- What: Security update for compat-openssl11 in Red Hat Enterprise Linux 9
- Impact: Systems using older OpenSSL versions may be vulnerable to denial of service attacks
Red Hat Product Errata RHSA-2026:22313 - Security Advisory Issued: 2026-06-01 Updated: 2026-06-01 RHSA-2026:22313 - Security Advisory Overview Updated Packages Synopsis Moderate: compat-openssl11 security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for compat-openssl11 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The OpenSSL toolkit provides support for secure communications between machines. This version of OpenSSL package contains only the libraries from the 1.1.1 version and is provided for compatibility with previous releases. Security Fix(es): openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing (CVE-2026-28390) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x Fixes BZ - 2456314 - CVE-2026-28390 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing CVEs CVE-2026-28390 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 x86_64 compat-openssl11-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 636c8c1d6ad2799cb619f6c3685a77b946709bab284b5a1a87ac72ac6068bc93 compat-openssl11-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 5bc820b926bc36c3e2b5aff01201f2836b5b1b5800a7882e92be75f56d3bd9db compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 5a0d0790fca245f1f3e83be76cd43850461b7fb39d2785147c51bf19d522b020 compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 57054cbcbefb7c2a13104e3ab9a803ee30022c2f2391238c25f0c472fb760eec compat-openssl11-debugsource-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 49355641a83b7a12fde5ca95907fd194ba63520948f23dfa4a978cb196a156ce compat-openssl11-debugsource-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 5de273ab1479b4c49abefdd0ad9dced19499eb242d32a75898a98fb8681699c7 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 x86_64 compat-openssl11-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 636c8c1d6ad2799cb619f6c3685a77b946709bab284b5a1a87ac72ac6068bc93 compat-openssl11-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 5bc820b926bc36c3e2b5aff01201f2836b5b1b5800a7882e92be75f56d3bd9db compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 5a0d0790fca245f1f3e83be76cd43850461b7fb39d2785147c51bf19d522b020 compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 57054cbcbefb7c2a13104e3ab9a803ee30022c2f2391238c25f0c472fb760eec compat-openssl11-debugsource-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 49355641a83b7a12fde5ca95907fd194ba63520948f23dfa4a978cb196a156ce compat-openssl11-debugsource-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 5de273ab1479b4c49abefdd0ad9dced19499eb242d32a75898a98fb8681699c7 Red Hat Enterprise Linux for IBM z Systems 9 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 s390x compat-openssl11-1.1.1k-5.el9_8.3.s390x.rpm SHA-256: 50e1ba3df2fa427b10facf98050188ab003b2b74417cc4c66aaa7da13fb380bc compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.s390x.rpm SHA-256: d43da13e8950195e5bd62b4bd0cb5dc1bfc2feb5a726d19ed5645bf4b847188c compat-openssl11-debugsource-1.1.1k-5.el9_8.3.s390x.rpm SHA-256: 040a2e3120198d8887b12a65c348f9704736832caca30f45c3244d2561080c84 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 s390x compat-openssl11-1.1.1k-5.el9_8.3.s390x.rpm SHA-256: 50e1ba3df2fa427b10facf98050188ab003b2b74417cc4c66aaa7da13fb380bc compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.s390x.rpm SHA-256: d43da13e8950195e5bd62b4bd0cb5dc1bfc2feb5a726d19ed5645bf4b847188c compat-openssl11-debugsource-1.1.1k-5.el9_8.3.s390x.rpm SHA-256: 040a2e3120198d8887b12a65c348f9704736832caca30f45c3244d2561080c84 Red Hat Enterprise Linux for Power, little endian 9 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 ppc64le compat-openssl11-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: 8a2d33a1a379495c7851a95637be0105b1d5834c98a161ab1a282efb2da5ebdd compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: fce458f21da817d3267c1fe99543cd01dc56d956e8e1c1768d187826b1de5ae2 compat-openssl11-debugsource-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: 02cb9564796ab5f7b6613d0652fc94f0a88e03411da05d86162a6e84ad305f88 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 ppc64le compat-openssl11-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: 8a2d33a1a379495c7851a95637be0105b1d5834c98a161ab1a282efb2da5ebdd compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: fce458f21da817d3267c1fe99543cd01dc56d956e8e1c1768d187826b1de5ae2 compat-openssl11-debugsource-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: 02cb9564796ab5f7b6613d0652fc94f0a88e03411da05d86162a6e84ad305f88 Red Hat Enterprise Linux for ARM 64 9 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 aarch64 compat-openssl11-1.1.1k-5.el9_8.3.aarch64.rpm SHA-256: 60751fa608555192d7f128aac92f86c17f2009a22519d3a157e42943d6b6de17 compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.aarch64.rpm SHA-256: 533fb020583d5f011b44891e5ffb3858dba11fdc6dfb174e3dcb22938f3be45a compat-openssl11-debugsource-1.1.1k-5.el9_8.3.aarch64.rpm SHA-256: 4af3626d8d36e59d5298ca63c21113b4679c29a471e739b8b73e358bbef943f5 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 aarch64 compat-openssl11-1.1.1k-5.el9_8.3.aarch64.rpm SHA-256: 60751fa608555192d7f128aac92f86c17f2009a22519d3a157e42943d6b6de17 compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.aarch64.rpm SHA-256: 533fb020583d5f011b44891e5ffb3858dba11fdc6dfb174e3dcb22938f3be45a compat-openssl11-debugsource-1.1.1k-5.el9_8.3.aarch64.rpm SHA-256: 4af3626d8d36e59d5298ca63c21113b4679c29a471e739b8b73e358bbef943f5 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 ppc64le compat-openssl11-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: 8a2d33a1a379495c7851a95637be0105b1d5834c98a161ab1a282efb2da5ebdd compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: fce458f21da817d3267c1fe99543cd01dc56d956e8e1c1768d187826b1de5ae2 compat-openssl11-debugsource-1.1.1k-5.el9_8.3.ppc64le.rpm SHA-256: 02cb9564796ab5f7b6613d0652fc94f0a88e03411da05d86162a6e84ad305f88 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 x86_64 compat-openssl11-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 636c8c1d6ad2799cb619f6c3685a77b946709bab284b5a1a87ac72ac6068bc93 compat-openssl11-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 5bc820b926bc36c3e2b5aff01201f2836b5b1b5800a7882e92be75f56d3bd9db compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 5a0d0790fca245f1f3e83be76cd43850461b7fb39d2785147c51bf19d522b020 compat-openssl11-debuginfo-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 57054cbcbefb7c2a13104e3ab9a803ee30022c2f2391238c25f0c472fb760eec compat-openssl11-debugsource-1.1.1k-5.el9_8.3.i686.rpm SHA-256: 49355641a83b7a12fde5ca95907fd194ba63520948f23dfa4a978cb196a156ce compat-openssl11-debugsource-1.1.1k-5.el9_8.3.x86_64.rpm SHA-256: 5de273ab1479b4c49abefdd0ad9dced19499eb242d32a75898a98fb8681699c7 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 SRPM compat-openssl11-1.1.1k-5.el9_8.3.src.rpm SHA-256: 9c4ea26c997fe44a3407ec0e3e94df8582b31b6cb8160d3fe1ca4f9c032765a6 aarch64 compat-openssl11-1.1.1k-5.el9_8.3.aarch64.rpm SHA-256: 60751fa608