Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

AlmaLinux

• ALSA-2025:3828: glibc security update (Moderate)
• ALSA-2025:3833: gvisor-tap-vsock security update (Important)
• ALSA-2025:3893: kernel security update (Moderate)
• ALSA-2025:3894: kernel-rt security update (Moderate)

Debian GNU/Linux

• ELA-1388-1 twitter-bootstrap3 security update
• ELA-1389-1 twitter-bootstrap3 security update
• ELA-1387-1 erlang security update
• [DLA 4125-1] twitter-bootstrap4 security update
• [DLA 4127-1] subversion security update
• [DLA 4126-1] jinja2 security update
• [DLA 4124-1] twitter-bootstrap3 security update
• [DSA 5901-1] mediawiki security update
• [DSA 5902-1] perl security update
• ELA-1391-1 gimp security update
• ELA-1390-1 glib2.0 security update
• ELA-1386-1 atop security update
• ELA-1392-1 twitter-bootstrap4 security update
• [DLA 4128-1] glib2.0 security update
• ELA-1395-1 shadow security update
• ELA-1394-1 opensaml2 security update
• ELA-1393-1 opensaml security update
• ELA-1396-1 jinja2 security update
• ELA-1397-1 libmodbus security update
• [DLA 4129-1] libapache2-mod-auth-openidc security update
• [DSA 5903-1] chromium security update
• [DSA 5905-1] graphicsmagick security update
• [DSA 5904-1] libapache2-mod-auth-openidc security update
• ELA-1398-1 postgresql-11 security update
• [DLA 4130-1] shadow security update
• [DLA 4131-1] zabbix security update

Fedora Linux

• Fedora 40 Update: dnf-4.23.0-1.fc40.1
• Fedora 40 Update: lemonldap-ng-2.21.0-1.fc40
• Fedora 40 Update: php-tcpdf-6.9.1-1.fc40
• Fedora 42 Update: chromium-135.0.7049.84-1.fc42
• Fedora 42 Update: trunk-0.21.13-1.fc42
• Fedora 42 Update: lemonldap-ng-2.21.0-1.fc42
• Fedora 40 Update: mariadb10.11-10.11.11-1.fc40
• Fedora 40 Update: dotnet9.0-9.0.104-1.fc40
• Fedora 41 Update: golang-1.23.8-1.fc41
• Fedora 42 Update: php-tcpdf-6.9.1-1.fc42
• Fedora 41 Update: lemonldap-ng-2.21.0-1.fc41
• Fedora 42 Update: podman-tui-1.5.0-1.fc42
• Fedora 41 Update: php-tcpdf-6.9.1-1.fc41
• Fedora 41 Update: perl-DBIx-Class-EncodedColumn-0.11000-1.fc41
• Fedora 41 Update: perl-Crypt-URandom-Token-0.003-1.fc41
• Fedora 42 Update: dotnet9.0-9.0.104-1.fc42
• Fedora 41 Update: dotnet9.0-9.0.104-1.fc41
• Fedora 41 Update: podman-tui-1.5.0-1.fc41
• Fedora 41 Update: mysql8.0-8.0.41-1.fc41
• Fedora 41 Update: trunk-0.21.13-1.fc41
• Fedora 41 Update: workrave-1.11.0~rc.1-1.fc41
• Fedora 41 Update: mod_auth_openidc-2.4.16.11-1.fc41
• Fedora 40 Update: perl-String-Compare-ConstantTime-0.321-19.fc40
• Fedora 40 Update: rust-openssl-0.10.72-1.fc40
• Fedora 40 Update: rust-openssl-sys-0.9.107-1.fc40
• Fedora 40 Update: mysql8.0-8.0.41-1.fc40
• Fedora 40 Update: workrave-1.11.0~rc.1-1.fc40
• Fedora 40 Update: mod_auth_openidc-2.4.16.11-1.fc40
• Fedora 42 Update: giflib-5.2.2-6.fc42
• Fedora 42 Update: perl-PAR-Packer-1.063-6.fc42
• Fedora 42 Update: perl-Devel-Cover-1.44-5.fc42
• Fedora 42 Update: perl-5.40.2-517.fc42
• Fedora 42 Update: perl-String-Compare-ConstantTime-0.321-22.fc42
• Fedora 42 Update: rust-openssl-0.10.72-1.fc42
• Fedora 42 Update: rust-openssl-sys-0.9.107-1.fc42
• Fedora 42 Update: workrave-1.11.0~rc.1-1.fc42
• Fedora 42 Update: llama-cpp-b4094-11.fc42
• Fedora 42 Update: rust-tinystr-0.7.6-4.fc42
• Fedora 42 Update: uv-0.6.14-3.fc42
• Fedora 42 Update: rust-utf16_iter-1.0.5-1.fc42
• Fedora 42 Update: rust-zip-2.6.1-1.fc42
• Fedora 42 Update: rust-ron-0.9.0-1.fc42
• Fedora 42 Update: rust-writeable-0.5.5-3.fc42
• Fedora 42 Update: rust-zerovec-0.10.4-4.fc42
• Fedora 42 Update: rust-write16-1.0.0-1.fc42
• Fedora 42 Update: rust-version-ranges-0.1.1-2.fc42
• Fedora 42 Update: rust-icu_provider_macros-1.5.0-1.fc42
• Fedora 42 Update: rust-url-2.5.4-1.fc42
• Fedora 42 Update: rust-icu_properties_data-1.5.1-1.fc42
• Fedora 42 Update: rust-sequoia-openpgp-2.0.0-2.fc42
• Fedora 42 Update: rust-sequoia-openpgp1-1.22.0-2.fc42
• Fedora 42 Update: rust-litemap-0.7.3-5.fc42
• Fedora 42 Update: rust-idna_adapter-1.2.0-1.fc42
• Fedora 42 Update: rust-idna-1.0.3-1.fc42
• Fedora 42 Update: rust-icu_provider-1.5.0-1.fc42
• Fedora 42 Update: rust-gstreamer-0.23.5-2.fc42
• Fedora 42 Update: rust-icu_properties-1.5.1-1.fc42
• Fedora 42 Update: rust-icu_normalizer_data-1.5.1-1.fc42
• Fedora 42 Update: rust-icu_normalizer-1.5.0-2.fc42
• Fedora 42 Update: rust-icu_locid_transform_data-1.5.1-1.fc42
• Fedora 42 Update: rust-icu_locid_transform-1.5.0-1.fc42
• Fedora 42 Update: rust-icu_collections-1.5.0-3.fc42
• Fedora 42 Update: rust-icu_locid-1.5.0-2.fc42
• Fedora 42 Update: rust-gitui-0.26.3-6.fc42
• Fedora 42 Update: rust-adblock-0.9.6-1.fc42
• Fedora 42 Update: rust-cookie_store-0.21.1-1.fc42
• Fedora 42 Update: python-pydantic-core-2.27.2-5.fc42
• Fedora 40 Update: webkitgtk-2.48.1-2.fc40

Oracle Linux

• ELBA-2025-20228 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update
• ELBA-2025-20225 Oracle Linux 9 xfsprogs bug fix update
• ELBA-2025-20224 Oracle Linux 9 libbpf bug fix update
• ELBA-2025-20223 Oracle Linux 9 microcode_ctl bug fix update
• ELBA-2025-20222 Oracle Linux 9 ipmctl bug fix update
• ELBA-2025-20221 Oracle Linux 9 dwarves bug fix update
• ELBA-2025-20220 Oracle Linux 9 dtrace bug fix update
• ELBA-2025-20219 Oracle Linux 9 snapper bug fix update
• ELBA-2025-20218 Oracle Linux 9 dnf-plugins-extras bug fix update
• ELBA-2025-20217 Oracle Linux 9 btrfs-progs bug fix update
• ELBA-2025-20216 Oracle Linux 9 adaptivemm bug fix update
• ELBA-2025-20215 Oracle Linux 9 iproute bug fix update
• OLAMSA-2025-0003 Important: Oracle Linux 8 OLAM2.2 Security Update
• ELSA-2025-20270 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update
• ELSA-2025-20270 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update
• ELSA-2025-3833 Important: Oracle Linux 9 gvisor-tap-vsock security update
• ELBA-2025-20229 Oracle Linux 9 linux-firmware bug fix update
• ELBA-2025-20226 Oracle Linux 9 oraclelinux-release-el9 bug fix update
• ELSA-2025-20270 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
• ELSA-2025-20271 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
• ELSA-2025-3913 Moderate: Oracle Linux 8 expat security update
• ELSA-2025-3893 Moderate: Oracle Linux 8 kernel security update
• ELSA-2025-3828 Moderate: Oracle Linux 8 glibc security update
• ELSA-2025-20271 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
• ELBA-2025-20229 Oracle Linux 8 linux-firmware bug fix update
• ELSA-2025-20271 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update
• ELSA-2025-3396 Important: Oracle Linux 7 grub2 security update
• ELSA-2025-3395 Important: Oracle Linux 7 freetype security update
• ELEA-2025-2427 Oracle Linux 7 microcode_ctl bug fix and enhancement update
• ELBA-2025-20229 Oracle Linux 7 linux-firmware bug fix update
• ELBA-2025-20276 Oracle Linux 9 libbpf bug fix update
• ELBA-2025-20275 Oracle Linux 8 oVirt 4.5 ovirt-engine bug fix update
• ELSA-2025-3937 Moderate: Oracle Linux 9 kernel security update
• ELSA-2025-3855 Moderate: Oracle Linux 9 java-21-openjdk security update
• ELSA-2025-3852 Moderate: Oracle Linux 9 java-17-openjdk security update
• ELSA-2025-3845 Moderate: Oracle Linux 9 java-1.8.0-openjdk security update
• ELBA-2025-3893-1 Oracle Linux 8 kernel bug fix update
• ELSA-2025-3974 Important: Oracle Linux 8 webkit2gtk3 security update
• ELSA-2025-3855 Moderate: Oracle Linux 8 java-21-openjdk security update
• ELSA-2025-3852 Moderate: Oracle Linux 8 java-17-openjdk security update
• ELSA-2025-3845 Moderate: Oracle Linux 8 java-1.8.0-openjdk security update
• ELSA-2025-3390 Important: Oracle Linux 7 libreoffice security update

Red Hat Enterprise Linux

• RHSA-2025:3828: Moderate: glibc security update
• RHSA-2025:3827: Moderate: kernel security update
• RHSA-2025:3837: Moderate: openssh security update
• RHSA-2025:3838: Important: kernel security update
• RHSA-2025:3839: Important: kernel-rt security update
• RHSA-2025:3833: Important: gvisor-tap-vsock security update
• RHSA-2025:3832: Moderate: kernel security update
• RHSA-2025:3861: Moderate: kernel-rt security update
• RHSA-2025:3880: Moderate: kernel security update
• RHSA-2025:3871: Moderate: kernel security update
• RHSA-2025:3863: Important: Red Hat multicluster global hub 1.3.3 bug fixes and container update
• RHSA-2025:3893: Moderate: kernel security update
• RHSA-2025:3889: Moderate: kernel-rt security update
• RHSA-2025:3903: Moderate: kernel security update
• RHSA-2025:3901: Moderate: kernel-rt security update
• RHSA-2025:3894: Moderate: kernel-rt security update
• RHSA-2025:3888: Moderate: kernel security update
• RHSA-2025:3887: Moderate: kernel security update
• RHSA-2025:3932: Important: Red Hat OpenShift Dev Spaces 3.20.0 release
• RHSA-2025:3789: Important: OpenShift Container Platform 4.15.49 security and extras update
• RHSA-2025:3931: Moderate: kernel security update
• RHSA-2025:3930: Important: RHACS 4.7 security update
• RHSA-2025:3929: Important: ACS 4.6 enhancement and security update
• RHSA-2025:3928: Important: ACS 4.5 enhancement and security update
• RHSA-2025:3922: Moderate: Red Hat OpenShift Service Mesh Containers for 2.5.10
• RHSA-2025:3913: Moderate: expat security update
• RHSA-2025:3852: Moderate: java-17-openjdk security update
• RHSA-2025:3937: Moderate: kernel security update
• RHSA-2025:3775: Important: OpenShift Container Platform 4.18.9 bug fix and security update
• RHSA-2025:3935: Moderate: kernel security update
• RHSA-2025:3850: Moderate: OpenJDK 11.0.27 ELS Security Update for Portable Linux Builds
• RHSA-2025:3849: Moderate: OpenJDK 11.0.27 ELS Security Update for Windows Builds
• RHSA-2025:3905: Important: Logging for Red Hat OpenShift - 6.0.7
• RHSA-2025:3945: Important: mod_auth_openidc security update
• RHSA-2025:3906: Important: Logging for Red Hat OpenShift - 5.9.13
• RHSA-2025:3855: Moderate: java-21-openjdk security update
• RHSA-2025:3848: Moderate: java-11-openjdk ELS security update
• RHSA-2025:3790: Important: OpenShift Container Platform 4.15.49 bug fix and security update
• RHSA-2025:3965: Important: openvswitch3.4 security update
• RHSA-2025:3964: Important: openvswitch3.3 security update
• RHSA-2025:3970: Important: openvswitch3.1 security update
• RHSA-2025:3963: Important: openvswitch3.1 security update
• RHSA-2025:3907: Important: Logging for Red Hat OpenShift - 6.1.5
• RHSA-2025:3959: Important: VolSync 0.11.2 security fixes and enhancements for RHEL 9
• RHSA-2025:3961: Important: kpatch-patch-5_14_0-70_112_1, kpatch-patch-5_14_0-70_121_1, kpatch-patch-5_14_0-70_124_1, and kpatch-patch-5_14_0-70_85_1 security update
• RHSA-2025:3845: Moderate: java-1.8.0-openjdk security update
• RHSA-2025:3798: Important: OpenShift Container Platform 4.17.25 bug fix and security update
• RHSA-2025:3856: Moderate: OpenJDK 21.0.7 Security Update for Portable Linux Builds
• RHSA-2025:3857: Moderate: OpenJDK 21.0.7 Security Update for Windows Builds
• RHSA-2025:3853: Moderate: OpenJDK 17.0.15 Security Update for Portable Linux Builds
• RHSA-2025:3854: Moderate: OpenJDK 17.0.15 Security Update for Windows Builds
• RHSA-2025:3846: Moderate: OpenJDK 8u452 Security Update for Portable Linux Builds
• RHSA-2025:3847: Moderate: OpenJDK 8u452 Windows Security Update
• RHSA-2025:3844: Moderate: java-1.8.0-openjdk security update
• RHSA-2025:3978: Important: postgresql security update
• RHSA-2025:3973: Important: OpenShift Virtualization 4.16.7 Images
• RHSA-2025:3779: Important: OpenShift Container Platform 4.13.57 security and extras update
• RHSA-2025:3780: Important: OpenShift Container Platform 4.13.57 bug fix and security update
• RHSA-2025:3974: Important: webkit2gtk3 security update
• RHSA-2025:4005: Important: Updated service-interconnect rhel9 container images for 1.8
• RHSA-2025:4002: Important: Red Hat Advanced Cluster Management 2.12.3 container image updates
• RHSA-2025:3987: Important: Multicluster Engine for Kubernetes 2.7.4 security updates
• RHSA-2025:3989: Moderate: Red Hat JBoss Enterprise Application Platform 8.0.7 security update

Slackware Linux

• perl (SSA:2025-104-01)
• mozilla-thunderbird (SSA:2025-105-01)
• libxml2 (SSA:2025-108-01)
• zsh (SSA:2025-109-01)

SUSE Linux

• openSUSE-SU-2025:0120-1: important: Security update for chromium
• SUSE-SU-2025:1226-1: moderate: Security update for govulncheck-vulndb
• SUSE-SU-2025:1227-1: important: Security update for pgadmin4
• SUSE-SU-2025:1214-1: important: Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP6)
• SUSE-SU-2025:1213-1: important: Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3)
• SUSE-SU-2025:1225-1: important: Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3)
• SUSE-SU-2025:1207-1: important: Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP6)
• SUSE-SU-2025:1257-1: important: Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4)
• SUSE-SU-2025:1259-1: important: Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3)
• SUSE-SU-2025:1252-1: important: Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP4)
• SUSE-SU-2025:1241-1: important: Security update for the Linux Kernel
• SUSE-SU-2025:1232-1: important: Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6)
• SUSE-SU-2025:1248-1: important: Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP3)
• SUSE-SU-2025:1238-1: important: Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP6)
• SUSE-SU-2025:1254-1: important: Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP3)
• SUSE-SU-2025:1260-1: important: Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3)
• openSUSE-SU-2025:14990-1: moderate: rekor-1.3.10-1.1 on GA media
• SUSE-SU-2025:1264-1: moderate: Security update for haproxy
• SUSE-SU-2025:1275-1: important: Security update for the Linux Kernel (Live Patch 52 for SLE 15 SP3)
• SUSE-SU-2025:1276-1: important: Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5)
• SUSE-SU-2025:1262-1: important: Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP3)
• SUSE-SU-2025:1263-1: important: Security update for the Linux Kernel
• SUSE-SU-2025:1285-1: important: Security update for etcd
• SUSE-SU-2025:1286-1: important: Security update for apache2-mod_auth_openidc
• SUSE-SU-2025:1287-1: moderate: Security update for mozjs52
• SUSE-SU-2025:1288-1: moderate: Security update for mozjs52
• openSUSE-SU-2025:14989-1: moderate: flannel-0.26.6-1.1 on GA media
• openSUSE-SU-2025:14991-1: moderate: libsqlite3-0-3.49.1-3.1 on GA media
• openSUSE-SU-2025:14992-1: moderate: libvarnishapi3-7.7.0-1.1 on GA media
• openSUSE-SU-2025:14988-1: moderate: cosign-2.5.0-1.1 on GA media
• openSUSE-SU-2025:14998-1: moderate: python311-aiohttp-3.11.16-1.1 on GA media
• SUSE-SU-2025:1294-1: important: Security update for rubygem-bundler
• openSUSE-SU-2025:14996-1: moderate: hauler-1.2.2-1.1 on GA media
• openSUSE-SU-2025:14999-1: moderate: python-lxml-doc-5.3.2-1.1 on GA media
• openSUSE-SU-2025:14994-1: moderate: gitoxide-0.42.0-1.1 on GA media
• openSUSE-SU-2025:14997-1: moderate: oci-cli-3.54.1-1.1 on GA media
• openSUSE-SU-2025:14993-1: moderate: GraphicsMagick-1.3.45-3.1 on GA media
• openSUSE-SU-2025:14995-1: moderate: govulncheck-vulndb-0.0.20250410T162706-1.1 on GA media
• openSUSE-SU-2025:0123-1: moderate: Security update for perl-Data-Entropy
• SUSE-SU-2025:1326-1: important: Security update for pgadmin4
• SUSE-SU-2025:1331-1: important: Security update for webkit2gtk3
• openSUSE-SU-2025:0129-1: moderate: Security update for rubygem-rexml
• SUSE-SU-2025:1332-1: important: Security update for rekor
• SUSE-SU-2025:1333-1: important: Security update for cosign
• SUSE-SU-2025:1334-1: moderate: Security update for pam
• SUSE-SU-2025:1336-1: important: Security update for webkit2gtk3
• SUSE-SU-2025:1338-1: moderate: Security update for haproxy
• SUSE-SU-2025:1340-1: moderate: Security update for mozjs52
• openSUSE-SU-2025:15002-1: moderate: libmozjs-115-0-115.15.0-5.1 on GA media
• openSUSE-SU-2025:15004-1: moderate: subfinder-2.7.0-2.1 on GA media
• openSUSE-SU-2025:15000-1: moderate: MozillaThunderbird-128.9.2-1.1 on GA media
• openSUSE-SU-2025:15003-1: moderate: perl-32bit-5.40.2-1.1 on GA media
• openSUSE-SU-2025:15001-1: moderate: forgejo-10.0.3-2.1 on GA media
• SUSE-SU-2025:1342-1: moderate: Security update for poppler
• SUSE-SU-2025:1345-1: moderate: Security update for containerd
• SUSE-SU-2025:1349-1: moderate: Security update for GraphicsMagick
• openSUSE-SU-2025:15005-1: moderate: MozillaFirefox-137.0.2-1.1 on GA media
• openSUSE-SU-2025:15006-1: moderate: argocd-cli-2.14.10-1.1 on GA media
• openSUSE-SU-2025:0131-1: moderate: Security update for coredns
• openSUSE-SU-2025:15010-1: moderate: ffmpeg-6-6.1.2-3.1 on GA media

Ubuntu Linux

• [USN-7433-1] GraphicsMagick vulnerabilities
• [USN-7434-1] Perl vulnerability
• [USN-7437-1] CImg library vulnerabilities
• [USN-7436-1] WebKitGTK vulnerabilities
• [USN-7435-1] Protocol Buffers vulnerability
• [USN-7161-3] Docker vulnerability
• [USN-7438-1] 7-Zip vulnerabilities
• [USN-7439-1] QuickJS vulnerabilities
• [LSN-0111-1] Linux kernel vulnerability
• [USN-7442-1] Ruby vulnerabilities
• [USN-7443-1] Erlang vulnerability