Oracle Linux 8 : libtiff (ELSA-2024-8833)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8833 advisory. 4.0.9-33 - fix CVE-2024-7006 a null pointer dereference in tifdirinfo RHEL-52927 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 8 : bzip2 (ELSA-2024-8922)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8922 advisory. - CVE-2019-12900: Accept as many selectors as the file format allows Orabug: 37266061 Tenable has extracted the preceding description block directly from the...

Oracle Linux 8 : haproxy (ELSA-2024-8849)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8849 advisory. 1.8.27-5.1 - Reject '' as part of URI path component CVE-2023-45539, RHEL-18168 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 9 : libtiff (ELSA-2024-8914)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8914 advisory. 4.4.0-12.1 - fix CVE-2024-7006 a null pointer dereference in tifdirinfo RHEL-52931 Tenable has extracted the preceding description block directly from the Oracl...

Oracle Linux 9 : edk2 (ELSA-2024-8935)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8935 advisory. 20231122-6.0.1.el94.4 - Replace upstream references Orabug:36569119 20231122-6.el94.4 - edk2-Bumped-openssl-submodule-version-to-0205b5898872.patch RHEL-55337 -...

Oracle Linux 8 : container-tools:ol8 (ELSA-2024-8846)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8846 advisory. aardvark-dns buildah cockpit-podman conmon containernetworking-plugins containers-common 1-82.0.1 - Updated removed references Orabug: 33473101 Alex...

Oracle Linux 8 : go-toolset:ol8 (ELSA-2024-8876)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8876 advisory. - Rebase to Go1.22.5 to fix CVE-2024-24791 - Addresses CVEs-2024-24789 and CVE-2024-24790 - Rebase to Go1.22.5 to fix CVE-2024-24791 - Addresses CVEs-2024-24789...

Oracle Linux 8 : python3.11-urllib3 (ELSA-2024-8843)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8843 advisory. 1.26.12-4 - Fix testssltransport for changes in ssl.SSLSocket in Python 3.11.3 Related: RHEL-59995 1.26.12-3 - Security fix for CVE-2024-37891 Resolves:...

Oracle Linux 8 : python3.12-urllib3 (ELSA-2024-8842)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8842 advisory. 1.26.19-1 - Rebase to 1.26.19 to fix CVE-2024-37891 Resolves: RHEL-59989 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : bcc (ELSA-2024-8831)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8831 advisory. - Really prevent the loading of compromised headers RHEL-28768, CVE-2024-2314 Tenable has extracted the preceding description block directly from the Oracle Lin...

Oracle Linux 8 : bpftrace (ELSA-2024-8830)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8830 advisory. - Fix security hole checking unpacked kernel headers CVE-2024-2313 Tenable has extracted the preceding description block directly from the Oracle Linux security...

kernel security update

4.18.0-553.27.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Oracle Linux 8 : grafana-pcp (ELSA-2024-8847)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8847 advisory. 5.1.1-9 - Resolves RHEL-61780: CVE-2024-9355 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 8 : python-gevent (ELSA-2024-8834)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8834 advisory. 1.2.2-5 - Avoid printing TypeError traceback - gevent.pywsgi: Much improved handling of chunk trailers Backport fix for CVE-2023-41419 Resolves: RHEL-17078...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2024-12806)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12806 advisory. - vtioctl: fix arrayindexnospec in vtsetactivate Jakob Koschel Orabug: 37101899 CVE-2022-48804 - tty: vtioctl: fix potential Spectre v1 Gustavo A...

Oracle Linux 9 : thunderbird (ELSA-2024-8793)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-8793 advisory. 128.4.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.4.0 - Add OpenELA debranding 128.4.0-1 - Update to 128.4.0 build1 Tenable...

Oracle Linux 9 : openexr (ELSA-2024-8800)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8800 advisory. 3.1.1-2.1 - fix CVE-2023-5481 RHEL-64162 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

Oracle Linux 8 : thunderbird (ELSA-2024-8790)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-8790 advisory. 128.4.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.4.0 - Add OpenELA debranding 128.4.0-1 - Update to 128.4.0 build1...

Oracle Linux 8 : Oracle / Linux / Automation / Manager / 2.2 / (MODERATE) (ELSA-2024-12803)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12803 advisory. Oracle Linux Automation Manager 2.2 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 8 : xorg-x11-server / and / xorg-x11-server-Xwayland (ELSA-2024-8798)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8798 advisory. - CVE fix for CVE-2024-9632 xorg-x11-server-Xwayland Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Not...