Oracle Linux 8 : container-tools:rhel8 (ELSA-2025-23543)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-23543 advisory. - fixes 'Minor Incident CVE-2025-52881 container-tools:rhel8/buildah: container escape and denial of service due to arbitrary write gadgets and procfs write...

Oracle Linux 8 : python39:3.9 (ELSA-2025-23530)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23530 advisory. modwsgi numpy python39 3.9.25-2 - Add explicit BR: libxcrypt-devel - Properly apply exported CFLAGS for dtrace/systemtap builds - Update to Python...

Oracle Linux 9 : thunderbird (ELSA-2025-23856)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-23856 advisory. 140.6.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.6.0 - Add OpenELA debranding 140.6.0-1 - Update to 140.6.0 ESR Tenable h...

Oracle Linux 8 : container-tools:rhel8 (ELSA-2025-23374)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-23374 advisory. - rebuild for CVE-2025-58183 - rebuild for CVE-2025-58183 Tenable has extracted the preceding description block directly from the Oracle Linux security advisor...

Oracle Linux 9 : mod_md (ELSA-2025-23739)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-23739 advisory. 1:2.4.26-1.1 - Resolves: RHEL-134496 - httpd: Apache HTTP Server: modmd ACME, unintended retry intervals CVE-2025-55753 Tenable has extracted the preceding...

Oracle Linux 8 : git-lfs (ELSA-2025-23745)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-23745 advisory. - Backport CVE-2025-26625 fixes Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has no...

Oracle Linux 9 : binutils (ELSA-2025-23343)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-23343 advisory. - Merge Oracle patches to 2.35.2-67.1. - CVE-2025-11083 - Reviewed-by: David Faust Oracle history: September-24-2025 Bruce McCulloch - 2.35.2-67.0.1 - Merge...

Oracle Linux 9 : php:8.3 (ELSA-2025-23309)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23309 advisory. php 8.3.26-1 - rebase to 8.3.26 php-pecl-apcu 5.1.23-1 - update to 5.1.23 for PHP 8.2 RHEL-14699 5.1.21-1 - update to 5.1.21 for PHP 8.1 2070040...

Oracle Linux 10 : binutils (ELSA-2025-23306)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23306 advisory. - CVE-2025-11082 - CVE-2025-11083 Reviewed-by: David Faust Oracle history: September-29-2025 David Faust - 2.41-58.0.1 - Forward-port Oracle patches ...

Oracle Linux 8 : webkit2gtk3 (ELSA-2025-23663)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23663 advisory. 2.50.4-1 - Update to 2.50.4 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus h...

Oracle Linux 9 : podman (ELSA-2025-23325)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-23325 advisory. 5.6.0-9.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement...

Oracle Linux 9 : python3.9 (ELSA-2025-23342)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23342 advisory. 3.9.25-2.0.1 - Remove upstream URL reference 3.9.25-2 - Move sysconfigdatadlinux.py to the debug subpackage 3.9.25-1 - Update to Python 3.9.25 3.9.24-...

Oracle Linux 10 : git-lfs (ELSA-2025-23667)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-23667 advisory. 3.6.1-4 - Backport fix for CVE-2025-26625 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 7 : gimp (ELSA-2025-22866)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-22866 advisory. - Fixes CVE-2025-10922 and CVE-2025-10934 Orabug: 38739185 - Fixes CVE-2025-5473 GIMP ICO File Parsing Integer Overflow Orabug: 38110877 - Fixes...

Oracle Linux 9 : libssh (ELSA-2025-23483)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-23483 advisory. - Fix CVE-2025-5987 Resolves: RHEL-130051 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 9 : openssh (ELSA-2025-23480)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-23480 advisory. - CVE-2025-61984: Reject usernames with control characters Resolves: RHEL-128401 Tenable has extracted the preceding description block directly from t...

Oracle Linux 7 : firefox (ELSA-2025-17453)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2025-17453 advisory. - Update to 140.3.0 Orabug: 38509157CVE-2025-10527CVE-2025-10528 CVE-2025-10529CVE-2025-10532CVE-2025-10533CVE-2025-10536 CVE-2025-10537 Tenable has...

Oracle Linux 10 : openssl (ELSA-2025-28041)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-28041 advisory. - Fix CVE-2025-9230 Resolves: RHEL-115885 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that...

Oracle Linux 9 : open-vm-tools (ELSA-2025-17428)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17428 advisory. - ovt-Address-CVE-2025-41244.patch RHEL-117390 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

Oracle Linux 10 : open-vm-tools (ELSA-2025-17429)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-17429 advisory. - ovt-Address-CVE-2025-41244.patch RHEL-117381 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note th...