Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Lightspeed
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Lightspeed
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHBA-2026:28920 - Bug Fix Advisory
Issued:
2026-06-24
Updated:
2026-06-24

RHBA-2026:28920 - Bug Fix Advisory

  • Overview
  • Updated Images

Synopsis

updated RHEL-9 based Middleware Containers container images

Type/Severity

Bug Fix Advisory

Topic

Updated RHEL-9 based Middleware Containers container images are now available

Description

The RHEL-9 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2026:27744 (see References)

Users of RHEL-9 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The RHEL-9 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat JBoss Middleware 1 x86_64

Fixes

  • BZ - 2451094 - CVE-2026-31790 openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key

CVEs

  • CVE-2026-31790

References

  • https://access.redhat.com/errata/RHSA-2026:27744
  • https://access.redhat.com/containers

aarch64

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:d6f6a9f1432ca3d1eb1a9250581efcd8b05777b297320100028913747ebe4150
ubi9/openjdk-17@sha256:4090a8ffc45a8fcd74126805c246adf5becafd9a07f026f8ee2a793c346228d4
ubi9/openjdk-17-runtime@sha256:951a6d5c7fc5907679c0cf0ae95d5066cf9c5c685ec378f884c3357d13c13e02
ubi9/openjdk-21@sha256:518929dd0426a476c84e88b9b59a59c334b9634f49598d7a03dde1f0a55bcaef
ubi9/openjdk-21-runtime@sha256:c4c123d66df2ffbb379c9546cf2160639d1bba84eeaa5ed03d13e3e361fb621c
ubi9/openjdk-25@sha256:83a411a8f1f92016ff1a4c415b17f37513801d215cd68e7ce1b77a3cf4421028
ubi9/openjdk-25-runtime@sha256:afbd707e4d210851ce690a1773926714c06670eae2f98257fedabb2507ef51bb

ppc64le

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:37da5d8750803dfe5ef729fb70ebd6fbd8185b753a44bb2e03c0554a1b1f8632
ubi9/openjdk-17@sha256:340760caeeb5d3d04ae2049ff5e50a27db2e7695db67d804519dba1cbb77fcc7
ubi9/openjdk-17-runtime@sha256:2c5cde4d5aab10a2da3a92c52e82652512b861db3d36acfc4c8eff21dbcfcd3b
ubi9/openjdk-21@sha256:70529427fa8191f025cb1f4ab12a7686ddfe6050c5a9e1f9a78e3fffd410cced
ubi9/openjdk-21-runtime@sha256:a633d2968ab7a9f4325a8c1361eed11ed411f2c99cbf335e27735cf527a96504
ubi9/openjdk-25@sha256:7690787bca45ebaef18a0a57a9dfc4ec3139ad843e3bf6ec975e31fdc6405b10
ubi9/openjdk-25-runtime@sha256:9eb48e847cc792d36411674e7034349cc6c206ebfd5bff3ee66be38e02dad0cb

s390x

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:1489a596009afd4ae2f2cd5b29025ca507d04dbeabd83da3b5d00cdea4e1287b
ubi9/openjdk-17@sha256:3bd00f04102c3b9712862686d4c8635241fc1ac7881e0be4e2506e45b9f45acb
ubi9/openjdk-17-runtime@sha256:c0494633de78b7c17cbd1ef5290251ecff5050c8d4d1e8161b3367be95fa7904
ubi9/openjdk-21@sha256:6f6d2d89877f8ba019aaadfbfd7a7414f4ced302d3a6cb7738e7b15394f1f4fa
ubi9/openjdk-21-runtime@sha256:4467fce88e26f1c31589a304e0e4648f14ab0d0ac84073a27b0b8c1e7d89d379
ubi9/openjdk-25@sha256:619c7f5ba6311b64534818ec511a06f459018fa51a0980a0e9d47d0dca7575d9
ubi9/openjdk-25-runtime@sha256:7dd28024d5137ca98a2e69d6a3a9d961e6cef7e8bc6ae3a58e5f0e2d738c16df

x86_64

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:d8da5a2f0869f0f43a483a49dfd1093dad49337bfd824fcbcc6a8a5fc734398e
ubi9/openjdk-17@sha256:0107b25169e2065b5e4c3904f71c40357a64845c7c1052d9e44d9170a380827a
ubi9/openjdk-17-runtime@sha256:244c1b918b21627368adf510533c01392a9c694ac3f1e649e6c567906da10e65
ubi9/openjdk-21@sha256:497f15c6989945376814f5dac298c61e21c28a289cb8dec492a46d9e4276719b
ubi9/openjdk-21-runtime@sha256:83df5afd5c85e90759116f6e592c0d662f8690edde6a613cf21547f84c07d9a4
ubi9/openjdk-25@sha256:0928154eef84da0a33ba87a7e51df60e02bdf9ef8af8514e35bd875bd3c8fe78
ubi9/openjdk-25-runtime@sha256:ebbf2fa0caea061fb5dbb37e3b32a8f305964b6e997c176012c55dee062ec774

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2026 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility