{"id":"RHSA-2026:5603","summary":"Red Hat Security Advisory: opencryptoki security update","modified":"2026-03-31T10:11:49Z","published":"2026-03-25T10:15:05Z","upstream":["CVE-2026-23893"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:5603"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2431909"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_5603.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-23893"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-23893"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-23893"},{"type":"ARTICLE","url":"https://github.com/opencryptoki/opencryptoki/commit/5e6e4b42f2b1fcc1e4ef1b920e463bfa55da8b45"},{"type":"ARTICLE","url":"https://github.com/opencryptoki/opencryptoki/security/advisories/GHSA-j6c7-mvpx-jx5q"}],"affected":[{"package":{"name":"opencryptoki","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-ccatok","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-ccatok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-ccatok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-ccatok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-debugsource","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-devel","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-ep11tok","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-ep11tok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-ep11tok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-ep11tok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-icatok","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-icatok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-icatok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-icatok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-icsftok","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-icsftok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-icsftok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-icsftok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-libs","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-swtok","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-swtok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-swtok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::baseos","purl":"pkg:rpm/redhat/opencryptoki-swtok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-ccatok","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-ccatok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-ccatok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-ccatok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-debugsource","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-devel","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-ep11tok","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-ep11tok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-ep11tok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-ep11tok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-icatok","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-icatok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-icatok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-icatok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-icsftok","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-icsftok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-icsftok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-icsftok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-libs","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-libs-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-libs-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-swtok","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-swtok"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}},{"package":{"name":"opencryptoki-swtok-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::crb","purl":"pkg:rpm/redhat/opencryptoki-swtok-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.25.0-4.el9_7.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:5603.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L"}]}