Security Bulletin: IBM i is affected by an out-of-bounds read and write in OpenSSL [CVE-2025-9230]

Summary OpenSSL for IBM i is vulnerable to an out-of-bounds read and write when decrypting CMS messages encrypted using password based encryption CVE-2025-9230 as described in the vulnerability details section. Vulnerability Details CVEID:CVE-2025-9230 DESCRIPTION: Issue summary: An application...

CVE-2025-9230

Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an application. The out-of-bounds write can cause a...