Oracle Linux 8 : python3.12 (ELSA-2026-0123)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0123 advisory. 3.12.12-1 - Update to 3.12.12 - Security fix for CVE-2025-8291 and CVE-2025-12084 Resolves: RHEL-128364, RHEL-135391 Tenable has extracted the precedin...

Oracle Linux 10 : mariadb10.11 (ELSA-2026-0136)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0136 advisory. 3:10.11.15-1 - Rebase to 10.11.15 - Resolves: RHBZ2417697 3:10.11.14-3 - Add installation of downstream sysusers.d config file in place of the upstrea...

Oracle Linux 9 : libpng (ELSA-2026-0238)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0238 advisory. - CVE-2025-64720: buffer overflow RHEL-131580 - CVE-2025-65018: heap buffer overflow RHEL-131593 Tenable has extracted the preceding description block...

Oracle Linux 8 : mingw-libpng (ELSA-2026-0125)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-0125 advisory. - Fix the following CVEs CVE-2025-64720 CVE-2025-65018 CVE-2025-66293 Tenable has extracted the preceding description block directly from the Oracle...

Oracle Linux 9 : tar (ELSA-2026-0067)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-0067 advisory. 2:1.34-9 - Fix the last patch to solve a regression with -x and --xattrs: RHEL-136277 also, fix another tiny mistake in the patch w/o visible consequences...

Oracle Linux 10 : poppler (ELSA-2026-0128)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0128 advisory. 24.02.0-7 - Check bitmap in combine - Resolves: RHEL-131783, RHEL-131782 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 10 : gcc-toolset-15-binutils (ELSA-2026-0108)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0108 advisory. 2.44-7.1 - Fix a potential illegal memory access when linking a corrupt input file. RHEL-130616 Tenable has extracted the preceding description block directly...

Oracle Linux 9 : poppler (ELSA-2026-0126)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0126 advisory. 21.01.0-23 - Bump release for build inheritance - Resolves: RHEL-131792 21.01.0-22 - Check bitmap in combine - Resolves: RHEL-131795, RHEL-131792 Tenable has...

Oracle Linux 8 : thunderbird (ELSA-2026-0026)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-0026 advisory. 140.6.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.6.0 - Add OpenELA debranding 140.6.0-1 - Update to 140.6.0 ESR Tenab...

Oracle Linux 9 : gcc-toolset-14-binutils (ELSA-2026-0052)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0052 advisory. 2.41-5.1 - Fix a potential illegal memory access when linking a corrupt input file. RHEL-130669 Tenable has extracted the preceding description block directly...

Oracle Linux 10 : thunderbird (ELSA-2026-0025)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-0025 advisory. 140.6.0-1.0.1 - Add Oracle prefs 140.6.0-1 - Update to 140.6.0 ESR Tenable has extracted the preceding description block directly from the Oracle Linu...

Oracle Linux 10 : tar (ELSA-2026-0002)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2026-0002 advisory. 2:1.35-9 - Fix a tiny mistake in the last patch affecting hardling extraction w/o visible consequences 2:1.35-8 - Backport upstream changes to jailify extracti...

Oracle Linux 8 : httpd:2.4 (ELSA-2025-23732)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23732 advisory. - Resolves: RHEL-135054 - httpd: Apache HTTP Server: moduserdir+suexec bypass via AllowOverride FileInfo CVE-2025-66200 - Resolves: RHEL-135039 - http...

Oracle Linux 8 : container-tools:rhel8 (ELSA-2025-23543)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-23543 advisory. - fixes 'Minor Incident CVE-2025-52881 container-tools:rhel8/buildah: container escape and denial of service due to arbitrary write gadgets and procfs write...

Oracle Linux 8 : python39:3.9 (ELSA-2025-23530)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23530 advisory. modwsgi numpy python39 3.9.25-2 - Add explicit BR: libxcrypt-devel - Properly apply exported CFLAGS for dtrace/systemtap builds - Update to Python...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2025-28068)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-28068 advisory. - fs/proc: fix uaf in procreaddirde Wei Yang Orabug: 38786776 CVE-2025-40271 - NFSD: Define a proclayoutcommit for the FlexFiles layout type Chuck Lever...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-28067)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-28067 advisory. - tipc: Fix use-after-free in tipcmonreinitself. Kuniyuki Iwashima Orabug: 38786195 CVE-2025-40280 - fs/proc: fix uaf in procreaddirde Wei Yang...

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-28066)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-28066 advisory. - fs/proc: fix uaf in procreaddirde Wei Yang CVE-2025-40271 Tenable has extracted the preceding description block directly from the Oracle Linux...

Oracle Linux 9 : thunderbird (ELSA-2025-23856)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-23856 advisory. 140.6.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.6.0 - Add OpenELA debranding 140.6.0-1 - Update to 140.6.0 ESR Tenable h...

Oracle Linux 10 : httpd (ELSA-2025-23932)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23932 advisory. - Resolves: RHEL-135052 - httpd: Apache HTTP Server: moduserdir+suexec bypass via AllowOverride FileInfo CVE-2025-66200 - Resolves: RHEL-135035 -...