Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50287)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50287 advisory. - net: skbuff: propagate shared-frag marker through frag-transfer helpers Hyunwoo Kim Orabug: 39420565 CVE-2026-46300 Tenable has extracted the preceding...

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50286)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50286 advisory. - net: skbuff: propagate shared-frag marker through frag-transfer helpers Hyunwoo Kim Orabug: 39420559 CVE-2026-46300 Tenable has extracted the preceding...

nginx security update

2:1.26.3-2.0.1.el101.2 - Reference oracle-indexhtml within Requires Orabug: 33802044 2:1.26.3-8 - Fix release number 2:1.26.3-7 - Resolves: RHEL-176217 - nginx: NGINX: Arbitrary Code 2:1.26.3-6 - Resolves: RHEL-157874 CVE-2026-32647 nginx: NGINX: Denial of Service or Code Execution via specially...

giflib security update

4.1.6-9.0.3 - Security update for CVE-2026-23868 Orabug: 39230174...

python3 security update

3.6.8-21.0.11 - Security update CVE-2026-4519 Orabug: 39246828...

python security update

2.6.6-68.0.5 - Fix CVE-2025-15366 and CVE-2025-15367 Orabug: 39141391 2.6.6-68.0.4 - Fix CVE-2025-12084 Orabug: 38902317...

oci-utils security update

-- 0.14.0-19 - Fix secondary vnic default metric to be a lower priority value Orabug: 38154477...

openssh security update

9.9p1-13.0.1 - Upstream references found with /usr/bin/ssh Orabug: 37824421 9.9p1-13 - CVE-2026-3497: Fix information disclosure or denial of service due to uninitialized variables in gssapi-keyex Resolves: RHEL-155811...

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50170)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50170 advisory. 6.12.0-200.74.27.1 - KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE Sean Christopherson Orabug: 39071315 Tenable has extract...

Oracle Linux 9 : vim (ELSA-2026-5602)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-5602 advisory. 8.2.2637-23.0.1.el97.1 - Remove upstream references Orabug: 31197557 2:8.2.2637-23.1 - RHEL-147940 CVE-2026-25749 vim: Heap Overflow in Vim Tenable has extracte...

Oracle Linux 7 : freerdp (ELSA-2026-2714)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2714 advisory. 2:2.2.0-5.0.1 - fixed CVE-2026-23530 CVE-2026-23531 CVE-2026-23532 CVE-2026-23533 CVE-2026-23884 Orabug: 38971897 Tenable has extracted the preceding...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50133)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50133 advisory. - tls: Use skdstget and dstdevrcu in getnetdevforsock. Kuniyuki Iwashima Orabug: 39016219 CVE-2025-40149 Tenable has extracted the preceding...

Oracle Linux 7 : firefox (ELSA-2026-2231)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-2231 advisory. - Update to 140.7.0 ESR Orabug: 38940976CVE-2025-14327CVE-2026-0877 CVE-2026-0878CVE-2026-0879CVE-2026-0880CVE-2026-0882CVE-2026-0883...

virt:ol and virt-devel:ol security and bug fix update

hivex 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 libvirt 6.0.0-35.1.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma - Disable parallel builds Karl Heubaum 6.0.0-35.1.el8 -...

openssl security update

1:1.0.2k-26.0.1 - Fixes CVE-2025-9230 Fix incorrect check of unwrapped key size Orabug: 38916245...

Oracle Linux 7 : libsoup (ELSA-2026-0925)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-0925 advisory. - Fix CVE-2025-14523 Orabug: 38873507 - Backport patch for CVE-2025-4945 and CVE-2025-11021 Orabug: 38664275 - Fixes CVE-2025-2784 CVE-2025-4948 CVE-2025-32049...

util-linux security update

2.37.4-21.0.1 - Orabug 35995271 - report lost loop device...

mariadb-devel:10.3 security update

asio 1.10.8-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild galera 25.3.37-1.0.1 - Bump release for rebuild - x8664 and i386 need to be built the same day Judy 1.0.5-18.0.1 - Rebuild Orabug: 31667911 mariadb 3:10.3.39-2.0.1 - Bump release for rebuild - x8664 and i386 need to be...

gpsd-minimal security update

1:3.26.1-1.0.1.el97.1 - Replaced upstream reference Orabug: 35865525...

Oracle Linux 7 : tigervnc (ELSA-2025-22096)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-22096 advisory. - Fix CVE-2025-62229: xorg-x11-server: Use-after-free in XPresentNotify structures creation Orabug: 38694278 - Fix CVE-2025-62230: xorg-x11-server:...