Oracle Linux 9 : kernel (ELSA-2025-13602)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-13602 advisory. - net/sched: Always pass notifications when child class becomes empty CKI Backport Bot RHEL-93387 CVE-2025-38350 - schhtb: make htbdeactivate idempote...

Oracle Linux 9 : webkit2gtk3 (ELSA-2025-13782)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-13782 advisory. 2.48.5-1 - Update to 2.48.5 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

Oracle Linux 7 : libxml2 (ELSA-2025-12240)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-12240 advisory. - Fix CVE-2025-6021, CVE-2025-32414, CVE-2025-49794, CVE-2025-49796 Tenable has extracted the preceding description block directly from the Oracle Lin...

Oracle Linux 7 : konsole (ELSA-2025-12346)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-12346 advisory. 4.10.5-5.0.1 - Clear the arguments if the command is not found Orabug: 38260855CVE-2025-49091 Tenable has extracted the preceding description block directly fr...

Oracle Linux 8 : webkit2gtk3 (ELSA-2025-13780)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-13780 advisory. 2.48.5-1 - Update to 2.48.5 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

Oracle Linux 7 : git (ELSA-2025-11688)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-11688 advisory. 1.8.3.1-25.0.1 - Fixed CVE-2025-48384 Orabug: 38234220 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

kernel security update

5.14.0-570.33.2.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

Oracle Linux 8 : thunderbird (ELSA-2025-13676)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-13676 advisory. 128.13.0-3.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.13.0 - Add OpenELA debranding 128.13.0-3 - Update to 128.13.0 buil...

USN-7681-3: Linux kernel (Oracle) vulnerability

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network traffic control; CVE-2025-38083...

Oracle Linux 10 : kernel (ELSA-2025-12662)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-12662 advisory. - netsched: hfsc: Address reentrant enqueue adding class to eltree twice - CVE-2025-38001 - schhfsc: Fix qlen accounting bug when using peek in...

Oracle Linux 9 : python3.11-setuptools (ELSA-2025-13578)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-13578 advisory. 65.5.1-4 - Security fix for CVE-2025-47273 Resolves: RHEL-101113 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 10 : python-requests (ELSA-2025-13604)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-13604 advisory. 2.32.4-1 - Update to 2.32.4 - Security fix for CVE-2024-47081: .netrc credentials leak via malicious URLs Resolves: RHEL-105460 Tenable has extracted the...

kernel security update

4.18.0-553.69.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2025-20521)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20521 advisory. - perf: Fix perfeventvalidatesize lockdep splat Mark Rutland Orabug: 36261486 CVE-2023-6931 - perf: Fix perfeventvalidatesize Peter Zijlstra Orabu...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20520)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20520 advisory. - perf: Fix perfeventvalidatesize lockdep splat Mark Rutland Orabug: 36261485 CVE-2023-6931 - perf: Fix perfeventvalidatesize Peter Zijlstra Orabu...

Oracle Linux 10 : libxml2 (ELSA-2025-13429)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-13429 advisory. - Fix CVE-2025-32415 RHEL-100174 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 7 : java-1.8.0-openjdk (ELSA-2025-10861)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-10861 advisory. 1:1.8.0.462.b08-1.0.1 - Update to 8u462-b08 GA Orabug: 38248370 - Update release notes for 8u462-b08. - Require tzdata 2025b due to upstream inclusion...

Oracle Linux 10 : glibc (ELSA-2025-13240)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-13240 advisory. - CVE-2025-8058: Double free in regcomp RHEL-105324 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. No...

Oracle Linux 8 : gdk-pixbuf2 (ELSA-2025-13315)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-13315 advisory. - Backport fixes for CVE-2025-7345 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...

Oracle Linux 7 : libblockdev (ELSA-2025-10796)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-10796 advisory. - Don't allow suid and dev set on fs resize CVE-2025-6019 Tenable has extracted the preceding description block directly from the Oracle Linux security advisor...