3 matches found
openssl security update
3.5.1-7.0.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 3.5.1.openela.0.1 - Add OpenELA specific changes 1:3.5.1-7 - Fix CVE-2025-11187 CVE-2025-15467 CVE-2025-15468...
CVE-2025-11187 vulnerabilities
Vulnerabilities for packages: libcrypto3-2.34, openssl...
DEBIAN-CVE-2025-11187
Issue summary: PBMAC1 parameters in PKCS12 files are missing validation which can trigger a stack-based buffer overflow, invalid pointer or NULL pointer dereference during MAC verification. Impact summary: The stack buffer overflow or NULL pointer dereference may cause a crash leading to Denial o...