RLSA-2026:25239

Source
https://errata.rockylinux.org/RLSA-2026:25239
Import Source
https://storage.googleapis.com/resf-osv-data/RLSA-2026:25239.json
JSON Data
https://api.osv.dev/v1/vulns/RLSA-2026:25239
Upstream
  • CVE-2026-34180
  • CVE-2026-34181
  • CVE-2026-34182
  • CVE-2026-34183
  • CVE-2026-42764
  • CVE-2026-42766
  • CVE-2026-42767
  • CVE-2026-42768
  • CVE-2026-42769
  • CVE-2026-42770
  • CVE-2026-45445
  • CVE-2026-45446
  • CVE-2026-45447
  • CVE-2026-7383
  • CVE-2026-9076
Published
2026-06-13T00:03:17.085789Z
Modified
2026-06-13T00:30:05.759399400Z
Severity
  • 9.1 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
Summary
Important: openssl security update
Details

OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.

Security Fix(es):

  • openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing (CVE-2026-7383)

  • openssl: OpenSSL: Denial of Service due to heap out-of-bounds read in CMS password-based decryption (CVE-2026-9076)

  • openssl: OpenSSL: Heap buffer over-read in ASN.1 decoding can lead to denial of service or information disclosure. (CVE-2026-34180)

  • openssl: PKCS#12 Files with PBMAC1 Are Accepted with Short HMAC Keys (CVE-2026-34181)

  • openssl: CMS AuthEnvelopedData Processing May Accept Forged Messages (CVE-2026-34182)

  • openssl: Unbounded Memory Growth in the QUIC PATH_CHALLENGE Handler (CVE-2026-34183)

  • openssl: NULL pointer dereference in QUIC server initial packet handling (CVE-2026-42764)

  • openssl: Possible NULL Dereference in Password-Based CMS Decryption (CVE-2026-42766)

  • openssl: NULL Pointer Dereference in CRMF EncryptedValue Decryption (CVE-2026-42767)

  • openssl: Multi-RecipientInfo Bleichenbacher Oracle in CMSdecrypt() and PKCS7decrypt() (CVE-2026-42768)

  • openssl: Trust-Anchor Substitution via cert/issuer Typo in CMP rootCaKeyUpdate (CVE-2026-42769)

  • openssl: FFC-DH Peer Validation Uses Attacker-Supplied q (CVE-2026-42770)

  • openssl: AES-OCB IV Ignored on EVP_Cipher() Path (CVE-2026-45445)

  • openssl: Incorrect Tag Processing for Empty Messages in AES-GCM-SIV and AES-SIV modes (CVE-2026-45446)

  • openssl: Heap Use-After-Free in OpenSSL PKCS7_verify() (CVE-2026-45447)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References
Credits
    • Rocky Enterprise Software Foundation
    • Red Hat

Affected packages

Rocky Linux:9 / openssl

Package

Name
openssl
Purl
pkg:rpm/rocky-linux/openssl?distro=rocky-linux-9&epoch=1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1:3.5.5-4.el9_8
Database specific
{
    "yum_repository": "BaseOS"
}

Database specific

source
"https://storage.googleapis.com/resf-osv-data/RLSA-2026:25239.json"