Oracle Linux 10 : firefox (ELSA-2026-3361)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-3361 advisory. 140.8.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Re...

Oracle Linux 10 : python-pyasn1 (ELSA-2026-3354)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3354 advisory. 0.6.2-1 - Update to 0.6.2 - Update modules to 0.4.2 Resolves: RHEL-148142 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : skopeo (ELSA-2026-3340)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3340 advisory. - Rebuild for new golang to address CVE-2025-61726 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : mingw-fontconfig (ELSA-2026-3407)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3407 advisory. 2.12.6-4 - Rebuilt with mingw-expat fix Related: RHEL-114628 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 : gimp (ELSA-2026-1590)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1590 advisory. - Fixes CVE-2025-14422 Orabug: 38904303 - Fixes CVE-2025-10922 and CVE-2025-10934 Orabug: 38739185 - Fixes CVE-2025-5473 GIMP ICO File Parsing Integer Overflow...

Oracle Linux 9 : libpng (ELSA-2026-3405)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3405 advisory. - fix CVE-2026-25646: heap buffer overflow in pngsetquantize RHEL-148970 - fix CVE-2026-22695: heap buffer over-read in pngimagefinishread RHEL-148403...

Oracle Linux 8 : freerdp (ELSA-2026-3334)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3334 advisory. 2:2.11.7-3 - Backport several CVE fixes Resolves: RHEL-148825, RHEL-148865, RHEL-148982 Tenable has extracted the preceding description block directly...

Oracle Linux 9 : python-pyasn1 (ELSA-2026-3359)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3359 advisory. 0.4.8-7 - Resolves: RHEL-148154 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

Oracle Linux 9 : containernetworking-plugins (ELSA-2026-3341)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-3341 advisory. - Rebuild for new golang to address CVE-2025-61726 - rebuild for CVE-2025-22871 Tenable has extracted the preceding description block directly from the...

Oracle Linux 10 : buildah (ELSA-2026-3297)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3297 advisory. - Rebuild for new golang to address CVE-2025-61726 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : buildah (ELSA-2026-3298)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3298 advisory. - Rebuild with golang 1.25.7 to fix CVE-2025-68121 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : firefox (ELSA-2026-3339)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3339 advisory. 140.8.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red...

kernel security update

5.14.0-611.36.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 8 : grafana (ELSA-2026-3188)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3188 advisory. - Fixes CVE-2024-1442 Add email verification when updating user email Orabug: 38550520 - Resolves RHEL-145418: CVE-2025-61728 - Resolves RHEL-146095:...

Oracle Linux 9 : 389-ds-base (ELSA-2026-3189)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3189 advisory. - Resolves: RHEL-137083 - CVE-2025-14905 389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via heap buffer overflow rhel-9.7.z Tenable has...

Oracle Linux 9 : podman (ELSA-2026-3337)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3337 advisory. - Rebuild for new golang to address CVE-2025-61726 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 10 : podman (ELSA-2026-3336)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3336 advisory. - Rebuild for new golang to address CVE-2025-61726 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : grafana-pcp (ELSA-2026-3187)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-3187 advisory. - Resolves RHEL-146096: CVE-2025-61726 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Oracle Linux 9 : kernel (ELSA-2026-3066)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3066 advisory. - pagepool: Fix use-after-free in pagepoolrecycleinring Paolo Abeni RHEL-137841 CVE-2025-38129 Tenable has extracted the preceding description block...

Oracle Linux 9 : runc (ELSA-2026-3291)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-3291 advisory. - Rebuild for new golang to address CVE-2025-68121 Tenable has extracted the preceding description block directly from the Oracle Linux security...