Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

AlmaLinux

• ALSA-2025:4229: thunderbird security update (Important)
• ALSA-2025:4244: glibc security update (Moderate)
• ALSA-2025:4263: php:8.1 security update (Moderate)

Debian GNU/Linux

• ELA-1409-1 zabbix security update
• ELA-1410-1 python3.7 security update
• [DLA 4140-1] libsoup2.4 security update
• [DSA 5907-1] linux security update
• [DLA 4141-1] poppler security update
• [DSA 5908-1] libreoffice security update
• [DLA 4142-1] libraw security update
• [DLA 4143-1] glibc security update
• ELA-1412-1 libxml2 security update
• ELA-1411-1 expat security update
• [DLA 4146-1] libxml2 security update
• [DLA 4145-1] expat security update
• [DLA 4150-1] u-boot security update
• [DLA 4149-1] nagvis security update
• [DLA 4126-2] jinja2 regression update
• [DLA 4148-1] vips security update
• [DLA 4147-1] fig2dev security update
• [DLA 4144-1] qemu security update
• [DSA 5911-1] request-tracker4 security update
• [DSA 5909-1] request-tracker5 security update
• [DSA 5910-1] firefox-esr security update
• ELA-1413-1 mysql-connector-python security update
• [DLA 4151-1] golang-github-gorilla-csrf security update
• [DLA 4152-1] nodejs security update
• [DSA 5913-1] openjdk-17 security update
• [DSA 5912-1] thunderbird security update
• [DSA 5914-1] chromium security update
• ELA-1414-1 postgresql-9.6 security update
• [DSA 5915-1] vips security update
• ELA-1415-1 nodejs security update

Fedora Linux

• [SECURITY] Fedora 42 Update: caddy-2.10.0-1.fc42
• Fedora 40 Update: digikam-8.6.0-4.fc40
• Fedora 40 Update: icecat-115.22.0-2.rh1.fc40
• Fedora 40 Update: mingw-LibRaw-0.21.4-1.fc40
• Fedora 40 Update: perl-5.38.4-508.fc40
• Fedora 40 Update: perl-Devel-Cover-1.40-9.fc40
• Fedora 40 Update: perl-PAR-Packer-1.063-3.fc40
• Fedora 41 Update: digikam-8.6.0-4.fc41
• Fedora 41 Update: icecat-115.22.0-2.rh1.fc41
• Fedora 41 Update: mingw-LibRaw-0.21.4-1.fc41
• Fedora 42 Update: digikam-8.6.0-4.fc42
• Fedora 42 Update: icecat-115.22.0-2.rh1.fc42
• Fedora 42 Update: mingw-LibRaw-0.21.4-1.fc42
• Fedora 40 Update: giflib-5.2.2-6.fc40
• Fedora 42 Update: firefox-138.0-1.fc42
• Fedora 42 Update: thunderbird-128.9.2-1.fc42
• Fedora 40 Update: golang-github-nvidia-container-toolkit-1.17.4-1.fc40
• Fedora 41 Update: thunderbird-128.10.0-1.fc41
• Fedora 41 Update: firefox-138.0-1.fc41
• Fedora 41 Update: golang-github-nvidia-container-toolkit-1.17.4-1.fc41
• Fedora 42 Update: golang-github-nvidia-container-toolkit-1.17.4-1.fc42
• Fedora 42 Update: chromium-136.0.7103.59-1.fc42
• Fedora 42 Update: thunderbird-128.10.0-1.fc42
• Fedora 42 Update: ntpd-rs-1.5.0-1.fc42
• Fedora 42 Update: rust-hickory-proto-0.24.4-1.fc42
• Fedora 42 Update: nodejs-pnpm-10.9.0-1.fc42
• Fedora 42 Update: nodejs-bash-language-server-5.6.0-2.fc42
• Fedora 42 Update: valkey-8.0.3-1.fc42
• Fedora 41 Update: ntpd-rs-1.5.0-1.fc41
• Fedora 41 Update: rust-hickory-proto-0.24.4-1.fc41
• Fedora 41 Update: nodejs-pnpm-10.9.0-1.fc41
• Fedora 41 Update: nodejs-bash-language-server-5.6.0-1.fc41
• Fedora 41 Update: valkey-8.0.3-1.fc41
• Fedora 40 Update: rust-hickory-proto-0.24.4-1.fc40
• Fedora 40 Update: ntpd-rs-1.5.0-1.fc40
• Fedora 40 Update: nodejs-bash-language-server-5.6.0-1.fc40
• Fedora 40 Update: nodejs-pnpm-10.9.0-1.fc40
• Fedora 40 Update: valkey-8.0.3-1.fc40
• Fedora 40 Update: redis-7.2.8-1.fc40
• Fedora 40 Update: chromium-136.0.7103.59-1.fc40
• Fedora 40 Update: java-17-openjdk-17.0.15.0.6-1.fc40

Oracle Linux

• ELSA-2025-3612 Important: Oracle Linux 7 libxslt security update
• ELBA-2025-20283 Oracle Linux 7 Unbreakable Enterprise kernel bug fix update
• ELBA-2025-20278 Oracle Linux 7 dtrace bug fix update
• ELBA-2025-4053 Oracle Linux 8 cloud-init bug fix and enhancement update
• ELBA-2025-4024 Oracle Linux 8 grub2 bug fix update
• ELBA-2025-20299 Oracle Linux 8 scap-security-guide bug fix update
• ELBA-2025-20297 Oracle Linux 8 nfs-utils bug fix update
• ELBA-2025-20295 Oracle Linux 8 leapp-repository bug fix update
• ELBA-2025-20283 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELBA-2025-20283 Oracle Linux 8 Unbreakable Enterprise kernel bug fix update
• ELBA-2025-20302 Oracle Linux 8 xfsprogs bug fix update
• ELBA-2025-20298 Oracle Linux 8 nfs-utils bug fix update
• ELSA-2025-4263 Moderate: Oracle Linux 9 php:8.1 security update
• ELSA-2025-4341 Important: Oracle Linux 9 kernel security update
• ELSA-2025-4244 Moderate: Oracle Linux 9 glibc security update
• ELSA-2025-4229 Important: Oracle Linux 9 thunderbird security update
• ELBA-2025-4351 Oracle Linux 9 libguestfs bug fix update
• ELBA-2025-4245 Oracle Linux 9 libxslt bug fix and enhancement update
• ELBA-2025-20301 Oracle Linux 9 OpenIPMI bug fix update
• ELBA-2025-20299 Oracle Linux 9 scap-security-guide bug fix update
• ELBA-2025-20285 Oracle Linux 9 libxslt bug fix update
• ELBA-2025-4065 Oracle Linux 8 doxygen bug fix update
• ELSA-2025-4362 Moderate: Oracle Linux 8 ghostscript security update

Red Hat Enterprise Linux

• RHSA-2025:4238: Important: Red Hat Ceph Storage 6.1 bug fix update
• RHSA-2025:4240: Important: Updated 6.1 container image is now available in the Red Hat Ecosystem Catalog.
• RHSA-2025:4227: Important: mod_auth_openidc:2.3 security update
• RHSA-2025:4229: Important: thunderbird security update
• RHSA-2025:4228: Important: mod_auth_openidc:2.3 security update
• RHSA-2025:4224: Important: mod_auth_openidc security update
• RHSA-2025:4225: Important: mod_auth_openidc security update
• RHSA-2025:4226: Important: Red Hat JBoss Enterprise Application Platform 7.1.10 on RHEL 7 security update
• RHSA-2025:4244: Moderate: glibc security update
• RHSA-2025:4250: Important: RHSA: Submariner 0.19.4 - bug fix and enhancement update
• RHSA-2025:4241: Moderate: glibc security update
• RHSA-2025:4243: Moderate: glibc security update
• RHSA-2025:4242: Moderate: glibc security update
• RHSA-2025:4263: Moderate: php:8.1 security update
• RHSA-2025:4204: Important: OpenShift Container Platform 4.17.27 bug fix and security update
• RHSA-2025:4203: Important: OpenShift Container Platform 4.17.27 security and extras update
• RHSA-2025:4341: Important: kernel security update
• RHSA-2025:4342: Moderate: kernel security update
• RHSA-2025:4339: Important: kernel security update
• RHSA-2025:4335: Important: Red Hat build of Keycloak 26.0.11 Images Update
• RHSA-2025:4336: Important: Red Hat build of Keycloak 26.0.11 Update
• RHSA-2025:4362: Moderate: ghostscript security update
• RHSA-2025:4340: Important: kernel-rt security update
• RHSA-2025:4177: Important: OpenShift Container Platform 4.14.51 bug fix and security update
• RHSA-2025:4389: Important: thunderbird security update
• RHSA-2025:4211: Important: OpenShift Container Platform 4.18.11 bug fix and security update

Slackware Linux

• mozilla-firefox (SSA:2025-119-01)
• mozilla-thunderbird (SSA:2025-119-02)

SUSE Linux

• openSUSE-SU-2025:15034-1: moderate: subfinder-2.7.0-3.1 on GA media
• openSUSE-SU-2025:15035-1: moderate: valkey-8.0.3-1.1 on GA media
• openSUSE-SU-2025:15033-1: moderate: govulncheck-vulndb-0.0.20250424T181457-1.1 on GA media
• SUSE-SU-2025:1381-1: moderate: Security update for cifs-utils
• openSUSE-SU-2025:15036-1: moderate: glow-2.1.0-2.1 on GA media
• [USN-7465-1] Mistral vulnerabilities
• [USN-7469-2] Apache Tomcat vulnerability
• [USN-7469-1] Apache Traffic Server vulnerability
• [USN-7466-1] KiCad vulnerabilities
• [USN-7459-2] Linux kernel (GCP) vulnerabilities
• [USN-7467-1] libxml2 vulnerabilities
• SUSE-SU-2025:1413-1: low: Security update for augeas
• SUSE-SU-2025:1416-1: important: Security update for the Linux Kernel (Live Patch 50 for SLE 15 SP3)
• SUSE-SU-2025:1420-1: important: Security update for redis
• SUSE-SU-2025:1418-1: important: Security update for the Linux Kernel (Live Patch 52 for SLE 15 SP3)
• SUSE-SU-2025:1419-1: important: Security update for redis
• openSUSE-SU-2025:0139-1: moderate: Security update for libjxl
• openSUSE-SU-2025:15037-1: moderate: amber-cli-1.13.1+git20250329.c2e3bb8-1.1 on GA media
• SUSE-SU-2025:1422-1: important: Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3)
• openSUSE Leap 16 Beta released
• openSUSE-SU-2025:15040-1: moderate: firefox-esr-128.10.0-1.1 on GA media
• openSUSE-SU-2025:15039-1: moderate: cmctl-2.2.0-1.1 on GA media
• SUSE-SU-2025:1423-1: important: Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP3)
• SUSE-SU-2025:1425-1: important: Security update for the Linux Kernel (Live Patch 32 for SLE 15 SP4)
• SUSE-SU-2025:1431-1: important: Security update for govulncheck-vulndb
• SUSE-SU-2025:1429-1: important: Security update for java-21-openjdk
• SUSE-SU-2025:1430-1: critical: Security update for python-h11
• SUSE-SU-2025:1433-1: important: Security update for redis
• SUSE-SU-2025:1434-1: moderate: Security update for poppler
• SUSE-SU-2025:1435-1: moderate: Security update for libxml2
• SUSE-SU-2025:1432-1: important: Security update for redis
• SUSE-SU-2025:1438-1: moderate: Security update for libxml2
• SUSE-SU-2025:1436-1: important: Security update for MozillaFirefox
• SUSE-SU-2025:1439-1: moderate: Security update for libxml2
• openSUSE-SU-2025:15042-1: moderate: MozillaThunderbird-128.10.0-1.1 on GA media
• openSUSE-SU-2025:15043-1: moderate: libsoup-3_0-0-3.6.5-3.1 on GA media
• openSUSE-SU-2025:15044-1: moderate: libsoup-2_4-1-2.74.3-9.1 on GA media
• openSUSE-SU-2025:15045-1: moderate: MozillaFirefox-138.0-1.1 on GA media

Ubuntu Linux

• [USN-7464-1] Jupyter Notebook vulnerability
• [USN-7455-5] Linux kernel (AWS) vulnerabilities
• [USN-7423-2] GNU binutils vulnerabilities
• [USN-7469-3] Node.js vulnerability
• [USN-7467-2] libxml2 vulnerabilities
• [USN-7469-4] H2O vulnerability
• [USN-7315-2] PostgreSQL vulnerability
• [USN-7471-1] poppler vulnerabilities
• [USN-7474-1] Docker vulnerabilities
• [USN-7473-1] Ghostscript vulnerability
• [USN-7472-1] Micropython vulnerabilities
• [USN-7475-1] Linux kernel (Xilinx ZynqMP) vulnerabilities
• [USN-7461-3] Linux kernel (Xilinx ZynqMP) vulnerabilities