Oracle Linux 8 : ruby:2.5 (ELSA-2024-10850)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10850 advisory. - Fix REXML ReDoS vulnerability CVE-2024-49761. rubygem-abrt Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2024-12868)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12868 advisory. - ocfs2: reserve space for inline xattr before attaching reflink tree Gautham Ananthakrishna Orabug: 37199021 CVE-2024-49958 - rtmutex: Drop...

Oracle Linux 7 : libsoup (ELSA-2024-9654)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9654 advisory. 2.62.2-2.0.1 - Fixed CVE-2024-52530 for smuggling nullbytes in header names Orabug: 37289659 Tenable has extracted the preceding description block directly from...

Oracle Linux 9 : postgresql:15 (ELSA-2024-10787)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10787 advisory. pgaudit pgrepack postgres-decoderbufs postgresql 15.10-1 - Update to 15.10 - Fixes: CVE-2024-10976 CVE-2024-10978 CVE-2024-10979 Tenable has extracted...

Oracle Linux 8 : postgresql:12 (ELSA-2024-10785)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10785 advisory. pgaudit pgrepack postgres-decoderbufs postgresql 12.22-1 - Update to 12.22 - Fixes: CVE-2024-10976 CVE-2024-10978 Tenable has extracted the preceding...

Oracle Linux 8 : perl-App-cpanminus:1.7044 (ELSA-2024-10219)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10219 advisory. - Patch the code to use https instead of http CVE-2024-45321 perl-CPAN-DistnameInfo perl-CPAN-Meta-Check perl-File-pushd perl-Module-CPANfile perl-Parse-PMFile...

Oracle Linux 9 : redis:7 (ELSA-2024-10869)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10869 advisory. 7.2.6-1 - rebase to 7.2.6 RHEL-26628 7.0.12-1 - rebase to 7.0.12 2221899 7.0.11-1 - rebase to 7.0.11 for new redis:7 stream 2129826 7.0.11-1 - Upstrea...

Oracle Linux 8 : postgresql:13 (ELSA-2024-10832)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10832 advisory. pgaudit 1.5.0-1 - Update to version 1.5.0 Related: 1855776 1.4.0-4 - Bump release for rebuild against libpq-12.1-3 1.4.0-3 - BuildRequires libpq-devel...

Oracle Linux 9 : ruby:3.1 (ELSA-2024-10860)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10860 advisory. - Fix REXML ReDoS vulnerability. CVE-2024-49761 Resolves: RHEL-68530 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : postgresql:16 (ELSA-2024-10831)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10831 advisory. - Fixes: CVE-2024-10976 CVE-2024-10978 CVE-2024-10979 - Fix CVE-2024-7348 - Fixes: CVE-2023-2454 CVE-2023-2455 Tenable has extracted the preceding...

Oracle Linux 8 : postgresql:15 (ELSA-2024-10830)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10830 advisory. pgaudit pgrepack postgres-decoderbufs postgresql 15.10-1 - Update to 15.10 - Fixes: CVE-2024-10976 CVE-2024-10978 CVE-2024-10979 Tenable has extracted...

Oracle Linux 8 : ruby:3.1 (ELSA-2024-10834)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-10834 advisory. ruby 3.1.5-144 - Fix REXML ReDoS vulnerability. CVE-2024-49761 Resolves: RHEL-68520 rubygem-abrt rubygem-mysql2 rubygem-pg Tenable has extracted the preceding...

Oracle Linux 8 : python3:3.6.8 (ELSA-2024-10779)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10779 advisory. - Security fix for CVE-2024-11168 Resolves: RHEL-67252 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : postgresql:16 (ELSA-2024-10788)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10788 advisory. - Fixes: CVE-2024-10976 CVE-2024-10978 CVE-2024-10979 - Fixes: CVE-2023-2454 CVE-2023-2455 Tenable has extracted the preceding description block...

python3:3.6.8 security update

3.6.8-69.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8.openela.0 - Add openela to supported dists 3.6.8-69 - Security fix for CVE-2024-11168 Resolves: RHEL-67252 3.6.8-68 - Security fix for CVE-2024-9287 Resolves: RHEL-64878...

Oracle Linux 7 : tigervnc (ELSA-2024-9901)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9901 advisory. 1.8.0-33.0.3 - xorg-x11-server: xkb: Fix buffer overflow in XkbSetCompatMap CVE-2024-9632Orabug: 37295822 Tenable has extracted the preceding description block...

Oracle Linux 8 : firefox (ELSA-2024-10752)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-10752 advisory. 128.5.1-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.5.1 - Add debranding patches Mustafa Gezen - Add OpenELA default...

Oracle Linux 8 : thunderbird (ELSA-2024-10591)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-10591 advisory. 128.5.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.5.0 - Add OpenELA debranding 128.5.0-1 - Update to 128.5.0 build1...

Oracle Linux 9 : firefox (ELSA-2024-10702)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10702 advisory. 128.5.1-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Re...

Oracle Linux 9 : thunderbird (ELSA-2024-10592)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-10592 advisory. 128.5.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.5.0 - Add OpenELA debranding 128.5.0-1 - Update to 128.5.0 build1 Tenabl...