.NET 9.0 security, bug fix, and enhancement update

9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81645...

.NET 9.0 security, bug fix, and enhancement update

9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81649...

Oracle Linux 9 : pcs (ELSA-2025-2471)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-2471 advisory. 0.11.8-1.el95.2 - Fixed CVE-2024-52804 by patching bundled Tornado Resolves: RHEL-81924 Tenable has extracted the preceding description block directly from the...

Oracle Linux 9 : libxml2 (ELSA-2025-2679)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2679 advisory. - Fix CVE-2024-56171 RHEL-80128 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

Oracle Linux 8 : .NET / 8.0 (ELSA-2025-2670)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-2670 advisory. 8.0.114-1.0.1 - Add support for Oracle Linux 8.0.114-1 - Update to .NET SDK 8.0.114 and Runtime 8.0.14 - Resolves: RHEL-81639 Tenable has extracted the precedin...

Oracle Linux 9 : .NET / 9.0 (ELSA-2025-2668)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-2668 advisory. 9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81649 Tenable has extracted the preceding...

Oracle Linux 9 : .NET / 8.0 (ELSA-2025-2669)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-2669 advisory. 8.0.114-1.0.1 - Add support for Oracle Linux 8.0.114-1 - Update to .NET SDK 8.0.114 and Runtime 8.0.14 - Resolves: RHEL-81640 Tenable has extracted the precedin...

Oracle Linux 9 : kernel (ELSA-2025-2627)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2627 advisory. - HID: core: zero-initialize the report buffer Benjamin Tissoires RHEL-81838 CVE-2024-50302 - ALSA: usb-audio: Fix potential out-of-bound accesses for...

Oracle Linux 8 : libxml2 (ELSA-2025-2686)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2686 advisory. - Fix CVE-2024-56171 RHEL-80122 - Fix CVE-2025-24928 RHEL-80137 - Fix CVE-2022-49043 RHEL-76289 Tenable has extracted the preceding description block...

kernel security update

5.14.0-503.31.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 8 : kernel (ELSA-2025-2473)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2473 advisory. - HID: core: zero-initialize the report buffer CKI Backport Bot RHEL-81825 CVE-2024-50302 - ALSA: usb-audio: Fix potential out-of-bound accesses for...

Oracle Linux 7 : bind (ELSA-2025-1718)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-1718 advisory. 32:9.11.4-26.0.3.P2.16 - Resolve CVE-2024-11187 Orabug: 37616907 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2025-20153)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20153 advisory. - ipv6: fix possible UAF in ip6finishoutput2 Eric Dumazet Orabug: 37029070 CVE-2024-44986 - dmaengine: atxdmac: avoid nullprtderef in...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20152)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20152 advisory. - scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs Ranjan Kumar Orabug: 37472354 CVE-2024-57804 - crypto: qat/qat4xxx - fix o...

Oracle Linux 8 : tigervnc (ELSA-2025-2502)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2502 advisory. - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Resolves: RHEL-79397 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in...

Oracle Linux 8 : rsync (ELSA-2025-2600)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2600 advisory. 3.1.3-21 - Resolves: RHEL-70207 - Path traversal vulnerability in rsync Tenable has extracted the preceding description block directly from the Oracle...

kernel security update

4.18.0-553.44.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Oracle Linux 9 : tigervnc (ELSA-2025-2500)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-2500 advisory. - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Resolves: RHEL-79406 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in...

Oracle Linux 7 : krb5 (ELSA-2025-1352)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-1352 advisory. 1.15.1-55.0.9 - Fixes CVE-2025-24528 , Prevent overflow when calculating ulog block size Orabug: 37587301 Tenable has extracted the preceding description block...

Oracle Linux 8 : firefox (ELSA-2025-2452)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-2452 advisory. 128.8.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.8.0 - Add debranding patches Mustafa Gezen - Add OpenELA default...