Oracle Linux 9 : kernel (ELSA-2025-12746)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-12746 advisory. - netsched: hfsc: Address reentrant enqueue adding class to eltree twice Davide Caratti RHEL-97522 CVE-2025-38001 CVE-2025-37890 - schhfsc: Fix qlen...

Oracle Linux 8 : kernel (ELSA-2025-12752)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-12752 advisory. - netsched: hfsc: Address reentrant enqueue adding class to eltree twice Xin Long RHEL-105415 CVE-2025-38001 - schhfsc: Fix qlen accounting bug when...

Oracle Linux 9 : redis:7 (ELSA-2025-12008)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-12008 advisory. - rebase to 7.2.10 for CVE-2025-27151 CVE-2025-32023 and CVE-2025-48367 - rebase to 7.2.8 for CVE-2025-21605 - rebase to 7.2.7 for CVE-2024-46981 and...

Oracle Linux 9 : kernel (ELSA-2025-11861)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-11861 advisory. - netsched: hfsc: Fix a UAF vulnerability in class handling Davide Caratti RHEL-95853 CVE-2025-37797 - ext4: fix out-of-bound read in...

Oracle Linux 8 / 9 : java-1.8.0-openjdk (ELSA-2025-10862)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-10862 advisory. 1:1.8.0.462.b08-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.462.b08-1 - Update to 8u462-b08 GA - Update release notes for 8u462-b08...

Oracle Linux 9 : jq (ELSA-2025-10585)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-10585 advisory. - Fix CVE-2025-48060 - Fix CVE-2024-23337 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Oracle Linux 10 : kernel (ELSA-2025-7956)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7956 advisory. 6.12.0-55.19.1.0.10.OL10 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Add new Oracle Linux Driver Signing key 1 certificate...

Oracle Linux 10 : kernel (ELSA-2025-9348)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-9348 advisory. 6.12.0-55.19.1.0.10.OL10 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Add new Oracle Linux Driver Signing key 1 certificate...

Oracle Linux 7 : libsoup (ELSA-2025-9179)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-9179 advisory. - Fixes CVE-2025-2784 CVE-2025-4948 CVE-2025-32049 Orabug: 38085184 - CVE-2025-32906 CVE-2025-32911 CVE-2025-32913 CVE-2025-32914 - Fixed CVE-2024-5253...

Oracle Linux 10 : ghostscript (ELSA-2025-7499)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7499 advisory. - RHEL-88964 CVE-2025-27832 ghostscript: NPDL device: Compression buffer overflow - RHEL-67044 CVE-2024-46951 ghostscript: Arbitrary Code Execution in...

Oracle Linux 10 : java-21-openjdk (ELSA-2025-7508)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7508 advisory. 1:21.0.7.0.6-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.7.0.6-1 - Update to jdk-21.0.7+6 GA - Update release notes to 21.0.7+6 - Rebase...

Oracle Linux 9 : php (ELSA-2025-7431)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7431 advisory. - Fix libxml streams use wrong content-type header when requesting a redirected resource CVE-2025-1219 - Fix Stream HTTP wrapper header check might omi...

Oracle Linux 9 : rsync (ELSA-2025-7050)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7050 advisory. 3.2.5-3 - Resolves: RHEL-70265 - Rebase rsync to 3.2.5 3.2.5-2 - Resolves: RHEL-70158 - Info Leak via Uninitialized Stack Contents - Resolves: RHEL-702...

Oracle Linux 9 : kernel (ELSA-2025-6966)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-6966 advisory. - net: stmmac: dwmac-tegra: Read iommu stream id from device tree Izabela Bakollari RHEL-75649 CVE-2025-21663 - net: stmmac: Fix zero-division error wh...

Oracle Linux 9 : xorg-x11-server-Xwayland (ELSA-2025-7165)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7165 advisory. - CVE fix for: CVE-2025-26594 RHEL-80204, CVE-2025-26595 RHEL-80187, CVE-2025-26596 RHEL-80190, CVE-2025-26597 RHEL-80193, CVE-2025-26598 RHEL-80195,...

Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2025-20320)

The remote Oracle Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20320 advisory. - x86/sev: Harden VC instruction emulation somewhat Borislav Petkov AMD Orabug: 37687865 CVE-2024-25743 CVE-2024-25742 - x86/entry: Do not allow...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2025-20153)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20153 advisory. - ipv6: fix possible UAF in ip6finishoutput2 Eric Dumazet Orabug: 37029070 CVE-2024-44986 - dmaengine: atxdmac: avoid nullprtderef in...

Oracle Linux 9 : mysql (ELSA-2025-1671)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-1671 advisory. 8.0.41-2 - Fix patching of logrotate 8.0.41-1 - Update to MySQL 8.0.41 8.0.40-1 - Update to MySQL 8.0.40 8.0.39-1 - Rebase to version 8.0.39 8.0.37-2 -...

Oracle Linux 8 : nodejs:20 (ELSA-2025-1351)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-1351 advisory. - Update to version 20.18.2 Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76001 RHEL-76146 - Update to 20.16.0 Fixes: CVE-2024-361...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12813)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12813 advisory. - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37137548 CVE-2024-49863 - mm/hugetlb: fix DEBUGLOCKSWARNON1 when...