Rocky Linux

Rocky Linux 9 — shadow-utils — vulnerability — patch and remediation guide — diagnosis and fix on Rocky Linux 9

Rocky Linux 9 — shadow-utils — vulnerability — patch and remediation guide

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 9 📖 ~4 min read  •  Source: Rocky Linux RXSA RLSA-2025:20559 Related CVEs: CVE-2024-56433 Upstream summary: The shadow-utils packages include programs for converting UNIX password files to the shadow password format, as well as utilities for managing user and group […]

Read more
Rocky Linux 9 — gcc-toolset-13-gcc — vulnerability — patch and remediation guide — diagnosis and fix on Rocky Linux 9

Rocky Linux 9 — gcc-toolset-13-gcc — vulnerability — patch and remediation guide

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 9 📖 ~4 min read  •  Source: Rocky Linux RXSA RLEA-2024:4768 Upstream summary: The gcc-toolset-13-gcc13 package contains the GNU Compiler Collection version 13. Bug Fix(es) and Enhancement(s): * ship a Rocky Linux 9.4.z equivalent of the Rocky Linux 9.5 gcc-toolset-13-gcc […]

Read more
Rocky Linux 10 — cockpit — vulnerability — patch and remediation guide — diagnosis and fix on Rocky Linux 10

Rocky Linux 10 — cockpit — vulnerability — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 10 📖 ~4 min read  •  Source: Rocky Linux RXSA RLSA-2026:7383 Related CVEs: CVE-2026-4631 Upstream summary: Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, […]

Read more
Rocky Linux 10 — nginx — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on Rocky Linux 10

Rocky Linux 10 — nginx — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 10 📖 ~4 min read  •  Source: Rocky Linux RXSA RLSA-2026:18063 Related CVEs: CVE-2026-42945 CVE-2026-27651 CVE-2026-27654 CVE-2026-27784 CVE-2026-32647 CVE-2026-1642 Upstream summary: nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, […]

Read more
Rocky Linux 10 — keylime — multiple vulnerabilities (2 CVEs) — patch and remediation guide — diagnosis and fix on Rocky Linux 10

Rocky Linux 10 — keylime — multiple vulnerabilities (2 CVEs) — patch and remediation guide

🔴 Critical   ⏱ 15–90 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 10 📖 ~4 min read  •  Source: Rocky Linux RXSA RLSA-2026:2225 Related CVEs: CVE-2026-1709 CVE-2025-13609 Upstream summary: Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. Security Fix(es): * keylime: Keylime: Authentication bypass allows […]

Read more
Rocky Linux 10 — image-builder — multiple vulnerabilities (5 CVEs) — patch and remediation guide — diagnosis and fix on Rocky Linux 10

Rocky Linux 10 — image-builder — multiple vulnerabilities (5 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 10 📖 ~4 min read  •  Source: Rocky Linux RXSA RLSA-2026:13642 Related CVEs: CVE-2026-25679 CVE-2025-61726 CVE-2025-61729 CVE-2025-68121 CVE-2025-58183 Upstream summary: A local binary for building customized OS artifacts such as VM images and OSTree commits. Uses osbuild under the hood. […]

Read more
Rocky Linux 10 — java-25-openjdk — multiple vulnerabilities (15 CVEs) — patch and remediation guide — diagnosis and fix on Rocky Linux 10

Rocky Linux 10 — java-25-openjdk — multiple vulnerabilities (15 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 10 📖 ~4 min read  •  Source: Rocky Linux RXSA RLSA-2026:9693 Related CVEs: CVE-2026-22007 CVE-2026-22008 CVE-2026-22013 CVE-2026-22016 CVE-2026-22018 CVE-2026-22021 CVE-2026-23865 CVE-2026-26740  +7 more Upstream summary: The OpenJDK 25 packages provide the OpenJDK 25 Java Runtime Environment and the OpenJDK 25 […]

Read more
Rocky Linux 10 — openssh — multiple vulnerabilities (9 CVEs) — patch and remediation guide — diagnosis and fix on Rocky Linux 10

Rocky Linux 10 — openssh — multiple vulnerabilities (9 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 10 📖 ~4 min read  •  Source: Rocky Linux RXSA RLSA-2026:13380 Related CVEs: CVE-2026-35385 CVE-2026-35386 CVE-2026-35387 CVE-2026-35388 CVE-2026-35414 CVE-2026-3497 CVE-2025-61984 CVE-2025-61985  +1 more Upstream summary: OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar […]

Read more
Rocky Linux 10 — osbuild-composer — multiple vulnerabilities (6 CVEs) — patch and remediation guide — diagnosis and fix on Rocky Linux 10

Rocky Linux 10 — osbuild-composer — multiple vulnerabilities (6 CVEs) — patch and remediation guide

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Rocky Linux 10 📖 ~4 min read  •  Source: Rocky Linux RXSA RLSA-2026:13643 Related CVEs: CVE-2026-25679 CVE-2025-61726 CVE-2025-61728 CVE-2025-61729 CVE-2025-68121 CVE-2025-58183 Upstream summary: A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the […]

Read more
CHAT