- Issued:
- 2026-03-05
- Updated:
- 2026-03-05
RHEA-2026:3934 - Product Enhancement Advisory
Synopsis
RHCS 10.8 bug fix and enhancement update
Type/Severity
Product Enhancement Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated RHCS 10.8 packages that fix several bugs and add various enhancements are now available.
Description
Red Hat Certificate System (RHCS) is a complete implementation of an
enterprise software system designed to manage enterprise Public Key
Infrastructure (PKI) deployments.
Many of the subcomponents that comprise RHCS, such the Tomcat servlet
container, the RESTEasy framework, and the Network Security Services (NSS)
libraries, are provided by the base operating system. RHCS only supports
the default versions of these subcomponents that ship with Red Hat
Enterprise Linux 8.10.
Users of Red Hat Certificate System are advised to upgrade to these updated
packages.
Solution
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
Affected Products
- Red Hat Certificate System 10.8 x86_64
Fixes
- DOGTAG-4123 - Add upgrade script to enable URL rewrite
- DOGTAG-4122 - EST Subsystem needs fix to improve client authentication process
- DOGTAG-3896 - pki-server subsystem-cert-update command fails with ERROR: 'NoneType' object has no attribute 'replace'
- DOGTAG-3995 - PKI group delete i.e <subsystem>-group-del is failing for name 'abc?' with error: ResourceNotFoundException: No such object: No such object
- DOGTAG-4266 - db-schema-upgrade using -h for ldapmodify resulting in ERROR: Unable to update schema
- DOGTAG-4280 - Missing registry entries for EST on upgraded server
CVEs
(none)
References
(none)
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Certificate System 10.8
| SRPM | |
|---|---|
| jss-5.9.0-1.module+el8pki+24022+fc689657.src.rpm | SHA-256: 3e84414dfb915f183107eb34e16ce656b44c25c1edc57ae644284dc8a23cdea5 |
| ldapjdk-5.6.0-2.module+el8pki+22942+ec484924.src.rpm | SHA-256: edce584631391ff6db3ca64d43d6bd92b7e4c971e9aae8512354dea7b224bd0e |
| redhat-pki-11.9.0-1.module+el8pki+24022+fc689657.src.rpm | SHA-256: dfa160ad70cc61013217e9fd4ecaced2890315ecfdd94b30a4fc8806e69a178b |
| x86_64 | |
| jss-debuginfo-5.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: 2ef8ab8f8e880e7d348b9654b476fd4954a8c92e0ee1e1885bb3b7c0f69a8372 |
| jss-debugsource-5.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: 0ad901a70b3c98e7973e22ef9476ac8f469ad605a120e4ce15f2e9a6d03cc54b |
| python3-redhat-pki-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: f6386056bd0d203650251c64aa87eb6c9d11dcd83bfd3997bf1124ea845bc6fc |
| redhat-jss-5.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: e2a6965f9b37484b53147fe20641a22ace454b8caf6632023793d7a2c3409f96 |
| redhat-jss-debuginfo-5.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: ccdeae39cc03d3d4a1825c23812b612bd226d16aefb6b91dd6ad1925eba3e6f6 |
| redhat-jss-javadoc-5.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: ae06caba5f64c4c1b5457cebf5f84a8aaae861935107ce00a50556eab6863280 |
| redhat-jss-tomcat-5.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: 4809fb7a1790cc7670f0558300cfebce92aff00ea5102f4f0d4e26f0beea0f93 |
| redhat-jss-tools-5.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: 810d5e6e7832c118f3384800586aa0c86f3c901677f37372386dc2fa5be70a49 |
| redhat-jss-tools-debuginfo-5.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: 37dfbf6777a5663594c090b93ec1fad37e37a7bc1fffa580e8c52a578b2b911f |
| redhat-ldapjdk-5.6.0-2.module+el8pki+22942+ec484924.noarch.rpm | SHA-256: 9e2b277f7521e6b01e6568735a2eb4395b2341c41083207078aa0d0143b5e28a |
| redhat-ldapjdk-javadoc-5.6.0-2.module+el8pki+22942+ec484924.noarch.rpm | SHA-256: eee38613212186a416f4850d8a4ebe660f2143ab89dcde4ff91345b4fd0d5b95 |
| redhat-pki-11.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: 90cee0fbba6c2a38a5a93e89e748f5169cd62a676fe2e30da815ca52d191c8e5 |
| redhat-pki-acme-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 818eb9f3030d3962e8be5be97cbb96cce2d62d12c4866bf547df0f6219de4173 |
| redhat-pki-base-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 9692e9fa3915accfac5d582e5d726fa7c61bf04a2b66610e5aff3fe722682186 |
| redhat-pki-ca-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 1a2de461d447750bc9faf121642f5b21d948e8012644e29b87f561693c4c6842 |
| redhat-pki-console-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 5cd55fe1f8f4e202582bcd9102fc12dcc92be4387bf08fbad0972c29e3e382fc |
| redhat-pki-console-theme-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 862c0242614bd34098efd220d8b35b8aaea89222026970d27dda789882b6de9b |
| redhat-pki-debugsource-11.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: e23a3b1d3b56da4f6d93c4bc261aed1087bd792572739df8da32e5f3b94deb37 |
| redhat-pki-est-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 4c0fc02b16d59fc20a86546d63e88f9bf37b8b4400130aa08fef6f706b6f7eb5 |
| redhat-pki-java-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 734373dfd911ec3b6a80b0d946429f95110c50e45486700f210fad94f8b3ab9e |
| redhat-pki-javadoc-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 27ad9fbc33aba9835c9bb016a6ceac368bd9592aae9160c149b927ec404a64b3 |
| redhat-pki-kra-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 761c8aca743b70e44e40688a6d6c2728c0954d7475cb31c42d0c201df6ea0a53 |
| redhat-pki-ocsp-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 9a6c8b2267b6e0e36232dc0375fadc470f94cfb8e406c09a548d9ea25d7bf24a |
| redhat-pki-server-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 64e2dec59b2beede520be26f68375b9aefe6749ab9cce83b82c6431e58912a25 |
| redhat-pki-theme-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: ebdd88d29e45903ec0248b21ee303e0f4cecd0fbcc2691fcaecd70a852436948 |
| redhat-pki-tks-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: c6c066f143eebf4db86c8091bf7469f8171acd8f82af26253fc824eca5542065 |
| redhat-pki-tools-11.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: eaa55a26940c95c89432d5ec2515f1bf634e26120f4e9a9a7d9d9208a406cd08 |
| redhat-pki-tools-debuginfo-11.9.0-1.module+el8pki+24022+fc689657.x86_64.rpm | SHA-256: 8ade695dbbc96562c84809738215910945a21826df414083763591d2fcaf918b |
| redhat-pki-tps-11.9.0-1.module+el8pki+24022+fc689657.noarch.rpm | SHA-256: 0a55bdca7cffb1ac8e6d3e93116c182e3778d817b7c38fde3d8d8562b9d3d9cd |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
