Alerts This Week
Warning Icon 1 1,111
Alerts This Week
Warning Icon 1 1,111

openSUSE 16.0 openCryptoki Important Security Fixes 2026-21059-1

opensuse
Calendar Grey June 30, 2026
Dist Opensuse Esm H88
This update for openSUSE addresses three vulnerabilities in openCryptoki and includes a crucial bug fix.
An update that solves 3 vulnerabilities and has one bug fix can now be installed.

Description

This update for openCryptoki fixes the following issues

Upgrade openCryptoki to version 3.27 (jsc#PED-14609):

* Add base support for PKCS#11 v3.2.

* Add support for PKCS#11 v3.2 C_VerifySignature[Init|Update|Final].

* Add support for PKCS#11 v3.2 C_EncapsulateKey/C_DecapsulateKey.

* Soft/ICA/CCA/EP11: Add support for PKCS#11 v3.2 en-/decapsulate with RSA-PKCS and RSA-OAEP mechanisms.

* Soft/ICA/CCA/EP11: Add support for PKCS#11 v3.2 en-/decapsulate with the ECDH mechanism.

* Soft/EP11: Add support for PKCS#11 v3.2 en-/decapsulate with the DH-PKCS mechanism.

* Soft: Add support for PKCS#11 v3.2 ML-DSA and ML-KEM key types and mechanisms (requires OpenSSL 3.5 or later, or

the OQS-provider must be configured).

* CCA: Add support for PKCS#11 v3.2 ML-DSA key type and mechanisms (requires CCA v8.4 or later)

* EP11: Add support for PKCS#11 v3.2 ML-DSA and ML-KEM key types and mechanisms (requires an EP11 host library v4.2 or later,

and a CEX8P crypto card with firmware v9.6 or...

Read the Full Advisory

Patch

Package List

- openSUSE Leap 16.0:

openCryptoki-3.27.0-160000.1.1

openCryptoki-64bit-3.27.0-160000.1.1

openCryptoki-devel-3.27.0-160000.1.1

References

* bsc#1268745

References:

* https://www.suse.com/security/cve/CVE-2026-22791.html

* https://www.suse.com/security/cve/CVE-2026-23893.html

* https://www.suse.com/security/cve/CVE-2026-40253.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: openSUSE-SU-2026:21059-1
Rating: important
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here