kernel security update

5.14.0-503.35.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 9 : expat (ELSA-2025-3531)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3531 advisory. - Improve fix for CVE-2024-8176 - Fix CVE-2024-8176 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 9 : libreoffice (ELSA-2025-3408)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3408 advisory. 1:7.1.8.1-15.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Added the --with-hamcrest option to configure. 1:7.1.8.1-15 - Fix CVE-2025-1080 Filter o...

Oracle Linux 8 : freetype (ELSA-2025-3421)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3421 advisory. - Fix CVE-2025-27363 Out-of-bounds Write Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

Oracle Linux 9 : freetype (ELSA-2025-3407)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3407 advisory. - Fix for CVE-2025-27363 out-of-bound write vulnerability Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Oracle Linux 8 : python-jinja2 (ELSA-2025-3388)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-3388 advisory. 2.10.1-7 - Security fix for CVE-2025-27516 Resolves: RHEL-85066 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : python-jinja2 (ELSA-2025-3406)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-3406 advisory. 2.11.3-8 - Security fix for CVE-2025-27516 Resolves: RHEL-85064 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 : tigervnc (ELSA-2025-2861)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2861 advisory. - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Orabug: 37712725 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in...

Oracle Linux 7 : kernel (ELSA-2025-2501)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2501 advisory. - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices Benot Sevens CVE-2024-53197 Orabug: 37686305 - can: bcm: Fix UAF in...

Oracle Linux 9 : grafana (ELSA-2025-3344)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3344 advisory. 10.2.6-9 - Resolves RHEL-84634: CVE-2025-30204 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 9 : podman (ELSA-2025-3336)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3336 advisory. - fixes 'CVE-2025-22869 podman: Potential denial of service in golang.org/x/crypto rhel-9.5.z' Tenable has extracted the preceding description block directly fr...

Oracle Linux 9 : nginx:1.22 (ELSA-2025-3261)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3261 advisory. - Resolves: RHEL-84486 - nginx:1.22/nginx: specially crafted MP4 file may cause denial of service CVE-2024-7347 - Resolves: RHEL-12737 - nginx:1.22/nginx: HTTP/...

Oracle Linux 9 : nginx:1.24 (ELSA-2025-3262)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3262 advisory. - Resolves: RHEL-84480 - nginx:1.24/nginx: specially crafted MP4 file may cause denial of service CVE-2024-7347 - Resolves: RHEL-12737 - nginx:1.22/nginx: HTTP/...

Oracle Linux 8 : kernel (ELSA-2025-3260)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3260 advisory. - arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array CKI Backport Bot RHEL-82720 CVE-2025-21785 Tenable has extracted the preceding description bloc...

Oracle Linux 8 : container-tools:ol8 (ELSA-2025-3210)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3210 advisory. - fixes 'CVE-2025-22869 container-tools:rhel8/podman: Potential denial of service in golang.org/x/crypto rhel-8.10.z' Tenable has extracted the preceding...

Oracle Linux 9 : kernel (ELSA-2025-3208)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3208 advisory. - arm64: cacheinfo: Avoid out-of-bounds write to cacheinfo array CKI Backport Bot RHEL-82734 CVE-2025-21785 Tenable has extracted the preceding description bloc...

kernel security update

4.18.0-553.46.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

kernel security update

5.14.0-503.34.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 9 : fence-agents (ELSA-2025-3113)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3113 advisory. 4.10.0-76.6 - fenceibmvpc: refresh bearer-token if token data is corrupt, and avoid edge-case of writing empty token file Resolves: RHEL-83487 4.10.0-76.5 -...

Oracle Linux 9 : libxslt (ELSA-2025-3107)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-3107 advisory. 1.1.34-9.0.1.el95.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.34-9.1 - Fix CVE-2025-24855 RHEL-83501 Tenable has...