ELSA-2026-38503

ELSA-2026-38503 - openssl security update

Type:SECURITY
Impact:MODERATE
Release Date:2026-07-13

Description


[1:1.1.1k-17]
- Fixes CVE-2026-28390: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing
Resolves: RHEL-165783


Related CVEs


CVE-2026-28390

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (aarch64) openssl-1.1.1k-17.el8_6.src.rpm0382af70fb9b88f33daa18e9510137194f91dbc95586839941b5f74ef4ccd47b-ol8_aarch64_baseos_latest
openssl-1.1.1k-17.el8_6.src.rpm0382af70fb9b88f33daa18e9510137194f91dbc95586839941b5f74ef4ccd47b-ol8_aarch64_u10_baseos_patch
openssl-1.1.1k-17.el8_6.aarch64.rpm6774756857256c3006c343331703e2f3d4d9f20e8bb19795f3fe258383e36d62-ol8_aarch64_baseos_latest
openssl-1.1.1k-17.el8_6.aarch64.rpm6774756857256c3006c343331703e2f3d4d9f20e8bb19795f3fe258383e36d62-ol8_aarch64_u10_baseos_patch
openssl-devel-1.1.1k-17.el8_6.aarch64.rpmee61803af9cde2b32b189f2d0c069cf17aa768059d639ea5cac85f2003a6bfc9-ol8_aarch64_baseos_latest
openssl-devel-1.1.1k-17.el8_6.aarch64.rpmee61803af9cde2b32b189f2d0c069cf17aa768059d639ea5cac85f2003a6bfc9-ol8_aarch64_u10_baseos_patch
openssl-libs-1.1.1k-17.el8_6.aarch64.rpm53d8fef98805a1b1a3f710792b1b1b9d1729f8de828bce1d40481d3a14fea384-ol8_aarch64_baseos_latest
openssl-libs-1.1.1k-17.el8_6.aarch64.rpm53d8fef98805a1b1a3f710792b1b1b9d1729f8de828bce1d40481d3a14fea384-ol8_aarch64_u10_baseos_patch
openssl-perl-1.1.1k-17.el8_6.aarch64.rpm55ecccf7db66eef6e6806cb68121fceaca9024af2425b8cbc729d48c70d1129a-ol8_aarch64_baseos_latest
openssl-perl-1.1.1k-17.el8_6.aarch64.rpm55ecccf7db66eef6e6806cb68121fceaca9024af2425b8cbc729d48c70d1129a-ol8_aarch64_u10_baseos_patch
Oracle Linux 8 (x86_64) openssl-1.1.1k-17.el8_6.src.rpm0382af70fb9b88f33daa18e9510137194f91dbc95586839941b5f74ef4ccd47b-ol8_x86_64_baseos_latest
openssl-1.1.1k-17.el8_6.src.rpm0382af70fb9b88f33daa18e9510137194f91dbc95586839941b5f74ef4ccd47b-ol8_x86_64_u10_baseos_patch
openssl-1.1.1k-17.el8_6.x86_64.rpmaeeb23459a42661f853c434d3ba9a2fd991ccb735193aafd13b4474dcf91a78e-ol8_x86_64_baseos_latest
openssl-1.1.1k-17.el8_6.x86_64.rpmaeeb23459a42661f853c434d3ba9a2fd991ccb735193aafd13b4474dcf91a78e-ol8_x86_64_u10_baseos_patch
openssl-devel-1.1.1k-17.el8_6.i686.rpmfc897a263ebf932547a8176b5fbaa9056917456ec7ee3621e663d864215fbe87-ol8_x86_64_baseos_latest
openssl-devel-1.1.1k-17.el8_6.i686.rpmfc897a263ebf932547a8176b5fbaa9056917456ec7ee3621e663d864215fbe87-ol8_x86_64_u10_baseos_patch
openssl-devel-1.1.1k-17.el8_6.x86_64.rpmf0e2ef68771a27d208031385d4cd5e6a4f0413e10e5ce0344d0780f8ef7f4edd-ol8_x86_64_baseos_latest
openssl-devel-1.1.1k-17.el8_6.x86_64.rpmf0e2ef68771a27d208031385d4cd5e6a4f0413e10e5ce0344d0780f8ef7f4edd-ol8_x86_64_u10_baseos_patch
openssl-libs-1.1.1k-17.el8_6.i686.rpm3096e8024ad3dd618cea71d784b591ac4913ba45406f30a0772ea7bfe403e483-ol8_x86_64_baseos_latest
openssl-libs-1.1.1k-17.el8_6.i686.rpm3096e8024ad3dd618cea71d784b591ac4913ba45406f30a0772ea7bfe403e483-ol8_x86_64_u10_baseos_patch
openssl-libs-1.1.1k-17.el8_6.x86_64.rpma1879b1e5786afd2ccd1d122b409d8acaf1e3cf77aab8bdd546647f9f56d9fed-ol8_x86_64_baseos_latest
openssl-libs-1.1.1k-17.el8_6.x86_64.rpma1879b1e5786afd2ccd1d122b409d8acaf1e3cf77aab8bdd546647f9f56d9fed-ol8_x86_64_u10_baseos_patch
openssl-perl-1.1.1k-17.el8_6.x86_64.rpm5345c56c90d164998dbd15658b90daf4f9925c16fd297f6303dbb17bec2a0b88-ol8_x86_64_baseos_latest
openssl-perl-1.1.1k-17.el8_6.x86_64.rpm5345c56c90d164998dbd15658b90daf4f9925c16fd297f6303dbb17bec2a0b88-ol8_x86_64_u10_baseos_patch



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete