Stay Connected:

ELSA-2026-50081

ELSA-2026-50081 - openssl security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2026-01-30

Description


[3.5.1-7.0.1]
- Replace upstream references [Orabug: 34340177]
- Update FIPS provider name [Orabug: 35824276]

[1:3.5.1-7]
- Fix CVE-2025-11187 CVE-2025-15467 CVE-2025-15468 CVE-2025-15469
CVE-2025-66199 CVE-2025-68160 CVE-2025-69418 CVE-2025-69419 CVE-2025-69420
CVE-2025-69421 CVE-2026-22795 CVE-2026-22796
Resolves: RHEL-142062
Resolves: RHEL-141985
Resolves: RHEL-142053
Resolves: RHEL-142049
Resolves: RHEL-142045
Resolves: RHEL-142041
Resolves: RHEL-142037
Resolves: RHEL-142033
Resolves: RHEL-142029
Resolves: RHEL-142008
Resolves: RHEL-142025
Resolves: RHEL-142021

[1:3.5.1-6]
- Fix AES/GCM ppc64le encrypt/decrypt
Resolves: RHEL-139108

[1:3.5.1-5]
- Do not make key share choice in tls1_set_groups()
Resolves: RHEL-130992

[1:3.5.1-4]
- Fix CVE-2025-9230
Resolves: RHEL-115885

[1:3.5.1-3]
- Add custom define to disable symbol versioning in downstream patched code
Also add stricter Suggests for openssl-fips-provider
Resolves: RHEL-101548
- Fix Requires/Provider to fix default install of fips providers
Resolves: RHEL-105010

[1:3.5.1-2]
- Move fips.so to a seprate subpackage
Reverts FIPS self test for SLH-DSA
Add Suggests to try to prefer the openssl-fips-provider package
over the fips-provider-next package by default
Revolves: RHEL-102408
Related: RHEL-80811

[1:3.5.1-1]
- Rebasing to OpenSSL 3.5.1
Resolves: RHEL-90350
Resolves: RHEL-95613
Resolves: RHEL-97796
Resolves: RHEL-99353
Resolves: RHEL-100168

[1:3.5.0-8]
- rebuilt
Related: RHEL-80811

[1:3.5.0-7]
- rebuilt
Related: RHEL-80811


Related CVEs


CVE-2025-11187
CVE-2025-15467
CVE-2025-15468
CVE-2025-15469
CVE-2025-66199
CVE-2025-68160
CVE-2025-69418
CVE-2025-69419
CVE-2025-69420
CVE-2025-69421
CVE-2026-22795
CVE-2026-22796

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 10 (aarch64) openssl-3.5.1-7.0.1.ksplice1.el10_1.src.rpmbc63c131a25cb27c62c77896a922241ce83256b58dcfa7cbb0dd4316ec5e62c5-ol10_aarch64_userspace_ksplice
openssl-3.5.1-7.0.1.ksplice1.el10_1.aarch64.rpm8b2daca978e849944f03b1aec0032f8c27b475abfc6e80158cb7c4ffad1caa5c-ol10_aarch64_userspace_ksplice
openssl-devel-3.5.1-7.0.1.ksplice1.el10_1.aarch64.rpmd33b7bbb371c369d22f7616c819224a8a908958ed00f5ef2435b03e21e75d4a7-ol10_aarch64_userspace_ksplice
openssl-libs-3.5.1-7.0.1.ksplice1.el10_1.aarch64.rpm8f43f41915a19b91c6ba6725a72d89257017c7e0ff6f63ca2dba499a815b7da1-ol10_aarch64_userspace_ksplice
openssl-perl-3.5.1-7.0.1.ksplice1.el10_1.aarch64.rpm3f232e2fa5f21676212f3d2798b4f97b6a8d59c33f1e8edcb30f3035ec82b706-ol10_aarch64_userspace_ksplice
Oracle Linux 10 (x86_64) openssl-3.5.1-7.0.1.ksplice1.el10_1.src.rpmbc63c131a25cb27c62c77896a922241ce83256b58dcfa7cbb0dd4316ec5e62c5-ol10_x86_64_userspace_ksplice
openssl-3.5.1-7.0.1.ksplice1.el10_1.x86_64.rpm7e0b81350040709766d22e323fa7811028c29c4a4ba514ad1e6c74768d2be121-ol10_x86_64_userspace_ksplice
openssl-devel-3.5.1-7.0.1.ksplice1.el10_1.x86_64.rpm0833388e24cc8911228527f77fadc2ab581244b5805a51f978aad7b0c4097016-ol10_x86_64_userspace_ksplice
openssl-libs-3.5.1-7.0.1.ksplice1.el10_1.x86_64.rpm723e68a9386d4fb778699407e438f13c110743a2c70a007f4dcb8d0f34b0d01e-ol10_x86_64_userspace_ksplice
openssl-perl-3.5.1-7.0.1.ksplice1.el10_1.x86_64.rpm4bafc020be355b8d31d3729828b56135c2194e69371185f6bcb06cff700e0ec4-ol10_x86_64_userspace_ksplice



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights