Oracle Linux 8 : glib2 (ELSA-2025-11327)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-11327 advisory. - Add patches for CVE-2024-34397, CVE-2024-52533, CVE-2025-4373 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : kernel (ELSA-2025-10837)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-10837 advisory. - x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes CKI Backport Bot RHEL-98996 CVE-2025-21991 Tenable has extracted the preceding...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20470)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20470 advisory. - sunrpc: handle SVCGARBAGE during svc auth processing as auth error Jeff Layton CVE-2025-38089 - netsched: schsfq: move the limit validation...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2025-20471)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20471 advisory. - Add Zen34 clients Borislav Petkov AMD Orabug: 38023241 CVE-2024-36350 CVE-2024-36357 - x86/process: Move the buffer clearing before MONITOR Kim...

kernel security update

4.18.0-553.62.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Oracle Linux 8 / 9 : java-17-openjdk (ELSA-2025-10867)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-10867 advisory. 1:17.0.16.0.8-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.16.0.8-2 - Update to jdk-17.0.16+8 - Add to .gitignore...

Oracle Linux 10 : glibc (ELSA-2025-11066)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-11066 advisory. - CVE-2025-5702: Vector register overwrite bug in glibc RHEL-95485 Tenable has extracted the preceding description block directly from the Oracle Linux securi...

Oracle Linux 9 : tomcat (ELSA-2025-11335)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-11335 advisory. - Resolves: RHEL-91765 tomcat: DoS via malformed HTTP/2 PRIORITYUPDATE frame CVE-2025-31650 - Resolves: RHEL-71981 tomcat: Incomplete fix for...

Oracle Linux 10 : glib2 (ELSA-2025-10855)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-10855 advisory. - Add patches for CVE-2024-52533 and CVE-2025-4373 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : emacs (ELSA-2025-11030)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-11030 advisory. 1:26.1-15 - Restore definition of variable 'enable-dir-local-variables' RHEL-92830 1:26.1-14 - Fix arbitrary code execution via Lisp macro expansion RHEL-69394...

Oracle Linux 10 : kernel (ELSA-2025-10854)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-10854 advisory. 6.12.0-55.21.1.0.10.OL10 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Add new Oracle Linux Driver Signing key 1 certificate Orabug:...

Oracle Linux 9 : glib2 (ELSA-2025-11140)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-11140 advisory. - Add patches for CVE-2024-52533 and CVE-2025-4373 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : python3.12-setuptools (ELSA-2025-11044)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-11044 advisory. 68.2.2-5 - Security fix for CVE-2025-47273 Resolves: RHEL-101131 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : python-setuptools (ELSA-2025-11036)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-11036 advisory. 39.2.0-9 - Security fix for CVE-2025-47273 Resolves: RHEL-96802 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : lz4 (ELSA-2025-11035)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-11035 advisory. - Fix CVE-2019-17543 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested fo...

kernel security update

5.14.0-570.26.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

Oracle Linux 8 : python3.11-setuptools (ELSA-2025-11043)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-11043 advisory. 65.5.1-4 - Security fix for CVE-2025-47273 Resolves: RHEL-101126 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : go-toolset:rhel8 (ELSA-2025-10672)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-10672 advisory. delve 1.24.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev golang 1.24.4-1 - Update to Go 1.24.4 fips-1 - Resolves: RHEL-85264 go-toolset...

Oracle Linux 8 : socat (ELSA-2025-11042)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-11042 advisory. - add fix for CVE-2024-54661 Resolves: RHEL-70095 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 7 : firefox (ELSA-2025-10181)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-10181 advisory. 128.12.0-1.0.1 - Update to 128.12.0 Orabug: 38141310CVE-2025-6424CVE-2025-6425 CVE-2025-6429CVE-2025-6430 Tenable has extracted the preceding...