Oracle Linux 10 : python3.12 (ELSA-2026-6256)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-6256 advisory. - Security fix for CVE-2026-4519 Resolves: RHEL-158127 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Oracle Linux 9 : thunderbird (ELSA-2026-6188)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-6188 advisory. 140.9.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.9.0 - Add OpenELA debranding 140.9.0-1 - Update to 140.9.0 ESR Tenable ha...

Oracle Linux 9 : freerdp (ELSA-2026-6004)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6004 advisory. 2:2.11.7-1.3 - Backport several CVE fixes Resolves: RHEL-151988, RHEL-152215 Tenable has extracted the preceding description block directly from the...

Oracle Linux 10 : kernel (ELSA-2026-6053)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6053 advisory. - scsi: qla2xxx: Fix bsgdone causing double free Ewan D. Milne RHEL-153413 CVE-2025-71238 Tenable has extracted the preceding description block direct...

Oracle Linux 8 : freerdp (ELSA-2026-6005)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6005 advisory. 2:2.11.7-4 - Backport several CVE fixes Resolves: RHEL-151979, RHEL-152206 Tenable has extracted the preceding description block directly from the Orac...

kernel security update

4.18.0-553.115.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Oracle Linux 7 : libpng (ELSA-2026-4756)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-4756 advisory. - Fix CVE-2026-25646 Orabug: 39093556 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

Oracle Linux 10 : firefox (ELSA-2026-5931)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-5931 advisory. 140.9.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Re...

Oracle Linux 7 : freerdp (ELSA-2026-4471)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-4471 advisory. - Fixed CVE-2026-22855 CVE-2026-22858 CVE-2026-22859 Orabug: 39075086 - fixed CVE-2026-23530 CVE-2026-23531 CVE-2026-23532 CVE-2026-23533 CVE-2026-2388...

Oracle Linux 10 : ncurses (ELSA-2026-5913)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-5913 advisory. 6.4-15.20240127 - fix buffer overflow in infocmp -i CVE-2025-69720 Tenable has extracted the preceding description block directly from the Oracle Linux securit...

Oracle Linux 9 : golang (ELSA-2026-5942)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5942 advisory. 1.25.8-2 - Update to Go 1.25.8 fips-1 - Resolves: RHEL-157451 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : mysql:8.0 (ELSA-2026-5580)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5580 advisory. mecab 0.996-2.12 - Bump version for 'mysql' module rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'AppStream' repo -...

Oracle Linux 10 : freerdp (ELSA-2026-5939)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5939 advisory. 2:3.10.3-5.3 - Backport several CVE fixes Resolves: RHEL-151975, RHEL-152202 Tenable has extracted the preceding description block directly from the...

Oracle Linux 8 : firefox (ELSA-2026-5932)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-5932 advisory. 140.9.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 140.9.0 - Add debranding patches Mustafa Gezen - Add OpenELA default...

Oracle Linux 10 : golang (ELSA-2026-5941)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5941 advisory. 1.25.8-1 - Update to Go 1.25.8 fips-1 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Oracle Linux 8 : virt:ol / and / virt-devel:ol (ELSA-2026-5578)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-5578 advisory. - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 libguestfs - Fixes: CVE-2022-40284 - Fix CVE-2024-7383 NBD server improper certificate...

Oracle Linux 9 : firefox (ELSA-2026-5930)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5930 advisory. 140.9.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red...

Oracle Linux 8 : glibc (ELSA-2026-50174)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50174 advisory. - CVE-2025-15281: wordexp WRDEREUSE uninitialized memory read RHEL-142787 - CVE-2026-0915: Stack memory disclosure in getnetbyaddr RHEL-141849 -...

Oracle Linux 9 : nginx (ELSA-2026-5599)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-5599 advisory. - Resolves: RHEL-146525 - nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections CVE-2026-1642 - Resolves: RHEL-84477 - nginx:...

Oracle Linux 9 : mysql:8.4 (ELSA-2026-5640)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-5640 advisory. mecab 0.996-3.4 - Bump version for package rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'CRB' repo - Resolves: 2182069...