Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Qubes OS, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

AlmaLinux

• ALSA-2024:4567: java-11-openjdk security update (Important)

Debian GNU/Linux

• ELA-1140-1 imagemagick security update
• ELA-1141-1 krb5 security update
• ELA-1142-1 openjdk-8 security update
• ELA-1144-1 exim4 security update
• ELA-1143-1 aom security update
• [SECURITY] [DSA 5735-1] chromium security update

Fedora Linux

• [SECURITY] Fedora 40 Update: curl-8.6.0-9.fc40
• [SECURITY] Fedora 39 Update: xdg-desktop-portal-hyprland-1.3.3-2.fc39
• [SECURITY] Fedora 40 Update: obs-cef-5060^cr103.0.5060.134~git20231010.17f8588-6.fc40
• [SECURITY] Fedora 40 Update: kernel-6.9.12-200.fc40
• [SECURITY] Fedora 40 Update: xen-4.18.2-4.fc40
• [SECURITY] Fedora 39 Update: xen-4.17.4-2.fc39
• [SECURITY] Fedora 39 Update: chromium-127.0.6533.72-1.fc39
• [SECURITY] Fedora 39 Update: chromium-127.0.6533.88-2.fc39
• [SECURITY] Fedora 40 Update: chromium-127.0.6533.88-2.fc40
• [SECURITY] Fedora 40 Update: bind-dyndb-ldap-11.10-29.fc40
• [SECURITY] Fedora 40 Update: bind-9.18.28-2.fc40
• [SECURITY] Fedora 40 Update: hostapd-2.11-1.fc40
• [SECURITY] Fedora 40 Update: wpa_supplicant-2.11-1.fc40

Oracle Linux

• ELBA-2024-12556 Oracle Linux 8 dnf-plugin-spacewalk bug fix update
• ELBA-2024-12553 Oracle Linux 8 chrony bug fix update
• ELBA-2024-4764 Oracle Linux 9 cloud-init bug fix and enhancement update
• ELBA-2024-4753 Oracle Linux 9 nginx:1.22 module bug fix and enhancement update
• ELEA-2024-4763 Oracle Linux 9 nodejs:20 module bug fix and enhancement update
• ELSA-2024-4861 Moderate: Oracle Linux 9 squid security update
• ELBA-2024-4772 Oracle Linux 9 systemd bug fix update
• ELBA-2024-4750 Oracle Linux 9 nmstate bug fix update
• ELBA-2024-12560 Oracle Linux 9 rhnlib bug fix update
• ELBA-2024-12561 Oracle Linux 8 scap-security-guide bug fix update
• ELSA-2024-4928 Moderate: Oracle Linux 9 kernel security update
• ELBA-2024-12562 Oracle Linux 9 osbuild-composer bug fix update
• ELSA-2024-4935 Important: Oracle Linux 9 freeradius security update
• ELSA-2024-4936 Important: Oracle Linux 8 freeradius:3.0 security update
• ELBA-2024-12564 Oracle Linux 9 chkconfig bug fix update
• ELBA-2024-12563 Oracle Linux 8 chkconfig bug fix update
• ELBA-2024-12562 Oracle Linux 8 osbuild-composer bug fix update
• ELEA-2024-4768 Oracle Linux 9 gcc-toolset-13-gcc bug fix and enhancement update
• ELBA-2024-4777 Oracle Linux 9 kexec-tools bug fix update
• ELBA-2024-12565 Oracle Linux 9 scap-security-guide bug fix update
• ELBA-2024-12567 Oracle Linux 8 xfsprogs bug fix update
• ELBA-2024-12569 Oracle Linux 8 leapp-repository bug fix update

Qubes OS

• QSB-104: GUI-related security bugs

Red Hat Enterprise Linux

• RHSA-2024:4891: Important: Errata Advisory for Red Hat OpenShift GitOps v1.13.1 security update
• RHSA-2024:4893: Moderate: rhc-worker-script security update
• RHSA-2024:4902: Moderate: kernel security update
• RHSA-2024:4896: Important: python3.11 security update
• RHSA-2024:4894: Important: thunderbird security update
• RHSA-2024:4928: Moderate: kernel security update
• RHSA-2024:4853: Moderate: OpenShift Container Platform 4.15.24 packages and security update
• RHSA-2024:4850: Moderate: OpenShift Container Platform 4.15.24 bug fix and security update
• RHSA-2024:4922: Important: Red Hat Advanced Cluster Management 2.8.7 bug fixes and security updates
• RHSA-2024:4911: Important: freeradius security update
• RHSA-2024:4912: Important: freeradius security update
• RHSA-2024:4913: Important: freeradius:3.0 security update
• RHSA-2024:4910: Moderate: openssh security update
• RHSA-2024:4935: Important: freeradius security update
• RHSA-2024:4936: Important: freeradius:3.0 security update
• RHSA-2024:4934: Important: git-lfs security update
• RHSA-2024:4938: Important: httpd security update
• RHSA-2024:4933: Important: git-lfs security update
• RHSA-2024:4937: Important: varnish:6 security update
• RHSA-2024:4943: Important: httpd security update
• RHSA-2024:4848: Important: OpenShift Container Platform 4.13.46 security update
• RHSA-2024:4846: Moderate: OpenShift Container Platform 4.13.46 security update
• RHSA-2024:4858: Moderate: OpenShift Container Platform 4.16.5 packages and security update
• RHSA-2024:4973: Important: Errata Advisory for Red Hat OpenShift GitOps v1.12.5 security update
• RHSA-2024:4972: Important: Errata Advisory for Red Hat OpenShift GitOps v1.11.7 security update
• RHSA-2024:4971: Moderate: emacs security update
• RHSA-2024:4970: Important: kpatch-patch-4_18_0-305_120_1 security update
• RHSA-2024:4982: Important: OpenShift API for Data Protection (OADP) 1.3.3 security and bug fix update

Rocky Linux

• RLSA-2024:4935: Important: freeradius security update
• RLSA-2024:4928: Moderate: kernel security update
• RLSA-2024:4936: Important: freeradius:3.0 security update

Slackware Linux

• curl (SSA:2024-213-01)

SUSE Linux

• SUSE-SU-2024:2627-1: moderate: Security update for ghostscript
• SUSE-SU-2024:2619-1: important: Security update for libgit2
• SUSE-SU-2024:2631-1: important: Security update for freerdp
• SUSE-SU-2024:2625-1: important: Security update for p7zip
• SUSE-SU-2024:2635-1: important: Security update for openssl-3
• SUSE-SU-2024:2638-1: moderate: Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadprox ...
• SUSE-SU-2024:2633-1: important: Security update for gtk3
• SUSE-SU-2024:2639-1: moderate: Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-containe ...

Ubuntu Linux

• [USN-6916-1] Lua vulnerabilities
• [USN-6920-1] EDK II vulnerabilities
• [USN-6925-1] Linux kernel vulnerability
• [USN-6924-1] Linux kernel vulnerabilities
• [USN-6922-1] Linux kernel vulnerabilities
• [USN-6928-1] Python vulnerabilities
• [USN-6924-2] Linux kernel vulnerabilities
• [USN-6929-1] OpenJDK 8 vulnerabilities
• [USN-6931-1] OpenJDK 17 vulnerabilities
• [USN-6932-1] OpenJDK 21 vulnerabilities
• [USN-6930-1] OpenJDK 11 vulnerabilities
• [USN-6935-1] Prometheus Alertmanager vulnerability
• [USN-6934-1] MySQL vulnerabilities
• [USN-6937-1] OpenSSL vulnerabilities
• [USN-6933-1] ClickHouse vulnerabilities
• [USN-6939-1] Exim vulnerability
• [USN-6936-1] Apache Commons Collections vulnerability
• [USN-6913-2] phpCAS vulnerability
• [USN-6922-2] Linux kernel vulnerabilities
• [USN-6941-1] Python vulnerability
• [USN-6940-1] snapd vulnerabilities
• [USN-6943-1] Tomcat vulnerabilities
• [USN-6909-2] Bind vulnerabilities
• [USN-6942-1] Gross vulnerability