Oracle Linux 9 : skopeo (ELSA-2024-2549)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2549 advisory. 2:1.14.3-2 - update to the latest content of https://github.com/containers/skopeo/tree/release-1.14 https://github.com/containers/skopeo/commit/5f2b9af...

libreswan security update

4.12-2.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.12-2 - Fix CVE-2024-2357 RHEL-32761 - x509: unpack IPv6 general names based on length RHEL-32718...

Oracle Linux 9 : libreswan (ELSA-2024-2565)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-2565 advisory. - Fix CVE-2024-2357 RHEL-32761 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

Oracle Linux 9 : tigervnc (ELSA-2024-2616)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2616 advisory. - Fix crash caused by fix for CVE-2024-31083 Resolves: RHEL-30985 - Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in...

Oracle Linux 9 : python-jwcrypto (ELSA-2024-2559)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-2559 advisory. 0.8-5 - Address potential DoS with high compression ratio Resolves: RHEL-28698 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 9 : libvirt (ELSA-2024-2560)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2560 advisory. - Fix off-by-one error in udevListInterfacesByStatus CVE-2024-1441, RHEL-25081 Tenable has extracted the preceding description block directly from the...

Oracle Linux 9 : libxml2 (ELSA-2024-2679)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2679 advisory. 2.9.13-6 - Fix CVE-2024-25062 RHEL-29196 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessu...

Oracle Linux 9 : exfatprogs (ELSA-2024-2437)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-2437 advisory. 1.2.2-2 - Backport fixes for issues found by OpenScanHub - Related: RHEL-7945 1.2.2-1 - Rebase to upstream v1.2.2 - Related: RHEL-15865 - Related: RHEL-14995...

Oracle Linux 9 : systemd (ELSA-2024-2463)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2463 advisory. 252-32.0.2 - Due to a new Orabug: 36564551 filed on April 29 2024, reverting from back to - previous Tony Lam patch Orabug: 25897792 until issue with Orabug:...

Oracle Linux 9 : LibRaw (ELSA-2024-2137)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2137 advisory. 0.21.1-1 - 0.21.1 - Include the fix for CVE-2023-1729 from Fedora Resolves: RHEL-768 Tenable has extracted the preceding description block directly from the...

Oracle Linux 9 : containernetworking-plugins (ELSA-2024-2272)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-2272 advisory. - rebuild for following CVEs: CVE-2022-41724 CVE-2022-41725 CVE-2023-24538 CVE-2023-24534 CVE-2023-24536 CVE-2022-41723 CVE-2023-24539 CVE-2023-24540...

Oracle Linux 9 : skopeo (ELSA-2024-2239)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2239 advisory. - rebuild for following CVEs: CVE-2022-41724 CVE-2022-41725 CVE-2023-24537 CVE-2023-24538 CVE-2023-24534 CVE-2023-24536 CVE-2022-41723 CVE-2023-24539...

Oracle Linux 9 : webkit2gtk3 (ELSA-2024-2126)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2126 advisory. 2.42.5-1 - Update to 2.42.5 Resolves: RHEL-3960 2.42.4-1 - Update to 2.42.4 Resolves: RHEL-3960 Resolves: RHEL-19366 2.42.3-1 - Update to 2.42.3...

Oracle Linux 9 : pmix (ELSA-2024-2199)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2199 advisory. - Fix CVE-2023-41915 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

Oracle Linux 9 : squashfs-tools (ELSA-2024-2396)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-2396 advisory. - CVE-2021-41072 squashfs-tools: additional write outside destination directory exploit fix CVE-2021-40153 squashfs-tools: unvalidated filepaths allow...

Oracle Linux 9 : gstreamer1-plugins-base (ELSA-2024-2302)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2302 advisory. - CVE-2023-37328: heap overwrite in subtitle parsing Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Not...

Oracle Linux 9 : wpa_supplicant (ELSA-2024-2517)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-2517 advisory. 1:2.10-5 - Support macsec HW offload. Resolves: RHEL-22440 - Backport fix for PEAP client CVE-2023-52160 Tenable has extracted the preceding description block...

Oracle Linux 9 : python3.11-urllib3 (ELSA-2024-2159)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-2159 advisory. 1.26.12-2 - Security fix for CVE-2023-43804 Resolves: RHEL-12003 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : fence-agents (ELSA-2024-2132)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2132 advisory. - bundled urllib3: fix CVE-2023-45803 Resolves: RHEL-18139 - bundled pycryptodome: fix CVE-2023-52323 Resolves: RHEL-20917 - bundled jinja2: fix...

Oracle Linux 9 : python3.11-cryptography (ELSA-2024-2337)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-2337 advisory. - Security fix for CVE-2023-49083 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has n...