Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2024-12700)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12700 advisory. - scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc Justin Tee Orabug: 36643241 CVE-2024-35930 - scsi: qla2xxx: Fix command flush on cable pul...

Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2024-12570)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12570 advisory. - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug:...

Oracle Linux 6 : kernel (ELSA-2024-1831)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-1831 advisory. - net/sched: schqfq: account for stab overhead in qfqenqueue CVE-2023-3611 Orabug: 36517546 - net/sched: clsfw: Fix improper refcount update leads to...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2024-12193)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12193 advisory. - Input: add bounds checking to inputsetcapability Jeff LaBundy Orabug: 36192120 CVE-2022-48619 - netfilter: ctnetlink: fix possible refcount leak...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2023-13019)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-13019 advisory. - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35923500 CVE-2023-39193 - USB: eneusb6250: Allocate enough memory fo...

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2023-12970)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12970 advisory. - Bluetooth: L2CAP: Fix use-after-free in l2capsockreadycb Sungwoo Kim Orabug: 35814478 CVE-2023-40283 - net/sched: clsu32: No longer copy tcfresu...

Oracle Linux 6 : kernel (ELSA-2023-0187)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0187 advisory. 2.6.32-754.49.1.OL6 - x86/speculation: Use generic retpoline by default on AMD CVE-2021-26401 Orabug: 34986011 Tenable has extracted the preceding description...

Oracle Linux 6 : httpd24-httpd (ELSA-2014-1972)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1972 advisory. - Remove modproxyfcgi fix for heap-based buffer overflow, httpd-2.4.6 is not affected CVE-2014-3583 - core: fix bypassing of modheaders rules via chunk...

Oracle Linux 6 : firefox (ELSA-2018-2693)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2018-2693 advisory. - Added fix for mozbz1348168/CVE-2017-5428 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 6 : firefox (ELSA-2020-2036)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-2036 advisory. - Added fix for mozbz1348168/CVE-2017-5428 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 6 : thunderbird (ELSA-2020-2049)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-2049 advisory. 68.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.8.0-1 - Update to 68.8.0 build2 Tenable has...

Oracle Linux 6 : openssl-fips (ELSA-2016-3571)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3571 advisory. 1.0.1t-2.0.1 - update to upstream 1.0.1t - Original 1.0.1 test certificates has expired on May 10, 2016. Updated certificatea were copied from 1.0.2h...

Oracle Linux 6 / 7 : openssl (ELSA-2016-3621)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-3621 advisory. - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2179 - further DoS issues in...

Oracle Linux 6 : perl (ELSA-2011-0558)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-0558 advisory. - 692862 - lc launders tainted flag, CVE-2011-1487 Tenable has extracted the preceding description block directly from the Oracle Linux security...

Oracle Linux 6 : thunderbird (ELSA-2020-0914)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0914 advisory. 68.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.6.0-1 - Update to 68.6.0 build2 Tenable has...

Oracle Linux 6 : libcap (ELSA-2011-1694)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-1694 advisory. 2.16-5.5 - remove some obsolete parameters from capsh manpage 2.16-5.4 - add capsh manpage 730957 2.16-5.3 - make sure to chdir '/' after calling chroot...

Oracle Linux 6 : firefox (ELSA-2020-1339)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-1339 advisory. - Added fix for mozbz1348168/CVE-2017-5428 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 6 : thunderbird (ELSA-2020-1488)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-1488 advisory. - Under certain conditions, when handling a ReadableStream, a race condition can cause a use-after-free. We are aware of targeted attacks in the wild...

Oracle Linux 6 : firefox (ELSA-2020-0521)

The remote Oracle Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-0521 advisory. - Added fix for mozbz1348168/CVE-2017-5428 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 6 : virt-v2v (ELSA-2011-1615)

The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2011-1615 advisory. - Fix for CVE-2011-1773 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested...