CVE-2025-69421

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-69421
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-69421.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-69421
Downstream
Related
Published
2026-01-27T16:16:34.437Z
Modified
2026-01-29T06:52:02.706310Z
Summary
[none]
Details

Issue summary: Processing a malformed PKCS#12 file can trigger a NULL pointer dereference in the PKCS12itemdecryptd2iex() function.

Impact summary: A NULL pointer dereference can trigger a crash which leads to Denial of Service for an application processing PKCS#12 files.

The PKCS12itemdecryptd2iex() function does not check whether the oct parameter is NULL before dereferencing it. When called from PKCS12unpackp7encdata() with a malformed PKCS#12 file, this parameter can be NULL, causing a crash. The vulnerability is limited to Denial of Service and cannot be escalated to achieve code execution or memory disclosure.

Exploiting this issue requires an attacker to provide a malformed PKCS#12 file to an application that processes it. For that reason the issue was assessed as Low severity according to our Security Policy.

The FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this issue, as the PKCS#12 implementation is outside the OpenSSL FIPS module boundary.

OpenSSL 3.6, 3.5, 3.4, 3.3, 3.0, 1.1.1 and 1.0.2 are vulnerable to this issue.

References

Affected packages

Git / github.com/openssl/openssl

Affected ranges

Type
GIT
Repo
https://github.com/openssl/openssl
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
3524a29271f8191b8fd8a5257eb05173982a097b
Fixed
36ecb4960872a4ce04bf6f1e1f4e78d75ec0c0c7
Fixed
4bbc8d41a72c842ce4077a8a3eccd1109aaf74bd
Fixed
643986985cd1c21221f941129d76fe0c2785aeb3
Fixed
a2dbc539f0f9cc63832709fa5aa33ad9495eb19c

Affected versions

3.*

3.0-POST-CLANG-FORMAT-WEBKIT
3.0-PRE-CLANG-FORMAT-WEBKIT
3.3-POST-CLANG-FORMAT-WEBKIT
3.3-PRE-CLANG-FORMAT-WEBKIT
3.4-POST-CLANG-FORMAT-WEBKIT
3.4-PRE-CLANG-FORMAT-WEBKIT
3.5-POST-CLANG-FORMAT-WEBKIT
3.5-PRE-CLANG-FORMAT-WEBKIT
3.6-POST-CLANG-FORMAT-WEBKIT
3.6-PRE-CLANG-FORMAT-WEBKIT

Other

BEFORE_engine
OpenSSL_0_9_1c
OpenSSL_0_9_2b
OpenSSL_0_9_3
OpenSSL_0_9_3a
OpenSSL_0_9_3beta2
OpenSSL_0_9_4
OpenSSL_0_9_5a
OpenSSL_0_9_5a-beta1
OpenSSL_0_9_5a-beta2
OpenSSL_0_9_5beta1
OpenSSL_0_9_5beta2
OpenSSL_0_9_6-beta3
OpenSSL_1_1_0-pre1
OpenSSL_1_1_0-pre2
OpenSSL_1_1_0-pre3
OpenSSL_1_1_0-pre4
OpenSSL_1_1_0-pre5
OpenSSL_1_1_0-pre6
OpenSSL_1_1_1
OpenSSL_1_1_1-pre1
OpenSSL_1_1_1-pre2
OpenSSL_1_1_1-pre3
OpenSSL_1_1_1-pre4
OpenSSL_1_1_1-pre5
OpenSSL_1_1_1-pre6
OpenSSL_1_1_1-pre7
OpenSSL_1_1_1-pre8
OpenSSL_1_1_1-pre9
master-post-auto-reformat
master-post-reformat
master-pre-auto-reformat
master-pre-reformat

openssl-3.*

openssl-3.0.0
openssl-3.0.0-alpha1
openssl-3.0.0-alpha10
openssl-3.0.0-alpha11
openssl-3.0.0-alpha12
openssl-3.0.0-alpha13
openssl-3.0.0-alpha14
openssl-3.0.0-alpha15
openssl-3.0.0-alpha16
openssl-3.0.0-alpha17
openssl-3.0.0-alpha2
openssl-3.0.0-alpha3
openssl-3.0.0-alpha4
openssl-3.0.0-alpha5
openssl-3.0.0-alpha6
openssl-3.0.0-alpha7
openssl-3.0.0-alpha8
openssl-3.0.0-alpha9
openssl-3.0.0-beta1
openssl-3.0.0-beta2
openssl-3.0.1
openssl-3.0.10
openssl-3.0.11
openssl-3.0.12
openssl-3.0.13
openssl-3.0.14
openssl-3.0.15
openssl-3.0.16
openssl-3.0.17
openssl-3.0.18
openssl-3.0.2
openssl-3.0.3
openssl-3.0.4
openssl-3.0.5
openssl-3.0.6
openssl-3.0.7
openssl-3.0.8
openssl-3.0.9
openssl-3.2.0-alpha1
openssl-3.2.0-alpha2
openssl-3.3.0
openssl-3.3.0-alpha1
openssl-3.3.0-beta1
openssl-3.3.1
openssl-3.3.2
openssl-3.3.3
openssl-3.3.4
openssl-3.3.5
openssl-3.4.0
openssl-3.4.0-alpha1
openssl-3.4.0-beta1
openssl-3.4.1
openssl-3.4.2
openssl-3.4.3
openssl-3.5.0
openssl-3.5.0-alpha1
openssl-3.5.0-beta1
openssl-3.5.1
openssl-3.5.2
openssl-3.5.3
openssl-3.5.4
openssl-3.6.0
openssl-3.6.0-alpha1
openssl-3.6.0-beta1

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-69421.json"

vanir_signatures

[
    {
        "source": "https://github.com/openssl/openssl/commit/643986985cd1c21221f941129d76fe0c2785aeb3",
        "digest": {
            "line_hashes": [
                "130217298623169198528634587595888215940",
                "315156559523695141524996553787601930602",
                "277576442105540766829804736029134168677"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Line",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c"
        },
        "id": "CVE-2025-69421-0b61c516"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/643986985cd1c21221f941129d76fe0c2785aeb3",
        "digest": {
            "length": 755.0,
            "function_hash": "282363665924433828558649956598481756185"
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Function",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c",
            "function": "PKCS12_item_decrypt_d2i_ex"
        },
        "id": "CVE-2025-69421-2443ac5e"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/4bbc8d41a72c842ce4077a8a3eccd1109aaf74bd",
        "digest": {
            "line_hashes": [
                "130217298623169198528634587595888215940",
                "315156559523695141524996553787601930602",
                "277576442105540766829804736029134168677"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Line",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c"
        },
        "id": "CVE-2025-69421-5f3bff8c"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/4bbc8d41a72c842ce4077a8a3eccd1109aaf74bd",
        "digest": {
            "length": 755.0,
            "function_hash": "282363665924433828558649956598481756185"
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Function",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c",
            "function": "PKCS12_item_decrypt_d2i_ex"
        },
        "id": "CVE-2025-69421-8ce59eb8"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/36ecb4960872a4ce04bf6f1e1f4e78d75ec0c0c7",
        "digest": {
            "length": 755.0,
            "function_hash": "282363665924433828558649956598481756185"
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Function",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c",
            "function": "PKCS12_item_decrypt_d2i_ex"
        },
        "id": "CVE-2025-69421-a66c706f"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/36ecb4960872a4ce04bf6f1e1f4e78d75ec0c0c7",
        "digest": {
            "line_hashes": [
                "130217298623169198528634587595888215940",
                "315156559523695141524996553787601930602",
                "277576442105540766829804736029134168677"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Line",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c"
        },
        "id": "CVE-2025-69421-b0975534"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/a2dbc539f0f9cc63832709fa5aa33ad9495eb19c",
        "digest": {
            "line_hashes": [
                "130217298623169198528634587595888215940",
                "315156559523695141524996553787601930602",
                "277576442105540766829804736029134168677"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Line",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c"
        },
        "id": "CVE-2025-69421-c36dfde8"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/3524a29271f8191b8fd8a5257eb05173982a097b",
        "digest": {
            "length": 755.0,
            "function_hash": "282363665924433828558649956598481756185"
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Function",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c",
            "function": "PKCS12_item_decrypt_d2i_ex"
        },
        "id": "CVE-2025-69421-d64ceeb0"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/3524a29271f8191b8fd8a5257eb05173982a097b",
        "digest": {
            "line_hashes": [
                "130217298623169198528634587595888215940",
                "315156559523695141524996553787601930602",
                "277576442105540766829804736029134168677"
            ],
            "threshold": 0.9
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Line",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c"
        },
        "id": "CVE-2025-69421-f9b4c670"
    },
    {
        "source": "https://github.com/openssl/openssl/commit/a2dbc539f0f9cc63832709fa5aa33ad9495eb19c",
        "digest": {
            "length": 755.0,
            "function_hash": "282363665924433828558649956598481756185"
        },
        "signature_version": "v1",
        "deprecated": false,
        "signature_type": "Function",
        "target": {
            "file": "crypto/pkcs12/p12_decr.c",
            "function": "PKCS12_item_decrypt_d2i_ex"
        },
        "id": "CVE-2025-69421-ffc081d4"
    }
]