AlmaLinux 9 : redis:7 (ALSA-2025:0692)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:0692 advisory. redis: Redis' Lua library commands may lead to remote code execution CVE-2024-46981 redis: Redis allows denial-of-service due to malformed ACL selectors...

AlmaLinux 9 : java-17-openjdk security update for AlmaLinux 8.6, 8.8, 8.10, 9.4 and 9.5 (Medium) (ALSA-2025:0422)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:0422 advisory. JDK: Enhance array handling CVE-2025-21502 Bug Fixes: The AlmaLinux OpenJDK packages rely on the copy-jdk-configs package to transfer configuration files to a new...

AlmaLinux 9 : python-jinja2 (ALSA-2025:0667)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:0667 advisory. jinja2: Jinja has a sandbox breakout through indirect reference to format method CVE-2024-56326 Tenable has extracted the preceding description block directly from...

AlmaLinux 9 : java-21-openjdk security update for AlmaLinux 8.10, 9.4 and 9.5 (Medium) (ALSA-2025:0426)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:0426 advisory. JDK: Enhance array handling CVE-2025-21502 Tenable has extracted the preceding description block directly from the AlmaLinux security advisory. Note that Nessus ha...

AlmaLinux 9 : kernel (ALSA-2025:0578)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:0578 advisory. kernel: tcp/dccp: Don't use timerpending in reqskqueueunlink. CVE-2024-50154 kernel: arm64/sve: Discard stale CPU state when handling SVE traps...

AlmaLinux 9 : git-lfs (ALSA-2025:0673)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2025:0673 advisory. git-lfs: Git LFS permits exfiltration of credentials via crafted HTTP URLs CVE-2024-53263 Tenable has extracted the preceding description block directly from the...

AlmaLinux 8 : redis:6 (ALSA-2025:0595)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:0595 advisory. redis: Integer overflow in the Redis HRANDFIELD and ZRANDMEMBER commands may lead to denial-of-service CVE-2023-22458 redis: Integer overflow in the Redis...

ALSA-2025:0422 Moderate: java-17-openjdk security update for AlmaLinux 8.6, 8.8, 8.10, 9.4 and 9.5

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: JDK: Enhance array handling CVE-2025-21502 Bug Fixes: The AlmaLinux OpenJDK packages rely on the copy-jdk-configs package to transfer configuration files ...

Moderate: java-17-openjdk security update for AlmaLinux 8.6, 8.8, 8.10, 9.4 and 9.5

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: JDK: Enhance array handling CVE-2025-21502 Bug Fixes: The AlmaLinux OpenJDK packages rely on the copy-jdk-configs package to transfer configuration files ...

Moderate: java-21-openjdk security update for AlmaLinux 8.10, 9.4 and 9.5

The OpenJDK 21 packages provide the OpenJDK 21 Java Runtime Environment and the OpenJDK 21 Java Software Development Kit. Security Fixes: JDK: Enhance array handling CVE-2025-21502 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

AlmaLinux 8 : grafana (ALSA-2025:0401)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:0401 advisory. go-git: argument injection via the URL field CVE-2025-21613 go-git: go-git clients vulnerable to DoS via maliciously crafted Git server replies...

AlmaLinux 9 : Security and bug fixes for NetworkManager (Medium) (ALSA-2025:0377)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:0377 advisory. NetworkManager is a system network service that manages network devices and connections, attempting to keep active network connectivity when available. Its...

AlmaLinux 8 : .NET 9.0 (ALSA-2025:0382)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:0382 advisory. dotnet: .NET Remote Code Execution Vulnerability CVE-2025-21171 dotnet: .NET and Visual Studio Remote Code Execution Vulnerability CVE-2025-21172 dotnet:...

AlmaLinux 9 : ipa (ALSA-2025:0334)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:0334 advisory. freeipa: Administrative user data leaked through systemd journal CVE-2024-11029 Tenable has extracted the preceding description block directly from the AlmaLinux...

AlmaLinux 8 : .NET 8.0 (ALSA-2025:0381)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:0381 advisory. dotnet: .NET and Visual Studio Remote Code Execution Vulnerability CVE-2025-21172 dotnet: .NET Elevation of Privilege Vulnerability CVE-2025-21173 dotnet:...

AlmaLinux 9 : raptor2 (ALSA-2025:0312)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:0312 advisory. raptor: integer underflow when normalizing a URI with the turtle parser CVE-2024-57823 Tenable has extracted the preceding description block directly from the...

AlmaLinux 9 : fence-agents (ALSA-2025:0308)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:0308 advisory. fence-agents: Jinja has a sandbox breakout through indirect reference to format method almalinux-9.5.z CVE-2024-56326 fence-agents: Jinja has a sandbox...

AlmaLinux 8 : raptor2 (ALSA-2025:0314)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:0314 advisory. raptor: integer underflow when normalizing a URI with the turtle parser CVE-2024-57823 Tenable has extracted the preceding description block directly from the...

AlmaLinux 9 : rsync (ALSA-2025:0324)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:0324 advisory. rsync: Info Leak via Uninitialized Stack Contents CVE-2024-12085 Tenable has extracted the preceding description block directly from the AlmaLinux security advisor...

AlmaLinux 8 : rsync (ALSA-2025:0325)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:0325 advisory. rsync: Info Leak via Uninitialized Stack Contents CVE-2024-12085 Tenable has extracted the preceding description block directly from the AlmaLinux security advisor...