Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, SUSE Linux, and Ubuntu Linux.

AlmaLinux

• ALSA-2024:4351: virt:rhel and virt-devel:rhel security and bug fix update (Low)
• ALSA-2024:4371: buildah security update (Important)
• ALSA-2024:4378: podman security update (Important)
• ALSA-2024:4379: gvisor-tap-vsock security update (Important)
• ALSA-2024:4376: libreswan security update (Moderate)
• ALSA-2024:4367: pki-core security update (Important)
• ALSA-2024:4352: kernel-rt security and bug fix update (Important)
• ALSA-2024:4262: linux-firmware security update (Moderate)
• AlmaLinux OS 9 Patching for CVE-2024-6409
• ALSA-2024:4422: fence-agents security update (Moderate)
• ALSA-2024:4439: dotnet6.0 security update (Moderate)
• ALSA-2024:4451: dotnet8.0 security update (Important)
• ALSA-2024:4420: virt:rhel and virt-devel:rhel security update (Important)
• ALSA-2024:4438: dotnet6.0 security update (Moderate)

Debian GNU/Linux

• ELA-1126-1 exim4 security update
• ELA-1121-1 python-idna security update
• ELA-1127-1 dns-root-data security update
• [DSA 5728-1] exim4 security update
• [DSA 5727-1] firefox-esr security update
• ELA-1128-1 axis security update
• ELA-1129-1 apache2 security update
• [DSA 5729-1] apache2 security update

Fedora Linux

• Fedora 40 Update: golang-1.22.5-1.fc40
• Fedora 40 Update: netatalk-3.2.1-1.fc40
• Fedora 40 Update: rust-sequoia-openpgp-1.21.1-1.fc40
• Fedora 40 Update: rust-sequoia-sq-0.37.0-3.fc40
• Fedora 40 Update: rust-sequoia-keystore-0.5.1-1.fc40
• Fedora 40 Update: rust-sequoia-chameleon-gnupg-0.10.0-3.fc40
• Fedora 40 Update: rust-sequoia-gpg-agent-0.4.2-1.fc40
• Fedora 40 Update: libnbd-1.20.2-1.fc40
• Fedora 39 Update: ghostscript-10.02.1-5.fc39
• Fedora 39 Update: rust-sequoia-sq-0.37.0-3.fc39
• Fedora 39 Update: rust-sequoia-keystore-0.5.1-1.fc39
• Fedora 39 Update: rust-sequoia-gpg-agent-0.4.2-1.fc39
• Fedora 39 Update: rust-sequoia-openpgp-1.21.1-1.fc39
• Fedora 39 Update: rust-sequoia-chameleon-gnupg-0.10.0-3.fc39
• Fedora 40 Update: firefox-128.0-1.fc40
• Fedora 40 Update: jpegxl-0.8.3-1.fc40
• Fedora 39 Update: firefox-128.0-1.fc39
• Fedora 39 Update: squid-6.10-1.fc39
• Fedora 40 Update: qt6-qtbase-6.7.2-3.fc40
• Fedora 40 Update: onnx-1.14.1-3.fc40
• Fedora 40 Update: squid-6.10-1.fc40
• Fedora 40 Update: wordpress-6.5.5-1.fc40
• Fedora 40 Update: dotnet8.0-8.0.105-1.fc40
• Fedora 40 Update: mingw-python3-3.11.8-2.fc40
• Fedora 39 Update: mingw-python3-3.11.8-2.fc39
• Fedora 39 Update: python-urllib3-1.26.19-1.fc39
• Fedora 40 Update: krb5-1.21.3-1.fc40
• Fedora 40 Update: yarnpkg-1.22.22-2.fc40
• Fedora 39 Update: pgadmin4-7.8-7.fc39
• Fedora 39 Update: python3.6-3.6.15-29.fc39

Gentoo Linux

• [ GLSA 202407-23 ] LIVE555 Media Server: Multiple Vulnerabilities
• [ GLSA 202407-24 ] HarfBuzz: Denial of Service
• [ GLSA 202407-25 ] Buildah: Multiple Vulnerabilities

Oracle Linux

• ELBA-2024-12475 Oracle Linux 7 sos bug fix update (aarch64)
• ELBA-2024-12474 Oracle Linux 7 sos bug fix update
• ELBA-2024-12476 Oracle Linux 8 sos bug fix update
• ELBA-2024-12479 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update
• ELBA-2024-12477 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELBA-2024-12484 Oracle Linux 7 linux-firmware bug fix update
• ELBA-2024-12479 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update (aarch64)
• ELBA-2024-12483 Oracle Linux 7 linux-firmware bug fix update (aarch64)
• ELBA-2024-12481 Oracle Linux 7 Unbreakable Enterprise kernel-container bug fix update
• ELBA-2024-12478 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update
• ELSA-2024-4376 Moderate: Oracle Linux 8 libreswan security update
• ELBA-2024-12478 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELBA-2024-12482 Oracle Linux 8 linux-firmware bug fix update
• ELBA-2024-12480 Oracle Linux 8 Unbreakable Enterprise kernel-container bug fix update
• ELBA-2024-12478 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELSA-2024-4349 Moderate: Oracle Linux 9 kernel security and bug fix update
• ELBA-2024-12477 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update
• ELSA-2024-4371 Important: Oracle Linux 9 buildah security update
• ELSA-2024-4378 Important: Oracle Linux 9 podman security update
• ELSA-2024-4379 Important: Oracle Linux 9 gvisor-tap-vsock security update
• ELBA-2024-12485 Oracle Linux 9 linux-firmware bug fix update
• ELBA-2024-12477 Oracle Linux 9 Unbreakable Enterprise kernel bug fix update
• ELSA-2024-4451 Important: Oracle Linux 8 dotnet8.0 security update
• ELSA-2024-4367 Important: Oracle Linux 8 pki-core security update
• ELSA-2024-4438 Moderate: Oracle Linux 8 dotnet6.0 security update
• ELSA-2024-4351 Low: Oracle Linux 8 virt:ol and virt-devel:rhel security and bug fix update
• ELBA-2024-12487 Oracle Linux 8 gcc-toolset-11-gcc bug fix update
• ELSA-2024-4450 Important: Oracle Linux 9 dotnet8.0 security update
• ELBA-2024-12488 Oracle Linux 9 pam bug fix update
• ELSA-2024-4439 Moderate: Oracle Linux 9 dotnet6.0 security update
• ELSA-2024-4457 Moderate: Oracle Linux 9 openssh security update
• ELSA-2024-4422 Moderate: Oracle Linux 9 fence-agents security update

Red Hat Enterprise Linux

• RHSA-2024:4349: Moderate: kernel security and bug fix update
• RHSA-2024:4351: Low: virt:rhel and virt-devel:rhel security and bug fix update
• RHSA-2024:4353: Important: nodejs:16 security update
• RHSA-2024:4173: Moderate: Red Hat build of Cryostat 3.0.0: new RHEL 8 container image security update
• RHSA-2024:4352: Important: kernel-rt security and bug fix update
• RHSA-2024:4366: Important: less security update
• RHSA-2024:4379: Important: gvisor-tap-vsock security update
• RHSA-2024:4372: Important: virt:rhel and virt-devel:rhel security update
• RHSA-2024:4373: Important: virt:rhel and virt-devel:rhel security update
• RHSA-2024:4378: Important: podman security update
• RHSA-2024:4376: Moderate: libreswan security update
• RHSA-2024:4375: Important: postgresql-jdbc security update
• RHSA-2024:4374: Important: virt:rhel and virt-devel:rhel security update
• RHSA-2024:4377: Moderate: libreswan security update
• RHSA-2024:4371: Important: buildah security update
• RHSA-2024:4370: Important: python3 security update
• RHSA-2024:4369: Important: less security update
• RHSA-2024:4368: Important: git security update
• RHSA-2024:4367: Important: pki-core security update
• RHSA-2024:4392: Important: Red Hat JBoss Enterprise Application Platform 8.0.2 Security update
• RHSA-2024:4390: Moderate: Red Hat JBoss Enterprise Application Platform 8.0 security update
• RHSA-2024:4389: Important: openssh security update
• RHSA-2024:4386: Moderate: Red Hat JBoss EAP 7.4.17 XP 4.0.2 security release
• RHSA-2024:4418: Important: less security update
• RHSA-2024:4416: Important: less security update
• RHSA-2024:4417: Moderate: libreswan security update
• RHSA-2024:4419: Important: edk2 security update
• RHSA-2024:4415: Important: kernel security and bug fix update
• RHSA-2024:4414: Moderate: fence-agents security update
• RHSA-2024:4411: Important: booth security update
• RHSA-2024:4413: Important: pki-core security update
• RHSA-2024:4412: Important: kernel-rt security and bug fix update
• RHSA-2024:4406: Important: python3 security update
• RHSA-2024:4409: Moderate: linux-firmware security update
• RHSA-2024:4403: Important: pki-core security update
• RHSA-2024:4402: Important: postgresql-jdbc security update
• RHSA-2024:4408: Moderate: tpm2-tss security update
• RHSA-2024:4404: Moderate: fence-agents bug fix update
• RHSA-2024:4400: Important: booth security update
• RHSA-2024:4427: Moderate: fence-agents security update
• RHSA-2024:4429: Moderate: containernetworking-plugins security update
• RHSA-2024:4431: Moderate: libreswan security update
• RHSA-2024:4432: Moderate: libvirt security update
• RHSA-2024:4430: Moderate: perl-HTTP-Tiny security update
• RHSA-2024:4425: Critical: Red Hat OpenStack Platform 16.1.9 security update
• RHSA-2024:4422: Moderate: fence-agents security update
• RHSA-2024:4316: Moderate: OpenShift Container Platform 4.16.2 bug fix and security update
• RHSA-2024:4421: Moderate: python39:3.9 and python39-devel:3.9 security update
• RHSA-2024:4420: Important: virt:rhel and virt-devel:rhel security update
• RHSA-2024:4447: Important: kernel security update
• RHSA-2024:4443: Important: toolbox security update
• RHSA-2024:4439: Moderate: dotnet6.0 security update
• RHSA-2024:4438: Moderate: dotnet6.0 security update
• RHSA-2024:4450: Important: dotnet8.0 security update
• RHSA-2024:4451: Important: dotnet8.0 security update
• RHSA-2024:4464: Low: Red Hat Advanced Cluster Management 2.10.4 security updates and bug fixes
• RHSA-2024:4462: Important: ghostscript security update
• RHSA-2024:4460: Important: Red Hat Data Grid 8.5.0 security update
• RHSA-2024:4457: Moderate: openssh security update
• RHSA-2024:4456: Important: python3 security update
• RHSA-2024:4455: Moderate: OpenShift Virtualization 4.16.0 Images security update
• RHSA-2024:4321: Moderate: OpenShift Container Platform 4.15.21 bug fix and security update
• RHSA-2024:4505: Moderate: Red Hat Build of Apache Camel 4.4 for Quarkus 3.8 update (RHBQ 3.8.5.GA)
• RHSA-2024:4504: Moderate: httpd security update
• RHSA-2024:4499: Moderate: ruby security update
• RHSA-2024:4520: Important: Migration Toolkit for Containers (MTC) 1.7.16 security and bug fix update
• RHSA-2024:4329: Important: OpenShift Container Platform 4.14.32 bug fix and security update

Slackware Linux

• mozilla-firefox (SSA:2024-192-01)

SUSE Linux

• SUSE-SU-2024:2332-1: low: Security update for poppler
• SUSE-SU-2024:2333-1: low: Security update for poppler
• SUSE-SU-2024:2322-1: important: Security update for krb5
• SUSE-SU-2024:1937-2: moderate: Security update for python-docker
• SUSE-SU-2024:2320-1: moderate: Security update for python-urllib3
• SUSE-SU-2024:2308-1: important: Security update for go1.21
• SUSE-SU-2024:2313-1: important: Security update for netty3
• SUSE-SU-2024:2307-1: important: Security update for krb5
• SUSE-SU-2024:2302-1: important: Security update for krb5
• SUSE-SU-2024:2303-1: important: Security update for krb5
• SUSE-SU-2024:2299-1: important: Security update for apache2-mod_auth_openidc
• SUSE-SU-2024:2275-2: important: Security update for openssh
• SUSE-SU-2024:2292-1: important: Security update for ghostscript
• SUSE-SU-2024:2283-1: important: Security update for libndp
• SUSE-SU-2024:2290-1: low: Security update for libxml2
• SUSE-SU-2024:2286-1: moderate: Security update for podman
• SUSE-SU-2024:2280-1: moderate: Security update for python39
• SUSE-SU-2024:2279-1: low: Security update for libxml2
• SUSE-SU-2024:2281-1: low: Security update for podofo
• SUSE-SU-2024:2275-1: important: Security update for openssh
• SUSE-SU-2024:2277-1: important: Security update for git
• SUSE-SU-2024:2265-1: moderate: Security update for wireshark
• SUSE-SU-2024:2269-1: moderate: Security update for squid
• SUSE-SU-2024:2273-1: moderate: Security update for podman
• SUSE-SU-2024:2260-1: important: Security update for pgadmin4
• SUSE-SU-2024:2261-1: moderate: Security update for postgresql15
• SUSE-SU-2024:2266-1: moderate: Security update for postgresql16
• SUSE-SU-2024:2267-1: low: Security update for libxml2
• SUSE-SU-2024:2268-1: moderate: Security update for squid
• SUSE-SU-2024:2272-1: critical: Security update for python-Js2Py
• SUSE-SU-2024:2254-1: low: Security update for python310
• SUSE-SU-2024:1639-2: important: Security update for python-arcomplete, python-Fabric, python-PyGithub, python-antlr4-python3-runtime, python-avro, python-chardet, python-distro, python-d ...
• SUSE-SU-2024:2394-1: important: Security update for the Linux Kernel
• SUSE-SU-2024:2359-1: important: Security update for freeradius-server
• SUSE-SU-2024:2366-1: important: Security update for freeradius-server
• SUSE-SU-2024:2372-1: important: Security update for the Linux Kernel
• SUSE-SU-2024:2362-1: important: Security update for the Linux Kernel

Ubuntu Linux

• [USN-6883-1] OpenStack Glance vulnerability
• [USN-6882-1] Cinder vulnerability
• [USN-6884-1] Nova vulnerability
• [USN-6880-1] Tomcat vulnerability
• [USN-6885-1] Apache HTTP Server vulnerabilities
• [USN-6886-1] Go vulnerabilities
• [USN-6887-1] OpenSSH vulnerability
• [USN-6888-1] Django vulnerabilities
• [USN-6881-1] Exim vulnerability
• [USN-6889-1] .NET vulnerabilities
• [USN-6890-1] Firefox vulnerabilities
• [USN-6868-2] Linux kernel (AWS) vulnerabilities
• [USN-6892-1] Linux kernel (IBM) vulnerabilities
• [USN-6866-3] Linux kernel (Azure) vulnerabilities
• [USN-6888-2] Django vulnerabilities
• [USN-6891-1] Python vulnerabilities
• [USN-6864-3] Linux kernel (GKE) vulnerabilities
• [USN-6894-1] Apport vulnerabilities
• [USN-6885-2] Apache HTTP Server regression
• [USN-6896-1] Linux kernel vulnerabilities
• [USN-6895-1] Linux kernel vulnerabilities