Oracle Linux 8 : virt:kvm_utils3 (ELSA-2026-50118)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50118 advisory. - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501...

Oracle Linux 10 : 389-ds-base (ELSA-2026-3208)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3208 advisory. - Resolves: RHEL-137071 - CVE-2025-14905 389-ds-base: Remote Code Execution and Denial of Service via heap buffer overflow rhel-10.1.z Tenable has extracted th...

Oracle Linux 8 : munge (ELSA-2026-3032)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3032 advisory. - Fix CVE-2026-25506 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

Oracle Linux 8 : openssl (ELSA-2026-3042)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3042 advisory. - Fix CVE-2025-69419: Arbitrary code execution due to out-of-bounds write in PKCS12 processing ticketlifetimehint exceed 1 week in TLSv1.3 and breaks compliant...

Oracle Linux 9 : glibc (ELSA-2026-50120)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50120 advisory. - CVE-2025-15281: wordexp WRDEREUSE uninitialized memory read RHEL-144079 - CVE-2026-0915: Stack memory disclosure in getnetbyaddr RHEL-141851 -...

kernel security update

4.18.0-553.107.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Oracle Linux 9 : munge (ELSA-2026-3034)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3034 advisory. - Fix CVE-2026-25506 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

Oracle Linux 9 : freerdp (ELSA-2026-3067)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3067 advisory. 2:2.11.7-1.2 - Backport several CVE fixes Resolves: RHEL-148847, RHEL-148887, RHEL-149020 Tenable has extracted the preceding description block directl...

Oracle Linux 10 : munge (ELSA-2026-3033)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3033 advisory. 0.5.15-11 - Fix CVE-2026-25506 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

Oracle Linux 9 : libpng15 (ELSA-2026-3031)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-3031 advisory. 1.5.30-14.1 - fix CVE-2026-25646: heap buffer overflow in pngsetquantize RHEL-148404 Tenable has extracted the preceding description block directly from the...

Oracle Linux 10 : golang-github-openprinting-ipp-usb (ELSA-2026-3092)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-3092 advisory. 0.9.27-5 - rebuilt to fix CVE-2025-68121, CVE-2025-61726 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 10 : grafana-pcp (ELSA-2026-3035)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-3035 advisory. - Resolves RHEL-146722: CVE-2025-61726 - Resolves RHEL-146927: CVE-2025-61729 Tenable has extracted the preceding description block directly from the...

Oracle Linux 10 : protobuf (ELSA-2026-3094)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3094 advisory. - Fix CVE-2026-0994: nested Any messages bypassing recursion depth limits Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 10 : freerdp (ELSA-2026-3068)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-3068 advisory. 2:3.10.3-5.2 - Backport several CVE fixes Resolves: RHEL-147912, RHEL-148815, RHEL-148859, RHEL-148892, RHEL-148973 Tenable has extracted the precedin...

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50112)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50112 advisory. - tls: Use skdstget and dstdevrcu in getnetdevforsock. Kuniyuki Iwashima Orabug: 38649136 CVE-2025-40149 - fuse: fix runtime warning on...

Oracle Linux 9 : protobuf (ELSA-2026-3095)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-3095 advisory. 3.14.0-17 - Fix CVE-2026-0994: nested Any messages bypassing recursion depth limits Tenable has extracted the preceding description block directly from the Orac...

Oracle Linux 9 : grafana-pcp (ELSA-2026-3040)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-3040 advisory. - Resolves RHEL-146864: CVE-2025-61726 - Resolves RHEL-147082: CVE-2025-61729 Tenable has extracted the preceding description block directly from the...

Oracle Linux 7 : java-11-openjdk (ELSA-2026-0847)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0847 advisory. - Fixes CVE-2025-64720 CVE-2025-65018 CVE-2026-21925 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 7 : gnupg2 (ELSA-2026-1677)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1677 advisory. 2.0.22-5.0.1 - Fix CVE-2025-68973 gpg.fail/memcpy Orabug: 38914175 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 10 : grafana (ELSA-2026-2914)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2914 advisory. - Resolves RHEL-144948: CVE-2026-21721 - Resolves RHEL-146721: CVE-2025-61726 - Resolves RHEL-146926: CVE-2025-61729 - Resolves RHEL-147351:...