CLSA-2026-1779293372 Update of kernel

New FIPS build for lab review incorporating the els13..35 patches and CVE references...

CLSA-2026-1779289334 Update of kernel

New FIPS build to incorporate els0..els8 patches plus cve references...

CLSA-2026-1779179759 Update of openssl

Rebuilt els9 for FIPS review...

CLEANSTART-2026-TZ92532 filippo

Multiple security vulnerabilities affect the percona-xtradb-cluster-operator-fips package. filippo. See references for individual vulnerability details...

GHSA-M56Q-VW4C-C2CP vulnerabilities

Vulnerabilities for packages: langfuse-fips, langfuse...

SUSE-SU-2026:0569-1 Security update for openCryptoki

This update for openCryptoki fixes the following issues: Security fixes: - CVE-2026-23893: Fixed privilege escalation or data exposure via symlink following bsc1257116 Other fixes: - Fixed FIPS mode bsc1248002...

GHSA-J56P-CX78-V9CH vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-workhorse-ce-fips, gitlab-rails-ce, gitlab-workhorse-ce...

GHSA-FJJ2-X466-W3HX vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-workhorse-ce-fips, gitlab-rails-ce, gitlab-workhorse-ce...

GHSA-MP63-3QCJ-F8C7 vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-workhorse-ce-fips, gitlab-rails-ce, gitlab-workhorse-ce...

GHSA-P9CP-QQ4C-2WR5 vulnerabilities

Vulnerabilities for packages: gitlab-rails-ce-fips, gitlab-workhorse-ce-fips, gitlab-rails-ce, gitlab-workhorse-ce...

CLSA-2025-1763077197 Update of kernel

Rebased FIPS patches to 5.14.0-570.62.1...

OESA-2025-2486 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read an...

EUVD-2025-25504

Malicious code in bioql PyPI...

OESA-2025-2257 buildah security update

The package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a new image...

CLSA-2025-1757148344 Update of kernel

Rebased FIPS patches to 5.14.0-570.35.1...

golang security update

1.24.6-1 - Update to Go 1.24.6 fips-1 - Resolves: RHEL-106464...

Maintainers of Last Resort

Geomys is an organization of professional open source maintainers, focused on a portfolio of critical Go projects. For example, we are two thirds of the Go standard library cryptography maintainers, we provide the FIPS 140-3 validation of the upstream Go Cryptographic Module, and we fund the...

CLSA-2025-1751551010 Update of nss

Allow RSA-OAEP in FIPS mode...

OESA-2025-1124 etcd security update

%expand: Security Fixes: A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes...

Astra Linux - уязвимость в golang-github-containers-common, libpod

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...