Issued:: 2026-01-20
Updated:: 2026-01-20

RHSA-2026:0887 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: openssl security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for openssl is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.

Security Fix(es):

openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap (CVE-2025-9230)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server - AUS 8.2 x86_64

Fixes

BZ - 2396054 - CVE-2025-9230 openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

CVEs

CVE-2025-9230

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server - AUS 8.2

SRPM
openssl-1.1.1c-21.el8_2.1.src.rpm	SHA-256: 4d3462a5e5e352d2c4060509206de172e0e9d3bb850f582434a469b521ef6d66
x86_64
openssl-1.1.1c-21.el8_2.1.x86_64.rpm	SHA-256: d3f14885350330314186e4008a9a6184f8daed45845fee12dd433091822d7372
openssl-debuginfo-1.1.1c-21.el8_2.1.i686.rpm	SHA-256: d52e51c35261766e62e702c92e1b4e912a42e58fde4453b8c89e03fb944fd80f
openssl-debuginfo-1.1.1c-21.el8_2.1.x86_64.rpm	SHA-256: 299c4bdacaa4dbedcbf8d27e7f1985921928e67bf9ad9e729acb8b00ea859c82
openssl-debugsource-1.1.1c-21.el8_2.1.i686.rpm	SHA-256: c30428f42558bfd5d5f112bb9010b7f589ee29106b1d577375b746fa95a4b9e3
openssl-debugsource-1.1.1c-21.el8_2.1.x86_64.rpm	SHA-256: 3a7c0c7b2e822525e9c62fb83f89e87d14452cb0eced74454d18a9b7e9dc19e1
openssl-devel-1.1.1c-21.el8_2.1.i686.rpm	SHA-256: 6e787b94a12b7cd2bca6afb9a8057303b57009a12421d9b56587ad4821f34ba5
openssl-devel-1.1.1c-21.el8_2.1.x86_64.rpm	SHA-256: 78b60c731a7dcd1218396349bf737f59e1847d0b59adda634eb50c8dac0ce47c
openssl-libs-1.1.1c-21.el8_2.1.i686.rpm	SHA-256: 5757602bd398e006dcbde87245c99c4e40ced910d68262a8252d08704344247f
openssl-libs-1.1.1c-21.el8_2.1.x86_64.rpm	SHA-256: cc0dc0230f42be745ed96aaec410fe8e356b95cf333b42d00420667ab6420cfd
openssl-libs-debuginfo-1.1.1c-21.el8_2.1.i686.rpm	SHA-256: fc0e0906de9b8e1865361bddd0d957c7e48fc4a9473279351a43335fc22c82db
openssl-libs-debuginfo-1.1.1c-21.el8_2.1.x86_64.rpm	SHA-256: cc3a7669fb34fbf0671fcb1051b61cc04588533f2096bb0ecd2cb1cf6483606a
openssl-perl-1.1.1c-21.el8_2.1.x86_64.rpm	SHA-256: 4b91832fb4d070989fd4d5c766ca68bd85faa4d2089946abaf9b29a3a48fcaf6

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation