PT-2026-52963

In the Linux kernel, the following vulnerability has been resolved: net: mana: Use pci name for debugfs directory naming Use pci namepdev for the per-device debugfs directory instead of hardcoded "0" for PFs and pci slot namepdev-slot for VFs. The previous approach had two issues: 1. pci slot nam...

PT-2026-52958

In the Linux kernel, the following vulnerability has been resolved: blk-wbt: remove WARN ON ONCE from wbt init enable default wbt init enable default uses WARN ON ONCE to check for failures from wbt alloc and wbt init. However, both are expected failure paths: - wbt alloc can return NULL under...

Fedora 43 : lighttpd (2026-d7d472853a)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-d7d472853a advisory. 1.4.84 ---- 1.4.83 https://wiki.lighttpd.net/Release-1483 Tenable has extracted the preceding description block directly from the Fedora security advisory...

Fedora 44 : pacemaker (2026-2c31df81dc)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-2c31df81dc advisory. Wed Jun 17 2026 Klaus Wenninger - 3.0.2-3 - fix CVE-2026-10649: Fix integer overflows in remote message code Tenable has extracted the preceding description...

RHEL 8 : postgresql:12 (RHSA-2026:29815)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:29815 advisory. PostgreSQL is an advanced object-relational database management system DBMS. Security Fixes: postgresql: PostgreSQL: Operating system accou...

SUSE SLES16: postgresql16 / postgresql16-contrib / postgresql16-devel / etc (SUSE-SU-2026:22184-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:22184-1 advisory. This update for postgresql16 fixes the following issues Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on...

Fedora 43 : python-jupyter-server (2026-9536c7cb79)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-9536c7cb79 advisory. New version of jupyter-server fixing various security vulnerabilities. Tenable has extracted the preceding description block directly from the Fedor...

SUSE SLES15 Security Update : libarchive (SUSE-SU-2026:2599-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2599-1 advisory. This update for libarchive fixes the following issues - CVE-2025-60753: bsdtar hangs and OOMs with zero-length pattern matches...

Fedora 43 : tigervnc (2026-ad10afa9cd)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-ad10afa9cd advisory. Fixes CVE-2026-50256 CVE-2026-50257 CVE-2026-50258 CVE-2026-50259 CVE-2026-50260 CVE-2026-50261 CVE-2026-50262 CVE-2026-50263 CVE-2026-50264. Tenabl...

SUSE SLED15 / SLES15 Security Update : python-urllib3 (SUSE-SU-2026:2486-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:2486-1 advisory. This update for python-urllib3 fixes the following issue - CVE-2026-44431: sensitive information disclosure due to...

Oracle Linux 9 : nginx:1.26 (ELSA-2026-29151)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-29151 advisory. - nginx: code execution and denial of service CVE-2026-9256 - Resolves: RHEL-176218 - nginx:1.26/nginx: NGINX: Arbitrary Code Execution Vulnerability...

SUSE SLES16: postgresql14 / postgresql14-contrib / postgresql14-devel / etc (SUSE-SU-2026:22177-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:22177-1 advisory. This update for postgresql14 fixes the following issues Security issues: - CVE-2026-6472: ensure the user has CREATE privilege on...

Oracle Linux 8 : libpng (ELSA-2026-29898)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-29898 advisory. 2:1.6.37-11 - fix CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE RHEL-161344 Tenable has extracted the preceding description...

SUSE SLES15 Security Update : kernel (Live Patch 47 for SUSE Linux Enterprise 15 SP4) (SUSE-SU-2026:2511-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2511-1 advisory. This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.187 fixes various security issues The following security issues were fixed: ...

SUSE SLED15: libsqlite3-0 / libsqlite3-0-32bit / sqlite3 / sqlite3-devel / etc (SUSE-SU-2026:2528-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2528-1 advisory. This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption...

SUSE SLES12 Security Update : libpng15 (SUSE-SU-2026:2619-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:2619-1 advisory. This update for libpng15 fixes the following issues Security issues: - CVE-2025-64720: buffer overflow in pngimagereadcomposite via incorrect palette...

SUSE SLES15 Security Update : kernel (Live Patch 14 for SUSE Linux Enterprise 15 SP7) (SUSE-SU-2026:2594-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2594-1 advisory. This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.52 fixes various security issues The following security issues were fixed: -...

Oracle Linux 9 : bind (ELSA-2026-24367)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-24367 advisory. - Fix GSS-API resource leak CVE-2026-3039 - Invalid handling of CLASS != IN CVE-2026-5946 Tenable has extracted the preceding description block direct...

PT-2026-52955

In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in ras core ras interrupt detected Fixes a NULL pointer dereference when ras core is NULL and ras core-dev is accessed in the error path. Reported by: Dan Carpenter...

PT-2026-52930

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/conexant: Fix missing error check for jack detection In cx probe, the return value of snd hda jack detect enable callback is ignored. This function returns a pointer, and if it fails e.g., due to memory allocation...