Oracle Linux 7 : python-jinja2 (ELSA-2025-1250)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-1250 advisory. 2.7.2-4.0.1 - Fix for CVE-2024-56326 Orabug: 37576737 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. No...

Oracle Linux 9 : grafana (ELSA-2025-8682)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8682 advisory. 10.2.6-14 - Resolves RHEL-89309: CVE-2025-22871 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Oracle Linux 9 : perl-FCGI (ELSA-2025-8635)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-8635 advisory. 1:0.79-8.1 - Fix CVE-2025-40907 integer overflow when parsing FastCGI parameters Tenable has extracted the preceding description block directly from the Oracle...

Unbreakable Enterprise kernel security update

6.12.0-100.28.2 - sched/eevdf: Fix se-slice being set to U64MAX and resulting crash Omar Sandoval - certs: Add new Oracle Linux Driver Signing key 1 certificate Sherry Yang Orabug: 37967533 - Revert 'block: sysfs option to change ioticks granularity' Gulam Mohamed Orabug: 37921776 - RDS: use...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20365)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20365 advisory. - selftest/x86/bugs: Add selftests for ITS Pawan Gupta Orabug: 37945842 CVE-2024-28956 - x86/its: Align RETs in BHB clear sequence to avoid thunki...

Oracle Linux 9 : thunderbird (ELSA-2025-8607)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-8607 advisory. 128.11.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.11.0 - Add OpenELA debranding 128.11.0-1 - Update to 128.11.0 Tenable ha...

Oracle Linux 8 : python3.12-cryptography (ELSA-2025-20364)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-20364 advisory. 41.0.7-1.0.1 - CVE-2024-26130 Orabug: 37982815 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Oracle Linux 7 : firefox (ELSA-2025-8465)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-8465 advisory. - Update to 128.10.1 Orabug: 38028280CVE-2025-4918CVE-2025-4919 - Fixes CVE-2025-2817 CVE-2025-4083 CVE-2025-4087 CVE-2025-4091 and - CVE-2025-4093 -...

Oracle Linux 8 : nodejs:22 (ELSA-2025-8506)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8506 advisory. - Update to 22.16.0 Fixes: CVE-2025-23166 - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87300 - Update c-ares to newest version with fix for CVE-2025-314...

Oracle Linux 8 : perl-CPAN (ELSA-2025-8432)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-8432 advisory. 2.18-402 - Resolves: RHEL-9605 - Add 2022 PAUSE public key. - Change default value for urllist to https://www.cpan.org - Use gpg --verify --output ... to...

Oracle Linux 9 : nodejs:22 (ELSA-2025-8467)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8467 advisory. nodejs 1:22.16.0-1 - Update to 22.16.0 Resolves: RHEL-89600 RHEL-92872 RHEL-92420 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 9 : golang (ELSA-2025-8476)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8476 advisory. 1.23.9-1 - Update to Go 1.23.9 - Remove runtime-usleep-s390x.patch, already merged - Resolves: RHEL-93212 Tenable has extracted the preceding description block...

Oracle Linux 9 : nodejs:20 (ELSA-2025-8468)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8468 advisory. nodejs 1:20.19.2-1 - Update to version 20.19.2 Resolves: RHEL-92865 RHEL-88876 RHEL-91597 nodejs-nodemon nodejs-packaging Tenable has extracted the preceding...

Oracle Linux 8 : go-toolset:ol8 (ELSA-2025-8478)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8478 advisory. delve 1.24.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev golang 1.23.9-1 - Update to Go 1.23.9 - Resolves: RHEL-94636 go-toolset 1.23.9-1 ...

Oracle Linux 9 : kernel (ELSA-2025-8333)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8333 advisory. - misc: sgi-gru: fix use-after-free error in grusetcontextoption, grufault and gruhandleusercallos David Arcari RHEL-87254 CVE-2022-3424 - ndisc: use R...

Oracle Linux 8 : rsync (ELSA-2025-8395)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8395 advisory. 3.1.3-23 - Resolves: RHEL-52004 - Slowness in rsync due to extra validation steps 3.1.3-22 - Resolves: RHEL-91519 - Improper Pointer Arithmetic in pcl Tenable h...

Oracle Linux 8 : git (ELSA-2025-8414)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8414 advisory. 2.43.5-3 - add the option to sanitize sideband channel messages - Resolves: RHEL-74177 Tenable has extracted the preceding description block directly from the...

Oracle Linux 8 : krb5 (ELSA-2025-8411)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8411 advisory. - Don't issue RC4 session keys by default CVE-2025-3576 Resolves: RHEL-88049 Tenable has extracted the preceding description block directly from the Oracle Linu...

Oracle Linux 8 : python36:3.6 (ELSA-2025-8419)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8419 advisory. python36 python-distro python-docs python-docutils python-nose python-pygments python-pymongo 3.7.0-2 - Backport CVE-2024-5629 Tenable has extracted the precedi...

Oracle Linux 8 : ghostscript (ELSA-2025-8421)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8421 advisory. 9.27-17 - RHEL-88965 CVE-2025-27832 ghostscript: NPDL device: Compression buffer overflow Tenable has extracted the preceding description block directly from th...