Oracle Linux 10 : java-25-openjdk (ELSA-2025-21485)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-21485 advisory. 1:25.0.1.0.8-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:25.0.1.0.8-2 - Remove superfluous backslashes that cause two alternative commands t...

Oracle Linux 10 : ipa (ELSA-2025-20994)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20994 advisory. 4.12.2-24.0.1.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-24.1 -...

Oracle Linux 10 : pcs (ELSA-2025-21036)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-21036 advisory. 0.12.1-1.el101.1 - Fixed CVE-2025-59830, CVE-2025-61770, CVE-2025-61771, CVE-2025-61772, CVE-2025-61919 by updating bundled rubygem rack Resolves:...

Oracle Linux 10 : squid (ELSA-2025-21002)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-21002 advisory. - Resolves: RHEL-122480 - CVE-2025-62168 squid: Squid vulnerable to information disclosure via authentication credential leakage in error handling Tenable has...

Oracle Linux 10 : bind (ELSA-2025-21034)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-21034 advisory. - Fix upstream reported regression in recent CVE fix CVE-2025-8677 - Refuse malformed DNSKEY records CVE-2025-8677 - Address various spoofing attacks...

Oracle Linux 10 : qt6-qtsvg (ELSA-2025-21037)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21037 advisory. 6.9.1-2.1 - Fix CVE-2025-10729: Prevent dangling pointers in SVG group node creation Resolves: RHEL-119699 Tenable has extracted the preceding description blo...

Oracle Linux 10 : qt6-qtsvg (ELSA-2025-22394)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-22394 advisory. - Fix CVE-2025-10728: Replace quadratic cycle check with linear recursion guard to prevent stack overflow Resolves: RHEL-119719 Tenable has extracted the...

Oracle Linux 10 : buildah (ELSA-2025-22012)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-22012 advisory. - fixes 'Minor Incident CVE-2025-52881 buildah: container escape and denial of service due to arbitrary write gadgets and procfs write redirects...

Oracle Linux 10 : libtiff (ELSA-2025-20998)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20998 advisory. 4.6.0-6.1 - Fix buffer underflow in TIFFReadRGBAImageOriented. - Resolves: RHEL-112524 Tenable has extracted the preceding description block directly from the...

Oracle Linux 10 : python-kdcproxy (ELSA-2025-21142)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-21142 advisory. - Use DNS discovery for declared realms only CVE-2025-59088 Resolves: RHEL-122777 Tenable has extracted the preceding description block directly from...

Oracle Linux 10 : sssd (ELSA-2025-21020)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21020 advisory. 2.11.1-2.0.1.1 - Restore default debug level for ssscache Orabug: 32810448 2.11.1-2.1 - Resovles: RHEL-120288 - CVE-2025-11561 sssd: SSSD default Kerberos...

Oracle Linux 8 : gimp:2.8 (ELSA-2025-22417)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-22417 advisory. - fix CVE-2025-10920 - fix CVE-2025-10921 - fix CVE-2025-10922 - fix CVE-2025-10923 - fix CVE-2025-10924 - fix CVE-2025-10925 - fix CVE-2025-10934 - f...

Oracle Linux 10 : valkey (ELSA-2025-21936)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-21936 advisory. - rebase to 8.0.6 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819 - rebase to 8.0.4 for CVE-2025-27151 CVE-2025-48367 and...

Oracle Linux 10 : openssl (ELSA-2025-21248)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21248 advisory. 3.5.1-4.0.1 - Replace upstream references Orabug: 34340177 - Update FIPS provider name Orabug: 35824276 1:3.5.1-4 - Fix CVE-2025-9230 Resolves: RHEL-115885...

Oracle Linux 10 : firefox (ELSA-2025-21281)

The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-21281 advisory. 140.5.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding R...

Oracle Linux 10 : kea (ELSA-2025-21006)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21006 advisory. - Fixes CVE-2025-11232 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...

Oracle Linux 10 : kea (ELSA-2025-21038)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21038 advisory. - Fixes CVE-2025-11232 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...

Oracle Linux 10 : libssh (ELSA-2025-21013)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21013 advisory. 0.11.1-4 - Rebuild due to broken build auto-tagging Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. No...

Oracle Linux 10 : libsoup3 (ELSA-2025-21032)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-21032 advisory. 3.6.5-6 - Fix integer overflow in date/time parsing 3.6.5-5 - Bump revision number 3.6.5-4 - Fix several CVEs Tenable has extracted the preceding...

Oracle Linux 10 : delve / and / golang (ELSA-2025-21816)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21816 advisory. delve 1.25.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-1 - Update Delve to 1.25.2 1.24.1-3 - Update CI support golang 1.25.3-1 ...