10682 matches found
Oracle Linux 9 : python-pip (ELSA-2023-6694)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6694 advisory. 21.2.3-7 - Use tarfile.datafilter for extracting CVE-2007-4559, PEP-721, PEP-706 Resolves: RHBZ2207997 Tenable has extracted the preceding description block...
Oracle Linux 9 : libssh (ELSA-2023-6643)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6643 advisory. - Fix CVE-2023-1667 and CVE-2023-2283 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...
Oracle Linux 9 : python3.11 (ELSA-2023-6494)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6494 advisory. - Security fixes for CVE-2023-40217 and CVE-2023-41105 Resolves: RHEL-3045, RHEL-3269 - Fix symlink handling in the fix for CVE-2023-24329 Resolves:...
Oracle Linux 9 : python3.9 (ELSA-2023-6659)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6659 advisory. - Security fix for CVE-2023-40217 Resolves: RHEL-3043 - Fix symlink handling in the fix for CVE-2023-24329 Resolves: rhbz263261 - Security fix for CVE-2023-2432...
Oracle Linux 9 : buildah (ELSA-2023-6473)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6473 advisory. - rebuild for following CVEs: CVE-2023-25173 CVE-2022-41724 CVE-2022-41725 CVE-2023-24538 CVE-2023-24534 CVE-2023-24536 CVE-2022-41723 CVE-2023-24539...
Oracle Linux 9 : edk2 (ELSA-2023-6330)
The remote Oracle Linux 9 host has packages installed that are affected by a denial of service vulnerability as referenced in the ELSA-2023-6330 advisory. - Issue summary: Processing some specially crafted ASN.1 object identifiers or data containing them may be very slow. Impact summary:...
Oracle Linux 9 : grafana (ELSA-2023-6420)
The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2023-6420 advisory. - resolve CVE-2023-39325 CVE-2023-44487 rapid stream resets can cause excessive work - resolve CVE-2023-3128 grafana: account takeover possible when...
Oracle Linux 8 : microcode_ctl (ELSA-2023-12988)
The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-12988 advisory. 4:20230808-2.0.2 - update 06-6a-06 to 0xd0003b9 CVE-2023-23583 Tenable has extracted the preceding description block directly from the Oracle Linux security...
Oracle Linux 7 : plexus-archiver (ELSA-2023-6886)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6886 advisory. 0:2.4.2-6 - Avoid override target symlink by standard file in AbstractUnArchiver - Fixes: CVE-2023-37460 Tenable has extracted the preceding description block...
Oracle Linux 7 : microcode_ctl (ELSA-2023-12989)
The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-12989 advisory. 2:2.1-73.19.0.3 - update 06-6a-06 to 0xd0003b9 CVE-2023-23583 Tenable has extracted the preceding description block directly from the Oracle Linux security...
python security update
2.7.5-94.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-94 - Security fix for CVE-2023-40217 Resolves: RHEL-9615...
Oracle Linux 7 : python (ELSA-2023-6885)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6885 advisory. 2.7.5-94.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-94 - Security fix for CVE-2023-40217 Resolves: RHEL-9615 Tenable has extracted...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2023-12974)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12974 advisory. 5.4.17-2136.325.5 - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext Krister Johansen Orabug: 35905508 - char: misc: Increa...
kernel security, bug fix, and enhancement update
5.14.0-362.8.13.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libreswan security update
4.12-1.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.12-1 - Update to 4.12 to fix CVE-2023-38710, CVE-2023-38711, CVE-2023-38712 - Resolves: rhbz2215956 4.9-5 - Just bumping up the version to include bugs for CVE-2023-2295. There is no code fix for it. Fix for it is including t...
python3 security update
3.6.8-21.0.1 - Remove the 'getfile' feature of pydoc Orabug: 33182027CVE-2021-3426 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-21 - Test fixups for CVE-2023-40217 Resolves: RHEL-3139 3.6.8-20 - Security fi...
Oracle Linux 7 : xorg-x11-server (ELSA-2023-6802)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6802 advisory. 1.20.4-24 - CVE fix for: CVE-2023-5367 Resolves: https://issues.redhat.com/browse/RHEL-13424 Tenable has extracted the preceding description block directly from...
Oracle Linux 7 : python3 (ELSA-2023-6823)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6823 advisory. - Remove the 'getfile' feature of pydoc Orabug: 33182027CVE-2021-3426 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177 - Test fixups for...
Oracle Linux 7 : squid (ELSA-2023-6805)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6805 advisory. - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing 778 - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL...
Oracle Linux 8 : squid:4 (ELSA-2023-6267)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6267 advisory. - Improve HTTP chunked encoding compliance CVE-2023-46846 Tenable has extracted the preceding description block directly from the Oracle Linux security...