Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 523
Alerts This Week
Warning Icon 1 523

Fedora 44 Keylime Critical Security Bypass CVE-2026-6420

fedora
Calendar Grey June 6, 2026
Scroller Fedora
Keylime v7.14.2 resolves CVE-2026-6420 security bypass issue on Fedora 44. Update now for enhanced safety.
Updating for Keylime release v7.14.2: This includes the fix for CVE-2026-6420

Summary

Keylime is a TPM based highly scalable remote boot attestation

and runtime integrity measurement solution.

Update Information:

Updating for Keylime release v7.14.2: This includes the fix for CVE-2026-6420. Update keylime-selinux policy to the latest version 44.1.0

Change Log

* Wed May 27 2026 Anderson Toshiyuki Sasaki - 7.14.2-1 - Updating for Keylime release v7.14.2 - This includes the fix for CVE-2026-6420. - Update keylime-selinux policy to the latest version 44.1.0

References


[ 1 ] Bug #2467277 - keylime-7.14.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2467277 [ 2 ] Bug #2467584 - CVE-2026-6420 keylime: Keylime: Security bypass due to hardcoded TPM quote nonce [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2467584

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-9064cdf8ef' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: keylime
Product: Fedora 44
Version: 7.14.2
Release: 1.fc44
Summary: Open source TPM software for Bootstrapping and Maintaining Trust

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.