Rocky Linux 9 s390x CRB

proj-devel-9.6.0-3.el9_7.s390x

Mon, 20 Apr 2026 10:36:22 AM GMT

proj-devel - Development files for PROJ

This package contains libproj and the appropriate header files and man pages.

Change Log:

Tue, 10 Feb 2026 GMT - Filip Janus <fjanus@redhat.com> - 9.6.0-3
- Release bump to push it into compose

Mon, 05 May 2025 GMT - Ales Nezbeda <anezbeda@redhat.com> - 9.6.0-2
- Update to 9.6.0

Sat, 18 Jan 2025 GMT - Fedora Release Engineering <releng@fedoraproject.org> - 9.5.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild

...

openexr-devel-3.1.1-3.el9_7.1.s390x

Mon, 20 Apr 2026 10:30:22 AM GMT

openexr-devel - Development files for openexr

Development files for openexr.

Change Log:

Wed, 01 Apr 2026 GMT - Josef Ridky <jridky@redhat.com> - 3.1.1-3.1
- fix CVE-2026-27622

Wed, 23 Oct 2024 GMT - Josef Ridky <jridky@redhat.com> - 3.1.1-3
- fix CVE-2023-5481 (RHEL-23879)

giflib-devel-5.2.1-9.el9_7.1.s390x

Mon, 20 Apr 2026 10:30:05 AM GMT

giflib-devel - Development files for programs using the giflib library

The giflib-devel package includes header files, libraries necessary for
developing programs which use the giflib library.

Change Log:

Tue, 31 Mar 2026 GMT - Michal Hlavinka <mhlavink@redhat.com> - 5.2.1-9.1
- fix CVE-2026-23868: double free in GifMakeSavedImage (RHEL-154863)

dotnet-sdk-8.0-source-built-artifacts-8.0.126-1.el9_7.s390x

Fri, 17 Apr 2026 02:15:54 PM GMT

dotnet-sdk-8.0-source-built-artifacts - Internal package for building .NET 8.0 Software Development Kit

The .NET source-built archive is a collection of packages needed
to build the .NET SDK itself.

These are not meant for general use.

Change Log:

Wed, 08 Apr 2026 GMT - Omair Majid <omajid@redhat.com> - 8.0.126-1
- Update to .NET SDK 8.0.126 and Runtime 8.0.26
- Resolves: RHEL-163416

Tue, 03 Mar 2026 GMT - Dominik Rehák <drehak@redhat.com> - 8.0.125-1
- Update to .NET SDK 8.0.125 and Runtime 8.0.25
- Resolves: RHEL-152936

Mon, 02 Feb 2026 GMT - Omair Majid <omajid@redhat.com> - 8.0.124-1
- Update to .NET SDK 8.0.124 and Runtime 8.0.24
- Resolves: RHEL-144968

...

libwinpr-devel-2:2.11.7-1.el9_7.6.s390x

Fri, 17 Apr 2026 02:13:02 PM GMT

libwinpr-devel - Windows Portable Runtime development files

The freerdp-libwinpr-devel package contains libraries and header files for
developing applications that use freerdp-libwinpr.

Change Log:

Fri, 10 Apr 2026 GMT - Ondrej Holy <oholy@redhat.com> - 2:2.11.7-1.6
- Update CLEAR_VBAR_ENTRY size after alloc (CVE-2026-33984)
- Fail progressive_rfx_quant_sub on invalid values (CVE-2026-33983)
  Resolves: RHEL-162958, RHEL-162978

Tue, 31 Mar 2026 GMT - Ondrej Holy <oholy@redhat.com> - 2:2.11.7-1.5
- Fix use of nsc_process_message
  Resolves: RHEL-155993

Fri, 27 Mar 2026 GMT - Ondrej Holy <oholy@redhat.com> - 2:2.11.7-1.4
- Backport several CVE fixes
  Resolves: RHEL-148046, RHEL-148049, RHEL-148054, RHEL-148061, RHEL-148079
  Resolves: RHEL-148094, RHEL-148096, RHEL-148104, RHEL-148939, RHEL-149029
  Resolves: RHEL-149042, RHEL-149065, RHEL-155993

...

freerdp-devel-2:2.11.7-1.el9_7.6.s390x

Fri, 17 Apr 2026 02:13:02 PM GMT

freerdp-devel - Development files for freerdp

The freerdp-devel package contains libraries and header files for developing
applications that use freerdp-libs.

Change Log:

Fri, 10 Apr 2026 GMT - Ondrej Holy <oholy@redhat.com> - 2:2.11.7-1.6
- Update CLEAR_VBAR_ENTRY size after alloc (CVE-2026-33984)
- Fail progressive_rfx_quant_sub on invalid values (CVE-2026-33983)
  Resolves: RHEL-162958, RHEL-162978

Tue, 31 Mar 2026 GMT - Ondrej Holy <oholy@redhat.com> - 2:2.11.7-1.5
- Fix use of nsc_process_message
  Resolves: RHEL-155993

Fri, 27 Mar 2026 GMT - Ondrej Holy <oholy@redhat.com> - 2:2.11.7-1.4
- Backport several CVE fixes
  Resolves: RHEL-148046, RHEL-148049, RHEL-148054, RHEL-148061, RHEL-148079
  Resolves: RHEL-148094, RHEL-148096, RHEL-148104, RHEL-148939, RHEL-149029
  Resolves: RHEL-149042, RHEL-149065, RHEL-155993

...

dotnet-sdk-10.0-source-built-artifacts-10.0.106-1.el9_7.s390x

Fri, 17 Apr 2026 12:40:35 PM GMT

dotnet-sdk-10.0-source-built-artifacts - Internal package for building .NET 10.0 Software Development Kit

The .NET source-built archive is a collection of packages needed
to build the .NET SDK itself.

These are not meant for general use.

Change Log:

Wed, 08 Apr 2026 GMT - Omair Majid <omajid@redhat.com> - 10.0.106-1
- Update to .NET SDK 10.0.106 and Runtime 10.0.6
- Resolves: RHEL-163384

Tue, 03 Mar 2026 GMT - Dominik Rehák <drehak@redhat.com> - 10.0.104-1
- Update to .NET SDK 10.0.104 and Runtime 10.0.4
- Resolves: RHEL-152952

Mon, 02 Feb 2026 GMT - Omair Majid <omajid@redhat.com> - 10.0.103-1
- Update to .NET SDK 10.0.103 and Runtime 10.0.3
- Resolves: RHEL-144979

...

dotnet-sdk-9.0-source-built-artifacts-9.0.116-1.el9_7.s390x

Fri, 17 Apr 2026 12:36:47 PM GMT

dotnet-sdk-9.0-source-built-artifacts - Internal package for building .NET 9.0 Software Development Kit

The .NET source-built archive is a collection of packages needed
to build the .NET SDK itself.

These are not meant for general use.

Change Log:

Wed, 08 Apr 2026 GMT - Omair Majid <omajid@redhat.com> - 9.0.116-1
- Update to .NET SDK 9.0.116 and Runtime 9.0.15
- Resolves: RHEL-163394

Tue, 03 Mar 2026 GMT - Dominik Rehák <drehak@redhat.com> - 9.0.115-1
- Update to .NET SDK 9.0.115 and Runtime 9.0.14
- Resolves: RHEL-152944

Mon, 02 Feb 2026 GMT - Omair Majid <omajid@redhat.com> - 9.0.114-1
- Update to .NET SDK 9.0.114 and Runtime 9.0.13
- Resolves: RHEL-144976

...

bind9.18-devel-32:9.18.29-5.el9_7.4.s390x

Tue, 14 Apr 2026 07:19:17 PM GMT

bind9.18-devel - Header files and libraries needed for bind-dyndb-ldap

The bind9.18-devel package contains full version of the header files and libraries
required for building bind-dyndb-ldap. Upstream no longer supports nor recommends
bind libraries for third party applications.

Change Log:

Wed, 01 Apr 2026 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.18.29-5.4
- Correct backport issue in the patch (CVE-2026-1519)

Fri, 27 Mar 2026 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.18.29-5.3
- Prevent Denial of Service via maliciously crafted DNSSEC-validated zone
  (CVE-2026-1519)

Fri, 31 Oct 2025 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.18.29-5.2
- Fix upstream reported regression in recent CVE fix (CVE-2025-8677)
- Add upstream created test to this regression

...

bind-devel-32:9.16.23-34.el9_7.2.s390x

Tue, 14 Apr 2026 07:19:10 PM GMT

bind-devel - Header files and libraries needed for bind-dyndb-ldap

The bind-devel package contains full version of the header files and libraries
required for building bind-dyndb-ldap. Upstream no longer supports nor recommends
bind libraries for third party applications.

Change Log:

Fri, 27 Mar 2026 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.16.23-34.2
- Prevent Denial of Service via maliciously crafted DNSSEC-validated zone
  (CVE-2026-1519)

Wed, 29 Oct 2025 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.16.23-34.1
- Prevent cache poisoning due to weak PRNG (CVE-2025-40780)
- Replace downstream fixes with upstream changes
- Address various spoofing attacks (CVE-2025-40778)

Tue, 16 Sep 2025 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.16.23-34
- Fix failures in idna system test (RHEL-66172)

...

bind9.18-doc-32:9.18.29-5.el9_7.4.noarch

Tue, 14 Apr 2026 07:17:56 PM GMT

bind9.18-doc - BIND 9 Administrator Reference Manual

BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.

This package contains BIND 9 Administrator Reference Manual
in HTML and PDF format.

Change Log:

Wed, 01 Apr 2026 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.18.29-5.4
- Correct backport issue in the patch (CVE-2026-1519)

Fri, 27 Mar 2026 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.18.29-5.3
- Prevent Denial of Service via maliciously crafted DNSSEC-validated zone
  (CVE-2026-1519)

Fri, 31 Oct 2025 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.18.29-5.2
- Fix upstream reported regression in recent CVE fix (CVE-2025-8677)
- Add upstream created test to this regression

...

bind-doc-32:9.16.23-34.el9_7.2.noarch

Tue, 14 Apr 2026 07:17:54 PM GMT

bind-doc - BIND 9 Administrator Reference Manual

Change Log:

Fri, 27 Mar 2026 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.16.23-34.2
- Prevent Denial of Service via maliciously crafted DNSSEC-validated zone
  (CVE-2026-1519)

Wed, 29 Oct 2025 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.16.23-34.1
- Prevent cache poisoning due to weak PRNG (CVE-2025-40780)
- Replace downstream fixes with upstream changes
- Address various spoofing attacks (CVE-2025-40778)

Tue, 16 Sep 2025 GMT - Petr Menšík <pemensik@redhat.com> - 32:9.16.23-34
- Fix failures in idna system test (RHEL-66172)

...

nghttp2-1.43.0-6.el9_7.1.s390x

Mon, 13 Apr 2026 02:05:03 PM GMT

nghttp2 - Experimental HTTP/2 client, server and proxy

This package contains the HTTP/2 client, server and proxy programs.

Change Log:

Wed, 01 Apr 2026 GMT - Jan Macku <jamacku@redhat.com> - 1.43.0-6.1
- fix Denial of service: Assertion failure due to the missing state validation (CVE-2026-27135)

Wed, 10 Apr 2024 GMT - Jan Macku <jamacku@redhat.com> - 1.43.0-6
- fix CONTINUATION frames DoS (CVE-2024-28182, CVE-2024-27316)

libnghttp2-devel-1.43.0-6.el9_7.1.s390x

Mon, 13 Apr 2026 02:05:03 PM GMT

libnghttp2-devel - Files needed for building applications with libnghttp2

The libnghttp2-devel package includes libraries and header files needed
for building applications with libnghttp2.

Change Log:

Wed, 01 Apr 2026 GMT - Jan Macku <jamacku@redhat.com> - 1.43.0-6.1
- fix Denial of service: Assertion failure due to the missing state validation (CVE-2026-27135)

Wed, 10 Apr 2024 GMT - Jan Macku <jamacku@redhat.com> - 1.43.0-6
- fix CONTINUATION frames DoS (CVE-2024-28182, CVE-2024-27316)

libvirt-docs-10.10.0-15.9.el9_7.s390x

Wed, 08 Apr 2026 11:26:48 AM GMT

libvirt-docs - API reference and website documentation

Includes the API reference for the libvirt C library, and a complete
copy of the libvirt.org website documentation.

Change Log:

Wed, 11 Mar 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.9.el9_7
- Introduce EXPAND_CPU_FEATURES flag for domain capabilities (RHEL-154551)
- qemu: Implement VIR_CONNECT_GET_DOMAIN_CAPABILITIES_EXPAND_CPU_FEATURES (RHEL-154551)
- virsh: Add --expand-cpu-features option for domcapabilities (RHEL-154551)
- docs: Clarify host-model description in domain capabilities (RHEL-154551)

Wed, 11 Feb 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.8.el9_7
- qemu: Ignore cmp_legacy CPU flag (RHEL-148500)

Fri, 23 Jan 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.7.el9_7
- qemu_validate: Drop VIR_DOMAIN_HYPERV_SYNIC dependency on VIR_DOMAIN_HYPERV_VPINDEX (RHEL-140916)
- qemu_validate: Drop VIR_DOMAIN_HYPERV_STIMER dependency on VIR_DOMAIN_HYPERV_VPINDEX (RHEL-140916)

...

libvirt-devel-10.10.0-15.9.el9_7.s390x

Wed, 08 Apr 2026 11:26:48 AM GMT

libvirt-devel - Libraries, includes, etc. to compile with the libvirt library

Include header files & development libraries for the libvirt C library.

Change Log:

Wed, 11 Mar 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.9.el9_7
- Introduce EXPAND_CPU_FEATURES flag for domain capabilities (RHEL-154551)
- qemu: Implement VIR_CONNECT_GET_DOMAIN_CAPABILITIES_EXPAND_CPU_FEATURES (RHEL-154551)
- virsh: Add --expand-cpu-features option for domcapabilities (RHEL-154551)
- docs: Clarify host-model description in domain capabilities (RHEL-154551)

Wed, 11 Feb 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.8.el9_7
- qemu: Ignore cmp_legacy CPU flag (RHEL-148500)

Fri, 23 Jan 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.7.el9_7
- qemu_validate: Drop VIR_DOMAIN_HYPERV_SYNIC dependency on VIR_DOMAIN_HYPERV_VPINDEX (RHEL-140916)
- qemu_validate: Drop VIR_DOMAIN_HYPERV_STIMER dependency on VIR_DOMAIN_HYPERV_VPINDEX (RHEL-140916)

...

libvirt-daemon-plugin-sanlock-10.10.0-15.9.el9_7.s390x

Wed, 08 Apr 2026 11:26:48 AM GMT

libvirt-daemon-plugin-sanlock - Sanlock lock manager plugin for QEMU driver

Includes the Sanlock lock manager plugin for the QEMU
driver

Change Log:

Wed, 11 Mar 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.9.el9_7
- Introduce EXPAND_CPU_FEATURES flag for domain capabilities (RHEL-154551)
- qemu: Implement VIR_CONNECT_GET_DOMAIN_CAPABILITIES_EXPAND_CPU_FEATURES (RHEL-154551)
- virsh: Add --expand-cpu-features option for domcapabilities (RHEL-154551)
- docs: Clarify host-model description in domain capabilities (RHEL-154551)

Wed, 11 Feb 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.8.el9_7
- qemu: Ignore cmp_legacy CPU flag (RHEL-148500)

Fri, 23 Jan 2026 GMT - Jiri Denemark <jdenemar@redhat.com> - 10.10.0-15.7.el9_7
- qemu_validate: Drop VIR_DOMAIN_HYPERV_SYNIC dependency on VIR_DOMAIN_HYPERV_VPINDEX (RHEL-140916)
- qemu_validate: Drop VIR_DOMAIN_HYPERV_STIMER dependency on VIR_DOMAIN_HYPERV_VPINDEX (RHEL-140916)

...

python3-test-3.9.25-3.el9_7.2.s390x

Wed, 08 Apr 2026 11:24:23 AM GMT

python3-test - The self-test suite for the main python3 package

The self-test suite for the Python interpreter.

This is only useful to test Python itself. For testing general Python code,
you should use the unittest module from python3-libs, or a library such as
python3-pytest.

Change Log:

Thu, 26 Mar 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.9.25-3.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158052

Wed, 25 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.9.25-3.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143108 RHEL-143169 RHEL-144893

Wed, 14 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.9.25-3
- Security fix for CVE-2025-12084
Resolves: RHEL-135897

...

python3-idle-3.9.25-3.el9_7.2.s390x

Wed, 08 Apr 2026 11:24:23 AM GMT

python3-idle - A basic graphical development environment for Python

IDLE is Python’s Integrated Development and Learning Environment.

IDLE has the following features: Python shell window (interactive
interpreter) with colorizing of code input, output, and error messages;
multi-window text editor with multiple undo, Python colorizing,
smart indent, call tips, auto completion, and other features;
search within any window, replace within editor windows, and
search through multiple files (grep); debugger with persistent
breakpoints, stepping, and viewing of global and local namespaces;
configuration, browsers, and other dialogs.

Change Log:

Thu, 26 Mar 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.9.25-3.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158052

Wed, 25 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.9.25-3.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143108 RHEL-143169 RHEL-144893

Wed, 14 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.9.25-3
- Security fix for CVE-2025-12084
Resolves: RHEL-135897

...

python3-debug-3.9.25-3.el9_7.2.s390x

Wed, 08 Apr 2026 11:24:23 AM GMT

python3-debug - Debug version of the Python runtime

python3-debug provides a version of the Python runtime with numerous debugging
features enabled, aimed at advanced Python users such as developers of Python
extension modules.

This version uses more memory and will be slower than the regular Python build,
but is useful for tracking down reference-counting issues and other bugs.

The debug build shares installation directories with the standard Python
runtime. Python modules -- source (.py), bytecode (.pyc), and C-API extensions
(.cpython*.so) -- are compatible between this and the standard version
of Python.

The debug runtime additionally supports debug builds of C-API extensions
(with the "d" ABI flag) for debugging issues in those extensions.

Change Log:

Thu, 26 Mar 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.9.25-3.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158052

Wed, 25 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.9.25-3.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143108 RHEL-143169 RHEL-144893

Wed, 14 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.9.25-3
- Security fix for CVE-2025-12084
Resolves: RHEL-135897

...

nginx-mod-devel-2:1.20.1-24.el9_7.2.rocky.0.1.s390x

Wed, 08 Apr 2026 11:24:16 AM GMT

nginx-mod-devel - Nginx module development files

Nginx module development files.

Change Log:

Wed, 08 Apr 2026 GMT - Release Engineering <releng@rockylinux.org> - 2:1.20.1-24.2.rocky.0.1
- Replace static page(s)

Tue, 31 Mar 2026 GMT - Zdenek Dohnal <zdohnal@redhat.com> - 2:1.20.1-24.2
- Resolves: RHEL-159557 - CVE-2026-27654 nginx: NGINX: Denial of Service or file modification via buffer overflow in ngx_http_dav_module
- Resolves: RHEL-159536 - CVE-2026-27784 nginx: NGINX: Denial of Service due to memory corruption via crafted MP4 file
- Resolves: RHEL-159444 - CVE-2026-27651 nginx: NGINX: Denial of Service via undisclosed requests when ngx_mail_auth_http_module is enabled
- Resolves: RHEL-157885 - CVE-2026-32647 nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files

Thu, 19 Feb 2026 GMT - Luboš Uhliarik <luhliari@redhat.com> - 2:1.20.1-24.1
- Resolves: RHEL-146525 - nginx: NGINX: Data injection via man-in-the-middle
  attack on TLS proxied connections (CVE-2026-1642)

...

NetworkManager-libnm-devel-1:1.54.0-4.el9_7.s390x

Wed, 08 Apr 2026 11:24:10 AM GMT

NetworkManager-libnm-devel - Header files for adding NetworkManager support to applications.

This package contains the header and pkg-config files for development
applications using NetworkManager functionality from applications.

Change Log:

Mon, 09 Mar 2026 GMT - Ján Václav <jvaclav@redhat.com> - 1:1.54.0-4
- Fix unexpected lacp_active error in logs (RHEL-154243)

Mon, 20 Oct 2025 GMT - Íñigo Huguet <ihuguet@redhat.com> - 1:1.54.0-3
- Rebuild due to wrong buildroot picked in last build

Wed, 15 Oct 2025 GMT - Íñigo Huguet <ihuguet@redhat.com> - 1:1.54.0-2
- Support reapplying sriov.vfs (RHEL-113953)
- Fix removing unrelated OVS ports (RHEL-121103)

...

libperf-5.14.0-611.47.1.el9_7.s390x

Wed, 08 Apr 2026 09:41:02 AM GMT

libperf - The perf library from kernel source

This package contains the kernel source perf library.

Change Log:

Tue, 07 Apr 2026 GMT - Release Engineering <releng@rockylinux.org> - 5.14.0-611.47.1
- Replace sbat with Rocky Linux sbat (label)
- Change bug tracker URL (label)
- Ensure appended release in sbat is removed

Tue, 31 Mar 2026 GMT - CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.47.1.el9_7]
- net/mlx5: Fix ECVF vports unload on shutdown flow (CKI Backport Bot) [RHEL-154537] {CVE-2025-38109}
- netfilter: nf_tables: fix use-after-free in nf_tables_addchain() (CKI Backport Bot) [RHEL-153269] {CVE-2026-23231}
- ice: Fix PTP NULL pointer dereference during VSI rebuild (CKI Backport Bot) [RHEL-150245] {CVE-2026-23210}
- netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (CKI Backport Bot) [RHEL-149748] {CVE-2026-23111}

Thu, 26 Mar 2026 GMT - CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.46.1.el9_7]
- ice: fix page leak for zero-size Rx descriptors (CKI Backport Bot) [RHEL-154094]
- net: mana: Reduce waiting time if HWC not responding (Maxim Levitsky) [RHEL-92243]

...

kernel-cross-headers-5.14.0-611.47.1.el9_7.s390x

Wed, 08 Apr 2026 09:41:02 AM GMT

kernel-cross-headers - Header files for the Linux kernel for use by cross-glibc

Kernel-cross-headers includes the C header files that specify the interface
between the Linux kernel and userspace libraries and programs. The
header files define structures and constants that are needed for
building most standard programs and are also needed for rebuilding the
cross-glibc package.

Change Log:

Tue, 07 Apr 2026 GMT - Release Engineering <releng@rockylinux.org> - 5.14.0-611.47.1
- Replace sbat with Rocky Linux sbat (label)
- Change bug tracker URL (label)
- Ensure appended release in sbat is removed

Tue, 31 Mar 2026 GMT - CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.47.1.el9_7]
- net/mlx5: Fix ECVF vports unload on shutdown flow (CKI Backport Bot) [RHEL-154537] {CVE-2025-38109}
- netfilter: nf_tables: fix use-after-free in nf_tables_addchain() (CKI Backport Bot) [RHEL-153269] {CVE-2026-23231}
- ice: Fix PTP NULL pointer dereference during VSI rebuild (CKI Backport Bot) [RHEL-150245] {CVE-2026-23210}
- netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (CKI Backport Bot) [RHEL-149748] {CVE-2026-23111}

Thu, 26 Mar 2026 GMT - CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com> [5.14.0-611.46.1.el9_7]
- ice: fix page leak for zero-size Rx descriptors (CKI Backport Bot) [RHEL-154094]
- net: mana: Reduce waiting time if HWC not responding (Maxim Levitsky) [RHEL-92243]

...

fontforge-20201107-8.el9_7.s390x

Tue, 07 Apr 2026 03:33:47 PM GMT

fontforge - Outline and bitmap font editor

FontForge (former PfaEdit) is a font editor for outline and bitmap
fonts. It supports a range of font formats, including PostScript
(ASCII and binary Type 1, some Type 3 and Type 0), TrueType, OpenType
(Type2) and CID-keyed fonts.

Change Log:

Tue, 24 Mar 2026 GMT - Parag Nemade <pnemade AT redhat DOT com> - 20201107-8
- Resolves: RHEL-138245
  CVE-2025-15270 SFD File Parsing Remote Code Execution Vulnerability

Tue, 27 Jan 2026 GMT - Parag Nemade <pnemade AT redhat DOT com> - 20201107-7
- Resolves: RHEL-138206
  CVE-2025-15279 GUtils BMP File Parsing Heap-based Buffer Overflow
- Resolves: RHEL-138228
  CVE-2025-15275 SFD File Parsing Heap-based Buffer Overflow
- Resolves: RHEL-138158
  CVE-2025-15269 SFD File Parsing Use-After-Free

Tue, 02 Apr 2024 GMT - Parag Nemade <pnemade AT redhat DOT com> - 20201107-6
- Resolves: RHEL-26716 - CVE-2024-25081 and CVE-2024-25082 fontforge: various flaws

fwupd-devel-1.9.31-1.el9.rocky.0.2.s390x

Mon, 06 Apr 2026 07:33:55 PM GMT

fwupd-devel - Development package for fwupd

Files for development with fwupd.

Change Log:

Thu, 02 Apr 2026 GMT - Release Engineering <releng@rockylinux.org> - 1.9.31-1.rocky.0.2
- Rebuild for updated certificates
- Use system-sb-certs for certificates
- Patch macros to generate a proper sbat

Fri, 11 Jul 2025 GMT - Richard Hughes <richard@hughsie.com> 1.9.31-1
- Rebase to get new hardware support
- Resolves: #RHEL-82423

Tue, 18 Mar 2025 GMT - Richard Hughes <richard@hughsie.com> 1.9.29-1
- Rebase to get new hardware support
- Resolves: #RHEL-82423

...

libisoburn-devel-1.5.4-5.el9_7.s390x

Fri, 03 Apr 2026 06:18:20 PM GMT

libisoburn-devel - Development files for libisoburn

The libisoburn-devel package contains libraries and header files for
developing applications that use libisoburn.

Change Log:

Wed, 15 Jan 2025 GMT - Pavel Cahyna <pcahyna@redhat.com> - 1.5.4-5
- Fix upgrades from non-alternativized versions/packages

python3.11-test-3.11.13-5.2.el9_7.s390x

Fri, 03 Apr 2026 06:12:44 PM GMT

python3.11-test - The self-test suite for the main python3 package

The self-test suite for the Python interpreter.

This is only useful to test Python itself. For testing general Python code,
you should use the unittest module from python3.11-libs, or a library such as
python3.11-pytest.

Change Log:

Thu, 26 Mar 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.11.13-5.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158050

Fri, 27 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.11.13-5.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143104 RHEL-143167 RHEL-144890

Fri, 16 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.11.13-5
- Security fix for CVE-2025-13836
Resolves: RHEL-141025

...

python3.11-idle-3.11.13-5.2.el9_7.s390x

Fri, 03 Apr 2026 06:12:44 PM GMT

python3.11-idle - A basic graphical development environment for Python

Change Log:

Thu, 26 Mar 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.11.13-5.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158050

Fri, 27 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.11.13-5.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143104 RHEL-143167 RHEL-144890

Fri, 16 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.11.13-5
- Security fix for CVE-2025-13836
Resolves: RHEL-141025

...

python3.11-debug-3.11.13-5.2.el9_7.s390x

Fri, 03 Apr 2026 06:12:44 PM GMT

python3.11-debug - Debug version of the Python runtime

Change Log:

Thu, 26 Mar 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.11.13-5.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158050

Fri, 27 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.11.13-5.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143104 RHEL-143167 RHEL-144890

Fri, 16 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.11.13-5
- Security fix for CVE-2025-13836
Resolves: RHEL-141025

...

gstreamer1-plugins-bad-free-devel-1.22.12-5.el9_7.s390x

Fri, 03 Apr 2026 06:11:30 PM GMT

gstreamer1-plugins-bad-free-devel - Development files for the GStreamer media framework "bad" plug-ins

GStreamer is a streaming media framework, based on graphs of elements which
operate on media data.

This package contains the development files for the plug-ins that
aren't tested well enough, or the code is not of good enough quality.

Change Log:

Sat, 30 May 2026 GMT - Wim Taymans <wtaymans@redhat.com> - 1.22.12-5
- fix for CVE-2026-2923, CVE-2026-3082
  Resolves: RHEL-156231, RHEL-156248

Mon, 26 May 2025 GMT - Wim Taymans <wtaymans@redhat.com> - 1.22.12-4
- fix for CVE-2025-3887
  Resolves: RHEL-93059

Sat, 09 Nov 2024 GMT - Wim Taymans <wtaymans@redhat.com> - 1.22.12-3
- Rebuild
- Resolves: RHEL-38511, RHEL-41157

...

python3.12-idle-3.12.12-4.el9_7.2.s390x

Fri, 03 Apr 2026 06:10:13 PM GMT

python3.12-idle - A basic graphical development environment for Python

Change Log:

Fri, 27 Mar 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.12.12-4.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158051

Fri, 27 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.12.12-4.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143106 RHEL-143168 RHEL-144891

Mon, 19 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.12.12-4
- Release bump to correct the build for wrong release
Related: RHEL-141026

...

python3.12-debug-3.12.12-4.el9_7.2.s390x

Fri, 03 Apr 2026 06:10:13 PM GMT

python3.12-debug - Debug version of the Python runtime

Change Log:

Fri, 27 Mar 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.12.12-4.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158051

Fri, 27 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.12.12-4.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143106 RHEL-143168 RHEL-144891

Mon, 19 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.12.12-4
- Release bump to correct the build for wrong release
Related: RHEL-141026

...

python3.12-test-3.12.12-4.el9_7.2.s390x

Fri, 03 Apr 2026 06:10:13 PM GMT

python3.12-test - The self-test suite for the main python3 package

The self-test suite for the Python interpreter.

This is only useful to test Python itself. For testing general Python code,
you should use the unittest module from python3.12-libs, or a library such as
python3.12-pytest.

Change Log:

Fri, 27 Mar 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.12.12-4.2
- Security fix for CVE-2026-4519
Resolves: RHEL-158051

Fri, 27 Feb 2026 GMT - Tomáš Hrnčiar <thrnciar@redhat.com> - 3.12.12-4.1
- Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299
Resolves: RHEL-143106 RHEL-143168 RHEL-144891

Mon, 19 Jan 2026 GMT - Lumír Balhar <lbalhar@redhat.com> - 3.12.12-4
- Release bump to correct the build for wrong release
Related: RHEL-141026

...

opencryptoki-devel-3.25.0-4.el9_7.2.s390x

Fri, 03 Apr 2026 05:51:29 PM GMT

opencryptoki-devel - Development files for openCryptoki

This package contains the development header files for building
opencryptoki and PKCS#11 based applications

Change Log:

Tue, 03 Mar 2026 GMT - Than Ngo <than@redhat.com> - 3.25.0-4.2
- Resolves: RHEL-144820, Privilege Escalation or Data Exposure via Symlink Following

Tue, 03 Feb 2026 GMT - Than Ngo <than@redhat.com> - 3.25.0-4.1
- Fix unwrapping of attribute bound EC keys
- Fix private secure key blob import
  Resolves: RHEL-131644

Wed, 13 Aug 2025 GMT - Than Ngo <than@redhat.com> - 3.25.0-4
- Fix pkcsslotd fails to start in FIPS
- Drop tier1 test as it mostly provides duplicate results
- Enable ci test for FIPS mode
  Resolves: RHEL-109050

...

lvm2-devel-9:2.03.32-2.el9_7.2.s390x

Fri, 03 Apr 2026 05:28:11 PM GMT

lvm2-devel - Development libraries and headers

This package contains files needed to develop applications that use
the lvm2 libraries.

Change Log:

Fri, 06 Mar 2026 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2.el9_7.2
- Fix false positive warnings about stray FDs on s390x.

Mon, 10 Nov 2025 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2.el9_7.1
- Add message when activating RAID volumes with snapshots.

Tue, 03 Jun 2025 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2
- Fix vgremove hanging immediately after lockstart.
- Add repair option for RAID volumes with too many transiently failed devices.

...

device-mapper-event-devel-9:1.02.206-2.el9_7.2.s390x

Fri, 03 Apr 2026 05:28:11 PM GMT

device-mapper-event-devel - Development libraries and headers for the device-mapper event daemon

This package contains files needed to develop applications that use
the device-mapper event library.

Change Log:

Fri, 06 Mar 2026 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2.el9_7.2
- Fix false positive warnings about stray FDs on s390x.

Mon, 10 Nov 2025 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2.el9_7.1
- Add message when activating RAID volumes with snapshots.

Tue, 03 Jun 2025 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2
- Fix vgremove hanging immediately after lockstart.
- Add repair option for RAID volumes with too many transiently failed devices.

...

device-mapper-devel-9:1.02.206-2.el9_7.2.s390x

Fri, 03 Apr 2026 05:28:11 PM GMT

device-mapper-devel - Development libraries and headers for device-mapper

This package contains files needed to develop applications that use
the device-mapper libraries.

Change Log:

Fri, 06 Mar 2026 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2.el9_7.2
- Fix false positive warnings about stray FDs on s390x.

Mon, 10 Nov 2025 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2.el9_7.1
- Add message when activating RAID volumes with snapshots.

Tue, 03 Jun 2025 GMT - Marian Csontos <mcsontos@redhat.com> - 2.03.32-2
- Fix vgremove hanging immediately after lockstart.
- Add repair option for RAID volumes with too many transiently failed devices.

...

rocky-sb-certs-9.7-1.5.el9.noarch

Thu, 02 Apr 2026 05:00:43 PM GMT

rocky-sb-certs - Rocky Linux public secureboot certificates

This package contains the Rocky Linux secureboot public certificates.

Change Log:

Thu, 02 Apr 2026 GMT - Jonathan Dieter <jonathan@dieter.ie> - 9.7-1.5
- Update secure boot certificates

Tue, 30 Dec 2025 GMT - Louis Abel <label@resf.org> - 9.7-1.4
- Create symlinks for the kernel certs

Fri, 18 Jul 2025 GMT - Louis Abel <label@resf.org> - 9.7-1.3
- Add releasever_major and minor

...