Stay Connected:

ELSA-2026-3042

ELSA-2026-3042 - openssl security update

Type:SECURITY
Impact:MODERATE
Release Date:2026-02-23

Description


[1:1.1.1k-15]
- Fix CVE-2025-69419: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
ticket_lifetime_hint exceed 1 week in TLSv1.3 and breaks compliant clients
Resolves: RHEL-149165
Resolves: RHEL-142715

[1:1.1.1k-14.1]
- Backport fix for openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
Fix CVE-2025-9230
Resolves: RHEL-128615


Related CVEs


CVE-2025-69419

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) openssl-1.1.1k-15.el8_6.src.rpm132f49f3cb1c8ff86c981810d5625b1c6d1fd2c7ba6c35238af2a1aae7ef0585-ol8_aarch64_baseos_latest
openssl-1.1.1k-15.el8_6.src.rpm132f49f3cb1c8ff86c981810d5625b1c6d1fd2c7ba6c35238af2a1aae7ef0585-ol8_aarch64_u10_baseos_patch
openssl-1.1.1k-15.el8_6.aarch64.rpm60c947ff49b9391b3aa3f929b6dbe33a41f4c594a54fc8ed6f4ad35bd3072a3c-ol8_aarch64_baseos_latest
openssl-1.1.1k-15.el8_6.aarch64.rpm60c947ff49b9391b3aa3f929b6dbe33a41f4c594a54fc8ed6f4ad35bd3072a3c-ol8_aarch64_u10_baseos_patch
openssl-devel-1.1.1k-15.el8_6.aarch64.rpm564019924949cf89d438b1380f881f73ebd3c89248522b5ddce013c400804fac-ol8_aarch64_baseos_latest
openssl-devel-1.1.1k-15.el8_6.aarch64.rpm564019924949cf89d438b1380f881f73ebd3c89248522b5ddce013c400804fac-ol8_aarch64_u10_baseos_patch
openssl-libs-1.1.1k-15.el8_6.aarch64.rpm0e867b032eef56c060042ee235c2659d3e80055d5f061ce16b5c4500fa90cffb-ol8_aarch64_baseos_latest
openssl-libs-1.1.1k-15.el8_6.aarch64.rpm0e867b032eef56c060042ee235c2659d3e80055d5f061ce16b5c4500fa90cffb-ol8_aarch64_u10_baseos_patch
openssl-perl-1.1.1k-15.el8_6.aarch64.rpm0615c2e91c1c608cbf55a81c5aa4df74cd0d5e15184fc4b6dc27ea2b58054aec-ol8_aarch64_baseos_latest
openssl-perl-1.1.1k-15.el8_6.aarch64.rpm0615c2e91c1c608cbf55a81c5aa4df74cd0d5e15184fc4b6dc27ea2b58054aec-ol8_aarch64_u10_baseos_patch
Oracle Linux 8 (x86_64) openssl-1.1.1k-15.el8_6.src.rpm132f49f3cb1c8ff86c981810d5625b1c6d1fd2c7ba6c35238af2a1aae7ef0585-ol8_x86_64_baseos_latest
openssl-1.1.1k-15.el8_6.src.rpm132f49f3cb1c8ff86c981810d5625b1c6d1fd2c7ba6c35238af2a1aae7ef0585-ol8_x86_64_u10_baseos_patch
openssl-1.1.1k-15.el8_6.x86_64.rpm091f2f16aa9e95f91bd90e7f7a940e48489aa9a40fa3f1e3f9654666a3622c3a-ol8_x86_64_baseos_latest
openssl-1.1.1k-15.el8_6.x86_64.rpm091f2f16aa9e95f91bd90e7f7a940e48489aa9a40fa3f1e3f9654666a3622c3a-ol8_x86_64_u10_baseos_patch
openssl-devel-1.1.1k-15.el8_6.i686.rpm347eccd2d769eba3787aecace9aa06e7001a40d96ed9b480dfbaa09d19e78ca5-ol8_x86_64_baseos_latest
openssl-devel-1.1.1k-15.el8_6.i686.rpm347eccd2d769eba3787aecace9aa06e7001a40d96ed9b480dfbaa09d19e78ca5-ol8_x86_64_u10_baseos_patch
openssl-devel-1.1.1k-15.el8_6.x86_64.rpm7a5bf14fb3969874443e5d7b54dfa21812ded144c6177b3dae050207b8aec373-ol8_x86_64_baseos_latest
openssl-devel-1.1.1k-15.el8_6.x86_64.rpm7a5bf14fb3969874443e5d7b54dfa21812ded144c6177b3dae050207b8aec373-ol8_x86_64_u10_baseos_patch
openssl-libs-1.1.1k-15.el8_6.i686.rpme769d732abb8ce60a31a080510014374a38d2a01ea7280825ebeca40a65331e8-ol8_x86_64_baseos_latest
openssl-libs-1.1.1k-15.el8_6.i686.rpme769d732abb8ce60a31a080510014374a38d2a01ea7280825ebeca40a65331e8-ol8_x86_64_u10_baseos_patch
openssl-libs-1.1.1k-15.el8_6.x86_64.rpma3c4531cd0ec75c48274f6f26bd88cbef2282b02e0488014d004fbf2823287bc-ol8_x86_64_baseos_latest
openssl-libs-1.1.1k-15.el8_6.x86_64.rpma3c4531cd0ec75c48274f6f26bd88cbef2282b02e0488014d004fbf2823287bc-ol8_x86_64_u10_baseos_patch
openssl-perl-1.1.1k-15.el8_6.x86_64.rpm592515c3d227af9d4f77e3fa363f21ee56b2cd25fd8e30d272c7d5d794f0460a-ol8_x86_64_baseos_latest
openssl-perl-1.1.1k-15.el8_6.x86_64.rpm592515c3d227af9d4f77e3fa363f21ee56b2cd25fd8e30d272c7d5d794f0460a-ol8_x86_64_u10_baseos_patch



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights