Oracle Linux 10 : valkey (ELSA-2025-20653)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20653 advisory. 8.0.4-1.0.1 - Fix for CVE-2025-49844 Orabug: 38515582 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

EUVD-2021-16923

Malware in sbrugna...

EUVD-2011-2295

Malware in sbrugna...

EUVD-2016-0652

Malware in sbrugna...

kernel security update

4.18.0-553.78.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

kernel security update

5.14.0-570.51.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2025-20650)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20650 advisory. 5.4.17-2136.347.6.4 - nfsd: handle getclientlocked failure in nfsd4setclientidconfirm Jeff Layton Orabug: 38501612 CVE-2025-38724 Tenable has extracted the...

EUVD-2022-26609

Malicious code in bioql PyPI...

Oracle Linux 8 : perl-JSON-XS (ELSA-2025-17163)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-17163 advisory. - Resolves: RHEL-113630 - Fix CVE-2025-40928 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 9 : perl-JSON-XS (ELSA-2025-17162)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-17162 advisory. 1:4.04-1 - Update to 4.04 - Fix CVE-2025-40928 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Oracle Linux 7 : python3 (ELSA-2025-16117)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-16117 advisory. 3.6.8-21.0.5 - tarfile now validates archives to ensure member offsets are non-negative Orabug: 38442771CVE-2025-8194 Tenable has extracted the preceding...

Oracle Linux 10 : ipa (ELSA-2025-17085)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17085 advisory. 4.12.2-15.0.1.el100.4 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596...

idm:DL1 security update

bind-dyndb-ldap 11.6-6 - Fix rpminspect warnings Resolves: RHEL-22497 custodia ipa 4.9.13-20.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 4.9.13-20 - Refactor ipatests for unique krbcanonicalname Resolves: RHEL-110061 4.9.13-19 - Enforce uniqueness across krbprincipalnam...

ipa security update

4.12.2-14.0.1.5 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-14.5 - Resolves: RHEL-110068 EMBARGOED CVE-2025-7493 ipa: Privilege escalation from host to domain admin in FreeIPA 4.12.2-14.4 - Resolves: RHEL-1100...

Oracle Linux 10 : kernel (ELSA-2025-16904)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-16904 advisory. 6.12.0-55.37.1.0.1 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Add new Oracle Linux Driver Signing key 1 certificate Orabug:...

Oracle Linux 8 : idm:DL1 (ELSA-2025-17129)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17129 advisory. bind-dyndb-ldap 11.6-6 - Fix rpminspect warnings Resolves: RHEL-22497 custodia ipa 4.9.13-20.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug:...

Oracle Linux 8 : kernel (ELSA-2025-16919)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-16919 advisory. - netsched: hfsc: Fix a potential UAF in hfscdequeue too CKI Backport Bot RHEL-109847 CVE-2025-37797 - netsched: hfsc: Fix a UAF vulnerability in clas...

Oracle Linux 10 : perl-JSON-XS (ELSA-2025-17119)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-17119 advisory. 1:4.04-1 - Update to 4.04 - Resolves: RHEL-113624 - Fix CVE-2025-40928 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : ipa (ELSA-2025-17084)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17084 advisory. - Resolves: RHEL-110068 EMBARGOED CVE-2025-7493 ipa: Privilege escalation from host to domain admin in FreeIPA Tenable has extracted the preceding description...

PT-2025-40027

Name of the Vulnerable Software and Affected Versions Soda PDF Desktop affected versions not specified Squid Proxy versions affected versions not specified Description A critical issue exists in Soda PDF Desktop related to insufficient UI warnings during Word file processing, potentially leading ...