Red Hat Product Errata RHSA-2026:18824 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:18824 - Security Advisory Overview Updated Packages Synopsis Moderate: luksmeta security update Type/Severity Security Advisory: Moderate Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for luksmeta is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description LUKSMeta is a simple library for storing metadata in the LUKSv1 header. The luksmeta package is a dependency of the clevis and tang packages, together providing the Network Bound Disk Encryption (NBDE) in Red Hat Enterprise Linux. Security Fix(es): luksmeta: Data corruption when handling LUKS1 partitions with luksmeta (CVE-2025-11568) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x Fixes BZ - 2404244 - CVE-2025-11568 luksmeta: Data corruption when handling LUKS1 partitions with luksmeta CVEs CVE-2025-11568 References https://access.redhat.com/security/updates/classification/#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.8_release_notes/index Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM luksmeta-10-1.el9.src.rpm SHA-256: 3ac59276cce4f58c92afcdc53c9a5e57ef28f6417f326dc4d454615aa9b81c51 x86_64 libluksmeta-10-1.el9.i686.rpm SHA-256: 7434e69ec6df200ab7a67cdf5933858db5d38ae54de3984ac3cf636a03903c3c libluksmeta-10-1.el9.x86_64.rpm SHA-256: e7750fe39312d65ed3d122316a4d17b0a8fdc8da0c7a804b095143678f177cbc libluksmeta-debuginfo-10-1.el9.i686.rpm SHA-256: 5df6644506fa012642a1f277d62c38d264c8582e3869eeac4c8caa35fba31ad5 libluksmeta-debuginfo-10-1.el9.x86_64.rpm SHA-256: a6dda0d7214674317de6a6951194105aa7fd292dc6e56ff46ef0c9ff57a3808d luksmeta-10-1.el9.x86_64.rpm SHA-256: 4682601f414253b62cca7edc4f961125144b9a9817d194b8162638180c87bf53 luksmeta-debuginfo-10-1.el9.i686.rpm SHA-256: 25d1ae6bfbb43ef24ef0c341533c9fca6649374c1b1dc6465c843397a35b6c20 luksmeta-debuginfo-10-1.el9.x86_64.rpm SHA-256: ea9b32a2f615a0fca6e364c2af824d0773a9e75c1f1725ff3962505441bf5e8d luksmeta-debugsource-10-1.el9.i686.rpm SHA-256: 6ebb2e15968681f7d0253a81f0f647dcbae32c375907c316808325da6eb6e29f luksmeta-debugsource-10-1.el9.x86_64.rpm SHA-256: 8774428b171d4c4dbec89fa97e07a9a6b30a2df97e2176b4e94f339490ee7935 Red Hat Enterprise Linux for IBM z Systems 9 SRPM luksmeta-10-1.el9.src.rpm SHA-256: 3ac59276cce4f58c92afcdc53c9a5e57ef28f6417f326dc4d454615aa9b81c51 s390x libluksmeta-10-1.el9.s390x.rpm SHA-256: 4b2ec081cdd9c7f94b171f9d7fb00bf9a111082a3e024a696fe2cd93b79a4ce9 libluksmeta-debuginfo-10-1.el9.s390x.rpm SHA-256: 03892e86396e391568ce6aabda5f914d1825423b084f3e6051a70e2493af71a4 luksmeta-10-1.el9.s390x.rpm SHA-256: f479bbd709dbf24dd3f2594eceaa50ec3ae5857933d8423642df403f2b1786e2 luksmeta-debuginfo-10-1.el9.s390x.rpm SHA-256: 3f782092fa0119b9271acee09696eb64941f877026f432112665bba53dfdbfe2 luksmeta-debugsource-10-1.el9.s390x.rpm SHA-256: 63d7b2bc90740bc1f49b6758689704cb19953cd0404c70eef475e301ee239416 Red Hat Enterprise Linux for Power, little endian 9 SRPM luksmeta-10-1.el9.src.rpm SHA-256: 3ac59276cce4f58c92afcdc53c9a5e57ef28f6417f326dc4d454615aa9b81c51 ppc64le libluksmeta-10-1.el9.ppc64le.rpm SHA-256: 7154749698fe55fe604def05e072038a365f09d6a25f3372664b5bc0f0667d14 libluksmeta-debuginfo-10-1.el9.ppc64le.rpm SHA-256: 15914ad9317f87da94f70f647a5efb0d6265976c550b4d9b0816d5ddf21fd115 luksmeta-10-1.el9.ppc64le.rpm SHA-256: 3aba90720a89f4a414be249216c6e144f6ee476990c314f7f57af998740718cd luksmeta-debuginfo-10-1.el9.ppc64le.rpm SHA-256: c9c45d5b70ca334cc9b7756f9a4c58c230978625e7b24508a360ddfc97aa6036 luksmeta-debugsource-10-1.el9.ppc64le.rpm SHA-256: 3f9d59c7111cb995789b758514e6522ee05eae9c82955d9da207d92d93ef0eca Red Hat Enterprise Linux for ARM 64 9 SRPM luksmeta-10-1.el9.src.rpm SHA-256: 3ac59276cce4f58c92afcdc53c9a5e57ef28f6417f326dc4d454615aa9b81c51 aarch64 libluksmeta-10-1.el9.aarch64.rpm SHA-256: 783e4641241517bc97f0f8b55f6dbe255927ffedbdbdf246d9ca1dc66a2103de libluksmeta-debuginfo-10-1.el9.aarch64.rpm SHA-256: 01bce8e8dcbe9e5caf33f76a700a469ace93d3cc7246bd394f5faee2db2e4d73 luksmeta-10-1.el9.aarch64.rpm SHA-256: 7526ec021844f11903c6d84c94a5688184c097f5a9c41d7f6a1923b08a0e48ba luksmeta-debuginfo-10-1.el9.aarch64.rpm SHA-256: 1c8fad6628d823538f987d7ca002f626d5c2a261360f386f7f0fe50a78842045 luksmeta-debugsource-10-1.el9.aarch64.rpm SHA-256: 0b8075349cadf035ae37b33c740e278f3672a17973f81c2cc571dfe0436b6a15 Red Hat CodeReady Linux Builder for x86_64 9 SRPM x86_64 libluksmeta-debuginfo-10-1.el9.i686.rpm SHA-256: 5df6644506fa012642a1f277d62c38d264c8582e3869eeac4c8caa35fba31ad5 libluksmeta-debuginfo-10-1.el9.x86_64.rpm SHA-256: a6dda0d7214674317de6a6951194105aa7fd292dc6e56ff46ef0c9ff57a3808d libluksmeta-devel-10-1.el9.i686.rpm SHA-256: 3d548fabc315b78503fb2a5c15c1bff68a4c94bdff4a6f7dc9702745aa82d44a libluksmeta-devel-10-1.el9.x86_64.rpm SHA-256: 313fe1f26e3d5c79643dded664889e5518c20a44c36cbb1c377e78a975e75240 luksmeta-debuginfo-10-1.el9.i686.rpm SHA-256: 25d1ae6bfbb43ef24ef0c341533c9fca6649374c1b1dc6465c843397a35b6c20 luksmeta-debuginfo-10-1.el9.x86_64.rpm SHA-256: ea9b32a2f615a0fca6e364c2af824d0773a9e75c1f1725ff3962505441bf5e8d luksmeta-debugsource-10-1.el9.i686.rpm SHA-256: 6ebb2e15968681f7d0253a81f0f647dcbae32c375907c316808325da6eb6e29f luksmeta-debugsource-10-1.el9.x86_64.rpm SHA-256: 8774428b171d4c4dbec89fa97e07a9a6b30a2df97e2176b4e94f339490ee7935 Red Hat CodeReady Linux Builder for Power, little endian 9 SRPM ppc64le libluksmeta-debuginfo-10-1.el9.ppc64le.rpm SHA-256: 15914ad9317f87da94f70f647a5efb0d6265976c550b4d9b0816d5ddf21fd115 libluksmeta-devel-10-1.el9.ppc64le.rpm SHA-256: c6e68480a50576ca02e39e3904cdbf45b2a960fb91f875c751bc22c7b776d71e luksmeta-debuginfo-10-1.el9.ppc64le.rpm SHA-256: c9c45d5b70ca334cc9b7756f9a4c58c230978625e7b24508a360ddfc97aa6036 luksmeta-debugsource-10-1.el9.ppc64le.rpm SHA-256: 3f9d59c7111cb995789b758514e6522ee05eae9c82955d9da207d92d93ef0eca Red Hat CodeReady Linux Builder for ARM 64 9 SRPM aarch64 libluksmeta-debuginfo-10-1.el9.aarch64.rpm SHA-256: 01bce8e8dcbe9e5caf33f76a700a469ace93d3cc7246bd394f5faee2db2e4d73 libluksmeta-devel-10-1.el9.aarch64.rpm SHA-256: 8866eac9df8fe3449e239afebcd79627521d17f9b2d26a650b1a4380eb74fddb luksmeta-debuginfo-10-1.el9.aarch64.rpm SHA-256: 1c8fad6628d823538f987d7ca002f626d5c2a261360f386f7f0fe50a78842045 luksmeta-debugsource-10-1.el9.aarch64.rpm SHA-256: 0b8075349cadf035ae37b33c740e278f3672a17973f81c2cc571dfe0436b6a15 Red Hat CodeReady Linux Builder for IBM z Systems 9 SRPM s390x libluksmeta-debuginfo-10-1.el9.s390x.rpm SHA-256: 03892e86396e391568ce6aabda5f914d1825423b084f3e6051a70e2493af71a4 libluksmeta-devel-10-1.el9.s390x.rpm SHA-256: 7e7e3b190f155240a25ba1e0aabe836159b168ab8ec6949a9f7437b955089807 luksmeta-debuginfo-10-1.el9.s390x.rpm SHA-256: 3f782092fa0119b9271acee09696eb64941f877026f432112665bba53dfdbfe2 luksmeta-debugsource-10-1.el9.s390x.rpm SHA-256: 63d7b2bc90740bc1f49b6758689704cb19953cd0404c70eef475e301ee239416 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .