Oracle Linux 10 : libxslt (ELSA-2025-7496)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7496 advisory. - Fix CVE-2024-55549 RHEL-83503 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Ness...

Oracle Linux 10 : libblockdev (ELSA-2025-9328)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9328 advisory. 3.2.0-4.0.1 - enable btrfs support Orabug: 30792917 3.2.0-4 - Don't allow suid and dev set on fs resize - CVE-2025-6019 Tenable has extracted the preceding...

Oracle Linux 10 : xorg-x11-server-Xwayland (ELSA-2025-9304)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-9304 advisory. - CVE fix for: CVE-2025-49175 RHEL-97129, CVE-2025-49176 RHEL-97135, CVE-2025-49177 RHEL-97141, CVE-2025-49178 RHEL-97147, CVE-2025-49179 RHEL-97153,...

Oracle Linux 10 : unbound (ELSA-2025-8047)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8047 advisory. 1.20.0-10 - Prevent unbounded name compression CVE-2024-8508 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : osbuild-composer (ELSA-2025-9844)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9844 advisory. - Rebuilt to fix: - CVE-2024-34156 - CVE-2024-1394 - RHEL-24303 - RHEL-57905 Tenable has extracted the preceding description block directly from the Oracle Linu...

Oracle Linux 10 : php (ELSA-2025-7489)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7489 advisory. 8.3.19-1 - rebase to 8.3.19 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

Oracle Linux 10 : xz (ELSA-2025-7524)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7524 advisory. - Fix: heap-use-after-free bug in threaded .xz decoder CVE-2025-31115 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 10 : sqlite (ELSA-2025-7517)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7517 advisory. - Fix for CVE-2025-3277 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...

Oracle Linux 10 : ipa (ELSA-2025-9190)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9190 advisory. - Resolves: RHEL-89908 EMBARGOED CVE-2025-4404 ipa: Privilege escalation from host to domain admin in FreeIPA Tenable has extracted the preceding description...

Oracle Linux 10 : firefox (ELSA-2025-8341)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-8341 advisory. 128.11.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.11.0-1 - Update to 128.11.0 128.10.1-1 - Update to 128.10.1...

Oracle Linux 10 : python-tornado (ELSA-2025-8135)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-8135 advisory. 6.4.2-1.el100.1 - httputil: Raise errors instead of logging in multipart/form-data parsing Resolves: RHEL-91992 Tenable has extracted the preceding description...

Oracle Linux 10 : delve / and / golang (ELSA-2025-7466)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7466 advisory. - golang: crypto/x509: crypto/x509: usage of IPv6 zone IDs can bypass URI name constraints CVE-2024-45341 - golang: net/http: net/http: sensitive...

Oracle Linux 8 : weldr-client (ELSA-2025-9845)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-9845 advisory. 35.12-3 - Update test repository snapshot urls rhel 8.10 and remove cs8 repos The snapshots for cs8 have been removed from the service - Rebuild for...

Oracle Linux 10 : apache-commons-beanutils (ELSA-2025-9166)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9166 advisory. 1.9.4-21 - Fix improper access control vulnerability - Resolves: CVE-2025-48734 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 10 : libsoup3 (ELSA-2025-8128)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8128 advisory. - Fix CVE-2025-4035, CVE-2025-4948, CVE-2025-32049, CVE-2025-32907 Tenable has extracted the preceding description block directly from the Oracle Linu...

Oracle Linux 10 : exiv2 (ELSA-2025-7457)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7457 advisory. 0.28.3-3.2 - Revert: remove rpath patch Resolves: RHEL-80106 - Fix CVE-2025-26623 exiv2: Use After Free Resolves: RHEL-80106 Tenable has extracted the precedin...

Oracle Linux 10 : nodejs22 (ELSA-2025-8493)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8493 advisory. - Update c-ares with fix for CVE-2025-31498 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. No...

Oracle Linux 10 : java-21-openjdk (ELSA-2025-7508)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7508 advisory. 1:21.0.7.0.6-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.7.0.6-1 - Update to jdk-21.0.7+6 GA - Update release notes to 21.0.7+6 - Rebase...

Oracle Linux 10 : valkey (ELSA-2025-7509)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7509 advisory. 8.0.3.1 - rebase to 8.0.3 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not test...

Oracle Linux 10 : libvpx (ELSA-2025-9120)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9120 advisory. 1.14.1-3 - Add patch for double free Resolves: RHEL-93905 Tenable has extracted the preceding description block directly from the Oracle Linux security advisor...