ELSA-2026-2225

ELSA-2026-2225 - keylime security update

Type:	SECURITY
Impact:	CRITICAL
Release Date:	2026-02-09

Description

[7.12.1-16]
- CVE-2026-1709: Registrar authentication bypass

[7.12.1-15]
- Registrar allows identity takeover via duplicate UUID registration

[7.12.1-14]
- Properly fix malformed TPM certificates workaround

[7.12.1-13]
- Avoid opening /dev/stdout when printing

[7.12.1-12]
- Fix malformed TPM certificates workaround

Related CVEs

CVE-2026-1709

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 10 (aarch64)	keylime-7.12.1-11.el10_1.4.src.rpm	c82e4136c30db5641945bdf2437eb4c52b111b4e3e9462f7786e6d3106276671	-	ol10_aarch64_appstream
	keylime-7.12.1-11.el10_1.4.aarch64.rpm	33e945dfe4175911cb15fc46217d0ec186f93fa214ef90168f0c8158b599a691	-	ol10_aarch64_appstream
	keylime-base-7.12.1-11.el10_1.4.aarch64.rpm	1f0e23a4c6770a0f5785e744c86f6cb4f1582a962138ecd2337868f121481538	-	ol10_aarch64_appstream
	keylime-registrar-7.12.1-11.el10_1.4.aarch64.rpm	5687ade9e7db7ca87352cad88fe142c30f8a3d39776f986a205be965821fe21f	-	ol10_aarch64_appstream
	keylime-selinux-7.12.1-11.el10_1.4.noarch.rpm	0557f942dd6d4579bdb3f9c066ea27dc8c8b08e6d6bb8fae6ad63819469349b4	-	ol10_aarch64_appstream
	keylime-tenant-7.12.1-11.el10_1.4.aarch64.rpm	5f3ff2d793d99ccbd047d1dafdd0410cc8dac6d949a68fc7dfda74161c3ccd4c	-	ol10_aarch64_appstream
	keylime-tools-7.12.1-11.el10_1.4.aarch64.rpm	ae7a47b918540f775c37915426139f3d0330fe6f39a024f49f81fef9fd6fb0ac	-	ol10_aarch64_appstream
	keylime-verifier-7.12.1-11.el10_1.4.aarch64.rpm	393cbe21a28cb69a1938a5bf17737ec351f791a8c3e4f8fbc47f1d534d802611	-	ol10_aarch64_appstream
	python3-keylime-7.12.1-11.el10_1.4.aarch64.rpm	c9bbb9f7261445c801595efbb62d19849d9cceccaf3549b399b74c78941efd32	-	ol10_aarch64_appstream
Oracle Linux 10 (x86_64)	keylime-7.12.1-11.el10_1.4.src.rpm	c82e4136c30db5641945bdf2437eb4c52b111b4e3e9462f7786e6d3106276671	-	ol10_x86_64_appstream
	keylime-7.12.1-11.el10_1.4.x86_64.rpm	580e4b8e12323a2afa7c25f7ab144f3770454bdd7ca083d49a8ec506f45a30d2	-	ol10_x86_64_appstream
	keylime-base-7.12.1-11.el10_1.4.x86_64.rpm	5943f76375fe47118920a680ffeae151c30e3973a496f717a35bf88ba35aade2	-	ol10_x86_64_appstream
	keylime-registrar-7.12.1-11.el10_1.4.x86_64.rpm	bc0a489eda5b3437beb135b240d3959f037abb025030826a5829bcf67018fb4b	-	ol10_x86_64_appstream
	keylime-selinux-7.12.1-11.el10_1.4.noarch.rpm	0557f942dd6d4579bdb3f9c066ea27dc8c8b08e6d6bb8fae6ad63819469349b4	-	ol10_x86_64_appstream
	keylime-tenant-7.12.1-11.el10_1.4.x86_64.rpm	28b429082f810b44d08c5cf3e512c5816664799de4544368d72b121f9485c4d8	-	ol10_x86_64_appstream
	keylime-tools-7.12.1-11.el10_1.4.x86_64.rpm	c9aec2d2662eeb05c9b1b45ebb4815e7492d8cd1582d08a87076e6d054a687d8	-	ol10_x86_64_appstream
	keylime-verifier-7.12.1-11.el10_1.4.x86_64.rpm	0e9f8498cd716445fa7e99b9e0f6bbd0997ca4e91881120cd35ce1c84775ee7f	-	ol10_x86_64_appstream
	python3-keylime-7.12.1-11.el10_1.4.x86_64.rpm	30ab31c3b94b4b0287056446a3153e6b07ed421f5e7d5aa3dbfb31745a4bb10a	-	ol10_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team