Red Hat Product Errata RHSA-2026:22314 - Security Advisory Issued: 2026-06-01 Updated: 2026-06-01 RHSA-2026:22314 - Security Advisory Overview Updated Packages Synopsis Moderate: openssl security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for openssl is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library. Security Fix(es): openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing (CVE-2026-28390) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x Fixes BZ - 2456314 - CVE-2026-28390 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing CVEs CVE-2026-28390 References https://access.redhat.com/security/updates/classification/#moderate Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM openssl-3.5.5-3.el10_2.src.rpm SHA-256: 8ca296187fc0d33e4737b124c78eac8ea6983aea61fcdf55e33490d1a8a6d128 x86_64 openssl-3.5.5-3.el10_2.x86_64.rpm SHA-256: e4ab5c9c8c705e233098ce9ea99c3b0e657e0bdc3a60a6ed9605cc679f2a9ddb openssl-debuginfo-3.5.5-3.el10_2.x86_64.rpm SHA-256: 3520d4f24a600894d86b135420b8dbd78762bc64680b362bddeccb20b6fa8a23 openssl-debuginfo-3.5.5-3.el10_2.x86_64.rpm SHA-256: 3520d4f24a600894d86b135420b8dbd78762bc64680b362bddeccb20b6fa8a23 openssl-debugsource-3.5.5-3.el10_2.x86_64.rpm SHA-256: 5c1012ed557630848953c77e3abb439d1b6721fa62d42ed397e3fb28425b4916 openssl-debugsource-3.5.5-3.el10_2.x86_64.rpm SHA-256: 5c1012ed557630848953c77e3abb439d1b6721fa62d42ed397e3fb28425b4916 openssl-devel-3.5.5-3.el10_2.x86_64.rpm SHA-256: 88b8ecb410c6f89d968bd6f7b3266306848d8ab9e0af8da05d0d13b23e0c7829 openssl-libs-3.5.5-3.el10_2.x86_64.rpm SHA-256: 586462274e7b135eb1398f4fd33e610a6da6382b9ed41cecd293c2dc2d0f753b openssl-libs-debuginfo-3.5.5-3.el10_2.x86_64.rpm SHA-256: b7b9bf70abaa08cecec0552123bed23ef3f8805db4bfec9486145a0e0eba82f0 openssl-libs-debuginfo-3.5.5-3.el10_2.x86_64.rpm SHA-256: b7b9bf70abaa08cecec0552123bed23ef3f8805db4bfec9486145a0e0eba82f0 openssl-perl-3.5.5-3.el10_2.x86_64.rpm SHA-256: 1658358fd2dad49db600e2a967d3a8a62aee57552fad5120d73b8f543e15e62d Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 SRPM openssl-3.5.5-3.el10_2.src.rpm SHA-256: 8ca296187fc0d33e4737b124c78eac8ea6983aea61fcdf55e33490d1a8a6d128 x86_64 openssl-3.5.5-3.el10_2.x86_64.rpm SHA-256: e4ab5c9c8c705e233098ce9ea99c3b0e657e0bdc3a60a6ed9605cc679f2a9ddb openssl-debuginfo-3.5.5-3.el10_2.x86_64.rpm SHA-256: 3520d4f24a600894d86b135420b8dbd78762bc64680b362bddeccb20b6fa8a23 openssl-debuginfo-3.5.5-3.el10_2.x86_64.rpm SHA-256: 3520d4f24a600894d86b135420b8dbd78762bc64680b362bddeccb20b6fa8a23 openssl-debugsource-3.5.5-3.el10_2.x86_64.rpm SHA-256: 5c1012ed557630848953c77e3abb439d1b6721fa62d42ed397e3fb28425b4916 openssl-debugsource-3.5.5-3.el10_2.x86_64.rpm SHA-256: 5c1012ed557630848953c77e3abb439d1b6721fa62d42ed397e3fb28425b4916 openssl-devel-3.5.5-3.el10_2.x86_64.rpm SHA-256: 88b8ecb410c6f89d968bd6f7b3266306848d8ab9e0af8da05d0d13b23e0c7829 openssl-libs-3.5.5-3.el10_2.x86_64.rpm SHA-256: 586462274e7b135eb1398f4fd33e610a6da6382b9ed41cecd293c2dc2d0f753b openssl-libs-debuginfo-3.5.5-3.el10_2.x86_64.rpm SHA-256: b7b9bf70abaa08cecec0552123bed23ef3f8805db4bfec9486145a0e0eba82f0 openssl-libs-debuginfo-3.5.5-3.el10_2.x86_64.rpm SHA-256: b7b9bf70abaa08cecec0552123bed23ef3f8805db4bfec9486145a0e0eba82f0 openssl-perl-3.5.5-3.el10_2.x86_64.rpm SHA-256: 1658358fd2dad49db600e2a967d3a8a62aee57552fad5120d73b8f543e15e62d Red Hat Enterprise Linux for IBM z Systems 10 SRPM openssl-3.5.5-3.el10_2.src.rpm SHA-256: 8ca296187fc0d33e4737b124c78eac8ea6983aea61fcdf55e33490d1a8a6d128 s390x openssl-3.5.5-3.el10_2.s390x.rpm SHA-256: 338a4a44195797c666950a695b636a49a50d8aab31c3aa390365025f8ae211c4 openssl-debuginfo-3.5.5-3.el10_2.s390x.rpm SHA-256: 654610bde440b5298bda9e6e867dae26b8dfe4ec1750b77473b8af13f14f315b openssl-debuginfo-3.5.5-3.el10_2.s390x.rpm SHA-256: 654610bde440b5298bda9e6e867dae26b8dfe4ec1750b77473b8af13f14f315b openssl-debugsource-3.5.5-3.el10_2.s390x.rpm SHA-256: 75612e9084b77f869e2cfd2eb82e1a41b85fb8c74b984922c8594928fc592b93 openssl-debugsource-3.5.5-3.el10_2.s390x.rpm SHA-256: 75612e9084b77f869e2cfd2eb82e1a41b85fb8c74b984922c8594928fc592b93 openssl-devel-3.5.5-3.el10_2.s390x.rpm SHA-256: 8bdd2bb57d3b8cb441407db3d29a59298aa28f691c7059e0a4868e5f4f84cbf6 openssl-libs-3.5.5-3.el10_2.s390x.rpm SHA-256: faaf7132848df756ff423de96702c4928f87af59a7ebe2d7c7f746ce47f014d5 openssl-libs-debuginfo-3.5.5-3.el10_2.s390x.rpm SHA-256: 0d033b2394b79b40c496daf5956695304c7826a7659f939b43e339b6cbb9ef92 openssl-libs-debuginfo-3.5.5-3.el10_2.s390x.rpm SHA-256: 0d033b2394b79b40c496daf5956695304c7826a7659f939b43e339b6cbb9ef92 openssl-perl-3.5.5-3.el10_2.s390x.rpm SHA-256: b01f9a2ec7b771e476e7d4c7af7d14c2609f954de2e582c2f2cdf0e82d289cc3 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 SRPM openssl-3.5.5-3.el10_2.src.rpm SHA-256: 8ca296187fc0d33e4737b124c78eac8ea6983aea61fcdf55e33490d1a8a6d128 s390x openssl-3.5.5-3.el10_2.s390x.rpm SHA-256: 338a4a44195797c666950a695b636a49a50d8aab31c3aa390365025f8ae211c4 openssl-debuginfo-3.5.5-3.el10_2.s390x.rpm SHA-256: 654610bde440b5298bda9e6e867dae26b8dfe4ec1750b77473b8af13f14f315b openssl-debuginfo-3.5.5-3.el10_2.s390x.rpm SHA-256: 654610bde440b5298bda9e6e867dae26b8dfe4ec1750b77473b8af13f14f315b openssl-debugsource-3.5.5-3.el10_2.s390x.rpm SHA-256: 75612e9084b77f869e2cfd2eb82e1a41b85fb8c74b984922c8594928fc592b93 openssl-debugsource-3.5.5-3.el10_2.s390x.rpm SHA-256: 75612e9084b77f869e2cfd2eb82e1a41b85fb8c74b984922c8594928fc592b93 openssl-devel-3.5.5-3.el10_2.s390x.rpm SHA-256: 8bdd2bb57d3b8cb441407db3d29a59298aa28f691c7059e0a4868e5f4f84cbf6 openssl-libs-3.5.5-3.el10_2.s390x.rpm SHA-256: faaf7132848df756ff423de96702c4928f87af59a7ebe2d7c7f746ce47f014d5 openssl-libs-debuginfo-3.5.5-3.el10_2.s390x.rpm SHA-256: 0d033b2394b79b40c496daf5956695304c7826a7659f939b43e339b6cbb9ef92 openssl-libs-debuginfo-3.5.5-3.el10_2.s390x.rpm SHA-256: 0d033b2394b79b40c496daf5956695304c7826a7659f939b43e339b6cbb9ef92 openssl-perl-3.5.5-3.el10_2.s390x.rpm SHA-256: b01f9a2ec7b771e476e7d4c7af7d14c2609f954de2e582c2f2cdf0e82d289cc3 Red Hat Enterprise Linux for Power, little endian 10 SRPM openssl-3.5.5-3.el10_2.src.rpm SHA-256: 8ca296187fc0d33e4737b124c78eac8ea6983aea61fcdf55e33490d1a8a6d128 ppc64le openssl-3.5.5-3.el10_2.ppc64le.rpm SHA-256: 0be23b1280adf925c9797a1d7d8ebca2e660e567d07ab42417401c0557cc6416 openssl-debuginfo-3.5.5-3.el10_2.ppc64le.rpm SHA-256: 0bdda7e37b195e3fe3aac9b7b147acdc40ed2a8c711ad08382a365cb19547325 openssl-debuginfo-3.5.5-3.el10_2.ppc64le.rpm SHA-256: 0bdda7e37b195e3fe3aac9b7b147acdc40ed2a8c711ad08382a365cb19547325 openssl-debugsource-3.5.5-3.el10_2.ppc64le.rpm SHA-256: 90ebc4301b610ac8e1e25c5439494cc1b8d45bc820c31ee1a2acb911f8aab761 openssl-debugsource-3.5.5-3.el10_2.ppc64le.rpm SHA-256: 90ebc4301b610ac8e1e25c5439494cc1b8d45bc820c31ee1a2acb911f8aab761 openssl-devel-3.5.5-3.el10_2.ppc64le.rpm SHA-256: d6f9bf5e0d2cfc7c58dc7e83527e7078199f9353218ae11619717a4e9f58678d openssl-libs-3.5.5-3.el10_2.ppc64le.rpm SHA-256: ba584502f172f97199ea2dac103e5e442456fe9d9ca2d22444560d17beaeeb09 openssl-libs-debuginfo-3.5.5-3.el10_2.ppc64le.rpm SHA-256: d3dbbde290706bebb578672d7699a6213c7b905ef27e0847351db726ac426488 openssl-libs-debuginfo-3.5.5-3.el10_2.ppc64le.rpm SHA-256: d3dbbde290706bebb578672d7699a6213c7b905ef27e0847351db726ac426488 openssl-perl-3.5.5-3.el10_2.ppc64le.rpm SHA-256: f1a4d1595f27d4bf676e4980ff401588f25dee4d7bc0156d2a3d5abdfaf801ca Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 SRPM openssl-3.5.5-3.el10_2.src.rpm SHA-256: 8ca296187fc0d33e4737b124c78eac8ea6983aea61fcdf55e33490d1a8a6d128 ppc64le openssl-3.5.5-3.el10_2.ppc64le.rpm SHA-256: 0be23b1280adf925c9797a1d7d8ebca2e660e567d07ab42417401c0557cc6416 openssl-debuginfo-3.5.5-3.el10_2.ppc64le.rpm SHA-256: 0bdda7e37b195e3fe3aac9b7b147acdc40ed2a8c711ad08382a365cb19547325 openssl-debugi