openSUSE-SU-2026:20673-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2026:20673-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/openSUSE-SU-2026:20673-1
- Upstream
- Related
- Withdrawn
- 2026-05-08T14:00:28.824339Z
- Published
- 2026-05-05T00:19:27Z
- Modified
- 2026-05-08T14:00:28.824339Z
- Summary
- Security update for openssl-3-x86_64-v3-livepatches
- Details
-
This update for openssl-3-x86_64-v3-livepatches fixes the following issues:
Changes in openssl-3-x86_64-v3-livepatches:
- Add package for libopenssl3-x86-64-v3-3.5.0 (bsc#1259271).
Fixed:
- CVE-2025-11187: Fixed Improper validation of PBMAC1 parameters in PKCS#12 MAC verification (bsc#1256878).
- CVE-2025-15467: Fixed Stack buffer overflow in CMS AuthEnvelopedData parsing (bsc#1256876).
- CVE-2025-15468: Fixed NULL dereference in SSLCIPHERfind() function on unknown cipher ID (bsc#1256880).
- CVE-2025-9230: Fixed Out-of-bounds read & write in RFC 3211 KEK Unwrap (CVE-2025-9230) (bsc#1250410).
- References
-
- https://bugzilla.suse.com/1250410
- https://bugzilla.suse.com/1256876
- https://bugzilla.suse.com/1256878
- https://bugzilla.suse.com/1256880
- https://bugzilla.suse.com/1259271
- https://www.suse.com/security/cve/CVE-2025-11187
- https://www.suse.com/security/cve/CVE-2025-15467
- https://www.suse.com/security/cve/CVE-2025-15468
- https://www.suse.com/security/cve/CVE-2025-9230