Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

AlmaLinux

• ALSA-2024:9452: pcp security update (Moderate)
• ALSA-2024:9331: krb5 security update (Moderate)
• ALSA-2024:9371: python3.9 security update (Moderate)
• ALSA-2024:9128: libvirt security update (Moderate)
• ALSA-2024:9136: qemu-kvm security update (Moderate)
• ALSA-2024:9474: krb5 security update (Important)
• ALSA-2024:9325: cockpit security update (Low)
• ALSA-2024:9553: webkit2gtk3 security update (Important)
• ALSA-2024:9454: podman security update (Important)
• ALSA-2024:9306: httpd security update (Moderate)
• ALSA-2024:9317: NetworkManager security update (Low)
• ALSA-2024:9167: poppler security update (Moderate)
• ALSA-2024:9450: python3.11 security update (Moderate)
• ALSA-2024:9449: bubblewrap and flatpak security update (Important)
• ALSA-2024:9187: bcc security update (Low)
• ALSA-2024:9194: python3.11-PyMySQL security update (Moderate)
• ALSA-2024:9088: edk2 security update (Moderate)
• ALSA-2024:9184: gtk3 security update (Moderate)
• ALSA-2024:9470: cups security update (Low)
• ALSA-2024:9405: vim security update (Low)
• ALSA-2024:9243: postfix security update (Moderate)
• ALSA-2024:9468: python3.9 security update (Moderate)
• ALSA-2024:9451: python3.12 security update (Moderate)
• ALSA-2024:9281: python-jwcrypto security update (Moderate)
• ALSA-2024:9193: python3.12-PyMySQL security update (Moderate)
• ALSA-2024:9548: openexr security update (Important)
• ALSA-2024:9122: xorg-x11-server security update (Moderate)
• ALSA-2024:9181: jose security update (Moderate)
• ALSA-2024:9093: xorg-x11-server-Xwayland security update (Moderate)
• ALSA-2024:9195: cyrus-imapd security update (Moderate)
• ALSA-2024:9559: libsoup security update (Important)
• ALSA-2024:9458: python3.11-urllib3 security update (Moderate)
• ALSA-2024:9541: expat security update (Moderate)
• ALSA-2024:9625: squid security update (Important)
• ALSA-2024:9827: libvpx security update (Moderate)
• ALSA-2024:9442: mingw-glib2 security update (Moderate)
• ALSA-2024:9457: python3.12-urllib3 security update (Moderate)
• ALSA-2024:9423: python-dns security update (Moderate)
• ALSA-2024:9150: python-jinja2 security update (Moderate)
• ALSA-2024:9404: libgcrypt security update (Moderate)
• ALSA-2024:9439: fontforge security update (Moderate)
• ALSA-2024:9158: lldpd security update (Moderate)
• ALSA-2024:9456: osbuild-composer security update (Important)
• ALSA-2024:9413: bluez security update (Moderate)
• ALSA-2024:9459: buildah security update (Important)
• ALSA-2024:9135: toolbox security update (Moderate)
• ALSA-2024:9098: skopeo security update (Moderate)
• ALSA-2024:9472: grafana-pcp security update (Important)
• ALSA-2024:9424: tpm2-tools security update (Low)
• ALSA-2024:9473: grafana security update (Important)
• ALSA-2024:9401: microcode_ctl security update (Moderate)
• ALSA-2024:9430: nano security update (Low)
• ALSA-2024:9200: runc security update (Moderate)
• ALSA-2024:9277: oci-seccomp-bpf-hook security update (Moderate)
• ALSA-2024:9188: bpftrace security update (Low)
• ALSA-2024:9089: containernetworking-plugins security update (Moderate)
• ALSA-2024:9180: mod_auth_openidc security update (Moderate)
• ALSA-2024:9185: iperf3 security update (Moderate)
• ALSA-2024:9115: grafana security update (Moderate)
• ALSA-2024:9114: gnome-shell and gnome-shell-extensions security update (Moderate)
• ALSA-2024:9144: webkit2gtk3 security update (Important)
• ALSA-2024:9552: thunderbird security update (Important)
• ALSA-2024:9554: firefox security update (Important)
• ALSA-2024:9097: buildah security update (Moderate)
• ALSA-2024:9543: .NET 9.0 security update (Important)
• ALSA-2024:9190: python3.12 security update (Moderate)
• ALSA-2024:9192: python3.11 security update (Moderate)
• ALSA-2024:9605: kernel security update (Moderate)
• ALSA-2024:9555: NetworkManager-libreswan security update (Important)
• ALSA-2024:9333: openssl security update (Low)

Debian GNU/Linux

• ELA-1237-1 smarty3 security update
• [DLA 3956-1] smarty3 security update
• [DLA 3959-1] guix security update
• [DLA 3958-1] libmodule-scandeps-perl security update
• [DLA 3957-1] needrestart security update
• [DSA 5816-1] libmodule-scandeps-perl security update
• [DSA 5815-1] needrestart security update
• ELA-1238-1 needrestart security update
• [DLA 3960-1] thunderbird security update
• [DLA 3954-2] postgresql-13 - regression update
• [DSA 5812-2] postgresql-15 regression update
• ELA-1239-1 qtbase-opensource-src security update
• [DLA 3961-1] webkit2gtk security update
• ELA-1240-1 glib2.0 security update
• [DLA 3962-1] glib2.0 security update
• [DSA 5817-1] chromium security update

Fedora Linux

• Fedora 40 Update: dotnet9.0-9.0.100-1.fc40
• Fedora 41 Update: lemonldap-ng-2.20.1-1.fc41
• Fedora 41 Update: mingw-expat-2.6.4-1.fc41
• Fedora 39 Update: lemonldap-ng-2.20.1-1.fc39
• Fedora 40 Update: lemonldap-ng-2.20.1-1.fc40
• Fedora 40 Update: mingw-expat-2.6.4-1.fc40
• Fedora 39 Update: chromium-130.0.6723.116-1.fc39
• Fedora 41 Update: llvm-test-suite-19.1.0-4.fc41
• Fedora 40 Update: llvm-test-suite-18.1.8-3.fc40
• [SECURITY] Fedora 41 Update: libsndfile-1.2.2-5.fc41
• [SECURITY] Fedora 41 Update: trafficserver-9.2.6-2.fc41
• [SECURITY] Fedora 40 Update: trafficserver-9.2.6-2.fc40
• [SECURITY] Fedora 40 Update: microcode_ctl-2.1-61.5.fc40
• [SECURITY] Fedora 39 Update: trafficserver-9.2.6-2.fc39
• [SECURITY] Fedora 39 Update: microcode_ctl-2.1-58.5.fc39
• [SECURITY] Fedora 40 Update: python3.6-3.6.15-39.fc40
• [SECURITY] Fedora 41 Update: php-8.3.14-1.fc41
• [SECURITY] Fedora 41 Update: python3.6-3.6.15-39.fc41
• [SECURITY] Fedora 41 Update: dotnet9.0-9.0.100-1.fc41

Gentoo Linux

• [ GLSA 202411-09 ] Perl: Multiple Vulnerabilities
• [ GLSA 202411-08 ] X.Org X server, XWayland: Multiple Vulnerabilities
• [ GLSA 202411-07 ] Pillow: Arbitrary code execution

Oracle Linux

• ELSA-2024-9644 Important: Oracle Linux 8 squid security update
• ELBA-2024-12826 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELBA-2024-12822 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELSA-2024-9689 Low: Oracle Linux 8 binutils security update
• ELBA-2024-9685 Oracle Linux 8 evolution bug fix update
• ELSA-2024-9636 Important: Oracle Linux 8 webkit2gtk3 security update
• ELBA-2024-9568 Oracle Linux 8 .NET 6.0 bug fix and enhancement update
• ELBA-2024-12826 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELBA-2024-12822 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELBA-2024-12822 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update
• ELBA-2024-12826 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update
• ELSA-2024-7553 Important: Oracle Linux 7 cups-filters security update (aarch64)
• ELSA-2024-12825 Moderate: Oracle Linux 7 giflib security update (aarch64)
• ELSA-2024-7553 Important: Oracle Linux 7 cups-filters security update
• ELSA-2024-12825 Moderate: Oracle Linux 7 giflib security update
• ELBA-2024-9464 Oracle Linux 9 java-1.8.0-openjdk bug fix update
• ELSA-2024-9541 Moderate: Oracle Linux 9 expat security update
• ELSA-2024-9474 Important: Oracle Linux 9 krb5 security update
• ELSA-2024-9472 Important: Oracle Linux 9 grafana-pcp security update
• ELSA-2024-9458 Moderate: Oracle Linux 9 python3.11-urllib3 security update
• ELSA-2024-9468 Moderate: Oracle Linux 9 python3.9 security update
• ELSA-2024-10090 Important: Oracle Linux 9 tigervnc security update
• ELSA-2024-9452 Moderate: Oracle Linux 9 pcp security update
• ELEA-2024-9463 Oracle Linux 9 OpenJDK 17 is now the default system-wide version of Java on RHEL 9
• ELSA-2024-9450 Moderate: Oracle Linux 9 python3.11 security update
• ELSA-2024-9451 Moderate: Oracle Linux 9 python3.12 security update
• ELSA-2024-9449 Important: Oracle Linux 9 bubblewrap and flatpak security update
• ELBA-2024-9567 Oracle Linux 9 .NET 6.0 bug fix and enhancement update
• ELEA-2024-9453 Oracle Linux 9 nodejs:20 bug fix and enhancement update
• ELEA-2024-9448 Oracle Linux 9 OpenJDK 11 is no longer the default system-wide version of Java on RHEL 9
• ELBA-2024-9683 Oracle Linux 9 evolution bug fix update
• ELBA-2024-9544 Oracle Linux 9 .NET 8.0 bug fix and enhancement update
• ELBA-2024-9549 Oracle Linux 9 .NET 8.0 bug fix and enhancement update
• ELBA-2024-9550 Oracle Linux 9 .NET 6.0 bug fix and enhancement update
• ELBA-2024-9471 Oracle Linux 9 samba bug fix update
• ELBA-2024-9469 Oracle Linux 9 sssd bug fix update
• ELBA-2024-9466 Oracle Linux 9 mutter bug fix update
• ELBA-2024-9462 Oracle Linux 9 freeradius bug fix update
• ELBA-2024-9465 Oracle Linux 9 java-21-openjdk bug fix update
• ELBA-2024-9461 Oracle Linux 9 bootc bug fix update
• ELBA-2024-9455 Oracle Linux 9 fence-agents bug fix update
• ELBA-2024-9460 Oracle Linux 9 containers-common bug fix update
• ELBA-2024-12828 Oracle Linux 9 emacs bug fix update
• ELBA-2024-12827 Oracle Linux 9 chkconfig bug fix update
• ELSA-2024-9459 Important: Oracle Linux 9 buildah security update
• ELSA-2024-9548 Important: Oracle Linux 9 openexr security update
• ELSA-2024-9555 Important: Oracle Linux 9 NetworkManager-libreswan security update
• ELSA-2024-9554 Important: Oracle Linux 9 firefox security update
• ELSA-2024-9827 Moderate: Oracle Linux 9 libvpx security update
• ELSA-2024-9625 Important: Oracle Linux 9 squid security update
• ELSA-2024-9605 Moderate: Oracle Linux 9 kernel security update
• ELSA-2024-9552 Important: Oracle Linux 9 thunderbird security update
• ELSA-2024-9559 Important: Oracle Linux 9 libsoup security update
• ELSA-2024-9473 Important: Oracle Linux 9 grafana security update
• ELSA-2024-9553 Important: Oracle Linux 9 webkit2gtk3 security update
• ELSA-2024-9543 Important: Oracle Linux 9 .NET 9.0 security update
• ELSA-2024-12830 Important: Oracle Linux 8 Unbreakable Enterprise kernel security update
• ELBA-2024-12829 Oracle Linux 8 leapp-repository bug fix update
• ELBA-2024-12810 Oracle Linux 8 oracle-ovirt-release-45-el8 bug fix update
• ELBA-2024-12832 Oracle Linux 8 crash bug fix update
• ELSA-2024-9738 Important: Oracle Linux 7 squid security update (aarch64)
• ELBA-2024-12831 Oracle Linux 7 krb5 bug fix update (aarch64)
• ELSA-2024-8795 Important: Oracle Linux 7 xerces-c security update (aarch64)
• ELSA-2024-9738 Important: Oracle Linux 7 squid security update
• ELSA-2024-8795 Important: Oracle Linux 7 xerces-c security update
• ELBA-2024-12831 Oracle Linux 7 krb5 bug fix update
• ELBA-2024-12817 Oracle Linux 8 oVirt 4.5 ovirt-engine ovirt-dependencies ovirt-ansible-collection bug fix update
• ELSA-2024-9470 Low: Oracle Linux 9 cups security update
• ELSA-2024-12830 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update
• ELSA-2024-9454 Important: Oracle Linux 9 podman security update
• ELSA-2024-9457 Moderate: Oracle Linux 9 python3.12-urllib3 security update
• ELSA-2024-12830 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update
• ELBA-2024-12816 Oracle Linux 8 oVirt 4.5 aopalliance bug fix update
• ELSA-2024-9456 Important: Oracle Linux 9 osbuild-composer security update

Red Hat Enterprise Linux

• RHSA-2024:9813: Important: squid:4 security update
• RHSA-2024:9819: Important: tigervnc security update
• RHSA-2024:9816: Important: tigervnc security update
• RHSA-2024:9820: Important: tigervnc security update
• RHSA-2024:8219: Moderate: Secondary Scheduler Operator for Red Hat OpenShift 1.2.2 for RHEL 9
• RHSA-2024:9827: Moderate: libvpx security update
• RHSA-2024:9815: Important: squid:4 security update
• RHSA-2024:9814: Important: squid:4 security update
• RHSA-2024:9818: Important: tigervnc security update
• RHSA-2024:9943: Moderate: kernel-rt security update
• RHSA-2024:9901: Important: tigervnc security update
• RHSA-2024:9894: Moderate: Red Hat Ansible Automation Platform 2.5 Product Release Update
• RHSA-2024:9941: Moderate: pam security update
• RHSA-2024:9915: Moderate: gnome-shell security update
• RHSA-2024:9960: Important: OpenShift API for Data Protection (OADP) 1.3.4 security and bug fix update
• RHSA-2024:9921: Moderate: edk2 security update
• RHSA-2024:9942: Moderate: kernel security update
• RHSA-2024:9945: Moderate: haproxy security update
• RHSA-2024:9946: Moderate: edk2 security update
• RHSA-2024:9930: Moderate: edk2 security update
• RHSA-2024:9912: Moderate: qemu-kvm security update
• RHSA-2024:9926: Moderate: buildah security update
• RHSA-2024:9956: Moderate: edk2 security update
• RHSA-2024:9922: Moderate: python3.11-urllib3 security update
• RHSA-2024:9923: Moderate: python3.12-urllib3 security update
• RHSA-2024:9615: Moderate: OpenShift Container Platform 4.16.23 bug fix and security update
• RHSA-2024:9613: Important: OpenShift Container Platform 4.17.5 security update
• RHSA-2024:9610: Moderate: OpenShift Container Platform 4.17.5 security update
• RHSA-2024:9618: Important: OpenShift Container Platform 4.16.23 packages and security update
• RHSA-2024:10090: Important: tigervnc security update
• RHSA-2024:9623: Important: OpenShift Container Platform 4.14.41 packages and security update
• RHSA-2024:9620: Important: OpenShift Container Platform 4.14.41 bug fix and security update
• RHSA-2024:9983: Moderate: RHOSP 17.1.4 (python-webob) security update
• RHSA-2024:9982: Important: RHOSP 17.1.4 (openstack-ironic) security update
• RHSA-2024:9978: Moderate: RHOSP 17.1.4 (openstack-tripleo-heat-templates) security update
• RHSA-2024:9988: Moderate: RHOSP 17.1.4 (python-requests) security update
• RHSA-2024:9989: Moderate: RHOSP 17.1.4 (python-webob) security update
• RHSA-2024:9986: Moderate: RHOSP 17.1.4 (python-sqlparse) security update
• RHSA-2024:10135: Low: Updated service-interconnect rhel9 container images for 1.4 LTS
• RHSA-2024:10133: Moderate: rhc-worker-script security update
• RHSA-2024:10183: Important: Red Hat Advanced Cluster Management 2.8.8 bug fixes and container updates
• RHSA-2024:10179: Important: Multicluster Engine for Kubernetes 2.3.8 bug fixes and container updates
• RHSA-2024:10178: Important: Red Hat build of Keycloak 26.0.6 Update
• RHSA-2024:10177: Important: Red Hat build of Keycloak 26.0.6 Images Update
• RHSA-2024:10176: Important: Red Hat build of Keycloak 24.0.9 Update
• RHSA-2024:10175: Important: Red Hat build of Keycloak 24.0.9 Images Update
• RHSA-2024:9984: Moderate: RHOSP 17.1.4 (python-sqlparse) security update
• RHSA-2024:9990: Moderate: RHOSP 17.1.4 (openstack-tripleo-common and python-tripleoclient) security update
• RHSA-2024:9991: Moderate: RHOSP 17.1.4 (openstack-tripleo-common and python-tripleoclient) security update
• RHSA-2024:9977: Moderate: RHOSP 17.1.4 (python-zipp) security update
• RHSA-2024:9976: Important: RHOSP 17.1.4 (python-werkzeug) security update
• RHSA-2024:9975: Important: RHOSP 17.1.4 (python-werkzeug) security update

Rocky Linux

• RLBA-2024:9186: gcc-toolset-13-gcc bug fix and enhancement update
• RLBA-2024:9286: postgresql:15 bug fix and enhancement update
• RLEA-2024:9453: nodejs:20 bug fix and enhancement update
• RLBA-2024:9211: containers-common bug fix and enhancement update
• RLEA-2024:9283: nodejs:22 bug fix and enhancement update
• RLBA-2024:9287: postgresql:16 bug fix and enhancement update
• RLBA-2024:9308: bind and bind-dyndb-ldap bug fix and enhancement update
• RLBA-2024:9146: grafana-pcp bug fix and enhancement update
• RLBA-2024:9112: qatengine:1.6.0 module bug fix and enhancement update
• RLSA-2024:9051: Important: podman security update
• RLSA-2024:9302: Moderate: emacs security update
• RLBA-2024:9284: postgresql bug fix and enhancement update
• RLSA-2024:9449: Important: bubblewrap and flatpak security update
• RLSA-2024:9548: Important: openexr security update
• RLBA-2024:9230: qt5-qtbase bug fix and enhancement update
• RLBA-2024:9138: libappstream-glib bug fix and enhancement update
• RLBA-2024:9270: libblkio bug fix and enhancement update
• RLBA-2024:9106: qatzip:1.2.0 module bug fix and enhancement update
• RLBA-2024:9107: qatlib:24.02.0 module bug fix and enhancement update
• RLBA-2024:9279: augeas bug fix and enhancement update

Slackware Linux

• php (SSA:2024-327-01)

SUSE Linux

• SUSE-SU-2024:4007-1: critical: Maintenance update for SUSE Manager 4.3 Release Notes
• SUSE-SU-2024:4011-1: moderate: Security update for SUSE Manager Client Tools
• SUSE-SU-2024:4035-1: moderate: Security update for expat
• SUSE-SU-2024:4036-1: moderate: Security update for httpcomponents-client, httpcomponents-core
• SUSE-SU-2024:4037-1: important: Security update for bea-stax, xstream
• openSUSE-SU-2024:14509-1: moderate: gh-2.62.0-1.1 on GA media
• openSUSE-SU-2024:0371-1: important: Security update for icinga2
• openSUSE-SU-2024:0372-1: important: Security update for icinga2
• openSUSE-SU-2024:0370-1: critical: Security update for cobbler
• openSUSE-SU-2024:14513-1: moderate: govulncheck-vulndb-0.0.20241119T173509-1.1 on GA media
• openSUSE-SU-2024:14511-1: moderate: chromedriver-131.0.6778.69-1.1 on GA media
• openSUSE-SU-2024:14512-1: moderate: cobbler-3.3.7-1.1 on GA media
• SUSE-SU-2024:4042-1: important: Security update for govulncheck-vulndb
• openSUSE-SU-2024:0373-1: important: Security update for chromium
• openSUSE-SU-2024:0374-1: important: Security update for chromium
• openSUSE-SU-2024:14517-1: moderate: traefik2-2.11.14-1.1 on GA media
• openSUSE-SU-2024:14515-1: moderate: govulncheck-vulndb-0.0.20241120T172248-1.1 on GA media
• openSUSE-SU-2024:14514-1: moderate: dcmtk-3.6.8-5.1 on GA media
• openSUSE-SU-2024:14516-1: moderate: iptraf-ng-1.2.2-1.1 on GA media
• openSUSE-SU-2024:14518-1: moderate: chromedriver-131.0.6778.85-1.1 on GA media

Ubuntu Linux

• [USN-7106-1] Tomcat vulnerabilities
• AsyncSSH, WebKitGTK, GLib, curl updates for Ubuntu
• [USN-7116-1] Python vulnerability
• [USN-7015-5] Python vulnerabilities
• [USN-7120-1] Linux kernel vulnerabilities
• [USN-7119-1] Linux kernel (IoT) vulnerabilities
• [USN-7122-1] Linux kernel vulnerability
• [USN-7089-7] Linux kernel (Low Latency) vulnerabilities
• [USN-7121-1] Linux kernel vulnerabilities
• [USN-7117-1] needrestart and Module::ScanDeps vulnerabilities
• [USN-7115-1] Waitress vulnerabilities
• [USN-7120-2] Linux kernel vulnerabilities
• [USN-7121-2] Linux kernel (Azure) vulnerabilities
• [USN-7123-1] Linux kernel (Azure) vulnerabilities
• [USN-7091-2] Ruby vulnerabilities
• [USN-7118-1] ZBar vulnerabilities
• [USN-7015-6] Python regressions
• [USN-7120-3] Linux kernel (Low Latency) vulnerabilities