Oracle Linux 9 : golang (ELSA-2024-7550)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-7550 advisory. - Fix CVE-2024-9355 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

Oracle Linux 8 : firefox (ELSA-2024-7700)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-7700 advisory. 128.3.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.3.0 - Add debranding patches Mustafa Gezen - Add OpenELA default...

Oracle Linux 8 : thunderbird (ELSA-2024-7699)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-7699 advisory. 128.3.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.3.0 - Add OpenELA debranding 128.3.0-1 - Update to 127.3.0 Tenable h...

Oracle Linux 7 : python3-setuptools (ELSA-2024-6661)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-6661 advisory. 39.2.0-10.0.3 - Back port fix for CVE-2024-6345 Orabug: 37054771 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 : e2fsprogs (ELSA-2024-12704)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12704 advisory. 1.45.4-3.0.7 - libext2fs: add sanity check to extent manipulation Srivathsa Dara Orabug: 37095032 CVE-2022-1304 Tenable has extracted the preceding description...

Oracle Linux 9 : thunderbird (ELSA-2024-7552)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-7552 advisory. 128.3.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.3.0 - Add OpenELA debranding 128.3.0-1 - Update to 127.3.0 Tenable has...

Oracle Linux 8 : ovirt-engine (ELSA-2024-12701)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12701 advisory. 4.4.10.7-1.0.33 - Fix external providers properties observability 4.4.10.7-1.0.32 - Upgrade bundled frontend dependency of jquery-ui 4.4.10.7-1.0.31 - Allow...

Oracle Linux 9 : firefox (ELSA-2024-7505)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-7505 advisory. 128.3.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red...

Oracle Linux 8 : go-toolset:ol8 (ELSA-2024-7502)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-7502 advisory. delve golang 1.21.13-3 - Add evp-digest-sign-final.patch - Resolves: RHEL-61109 go-toolset Tenable has extracted the preceding description block directly from t...

Oracle Linux 8 : cups-filters (ELSA-2024-7463)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-7463 advisory. - CVE-2024-47175 cups-filters: remote command injection via attacker controlled data in PPD file - CVE-2024-47076 cups-filters: cfGetPrinterAttributes...

Oracle Linux 7 : flatpak (ELSA-2024-6417)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-6417 advisory. 1.0.9-13.0.1 - Fix CVE-2024-42472 Orabug: 37027734 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 7 : krb5 (ELSA-2024-5076)

"The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5076 advisory. - Fix integer overflows in PAC parsing CVE-2022-42898 - Fix KDC null deref on TGS inner body null server CVE-2021-37750 - Fix flaws in LDAP DN checkin...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2024-12700)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12700 advisory. - scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc Justin Tee Orabug: 36643241 CVE-2024-35930 - scsi: qla2xxx: Fix command flush on cable pul...

Oracle Linux 7 : python-urllib3 (ELSA-2024-12709)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-12709 advisory. 1.10.2-7.0.1 - CVE-2024-37891 fix Orabug: 37085188 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 9 : cups-filters (ELSA-2024-7346)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-7346 advisory. - CVE-2024-47175 cups-filters: remote command injection via attacker controlled data in PPD file - CVE-2024-47076 cups-filters: cfGetPrinterAttributes...

Oracle Linux 7 : freeradius (ELSA-2024-4911)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-4911 advisory. 3.0.13-15.0.1 - Fixes CVE-2024-3596 security issue Orabug: 36904288 Tenable has extracted the preceding description block directly from the Oracle Linux securit...

Oracle Linux 8 : grafana (ELSA-2024-7349)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-7349 advisory. 9.2.10-18 - Resolves RHEL-47191 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

Oracle Linux 7 : kernel (ELSA-2024-6994)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-6994 advisory. 3.10.0-1160.119.1.0.5.el7.OL7 - wifi: mac80211: Avoid address calculations via out of bounds array indexing Kees Cook Orabug: 37092983 Tenable has extracted the...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2024-12682)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12682 advisory. - dmaengine: idxd: add a write method for applications to submit work Nikhil Rao Orabug: 36770955 CVE-2024-21823 - dmaengine: idxd: add a new...

Oracle Linux 8 : osbuild-composer (ELSA-2024-7262)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-7262 advisory. 101-2.0.1 - Rebuilt to fix: - CVE-2024-34156 - CVE-2024-1394 - RHEL-24303 - RHEL-57905 Tenable has extracted the preceding description block directly...