Oracle Linux 9 : ghostscript (ELSA-2024-6197)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6197 advisory. - RHEL-44759 CVE-2024-33870 ghostscript: path traversal to arbitrary files if the current directory is in the permitted paths - RHEL-44745 CVE-2024-338...

Oracle Linux 9 : wget (ELSA-2024-6192)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-6192 advisory. 1.21.1-8 - Resolves: RHEL-43226 - Misinterpretation of input may lead to improper behavior Tenable has extracted the preceding description block directly from t...

Oracle Linux 8 : virt:kvm_utils3 (ELSA-2024-12604)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12604 advisory. - Fix CVE-2022-0485: Fail nbdcopy if NBD read or write fails resolves: rhbz2045718 - Contains fix for NBD Protocol Downgrade Attack CVE-2019-14842. -...

Oracle Linux 8 : virt:kvm_utils2 (ELSA-2024-12605)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12605 advisory. - Fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-3925...

Oracle Linux 8 : postgresql:12 (ELSA-2024-6000)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-6000 advisory. pgaudit pgrepack postgres-decoderbufs postgresql 12.20-1 - Update to 12.20 - Fix CVE-2024-7348 Tenable has extracted the preceding description block directly fr...

Oracle Linux 8 : python39:3.9 / and / python39-devel:3.9 (ELSA-2024-5962)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5962 advisory. - Security fix for CVE-2024-8088 Resolves: RHEL-55954 - Security fix for CVE-2024-6923 Resolves: RHEL-53102 - Security fix for CVE-2024-4032 Resolves:...

Oracle Linux 8 : postgresql:13 (ELSA-2024-6018)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-6018 advisory. pgaudit pgrepack postgres-decoderbufs postgresql 13.16-1 - Update to 13.16 - Fix CVE-2024-7348 Tenable has extracted the preceding description block directly fr...

Oracle Linux 8 : postgresql:15 (ELSA-2024-6001)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6001 advisory. pgaudit pgrepack postgres-decoderbufs postgresql 15.8-1 - Update to 15.8 - Fix CVE-2024-7348 Tenable has extracted the preceding description block...

Oracle Linux 9 : postgresql:15 (ELSA-2024-6020)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6020 advisory. - Fix CVE-2024-0985 - Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, CVE-2023-39417, and CVE-2023-39418 - Fixes CVE-2023-2454 and CVE-2023-2455...

Oracle Linux 8 : postgresql:16 (ELSA-2024-5927)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5927 advisory. pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pgrepack postgres-decoderbufs...

Oracle Linux 9 : postgresql:16 (ELSA-2024-5929)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5929 advisory. pgaudit pgrepack postgres-decoderbufs postgresql 16.4-1 - Update to 16.4 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 9 : kernel (ELSA-2024-5928)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5928 advisory. - bnxtre: avoid shift undefined behavior in bnxtqpliballocinithwq Kamal Heib RHEL-44287 CVE-2024-38540 - netfilter: flowtable: validate pppoe header...

Oracle Linux 8 : libvpx (ELSA-2024-5941)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5941 advisory. 1.7.0-11 - Add patch to fix integer overflows. - Fix compilation by including limits.h - Resolves: RHEL-40650 Tenable has extracted the preceding...

kernel security update

5.14.0-427.33.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 9 : nodejs:20 (ELSA-2024-5815)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5815 advisory. nodejs 1:20.16.0-1 - Update to 20.16.0 Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020 nodejs-nodemon nodejs-packaging Tenable has extracted the...

Oracle Linux 8 : nodejs:20 (ELSA-2024-5814)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5814 advisory. nodejs 1:20.16.0-1 - Update to 20.16.0 Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020 nodejs-nodemon nodejs-packaging Tenable has extracted the...

Oracle Linux 8 : python3.12-setuptools (ELSA-2024-5531)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-5531 advisory. 68.2.2-4 - Security fix for CVE-2024-6345 Resolves: RHEL-50475 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : tomcat (ELSA-2024-5694)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-5694 advisory. 1:9.0.87-1.el810.2 - Resolves: RHEL-46167 tomcat: Improper Handling of Exceptional Conditions CVE-2024-34750 Tenable has extracted the preceding description blo...

Oracle Linux 9 : tomcat (ELSA-2024-5693)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-5693 advisory. 1:9.0.87-1.el94.2 - Resolves: RHEL-46162 tomcat: Improper Handling of Exceptional Conditions CVE-2024-34750 Tenable has extracted the preceding description bloc...

Oracle Linux 8 : curl (ELSA-2024-5654)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-5654 advisory. - provide common cleanup method for push headers CVE-2024-2398 Tenable has extracted the preceding description block directly from the Oracle Linux security...