Red Hat Product Errata RHSA-2026:18421 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:18421 - Security Advisory Overview Updated Packages Synopsis Moderate: luksmeta security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for luksmeta is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description LUKSMeta is a simple library for storing metadata in the LUKSv1 header. The luksmeta package is a dependency of the clevis and tang packages, together providing the Network Bound Disk Encryption (NBDE) in Red Hat Enterprise Linux. Security Fix(es): luksmeta: Data corruption when handling LUKS1 partitions with luksmeta (CVE-2025-11568) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 10 Release Notes linked from the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for x86_64 10 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le Red Hat CodeReady Linux Builder for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x Fixes BZ - 2404244 - CVE-2025-11568 luksmeta: Data corruption when handling LUKS1 partitions with luksmeta CVEs CVE-2025-11568 References https://access.redhat.com/security/updates/classification/#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/10/html/10.2_release_notes/index Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM luksmeta-10-1.el10.src.rpm SHA-256: 42e5ffe7da27857c8a08aab5e2bdc024cef31b6aebd1aa9ef9f7bed68c6e8237 x86_64 libluksmeta-10-1.el10.x86_64.rpm SHA-256: d24d5f1a71b46c2ba92761e2a153657a8856502ce760d0f36ba67e3aa8df305e libluksmeta-debuginfo-10-1.el10.x86_64.rpm SHA-256: 623c7bc52e0c6761dd127ae11d760417f84c714b70bc210e57248cb996e5c25b luksmeta-10-1.el10.x86_64.rpm SHA-256: 391a8d8b7342bc16089de0f1cb805c583f91cc40fc8b5b50fc04e215370321fc luksmeta-debuginfo-10-1.el10.x86_64.rpm SHA-256: d028cda2243e3bf518a177e6c0108885a160e7d2ff87cb58de040394ff6b6cc4 luksmeta-debugsource-10-1.el10.x86_64.rpm SHA-256: fd0e30d84686c028040c294db529b0ca133b3b06f7379795d5f022b3748055bc Red Hat Enterprise Linux for IBM z Systems 10 SRPM luksmeta-10-1.el10.src.rpm SHA-256: 42e5ffe7da27857c8a08aab5e2bdc024cef31b6aebd1aa9ef9f7bed68c6e8237 s390x libluksmeta-10-1.el10.s390x.rpm SHA-256: e6fa613b634542421e642f6836c9c6077dd45083e785dffad77052ffda16b30d libluksmeta-debuginfo-10-1.el10.s390x.rpm SHA-256: 3f70b280218a83c70fd2304d37ea9041ec57178b5258437a0ce63e0ae2e5d072 luksmeta-10-1.el10.s390x.rpm SHA-256: b308081cd73446e3147adb08ec3983ede2b8d8a5b9bb6f662abcd5afae5f2537 luksmeta-debuginfo-10-1.el10.s390x.rpm SHA-256: b1f06baaef3c3f53c8f532d102d8b83954b4392779e33adf6c1b407e4497e99a luksmeta-debugsource-10-1.el10.s390x.rpm SHA-256: cccdc193c682e675c9b333b5049d837221ab85f3dc95f60ac04a20e2aacd6261 Red Hat Enterprise Linux for Power, little endian 10 SRPM luksmeta-10-1.el10.src.rpm SHA-256: 42e5ffe7da27857c8a08aab5e2bdc024cef31b6aebd1aa9ef9f7bed68c6e8237 ppc64le libluksmeta-10-1.el10.ppc64le.rpm SHA-256: 551cc1c81434da0e051c8713aa2719aeaad1e452a0b182ff72eaacf3072d4e1f libluksmeta-debuginfo-10-1.el10.ppc64le.rpm SHA-256: d86c0a5bea8f5f3acc63894c33826e4e3dbf409f6bdc8aa71bd25397ed6da419 luksmeta-10-1.el10.ppc64le.rpm SHA-256: 89b60807900a6a7265ef6428864b264786cbbb3441d957de7826bf24dd504b29 luksmeta-debuginfo-10-1.el10.ppc64le.rpm SHA-256: 18c3f4ad4ff2df8dd5e206c047837a9985c3a05cf611358914bab64ba86a9717 luksmeta-debugsource-10-1.el10.ppc64le.rpm SHA-256: d756931afa4190f8b4ef1eb48968a5fc016f428dfb8bc5fb1cad0ae154f63baa Red Hat Enterprise Linux for ARM 64 10 SRPM luksmeta-10-1.el10.src.rpm SHA-256: 42e5ffe7da27857c8a08aab5e2bdc024cef31b6aebd1aa9ef9f7bed68c6e8237 aarch64 libluksmeta-10-1.el10.aarch64.rpm SHA-256: c5f805a5f64c93d228d156973f9bb5ad3e5e1148635c92bd9f5d0d051f49a943 libluksmeta-debuginfo-10-1.el10.aarch64.rpm SHA-256: 47d5ada63e2944409c925137d65b240d17043bc1c0fc83396dfd153b26dbe1f1 luksmeta-10-1.el10.aarch64.rpm SHA-256: be3a0c4d0428c17eccd7e84c125afd83ccf1eb69d6bca7afb857809f9d9fa0d1 luksmeta-debuginfo-10-1.el10.aarch64.rpm SHA-256: 654dc74166e2c00140a87da3b1054bb9490d70d0b7ffa794c0c80a5032990af9 luksmeta-debugsource-10-1.el10.aarch64.rpm SHA-256: c8f344d1e9ac7ad6caecb876b35f61d001191903218c62df72fb1d73ba78a836 Red Hat CodeReady Linux Builder for x86_64 10 SRPM x86_64 libluksmeta-debuginfo-10-1.el10.x86_64.rpm SHA-256: 623c7bc52e0c6761dd127ae11d760417f84c714b70bc210e57248cb996e5c25b libluksmeta-devel-10-1.el10.x86_64.rpm SHA-256: dc648d4d507770adb306f23a7f1ab0e081573dc3c6e05bcc28ba113b98258982 luksmeta-debuginfo-10-1.el10.x86_64.rpm SHA-256: d028cda2243e3bf518a177e6c0108885a160e7d2ff87cb58de040394ff6b6cc4 luksmeta-debugsource-10-1.el10.x86_64.rpm SHA-256: fd0e30d84686c028040c294db529b0ca133b3b06f7379795d5f022b3748055bc Red Hat CodeReady Linux Builder for Power, little endian 10 SRPM ppc64le libluksmeta-debuginfo-10-1.el10.ppc64le.rpm SHA-256: d86c0a5bea8f5f3acc63894c33826e4e3dbf409f6bdc8aa71bd25397ed6da419 libluksmeta-devel-10-1.el10.ppc64le.rpm SHA-256: 7d347d41d9cfac8705611b92d2fb9572507ae43d8635a003817504b3a6f2b139 luksmeta-debuginfo-10-1.el10.ppc64le.rpm SHA-256: 18c3f4ad4ff2df8dd5e206c047837a9985c3a05cf611358914bab64ba86a9717 luksmeta-debugsource-10-1.el10.ppc64le.rpm SHA-256: d756931afa4190f8b4ef1eb48968a5fc016f428dfb8bc5fb1cad0ae154f63baa Red Hat CodeReady Linux Builder for ARM 64 10 SRPM aarch64 libluksmeta-debuginfo-10-1.el10.aarch64.rpm SHA-256: 47d5ada63e2944409c925137d65b240d17043bc1c0fc83396dfd153b26dbe1f1 libluksmeta-devel-10-1.el10.aarch64.rpm SHA-256: 2e693cc3ebbb875fdf09d129910fabf02a3d072177d863f68c59ab4d7c79b67a luksmeta-debuginfo-10-1.el10.aarch64.rpm SHA-256: 654dc74166e2c00140a87da3b1054bb9490d70d0b7ffa794c0c80a5032990af9 luksmeta-debugsource-10-1.el10.aarch64.rpm SHA-256: c8f344d1e9ac7ad6caecb876b35f61d001191903218c62df72fb1d73ba78a836 Red Hat CodeReady Linux Builder for IBM z Systems 10 SRPM s390x libluksmeta-debuginfo-10-1.el10.s390x.rpm SHA-256: 3f70b280218a83c70fd2304d37ea9041ec57178b5258437a0ce63e0ae2e5d072 libluksmeta-devel-10-1.el10.s390x.rpm SHA-256: 8bc45f7f0694cf3407ee8dac2d1f98a55a3e3356faf889d2d46ed4c5efb957d3 luksmeta-debuginfo-10-1.el10.s390x.rpm SHA-256: b1f06baaef3c3f53c8f532d102d8b83954b4392779e33adf6c1b407e4497e99a luksmeta-debugsource-10-1.el10.s390x.rpm SHA-256: cccdc193c682e675c9b333b5049d837221ab85f3dc95f60ac04a20e2aacd6261 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .