ELSA-2026-50131

ULN >
Oracle Linux Errata repository >
ELSA-2026-50131

ELSA-2026-50131 - openssl security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2026-02-26

Description

[1:1.1.1k-15]
- Fix CVE-2025-69419: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing
ticket_lifetime_hint exceed 1 week in TLSv1.3 and breaks compliant clients
Resolves: RHEL-149165
Resolves: RHEL-142715

[1:1.1.1k-14.1]
- Backport fix for openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap
Fix CVE-2025-9230
Resolves: RHEL-128615

[1:1.1.1k-14]
- Backport fix SSL_select_next proto from OpenSSL 3.2
Fix CVE-2024-5535
Resolves: RHEL-45654

Related CVEs

CVE-2025-69419

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	openssl-1.1.1k-15.ksplice1.el8_6.src.rpm	c0b754eeccfb8916e8f53263f3a7edbf7a4402487ae146ddd3308bb0f8866f42	-	ol8_aarch64_userspace_ksplice
	openssl-1.1.1k-15.ksplice1.el8_6.aarch64.rpm	4c5df0b623f1dde937b400ac8ded62ae87bd14caa57a3d671eea9033e2b34f1a	-	ol8_aarch64_userspace_ksplice
	openssl-devel-1.1.1k-15.ksplice1.el8_6.aarch64.rpm	538efb720dbab432c0745f4ff614ab68cf22cdef99dcd1b40135539d45ded189	-	ol8_aarch64_userspace_ksplice
	openssl-libs-1.1.1k-15.ksplice1.el8_6.aarch64.rpm	126639366618e31268878cf812cd2da713276f99dd2f79e55aa9e6ec69b63136	-	ol8_aarch64_userspace_ksplice
	openssl-perl-1.1.1k-15.ksplice1.el8_6.aarch64.rpm	ab88700d9fbd8e34306a6ad093b31d538d733b2f8f6ac67ffaf443e95c014ba2	-	ol8_aarch64_userspace_ksplice
	openssl-static-1.1.1k-15.ksplice1.el8_6.aarch64.rpm	d02b20e38baa1fbe5a1153428effbdc8ef0690e8592aa8b5075b4ad9f32d265b	-	ol8_aarch64_userspace_ksplice

Oracle Linux 8 (x86_64)	openssl-1.1.1k-15.ksplice1.el8_6.src.rpm	c0b754eeccfb8916e8f53263f3a7edbf7a4402487ae146ddd3308bb0f8866f42	-	ol8_x86_64_userspace_ksplice
	openssl-1.1.1k-15.ksplice1.el8_6.x86_64.rpm	437a926ce6c84d14feae123b2ae42f5f6135c1559da8ec219240e36cdcad258f	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1k-15.ksplice1.el8_6.i686.rpm	fcc3e580010cae040b19dc661f31b046fd193c55c86c96deaa4f248a48229749	-	ol8_x86_64_userspace_ksplice
	openssl-devel-1.1.1k-15.ksplice1.el8_6.x86_64.rpm	11d56a6c541d6ef1aad8d59bb81792b120e82cf8e0d0f39923e80332dcffdfae	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1k-15.ksplice1.el8_6.i686.rpm	f34f12fd3f84a87cf806b5c4e58a27367a7234f9dc44edf75a295ad1aabac436	-	ol8_x86_64_userspace_ksplice
	openssl-libs-1.1.1k-15.ksplice1.el8_6.x86_64.rpm	682addb9d13e717337909b4128b76bdfc3481696c4083005404efe88c68e8020	-	ol8_x86_64_userspace_ksplice
	openssl-perl-1.1.1k-15.ksplice1.el8_6.x86_64.rpm	9ed03544ac1d33882a41986b990a61c56e6469a9bd72ec7093769317188554a5	-	ol8_x86_64_userspace_ksplice

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691