[El-errata] ELSA-2025-23210 Important: Oracle Linux 9 keylime security update

Thu Dec 18 16:59:22 UTC 2025

Oracle Linux Security Advisory ELSA-2025-23210

http://linux.oracle.com/errata/ELSA-2025-23210.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
keylime-7.12.1-11.el9_7.3.x86_64.rpm
keylime-base-7.12.1-11.el9_7.3.x86_64.rpm
keylime-registrar-7.12.1-11.el9_7.3.x86_64.rpm
keylime-selinux-7.12.1-11.el9_7.3.noarch.rpm
keylime-tenant-7.12.1-11.el9_7.3.x86_64.rpm
keylime-verifier-7.12.1-11.el9_7.3.x86_64.rpm
python3-keylime-7.12.1-11.el9_7.3.x86_64.rpm

aarch64:
keylime-7.12.1-11.el9_7.3.aarch64.rpm
keylime-base-7.12.1-11.el9_7.3.aarch64.rpm
keylime-registrar-7.12.1-11.el9_7.3.aarch64.rpm
keylime-selinux-7.12.1-11.el9_7.3.noarch.rpm
keylime-tenant-7.12.1-11.el9_7.3.aarch64.rpm
keylime-verifier-7.12.1-11.el9_7.3.aarch64.rpm
python3-keylime-7.12.1-11.el9_7.3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/keylime-7.12.1-11.el9_7.3.src.rpm

Related CVEs:

CVE-2025-13609

Description of changes:

[7.12.1-11.3]
- Registrar allows identity takeover via duplicate UUID registration
  Resolves: RHEL-130760

[7.12.1-11.2]
- Properly fix the malformed certificate workaround
  Resolves: RHEL-111244