Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Fedora 42 p11-kit Important NULL Dereference Threat CVE-2026-2100

fedora
Calendar Grey February 16, 2026
Dist Fedora Esm H88
Critical Fedora update for p11-kit library addresses important NULL dereference issue that affects security. Update now!
Notable changes from the rebase: * pkcs11: Update PKCS11 headers to version 3.2 * rpc: fix NULL dereference via C_DeriveKey with specific NULL parameters (CVE-2026-2100) * trust: L...

Summary

p11-kit provides a way to load and enumerate PKCS#11 modules, as well

as a standard configuration setup for installing PKCS#11 modules in

such a way that they're discoverable.

Update Information:

Notable changes from the rebase: * pkcs11: Update PKCS11 headers to version 3.2 * rpc: fix NULL dereference via C_DeriveKey with specific NULL parameters (CVE-2026-2100) * trust: Lookup DNs in reverse order (RFC4514 section 2.1)

Topics%20covered

Topics Covered

security advisory fedora important p11-kit null dereference c_derivekey

Change Log

* Tue Feb 10 2026 Packit - 0.26.2-1 - Update to 0.26.2 upstream release - Resolves: rhbz#2394340 * Tue Feb 10 2026 Zoltan Fridrich - 0.25.8-3 - Migrate STI tests to TMT * Tue Feb 10 2026 Zoltan Fridrich - 0.25.8-2 - Fix test trust-anchor-complains-about-invalid-attribute-and

References


[ 1 ] Bug #2383011 - p11-kit: STI tests will no longer be run in F43 https://bugzilla.redhat.com/show_bug.cgi?id=2383011 [ 2 ] Bug #2394340 - p11-kit-0.26.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2394340 [ 3 ] Bug #2437309 - CVE-2026-2100 p11-kit: p11-kit: NULL dereference via C_DeriveKey with specific NULL parameters [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2437309 [ 4 ] Bug #2437310 - CVE-2026-2100 p11-kit: p11-kit: NULL dereference via C_DeriveKey with specific NULL parameters [fedora-43] https://bugzilla.redhat.com/show_bug.cgi?id=2437310

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-7982f70f74' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: p11-kit
Product: Fedora 42
Version: 0.26.2
Release: 1.fc42
URL: https://p11-glue.github.io/p11-glue/p11-kit.html
Summary: Library for loading and sharing PKCS#11 modules

Topics%20covered

Topics Covered

security advisory fedora important p11-kit null dereference c_derivekey

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here