Oracle Linux 10 : open-vm-tools (ELSA-2025-17429)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17429 advisory. - ovt-Address-CVE-2025-41244.patch RHEL-117381 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note th...

Oracle Linux 10 : openssl (ELSA-2025-28041)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-28041 advisory. - Fix CVE-2025-9230 Resolves: RHEL-115885 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

RockyLinux 10 : grafana (RLSA-2025:23088)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:23088 advisory. golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 Tenable has extracted the preceding description block directly from the...

wireshark security update

An update is available for wireshark. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The wireshark packages contain a network protocol analyzer used to capture...

RockyLinux 10 : tomcat (RLSA-2025:23050)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23050 advisory. tomcat: Apache Tomcat: Bypass of rules in Rewrite Valve CVE-2025-31651 tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Denial of service...

firefox security update

An update is available for firefox. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Firefox is an open-source web browser, designed for standards...

Oracle Linux 10 : grafana (ELSA-2025-23088)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-23088 advisory. - Resolves RHEL-125631: CVE-2025-58183 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

Oracle Linux 10 : libtiff (ELSA-2025-20998)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20998 advisory. 4.6.0-6.1 - Fix buffer underflow in TIFFReadRGBAImageOriented. - Resolves: RHEL-112524 Tenable has extracted the preceding description block directly from the...

Oracle Linux 10 : firefox (ELSA-2025-21281)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-21281 advisory. 140.5.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding R...

Oracle Linux 10 : libssh (ELSA-2025-21013)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21013 advisory. 0.11.1-4 - Rebuild due to broken build auto-tagging Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. No...

Oracle Linux 10 : squid (ELSA-2025-21002)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-21002 advisory. - Resolves: RHEL-122480 - CVE-2025-62168 squid: Squid vulnerable to information disclosure via authentication credential leakage in error handling Tenable has...

Oracle Linux 10 : qt6-qtquick3d (ELSA-2025-22361)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-22361 advisory. 6.9.1-1.1 - Fix CVE-2025-11277 in bundled assimp library Resolves: RHEL-120981 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 10 : kernel (ELSA-2025-21463)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-21463 advisory. - fs/smb: Fix inconsistent refcnt update Paulo Alcantara RHEL-124955 CVE-2025-39819 - tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. Antoine Tenart...

Oracle Linux 10 : podman (ELSA-2025-20983)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20983 advisory. - fixes 'Minor Incident CVE-2025-52881 podman: container escape and denial of service due to arbitrary write gadgets and procfs write redirects...

Oracle Linux 10 : buildah (ELSA-2025-22012)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-22012 advisory. - fixes 'Minor Incident CVE-2025-52881 buildah: container escape and denial of service due to arbitrary write gadgets and procfs write redirects...

RockyLinux 10 : qt6-qtquick3d (RLSA-2025:22361)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:22361 advisory. assimp: Open Asset Import Library Assimp Q3DLoader.cpp InternReadFile heap-based overflow CVE-2025-11277 Tenable has extracted the preceding description block...

Oracle Linux 10 : ELSA-2025-20145-0: / shadow-utils (ELSA-2025-201450)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-201450 advisory. 2:4.15.0-8 - vipw: restore the original terminal pgrp after editing. Resolves: RHEL-93172 Tenable has extracted the preceding description block directly from...

RockyLinux 10 : shadow-utils (RLSA-2025:20145)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:20145 advisory. shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise CVE-2024-56433 Tenable has extracted the preceding description...

kernel security update

An update is available for kernel. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

kernel security update

An update is available for kernel. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...