Oracle Linux 9 : gstreamer1-plugins-good (ELSA-2024-11122)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-11122 advisory. 1.22.1-3 - CVE-2024-47537, CVE-2024-47539, CVE-2024-47540, CVE-2024-47606, CVE-2024-47613 Resolves: RHEL-70954, RHEL-70967, RHEL-70941, RHEL-71027,...

Oracle Linux 7 : gimp:2.8.22 (ELSA-2024-10666)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10666 advisory. - Fix CVE-2023-44442 Orabug: 37344570 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Oracle Linux 9 : python3.11 (ELSA-2024-11111)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-11111 advisory. 3.11.9-7.2 - Security fix for CVE-2024-9287 Resolves: RHEL-64882 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 : postgresql (ELSA-2024-8495)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8495 advisory. - Backport fix for CVE-2023-7348 Orabug: 37220738 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12884)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12884 advisory. - devlink: fix possible use-after-free and memory leaks in devlinkinit Vasiliy Kovalev Orabug: 37284641 CVE-2024-26734 - mm: avoid leaving partial...

Oracle Linux 9 : php:8.1 (ELSA-2024-10950)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10950 advisory. php 8.1.30-1 - rebase to 8.1.30 RHEL-64144 php-pecl-apcu 5.1.21-1 - update to 5.1.21 for PHP 8.1 2070040 php-pecl-rrd php-pecl-xdebug3 3.1.4-1 - updat...

Oracle Linux 8 : php:7.4 (ELSA-2024-10952)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10952 advisory. - Fix cgi.forceredirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered...

Oracle Linux 8 : python36:3.6 (ELSA-2024-10953)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10953 advisory. python36 python-distro python-docs python-docutils python-nose python-pygments python-pymongo python-PyMySQL python-sqlalchemy python-virtualenv 15.1.0-23 -...

Oracle Linux 8 : kernel (ELSA-2024-10943)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10943 advisory. - irqchip/gic-v4: Correctly deal with setaffinity on lazily-mapped VPEs Charles Mirabile RHEL-66965 CVE-2024-50192 - irqchip/gic-v4: Don't allow a VMO...

Oracle Linux 9 : kernel (ELSA-2024-10939)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10939 advisory. - net/smc: fix illegal rmbdesc access in SMC-D connection dump Steve Best RHEL-65436 RHEL-27748 CVE-2024-26615 - netfilter: nftpayload: sanitize offse...

Oracle Linux 9 : python3.9:3.9.21 (ELSA-2024-10983)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10983 advisory. 3.9.21-1 - Update to 3.9.21 - Security fix for CVE-2024-11168 and CVE-2024-9287 Resolves: RHEL-64888 Resolves: RHEL-67259 Tenable has extracted the...

Oracle Linux 8 : python3.11 (ELSA-2024-10979)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10979 advisory. 3.11.11-1.0.1 - Update rpm-macros description Orabug: 36024572 3.11.11-1 - Update to 3.11.11 Resolves: RHEL-64879 Tenable has extracted the preceding descripti...

Oracle Linux 8 : php:8.2 (ELSA-2024-10951)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10951 advisory. libzip php 8.2.25-1 - rebase to 8.2.25 RHEL-66166 php-pear php-pecl-apcu php-pecl-rrd php-pecl-xdebug3 php-pecl-zip Tenable has extracted the precedin...

Oracle Linux 9 : php:8.2 (ELSA-2024-10949)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10949 advisory. php 8.2.25-1 - rebase to 8.2.25 RHEL-65837 php-pecl-apcu 5.1.23-1 - update to 5.1.23 for PHP 8.2 RHEL-14699 php-pecl-rrd php-pecl-xdebug3 3.2.2-2 - dr...

Oracle Linux 9 : python3.12 (ELSA-2024-10978)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10978 advisory. 3.12.5-2.2 - Security fix for CVE-2024-9287 and CVE-2024-12254 Resolves: RHEL-64885, RHEL-70316 Tenable has extracted the preceding description block...

Oracle Linux 8 : python3.12 (ELSA-2024-10980)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10980 advisory. 3.12.8-1 - Update to 3.12.8 - Security fix for CVE-2024-9287 and CVE-2024-12254 Resolves: RHEL-64880, RHEL-70315 Tenable has extracted the preceding...

kernel security update

4.18.0-553.32.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

kernel security update

5.14.0-503.16.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 9 : ruby (ELSA-2024-10858)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10858 advisory. - Fix REXML ReDoS vulnerability. CVE-2024-49761 Resolves: rbhz2322153 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : postgresql (ELSA-2024-10791)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10791 advisory. 13.18-1 - Update to 13.18 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...