Oracle Linux 8 : firefox (ELSA-2024-8729)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-8729 advisory. 128.4.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.4.0 - Add debranding patches Mustafa Gezen - Add OpenELA default...

Oracle Linux 9 : firefox (ELSA-2024-8726)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8726 advisory. 128.4.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red...

Oracle Linux 9 : grafana (ELSA-2024-8678)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8678 advisory. - Resolves RHEL-62309: CVE-2024-47875 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 9 : mod_http2 (ELSA-2024-8680)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8680 advisory. 2.0.26-2.1 - Resolves: RHEL-45803 - modhttp2: DoS by null pointer in websocket over HTTP/2 CVE-2024-36387 Tenable has extracted the preceding description block...

Oracle Linux 9 : kernel (ELSA-2024-8617)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8617 advisory. - redhat/configs: Add CONFIGMITIGATIONSPECTREBHI Waiman Long RHEL-45492 RHEL-28203 CVE-2024-2201 - x86/bugs: Fix BHI retpoline check Waiman Long...

kernel security update

5.14.0-427.42.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 9 : buildah (ELSA-2024-8563)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8563 advisory. 1.33.10-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.33.10-1 - update to the latest content of...

Oracle Linux 7 : firefox (ELSA-2024-6838)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-6838 advisory. 128.2.0-1.0.1 - Remove nomerge annotation from abort calls Orabug: 37079143 - Update to 128.2.0 Orabug: 37079143 Tenable has extracted the preceding...

Oracle Linux 8 : python39:3.9 / and / python39-devel:3.9 (ELSA-2024-8359)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8359 advisory. modwsgi numpy python39 3.9.20-1 - Update to 3.9.20 Resolves: RHEL-60007 python3x-pip python3x-setuptools python3x-six python-cffi python-chardet...

Oracle Linux 7 : firefox (ELSA-2024-7702)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-7702 advisory. 128.3.0-1.0.1 - Update to 128.3.0 Orabug: 37139909 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : python3.12 (ELSA-2024-8447)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8447 advisory. 3.12.1-4.4 - Security fix for CVE-2024-6232 Resolves: RHEL-57416 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 : firefox (ELSA-2024-8034)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8034 advisory. 128.3.1-2.0.1 - Update to 128.3.1 Orabug: 37168934 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 9 : python3.9 (ELSA-2024-8446)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8446 advisory. - Fix: CVE-2024-6232 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

Oracle Linux 9 : python3.11 (ELSA-2024-8374)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8374 advisory. 3.11.7-1.6 - Security fix for CVE-2024-6232 Resolves: RHEL-57411 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : grafana (ELSA-2024-8327)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8327 advisory. - Resolves RHEL-62307: CVE-2024-47875 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

After Upgrade Veeam Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization Appliance Is Listed as Unavailable

Challenge After the upgrade of Veeam Backup & Replication to version 12.2 and subsequent upgrade of Veeam Backup for Oracle Linux Virtualization Manager and Red Hat Virtualization to version 5, the Appliance is listed as Unavailable in the Veeam Backup & Replication Console. When this occurs,...

Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12792)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12792 advisory. - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves:...

Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12791)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12791 advisory. - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 - Fix for CVE-2019-9755 heap-based buffer overflow leads to local root...

Oracle Linux 8 : NetworkManager-libreswan (ELSA-2024-8353)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8353 advisory. 1.2.10-7 - Unbreak validation of unknown keys 1.2.10-6 - Fix improper escaping of Libreswan configuration CVE-2024-9050 Tenable has extracted the preceding...

Oracle Linux 8 : edk2 (ELSA-2024-28600)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-28600 advisory. - EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This vulnerability can be exploited by an attacker to gain...