Here is a roundup of last week's Linux security updates for AlmaLinux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, SUSE Linux, and Ubuntu Linux.

AlmaLinux

• ALSA-2024:2079 Important: git-lfs security update
• ALSA-2024:2084 Important: container-tools:4.0 security update
• ALSA-2024:2098 Important: container-tools:rhel8 security and bug fix update
• ALSA-2024:2119 Moderate: Image builder components bug fix, enhancement and security update
• ALSA-2024:2126 Important: webkit2gtk3 security update
• ALSA-2024:2132 Moderate: fence-agents security and bug fix update
• ALSA-2024:2135 Moderate: qemu-kvm security update
• ALSA-2024:2137 Low: LibRaw security update
• ALSA-2024:2145 Moderate: libX11 security update
• ALSA-2024:2146 Moderate: libXpm security update
• ALSA-2024:2147 Moderate: ipa security update
• ALSA-2024:2156 Moderate: frr security update
• ALSA-2024:2159 Moderate: python3.11-urllib3 security update
• ALSA-2024:2160 Moderate: toolbox security update
• ALSA-2024:2169 Moderate: xorg-x11-server security update
• ALSA-2024:2170 Moderate: xorg-x11-server-Xwayland security update
• ALSA-2024:2180 Moderate: runc security update
• ALSA-2024:2184 Moderate: libsndfile security update
• ALSA-2024:2193 Moderate: podman security update
• ALSA-2024:2199 Important: pmix security update
• ALSA-2024:2204 Moderate: libnbd security update
• ALSA-2024:2208 Moderate: freerdp security update
• ALSA-2024:2211 Moderate: tcpdump security update
• ALSA-2024:2213 Moderate: pcp security update
• ALSA-2024:2217 Moderate: motif security update
• ALSA-2024:2228 Moderate: perl security update
• ALSA-2024:2236 Moderate: libvirt security update
• ALSA-2024:2239 Moderate: skopeo security update
• ALSA-2024:2245 Moderate: buildah security update
• ALSA-2024:2246 Moderate: ansible-core bug fix, enhancement, and security update
• ALSA-2024:2264 Important: edk2 security update
• ALSA-2024:2272 Moderate: containernetworking-plugins security update
• ALSA-2024:2276 Moderate: qt5-qtbase security update
• ALSA-2024:2278 Moderate: httpd security update
• ALSA-2024:2287 Moderate: gstreamer1-plugins-bad-free security update
• ALSA-2024:2289 Moderate: libtiff security update
• ALSA-2024:2290 Moderate: mutt security update
• ALSA-2024:2292 Moderate: python3.11 security update
• ALSA-2024:2295 Moderate: libjpeg-turbo security update
• ALSA-2024:2298 Important: tigervnc security update
• ALSA-2024:2302 Moderate: gstreamer1-plugins-base security update
• ALSA-2024:2303 Moderate: gstreamer1-plugins-good security update
• ALSA-2024:2337 Moderate: python3.11-cryptography security update
• ALSA-2024:2348 Moderate: python-jinja2 security update
• ALSA-2024:2353 Moderate: mingw components security update
• ALSA-2024:2366 Moderate: freeglut security update
• ALSA-2024:2368 Moderate: mod_http2 security update
• ALSA-2024:2377 Moderate: zziplib security update
• ALSA-2024:2387 Moderate: mod_jk and mod_proxy_cluster security update
• ALSA-2024:2396 Moderate: squashfs-tools security update
• ALSA-2024:2410 Moderate: harfbuzz security update
• ALSA-2024:2433 Moderate: avahi security update
• ALSA-2024:2437 Moderate: exfatprogs security update
• ALSA-2024:2438 Moderate: pam security update
• ALSA-2024:2447 Low: openssl and openssl-fips-provider security update
• ALSA-2024:2456 Moderate: grub2 security update
• ALSA-2024:2463 Moderate: systemd security update
• ALSA-2024:2483 Moderate: traceroute security update
• ALSA-2024:2504 Low: libssh security update
• ALSA-2024:2512 Low: file security update
• ALSA-2024:2517 Moderate: wpa_supplicant security update
• ALSA-2024:2525 Moderate: mingw-pixman security update
• ALSA-2024:2528 Low: mingw-glib2 security update
• ALSA-2024:2548 Moderate: podman security and bug fix update
• ALSA-2024:2549 Moderate: skopeo security and bug fix update
• ALSA-2024:2550 Moderate: buildah bug fix update
• ALSA-2024:2551 Important: bind security update
• ALSA-2024:2559 Moderate: python-jwcrypto security update
• ALSA-2024:2560 Moderate: libvirt security and bug fix update
• ALSA-2024:2562 Important: golang security update
• ALSA-2024:2564 Moderate: mod_http2 security update
• ALSA-2024:2565 Moderate: libreswan security update
• ALSA-2024:2566 Important: pcp security, bug fix, and enhancement update
• ALSA-2024:2568 Moderate: grafana security update
• ALSA-2024:2569 Important: grafana-pcp security update
• ALSA-2024:2570 Moderate: gnutls security update
• ALSA-2024:2571 Moderate: sssd security and bug fix update
• ALSA-2024:2616 Important: tigervnc security update
• ALSA-2024:2679 Moderate: libxml2 security update
• ALSA-2024:2699 Important: git-lfs security update
• ALSA-2024:2722 Important: glibc security update
• ALSA-2024:2724 Important: git-lfs security update
• ALSA-2024:2778 Important: nodejs:20 security update
• ALSA-2024:2780 Important: nodejs:18 security update

CentOS

• CESA-2024:1935 Low CentOS 7 thunderbird Security Update
• CESA-2024:1910 Important CentOS 7 firefox Security Update
• CEBA-2024:1759 CentOS 7 firefox BugFix Update
• CESA-2024:2004 Important CentOS 7 kernel Security Update
• CESA-2024:2002 Moderate CentOS 7 grub2 Security Update
• CESA-2024:2080 Important CentOS 7 tigervnc Security Update
• CESA-2024:1787 Important CentOS 7 squid Security Update
• CESA-2024:1785 Important CentOS 7 xorg-x11-server Security Update

Debian GUN/Linux

• ELA-1088-1 intel-microcode security update
• [DLA 3809-1] libkf5ksieve security update
• [DSA 5681-1] linux security update
• [DSA 5680-1] linux security update
• [DLA 3810-1] php7.3 security update
• [DSA 5682-1] glib2.0 security update
• ELA-1089-1 less security update
• [DLA 3811-1] python-idna security update
• [DSA 5685-1] wordpress security update
• [DSA 5682-2] glib2.0 regression update
• [DSA 5683-1] chromium security update
• [DLA 3812-1] libpgjava security update
• [DSA 5684-1] webkit2gtk security update
• [DSA 5686-1] dav1d security update
• ELA-1090-1 gnutls28 security update
• [DSA 5687-1] chromium security update
• ELA-1091-1 php5 security update
• ELA-1092-1 php7.0 security update

Fedora Linux

• Fedora 38 Update: freerdp-2.11.7-1.fc38
• Fedora 40 Update: pypy-7.3.15-3.fc40
• Fedora 40 Update: freerdp2-2.11.7-1.fc40
• Fedora 40 Update: freerdp-3.5.1-1.fc40
• Fedora 40 Update: kernel-6.8.9-300.fc40
• Fedora 38 Update: pypy-7.3.15-3.fc38
• Fedora 39 Update: pypy-7.3.15-3.fc39
• Fedora 39 Update: chromium-124.0.6367.155-1.fc39
• Fedora 39 Update: stb-0^20240213gitae721c5-6.fc39
• Fedora 38 Update: stb-0^20240213gitae721c5-5.fc38
• Fedora 40 Update: chromium-124.0.6367.155-1.fc40
• Fedora 40 Update: php-wikimedia-cdb-3.0.0-1.fc40
• Fedora 40 Update: mediawiki-1.41.1-1.fc40
• Fedora 40 Update: tcpdump-4.99.4-7.fc40
• Fedora 40 Update: php-wikimedia-utfnormal-4.0.0-1.fc40
• Fedora 40 Update: stb-0^20240213gitae721c5-6.fc40

Gentoo Linux

• [ GLSA 202405-16 ] Apache Commons BCEL: Remote Code Execution
• [ GLSA 202405-15 ] Mozilla Firefox: Multiple Vulnerabilities
• [ GLSA 202405-14 ] QtWebEngine: Multiple Vulnerabilities
• [ GLSA 202405-13 ] borgmatic: Shell Injection
• [ GLSA 202405-12 ] Pillow: Multiple Vulnerabilities
• [ GLSA 202405-11 ] MIT krb5: Multiple Vulnerabilities
• [ GLSA 202405-10 ] Setuptools: Denial of Service
• [ GLSA 202405-19 ] xar: Unsafe Extraction
• [ GLSA 202405-18 ] Xpdf: Multiple Vulnerabilities
• [ GLSA 202405-20 ] libjpeg-turbo: Multiple Vulnerabilities
• [ GLSA 202405-21 ] Commons-BeanUtils: Improper Access Restriction
• [ GLSA 202405-22 ] rsync: Multiple Vulnerabilities
• [ GLSA 202405-29 ] Node.js: Multiple Vulnerabilities
• [ GLSA 202405-28 ] NVIDIA Drivers: Multiple Vulnerabilities
• [ GLSA 202405-27 ] Epiphany: Buffer Overflow
• [ GLSA 202405-17 ] glibc: Multiple Vulnerabilities
• [ GLSA 202405-26 ] qtsvg: Multiple Vulnerabilities
• [ GLSA 202405-25 ] MariaDB: Multiple Vulnerabilities
• [ GLSA 202405-24 ] ytnef: Multiple Vulnerabilities
• [ GLSA 202405-23 ] U-Boot tools: double free vulnerability

Oracle Linux

• ELSA-2024-12354 Important: Oracle Linux 7 Unbreakable Enterprise kernel security update
• ELSA-2024-12354 Important: Oracle Linux 6 Extended Lifecycle Support (ELS) Unbreakable Enterprise kernel security update
• ELBA-2024-2567 Oracle Linux 9 aardvark-dns bug fix and enhancement update
• ELEA-2024-2546 Oracle Linux 9 389-ds-base enhancement update
• ELSA-2024-2551 Important: Oracle Linux 9 bind security update
• ELBA-2024-2557 Oracle Linux 9 containers-common bug fix and enhancement update
• ELBA-2024-2561 Oracle Linux 9 gnome-shell, gnome-menus, and gnome-shell-extensions bug fix update
• ELBA-2024-2563 Oracle Linux 9 nss bug fix update
• ELSA-2024-2724 Important: Oracle Linux 9 git-lfs security update
• ELSA-2024-2570 Moderate: Oracle Linux 9 gnutls security update
• ELSA-2024-2559 Moderate: Oracle Linux 9 python-jwcrypto security update
• ELSA-2024-2616 Important: Oracle Linux 9 tigervnc security update
• ELSA-2024-2550 Moderate: Oracle Linux 9 buildah bug fix update
• ELSA-2024-2571 Moderate: Oracle Linux 9 sssd security and bug fix update
• ELBA-2024-2558 Oracle Linux 9 ipa bug fix update
• ELSA-2024-2562 Important: Oracle Linux 9 golang security update
• ELSA-2024-2569 Important: Oracle Linux 9 grafana-pcp security update
• ELSA-2024-2548 Moderate: Oracle Linux 9 podman security and bug fix update
• ELSA-2024-2560 Moderate: Oracle Linux 9 libvirt security and bug fix update
• ELSA-2024-2568 Moderate: Oracle Linux 9 grafana security update
• ELSA-2024-2679 Moderate: Oracle Linux 9 libxml2 security update
• ELSA-2024-2565 Moderate: Oracle Linux 9 libreswan security update
• ELBA-2024-2555 Oracle Linux 9 gcc-toolset-12-gcc bug fix update
• ELBA-2024-2552 Oracle Linux 9 .NET 6.0 bug fix update
• ELBA-2024-2556 Oracle Linux 9 nmstate bug fix update
• ELBA-2024-2547 Oracle Linux 9 sushi bug fix update
• ELBA-2024-2553 Oracle Linux 9 bootc bug fix update
• ELBA-2024-2554 Oracle Linux 9 .NET 8.0 bug fix update
• ELSA-2024-2564 Moderate: Oracle Linux 9 mod_http2 security update
• ELSA-2024-2549 Moderate: Oracle Linux 9 skopeo security and bug fix update

Red Hat Enterprise Linux

• RHSA-2024:2697: Important: kpatch-patch security update
• RHSA-2024:2696: Important: unbound security update
• RHSA-2024:2699: Important: git-lfs security update
• RHSA-2024:2700: Important: varnish security update
• RHSA-2024:2707: Important: Red Hat Build of Apache Camel security update
• RHSA-2024:2721: Important: bind and dhcp security update
• RHSA-2024:2722: Important: glibc security update
• RHSA-2024:2720: Important: bind and dhcp security update
• RHSA-2024:2758: Moderate: kernel security and bug fix update
• RHSA-2024:2693: Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP4 security update
• RHSA-2024:2694: Moderate: Red Hat JBoss Core Services Apache HTTP Server 2.4.57 SP4 security update
• RHSA-2024:1916: Important: Red Hat JBoss Web Server 6.0.2 release and security update
• RHSA-2024:1917: Important: Red Hat JBoss Web Server 6.0.2 release and security update
• RHSA-2024:1913: Important: Red Hat JBoss Web Server 5.8.0 release and security update
• RHSA-2024:1914: Important: Red Hat JBoss Web Server 5.8.0 release and security update
• RHSA-2024:2724: Important: git-lfs security update
• RHSA-2024:2764: Important: Red Hat JBoss Enterprise Application Platform 8.0 security update
• RHSA-2024:2763: Important: Red Hat JBoss Enterprise Application Platform 8.0 security update
• RHSA-2024:2780: Important: nodejs:18 security update
• RHSA-2024:2778: Important: nodejs:20 security update
• RHSA-2024:2779: Important: nodejs:18 security update
• RHSA-2024:2777: Important: squid:4 security update
• RHSA-2024:2799: Important: glibc security update
• RHSA-2024:2666: Moderate: OpenShift Container Platform 4.14.24 security and extras update
• RHSA-2024:2667: Important: Red Hat build of MicroShift 4.15.12 security update
• RHSA-2024:2669: Important: OpenShift Container Platform 4.15.12 security update
• RHSA-2024:2664: Important: OpenShift Container Platform 4.15.12 security update
• RHSA-2024:2705: Moderate: Red Hat build of Quarkus 3.2.12 release and security update
• RHSA-2024:2793: Important: nodejs:16 security update
• RHSA-2024:2671: Important: Red Hat build of MicroShift 4.14.24 security update
• RHSA-2024:2672: Important: OpenShift Container Platform 4.14.24 packages and security update
• RHSA-2024:2668: Important: OpenShift Container Platform 4.14.24 bug fix and security update
• RHSA-2024:2817: Important: Errata Advisory for Red Hat OpenShift GitOps v1.10.5 security update
• RHSA-2024:2816: Important: Errata Advisory for Red Hat OpenShift GitOps v1.12.2 security update
• RHSA-2024:2815: Important: Errata Advisory for Red Hat OpenShift GitOps v1.11.4 security update

Rocky Linux

• RXSA-2024:1607: Important: kernel security, bug fix, and enhancement update
• RLSA-2024:1688: Important: nodejs:20 security update
• RLSA-2024:1822: Moderate: java-11-openjdk security update
• RLSA-2024:1818: Moderate: java-1.8.0-openjdk security update
• RLSA-2024:1939: Low: thunderbird security update
• RLBA-2024:1733: .NET 8.0 bugfix update
• RLSA-2024:1962: Important: go-toolset:rhel8 security update
• RLSA-2024:1781: Important: bind9.16 security update
• RLBA-2024:1798: idm:DL1 bug fix update
• RLSA-2024:1912: Important: firefox security update
• RLSA-2024:1690: Important: varnish security update
• RLBA-2024:1735: .NET 7.0 bugfix update
• RLSA-2024:1719: Moderate: rear security update
• RLBA-2024:1732: .NET 6.0 bugfix update
• RLSA-2024:1687: Important: nodejs:20 security update
• RLSA-2024:1828: Moderate: java-21-openjdk security update
• RLSA-2024:1751: Important: unbound security update
• RLBA-2024:1757: firefox bug fix update
• RLSA-2024:1786: Important: httpd:2.4/mod_http2 security update
• RLSA-2024:1998: Moderate: libreswan security update
• RLSA-2024:2779: Important: nodejs:18 security update
• RLSA-2024:2780: Important: nodejs:18 security update
• RLSA-2024:2699: Important: git-lfs security update
• RLSA-2024:2778: Important: nodejs:20 security update
• RLSA-2024:2722: Important: glibc security update
• RLBA-2024:2474: lsvpd bug fix and enhancement update
• RLSA-2024:1438: Important: nodejs security update
• RLBA-2024:2446: libica bug fix and enhancement update
• RLBA-2024:2266: libzpc bug fix and enhancement update
• RLSA-2023:7711: Moderate: apr security update
• RLSA-2024:1427: Important: libreoffice security update
• RLBA-2023:7750: xfsdump bug fix and enhancement update
• RLBA-2024:2114: pacemaker bug fix and enhancement update
• RLBA-2024:2110: resource-agents bug fix and enhancement update
• RLBA-2024:2150: python-virt-firmware bug fix and enhancement update
• RLBA-2024:2087: container-selinux bug fix update
• RLBA-2024:2058: nss bug fix update
• RLSA-2024:2135: Moderate: qemu-kvm security update
• RLBA-2024:2140: netavark bug fix and enhancement update
• RLBA-2024:2124: crun bug fix and enhancement update
• RLBA-2024:2155: python-drgn bug fix and enhancement update
• RLSA-2024:1502: Important: grafana-pcp security update
• RLSA-2024:1139: Low: keylime security update
• RLSA-2024:1436: Important: postgresql-jdbc security update
• RLSA-2024:1908: Important: firefox security update

SUSE Linux

• SUSE-SU-2024:1497-1: important: Security update for skopeo
• SUSE-SU-2024:1480-1: important: Security update for the Linux Kernel
• SUSE-SU-2024:1475-1: important: Security update for frr
• SUSE-SU-2024:1468-1: important: Security update for ffmpeg
• SUSE-SU-2024:1470-1: important: Security update for ffmpeg-4
• SUSE-SU-2024:1466-1: important: Security update for the Linux Kernel
• SUSE-SU-2024:1451-1: low: Security update for java-1_8_0-openjdk
• SUSE-SU-2024:1453-1: important: Security update for frr
• SUSE-SU-2024:1447-1: moderate: Security update for openCryptoki
• openSUSE-SU-2024:0118-1: important: Security update for python-python-jose
• openSUSE-SU-2024:0119-1: important: Security update for tinyproxy
• SUSE-SU-2024:1607-1: important: Security update for python-Pillow
• SUSE-SU-2024:1608-1: important: Security update for python-Werkzeug
• SUSE-SU-2024:1605-1: moderate: Security update for tpm2-0-tss
• SUSE-SU-2024:1610-1: important: Security update for freerdp
• SUSE-SU-2024:1598-1: important: Security update for less
• SUSE-SU-2024:1591-1: important: Security update for python-Werkzeug
• SUSE-SU-2024:1588-1: moderate: Security update for go1.21
• SUSE-SU-2024:1587-1: moderate: Security update for go1.22
• SUSE-SU-2024:1590-1: moderate: Security update for ghostscript
• SUSE-SU-2024:1593-1: important: Security update for ffmpeg
• SUSE-SU-2024:1592-1: important: Security update for ffmpeg-4
• SUSE-SU-2024:1578-1: important: Security update for sssd
• SUSE-SU-2024:1579-1: important: Security update for sssd
• SUSE-SU-2024:1571-1: important: Security update for python-pymongo
• SUSE-SU-2024:1557-1: moderate: Security update for rpm
• SUSE-SU-2024:1549-1: important: Security update for sssd
• SUSE-SU-2024:1539-1: moderate: Security update for bouncycastle
• SUSE-SU-2024:1540-1: moderate: Security update for xen
• SUSE-SU-2024:1535-1: important: Security update for flatpak
• SUSE-SU-2024:1536-1: important: Security update for flatpak

Ubuntu Linux

• [USN-6763-1] libvirt vulnerability
• [USN-6766-1] Linux kernel vulnerabilities
• [USN-6767-1] Linux kernel vulnerabilities
• [USN-6764-1] libde265 vulnerability
• [USN-6754-2] nghttp2 vulnerability
• [USN-6765-1] Linux kernel (OEM) vulnerabilities
• Ubuntu 24.10 Oracular Oriole is now open for development
• [USN-6768-1] GLib vulnerability
• [USN-6769-1] Spreadsheet::ParseXLSX vulnerabilities
• [USN-6770-1] Fossil regression