Oracle Linux 9 : podman (ELSA-2025-7391)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7391 advisory. - fixes 'CVE-2025-22869 podman: Potential denial of service in golang.org/x/crypto rhel-9.6' Tenable has extracted the preceding description block...

Oracle Linux 9 : python3.12-cryptography (ELSA-2025-7317)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-7317 advisory. - Security fix for CVE-2025-24898 in the bundled openssl crate Resolves: RHEL-77735 - Update to 41.0.7, fixes CVE-2023-49083 Tenable has extracted the preceding...

Oracle Linux 9 : git (ELSA-2025-7409)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7409 advisory. 2.47.1-2 - add the option to sanitize sideband channel messages - Resolves: RHEL-84513 Tenable has extracted the preceding description block directly from the...

Oracle Linux 9 : xterm (ELSA-2025-7427)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7427 advisory. - Fix CVE-2022-45063 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

Oracle Linux 9 : libxslt (ELSA-2025-7410)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7410 advisory. 1.1.34-13.0.1 - Fix memory leak in exclPrefixPush Orabug: 37871881 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.34-13 -...

Oracle Linux 8 : firefox (ELSA-2025-8060)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-8060 advisory. 128.10.1-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.10.1 - Add debranding patches Mustafa Gezen - Add OpenELA default...

Oracle Linux 9 : ghostscript (ELSA-2025-7422)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7422 advisory. - RHEL-18397 CVE-2023-46751 ghostscript: dangling pointer in gdevprnopenprinterseekable - RHEL-67048 CVE-2024-46951 ghostscript: Arbitrary Code Executi...

Oracle Linux 9 : rpm-ostree (ELSA-2025-7147)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7147 advisory. 2025.5-1 - Rebase to 2025.5 Resolves: RHEL-78697 2025.4-1 - Rebase to 2025.4 Resolves: RHEL-68131 2025.3-1 - Rebase to 2025.3 Resolves: RHEL-68131 2025.2-1 -...

Oracle Linux 9 : grub2 (ELSA-2025-6990)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-6990 advisory. - Fix CVE-2022-3775 Orabug: 34871953 - Resolves: CVE-2024-45779 CVE-2024-45778 CVE-2025-1118 - Resolves: CVE-2025-0677 CVE-2024-45782 CVE-2025-0690 -...

Oracle Linux 9 : 389-ds-base (ELSA-2025-7395)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7395 advisory. - Resolves: RHEL-83876 - CVE-2025-2487 389-ds-base: null pointer dereference leads to denial of service rhel-9.6 Tenable has extracted the preceding description...

Oracle Linux 9 : gnutls (ELSA-2025-7076)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7076 advisory. 3.8.3-6 - Bump nettle dependency to 3.10.1 RHEL-52740 3.8.3-5 - Backport the fix for CVE-2024-12243 RHEL-78580 Tenable has extracted the preceding description...

Oracle Linux 9 : python3.9 (ELSA-2025-6977)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-6977 advisory. 3.9.21-2 - Security fix for CVE-2025-0938 Resolves: RHEL-77263 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : xdg-utils (ELSA-2025-7672)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-7672 advisory. - Update documentation for CVE-2022-4055 RHEL-87487 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 9 : yelp (ELSA-2025-7430)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7430 advisory. 2:40.3-2.1 - Fix CVE-2025-3155 RHEL-85926 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Ness...

Oracle Linux 9 : perl-Module-ScanDeps (ELSA-2025-7350)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-7350 advisory. - Fix CVE-2024-10224 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

Oracle Linux 9 : webkit2gtk3 (ELSA-2025-7387)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7387 advisory. 2.48.1-1 - Update to 2.48.1 2.48.0-1 - Update to 2.48.0 Tenable has extracted the preceding description block directly from the Oracle Linux security...

kernel security update

5.14.0-570.16.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

kernel security update

5.14.0-570.17.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...

Oracle Linux 9 : corosync (ELSA-2025-7201)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7201 advisory. - totemsrp: Check size of orftoken msg fixes CVE-2025-30472 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : gstreamer1, / gstreamer1-plugins-bad-free, / gstreamer1-plugins-ugly-free, / and / gstreamer1-rtsp-server (ELSA-2025-7178)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7178 advisory. gstreamer1 1.22.12-3 - Rebuild - Resolves: RHEL-38511, RHEL-41157 1.22.12-2 - Rebuild - Resolves: RHEL-38511, RHEL-41157 1.22.12-1 - Update to 1.22.12...