Oracle Linux 9 : libsndfile:1.0.31 (ELSA-2024-11237)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11237 advisory. 1.0.31-8.2 - fix crash in ogg vorbis RHEL-65096 CVE-2024-50612 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : unbound:1.16.2 (ELSA-2024-11232)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11232 advisory. - Fix unbounded name compression could lead to Denial of Service CVE-2024-8508 - Ensure group access correction reaches also updated configs CVE-2024-1488 -...

Oracle Linux 9 : containernetworking-plugins (ELSA-2024-11216)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-11216 advisory. 1:1.5.1-3 - rebuild to fix CVE-2024-34156 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 8 : gstreamer1-plugins-base (ELSA-2024-11345)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-11345 advisory. 1.16.1-5.0.1 - Update origin URL Orabug: 36209826 1.16.1-5 - Fixes for CVE-2024-47538, CVE-2024-47607, CVE-2024-47615 Resolves: RHEL-70974, RHEL-71010...

Oracle Linux 9 : edk2:20240524 (ELSA-2024-11219)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11219 advisory. 20240524-6.0.1.el95.3 - edk2-OvmfPkg-Rerun-dispatcher-after-initializing-virtio-r.patch RHEL-58631 - Resolves: RHEL-58631 Regression HTTP Boot fails to work wi...

Oracle Linux 9 : mpg123:1.32.9 (ELSA-2024-11242)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11242 advisory. - Rebase to 1.32.9, includes patch for CVE-2024-10573 Resolves: RHEL-65445 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : pam (ELSA-2024-11250)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11250 advisory. - pamunix: always run the helper to obtain shadow password file entries. CVE-2024-10041. Resolves: RHEL-62880 - pamnamespace: protectdir: use ODIRECTORY to...

Oracle Linux 9 : skopeo (ELSA-2024-11217)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11217 advisory. 2:1.16.1-2 - rebuild to fix CVE-2024-34156 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2024-12887)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12887 advisory. - mm: shmem: fix data-race in shmemgetattr Jeongjun Park Orabug: 37268580 CVE-2024-50228 - wifi: iwlwifi: mvm: fix 6 GHz scan construction Johanne...

Oracle Linux 8 : edk2:20220126gitbb1bba3d77 (ELSA-2024-11185)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11185 advisory. 20220126gitbb1bba3d77-13.el8.4 - edk2-MdePkg-Fix-overflow-issue-in-BasePeCoffLib.patch RHEL-60830 - Resolves: RHEL-60830 CVE-2024-38796 edk2: Integer overflows...

Oracle Linux 8 : python3.11-urllib3 (ELSA-2024-11189)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-11189 advisory. 1.26.12-5 - Security fix for CVE-2023-45803 Resolves: RHEL-66562 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : libsndfile (ELSA-2024-11192)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11192 advisory. 1.0.28-16 - fix prerequisit patch RHEL-65093 1.0.28-15 - fix crash in ogg vorbis RHEL-65093 CVE-2024-50612 Tenable has extracted the preceding description bloc...

Oracle Linux 8 : mpg123 (ELSA-2024-11193)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11193 advisory. - Rebase to 1.32.9, includes patch for CVE-2024-10573 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Oracle Linux 8 : bluez (ELSA-2024-11154)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11154 advisory. 5.63-3 + bluez-5.63-3 - Add back the tests for OSCI. 5.63-2 + bluez-5.63-2 - Change default of ClassicBondedOnly to true to align with HID specification. -...

Oracle Linux 8 : tuned (ELSA-2024-11161)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11161 advisory. - Added sanity checks for API methods parameters, CVE-2024-52337 Resolves: RHEL-66614 Tenable has extracted the preceding description block directly from the...

Oracle Linux 8 : gstreamer1-plugins-good (ELSA-2024-11299)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-11299 advisory. 1.16.1-5 - CVE-2024-47537, CVE-2024-47539, CVE-2024-47540, CVE-2024-47606, CVE-2024-47613 Resolves: RHEL-70949, RHEL-70962, RHEL-70936, RHEL-71022...

Oracle Linux 7 : firefox (ELSA-2024-10881)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-10881 advisory. 128.5.1-1.0.1 - Update to 128.5.1 Orabug: 37370369CVE-2024-11692CVE-2024-11694 CVE-2024-11695CVE-2024-11696CVE-2024-11697CVE-2024-11699 Tenable has...

Oracle Linux 7 : tuned (ELSA-2024-10381)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10381 advisory. 2.11.0-12.0.3 - CVE-2024-52337 fixes Orabug: 37327384 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Oracle Linux 9 : gstreamer1-plugins-base (ELSA-2024-11123)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-11123 advisory. 1.22.1-3 - Fixes for CVE-2024-47538, CVE-2024-47607, CVE-2024-47615 Resolves: RHEL-70979, RHEL-71015, RHEL-70991 Tenable has extracted the preceding...

Oracle Linux 8 : pcs (ELSA-2024-10987)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10987 advisory. 0.10.18-2.0.1.el810.3 - Replace HAM-logo.png with a generic one 0.10.18-2.el810.3 - Prevented any future HTTP header-based attacks on puma/sinatra by removing...