Tenable Core Offline ISO Updates (Q3 2022)

These release notes summarize updates made to Tenable Core in Q3 2022. Downloading and installing the most recent version of the offline ISO image initiates these updates on your Tenable Core machine.

Tip: Tenable recommends applying all offline updates, in order, to your offline Tenable Core machine. Do not skip offline updates.

To update using the Tenable Core offline ISO image, see the documentation for your application:

Note: To update Tenable Core + OT Security using the offline ISO image, contact Tenable Support.

For more information about product updates, see the release notes for your application.

New Features and Changed Functionality

August 2022

  • N/A

September 2022

  • N/A

October 2022

  • N/A

Bug Fixes

August 2022

  • N/A

September 2022

  • N/A

October 2022

  • Fixed issues where Tenable Security Center backups would fail due to incorrect db access creating files under /opt/sc during backups.

Application Updates

Package Updates

This ISO includes the following updates:

August 2022

CESA-2022:5687 Important CentOS 7 java-11-openjdk Security Update

CESA-2022:5937 Moderate CentOS 7 kernel Security Update

CEBA-2022:5996 CentOS 7 microcode_ctl BugFix Update

September 2022

CESA-2022:6160 Important CentOS 7 systemd Security Update

CESA-2022:6170 Important CentOS 7 rsync Security Update

CESA-2022:6381 Important CentOS 7 open-vm-tools Security Update

CEBA-2022:6138 CentOS 7 tzdata BugFix Update

October 2022

CESA-2022:6756 Moderate CentOS 7 java-1.8.0-ibm security update

CESA-2022:6765 Important CentOS 7 bind security update

CESA-2022:6834 Important CentOS 7 expat security update

CEBA-2022:6827 CentOS 7 tzdata bug fix and enhancement update

CEBA-2022:6712 CentOS 7 nss, nss-softokn, nss-util, and nspr bug fix and enhancement update

CVE References

Type Reference
CentOS 7: java-11-openjdk (CESA-2022:5687)
  • CVE-2022-21540

  • CVE-2022-21541

  • CVE-2022-34169

CentOS 7 : systemd (CESA-2022:6160)

  • CVE-2022-2526

CentOS 7: rsync (CESA-2022:6170)

  • CVE-2022-29154

CentOS 7: open-vm-tools (CESA-2022:6381)

  • CVE-2022-31676

RHEL 7: kernel (RHSA-2022:5937)
  • CVE-2022-21123

  • CVE-2022-21125

  • CVE-2022-21166

RHEL 7 : java-1.8.0-ibm (RHSA-2022:6756)
  • CVE-2021-2163

RHEL 7 : bind (RHSA-2022:6765)
  • CVE-2022-38177

  • CVE-2022-38178

RHEL 7 : expat (RHSA-2022:6834)
  • CVE-2022-40674