Oracle Linux 8 : redis:6 (ELSA-2025-0595)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-0595 advisory. - rebase to 6.2.17 for CVE-2024-46981 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 9 : git-lfs (ELSA-2025-0673)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-0673 advisory. - Backport CVE-2024-53263 fixes Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

Oracle Linux 8 / 9 : java-17-openjdk (ELSA-2025-0422)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-0422 advisory. 1:17.0.14.0.7-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.14.0.7-3 - Set rpmrelease to 3 - Revert 'Require tzdata-java 2024b at runtime and fo...

Oracle Linux 9 : kernel (ELSA-2025-0578)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-0578 advisory. - arm64/sve: Discard stale CPU state when handling SVE traps Mark Salter RHEL-72218 CVE-2024-50275 - i40e: fix race condition by adding filter's...

kernel security update

5.14.0-503.22.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 8 : grafana (ELSA-2025-0401)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-0401 advisory. - Resolves RHEL-72881: CVE-2025-21614 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 8 : .NET / 9.0 (ELSA-2025-0382)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-0382 advisory. - .NET Remote Code Execution Vulnerability CVE-2025-21171 - .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability CVE-2025-21176 ...

Oracle Linux 8 : .NET / 8.0 (ELSA-2025-0381)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-0381 advisory. 8.0.112-1.0.1 - Add support for Oracle Linux 8.0.112-1 - Update to .NET SDK 8.0.112 and Runtime 8.0.12 - Resolves: RHEL-71554 Tenable has extracted the...

Oracle Linux 9 : and / bug / fixes / for / NetworkManager (ELSA-2025-0377)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-0377 advisory. 1.48.10-5.0.1 - disable MPTCP handling by default Orabug: 34801142 - add connectivity check via Oracle servers Orabug: 32051972 1:1.48.10-5 - vpn: Support routi...

.NET 8.0 security update

8.0.112-1.0.1 - Add support for Oracle Linux 8.0.112-1 - Update to .NET SDK 8.0.112 and Runtime 8.0.12 - Resolves: RHEL-71554...

Oracle Linux 9 : fence-agents (ELSA-2025-0308)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-0308 advisory. 4.10.0-76.4 - bundled jinja2: fix CVE-2024-56201 and CVE-2024-56326 Resolves: RHEL-72070, RHEL-72063 Tenable has extracted the preceding description...

Oracle Linux 9 : ipa (ELSA-2025-0334)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-0334 advisory. 4.12.2-1.0.1.3 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-1.3 - Resolve...

ipa security update

4.12.2-1.0.1.3 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-1.3 - Resolves: RHEL-69928 add support for python cryptography 44.0.0 - Resolves: RHEL-70258 Upgrade to ipa-server-4.12.2-1.el9 OTP-based bind to LDAP...

Oracle Linux 9 : raptor2 (ELSA-2025-0312)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-0312 advisory. 2.0.15-32 - Bump NVR 2.0.15-31 - Resolves: CVE-2024-57823 integer underflow when normalizing a URI with the turtle parser Tenable has extracted the preceding...

Oracle Linux 9 : rsync (ELSA-2025-0324)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-0324 advisory. 3.2.3-20.1 - Resolves: RHEL-72495 - Info Leak via Uninitialized Stack Contents Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 8 : rsync (ELSA-2025-0325)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-0325 advisory. 3.1.3-20 - Resolves: RHEL-70157 - Info Leak via Uninitialized Stack Contents Tenable has extracted the preceding description block directly from the Oracle Linu...

Oracle Linux 8 : raptor2 (ELSA-2025-0314)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-0314 advisory. 2.0.15-17 - Resolves: CVE-2024-57823 integer underflow when normalizing a URI with the turtle parser Tenable has extracted the preceding description block...

Oracle Linux 8 : NetworkManager (ELSA-2025-0288)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-0288 advisory. 1:1.40.16-18.0.1 - disable MPTCP handling by default Orabug: 35081472 - Fix ignore-carrier logic Orabug: 34956744 - Disable regeneration of the documentation...

Oracle Linux 8 : thunderbird (ELSA-2025-0281)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-0281 advisory. 128.6.0-3.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.6.0 - Add OpenELA debranding 128.6.0-3 - Update to 128.6.0 build3...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20018)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20018 advisory. 5.15.0-304.171.4 - Revert 'unicode: Don't special case ignorable code points' Linus Torvalds - Revert 'mmc: dwmmc: Fix IDMAC operation with pages...