Oracle Linux 9 : gstreamer1-plugins-bad-free (ELSA-2025-8183)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8183 advisory. 1.22.12-4 - fix for CVE-2025-3887 Resolves: RHEL-93063 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Oracle Linux 9 : thunderbird (ELSA-2025-8203)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-8203 advisory. 128.10.1-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.10.1 - Add OpenELA debranding 128.10.1-1 - Update to 128.10.1 Tenable ha...

Oracle Linux 8 : gstreamer1-plugins-bad-free (ELSA-2025-8201)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8201 advisory. 1.16.1-5.0.1 - Update origin URL Orabug: 36209826 1.16.1-5 - fix for CVE-2025-3887 Resolves: RHEL-93051 Tenable has extracted the preceding description block...

Oracle Linux 9 : kernel (ELSA-2025-8142)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8142 advisory. - cifs: Fix integer overflow while processing acregmax mount option CKI Backport Bot RHEL-87921 CVE-2025-21964 Tenable has extracted the preceding description...

Oracle Linux 9 : unbound (ELSA-2025-8197)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-8197 advisory. 1.16.2-18 - Prevent unbounded name compression CVE-2024-8508 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : python-tornado (ELSA-2025-8136)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-8136 advisory. 6.4.2-2.2 - tests: add citest.fmf + update gating.yaml Related: RHEL-91999 6.4.2-2.1 - httputil: Raise errors instead of logging in multipart/form-data parsing...

Oracle Linux 9 : libsoup (ELSA-2025-8126)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8126 advisory. 2.72.0-10.2 - Backport patches for various CVEs Resolves: RHEL-85888 Resolves: RHEL-87081 Resolves: RHEL-88332 Resolves: RHEL-92285 Tenable has extract...

Oracle Linux 8 : libsoup (ELSA-2025-8132)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8132 advisory. 2.62.3-9 - Add patches to improve test reliability - Backport patches for various CVEs Resolves: RHEL-85879 Resolves: RHEL-92280 Resolves: RHEL-93031...

Oracle Linux 9 : redis (ELSA-2025-7438)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7438 advisory. 6.2.18-1 - rebase to 6.2.18 for CVE-2025-21605 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 9 : grafana (ELSA-2025-7893)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7893 advisory. - Resolves RHEL-89954: CVE-2025-4123 - Resolves RHEL-84636: CVE-2025-30204 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : firefox (ELSA-2025-8049)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8049 advisory. 128.10.1-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Re...

Oracle Linux 9 : gimp (ELSA-2025-7417)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7417 advisory. - GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on...

Oracle Linux 9 : redis:7 (ELSA-2025-7429)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7429 advisory. - rebase to 7.2.8 for CVE-2025-21605 - rebase to 7.2.7 for CVE-2024-46981 and CVE-2024-51741 Tenable has extracted the preceding description block directly from...

Oracle Linux 9 : webkit2gtk3 (ELSA-2025-7995)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7995 advisory. 2.48.2-1 - Update to 2.48.2 - Reenable JIT Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 9 : nginx (ELSA-2025-7402)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7402 advisory. - Resolves: RHEL-85556 - nginx: Memory disclosure in the ngxhttpmp4module CVE-2022-41742 - Resolves: RHEL-91446 - nginx: Memory corruption in the...

Oracle Linux 9 : ghostscript (ELSA-2025-7586)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7586 advisory. - RHEL-88966 CVE-2025-27832 ghostscript: NPDL device: Compression buffer overflow - RHEL-18397 CVE-2023-46751 ghostscript: dangling pointer in...

Oracle Linux 9 : nodejs:22 (ELSA-2025-7433)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7433 advisory. - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87319 - Update c-ares to newest version with fix for CVE-2025-31498 Resolves: RHEL-86586 - Update ...

Oracle Linux 9 : php:8.3 (ELSA-2025-7418)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7418 advisory. php 8.3.19-1 - rebase to 8.3.19 8.3.15-1 - rebase to 8.3.15 8.3.12-1 - rebase to 8.3.12 RHEL-62189 - enable command history in phpdbg - backport Argon2...

Oracle Linux 9 : php:8.2 (ELSA-2025-7432)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7432 advisory. php 8.2.28-1 - rebase to 8.2.28 8.2.25-1 - rebase to 8.2.25 RHEL-65837 8.2.13-1 - rebase to 8.2.13 RHEL-14699 - add %phpize and %phpconfig macros - mov...

Oracle Linux 9 : kernel (ELSA-2025-7903)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7903 advisory. - vsock: Orphan socket after transport release Jay Shin RHEL-89113 CVE-2025-21756 - vsock: Keep the binding until socket destruction Jay Shin RHEL-8911...