Oracle Linux 9 : gdk-pixbuf2 (ELSA-2026-10708)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-10708 advisory. - Backport fixes for CVE-2026-5201 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...

Fedora 44 : mingw-LibRaw (2026-a436c41faf)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-a436c41faf advisory. Update to libraw-0.22.1. ---- Backport fixes for CVE-2026-5318 and CVE-2026-5342. Tenable has extracted the preceding description block directly fro...

Oracle Linux 9 : freerdp (ELSA-2026-6340)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6340 advisory. 2:2.11.7-1.5 - Fix use of nscprocessmessage Resolves: RHEL-155993 2:2.11.7-1.4 - Backport several CVE fixes Resolves: RHEL-148046, RHEL-148049,...

Oracle Linux 10 : freerdp (ELSA-2026-5939)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5939 advisory. 2:3.10.3-5.3 - Backport several CVE fixes Resolves: RHEL-151975, RHEL-152202 Tenable has extracted the preceding description block directly from the...

Oracle Linux 8 : gnutls (ELSA-2026-5585)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5585 advisory. 3.6.16-8.5 - Backport the fixes for CVE-2025-9820 and CVE-2025-14831 Tenable has extracted the preceding description block directly from the Oracle Lin...

Oracle Linux 8 : postgresql:12 (ELSA-2026-4064)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-4064 advisory. - Add backport of CVE-2025-8714 Orabug: 38667546 - Fix CVE-2026-2004 CVE-2026-2005 CVE-2026-2006 - Backport CVE-2025-8715 - Fix backport for...

freerdp security update

2:2.11.7-1.2 - Backport several CVE fixes Resolves: RHEL-148847, RHEL-148887, RHEL-149020...

Oracle Linux 8 : gcc-toolset-14-binutils (ELSA-2026-2627)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2627 advisory. 2.41-3.1 - Fix a potential illegal memory access when linking a corrupt input file. RHEL-130636 Thu Feb 20 2025 Nick Clifton - Backport fixes for PR 32082 and P...

kernel security update

5.14.0-611.27.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Security update 5.0.6 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Security issues fixed: CVE-2025-62349: Added minimumauthversion to enforce security bsc1254257 CVE-2025-62348: Fixed Junos module yaml loader bsc1254256 Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439...

Fedora: Security Advisory (FEDORA-2025-4924a5bc8b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-14331

Same-origin policy bypass in the Request Handling component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

CVE-2025-14333

Memory safety bugs present in Firefox ESR 140.5, Thunderbird ESR 140.5, Firefox 145 and Thunderbird 145. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

Fedora: Security Advisory (FEDORA-2025-fe7ea8bbdd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-11721

Memory safety bug present in Firefox 143 and Thunderbird 143. This bug showed evidence of memory corruption and we presume that with enough effort this could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 144 and Thunderbird 144...

CVE-2025-10532

Incorrect boundary conditions in the JavaScript: GC component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

Oracle Linux 9 : gdk-pixbuf2 (ELSA-2025-12841)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-12841 advisory. - Backport fixes for CVE-2025-7345 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...

CVE-2025-8044

Memory safety bugs present in Firefox 140 and Thunderbird 140. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 141 and Thunderbird 141...

Fedora 40 : mingw-libsoup (2025-67e824b908)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-67e824b908 advisory. Backport fixes for CVE-2025-32910, CVE-2025-32911, CVE-2025-32913 ---- Backport fixes for CVE-2025-32050 CVE-2025-32052 CVE-2025-32053 CVE-2025-3290...

Fedora 41 : mingw-libsoup (2025-bd12d23d21)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-bd12d23d21 advisory. Backport fixes for CVE-2025-32910, CVE-2025-32911, CVE-2025-32913 ---- Backport fixes for CVE-2025-32050 CVE-2025-32052 CVE-2025-32053 CVE-2025-3290...