Oracle Linux 9 : keylime (ELSA-2026-2224)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2224 advisory. 7.12.1-11.4 - CVE-2026-1709: Registrar authentication bypass Resolves: RHEL-145390 Tenable has extracted the preceding description block directly from the Oracl...

kernel security update

6.12.0-124.35.1 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...

kernel security update

5.14.0-611.30.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

Oracle Linux 10 : thunderbird (ELSA-2026-2286)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-2286 advisory. 140.7.0-1.0.1 - Add Oracle prefs 140.7.0-1 - Update to 140.7.0 ESR Tenable has extracted the preceding description block directly from the Oracle Linu...

Oracle Linux 10 : firefox (ELSA-2026-2271)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-2271 advisory. 140.7.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Re...

Oracle Linux 10 : libsoup3 (ELSA-2026-2182)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2182 advisory. - Fix CVE-2026-0719 - Fix CVE-2025-14523 - Add patch for CVE-2025-12105 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 7 : python (ELSA-2026-1537)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1537 advisory. 2.7.5-94.0.3 - Fix for CVE-2025-12084 Orabug: 38902314 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50094)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50094 advisory. - mptcp: fix a race in mptcppmdeladdtimer Eric Dumazet Orabug: 38932996 CVE-2025-40257 - tls: Use skdstget and dstdevrcu in getnetdevforsock...

Oracle Linux 8 : osbuild-composer (ELSA-2026-2124)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2124 advisory. 101.4-3.0.1 - Support using repository definitons with OCI variables JIRA: OLDIS-38657 - Update repositories to contain OCI variables - Remove image types...

osbuild-composer security update

101.4-3.0.1 - Support using repository definitons with OCI variables JIRA: OLDIS-38657 - Update repositories to contain OCI variables - Remove image types Minimal-raw and wsl JIRA: OLDIS-38123 - Increase default /boot size to 1GB Orabug: 36827079 - support for building OL8/9 images on Oracle Linu...

Oracle Linux 8 : python3 (ELSA-2026-2128)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2128 advisory. 3.6.8-73.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8.openela.0 - Add openela to supported dists 3.6.8-73 - Security fixes...

Oracle Linux 8 : resource-agents (ELSA-2026-1904)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-1904 advisory. 4.9.0-54.28 - bundled pyasn1: fix CVE-2026-23490 Resolves: RHEL-142448 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : brotli (ELSA-2026-2042)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2042 advisory. - Resolves: RHEL-133995 Rebuild for CVE-2025-6176 Brotli decompression bomb DoS in scrapy Tenable has extracted the preceding description block directly from th...

Oracle Linux 9 : fontforge (ELSA-2026-2039)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-2039 advisory. - Resolves: RHEL-138206 CVE-2025-15279 GUtils BMP File Parsing Heap-based Buffer Overflow - Resolves: RHEL-138228 CVE-2025-15275 SFD File Parsing...

Oracle Linux 8 : freerdp (ELSA-2026-2081)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2081 advisory. 2:2.11.7-2 - Backport several CVE fixes Resolves: RHEL-142417, RHEL-142401, RHEL-142385, RHEL-142369, RHEL-142353 Resolves: RHEL-142337, RHEL-142321...

Oracle Linux 8 : python3.12-wheel (ELSA-2026-2090)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-2090 advisory. 0.41.2-4 - Security fix for CVE-2026-24049 Resolves: RHEL-143636 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 8 : fence-agents (ELSA-2026-1906)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1906 advisory. 4.2.1-129.21 - bundled pyasn1: fix CVE-2026-23490 Resolves: RHEL-142447 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 10 : fence-agents (ELSA-2026-1905)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1905 advisory. 4.16.0-13.2 - bundled pyasn1: fix CVE-2026-23490 Resolves: RHEL-142444 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : python3.12-wheel (ELSA-2026-1939)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1939 advisory. 0.41.2-3.1 - Security fix for CVE-2026-24049 Resolves: RHEL-143652 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 9 : fence-agents (ELSA-2026-1903)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1903 advisory. 4.10.0-98.5 - bundled pyasn1: fix CVE-2026-23490 Resolves: RHEL-142459 Tenable has extracted the preceding description block directly from the Oracle Linux...