Thunderbird, Grafana, Podman, and more updates for AlmaLinux

Published by

AlmaLinux has rolled out a significant set of security updates as of July 2025, addressing vulnerabilities across various software components. This includes essential applications like Thunderbird, Grafana, Podman, and several programming languages like Python and PHP. The updates cover both critical and moderate severity issues, with detailed fixes provided for each affected software package.

Summary of Key Updates:
- Thunderbird: Multiple important security fixes addressing out-of-bounds access and potential local code execution vulnerabilities (CVE-2025-4918, CVE-2025-4919, CVE-2025-5267).
- Grafana: Updates to prevent issues such as request smuggling and excessive memory allocation vulnerabilities (CVE-2025-22871, CVE-2025-30204).
- Podman: Addresses denial of service vulnerabilities within the Go JOSE parsing library (CVE-2025-27144).
- Python 3.12: Fixes vulnerabilities related to tarfile extraction filters and potential arbitrary writes (CVE-2025-4435, CVE-2024-12718).
- PHP: Several critical fixes, including handling of HTTP stream wrapper headers and potential use-after-free vulnerabilities (CVE-2025-1217, CVE-2024-11235).

Notable Security Issues Fixed:
1. Kernel Security Updates: Important fixes addressing issues that could lead to kernel panics and potential memory corruption (CVE-2025-21969, CVE-2025-21919).
2. Firefox: Updates aimed at fixing memory safety bugs and preventing potential privilege escalation (CVE-2025-2817, CVE-2025-4087).
3. OpenJDK: Improvements to TLS connection support and buffered image handling (CVE-2025-30698).

Recommendations:
- Users are encouraged to update their systems promptly to benefit from these security enhancements.
- For detailed patch notes and specific CVE references, users can access the AlmaLinux errata page linked in update notifications.

Community Engagement:
AlmaLinux continues to engage its community through chat platforms and mailing lists, ensuring users can seek additional information or assistance regarding these updates.

This comprehensive update highlights AlmaLinux's commitment to security and software reliability, making it essential for users to stay informed and proactive in applying updates

Thunderbird, Grafana, Podman, and more updates for AlmaLinux

AlmaLinux has received a series of important security updates, encompassing a range of software including git-lfs, thunderbird, grafana, python3.12, podman, delve, golang, exiv2, gvisor-tap-vsock, corosync, buildah, git, php, tomcat9, mod_auth_openidc, tomcat, libxslt, nodejs22, libsoup3, firefox, libarchive, java-21-openjdk, libblockdev, kernel, microcode_ctl, perl-YAML-LibYAML, thunderbird, protobuf, gstreamer1-plugins-good, osbuild, rsync, grub2, iptraf-ng, gnutls, krb5, python3.12, libtasn1, aardvark-dns, python3.12, corosync, protobuf, gstreamer1-plugins-base, git-lfs, keylime-agent-rust, openjpeg2, php:8.2, nodejs:20, kernel, ghostscript, .NET 9.0, xdg-utils, and webkit2gtk3.

ALSA-2025:9106: git-lfs security update (Moderate)
ALSA-2025:8607: thunderbird security update (Important)
ALSA-2025:8682: grafana security update (Moderate)
ALSA-2025:8916: grafana-pcp security update (Moderate)
ALSA-2025:9080: kernel security update (Important)
ALSA-2025:9114: apache-commons-beanutils security update (Important)
ALSA-2025:9118: libvpx security update (Important)
ALSA-2025:10195: thunderbird security update (Important)
ALSA-2025:10140: python3.12 security update (Important)
ALSA-2025:7462: podman security update (Important)
ALSA-2025:7466: delve and golang security update (Moderate)
ALSA-2025:7467: skopeo security update (Moderate)
ALSA-2025:7476: python-jinja2 security update (Important)
ALSA-2025:7475: grafana security update (Important)
ALSA-2025:7457: exiv2 security update (Moderate)
ALSA-2025:7484: gvisor-tap-vsock security update (Important)
ALSA-2025:7478: corosync security update (Moderate)
ALSA-2025:7459: buildah security update (Moderate)
ALSA-2025:7482: git security update (Moderate)
ALSA-2025:7489: php security update (Important)
ALSA-2025:7494: tomcat9 security update (Moderate)
ALSA-2025:7490: mod_auth_openidc security update (Important)
ALSA-2025:7497: tomcat security update (Moderate)
ALSA-2025:7496: libxslt security update (Important)
ALSA-2025:7502: nodejs22 security update (Moderate)
ALSA-2025:7505: libsoup3 security update (Important)
ALSA-2025:7506: firefox security update (Important)
ALSA-2025:7510: libarchive security update (Moderate)
ALSA-2025:7508: java-21-openjdk security update (Moderate)
ALSA-2025:8341: firefox security update (Important)
ALSA-2025:8636: perl-FCGI security update (Important)
ALSA-2025:7507: thunderbird security update (Important)
ALSA-2025:7512: expat security update (Moderate)
ALSA-2025:10189: python3.12 security update (Important)
ALSA-2025:9306: tigervnc security update (Important)
ALSA-2025:9396: mod_auth_openidc security update (Important)
ALSA-2025:9327: libblockdev security update (Important)
ALSA-2025:9302: kernel security update (Moderate)
ALSA-2025:7043: microcode_ctl security update (Moderate)
ALSA-2025:9330: perl-YAML-LibYAML security update (Important)
ALSA-2025:10196: thunderbird security update (Important)
ALSA-2025:7049: python-requests security update (Moderate)
ALSA-2025:10148: python3.11 security update (Important)
ALSA-2025:7050: rsync security update (Moderate)
ALSA-2025:6977: python3.9 security update (Moderate)
ALSA-2025:6990: grub2 security update (Moderate)
ALSA-2025:7064: iptraf-ng security update (Moderate)
ALSA-2025:7076: gnutls security update (Moderate)
ALSA-2025:7067: krb5 security update (Moderate)
ALSA-2025:7107: python3.12 security update (Moderate)
ALSA-2025:7077: libtasn1 security update (Moderate)
ALSA-2025:7094: aardvark-dns security update (Moderate)
ALSA-2025:7109: python3.11 security update (Moderate)
ALSA-2025:7201: corosync security update (Moderate)
ALSA-2025:7138: protobuf security update (Moderate)
ALSA-2025:7242: gstreamer1-plugins-good security update (Moderate)
ALSA-2025:7118: osbuild and osbuild-composer security update (Important)
ALSA-2025:7160: bootc security update (Moderate)
ALSA-2025:7147: rpm-ostree security update (Moderate)
ALSA-2025:7241: rust-bootupd security update (Moderate)
ALSA-2025:7165: xorg-x11-server-Xwayland security update (Moderate)
ALSA-2025:7163: xorg-x11-server security update (Moderate)
ALSA-2025:7178: gstreamer1, gstreamer1-plugins-bad-free, gstreamer1-plugins-ugly-free, and gstreamer1-rtsp-server security update (Moderate)
ALSA-2025:7317: python3.12-cryptography security update (Moderate)
ALSA-2025:7350: perl-Module-ScanDeps security update (Moderate)
ALSA-2025:7243: gstreamer1-plugins-base security update (Moderate)
ALSA-2025:7256: git-lfs security update (Moderate)
ALSA-2025:7313: keylime-agent-rust security update (Moderate)
ALSA-2025:7309: openjpeg2 security update (Moderate)
ALSA-2025:7432: php:8.2 security update (Moderate)
ALSA-2025:7418: php:8.3 security update (Important)
ALSA-2025:7426: nodejs:20 security update (Moderate)
ALSA-2025:8333: kernel security update (Moderate)
ALSA-2025:7586: ghostscript security update (Moderate)
ALSA-2025:7600: .NET 9.0 security update (Important)
ALSA-2025:7672: xdg-utils security update (Moderate)
ALSA-2025:7995: webkit2gtk3 security update (Important)

Thunderbird, Grafana, Podman, and more updates for AlmaLinux @ Linux Compatible