[El-errata] ELSA-2026-50133 Important: Oracle Linux 9 Unbreakable Enterprise kernel security update

[Errata Announcements for Oracle Linux]

Oracle Linux Security Advisory ELSA-2026-50133

http://linux.oracle.com/errata/ELSA-2026-50133.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
bpftool-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-core-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-debug-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-debug-core-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-debug-devel-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-debug-modules-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-debug-modules-extra-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-devel-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-doc-5.15.0-317.197.5.2.el9uek.noarch.rpm
kernel-uek-modules-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-modules-extra-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-container-5.15.0-317.197.5.2.el9uek.x86_64.rpm
kernel-uek-container-debug-5.15.0-317.197.5.2.el9uek.x86_64.rpm



SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates/kernel-uek-5.15.0-317.197.5.2.el9uek.src.rpm

Related CVEs:

CVE-2025-40149
CVE-2025-40256




Description of changes:

[5.15.0-317.197.5.2]
- xfrm: flush all states in xfrm_state_fini (Sabrina Dubroca)  [Orabug: 39016261]
- xfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added (Sabrina Dubroca)  [Orabug: 39016261]
- Revert "xfrm: destroy xfrm_state synchronously on net exit path" (Sabrina Dubroca)  [Orabug: 39016261]
- tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock(). (Kuniyuki Iwashima)  [Orabug: 39016219]  {CVE-2025-40149}
- net: Add locking to protect skb->dev access in ip_output (Sharath Chandra Vurukala)  [Orabug: 39016219]