Oracle Linux 9 : glibc (ELSA-2025-20595)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20595 advisory. 2.34-168.0.1.23 - Forward-port Oracle patches for ol9-u6 Reviewed-by: Jose E. Marchesi Oracle history: June-30-2025 Cupertino Miranda - 2.34-168.0.1.20 -...

Oracle Linux 9 : python-cryptography (ELSA-2025-15874)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-15874 advisory. 36.0.1-5 - Fix CVE-2023-49083: NULL-dereference when loading PKCS7 certificates, resolves RHEL-97450 Tenable has extracted the preceding description block...

Oracle Linux 9 : podman (ELSA-2025-15900)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-15900 advisory. - fixes 'CVE-2025-9566 podman: Podman kube play command may overwrite host files rhel-9.6.z' Tenable has extracted the preceding description block directly fro...

Oracle Linux 8 : kernel (ELSA-2025-15785)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15785 advisory. - net/sched: ets: use old 'nbands' while purging unused classes Ivan Vecera RHEL-107541 CVE-2025-38350 - netsched: schets: implement lockless etsdump...

Oracle Linux 10 : podman (ELSA-2025-15901)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-15901 advisory. - fixes 'CVE-2025-9566 podman: Podman kube play command may overwrite host files rhel-9.6.z' Tenable has extracted the preceding description block directly fr...

Oracle Linux 10 : kernel (ELSA-2025-15662)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-15662 advisory. 6.12.0-55.32.1.0.1 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 -...

Oracle Linux 7 : libarchive (ELSA-2025-14828)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-14828 advisory. 3.1.2-14.0.1 - rar: Fix double free Orabug: 38364091CVE-2025-5914 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : cups (ELSA-2025-15702)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-15702 advisory. 1:2.2.6-63 - RHEL-112424 CVE-2025-58060 cups: Authentication Bypass in CUPS Authorization Handling Tenable has extracted the preceding description block direct...

kernel security update

5.14.0-570.44.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

kernel security update

4.18.0-553.75.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Oracle Linux 10 : cups (ELSA-2025-15701)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15701 advisory. - CVE-2025-58060 cups: Authentication Bypass in CUPS Authorization Handling Tenable has extracted the preceding description block directly from the...

Oracle Linux 9 : cups (ELSA-2025-15700)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15700 advisory. - RHEL-113077 CVE-2025-58364 cups: Null Pointer Dereference in CUPS ippreadio Leading to Remote DoS Tenable has extracted the preceding description...

kernel security update

5.14.0-570.42.2.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

Oracle Linux 10 : mysql-selinux / and / mysql8.4 (ELSA-2025-15699)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15699 advisory. mysql-selinux 1.0.14-1 - Update to version 1.0.14 - Resolves: rhbz2380217 mysql8.4 8.4.6-1 - Rebase to 8.4.6 8.4.5-1 - Rebase to 8.4.5 Tenable has...

Oracle Linux 9 : python3.12-cryptography (ELSA-2025-15608)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-15608 advisory. 41.0.7-2.1 - Security fix for CVE-2024-26130 Resolves: RHEL-112483 Tenable has extracted the preceding description block directly from the Oracle Linux securit...

Oracle Linux 9 : kernel (ELSA-2025-15429)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15429 advisory. - udmabuf: fix a buf size overflow issue during udmabuf creation CKI Backport Bot RHEL-99746 CVE-2025-37803 Tenable has extracted the preceding...

Oracle Linux 7 : gdk-pixbuf2 (ELSA-2025-14683)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-14683 advisory. 2.36.12-3.0.1 - jpeg: Be more careful with chunked icc data Orabug: 38359772CVE-2025-7345 Tenable has extracted the preceding description block directly from t...

Oracle Linux 8 : php:8.2 (ELSA-2025-15687)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15687 advisory. libzip php 8.2.28-1 - rebase to 8.2.28 php-pear php-pecl-apcu php-pecl-rrd php-pecl-xdebug3 php-pecl-zip Tenable has extracted the preceding descripti...

kernel security update

5.14.0-570.41.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

Oracle Linux 8 : kernel (ELSA-2025-15471)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-15471 advisory. - posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel Oleg Nesterov RHEL-112775 CVE-2025-38352 - bpf: Don't use tnumrange on...