Denial of Service via type confusion in PKCS#7 signature verification
Summary
Denial of Service via type confusion in PKCS#7 signature verification. Red Hat rates this low (CVSS 5.9). Weakness: CWE-1287. Affected package(s): openssl, discovery/discovery-ui-rhel9:1769111774, costmanagement/costmanagement-metrics-rhel9-operator:1770836349, insights-proxy/insights-proxy-container-rhel9:1770740405, rhui5/rhua-rhel9:1773670137, rhui5/cds-rhel9:1773670073. Resolved in Red Hat advisory RHSA-2026:3228 — update the affected packages (`sudo dnf update`).
- openssl-1:3.5.1-7.el10_1
- discovery/discovery-ui-rhel9:1769111774
- costmanagement/costmanagement-metrics-rhel9-operator:1770836349
- insights-proxy/insights-proxy-container-rhel9:1770740405
- openssl-1:3.5.1-7.el9_7
- rhui5/rhua-rhel9:1773670137
- rhui5/cds-rhel9:1773670073
- rhui5/haproxy-rhel9:1773672059
- rhui5/installer-rhel9:1770646925
- discovery/discovery-server-rhel9:1769104765
- openssl-main-3.5.6-0.1.hum1
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
- RHSA-2026:3228
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
Mitigation checklist
- Update the affected package(s) to the fixed version shipped in RHSA-2026:3228 (`sudo dnf update` / `yum update`).
Official advisory · high-confidence parse· fetched 4 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.