AlmaLinux Security Updates: Kernel and Python-Requests
AlmaLinux has recently issued moderate security updates for its kernel packages and the Python-requests library. The updates, released on August 11, 2025, include important fixes aimed at improving system security and stability.
Key Updates:
1. Kernel-rt Security Update (ALSA-2025:13590):
- This update pertains to the Real-Time Linux Kernel, which is essential for systems requiring high determinism.
- Security fixes include:
- UAF (Use After Free) vulnerability fix in the padata_reorder function (CVE-2025-21727).
- Enhanced RCU protection in the igmp6_send() function (CVE-2025-21759).
- Fixes for use-after-free bugs in the peak_usb driver (CVE-2021-47670).
- Resolution of a race condition in huge_pmd_unshare() (CVE-2025-38085).
- Correction of buffer size issues in the rtw88 wifi driver (CVE-2025-38159).
- For further details, refer to the [kernel-rt security update page](https://errata.almalinux.org/8/ALSA-2025-13590.html).
2. Kernel Security Update (ALSA-2025:13589):
- This update addresses vulnerabilities in the core Linux kernel.
- It shares several fixes with the kernel-rt update, including those for UAF and buffer overflow vulnerabilities.
- More information can be accessed on the [kernel security update page](https://errata.almalinux.org/8/ALSA-2025-13589.html).
3. Python-Requests Security Update (ALSA-2025:13604):
- This update addresses a vulnerability in the Python-requests library that could allow .netrc credentials to be leaked through malicious URLs (CVE-2024-47081).
- Users are encouraged to review the details of the update on the [Python-requests security update page](https://errata.almalinux.org/10/ALSA-2025-13604.html).
Community Engagement:
AlmaLinux encourages users to engage with the community for any questions or concerns regarding these updates. Users can participate in discussions through the [AlmaLinux community chat](https://chat.almalinux.org/) or manage their notification settings via the mailing list platform.
Conclusion:
Staying updated with these security patches is crucial for maintaining the integrity and performance of systems running AlmaLinux. Users should apply these updates promptly and remain vigilant about potential vulnerabilities
AlmaLinux has recently issued moderate security updates for its kernel packages and the Python-requests library. The updates, released on August 11, 2025, include important fixes aimed at improving system security and stability.
Key Updates:
1. Kernel-rt Security Update (ALSA-2025:13590):
- This update pertains to the Real-Time Linux Kernel, which is essential for systems requiring high determinism.
- Security fixes include:
- UAF (Use After Free) vulnerability fix in the padata_reorder function (CVE-2025-21727).
- Enhanced RCU protection in the igmp6_send() function (CVE-2025-21759).
- Fixes for use-after-free bugs in the peak_usb driver (CVE-2021-47670).
- Resolution of a race condition in huge_pmd_unshare() (CVE-2025-38085).
- Correction of buffer size issues in the rtw88 wifi driver (CVE-2025-38159).
- For further details, refer to the [kernel-rt security update page](https://errata.almalinux.org/8/ALSA-2025-13590.html).
2. Kernel Security Update (ALSA-2025:13589):
- This update addresses vulnerabilities in the core Linux kernel.
- It shares several fixes with the kernel-rt update, including those for UAF and buffer overflow vulnerabilities.
- More information can be accessed on the [kernel security update page](https://errata.almalinux.org/8/ALSA-2025-13589.html).
3. Python-Requests Security Update (ALSA-2025:13604):
- This update addresses a vulnerability in the Python-requests library that could allow .netrc credentials to be leaked through malicious URLs (CVE-2024-47081).
- Users are encouraged to review the details of the update on the [Python-requests security update page](https://errata.almalinux.org/10/ALSA-2025-13604.html).
Community Engagement:
AlmaLinux encourages users to engage with the community for any questions or concerns regarding these updates. Users can participate in discussions through the [AlmaLinux community chat](https://chat.almalinux.org/) or manage their notification settings via the mailing list platform.
Conclusion:
Staying updated with these security patches is crucial for maintaining the integrity and performance of systems running AlmaLinux. Users should apply these updates promptly and remain vigilant about potential vulnerabilities
Kernel and Python-Requests updates for AlmaLinux
AlmaLinux has received several security updates, including kernel-rt, kernel security update, and python-requests:
ALSA-2025:13590: kernel-rt security update (Moderate)
ALSA-2025:13589: kernel security update (Moderate)
ALSA-2025:13604: python-requests security update (Moderate)Kernel and Python-Requests updates for AlmaLinux @ Linux Compatible
