2 matches found
CVE-2026-28386 vulnerabilities
Vulnerabilities for packages: openssl-provider-fips, openssl, libcrypto3-2.34...
CVE-2026-28386
The CVE CVE-2026-28386 affects OpenSSL’s FIPS module (version 3.6) on x86-64 systems with AVX-512 and VAES. A partial-block processing path in AES-CFB-128 can trigger an out-of-bounds read of up to 15 bytes when the input buffer sits at a page boundary and the next page is unmapped, potentially c...