Oracle Linux 8 : oniguruma (ELSA-2024-0889)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0889 advisory. - Fix CVE-2019-13224 Resolves: RHEL-6970 - Fix CVE-2019-16163 Resolves: RHEL-9506 - Fix CVE-2019-19012 Resolves: RHEL-9511 - Fix CVE-2019-19203 Resolve...

Oracle Linux 7 : python-pillow (ELSA-2024-0857)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0857 advisory. 2.0.0-25gitd1c6db8 - Security fix for CVE-2023-50447 Resolves: RHEL-22239 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : .NET / 8.0 (ELSA-2024-0848)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0848 advisory. 8.0.102-2.0.1 - Update to .NET SDK 8.0.102 and Runtime 8.0.2 - Add -dbg subpackages for symbol files - Resolves: RHEL-23070 Tenable has extracted the...

Oracle Linux 8 : dotnet7.0 (ELSA-2024-0806)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0806 advisory. 7.0.116-1.0.1 - Update to .NET SDK 7.0.116 and Runtime 7.0.16 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : dotnet6.0 (ELSA-2024-0808)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0808 advisory. 6.0.127-1.0.1 - Update to .NET SDK 6.0.127 and Runtime 6.0.27 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : container-tools:4.0 (ELSA-2024-0748)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0748 advisory. buildah cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp oci-seccomp-bpf-hook...

Oracle Linux 8 : openssh (ELSA-2024-12164)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12164 advisory. - Update patches for CVE-2023-51385, CVE-2023-48795 Orabug: 36256632 - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385 Tenable...

Oracle Linux 8 : nss (ELSA-2024-0786)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0786 advisory. 3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...

Oracle Linux 9 : dotnet6.0 (ELSA-2024-0807)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0807 advisory. 6.0.127-1.0.1 - Update to .NET SDK 6.0.127 and Runtime 6.0.27 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : dotnet7.0 (ELSA-2024-0805)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0805 advisory. 7.0.116-1.0.1 - Update to .NET SDK 7.0.116 and Runtime 7.0.16 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : container-tools:ol8 (ELSA-2024-0752)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0752 advisory. aardvark-dns buildah 1:1.31.3-3.0.1 - Rebuild with newer dependencies cockpit-podman conmon containernetworking-plugins 1:1.3.0-8.0.1 - Rebuild with newer...

Oracle Linux 9 : nss (ELSA-2024-0790)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0790 advisory. 3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...

Oracle Linux 8 / 9 : sudo (ELSA-2024-0811)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0811 advisory. - CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output Resolves: RHEL-21834 - CVE-2023-28486 sudo: Sudo does not escap...

Oracle Linux 7 : openssh (ELSA-2024-12158)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12158 advisory. 7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445 Tenable has extracted the preceding...

Oracle Linux 7 : openssh (ELSA-2024-12157)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-12157 advisory. 7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445 Tenable has extracted the preceding...

Oracle Linux 8 : tcpdump (ELSA-2024-0769)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2024-0769 advisory. 14:4.9.3-3.1 - tcpslice: use-after-free in extractslice CVE-2021-41043 Tenable has extracted the preceding description block directly from the Oracle Linux...

Update Rollup 70 for Azure Site Recovery -KB5034599

None None...

Oracle Linux 8 : Unbreakable Enterprise kernel-container (ELSA-2024-12154)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12154 advisory. - smb: client: fix OOB in smbCalcSize Paulo Alcantara CVE-2023-6606 - RDMA/irdma: Prevent zero-length STAG registration Christopher Bednarz...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12151)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12151 advisory. 5.4.17-2136.328.3 - IB/cm: Cancel mad on the DREQ event when the state is MRAREPRCVD Mark Zhang Orabug: 36143228 - KSPLICE: make sure the stack is...

Oracle Linux 8 : virt:kvm_utils1 (ELSA-2024-12152)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12152 advisory. - virtio-crypto: verify src&dst buffer length for sym request zhenwei pi Orabug: 35724113 CVE-2023-3180 - hw/scsi/lsi53c895a: Fix reentrancy issues in...