Linux SecurityLinux SecurityLinux Security

X WhiteX WhiteX White

Oracle Linux Security Advisory ELSA-2025-20955
https://linux.oracle.com/errata/ELSA-2025-20955.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
redis-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.x86_64.rpm
redis-devel-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.x86_64.rpm
redis-doc-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.noarch.rpm
aarch64:
redis-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.aarch64.rpm
redis-devel-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.aarch64.rpm
redis-doc-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.noarch.rpm
SRPMS:
https://oss.oracle.com/ol9/SRPMS-updates/redis-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.src.rpm
Related CVEs:
CVE-2025-46817
CVE-2025-46818
CVE-2025-46819
CVE-2025-49844
Description of changes:
[7.2.11-1.0.1]
- Build with 64k pages to support redis on UEK on aarch64
[7.2.11-1]
- rebase to 7.2.11 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819
[7.2.10-1]
- rebase to 7.2.10 for CVE-2025-27151 CVE-2025-32023 and CVE-2025-48367
[7.2.8-1]
- rebase to 7.2.8 for CVE-2025-21605
[7.2.7-1]
- rebase to 7.2.7 for CVE-2024-46981 and CVE-2024-51741
[7.2.6-1]
- rebase to 7.2.6 RHEL-26628
_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle Linux 9: ELSA-2025-20955 Redis 7 Important Remote Access Risk

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[7.2.11-1.0.1] - Build with 64k pages to support redis on UEK on aarch64 [7.2.11-1] - rebase to 7.2.11 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819 [7.2.10-1] - rebase to 7.2.10 for CVE-2025-27151 CVE-2025-32023 and CVE-2025-48367 [7.2.8-1] - rebase to 7.2.8 for CVE-2025-21605 [7.2.7-1] - rebase to 7.2.7 for CVE-2024-46981 and CVE-2024-51741 [7.2.6-1] - rebase to 7.2.6 RHEL-26628

SRPMs

https://oss.oracle.com/ol9/SRPMS-updates/redis-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.src.rpm

x86_64

redis-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.x86_64.rpm redis-devel-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.x86_64.rpm redis-doc-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.noarch.rpm

aarch64

redis-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.aarch64.rpm redis-devel-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.aarch64.rpm redis-doc-7.2.11-1.0.1.module+el9.7.0+90709+dc2ec98a.noarch.rpm

i386

Severity

[画像:Oracle Linux Logo][画像:Oracle Linux Logo][画像:Oracle Linux Logo]

Related CVEs: CVE-2025-46817 CVE-2025-46818 CVE-2025-46819 CVE-2025-49844

Related News

[画像:Exploring AI Predictive Cybersecurity Models for Linux Systems][画像:Exploring AI Predictive Cybersecurity Models for Linux Systems][画像:Exploring AI Predictive Cybersecurity Models for Linux Systems]

Exploring AI Predictive Cybersecurity Models for Linux Systems

4 - 7 min read

Dec 03, 2025

It's always been a matter of responding to cybersecurity. Threats happen, defenses are made, attackers adjust their plans, and the cycle starts all

[画像:CISA Adds Actively Exploited ScadaBR XSS Bug to KEV, Raising Linux Security Concerns][画像:CISA Adds Actively Exploited ScadaBR XSS Bug to KEV, Raising Linux Security Concerns][画像:CISA Adds Actively Exploited ScadaBR XSS Bug to KEV, Raising Linux Security Concerns]

CISA Adds Actively Exploited ScadaBR XSS Bug to KEV, Raising Linux Security Concerns

3 - 5 min read

Dec 01, 2025

CISA added CVE-2021-26829 to its Known Exploited Vulnerabilities catalog after confirming that attackers are already using the ScadaBR stored XSS

[画像:Comprehending Fingerprinting Risks Faced by Linux Users Today][画像:Comprehending Fingerprinting Risks Faced by Linux Users Today][画像:Comprehending Fingerprinting Risks Faced by Linux Users Today]

Comprehending Fingerprinting Risks Faced by Linux Users Today

5 - 9 min read

Nov 28, 2025

Linux systems block a lot of noise that targets other platforms, but they still leak enough information through the browser to make users

[画像:UNC2891 Hackers Use Linux Malware in Major Banking Security Heists][画像:UNC2891 Hackers Use Linux Malware in Major Banking Security Heists][画像:UNC2891 Hackers Use Linux Malware in Major Banking Security Heists]

UNC2891 Hackers Use Linux Malware in Major Banking Security Heists

4 - 7 min read

Nov 26, 2025

UNC2891 has been working its way through gaps in ATM security and broader banking security by slipping small hardware implants into places most

[画像:How Holiday Leave Exposes Linux Security Gaps in Docker and Kubernetes Environments][画像:How Holiday Leave Exposes Linux Security Gaps in Docker and Kubernetes Environments][画像:How Holiday Leave Exposes Linux Security Gaps in Docker and Kubernetes Environments]

How Holiday Leave Exposes Linux Security Gaps in Docker and Kubernetes Environments

6 - 11 min read

Nov 26, 2025

You start to notice a pattern after a few long breaks. Systems hum along, dashboards stay quiet, and the room feels calmer than it should. That calm

[画像:Understanding the 80/20 Rule in Linux Vulnerability Management][画像:Understanding the 80/20 Rule in Linux Vulnerability Management][画像:Understanding the 80/20 Rule in Linux Vulnerability Management]

Understanding the 80/20 Rule in Linux Vulnerability Management

4 - 8 min read

Nov 26, 2025

Linux administrators deal with steady pressure from patching, configuration changes, and the slow accumulation of technical debt. Environments

[画像:Linux Security 2026: Emerging Risks Impacting Cloud and IoT Infrastructure][画像:Linux Security 2026: Emerging Risks Impacting Cloud and IoT Infrastructure][画像:Linux Security 2026: Emerging Risks Impacting Cloud and IoT Infrastructure]

Linux Security 2026: Emerging Risks Impacting Cloud and IoT Infrastructure

4 - 7 min read

Nov 24, 2025

Linux security sits at the center of modern infrastructure. Most production systems, cloud workloads, and IoT devices run on it in some form. That

[画像:Linux Integrity Verification: SHA256 and GPG Checks Explained][画像:Linux Integrity Verification: SHA256 and GPG Checks Explained][画像:Linux Integrity Verification: SHA256 and GPG Checks Explained]

Linux Integrity Verification: SHA256 and GPG Checks Explained

8 - 16 min read

Nov 21, 2025

Linux treats anything pulled from outside the system as untrusted until it is checked, and that expectation shapes how files move through real

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

News

Cloud Security Cryptography Desktop Security Firewall Government Hacks/Cracks IoT Security Network Security Organizations/Events Privacy Security Projects Security Trends Security Vulnerabilities Server Security Vendors/Products
Advisories

Debian Debian LTS Fedora Gentoo Mageia Oracle openSUSE RockyLinux Slackware SuSE Ubuntu
HOWTOs

Harden My Filesystem Learn Tips and Tricks Secure My E-mail Secure My Firewall Secure My Network Secure My Webserver Strengthen My Privacy
Features

Best Secure Linux Distros for Enhanced Privacy & Security The Truth About Linux Malware & How to Protect Your System Is Linux A More Secure Option Than Windows For Businesses? How Secure Is Linux? Top Tips for Securing Your Linux System
About Us

Advertise Contribute Your Article Legal Notice RSS Feeds Contact Us Terms of Service Privacy Policy
Powered By

[画像:Footer Logo][画像:Footer Logo][画像:Footer Logo]
Linux Security - Your source for Top Linux News, Advisories, HowTo's and Feature Release.

© 2024 Guardian Digital, Inc All Rights Reserved

You are now being logged in using your Facebook credentials