Oracle Linux Security Advisory ELSA-2025-20954 http://linux.oracle.com/errata/ELSA-2025-20954.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: libipa_hbac-2.9.7-4.0.1.el9_7.1.i686.rpm libipa_hbac-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_autofs-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_certmap-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_certmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_idmap-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_nss_idmap-devel-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_nss_idmap-devel-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_simpleifp-2.9.7-4.0.1.el9_7.1.i686.rpm libsss_simpleifp-2.9.7-4.0.1.el9_7.1.x86_64.rpm libsss_sudo-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-libipa_hbac-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-sss-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-sss-murmur-2.9.7-4.0.1.el9_7.1.x86_64.rpm python3-sssdconfig-2.9.7-4.0.1.el9_7.1.noarch.rpm sssd-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-ad-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-client-2.9.7-4.0.1.el9_7.1.i686.rpm sssd-client-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-common-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-common-pac-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-dbus-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-idp-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-ipa-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-kcm-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-krb5-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-krb5-common-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-ldap-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-nfs-idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-passkey-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-polkit-rules-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-proxy-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-tools-2.9.7-4.0.1.el9_7.1.x86_64.rpm sssd-winbind-idmap-2.9.7-4.0.1.el9_7.1.x86_64.rpm aarch64: libipa_hbac-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_autofs-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_certmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_nss_idmap-devel-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_simpleifp-2.9.7-4.0.1.el9_7.1.aarch64.rpm libsss_sudo-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-libipa_hbac-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-libsss_nss_idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-sss-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-sss-murmur-2.9.7-4.0.1.el9_7.1.aarch64.rpm python3-sssdconfig-2.9.7-4.0.1.el9_7.1.noarch.rpm sssd-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-ad-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-client-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-common-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-common-pac-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-dbus-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-idp-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-ipa-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-kcm-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-krb5-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-krb5-common-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-ldap-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-nfs-idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-passkey-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-polkit-rules-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-proxy-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-tools-2.9.7-4.0.1.el9_7.1.aarch64.rpm sssd-winbind-idmap-2.9.7-4.0.1.el9_7.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/sssd-2.9.7-4.0.1.el9_7.1.src.rpm Related CVEs: CVE-2025-11561 Description of changes: [2.9.7-4.0.1.1] - Restore default debug level for sss_cache [Orabug: 32810448] * Fri Oct 17 2025 Tomas Halman <[email protected] - 2.9.7.4.1 - Resolves: RHEL-120298 - CVE-2025-11561 sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems _______________________________________________ El-errata mailing list [email protected] https://oss.oracle.com/mailman/listinfo/el-errata
