ELSA-2026-0337

ULN >
Oracle Linux Errata repository >
ELSA-2026-0337

ELSA-2026-0337 - openssl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-01-08

Description

[1:1.1.1k-14]
- Backport fix for Out-of-bounds read & write in RFC 3211 KEK Unwrap
Fix CVE-2025-9230
Resolves: RHEL-128613
- Fix bug for ticket_lifetime_hint exceed issue
Resolves: RHEL-119891

Related CVEs

CVE-2025-9230

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssl-1.1.1k-14.el8_10.src.rpm	255fd4675655d0d2f91876c7c5c7715da0321788b0b4d2611d446154cafb61a3	-	ol8_aarch64_baseos_latest
	openssl-1.1.1k-14.el8_10.src.rpm	255fd4675655d0d2f91876c7c5c7715da0321788b0b4d2611d446154cafb61a3	-	ol8_aarch64_u10_baseos_patch
	openssl-1.1.1k-14.el8_10.aarch64.rpm	0689af6d4f83e8f2526a7d5f441f047d8dd5280a92b0ee44840b935bfe864f35	-	ol8_aarch64_baseos_latest
	openssl-1.1.1k-14.el8_10.aarch64.rpm	0689af6d4f83e8f2526a7d5f441f047d8dd5280a92b0ee44840b935bfe864f35	-	ol8_aarch64_u10_baseos_patch
	openssl-devel-1.1.1k-14.el8_10.aarch64.rpm	981812e5eee6173ac421f32fe6d1cbf2ee4d6c3eaa1109530db0141ccac344cf	-	ol8_aarch64_baseos_latest
	openssl-devel-1.1.1k-14.el8_10.aarch64.rpm	981812e5eee6173ac421f32fe6d1cbf2ee4d6c3eaa1109530db0141ccac344cf	-	ol8_aarch64_u10_baseos_patch
	openssl-libs-1.1.1k-14.el8_10.aarch64.rpm	b9b67467f2619496139f8effff5e368c9b32d430335ef37f2716c4320831cc2c	-	ol8_aarch64_baseos_latest
	openssl-libs-1.1.1k-14.el8_10.aarch64.rpm	b9b67467f2619496139f8effff5e368c9b32d430335ef37f2716c4320831cc2c	-	ol8_aarch64_u10_baseos_patch
	openssl-perl-1.1.1k-14.el8_10.aarch64.rpm	3bcbfc12cad440c083a81db5dfc31fd80b68a8b3d41af30972e7f2f081c4b9b0	-	ol8_aarch64_baseos_latest
	openssl-perl-1.1.1k-14.el8_10.aarch64.rpm	3bcbfc12cad440c083a81db5dfc31fd80b68a8b3d41af30972e7f2f081c4b9b0	-	ol8_aarch64_u10_baseos_patch

Oracle Linux 8 (x86_64)	openssl-1.1.1k-14.el8_10.src.rpm	255fd4675655d0d2f91876c7c5c7715da0321788b0b4d2611d446154cafb61a3	-	ol8_x86_64_baseos_latest
	openssl-1.1.1k-14.el8_10.src.rpm	255fd4675655d0d2f91876c7c5c7715da0321788b0b4d2611d446154cafb61a3	-	ol8_x86_64_u10_baseos_patch
	openssl-1.1.1k-14.el8_10.x86_64.rpm	2c5bca8e60c9765ee2e8f4e219c6676428041c4b9660dfb26ad93a43b8f7ab9e	-	ol8_x86_64_baseos_latest
	openssl-1.1.1k-14.el8_10.x86_64.rpm	2c5bca8e60c9765ee2e8f4e219c6676428041c4b9660dfb26ad93a43b8f7ab9e	-	ol8_x86_64_u10_baseos_patch
	openssl-devel-1.1.1k-14.el8_10.i686.rpm	216cf85bea80e3ed1e007526b454fb9d8efc45c49738d5c52a4124ab57af33ef	-	ol8_x86_64_baseos_latest
	openssl-devel-1.1.1k-14.el8_10.i686.rpm	216cf85bea80e3ed1e007526b454fb9d8efc45c49738d5c52a4124ab57af33ef	-	ol8_x86_64_u10_baseos_patch
	openssl-devel-1.1.1k-14.el8_10.x86_64.rpm	b5064710b716b7bcd6aa243b1872257b537767641a322cf9aa0308da99b36859	-	ol8_x86_64_baseos_latest
	openssl-devel-1.1.1k-14.el8_10.x86_64.rpm	b5064710b716b7bcd6aa243b1872257b537767641a322cf9aa0308da99b36859	-	ol8_x86_64_u10_baseos_patch
	openssl-libs-1.1.1k-14.el8_10.i686.rpm	c1cb7267600664d2ebf4d3b2f83324981c1017cca580ec609cf2a646ccf040d0	-	ol8_x86_64_baseos_latest
	openssl-libs-1.1.1k-14.el8_10.i686.rpm	c1cb7267600664d2ebf4d3b2f83324981c1017cca580ec609cf2a646ccf040d0	-	ol8_x86_64_u10_baseos_patch
	openssl-libs-1.1.1k-14.el8_10.x86_64.rpm	f70bbf66867e74b161c659c8859917e4a586dc4695dc82d342b4c671b97fb528	-	ol8_x86_64_baseos_latest
	openssl-libs-1.1.1k-14.el8_10.x86_64.rpm	f70bbf66867e74b161c659c8859917e4a586dc4695dc82d342b4c671b97fb528	-	ol8_x86_64_u10_baseos_patch
	openssl-perl-1.1.1k-14.el8_10.x86_64.rpm	4bc5adfb66cad17236b6e694dfcd0ffd74e708190e5490be8d48001f1053cc18	-	ol8_x86_64_baseos_latest
	openssl-perl-1.1.1k-14.el8_10.x86_64.rpm	4bc5adfb66cad17236b6e694dfcd0ffd74e708190e5490be8d48001f1053cc18	-	ol8_x86_64_u10_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691