Here is a roundup of last week's Linux security updates for Arch Linux, AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Arch Linux

• [ASA-202505-14] bind: denial of service
• [ASA-202505-13] varnish: content spoofing

AlmaLinux

• ALSA-2025:7422: ghostscript security update (Moderate)
• ALSA-2025:7425: osbuild-composer security update (Important)
• ALSA-2025:7893: grafana security update (Important)
• ALSA-2025:7903: kernel security update (Important)
• ALSA-2025:7395: 389-ds-base security update (Moderate)
• ALSA-2025:7423: kernel security update (Important)
• ALSA-2025:8136: python-tornado security update (Important)
• ALSA-2025:8126: libsoup security update (Important)
• ALSA-2025:8132: libsoup security update (Important)
• ALSA-2025:8183: gstreamer1-plugins-bad-free security update (Important)
• ALSA-2025:8201: gstreamer1-plugins-bad-free security update (Important)
• ALSA-2025:8247: kernel-rt security update (Moderate)
• ALSA-2025:8246: kernel security update (Moderate)
• ALSA-2025:8142: kernel security update (Moderate)
• ALSA-2025:7509: valkey security update (Important)
• ALSA-2025:8125: firefox security update (Important)
• ALSA-2025:8047: unbound security update (Moderate)
• ALSA-2025:7601: .NET 9.0 security update (Important)
• ALSA-2025:7599: .NET 8.0 security update (Important)
• ALSA-2025:7593: ghostscript security update (Moderate)
• ALSA-2025:7524: xz security update (Important)
• ALSA-2025:8131: ruby security update (Moderate)
• ALSA-2025:7517: sqlite security update (Important)
• ALSA-2025:7500: perl security update (Important)
• ALSA-2025:8184: gstreamer1-plugins-bad-free security update (Important)
• ALSA-2025:8128: libsoup3 security update (Important)
• ALSA-2025:8293: firefox security update (Important)
• ALSA-2025:8292: mingw-freetype security update (Important)
• ALSA-2025:8308: firefox security update (Important)
• ALSA-2025:8196: thunderbird security update (Important)

Debian GNU/Linux

• [DLA 4178-1] linux security update
• ELA-1433-1 glib2.0 security update
• ELA-1435-1 libfcgi-perl security update
• ELA-1434-1 subversion security update
• ELA-1437-1 libbson security update
• ELA-1436-1 gimp security update
• [DLA 4179-1] libavif security update
• [DLA 4180-1] pgbouncer security update
• [DLA 4181-1] glibc security update
• [DLA 4182-1] syslog-ng security update
• [DLA 4183-1] setuptools security update
• [DLA 4188-1] python-tornado security update
• [DLA 4185-1] yelp-xsl security update
• [DLA 4184-1] yelp security update
• [DSA 5923-2] net-tools regression update
• [DSA 5928-1] libvpx security update
• [DSA 5927-1] yelp security update
• [DSA 5926-1] firefox-esr security update
• ELA-1441-1 modsecurity-apache security update
• ELA-1440-1 webpy security update
• ELA-1438-1 yelp security update
• [DLA 4187-1] varnish security update
• [DLA 4186-1] php-twig security update
• [DLA 4189-1] webpy security update
• [DLA 4193-1] linux-6.1 security update
• [DLA 4192-1] modsecurity-apache security update
• [DLA 4191-1] firefox-esr security update
• [DLA 4190-1] mydumper security update
• [DSA 5931-1] systemd security update
• [DSA 5930-1] libavif security update
• [DSA 5929-1] chromium security update
• ELA-1442-1 linux-5.10 security update
• ELA-1443-1 linux-6.1 security update
• ELA-1444-1 kmail-account-wizard security update
• [DLA 4194-1] thunderbird security update
• [DLA 4195-1] krb5 security update
• [DLA 4197-1] python-flask-cors security update
• [DLA 4196-1] kmail-account-wizard security update
• [DSA 5932-1] thunderbird security update
• ELA-1447-1 net-tools security update
• ELA-1445-1 espeak-ng security update
• ELA-1446-1 libvpx security update
• [DLA 4198-1] espeak-ng security update
• [DLA 4202-1] net-tools security update
• [DLA 4201-1] libvpx security update
• [DLA 4200-1] symfony security update

Fedora Linux

• Fedora 41 Update: nbdkit-1.40.6-1.fc41
• Fedora 42 Update: microcode_ctl-2.1-70.fc42
• Fedora 42 Update: nodejs20-20.19.2-1.fc42
• Fedora 42 Update: nodejs22-22.15.1-1.fc42
• Fedora 41 Update: xen-4.19.2-3.fc41
• Fedora 41 Update: docker-buildx-0.24.0-1.fc41
• Fedora 41 Update: maturin-1.8.6-1.fc41
• Fedora 41 Update: rust-rusqlite-0.31.0-6.fc41
• Fedora 41 Update: rust-hashlink-0.10.0-1.fc41
• Fedora 41 Update: ruff-0.11.5-2.fc41
• Fedora 41 Update: dnsdist-1.9.10-1.fc41
• Fedora 42 Update: thunderbird-128.11.0-1.fc42
• Fedora 42 Update: coreutils-9.6-4.fc42
• Fedora 42 Update: ruff-0.11.5-2.fc42
• Fedora 42 Update: rust-rusqlite-0.31.0-6.fc42
• Fedora 42 Update: rust-hashlink-0.10.0-1.fc42
• Fedora 42 Update: docker-buildx-0.24.0-1.fc42
• Fedora 42 Update: maturin-1.8.6-1.fc42
• Fedora 42 Update: dnsdist-1.9.10-1.fc42
• Fedora 42 Update: mingw-python-flit-core-3.12.0-1.fc42
• Fedora 42 Update: mingw-python-flask-3.1.1-1.fc42
• Fedora 42 Update: firefox-139.0-1.fc42
• Fedora 42 Update: python-tornado-6.4.1-3.fc42
• Fedora 41 Update: dropbear-2025.88-1.fc41
• Fedora 41 Update: gstreamer1-plugins-bad-free-1.24.11-2.fc41
• Fedora 41 Update: python-tornado-6.3.3-9.fc41
• Fedora 41 Update: thunderbird-128.11.0-1.fc41
• Fedora 42 Update: systemd-257.6-1.fc42

Oracle Linux

• ELSA-2025-8183 Important: Oracle Linux 9 gstreamer1-plugins-bad-free security update
• ELSA-2025-8136 Important: Oracle Linux 9 python-tornado security update
• ELSA-2025-8126 Important: Oracle Linux 9 libsoup security update
• ELBA-2025-7398 Oracle Linux 9 .NET 8.0 bug fix and enhancement update
• ELBA-2025-7396 Oracle Linux 9 pcp bug fix and enhancement update
• ELBA-2025-7394 Oracle Linux 9 .NET 9.0 bug fix and enhancement update
• ELBA-2025-20339 Oracle Linux 9 redis bug fix update
• ELBA-2025-20337 Oracle Linux 9 rsyslog bug fix update
• ELSA-2025-7903 Important: Oracle Linux 9 kernel security update
• ELSA-2025-7438 Important: Oracle Linux 9 redis security update
• ELSA-2025-7433 Important: Oracle Linux 9 nodejs:22 security update
• ELSA-2025-7432 Moderate: Oracle Linux 9 php:8.2 security update
• ELSA-2025-7431 Moderate: Oracle Linux 9 php security update
• ELBA-2025-7442 Oracle Linux 9 selinux-policy bug fix and enhancement update
• ELEA-2025-7445 Oracle Linux 9 tzdata bug fix and enhancement update
• ELSA-2025-7429 Important: Oracle Linux 9 redis:7 security update
• ELSA-2025-7423 Important: Oracle Linux 9 kernel security update
• ELSA-2025-7418 Important: Oracle Linux 9 php:8.3 security update
• ELBA-2025-7420 Oracle Linux 9 libvirt bug fix update
• ELBA-2025-7412 Oracle Linux 9 osbuild-composer bug fix and enhancement update
• ELBA-2025-7408 Oracle Linux 9 postgresql:16 bug fix and enhancement update
• ELBA-2025-7405 Oracle Linux 9 xorg-x11-drv-libinput bug fix update
• ELBA-2025-7400 Oracle Linux 9 qemu-kvm bug fix and enhancement update
• OLAMBA-2025-0005 Oracle Linux 8 ol-automation-manager bug fix update
• ELBA-2025-20338 Oracle Linux 9 btrfs-progs bug fix update
• ELBA-2025-20336 Oracle Linux 8 oVirt 4.5 ovirt-ansible-collection bug fix update
• ELSA-2025-8142 Moderate: Oracle Linux 9 kernel security update
• ELSA-2025-8197 Moderate: Oracle Linux 9 unbound security update
• ELBA-2025-8056-1 Oracle Linux 8 kernel bug fix update
• ELSA-2025-8203 Important: Oracle Linux 9 thunderbird security update
• ELBA-2025-8202 Oracle Linux 9 libguestfs bug fix update
• ELBA-2025-8200 Oracle Linux 9 virt-v2v bug fix update
• ELSA-2025-8201 Important: Oracle Linux 8 gstreamer1-plugins-bad-free security update
• ELSA-2025-8132 Important: Oracle Linux 8 libsoup security update
• ELBA-2025-20342 Oracle Linux 9 oracle-ocne-release-el9 bug fix update
• ELSA-2025-8293 Important: Oracle Linux 9 firefox security update
• ELBA-2025-8309 Oracle Linux 9 nmstate bug fix update
• ELSA-2025-20344 Important: Oracle Linux 9 systemd security update
• ELBA-2025-8246-1 Oracle Linux 8 kernel bug fix update
• ELBA-2025-20340 Oracle Linux 9 oraclelinux-release bug fix update
• ELSA-2025-8308 Important: Oracle Linux 8 firefox security update
• ELBA-2025-20341 Oracle Linux 8 oracle-ocne-release-el8 bug fix update
• ELSA-2025-20343 Important: Oracle Linux 8 systemd security update
• ELSA-2025-8246 Moderate: Oracle Linux 8 kernel security update

Red Hat Enterprise Linux

• RHSA-2025:8125: Important: firefox security update
• RHSA-2025:8131: Moderate: ruby security update
• RHSA-2025:8126: Important: libsoup security update
• RHSA-2025:8142: Moderate: kernel security update
• RHSA-2025:8140: Important: libsoup security update
• RHSA-2025:8139: Important: libsoup security update
• RHSA-2025:8137: Important: kernel security update
• RHSA-2025:8136: Important: python-tornado security update
• RHSA-2025:8135: Important: python-tornado security update
• RHSA-2025:8134: Important: kernel-rt security update
• RHSA-2025:8133: Important: kernel security update
• RHSA-2025:8132: Important: libsoup security update
• RHSA-2025:8128: Important: libsoup3 security update
• RHSA-2025:8183: Important: gstreamer1-plugins-bad-free security update
• RHSA-2025:8184: Important: gstreamer1-plugins-bad-free security update
• RHSA-2025:8181: Low: openldap security update
• RHSA-2025:8176: Low: openldap security update
• RHSA-2025:8147: Moderate: AMQ Broker 7.13.0.OPR.1.GA Container Images security update
• RHSA-2025:8195: Important: mingw-freetype and spice-client-win security update
• RHSA-2025:8194: Important: webkit2gtk3 security update
• RHSA-2025:8201: Important: gstreamer1-plugins-bad-free security update
• RHSA-2025:8219: Important: spice-client-win security update
• RHSA-2025:8248: Important: kernel security update
• RHSA-2025:8246: Moderate: kernel security update
• RHSA-2025:8247: Moderate: kernel-rt security update
• RHSA-2025:8221: Important: Red Hat Ansible Automation Platform 2.5 Container Release Update
• RHSA-2025:8226: Important: python-tornado security update
• RHSA-2025:8223: Important: python-tornado security update
• RHSA-2025:8203: Important: thunderbird security update
• RHSA-2025:8197: Moderate: unbound security update
• RHSA-2025:8196: Important: thunderbird security update
• RHSA-2025:8252: Important: libsoup security update
• RHSA-2025:8244: Important: Red Hat OpenShift Dev Spaces 3.21.0 release
• RHSA-2025:8256: Important: pcs security update
• RHSA-2025:8254: Important: pcs security update
• RHSA-2025:8267: Important: osbuild-composer security update
• RHSA-2025:8253: Important: spice-client-win security update
• RHSA-2025:8279: Important: pcs security update
• RHSA-2025:8278: Important: Errata Advisory for Red Hat OpenShift GitOps v1.16.1 security update
• RHSA-2025:8277: Important: Errata Advisory for Red Hat OpenShift GitOps v1.15.3 security update
• RHSA-2025:8274: Important: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update
• RHSA-2025:8269: Important: Red Hat OpenShift GitOps 1.16.1 security release
• RHSA-2025:8293: Important: firefox security update
• RHSA-2025:8292: Important: mingw-freetype and spice-client-win security update
• RHSA-2025:8288: Important: pcs security update
• RHSA-2025:8289: Important: pcs security update
• RHSA-2025:8291: Important: pcs security update
• RHSA-2025:8308: Important: firefox security update
• RHSA-2025:8294: Important: varnish:6 security update
• RHSA-2025:8290: Important: pcs security update
• RHSA-2025:8314: Important: zlib security update
• RHSA-2025:8310: Important: varnish:6 security update
• RHSA-2025:8323: Important: pcs security update
• RHSA-2025:8322: Important: pcs security update
• RHSA-2025:8319: Important: pcs security update
• RHSA-2025:8325: Important: thunderbird security update
• RHSA-2025:8324: Important: thunderbird security update
• RHSA-2025:8326: Important: thunderbird security update

Slackware Linux

• mozilla-firefox (SSA:2025-147-01)
• curl (SSA:2025-148-01)
• mozilla-thunderbird (SSA:2025-148-02)

SUSE Linux

• SUSE-SU-2025:01701-1: important: Security update for MozillaFirefox
• SUSE-SU-2025:01702-1: important: Security update for glibc
• SUSE-SU-2025:01703-1: moderate: Security update for xen
• SUSE-SU-2025:01704-1: important: Security update for python-setuptools
• SUSE-SU-2025:01707-1: important: Security update for the Linux Kernel
• SUSE-SU-2025:01709-1: important: Security update for python310-setuptools
• SUSE-SU-2025:01713-1: important: Security update for govulncheck-vulndb
• openSUSE-SU-2025:15167-1: moderate: libyelp0-42.2-4.1 on GA media
• openSUSE-SU-2025:15164-1: moderate: screen-4.9.1-5.1 on GA media
• openSUSE-SU-2025:15165-1: moderate: libnss_slurm2-24.11.5-1.1 on GA media
• openSUSE-SU-2025:15160-1: moderate: jetty-annotations-9.4.57-1.1 on GA media
• openSUSE-SU-2025:15166-1: moderate: umoci-0.5.0-1.1 on GA media
• openSUSE-SU-2025:15159-1: moderate: govulncheck-vulndb-0.0.20250523T151856-1.1 on GA media
• openSUSE-SU-2025:15161-1: moderate: jq-1.7.1-3.1 on GA media
• openSUSE-SU-2025:15163-1: moderate: python312-3.12.10-4.1 on GA media
• openSUSE-SU-2025:15162-1: moderate: prometheus-blackbox_exporter-0.24.0-3.1 on GA media
• openSUSE-SU-2025:15157-1: moderate: dnsdist-1.9.10-2.1 on GA media
• openSUSE-SU-2025:15156-1: moderate: bind-9.20.9-1.1 on GA media
• SUSE-SU-2025:01724-1: important: Security update for webkit2gtk3
• SUSE-SU-2025:01716-1: moderate: Security update for mariadb
• SUSE-SU-2025:01723-1: important: Security update for python39-setuptools
• SUSE-SU-2025:01717-1: important: Security update for gstreamer-plugins-bad
• SUSE-SU-2025:01718-1: important: Security update for gstreamer-plugins-bad
• SUSE-SU-2025:01725-1: important: Security update for gstreamer-plugins-bad
• openSUSE-SU-2025:15173-1: moderate: s390-tools-2.37.0-4.1 on GA media
• openSUSE-SU-2025:15169-1: moderate: containerd-1.7.27-1.1 on GA media
• SUSE-SU-2025:01735-1: low: Security update for wxWidgets-3_2
• SUSE-SU-2025:01737-1: important: Security update for gstreamer-plugins-bad
• SUSE-SU-2025:01738-1: important: Security update for jetty-minimal
• SUSE-SU-2025:01745-1: important: Security update for dnsdist
• SUSE-SU-2025:01746-1: important: Security update for webkit2gtk3
• SUSE-SU-2025:01748-1: moderate: Security update for postgresql15
• SUSE-SU-2025:01756-1: important: Security update for slurm_22_05
• SUSE-SU-2025:01759-1: important: Security update for slurm
• SUSE-SU-2025:01760-1: important: Security update for slurm
• SUSE-SU-2025:01758-1: important: Security update for slurm_23_02
• SUSE-SU-2025:01761-1: important: Security update for slurm_24_11
• SUSE-SU-2025:01766-1: moderate: Security update for postgresql16
• SUSE-SU-2025:01784-1: important: Security update for glibc
• SUSE-SU-2025:01776-1: moderate: Security update for iputils
• SUSE-SU-2025:01779-1: moderate: Security update for iputils
• SUSE-SU-2025:01774-1: important: Security update for python312-setuptools
• openSUSE-SU-2025:15177-1: moderate: ffmpeg-7-7.1.1-4.1 on GA media
• openSUSE-SU-2025:15180-1: moderate: icinga2-2.14.6-1.1 on GA media
• openSUSE-SU-2025:15182-1: moderate: nodejs-electron-35.5.0-1.1 on GA media
• openSUSE-SU-2025:15181-1: moderate: kea-2.6.3-1.1 on GA media
• openSUSE-SU-2025:15183-1: moderate: libopenssl-3-devel-3.5.0-3.1 on GA media
• openSUSE-SU-2025:15184-1: moderate: pluto-5.21.7-1.1 on GA media
• openSUSE-SU-2025:15179-1: moderate: govulncheck-vulndb-0.0.20250527T204717-1.1 on GA media
• openSUSE-SU-2025:15174-1: moderate: MozillaThunderbird-128.11.0-1.1 on GA media
• openSUSE-SU-2025:15176-1: moderate: curl-8.14.0-1.1 on GA media
• openSUSE-SU-2025:15178-1: moderate: golang-github-prometheus-alertmanager-0.28.1-2.1 on GA media

Ubuntu Linux

• [USN-7531-1] CRaC JDK 21 vulnerabilities
• [USN-7529-1] Apache Tika vulnerabilities
• [USN-7517-3] Linux kernel (BlueField) vulnerabilities
• [USN-7516-6] Linux kernel (IBM) vulnerabilities
• [USN-7524-1] Linux kernel (Raspberry Pi) vulnerabilities
• [USN-7532-1] GLib vulnerability
• [USN-7533-1] CRaC JDK 17 vulnerabilities
• [USN-7525-2] Tomcat vulnerability
• [USN-7534-1] Flask vulnerability
• [USN-7535-1] Intel Microcode vulnerabilities
• [USN-7510-6] Linux kernel (AWS FIPS) vulnerabilities
• [USN-7537-1] net-tools vulnerability
• [USN-7536-1] cifs-utils vulnerability
• [USN-7510-7] Linux kernel vulnerabilities
• [USN-7513-4] Linux kernel (HWE) vulnerabilities
• [USN-7521-3] Linux kernel vulnerabilities
• [USN-7541-1] GNU C Library vulnerability
• [USN-7538-1] FFmpeg vulnerabilities
• [USN-7544-1] Setuptools vulnerability
• [USN-7542-1] Kerberos vulnerability
• [USN-7543-1] libsoup vulnerabilities
• [USN-7537-2] net-tools regression
• [USN-7516-8] Linux kernel (FIPS) vulnerabilities
• [USN-7516-7] Linux kernel (AWS) vulnerabilities
• [USN-7513-5] Linux kernel (Oracle) vulnerabilities
• [USN-7516-9] Linux kernel (AWS) vulnerabilities
• [USN-7545-1] Apport vulnerability
• [USN-7530-1] ADOdb vulnerability