Oracle Linux 8 : openssl (ELSA-2024-12786)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12786 advisory. 1:1.1.1k-14 - Backport fix SSLselectnext proto from OpenSSL 3.2 Fix CVE-2024-5535 Resolves: RHEL-45654 Tenable has extracted the preceding description block...

Oracle Linux 7 / 8 / 9 : linux-firmware (ELSA-2024-12797)

The remote Oracle Linux 7 / 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12797 advisory. 20241003-999.35.git95bfe086.el8 - Rebase to latest upstream Orabug: 37132142 - Fix build error in ol7 due to linking in copy-firmware.sh Orabu...

Oracle Linux 8 : edk2 (ELSA-2024-12795)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12795 advisory. - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division- By-Zero due to a UNIT32 overflow via local...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2024-12796)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12796 advisory. - mm: avoid leaving partial pfn mappings around in error case Linus Torvalds Orabug: 37174198 CVE-2024-47674 - netfilter: iptables: Fix...

Oracle Linux 7 : edk2 (ELSA-2024-12794)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-12794 advisory. - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division- By-Zero due to a UNIT32 overflow via local...

Oracle Linux 7 : edk2 (ELSA-2024-12793)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-12793 advisory. - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division- By-Zero due to a UNIT32 overflow via local...

Oracle Linux 7 : 389-ds-base (ELSA-2024-7434)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-7434 advisory. 1.3.11.1-5.0.3 - Security fix for CVE-2024-8445 Orabug: 37119399CVE-2024-8445 Tenable has extracted the preceding description block directly from the Oracle Lin...

Oracle Linux 8 / 9 : java-1.8.0-openjdk (ELSA-2024-8117)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8117 advisory. 1.8.0.432.b06-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.432.b06-1 - Update to shenandoah-jdk8u432-b06 GA - Update release notes fo...

Oracle Linux 8 / 9 : java-17-openjdk (ELSA-2024-8124)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8124 advisory. 17.0.13.0.11-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.13.0.11-3 - Correct version suffix in 'Update to jdk-17.0.13+11 GA' changelo...

Oracle Linux 9 : webkit2gtk3 (ELSA-2024-8180)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8180 advisory. 2.46.1-1 - Update to 2.46.1 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus ha...

Oracle Linux 7 : httpd (ELSA-2024-7101)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-7101 advisory. 2.4.6-99.0.5.1 - Differentiate trusted sources Orabug: 37100272CVE-2024-38476 Tenable has extracted the preceding description block directly from the Oracle Lin...

Oracle Linux 8 / 9 : java-21-openjdk (ELSA-2024-8127)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8127 advisory. 1:21.0.5.0.10-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.5.0.10-3 - Sync the copy of the portable specfile with the latest update -...

Oracle Linux 8 / 9 : java-11-openjdk (ELSA-2024-8121)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8121 advisory. 1:11.0.25.0.9-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.25.0.9-2 - Update to jdk-11.0.25+9 GA - Update release notes to 11.0.25+9 -...

Oracle Linux 9 : kernel (ELSA-2024-8162)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8162 advisory. - gfs2: Fix NULL pointer dereference in gfs2logflush CKI Backport Bot RHEL-51561 RHEL-51559 CVE-2024-42079 - KVM: SVM: WARN on vNMI + NMI window iff NM...

Oracle Linux 7 : python-setuptools (ELSA-2024-6662)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-6662 advisory. 0.9.8-7.0.1 - Fixes CVE-2024-6345 security issue Orabug: 37054994 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 : bind (ELSA-2024-5930)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5930 advisory. - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Oracle Linux 9 : containernetworking-plugins (ELSA-2024-8110)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-8110 advisory. - rebuild for CVE-2024-34156 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

Oracle Linux 9 : buildah (ELSA-2024-8112)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8112 advisory. - rebuild to address CVE-2024-34155 CVE-2024-34156 CVE-2024-34158 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : skopeo (ELSA-2024-8111)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-8111 advisory. - rebuild for CVE-2024-34156 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

Oracle Linux 9 : podman (ELSA-2024-8039)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-8039 advisory. - rebuild to address CVE-2024-34155 CVE-2024-34156 CVE-2024-34158 Tenable has extracted the preceding description block directly from the Oracle Linux...