DTLS cookie callback buffer overflow
Summary
DTLS cookie callback buffer overflow. Red Hat rates this important (CVSS 8.1). Weakness: CWE-120. Affected package(s): pyopenssl-main, ansible-automation-platform, python3.12-pyOpenSSL, quay/quay-rhel8:1776752646, automation-controller, python-pyOpenSSL. Resolved in Red Hat advisory RHSA-2026:11916 — update the affected packages (`sudo dnf update`).
- pyopenssl-main-26.0.0-1.1.hum1
- ansible-automation-platform-25/ee-supported-rhel8:1777398315
- ansible-automation-platform-26/lightspeed-rhel9:1777387242
- python3.12-pyOpenSSL-0:26.0.0-2.el9pc
- quay/quay-rhel8:1776752646
- ansible-automation-platform-26/hub-rhel9:1777299023
- automation-controller-0:4.7.11-2.el9ap
- ansible-automation-platform-26/ansible-dev-tools-rhel9:1777390240
- python-pyOpenSSL-0:24.1.0-2.el8ui
- quay/quay-rhel8:1780891395
- ansible-automation-platform-26/eda-controller-rhel9:1777296732
- quay/quay-rhel9:1779922205
Official advisory · high-confidence parse· fetched 6 hours ago·verify at source
- RHSA-2026:11916
Official advisory · high-confidence parse· fetched 6 hours ago·verify at source
Mitigation checklist
- Update the affected package(s) to the fixed version shipped in RHSA-2026:11916 (`sudo dnf update` / `yum update`).
Official advisory · high-confidence parse· fetched 6 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.