Oracle Linux 10 : grafana (ELSA-2026-2914)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2914 advisory. - Resolves RHEL-144948: CVE-2026-21721 - Resolves RHEL-146721: CVE-2025-61726 - Resolves RHEL-146926: CVE-2025-61729 - Resolves RHEL-147351:...

Oracle Linux 9 : grafana (ELSA-2026-2920)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2920 advisory. - Resolves RHEL-144959: CVE-2026-21721 - Resolves RHEL-146863: CVE-2025-61726 - Resolves RHEL-147081: CVE-2025-61729 - Resolves RHEL-147370:...

Oracle Linux 9 : nodejs:22 (ELSA-2026-2782)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2782 advisory. - Resolves: CVE-2022-25883 - Resolves: CVE-2021-35065 - Rebase to 2.0.20 Resolves: CVE-2022-3517 - Resolves CVE-2020-28469 Tenable has extracted the...

Oracle Linux 9 : nodejs:20 (ELSA-2026-2783)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2783 advisory. - Resolves: CVE-2022-25883 - Resolves: CVE-2021-35065 - Rebase to 2.0.20 Resolves: CVE-2022-3517 - Resolves CVE-2020-28469 Tenable has extracted the...

Oracle Linux 9 : glibc (ELSA-2026-2786)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2786 advisory. - CVE-2025-15281: wordexp WRDEREUSE uninitialized memory read RHEL-144079 - CVE-2026-0915: Stack memory disclosure in getnetbyaddr RHEL-141851 -...

Oracle Linux 9 : php (ELSA-2026-2799)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2799 advisory. - Fix Heap buffer overflow in arraymerge CVE-2025-14178 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : edk2 (ELSA-2026-2776)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2776 advisory. - Resolves: RHEL-115923 CVE-2025-9230 edk2: Out-of-bounds read & write in RFC 3211 KEK Unwrap rhel-9.7.z Tenable has extracted the preceding description block...

glibc security update

2.34-231.0.1.10 - Forward-port Oracle patches for ol9-u7 Reviewed-by: TBD Oracle history: November-14-2025 Cupertino Miranda - 2.34-231.0.1.2 - Forward-port Oracle patches for ol9-u7 Reviewed-by: Jose E. Marchesi September-24-2025 Cupertino Miranda - 2.34-231.0.1 - Forward-port Oracle patches for...

Oracle Linux 9 : kernel (ELSA-2026-2722)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2722 advisory. - smc: Fix use-after-free in pnetfindbasendev. Mete Durlu RHEL-126890 CVE-2025-40064 - ntbhwswitchtec: Fix shift-out-of-bounds in switchtecntbmwsettran...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50113)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50113 advisory. - sunrpc: fix client side handling of tls alerts Olga Kornievskaia Orabug: 38334981 CVE-2025-38571 - sunrpc: fix handling of server side tls alert...

Oracle Linux 9 : nodejs:24 (ELSA-2026-2781)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2781 advisory. nodejs 1:24.13.0-1 - Update to version 24.13.0 nodejs-nodemon 3.0.3-3 - Keep BR on just npm 3.0.3-2 - Fix BR for nodejs-npm nodejs-packaging 2021.06-6 ...

Oracle Linux 10 : gnupg2 (ELSA-2026-2719)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2719 advisory. 2.4.5-4 - Fix CVE-2026-24882 tpm2daemon buffer overflow Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Oracle Linux 9 : gimp (ELSA-2026-2707)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2707 advisory. 2:3.0.4-1.3 - fix CVE-2025-15059 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has no...

Oracle Linux 10 : kernel (ELSA-2026-2721)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2721 advisory. - nvme-tcp: fix NULL pointer dereferences in nvmettcpbuildpduiovec CKI Backport Bot RHEL-144335 CVE-2026-22998 - smc: Fix use-after-free in...

Oracle Linux 8 : go-toolset:ol8 (ELSA-2026-2708)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2708 advisory. delve 1.25.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-1 - Update to Delve 1.25.2 Sync from CentOS Stream 9 - Related:...

Oracle Linux 10 : golang (ELSA-2026-2706)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2706 advisory. 1.25.7-1 - Rebase to latest rhel-10-main 170a5b7e084 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : golang (ELSA-2026-2709)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2709 advisory. 1.25.7-1 - Update to Go 1.25.7 fips-1 - Resolves: RHEL-146476 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 8 : gcc-toolset-14-binutils (ELSA-2026-2627)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2627 advisory. 2.41-3.1 - Fix a potential illegal memory access when linking a corrupt input file. RHEL-130636 Thu Feb 20 2025 Nick Clifton - Backport fixes for PR 32082 and P...

Oracle Linux 7 : openssl (ELSA-2026-1720)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1720 advisory. 1:1.0.2k-26.0.1 - Fixes CVE-2025-9230 Fix incorrect check of unwrapped key size Orabug: 38916245 Tenable has extracted the preceding description block directly...

Oracle Linux 8 : nodejs:22 (ELSA-2026-2421)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2421 advisory. nodejs 1:22.22.0-1 - Update to 22.22.0 Resolves: RHEL-118152 nodejs-nodemon 3.0.1-1 - Exclude ix86 arches from building. Related: RHEL-35991...