Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Fedora 44 Openbao Significant CVE Resolutions 2026-bf7889aec6

fedora
Calendar Grey May 29, 2026
Dist Fedora Esm H88
Upgrade for openbao in Fedora 44 addresses critical CVEs for better secret management and secure access.
Update to upstream-2.5.4, including fixes for CVE-2026-46358, CVE-2026-46405, and CVE-2026-45808

Summary

Openbao secures, stores, and tightly controls access to tokens, passwords,

certificates, API keys, and other secrets in modern computing. Openbao handles

leasing, key revocation, key rolling, and auditing. Through a unified API, users

can access an encrypted Key/Value store and network encryption-as-a-service, or

generate AWS IAM/STS credentials, SQL/NoSQL databases, X.509 certificates, SSH

credentials, and more.

Update Information:

Update to upstream-2.5.4, including fixes for CVE-2026-46358, CVE-2026-46405, and CVE-2026-45808

Change Log

* Wed May 20 2026 Dave Dykstra <2129743+DrDaveD@users.noreply.github.com> - 2.5.4-1 - update to upstream 2.5.4

References


[ 1 ] Bug #2480200 - openbao-2.5.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=2480200

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-bf7889aec6' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: openbao
Product: Fedora 44
Version: 2.5.4
Release: 1.fc44
Summary: A tool for securely accessing secrets

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here