git-lfs security update

An update is available for git-lfs. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Git Large File Storage LFS replaces large files such as audio samples, video...

RockyLinux 10 : git-lfs (RLSA-2026:7005)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:7005 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 Tenable has extracted the preceding description block directly from the RockyLinux...

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50184)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50184 advisory. - ipv6: use RCU in ip6xmit Eric Dumazet Orabug: 39186444 CVE-2025-40135 - netfilter: nftables: fix use-after-free in nftablesaddchain Inseo An...

ncurses security update

An update is available for ncurses. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The ncurses new curses library routines are a terminal-independent method of...

thunderbird security update

An update is available for thunderbird. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Thunderbird is a standalone mail and newsgroup client. Security...

rsync security update

An update is available for rsync. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The rsync utility enables the users to copy and synchronize files locally or...

Oracle Linux 10 : nodejs22 (ELSA-2026-7080)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-7080 advisory. - introduced patch updating deps/nghttp2 to v 1.68.1 for CVE-2026-27135 - patch for npm/braces CVE-2026-25547 Tenable has extracted the preceding...

RockyLinux 10 : grafana-pcp (RLSA-2026:6388)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:6388 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 Tenable has extracted the preceding description block directly from the RockyLinux...

RockyLinux 10 : ncurses (RLSA-2026:5913)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:5913 advisory. ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution. CVE-2025-69720 Tenable has extracted the preceding description block direct...

RockyLinux 10 : crun (RLSA-2026:6622)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:6622 advisory. crun: crun: Privilege escalation due to incorrect parsing of the --user option CVE-2026-30892 Tenable has extracted the preceding description block directly from...

RockyLinux 10 : fontforge (RLSA-2026:6631)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:6631 advisory. fontforge: FontForge: Remote Code Execution via malicious SFD file parsing CVE-2025-15270 Tenable has extracted the preceding description block directly from the...

Oracle Linux 10 : rsync (ELSA-2026-6825)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-6825 advisory. - Resolves: RHEL-152885 - CVE-2025-10158 Out of bounds array access via negative index Tenable has extracted the preceding description block directly from the...

Oracle Linux 10 : grafana-pcp (ELSA-2026-6388)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-6388 advisory. 5.3.0-3 - Resolves RHEL-158459: CVE-2026-25679 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Oracle Linux 10 : grafana (ELSA-2026-6344)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-6344 advisory. 10.2.6-23 - Resolves RHEL-158458: CVE-2026-25679 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

opencryptoki security update

An update is available for opencryptoki. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The opencryptoki packages contain version 2.11 of the PKCS11 API,...

vim security update

An update is available for vim. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Vim Vi IMproved is an updated and improved version of the vi editor. Security...

kernel security update

An update is available for kernel. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

nginx security update

An update is available for nginx. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list nginx is a web and proxy server supporting HTTP and other protocols, with a...

RockyLinux 10 : opencryptoki (RLSA-2026:4717)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:4717 advisory. openCryptoki: openCryptoki: Privilege Escalation or Data Exposure via Symlink Following CVE-2026-23893 Tenable has extracted the preceding description block...

Oracle Linux 10 : freerdp (ELSA-2026-5939)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5939 advisory. 2:3.10.3-5.3 - Backport several CVE fixes Resolves: RHEL-151975, RHEL-152202 Tenable has extracted the preceding description block directly from the...