhaustion when parsing message (CVE-2024-23185) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

Dovecot is an IMAP server for Linux and other UNIX-like systems, written primarily with security in mind. It also contains a small POP3 server, and supports e-mail in either the maildir or mbox format. The SQL drivers and authentication plug-ins are provided as subpackages. Security Fix(es): * dovecot: using a large number of address headers may trigger a denial of service (CVE-2024-23184) * dovecot: very large headers can cause resource exhaustion when parsing message (CVE-2024-23185) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms dovecot-devel-2.3.16-11.el9_4.1.aarch64.rpm 5142136121d459b31473daccbcf1232ccf817cfff5b5efbbf7fb691cf92b1c48 RLBA-2024:6669 libvirt bug fix and enhancement update Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems. Bug Fix(es) and Enhancement(s): * Opening a vpx:// URL fails if the backing VMX file has a "*" character in any key [rhel-9.4.z] (JIRA:Rocky Linux-58676) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

Kernel-based Virtual Machine (KVM) offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the virtualized systems. Bug Fix(es) and Enhancement(s): * Opening a vpx:// URL fails if the backing VMX file has a "*" character in any key [rhel-9.4.z] (JIRA:Rocky Linux-58676) rocky-linux-9-aarch64-crb-rpms libvirt-daemon-plugin-sanlock-10.0.0-6.7.el9_4.aarch64.rpm a2da07a4391b9c1a5fb376d14d46fd4547432ec7af9104130933ea8d95e461c6 libvirt-devel-10.0.0-6.7.el9_4.aarch64.rpm f10d83b17fa4c86765af2a90506fa02099d62211795d2cfa4fbb4aca7f76194a libvirt-docs-10.0.0-6.7.el9_4.aarch64.rpm 583707c8277d563d96120eee291dc2f4b0561c48d2a33e3038ca08bac9963bdc RLSA-2024:6757 Moderate: libnbd security update Network Block Device (NBD) is a protocol for accessing Block Devices (hard disks and disk-like devices) over a Network. The libnbd is a userspace client library for writing NBD clients. Security Fix(es): * libnbd: NBD server improper certificate validation (CVE-2024-7383) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

Network Block Device (NBD) is a protocol for accessing Block Devices (hard disks and disk-like devices) over a Network. The libnbd is a userspace client library for writing NBD clients. Security Fix(es): * libnbd: NBD server improper certificate validation (CVE-2024-7383) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libnbd-devel-1.18.1-4.el9_4.aarch64.rpm d128478b34370efe9ee0896855efbbef311e73b6abec364da0e8b6eca9210534 ocaml-libnbd-1.18.1-4.el9_4.aarch64.rpm cd9cc09ad86f5c4b8c8967785c2d4c2c60af9efb54c22abe491c047b690adb80 ocaml-libnbd-devel-1.18.1-4.el9_4.aarch64.rpm 055e085d9ab5cfeaa2eab798dac7cfdd57d037fc28d8849f51990a03b3704038 RLSA-2024:7346 Important: cups-filters security update The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently. Security Fix(es): * cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source () * cups-filters: libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes (CVE-2024-47076) * cups: libppd: remote command injection via attacker controlled data in PPD file () For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

The cups-filters package contains back ends, filters, and other software that was once part of the core Common UNIX Printing System (CUPS) distribution but is now maintained independently. Security Fix(es): * cups-browsed: cups-browsed binds on UDP INADDR_ANY:631 trusting any packet from any source () * cups-filters: libcupsfilters: `cfGetPrinterAttributes` API does not perform sanitization on returned IPP attributes (CVE-2024-47076) * cups: libppd: remote command injection via attacker controlled data in PPD file () For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms cups-filters-devel-1.28.7-17.el9_4.aarch64.rpm e68d3d7ad2d032a9b6a297717f08a10e4ed71534e0d3c4913f62ca340839da25 RLSA-2024:8121 Moderate: java-11-openjdk security update The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-11-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-11-openjdk-demo-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm 866374f38a7dabd20eaa986cd5f0031c936f9b25027d5de37203a6b04184fd7e java-11-openjdk-demo-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm a888c6fe841387bfb836651f6c2c42b841085e7e81e536635bdc9e80e7f75fa9 java-11-openjdk-devel-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm d8ed41aa02032307613d55039f085f3d41f85d4acf4609050bfe7c73b8c6d44e java-11-openjdk-devel-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm 9408ec6b17a1bf5b83d190f125aaa39da5cf3ab4aee0dfb0cbc04c5ae0ec747a java-11-openjdk-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm a156d14121e9965520700bef4be617c14f30354bf23aed86424265d1c66ac754 java-11-openjdk-headless-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm bb54995f9da22132f3150630e4f684a303a21eedffb2a524e87442ccdd5fe772 java-11-openjdk-headless-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm 4bef09ad049c70884f0a3b6a92f5f943828e0f72061116b5bd2262bf852ba2b2 java-11-openjdk-jmods-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm 51ba5618ed198820bcc431f755466aeff6efe6ee5815b35f280c777826d5ddb7 java-11-openjdk-jmods-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm b7f0a654944eb88885fba91c05fbd09e80bdb364dfd3800b2a9ce501e67022e9 java-11-openjdk-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm e36c421300b787be5e3b10d625cb477f775f2b9029d55ceed2c335971dccf828 java-11-openjdk-src-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm 622116d4da95698e2761810fb16506a2e306974178feb826c236872b423ac14a java-11-openjdk-src-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm 23e27ffe79c2f227f3e9ecb2a77997780d729fa67c2faf06afe98421393d1aae java-11-openjdk-static-libs-fastdebug-11.0.25.0.9-2.el9.aarch64.rpm a93e0ce384a9b417e826c2e84485e8b49410089e9364a943c596a21cdc34ff8d java-11-openjdk-static-libs-slowdebug-11.0.25.0.9-2.el9.aarch64.rpm b7cb5fb257a3c56bf239a7dae2c4eebd9479b7c5e5a2c4750fabcc5fef49d7ad RLSA-2024:8127 Moderate: java-21-openjdk security update The OpenJDK 21 runtime environment. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The OpenJDK 21 runtime environment. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-21-openjdk-demo-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm 74de6e677cbd7e65f5da8376bd2b7ef7caf1e40981109fc2278e5c85efec3dd7 java-21-openjdk-demo-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm 2366c5183fe3ccd33af4f41818c0597625b10c5435b5809c304548a79071ac19 java-21-openjdk-devel-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm 4fa5ceb407ea880e1bc3b8ef7131a87cc1e01661d820086a5998454c1bf142e3 java-21-openjdk-devel-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm b8d81bc79702c6bb6640d19d7e29b01768af6fbeb425228538e84d8af8afda6e java-21-openjdk-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm f4f6ce2bcafc625cfd0ada783a4b9b13170693ce26350ac56aa4af7de6ef69d9 java-21-openjdk-headless-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm 6f688ac8cf23c25b48932d4952e9065ad29ba33cc1dc1615adb5f89b20daf3c4 java-21-openjdk-headless-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm daaf06af7b2e24fc52903c5b499b8539394a647fcdb6c8b4c0f86be0694c81d5 java-21-openjdk-jmods-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm 28da2ba1b3000e88fe221fb74fb7e3bbff613476d39ad44a796e7a4558aa0437 java-21-openjdk-jmods-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm 97bd1cff6e3d71e39c4a614975db3bf335362fd2b0990e298202614e3efa5ad2 java-21-openjdk-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm 94b0a2aa0834f1f82eceae2b2c430ae1eac359a08052859076ec4912327b0c0d java-21-openjdk-src-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm ce9f8badf1d14d343dd6f83b07ba04d3a7500921c5262094b8e6b8f9acd479b0 java-21-openjdk-src-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm cf25f1847cd2470af82ed92a0ed756173c62c6720551355e9d1774508faf2def java-21-openjdk-static-libs-fastdebug-21.0.5.0.10-3.el9.aarch64.rpm 6590ae6f1d5078db174a8a21b3162ef355fb64fe9d0a6f333b574af896c5ac67 java-21-openjdk-static-libs-slowdebug-21.0.5.0.10-3.el9.aarch64.rpm 572f97a660dcce2f6b100b85b8c0bd7a9edaa6048f9bbfd3431d06a4ed247ad0 RLSA-2024:8124 Moderate: java-17-openjdk security update The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-17-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-17-openjdk-demo-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm a2d8dc5c6c720a408b6019775b3debf9741326d5966d74e64bb82cc46df55735 java-17-openjdk-demo-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm 70e5a0a015bcdd0d11231393a7d1bc74f60b0fd4e98f85acf114ff7c4c3824b7 java-17-openjdk-devel-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm 5c92a81db3f4cc1e5f39074b4d29ad6bc880cd78c225efb13a1b5f70579397f0 java-17-openjdk-devel-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm 86a629c1e34c91cd38fdc11f56f0f953f9e3fb1e5425434ced17a626a6619db0 java-17-openjdk-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm 9bd02cfda1713687fa3eca2791b30a7001c474f032ee31f91ede55a52e6396e1 java-17-openjdk-headless-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm 524e4034cba8739c595cdfb5b089c73bcc21977f28581330f04ae4102583f8bf java-17-openjdk-headless-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm 97e2ba6fe0552ecf4758146c73b030771a4eced73b1c377b7c783e5a6c69c053 java-17-openjdk-jmods-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm 06b12fac34479cc9c50022dd8aed9927d54a72426d815544f753c9a429d93f48 java-17-openjdk-jmods-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm c8505dec754374bd38cb7aec247de7eda337cd64939b1735e0ad6f6b7d2d4ba1 java-17-openjdk-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm 87ad8ee59bb5adb3456dd5aa0d722918e54134eeda3d92fd0c52bf0b1409d661 java-17-openjdk-src-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm a0c13fff271db88ce0f74491cf35f280fc000f9f08883fd68dd1436c5b92a25b java-17-openjdk-src-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm 4d13cac7745bb067a38836d7aa33f1dd71d59ad019e3aafebb7dacb22930e2f1 java-17-openjdk-static-libs-fastdebug-17.0.13.0.11-3.el9.aarch64.rpm de9dd56d458b36920d46d059e6e369ad03da249fcbfdaac7af8d6801bbc0dab3 java-17-openjdk-static-libs-slowdebug-17.0.13.0.11-3.el9.aarch64.rpm f1a4db4354dfbdd580cfe3148da1e2d3313550db4791a735a848e27c5ea12e5e RLSA-2024:8117 Moderate: java-1.8.0-openjdk security update The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

An update is available for java-1.8.0-openjdk. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fix(es): * giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function (CVE-2023-48161) * JDK: Array indexing integer overflow (8328544) (CVE-2024-21210) * JDK: HTTP client improper handling of maxHeaderSize (8328286) (CVE-2024-21208) * JDK: Unbounded allocation leads to out-of-memory error (8331446) (CVE-2024-21217) * JDK: Integer conversion error leads to incorrect range check (8332644) (CVE-2024-21235) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms java-1.8.0-openjdk-demo-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm 01096b93f51ee2a48548992f7c5e4948956f87b6e1cd5aaa2041e4e3c14baa27 java-1.8.0-openjdk-demo-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm 463c035e420982fd87e184fdc41f9e953c1f982cb44da75a7758e165f73c6e72 java-1.8.0-openjdk-devel-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm 1d7342763eb9a8d925f89fb1f4462a1fde90e70aa619d0c384d01d00f8d00a13 java-1.8.0-openjdk-devel-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm 854021c6601a2dfc2a0dc2654d1ff78df0160871f657615ef4b17703fc95ed4c java-1.8.0-openjdk-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm 598b28eb5b8be5ce9b0b15dd5bdc411c61ae39deee2dd781b1017c6cb7b9c463 java-1.8.0-openjdk-headless-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm b864306f0dc5804f3ebbba5760c64ef942557d2e44c7eaf043724dc500b02c72 java-1.8.0-openjdk-headless-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm 8aa2958a48b31c500ce9b32222f78ac970fdfd70f27ffdb728ed2bb8462ef57d java-1.8.0-openjdk-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm 956ea49f7bb5401869df2fb957efb62b39814cf4bb53129ca5714610d389898b java-1.8.0-openjdk-src-fastdebug-1.8.0.432.b06-2.el9.aarch64.rpm 68d00d734fc1fa13eff11e36a9c523382f3b7f83af4bdeaf30c8aedb99d97acf java-1.8.0-openjdk-src-slowdebug-1.8.0.432.b06-2.el9.aarch64.rpm 0d6e0d13e82b7bb68ee2ecc201ca0dd908eb501d68afc9f466066dfb7f798359 RLSA-2024:8162 Moderate: kernel security update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Local information disclosure on Intel(R) Atom(R) processors (CVE-2023-28746) * kernel: netfilter: nft_flow_offload: reset dst in route object after setting up flow (CVE-2024-27403) * kernel: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (CVE-2023-52658) * kernel: dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (CVE-2024-35989) * kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field (CVE-2021-47385) * kernel: mptcp: ensure snd_nxt is properly initialized on connect (CVE-2024-36889) * kernel: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (CVE-2024-36978) * kernel: net/mlx5: Add a timeout to acquire the command queue semaphore (CVE-2024-38556) * kernel: KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (CVE-2024-39483) * kernel: ionic: fix use after netif_napi_del() (CVE-2024-39502) * kernel: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (CVE-2024-40959) * kernel: gfs2: Fix NULL pointer dereference in gfs2_log_flush (CVE-2024-42079) * kernel: sched: act_ct: take care of padding in struct zones_ht_key (CVE-2024-42272) * kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error (CVE-2024-42284) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * kernel: Local information disclosure on Intel(R) Atom(R) processors (CVE-2023-28746) * kernel: netfilter: nft_flow_offload: reset dst in route object after setting up flow (CVE-2024-27403) * kernel: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" (CVE-2023-52658) * kernel: dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (CVE-2024-35989) * kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field (CVE-2021-47385) * kernel: mptcp: ensure snd_nxt is properly initialized on connect (CVE-2024-36889) * kernel: net: sched: sch_multiq: fix possible OOB write in multiq_tune() (CVE-2024-36978) * kernel: net/mlx5: Add a timeout to acquire the command queue semaphore (CVE-2024-38556) * kernel: KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked (CVE-2024-39483) * kernel: ionic: fix use after netif_napi_del() (CVE-2024-39502) * kernel: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() (CVE-2024-40959) * kernel: gfs2: Fix NULL pointer dereference in gfs2_log_flush (CVE-2024-42079) * kernel: sched: act_ct: take care of padding in struct zones_ht_key (CVE-2024-42272) * kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error (CVE-2024-42284) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.40.1.el9_4.aarch64.rpm e30cbdfea2abe3184bca7a9561f2be27875480c1225b1702a3b4aefc328d91ff kernel-tools-libs-devel-5.14.0-427.40.1.el9_4.aarch64.rpm 4ee0e3662a5b9be528f081954d7cb7698eddde053345301457834c18320aaadc libperf-5.14.0-427.40.1.el9_4.aarch64.rpm 2bab63a212c0554ac649c0392171032e9660bf52ebaf8bcdb42660eda11e0937 RLBA-2024:7448 glibc bug fix and enhancement update The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Bug Fix(es) and Enhancement(s): * glibc: Previously used TLS sometimes incorrectly reverted to initial state after dlopen [rhel-9.4.z] (JIRA:Rocky Linux-46763) Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Bug Fix(es) and Enhancement(s): * glibc: Previously used TLS sometimes incorrectly reverted to initial state after dlopen [rhel-9.4.z] (JIRA:Rocky Linux-46763) rocky-linux-9-aarch64-crb-rpms glibc-benchtests-2.34-100.el9_4.4.aarch64.rpm d7e0a00e27fd7b284df2a267e62c236d8c2247482fe83272e39ec98df25eb125 glibc-nss-devel-2.34-100.el9_4.4.aarch64.rpm caa9886b1e2ea8660fe6fefedc91eba2268781e597ac1bb63c8a30fe7b5f1dc9 glibc-static-2.34-100.el9_4.4.aarch64.rpm 64fb801b7cad82d4f79884cd1477dd68899753077983c8f62657151538f199ef nss_db-2.34-100.el9_4.4.aarch64.rpm ec2c4e8798459ef736ba2edb9255b9f0586e5f1f8e54cfb51e7040e6f38c3297 nss_hesiod-2.34-100.el9_4.4.aarch64.rpm fd2f80798a09723cf0d3ca2aa273e04606c85ae4f7aa0dfa77edcb83a7749f4d RLSA-2024:8446 Moderate: python3.9 security update Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms python3-debug-3.9.18-3.el9_4.6.aarch64.rpm 8ff60735d74e56efb1e9605f32cefe689ebb378be6afc863303d0d6db3f7326c python3-idle-3.9.18-3.el9_4.6.aarch64.rpm 47dc0d914f1e0f5b9135f77dfd9605219ab7eff236e5b0df6f4cc44ed295ece9 python3-test-3.9.18-3.el9_4.6.aarch64.rpm ca1558d01d3fad3d6f887f115a29351e4ae592a4afc1b74dda7f980bb79d104e RLSA-2024:7867 Important: .NET 6.0 security update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.135 and .NET Runtime 6.0.35. Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.135 and .NET Runtime 6.0.35. Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms dotnet-sdk-6.0-source-built-artifacts-6.0.135-1.el9_4.aarch64.rpm 18653ae2734e430750c1e95315f2b470fc2ac0fbd35081cdba63b92830c13a85 RLSA-2024:7869 Important: .NET 8.0 security update .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.110 and .NET Runtime 8.0.10. Security Fix(es): * dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution (CVE-2024-38229) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) * dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution (CVE-2024-38229) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.110 and .NET Runtime 8.0.10. Security Fix(es): * dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution (CVE-2024-38229) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Security Fix(es): * dotnet: System.IO.Packaging - Multiple DoS vectors in use of SortedList (CVE-2024-43484) * dotnet: Multiple .NET components susceptible to hash flooding (CVE-2024-43483) * dotnet: Denial of Service in System.Text.Json (CVE-2024-43485) * dotnet: kestrel: closing an HTTP/3 stream can cause a race condition and lead to remote code execution (CVE-2024-38229) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms dotnet-sdk-8.0-source-built-artifacts-8.0.110-1.el9_4.aarch64.rpm b87355ee4c3f805c1cd62cc131cc171bba1c14aed429dd7139d67940ed785ed4 RLSA-2024:8037 Moderate: OpenIPMI security update The OpenIPMI packages provide command-line tools and utilities to access platform information using Intelligent Platform Management Interface (IPMI). System administrators can use OpenIPMI to manage systems and to perform system health monitoring. Security Fix(es): * openipmi: missing check on the authorization type on incoming LAN messages in IPMI simulator (CVE-2024-42934) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The OpenIPMI packages provide command-line tools and utilities to access platform information using Intelligent Platform Management Interface (IPMI). System administrators can use OpenIPMI to manage systems and to perform system health monitoring. Security Fix(es): * openipmi: missing check on the authorization type on incoming LAN messages in IPMI simulator (CVE-2024-42934) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms OpenIPMI-devel-2.0.32-5.el9_4.aarch64.rpm cbd8550faa86af1b166b9fbdae7467355eed7f426cceb4669f706dbe9d360ad7 RLSA-2024:8374 Moderate: python3.11 security update Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms python3.11-debug-3.11.7-1.el9_4.6.aarch64.rpm bf44aaa21b29cd1b930cf68d17c357f0693ac08e0fceb15b5b8cc42887def5ab python3.11-idle-3.11.7-1.el9_4.6.aarch64.rpm f4c72cbe86f1f9e4ce1315443c7641a4ad319b1c318af121811ca16e23e9e349 python3.11-test-3.11.7-1.el9_4.6.aarch64.rpm 99fa99b0ef0273ffb96f00e01e4d115345728b002fd0ec1208e43f0923324674 RLSA-2024:8447 Moderate: python3.12 security update Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

Python 3.12 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.12 package provides the "python3.12" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.12-libs package, which should be installed automatically along with python3.12. The remaining parts of the Python standard library are broken out into the python3.12-tkinter and python3.12-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.12-docs package. Packages containing additional libraries for Python are generally named with the "python3.12-" prefix. Security Fix(es): * python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms python3.12-debug-3.12.1-4.el9_4.4.aarch64.rpm 274d8b22050e1163fc41c3db4697de9577d0caf96dcc3f5ebffb52396b9957fb python3.12-idle-3.12.1-4.el9_4.4.aarch64.rpm 212646a747a18c736aea15ef28d1c209d0000faac55e05da137b036177c4f9ae python3.12-test-3.12.1-4.el9_4.4.aarch64.rpm a3b0db26627c3e37634650d7b2597e9508accbb02e899d1dc0b2a03e0726e9d0 RLSA-2024:8617 Moderate: kernel security update The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * hw: cpu: intel: Native Branch History Injection (BHI) (CVE-2024-2201) * kernel: tcp: add sanity checks to rx zerocopy (CVE-2024-26640) * kernel: mptcp: fix data re-injection from stale subflow (CVE-2024-26826) * kernel: af_unix: Fix garbage collector racing against connect() (CVE-2024-26923) * kernel: mac802154: fix llsec key resources release in mac802154_llsec_key_del (CVE-2024-26961) * kernel: scsi: core: Fix unremoved procfs host directory regression (CVE-2024-26935) * kernel: tty: Fix out-of-bound vmalloc access in imageblit (CVE-2021-47383) * kernel: net/sched: taprio: extend minimum interval restriction to entire cycle too (CVE-2024-36244) * kernel: xfs: fix log recovery buffer allocation for the legacy h_size fixup (CVE-2024-39472) * kernel: netfilter: nft_inner: validate mandatory meta and payload (CVE-2024-39504) * kernel: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (CVE-2024-40904) * kernel: mptcp: ensure snd_una is properly initialized on connect (CVE-2024-40931) * kernel: ipv6: prevent possible NULL dereference in rt6_probe() (CVE-2024-40960) * kernel: ext4: do not create EA inode under buffer lock (CVE-2024-40972) * kernel: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (CVE-2024-40977) * kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (CVE-2024-40995) * kernel: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (CVE-2024-40998) * kernel: netpoll: Fix race condition in netpoll_owner_active (CVE-2024-41005) * kernel: xfs: don't walk off the end of a directory data block (CVE-2024-41013) * kernel: xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014) * kernel: block: initialize integrity buffer to zero before writing it to media (CVE-2024-43854) * kernel: netfilter: flowtable: initialise extack before use (CVE-2024-45018) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fix(es): * hw: cpu: intel: Native Branch History Injection (BHI) (CVE-2024-2201) * kernel: tcp: add sanity checks to rx zerocopy (CVE-2024-26640) * kernel: mptcp: fix data re-injection from stale subflow (CVE-2024-26826) * kernel: af_unix: Fix garbage collector racing against connect() (CVE-2024-26923) * kernel: mac802154: fix llsec key resources release in mac802154_llsec_key_del (CVE-2024-26961) * kernel: scsi: core: Fix unremoved procfs host directory regression (CVE-2024-26935) * kernel: tty: Fix out-of-bound vmalloc access in imageblit (CVE-2021-47383) * kernel: net/sched: taprio: extend minimum interval restriction to entire cycle too (CVE-2024-36244) * kernel: xfs: fix log recovery buffer allocation for the legacy h_size fixup (CVE-2024-39472) * kernel: netfilter: nft_inner: validate mandatory meta and payload (CVE-2024-39504) * kernel: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages (CVE-2024-40904) * kernel: mptcp: ensure snd_una is properly initialized on connect (CVE-2024-40931) * kernel: ipv6: prevent possible NULL dereference in rt6_probe() (CVE-2024-40960) * kernel: ext4: do not create EA inode under buffer lock (CVE-2024-40972) * kernel: wifi: mt76: mt7921s: fix potential hung tasks during chip recovery (CVE-2024-40977) * kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc() (CVE-2024-40995) * kernel: ext4: fix uninitialized ratelimit_state->lock access in __ext4_fill_super() (CVE-2024-40998) * kernel: netpoll: Fix race condition in netpoll_owner_active (CVE-2024-41005) * kernel: xfs: don't walk off the end of a directory data block (CVE-2024-41013) * kernel: xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014) * kernel: block: initialize integrity buffer to zero before writing it to media (CVE-2024-43854) * kernel: netfilter: flowtable: initialise extack before use (CVE-2024-45018) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms kernel-cross-headers-5.14.0-427.42.1.el9_4.aarch64.rpm 251fa1fd9ce3588c5332cfd1d6d0cd25470cee8feec6f686f9abee8efeac2420 kernel-tools-libs-devel-5.14.0-427.42.1.el9_4.aarch64.rpm cdd24aaf2330f6ac71e42bd6db5f64428288206a5723f123b5ac9ab1388d8715 libperf-5.14.0-427.42.1.el9_4.aarch64.rpm 51512c80ed10e7772af4bb6a36ec52868c51377c308cbdb67578e2b4b2a604b9 RLSA-2024:8800 Important: openexr security update OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR. Security Fix(es): * OpenEXR: Heap Overflow in Scanline Deep Data Parsing (CVE-2023-5841) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR. Security Fix(es): * OpenEXR: Heap Overflow in Scanline Deep Data Parsing (CVE-2023-5841) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms openexr-devel-3.1.1-2.el9_4.1.aarch64.rpm 3604df89d4c0025c34cb56208573932eab1f3e71ee2f8f3b555476ae26a17c8b RLSA-2024:8914 Moderate: libtiff security update The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * libtiff: NULL pointer dereference in tif_dirinfo.c (CVE-2024-7006) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * libtiff: NULL pointer dereference in tif_dirinfo.c (CVE-2024-7006) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms libtiff-tools-4.4.0-12.el9_4.1.aarch64.rpm 3e3daa27c5b074ef5fb976b16c4d38464554514e3dc487a5663dba10875c1183 RLSA-2024:8935 Moderate: edk2 security update EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix(es): * openssl: Possible denial of service in X.509 name checks (CVE-2024-6119) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Moderate

EDK (Embedded Development Kit) is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware for QEMU and KVM. Security Fix(es): * openssl: Possible denial of service in X.509 name checks (CVE-2024-6119) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms edk2-ovmf-20231122-6.el9_4.4.noarch.rpm 01c5a535b13fcaa13e5d134ca94d118368f1d15fe2f030b6d9b1a1644d773c7b edk2-tools-20231122-6.el9_4.4.aarch64.rpm 91b8d2e33cb949288914f712014f0590494081fa0217a23577ec9c77b5175a9c edk2-tools-doc-20231122-6.el9_4.4.noarch.rpm 4f0b359eaaec46670c1e9cdfe3d831a1027e7d0e14290fe07e49339de2ee9a91 RLBA-2024:9138 libappstream-glib bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libappstream-glib-devel-0.7.18-5.el9_4.aarch64.rpm f9dda42b8850fce0c91f551de50c9c8c089a0013bb31f9c3a3c01507736ded1e RLBA-2024:9230 qt5-qtbase bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms qt5-qtbase-static-5.15.9-10.el9_4.aarch64.rpm c460cd6c550657adba4bf53f2d4bc5df8bc09c6f6bf946b980b74b9a43407e25 RLBA-2024:9270 libblkio bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms libblkio-devel-1.5.0-1.el9_4.aarch64.rpm f168c19ad31b4b9cd27e0b94f293dd5c74f1175e58087231a8b6f710bcd4e281 RLBA-2024:9279 augeas bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms augeas-devel-1.13.0-6.el9_4.aarch64.rpm 79a76f0b6d2209dd8201eece8832f9cafe189bfc03c40c6e5eea3f5c0c62fab2 RLBA-2024:9284 postgresql bug fix and enhancement update For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 None

For detailed information on changes in this release, see the Rocky Linux 9.5 Release Notes linked from the References section. rocky-linux-9-aarch64-crb-rpms postgresql-docs-13.16-1.el9_4.aarch64.rpm 079cbe9d62933ddae3fd540a9eee839fa2444d06290df3783b3e338132f9f328 postgresql-private-devel-13.16-1.el9_4.aarch64.rpm 86aaeacfda43e814dec4187bfaac179959ef6422bb2205b4aa0f99a8c077964c postgresql-server-devel-13.16-1.el9_4.aarch64.rpm 219bfde5f12b5798c01998c8d3e44433de8050d0a1e2b6688b388a44f7916581 postgresql-static-13.16-1.el9_4.aarch64.rpm 6fd086bb62ae859e9bfdcdb734c7d39ec542af2bb9bfd785a23ad0deaa28fe0e postgresql-test-13.16-1.el9_4.aarch64.rpm c747fa3a74262f871598566ec1e0dc991801aaf336027c4ac1caa4f25adb5370 postgresql-upgrade-devel-13.16-1.el9_4.aarch64.rpm d75ca5a5062444f6e4c9289162391d21c04b0dbd8572b47bad62a10d8ee6e381 RLSA-2024:9449 Important: bubblewrap and flatpak security update Bubblewrap (/usr/bin/bwrap) is a core execution engine for unprivileged containers that works as a setuid binary on kernels without user namespaces. Security Fix(es): * flatpak: Access to files outside sandbox for apps using persistent= (--persist) (CVE-2024-42472) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important

Bubblewrap (/usr/bin/bwrap) is a core execution engine for unprivileged containers that works as a setuid binary on kernels without user namespaces. Security Fix(es): * flatpak: Access to files outside sandbox for apps using persistent= (--persist) (CVE-2024-42472) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. rocky-linux-9-aarch64-crb-rpms flatpak-devel-1.12.9-3.el9_4.aarch64.rpm 8c5b634673f354d65f283d341b89e5410ab5559b673edcf10b9d32797ff5cb5f RLSA-2024:9548 Important: openexr security update OpenEXR is an open-source high-dynamic-range floating-point image file format for high-quality image processing and storage. This document presents a brief overview of OpenEXR and explains concepts that are specific to this format. This package containes the binaries for OpenEXR. Security Fix(es): * OpenEXR: Heap Overflow in Scanline Deep Data Parsing (CVE-2023-5841) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Copyright 2025 Rocky Enterprise Software Foundation Rocky Linux 9 1 Important