Tenable Core 2025 Release Notes
These release notes summarize updates made to Tenable Core in 2025. Downloading and applying the most recent version of the offline ISO image initiates these updates on your Tenable Core machine.
Tip: Tenable recommends applying all offline updates, in order, to your offline Tenable Core machine. Do not skip offline updates.
To update using the Tenable Core offline ISO image, see the documentation for your application:
- Tenable Core + Tenable Nessus
- Tenable Core + Tenable Nessus Network Monitor
- Tenable Core + Tenable Security Center
- Tenable Core + Tenable Web App Scanning
- Tenable Core + Tenable OT Security
- Tenable Core + Tenable OT Security Sensor
- Tenable Core + Tenable OT Security Enterprise Manager
- Tenable Core + Tenable Sensor Proxy
For more information about product updates, see the release notes for your application.
These release notes are listed in reverse chronological order.
Q4 2024
New Features
-
It is now possible to restore Tenable OT Security backups taken on systems running Tenable Core based on CentOS 7 on systems running Tenable Core based on Oracle 8. For this to work, the backup version must match the version of OT security running on the new system. This is typically version 3.18.58.
-
Build ID information has been added to the Sensor Proxy page, in the Installation Info section.
Changed Functionality
-
SOS reports now include `rpm verify` information for all Tenable-owned packages which will aid in finding issues with broken packages without additional troubleshooting.
-
SOS reports now include ssl connection diagnostics using the configured proxy (unauthenticated, http proxy only) to aid in diagnosing issues with SSL inspection from proxies.
-
Offline ISOs (including Tenable OT Security and quarterly offline ISOs) now include `openldap-clients` which contains utilities such as `ldapsearch` to assist with configuring ldap. In airgapped environments, users can attach the new offline ISO and run `dnf install openldap-clients.`
Update References
Oracle 8 Security Updates:
ELSA-2024-8038 Important container-tools:ol8 security update
ELSA-2024-8121 Moderate java-11-openjdk security update
ELSA-2024-8833 Moderate libtiff security update
ELSA-2024-8846 Important container-tools:ol8 security update
ELSA-2024-8856 Moderate kernel security update
ELSA-2024-8859 Moderate xmlrpc-c security update
ELSA-2024-8860 Important krb5 security update
ELSA-2024-8922 Low bzip2 security update
ELSA-2024-9502 Moderate expat security update
ELSA-2024-9573 Important libsoup security update
ELSA-2024-9689 Low binutils security update
ELSA-2024-10779 Moderate python3:3.6.8 security update
ELSA-2024-10943 Moderate kernel security update
ELSA-2024-10953 Important python36:3.6 security update
ELSA-2024-12797 Moderate linux-firmware security update
ELSA-2025-0065 Important kernel security update
ELSA-2025-0083 Low cups security update
ELSA-2025-0288 Moderate Bug fix of NetworkManager 2025-01-12 19:00:00
ELSA-2025-0325 Important rsync security update
ELSA-2025-0711 Important python-jinja2 security update
ELSA-2025-0733 Moderate bzip2 security update
ELSA-2025-0737 Moderate mariadb:10.11 security update
ELSA-2025-0739 Moderate mariadb:10.5 security update
ELSA-2025-0837 Important unbound security update
ELSA-2025-0838 Important libsoup security update
Oracle 8 Updates:
ELBA-2024-8805 tzdata bug fix and enhancement update
ELBA-2024-8841 rsyslog bug fix update
ELBA-2024-8853 cups bug fix update
ELBA-2024-8854 grub2 bug fix update
ELBA-2024-8855 chrony bug fix update
ELBA-2024-8861 openldap bug fix update
ELBA-2024-8866 glib2 bug fix update
ELBA-2024-11159 libselinux, libsemanage, and selinux-policy bug fix and enhancement update
ELBA-2024-12808 pcp bug fix update
ELBA-2024-12819 dracut bug fix update
ELBA-2024-12820 chrony bug fix update
ELBA-2024-12861 kexec-tools bug fix update
ELBA-2024-12896 cloud-init bug fix update
ELBA-2025-0572 kernel bug fix update
ELBA-2025-0728 glibc bug fix update
ELBA-2025-0730 nftables bug fix update
ELBA-2025-0731 curl bug fix update
ELBA-2025-0732 libdnf bug fix update
ELBA-2025-0744 jasper bug fix update
ELBA-2025-20016 kexec-tools bug fix update
ELBA-2025-20059 systemd bug fix update
ELBA-2025-20065 sos bug fix update
ELEA-2024-8159 microcode_ctl bug fix and enhancement update
ELEA-2024-8852 libproxy bug fix and enhancement update
ELEA-2024-8857 microcode_ctl bug fix and enhancement update
CVE References - Oracle 8
| Type | Reference |
|---|---|
| Oracle Linux 8 : python3:3.6.8 (ELSA-2024-10779) |
CVE-2024-11168 |
| Oracle Linux 8 : kernel (ELSA-2024-10943) |
CVE-2024-46695 |
| Oracle Linux 8 : python36:3.6 (ELSA-2024-10953) |
CVE-2024-53899 |
| Oracle Linux 7 / 8 / 9 : linux-firmware (ELSA-2024-12797) |
CVE-2023-20584 |
| Oracle Linux 8 : container-tools:ol8 (ELSA-2024-8038) |
CVE-2023-45290 |
| Oracle Linux 8 / 9 : java-11-openjdk (ELSA-2024-8121) |
CVE-2023-48161 |
|
Oracle Linux 8 : libtiff (ELSA-2024-8833) |
CVE-2024-7006 |
|
Oracle Linux 8 : container-tools:ol8 (ELSA-2024-8846) |
CVE-2024-9341 |
| Oracle Linux 8 : kernel (ELSA-2024-8856) |
CVE-2022-48773 |
| Oracle Linux 8 : xmlrpc-c (ELSA-2024-8859) |
CVE-2024-45491 |
|
Oracle Linux 8 : krb5 (ELSA-2024-8860) |
CVE-2024-3596 |
|
Oracle Linux 8 : bzip2 (ELSA-2024-8922) |
CVE-2019-12900 |
| Oracle Linux 8 : expat (ELSA-2024-9502) |
CVE-2024-50602 |
| Oracle Linux 8 : libsoup (ELSA-2024-9573) |
CVE-2024-52530 |
| Oracle Linux 8 : binutils (ELSA-2024-9689) |
CVE-2018-12699 |
| Oracle Linux 8 : kernel (ELSA-2025-0065) |
CVE-2024-53088 |
| Oracle Linux 8 : cups (ELSA-2025-0083) |
CVE-2024-47175 |
| Oracle Linux 8 : Bug (ELSA-2025-0288) |
CVE-2024-3661 |
| Oracle Linux 8 : rsync (ELSA-2025-0325) |
CVE-2024-12085 |
| Oracle Linux 8 : python-jinja2 (ELSA-2025-0711) |
CVE-2024-56326 |
| Oracle Linux 8 : bzip2 (ELSA-2025-0733) |
CVE-2019-12900 |
| Oracle Linux 8 : mariadb:10.11 (ELSA-2025-0737) |
CVE-2024-21096 |
| Oracle Linux 8 : mariadb:10.5 (ELSA-2025-0739) |
CVE-2023-22084 |
| Oracle Linux 8 : unbound (ELSA-2025-0837) |
CVE-2024-1488 |
| Oracle Linux 8 : libsoup (ELSA-2025-0838) |
CVE-2024-52531 |